SDM

[gb0mb]

I am setting up a 2611XM router, 12.4 Adv/Ent Ios.

I configured the router according to the included guide for setting up SDM.

In the guide you need to enable the telnet and ssh protocols for local login.

So if I am understanding this right SDM is transmitting your local account Priv. level 15 credentials clear text across the network?

This seems to be a security risk. I have firewall rules to prevent direct connections to the router from the $$Outside$$.

Any one have an opinion about SDM that might be more secure?

I run SDM on my PC, would running it on the router itself and connecting to it via SSL be the solution I am looking for?

Thanks.




Gb0mb

........99.9% User Error........
Ubuntu -- African for I can't install Gentoo

 

[cajuntank]

Unless your trying to use SDM to access from the outside, use SDM from the inside and you can run it over https if your concerned about clear text over the wire.

If your trying to access from the outside, then you'll have to open https on the outside to your router.

 

[gb0mb]

I am doing it from the inside with the appropriate rules blocking any connection to the router from the outside.

I do make a https connection, but it seems that a telnet connection occurs.

I need to sniff some traffic to verify exactly what is not encrypted.

Thanks for the help.

Gb0mb

........99.9% User Error........
Ubuntu -- African for I can't install Gentoo