Cisco block telnet and SSH access


Block telnet and SSH access to the Cisco router.

The user must have the privilege to change the settings or basically the admin user account.

block all (telnet and ssh):

  line vty 0 4
  transport input none

sh startup-config (save config and will persist after reboot or shutdown)

sh running-config (config is save but will not persist after reboot or shutdown)

To enable or unblock:

line vty 0 4
 privilege level 15
 login local
 line vty 0 4
transport input telnet ssh

Before rolling out to production be sure to test it out or else you will leave a vulnerability in your network.

Cheers..till next time!


Comments

Popular posts from this blog

Unable to install Teamviewer on Windows 7 and Windows 8

WMIC get computer name