From: Clifton Stewart (cliftonlstewart@xxxxxxxx)
Date: Fri Apr 20 2001 - 01:47:09 GMT-3
Steven,
I believe you want to configure Lock and Key. This is a good method of building
dynamic access-lists that provide the user limited access to your router. You c
an
control basic three priviledge levels 1 7 and 15 the other bits are a programmi
ng
issue. For example if you think a person only needs sh ip int brief because he'
s
1st level support, thus only needs to verify if an interface is up or down. Thi
s
will allow you to do it. As for telnet it's port 23, there are 3 core port
numbers you should always remember 21, 23 and 25 which are all TCP, you will fa
ce
them every day of your troubleshooting life! Let us know how it goes.
http://www.cisco.com/univercd/cc/td/doc/product/software/ios113ed/113ed_cr/secu
r_c/scprt3/sclock.htm
http://www.cisco.com/warp/public/116/15.html
-Cliff
Steven Weber wrote:
> I am trying to build a dynamic access list my problem however is that when I
> do a line vty 0 4
> login local I am not able to add the autocommand access enable statement, I
> tried this on many versions of IOS but no joy. I also tried adding it to each
> vty line seperately.nothing has worked has anybody ever come accross this
> problem before how do I fix it. btw what is port # for telnet?
> Regards,
> Steve
> **Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:29:52 GMT-3