No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


On the AR1200 Running V200R007, After a Trusted Host Is Deleted, a User Cannot Log In to the Device Through Telnet

Publication Date:  2019-07-17 Views:  131 Downloads:  0

Issue Description

On the AR1200 running V200R007, after a trusted host is deleted, a user cannot log in to the device through Telnet.

Handling Process

1. Check the original configuration.

 acl name test 2995         

   rule 5 permit source 0


  local-user xxxx password irreversible-cipher qqqq

  local-user xxxx privilege level 15

  local-user xxxx service-type telnet


 telnet server enable


 user-interface vty 0 4

  acl 2995 inbound

  authentication-mode aaa 

2. Delete the trusted host to remove the restriction on the source host address for login.

 Run the following commands:

  acl 2995

    undo rule 5

  Then the device cannot be accessed through Telnet using the source address

3. Delete acl 2995 inbound from vty 0 4. The fault is rectified.

Root Cause

If an ACL is configured on the VTY interface, only the permitted addresses defined in the ACL can be used to log in to the device through Telnet. If the IP address used to log in to the device is not a permitted address, the login is denied.