Access-list help with telnet ? 1

SQL2KDBA69 · Mar 24, 2004

I need to permit telnet connection to my router external ip address from the internet.

this is what i have :

access-list 101 permit tcp any eq

http://www any

established
access-list 101 permit udp any eq domain any
access-list 101 permit tcp any eq 443 any established

then one my t1 connection i have :

ip access-group 101 in

that my permit list every thing else is deny.

i tried:
access-list permit tcp any eq 23 any
but i doesnt work i can connect from behind the router but not from the internet. thanks for any help.

gconnect · Mar 24, 2004

that's because 23 is the destination port
you have it configured as the source port

you need............

access-list 101 permit tcp any eq

http://www any

established
access-list 101 permit udp any eq domain any
access-list 101 permit tcp any eq 443 any established
access-list permit tcp any any eq 23

I STRONGLY urge you to use secure shell if possible because telnet is weak (no security) and anyone who sniffs your connection can own your devices.

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Access-list help with telnet ? 1

SQL2KDBA69

Programmer

gconnect

MIS

Similar threads

Part and Inventory Search

Sponsor