Meraki

Community

block telnet on a subnet

MarcW
Here to help
‎Oct 3 2024 12:32 PM
‎Oct 3 2024 12:32 PM

block telnet on a subnet

I cannot solve how to block telnet on a subnet range.  My assumption is a layer 7 rule, but that's all I got.  How do I block telnet on a MX75? 

Labels:
0 Kudos
3 Replies 3
CptnCrnch
Kind of a big deal
Kind of a big deal
‎Oct 3 2024 12:35 PM
‎Oct 3 2024 12:35 PM

Not a Single Layer 7 rule needed. Just block Access to TCP Port 23 in your regular Policy for this specific subnet 

In response to CptnCrnch
MarcW
Here to help
‎Oct 10 2024 1:21 PM
‎Oct 10 2024 1:21 PM

Waiting for local admin to run pen test to see if I blocked it correctly and successfully. 

0 Kudos
GIdenJoe
Kind of a big deal
Kind of a big deal
‎Oct 11 2024 11:40 PM
‎Oct 11 2024 11:40 PM

Actual telnet on devices is run on TCP/23.
So just make an outbound rule that blocks destination port TCP/23 from or to the subnet you want to block it.

Telnetting to other ports is only used to see if you can get a TCP handshake.  But you're not exchanging any commands for that protocol.

0 Kudos
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.