MSR设备在开启ssh acl之后,非acl用户登录时,日志仍频繁打印用户登录失败。
#
ssh server enable
sftp server enable
ssh server acl 2000
#
acl basic 2000 description VTY
rule 0 permit source 10.0.0.0 0.255.255.255
rule 25 permit source 10.50.0.0 0.0.255.255
rule 30 permit source 10.51.0.0 0.0.255.255
#
telnet server enable
%Sep 13 15:29:05:089 2023 SY00A20504B03_DEV_INT_AR_MSR56_03 LOGIN/5/LOGIN_FAILED: linuxshell failed to log in from 90.X.X.X
%Sep 13 15:29:11:341 2023 SY00A20504B03_DEV_INT_AR_MSR56_03 LOGIN/5/LOGIN_FAILED: linuxshell failed to log in from 89.X.X.X
%Sep 13 15:31:33:794 2023 SY00A20504B03_DEV_INT_AR_MSR56_03 LOGIN/5/LOGIN_FAILED: shell failed to log in from 175.X.X.X
%Sep 13 15:32:17:956 2023 SY00A20504B03_DEV_INT_AR_MSR56_03 LOGIN/5/LOGIN_FAILED: shell failed to log in from 174.X.X.X
acl阻断的用户名和密码ssh登录没有日志打印的,现网打印是telnet登录失败导致
如想停止日志打印,建议undo telnet ser en
该案例暂时没有网友评论
✖
案例意见反馈
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作