allow ssh only on outside interface, but telnet on inside interface of router

Discussion in 'Cisco' started by no-one, Jul 28, 2004.

  1. no-one

    no-one Guest

    All,

    I'm trying to figure out a way to allow telnet and ssh on the inside
    interface, but only ssh on the outside interface for a dual ethernet
    router.

    i was hoping i could build and acces class like:

    access-list 159 permit tcp any host 192.168.1.103 eq 22 log-input
    access-list 159 permit tcp any host 192.168.0.4 eq telnet log-input
    access-list 159 deny ip any any log-input

    192.168.1.103 is the outside.
    192.168.0.4 is the inside.

    this doesn't work though. checking the logs i see that the router uses
    0.0.0.0 for itself instead of the real ip address.

    00:44:05: %SEC-6-IPACCESSLOGP: list 159 denied tcp 192.168.1.101(1665)
    -> 0.0.0.0(22), 1 packets

    Does anyone know a way to get this to work?

    Thanks in advance
    Sean
     
    no-one, Jul 28, 2004
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. jonnah
    Replies:
    1
    Views:
    1,313
    mcaissie
    Apr 21, 2004
  2. Replies:
    5
    Views:
    3,965
  3. Jack
    Replies:
    0
    Views:
    724
  4. Lowell Yates
    Replies:
    0
    Views:
    1,232
    Lowell Yates
    Mar 2, 2009
  5. ejeangilles
    Replies:
    6
    Views:
    4,166
    Akilla21
    Nov 4, 2010
Loading...

Share This Page