From: Darby Weaver (darbyweaver@yahoo.com)
Date: Mon Dec 10 2007 - 19:39:55 ART
Well you could could setup each vty separately and
specify a different parameter for each.
line vty 0 4 - is a range of vty.
And then you could create and acl for whomever needs
the autocommand or vice versa or both for that matter.
You could also specify telnet for some lines, ssh for
others, for example.
--- "Hough, Earl" <Earl.Hough@sarcom.com> wrote:
> Wim,
>
> Another trick is to reserve a specific VTY line by
> giving it a different
> port number using the rotary command. This allows a
> backdoor to get to
> your vty lines and bypassing the autocommand on vty
> lines 0 through 4.
>
> line vty 5
> rotary 99
> transport input ssh
> access-class 23 in
>
> HTH.
>
> Earl Hough
> #16508
>
> -----Original Message-----
> From: nobody@groupstudy.com
> [mailto:nobody@groupstudy.com] On Behalf Of
> wim.depauw@getronics.com
> Sent: Monday, December 10, 2007 3:15 PM
> To: ccielab@groupstudy.com
> Subject: Lock and Key ACL + Remote management of
> router
>
> Hi,
>
> I've been playing with the lock and key feature ,
> which is pretty nice
> but I wondered :
>
> When you enable autocommand on your vty lines you
> will not able to
> connect to your router anymore by telnet/ssh .
> The reason is that you hit your autocommand command
> each time.
>
> Does anybody have a solution for this ? I couldn't
> find anything back on
> the doc cd about this ...
>
> My first thought was to put on line vty 4 no
> autocommand but then you
> need to be really quick to get to this session
> :-))))
>
> gr
> wim
>
>
This archive was generated by hypermail 2.1.4 : Tue Jan 01 2008 - 12:04:30 ARST