beautypg.com

Telnet security – NEC NEAX IPS NWA-008869-001 User Manual

Page 161

background image

CHAPTER 6 MANAGEMENT AND MAINTENANCE

– 151 –

NWA-008869-001 Rev.1.0

atch6001.fm

TELNET SECURITY

The telnet-server ip enable or telnet-server ipv6 command permits all hosts connected to the In-Skin Rout-
er to establish a connection. You can increase the security of telnet in two ways:
(1) Change the telnet port number
(2) Permit only a specific host to gain access with telnet

Changing the telnet port number
In this example, the port number 2323 is set.

Permitting only a specific host to gain access with telnet
In this example, only the source address “1.1.1.1/32” is permitted to gain access. “tokyo” is set as an access
list name.

Router # enable

− config

Router (config) # telnet

− server ip port 2323

Router (config) #

Enter

Enter

Router # enable

− config

Router (config) # ip access

− list tokyo permit ip src 1.1.1.1/32 dest any

Router (config) # telnet

− server ip access − list tokyo

Router (config) #

Enter

Enter

Enter

TELNET SECURITY