From: Geert Nijs (geert.nijs@simac.be)
Date: Mon Aug 23 2004 - 13:14:20 GMT-3
Hi group,
In configuring a router for SSH access only, i was wondering if you can
stop the telnet service on a router.
Since, when you configure SSH access only with "transport input ssh",
the telnet service still runs,
and, if you do a port scan on the router, you will notice that port 23
can still be "seen".
How can i configure the router not to respond to port 23 at all ?
The best solution would be to stop the telnet service all together, if
possible.
I think that configuring an ACL on all interfaces, denying telnet, would
also work. But i'll have to test that
in the lab.
Any other ideas ?
Regards,
Geert
#####################################################################################
This e-mail and any attached files are confidential and may be legally privileged.
If you are not the addressee, any disclosure, reproduction, copying, distribution,
or other dissemination or use of this communication is strictly prohibited.
If you have received this transmission in error please notify Simac immediately
and then delete this e-mail.
Simac has taken all reasonable precautions to avoid virusses in this email.
Simac does not accept liability for damage by virusses, for the correct and complete
transmission of the information, nor for any delay or interruption of the transmission,
nor for damages arising from the use of or reliance on the information.
All e-mail messages addressed to, received or sent by Simac or Simac employees
are deemed to be professional in nature. Accordingly, the sender or recipient of
these messages agrees that they may be read by other Simac employees than the official
recipient or sender in order to ensure the continuity of work-related activities
and allow supervision thereof.
#####################################################################################
This archive was generated by hypermail 2.1.4 : Fri Sep 03 2004 - 07:02:47 GMT-3