Virtual Terminals (VTYs)
Virtual terminals are logical connections from the network to the router; these are typically telnet or rlogin connections. When a user telnets to a router from the network, as in Figure 4-2, the router starts an EXEC process to handle this connection.

Figure 4-2. VTY connections
Although no physical link is associated with a virtual terminal, VTYs are configured just like normal TTY lines. VTYs are enabled once they are configured. If you do not configure any VTYs, then logical connections, such as telnet, cannot be made to your router from the network. Here is a VTY configuration example:
Router(config)#line vty 1Router(config-line)#exec-timeout 0 30Set the timeout to 30 minutes Router(config-line)#password letmeinhereSet one password for telnet access Router(config-line)#transport input telnetAllow only telnet access Router(config-line)#access-class 10 inApply access list 10 to this line Router(config-line)#exitRouter(config)#access-list 10 permit host 10.10.1.2
This example shows a semi-secure configuration for a VTY terminal. We
set a timeout for 30 minutes and apply only one password. We then use
the transport
input command to
define the protocols that are allowed to use this line; in this case,
we are allowing only telnet access. The
access-class
command applies an access list to this interface. We won’t explain access lists here; in this example ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access