Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Mystified why I can't telnet to my pix 3

Status
Not open for further replies.
bdmeyer

bdmeyer

IS-IT--Management
Feb 27, 2005
5
US
The 10.99.99.x is the network connected to the internal interface.

The 10.99.64.x is the network on the external interface.

I cannot connect to the internal interface from 10.99.64.50 and have no idea why. I hope the cut down, and IP changed config below is enough to show what I am trying to do.


interface ethernet0 auto
interface ethernet1 auto
ip address outside 10.99.64.5 255.255.254.0
ip address inside 10.99.99.1 255.255.255.0
nat (inside) 0 10.99.99.0 255.255.255.0 0 0
static (inside,outside) 10.99.99.50 10.99.99.50 netmask 255.255.255.255 0 0
telnet 10.99.64.50 255.255.255.255 inside
telnet timeout 5

Bruce D. Meyer, CCNA, MCSE
Network Analyst
City of Columbia, SC
 
Sort by date Sort by votes
Your telnet line is not right "telnet 10.99.64.50 255.255.255.255 inside", looking at your config 10.99.64.x is assigned to the outside interface


Hope that helps
 
Upvote 0 Downvote
You may also have to put in an access rule once the inside part is changed to outside. I was having the same problem; but figured it out. I will look at my config.
 
Upvote 0 Downvote
Both of the above are dead on. You might have also forgot to set a telnet password - It's not the same as the enable password.
passwd [Password]


Brent
Systems Engineer / Consultant
CCNP, CCSP
 
Upvote 0 Downvote
I actually have the telnet line correct on the real config, I messed it up trying to change the IP's in my config. I apologize for that.

Judgestone I would appreciate seeing what you added.

I 'assume' I don't need a telnet password as I can telnet to the pix from inside the firewall network. (Line is removed that enables that from this post to reduce complexity)

Bruce D. Meyer, CCNA, MCSE
Network Analyst
City of Columbia, SC
 
Upvote 0 Downvote
You don't have a line that is like
passwd [password] encrypted
in the config??? It should be right under the enable password line in the config on 6x and under the last interface on 7x. You shouldn't be able to telnet or SSH without it.


Brent
Systems Engineer / Consultant
CCNP, CCSP
 
Upvote 0 Downvote
Yup,
enable password blah encrypted
passwd blah encrypted

(long day)

Bruce

Bruce D. Meyer, CCNA, MCSE
Network Analyst
City of Columbia, SC
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

2
  • Locked
  • Question
Loss of my privacy
Replies
12
Views
1K
Rick998
Rick998
Sameer258
  • Locked
  • Question
Need Help to Find ip and mac address with email who one open my email
Replies
0
Views
579
Sameer258
Sameer258
Sparrow4
  • Locked
  • Question
Configure Avaya IPO R11 / VM Pro + Office365 or Exchange for voicemail to email
Replies
2
Views
537
Johnkite
Johnkite
Russtoleum
  • Locked
  • Question
Windows client can't connect to sonicwall l2tp server
Replies
0
Views
118
Russtoleum
Russtoleum
XLNTech1
  • Locked
  • Question
iptables port forwarding
Replies
0
Views
469
XLNTech1
XLNTech1

Part and Inventory Search

Sponsor

Back
Top