Telnet don‘t work correctly

Created Mar 17, 2015 14:17:24Latest reply Mar 18, 2015 13:27:50 1695 7 0 0

Hi, I'm new in huawei. Can anyone help me with my problem
thats my problem
i have AR2220 with 2 Serial int.for E1 and 3 Giga int.
1 serial is connected to Cisco 2811 and the other one is connected to another Cisco 2811
one of the giga ports (0/0/1) is connected to a switch Cisco 2950 (local network)
im configured Huawei and routes are works (ping from one int of Cisco 2811 is answering to the next 2811? but i have a problem with connecting by telnet to huawei from any ip addres that belong to Cisco Networks
from the local network that belongs to giga 0/0/1 of Huawei is all working (i can connect to huawei by telnet)

  • x
  • convention:

user_2790689  Expert   Created Mar 17, 2015 16:30:09 Helpful(0) Helpful(0)

Please wait,we'll answer you later.
  • x
  • convention:

im2good  Adept   Created Mar 17, 2015 17:42:43 Helpful(0) Helpful(0)

Did you check whether the cisco network has any deny rules to Huawei network?
  • x
  • convention:

sanferov     Created Mar 18, 2015 11:12:08 Helpful(0) Helpful(0)

Reply 3 #

Hello

yes, there are several rules

rules are identify on all cisco devices

on both 2811 and on 2950

here is config on huawei

[V200R003C01SPC900]
#
ftp server enable
#
board add 0/1 2E1-MFT
#
snmp-agent local-engineid 800007DB0304F938B632C6
snmp-agent community write acl 2077
snmp-agent community read acl 2077
snmp-agent sys-info contact
snmp-agent sys-info location
snmp-agent
#
http timeout 3
http server enable
#
drop illegal-mac alarm
#
router id 10.76.123.246
#
wlan ac-global carrier id other ac id 0
#
pki realm default
enrollment self-signed
#
#
acl number 2077 
rule 5 permit source 10.75.0.0 0.0.255.255
rule 10 permit source 10.76.0.0 0.0.255.255
#
aaa
authentication-scheme default
authorization-scheme default
accounting-scheme default
domain default
domain default_admin
local-user admin password cipher
local-user admin privilege level 15
local-user admin ftp-directory sd1:
local-user admin service-type telnet terminal ssh ftp web http
#
firewall zone Local
priority 64
#
controller E1 1/0/0
channel-set 0 timeslot-list 1-31
frame-format crc4
#
controller E1 1/0/1
channel-set 0 timeslot-list 1-31
frame-format crc4
#
interface Serial1/0/0:0
link-protocol hdlc
ip address 10.76.122.45 255.255.255.252
ospf timer hello 1
ospf timer dead 3
#
interface Serial1/0/1:0
link-protocol hdlc
ip address 10.76.122.49 255.255.255.252
ospf timer hello 1
ospf timer dead 3
#
interface GigabitEthernet0/0/0
#
interface GigabitEthernet0/0/1
ip address 10.75.97.126 255.255.255.128
#
interface GigabitEthernet0/0/2
#
interface Cellular0/0/0
link-protocol ppp
#
interface Cellular0/0/1
link-protocol ppp
#
interface NULL0
#
ospf 76
area 0.0.0.10
  network 0.0.0.0 255.255.255.255
  nssa
#
stelnet server enable
#
user-interface con 0
authentication-mode aaa
user-interface vty 0 4
acl 2077 inbound
authentication-mode aaa
user privilege level 15
#
wlan ac
#
voice
#
diagnose
#
return

i can connect from net 10.75.97.126/25 through telnet and ssh

but from the other net i can't connect through neither telnet nor ssh

  • x
  • convention:

im2good  Adept   Created Mar 18, 2015 11:49:19 Helpful(0) Helpful(0)

So could you please attach the configuration on Huawei Router?

And the topo if possible?

  • x
  • convention:

sanferov     Created Mar 18, 2015 12:06:19 Helpful(0) Helpful(0)

Reply 5 #

sorry, but what is topo?

config is in the previous post

  • x
  • convention:

im2good  Adept   Created Mar 18, 2015 12:07:18 Helpful(0) Helpful(0)

Sorry, topo is the initial of topology to better understand your network and problem.
  • x
  • convention:

sanferov     Created Mar 18, 2015 13:27:50 Helpful(0) Helpful(0)


here is part of my network

  • x
  • convention:

Responses

Reply
You need to log in to reply to the post Login | Register

Notice:To ensure the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but not limited to politically sensitive content, content concerning pornography, gambling, drug abuse and trafficking, content that may disclose or infringe upon others' intellectual properties, including commercial secrets, trade marks, copyrights, and patents, and personal privacy. Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see“ Privacy Policy.”
If the attachment button is not available, update the Adobe Flash Player to the latest version!
Fast reply Scroll to top