By default, the console port is not password configured. connection to the console port should not be left logged in. Therefore, it's recommended to configure the timeout for EXEC
sessions on the console line, so that if a user forgets to log out or leaves the session idle for an extended period, the device log out the idle sessions automatically. Example 3-2 shows how to set up the console line for a password and enforcing automatic
logout if the session is idle for more than ten minutes. The transport input none command prevents remote access to the lines via reverse Telnet.
Example 3-2. Configuring Console Port Password and Idle Time
Router(config)# line console 0
Router(config-line)# exec-timeout 10 0
Router(config-line)# transport input none
Router(config-line)# password
Router(config-line)# login
Router(config-line)# end
Router#
VTY Ports
Cisco IOS supports multiple remote interactive access connections serviced by a logical vty line to connect to the device. Cisco
IOS supports more than 100 vty lines (depending on the IOS version and feature set). By default, five vty lines (0 to 4) are
available using the line vty 0 4 command. Similar to the console port, vty lines have no passwords preconfigured.
Pages:
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129