Re: Denying telnet to port 23 on VTY

From: Rodrigo Paes (rpaes@pobox.com)
Date: Tue Nov 07 2006 - 01:44:52 ART

• Next message: Scott Morris: "RE: OSPF Question"
• Previous message: Venkataramanaiah.R: "Re: Bridging over IP"
• Maybe in reply to: secondie: "Denying telnet to port 23 on VTY"
• Next in thread: dszarmach: "RE: Denying telnet to port 23 on VTY"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Mon, 6 Nov 2006 22:27:01 -0600
"dszarmach" <dszarmach@comhs.org> wrote:

> You should be able to do a static NAT without using an access list:
>
> Ip nat inside source static tcp 1.1.1.1 23 2.2.2.2 22222
>
> That would blackhole the traffic, assuming nothing at 2.2.2.2 is
> listening on 22222.
>

I guess you'll need two nats right ? one for the inside and one for the outside ?

[]s
rodrigo

-- 
=========================================
\     .-.     +++ Rodrigo Paes +++       \
/     /v\    CCIE #14054 (R&S and SP)    /
\    // \\   LPIC2 #19753                \ 
/   /(   )\  Linux User #324449          /
\    ^^-^^                               \
/   jabber: panfleto@jabber.org          /
\   gtalk : rodp43s@gmail.com            \
 ==========================================

• Next message: Scott Morris: "RE: OSPF Question"
• Previous message: Venkataramanaiah.R: "Re: Bridging over IP"
• Maybe in reply to: secondie: "Denying telnet to port 23 on VTY"
• Next in thread: dszarmach: "RE: Denying telnet to port 23 on VTY"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Dec 01 2006 - 08:05:45 ART