Ping a Specific Port

Question

TiFFolk

Asked: 2009-09-26 06:00:28 +0800 CST2009-09-26 06:00:28 +0800 CST 2009-09-26 06:00:28 +0800 CST

Cisco: privilege for configuring only particular interface?

772

Is there a way, to create such privilege, which will let to configure just one particular port ex: gi1/0/1 , but at that time will not let to configure gi1/0/2 .

Smth like: privilege interface gi1/0/1 10

UPD: As radius said, from /usr/local/share/doc/tac_plus/users_guide :

    The following configuration example permits user Fred to run the
following commands:

    telnet 131.108.13.<any number> and
    telnet 128.<any number>.12.3 and
    show <anything>

All other commands are denied (by default).

user=fred {

    cmd = telnet {
        # permit specified telnets
        permit 131\.108\.13\.[0-9]+
        permit 128\.[0-9]+\.12\.3
    }
    cmd = show {
        # permit show commands
        permit .*
    }
}

2 Answers

Voted

Cian · Answer 1 · 2009-09-26T07:05:13+08:00

Cian

2009-09-26T07:05:13+08:002009-09-26T07:05:13+08:00

No, IOS's permissions are not this granular unfortunately.

4

radius · Answer 2 · 2009-09-26T07:33:26+08:00

Best Answer

radius

2009-09-26T07:33:26+08:002009-09-26T07:33:26+08:00

You can use a TACAS+ server to do this using authorization, see http://www.cisco.com/en/US/docs/ios/security/configuration/guide/sec_cfg_authorizatn.html#wp1001170

2

Cisco: privilege for configuring only particular interface?

Ping a Specific Port

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What's the command-line utility in Windows to do a reverse DNS look-up?

How to check if a port is blocked on a Windows machine?

What port should I open to allow remote desktop?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?