VTY ACLs | Dell SmartFabric OS10 Enterprise Edition Quick Start and Interoperability Guide | Dell Technologies Info Hub (2024)

  • Accessing a command line interface (CLI) using telnet or SSH is known as a virtual terminal line (VTY) session. A VTY ACL is used to control what Telnet and SSH users can access on the switch. The following steps provide you with control of the Telnet or SSH connections to the switch by applying ACLs on VTY lines:

    1. Create IP or IPv6 access lists with permit or deny filters.
    2. Enter the VTY mode by using the line vty command.
    3. Apply the access lists to the VTY line with the access-class command.

    For example, an ACL may be created and named deny50, and then assigned to the VTY to disallow the IP address 10.1.1.5 any IP traffic into the switch. Since ACLs have an implicit deny statement as the last rule, you must add a permit statement to allow all other IP traffic.

    See Also
    Types of Network Switches You Need to Know

    OS10(config)# ip access-list deny50OS10(config-ipv4-acl)# deny ip 10.1.1.5 255.255.255.255 anyOS10(config-ipv4-acl)# permit ip 10.1.1.0 255.255.255.0 anyOS10(config-ipv4-acl)# exit

    To enter the VTY mode, run the line vty command while in configuration mode.

    OS10(config)# line vtyOS10(config-line-vty)# ip access-class deny50

    To view the VTY ACL configuration, run the line vty command while in configuration mode.

    OS10(config-line-vty)# show configuration!line vty ip access-class deny50

    To verify the VTY ACL works, SSH or Telnet into the switch using the 10.1.1.5 IP address. The connection will fail. Changing the IP address to 10.1.1.6 or other address on the subnet will regain connectivity. Use other supported ACLs in the SmartFabric OS10 User Guide to customize the security on your network.

    See Also
    Meaning of line vty 0 4 in configuration of Cisco Router or Switch - IP With EaseDifference between vty lines 0 4 and 5 15What's the difference between line console 0 and line vty 0 5?1.2.5 Set 'access-class' for 'line vty'
VTY ACLs | Dell SmartFabric OS10 Enterprise Edition Quick Start and Interoperability Guide | Dell Technologies Info Hub (2024)
Top Articles
9 Creative Ways To Save Money With Little Extra Effort
21 Easy Ways To Get Paid To Read Books - Arrest Your Debt
Fox's Tim Brando sees bad signs from college football
A chance to make their own history in Oakland motivates the Jaguars in comeback victory
Latest Posts
14 books that will change the way you think about money
How to Get a Small Business Loan Without Collateral
Article information

Author: Melvina Ondricka

Last Updated:

Views: 5636

Rating: 4.8 / 5 (48 voted)

Reviews: 95% of readers found this page helpful

Author information

Name: Melvina Ondricka

Birthday: 2000-12-23

Address: Suite 382 139 Shaniqua Locks, Paulaborough, UT 90498

Phone: +636383657021

Job: Dynamic Government Specialist

Hobby: Kite flying, Watching movies, Knitting, Model building, Reading, Wood carving, Paintball

Introduction: My name is Melvina Ondricka, I am a helpful, fancy, friendly, innocent, outstanding, courageous, thoughtful person who loves writing and wants to share my knowledge and understanding with you.