Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

vty 4 access

Status
Not open for further replies.
ccif1024

ccif1024

Technical User
Jun 14, 2002
25
0
0
US
I have different login accounts for each VTY 0 , 1 , 2 etc.., but my question is how do I ensure that I am telnetting to that particular VTY, let's sat vty 4?
 
Sort by date Sort by votes
hello there, I am afraid that you will not be able to slect which vty to telnet into it... vty 0 4 should be used as a pool and have a common telent password... Cheers.
 
Upvote 0 Downvote
you can't decide which vty you telnet into the router does that for you based on which one is available. technikall is correct you have to use the config command

line vty 0 4
username xxxxxx password xxxxxx
login


to specify login information for the telnet lines.

laterz
 
Upvote 0 Downvote
You have to set the password to be the same for the interfaces. You can however if thewse get tied up set another vty lin say 5-7 with another password. If you cant get through because the 0-4 lines are tied up by putting another password on the other lines you can still gain access. There is nothing to stop you configuring more VTY lines thatn the cisco default of 0-4.
 
Upvote 0 Downvote
Thanks to the responders... I did a little more checking as to why we do this for routers we manage... it's like keeping one line for yourself on a conference call with limited lines available.
Yes -you can have different passwords...

line vty 0 3
login
password 1234pass
line vty 4
login
password dontuse

In a device that we access in addition to the customer, we put in a backdoor(vty 4) so that in the event of a problem in a router with the customer, Engineers, other vendors, all telnetted in (or through), they could run out of connections, but I with my different password, could still get in. If the '1234pass' didn't work because it was "full", I could use 'dontuse'.

I could see this being handy for a router doubling as a terminal server.
 
Upvote 0 Downvote
Actually there is a "hack" to do this. Put the first 3 vty's into a ACL that is not normally used.. ie.. logging in from a server IP address (or something). When you go to login from anywhere else, you would start with vty 4 since it's not in the ACL.

I did this once a long while back and I really dont remember why we did this ;-)

MikeS


Find me at
"Take advantage of the enemy's unreadiness, make your way by unexpected routes, and attack unguarded spots."
Sun Tzu
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

PThomp3344
  • Locked
  • Question
Trying to connect to Cisco Unified Controller web interface: UC520W-16U-4FXO-K9
Replies
1
Views
93
bdk76
bdk76
inlsp05
  • Locked
  • Question
2811&2960 48 volts wiring diagram
Replies
1
Views
64
BOKA
BOKA
CDIV
  • Locked
  • Question
Use uplink port as access port 2960 1
Replies
9
Views
164
CDIV
CDIV
CDIV
  • Locked
  • Question
How do I enable SSH access in 2960x 1
Replies
4
Views
233
iggsterman
iggsterman
dmourghen
  • Locked
  • Question
PBR issue and Access-list
Replies
0
Views
47
dmourghen
dmourghen

Part and Inventory Search

Sponsor

Back
Top