Access list

This is my fist time posting here, and I feel my question can help others. So I have a practical where I need to allow only host on my ADMIN VLAN to SSH to my router. How do I configure this?

Find more posts tagged with

SAVE $250 on Your CISCO Boot Camp — Use Code "EXAM26"

Exclusively for TechExams members for Infosec Boot Camps starting before April 30, 2026

View CISCO Boot Camps

Comments

dontstop

Sounds like you need an ACL something like this:

access-list 1 permit host <ip address>

Then configure the ACL on the VTY line and disable Telnet (if it only wants SSH access)

line vty 0 4
transport input ssh
access-class 1 in

Danielh22185

The above ^^ will work for a single host to allow connectivity. If you want to permit all hosts on your admin vlan subnet you will need to specify the source subnet you need to permit access for.

Example:
access-list 1 permit 10.0.0.0 0.0.0.255

^^^ This would permit the subnet 10.0.0.0/24 access to the device.

Or you can make multiple entries individually as well...

dontstop

Danielh22185 wrote: »

The above ^^ will work for a single host to allow connectivity.

Danielh you're spot on. I miss read the original question "I need to allow only host on my ADMIN VLAN" as being a single host, I assume he means "only hosts". Good spotting

princely jones

Thanks guys for the help. It worked.