Switches, Hubs, and Modems
cancel
Showing results for 
Search instead for 
Did you mean: 

Allow Telnet ACL?

SOLVED
Go to solution

Allow Telnet ACL?

I wish to deny telnet on our network bar one machine is this possible using acl's
1 REPLY
Bruce Campbell_3
Valued Contributor
Solution

Re: Allow Telnet ACL?


Yes, it is possible with the 5400zl series
and some others.

To block inbound telnet to a vlan
except for machine a.b.c.d it would be:

ip access-list extended "block-telnet"
10 permit tcp 0.0.0.0 255.255.255.255 a.b.c.d 0.0.0.0 eq 23
20 deny tcp 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255 eq 23
30 permit ip 0.0.0.0 255.255.255.255 0.0.0.0 255.255.255.255
exit

Assumes clients are on vlan numbered
'n'

vlan n
ip access-group "block-telnet" in
exit
Bruce Campbell
Director, Network Services
Information Systems and Technology
MC 1018
(519)888-4567 x38323
University of Waterloo, Waterloo, ON