An administrator must configure a Cisco router to allow remote management only via SSH and disable Telnet access. The RSA keys have been generated and SSH has been enabled. Which configuration step should the administrator perform next to achieve this?
Apply an access-list denying Telnet connections to the router.
Configure 'transport input ssh' under the VTY lines.
Configure 'no transport telnet' under the VTY lines.
Set 'ip ssh version 2' in global configuration mode.
To restrict remote access to SSH only and disable Telnet, the administrator should configure 'transport input ssh' under the VTY lines. This command specifies that only SSH connections are accepted on the VTY lines, effectively disabling Telnet. Setting 'ip ssh version 2' in global configuration enables SSH version 2 but does not prevent Telnet access. The command 'no transport telnet' is invalid in this context and does not achieve the desired result. Applying an access-list to deny Telnet is unnecessary and less efficient than directly specifying the allowed protocols with 'transport input ssh'.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is SSH and why is it preferred over Telnet?
Open an interactive chat with Bash
What are VTY lines and their significance in router configuration?
Open an interactive chat with Bash
How do you access global configuration mode and what can be configured there?
Open an interactive chat with Bash
Cisco CCNA 200-301
IP Services
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access