From: Clay Maney (clay@pronettech.com)
Date: Thu Dec 18 2003 - 19:03:01 GMT-3
Without a VPN tunnel, you cannot telnet to the outside address of a PIX.
Use SSH instead.
To configure SSH on the PIX, do:
hostname labpix
domain-name mydomain.com
ca generate rsa key 1024 (or some modulus size)
ca save all (might take a minute)
ssh 0.0.0.0 0.0.0.0 outside
Truthfully, I've never opened one up for ssh from the world, but I think
it'll work. I know you can do hosts: 'ssh 1.2.3.4 255.255.255.255 outside'
or networks: 'ssh 150.150.150.0 255.255.255.0 outside'
HTH,
Clay
ps: for a great SSH client (free), use putty! (google it)
On Thu, Dec 18, 2003 at 09:49:21PM +0000, Jason Aarons wrote:
> I want to put a pix on the Internet and allow anyone to telnet to it (lab
> purposes). I thought the command was ; telnet 0.0.0.0 0.0.0.0 outside Do
> I need a access-list to permit telnet ? The Ethernet0 is named outside
> and has a public ip address that I can ping. So far I have no
> access-lists -jason
>
> ------------------------------------------------------------------------
>
> Check your PC for viruses with the FREE McAfee online computer scan.
>
> _______________________________________________________________________
> Please help support GroupStudy by purchasing your study materials from:
> http://shop.groupstudy.com
>
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Sat Jan 03 2004 - 08:25:42 GMT-3