How to disable telnet logins to a Cisco Catalyst 3500 series switch?

[kevcrowe]

Can you? If so, how?

 

[doherth]

Well, here's my humble opinion...I'm guessing it's the 3500XL that you have. I don't think it will support MLS functions and will not support access filters, ( Telnet being a
layer 4 function, port 23). You can lock out "all" virtual terminal access by not providing a vty login password in the configuration.

You might try this url to cisco on configuring your vty ports..(hope it works)

http://www.cisco.com/univercd/cc/td...0xl/29_35sa6/cmdref/macrcli.htm#xtocid2498823

tom

 

[jacro]

Hi kevcrove.

Yes you can use access filters.

Here is an example:



access-list 20 permit 192.168.0.1

line vty 0 4
access-class 20 in
password xxxx

line vty 5 15
access-class 20 in
password xxxx


Access to vty lines is allowedonly from ip address 192.168.0.1.

You can also use usernames and passwords addin lines

username xxxx pass yyyy

and

line vty 0 4
login local

 

[nohair]

Hi,
Remember there are 2 different types of OS for Cat's. The IOS based OS you can conf just like a router ith access-class on the vty ports. For the set based CLI you could turn off the sc0 interface
set interface sco down
that will disable any IP based management (eg telnet).

-Stephen

 

[jgercken]

Access-class on vty lines
or
No password on vty lines (won't permit connections)
or
line vty x
no exec
or
permit list enable(for 5000's & 6000's)
----------------------------------------
Wassabi Pop Tarts! Write Kellogs today!