Hi,
Is there an equivalent on Cisco 3750 and 2960 switches to the HP secure management VLAN (on 2600s and up) that restricts the ability to manage the switch to those ports that are on the secure management VLAN
thanks
Neil
Cisco has sophisticated Authorization, Authentication and Accounting with RADIUS or TACACS+, where you can not just define WHO can login or configure the switch or router, you can even define which command one or another user can call. And to addition to that, you may create an access-list, where you define which IP addresses allowed to telnet to the switch. For example, if you have 3 IP addresses for your admins, you can configure the switch, that only people from these 3 IP addresses can connect to the switch through TELNET:
access-list 99 permit host 10.1.0.10 access-list 99 permit host 10.1.0.11 access-list 99 permit host 10.1.0.12
line vty 0 4 access-class 99
Good luck,
Mike CCNP, CCDP, CCSP, Cisco Voice, MCSE W2K, MCSE+I, Security+, etc. CCIE R&S (in progress), CCIE Voice (in progress)
------ Headset Adapters for Cisco IP Phones
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.