Terminal LinesYou can access the system remotely and restrict access to the system by creating user profiles.Terminal lines on the system provide different means of accessing the system. The console line (console) connects you through theconsole port in the route processor modules (RPMs). The virtual terminal lines (VTYs) connect you through Telnet to the system.The auxiliary line (aux) connects secondary devices such as modems.Denying and Permitting Access to a Terminal LineDell Networking recommends applying only standard access control lists (ACLs) to deny and permit access to VTY lines.• Layer 3 ACLs deny all traffic that is not explicitly permitted, but in the case of VTY lines, an ACL with no rules does not denytraffic.• You cannot use the show ip accounting access-list command to display the contents of an ACL that is applied onlyto a VTY line.To apply an IP ACL to a line, Use the following command.• Apply an ACL to a VTY line.LINE modeip access-class access-listExample of an ACL that Permits Terminal AccessTo view the configuration, use the show config command in LINE mode.Dell(config-std-nacl)#show config!ip access-list standard myvtyaclseq 5 permit host 10.11.0.1Dell(config-std-nacl)#line vty 0Dell(config-line-vty)#show configline vty 0access-class myvtyaclDell Networking OS Behavior: Prior to Dell Networking OS version 7.4.2.0, in order to deny access on a VTY line, apply an ACL andaccounting, authentication, and authorization (AAA) to the line. Then users are denied access only after they enter a username andpassword. Beginning in Dell Networking OS version 7.4.2.0, only an ACL is required, and users are denied access before they areprompted for a username and password.Configuring Login Authentication for Terminal LinesYou can use any combination of up to six authentication methods to authenticate a user on a terminal line.A combination of authentication methods is called a method list. If the user fails the first authentication method, Dell Networking OSprompts the next method until all methods are exhausted, at which point the connection is terminated. The available authenticationmethods are:enable Prompt for the enable password.line Prompt for the password you assigned to the terminal line. Configure a password for the terminal line towhich you assign a method list that contains the line authentication method. Configure a password using thepassword command from LINE mode.local Prompt for the system username and password.none Do not authenticate the user.radius Prompt for a username and password and use a RADIUS server to authenticate.64 Management