当前位置：首页 > news >正文

Telnet远程登录配置全流程详解

news 2025/7/22 14:36:59

Telnet实验

Telnet（TELecommunications Network）是位于OSI模型的第7层—应用层上的一种协议。
Telnet的名字具有双重含义，既指这种应用也指协议自身。是一种的远程登录客户端程序，允许用户通过网络连接到远程主机并执行命令。它是 TCP/IP 协议族中的一员，广泛用于远程控制 Web 服务器。
用户可以在本地计算机上使用 Telnet 程序输入命令，这些命令会在服务器上运行，就像直接在服务器的控制台上输入一样。Telnet 还可以用于测试主机之间的连接是否畅通。

实验拓扑图

在这里插入图片描述

实验需求

通过在r1中配置telnet服务，使r2能够远程登陆到r1
在r2的接口上抓包分析

实验步骤

1.修改设备名称配置IP地址

<H3C>sys
System View: return to User View with Ctrl+Z.
[H3C]sysname r1[r1]interface GigabitEthernet 0/0
[r1-GigabitEthernet0/0]ip address 192.168.12.1 24
[r1-GigabitEthernet0/0]quit

<H3C>sys
System View: return to User View with Ctrl+Z.
[H3C]sysname r2[r2]interface GigabitEthernet 0/0
[r2-GigabitEthernet0/0]ip address 192.168.12.2 24
[r2-GigabitEthernet0/0]quit

2.检查连通性

[r1]ping 192.168.12.2
Ping 192.168.12.2 (192.168.12.2): 56 data bytes, press CTRL+C to break
56 bytes from 192.168.12.2: icmp_seq=0 ttl=255 time=0.403 ms
56 bytes from 192.168.12.2: icmp_seq=1 ttl=255 time=0.540 ms
56 bytes from 192.168.12.2: icmp_seq=2 ttl=255 time=0.475 ms
56 bytes from 192.168.12.2: icmp_seq=3 ttl=255 time=0.635 ms
56 bytes from 192.168.12.2: icmp_seq=4 ttl=255 time=0.436 ms--- Ping statistics for 192.168.12.2 ---
5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss
round-trip min/avg/max/std-dev = 0.403/0.498/0.635/0.082 ms
[r1]%Jun 23 15:53:31:080 2025 r1 PING/6/PING_STATISTICS: Ping statistics for 192.168.12.2: 5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss, round-trip min/avg/max/std-dev = 0.403/0.498/0.635/0.082 ms.

[r2]ping 192.168.12.1
Ping 192.168.12.1 (192.168.12.1): 56 data bytes, press CTRL+C to break
56 bytes from 192.168.12.1: icmp_seq=0 ttl=255 time=0.808 ms
56 bytes from 192.168.12.1: icmp_seq=1 ttl=255 time=0.407 ms
56 bytes from 192.168.12.1: icmp_seq=2 ttl=255 time=0.543 ms
56 bytes from 192.168.12.1: icmp_seq=3 ttl=255 time=0.513 ms
56 bytes from 192.168.12.1: icmp_seq=4 ttl=255 time=1.015 ms--- Ping statistics for 192.168.12.1 ---
5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss
round-trip min/avg/max/std-dev = 0.407/0.657/1.015/0.222 ms
[r2]%Jun 23 15:53:20:955 2025 r2 PING/6/PING_STATISTICS: Ping statistics for 192.168.12.1: 5 packet(s) transmitted, 5 packet(s) received, 0.0% packet loss, round-trip min/avg/max/std-dev = 0.407/0.657/1.015/0.222 ms.

3.开启Telnet服务

display this命令用来查看是否开始telnet服务

[r1]telnet server enable 
[r1]display this
#sysname r1
#telnet server enable
#system-working-mode standardxbar load-singlepassword-recovery enablelpu-type f-series
#scheduler logfile size 16
#domain default enable system
#
return

[r2]telnet server enable 
[r2]display this
#sysname r2
#telnet server enable
#system-working-mode standardxbar load-singlepassword-recovery enablelpu-type f-series
#scheduler logfile size 16
#domain default enable system
#
return

4.创建本地管理账号

[r1]local-user luoqi class manage 
New local user added.
[r1-luser-manage-maoqi]

5.创建密码

注：密码需要大于等于十个字符长度且至少包含两种不同类型的字符

[r1-luser-manage-wiltjer]password simple 123456.com

6.指定服务类型

[r1-luser-manage-wiltjer]service-type telnet 
[r1-luser-manage-wiltjer]dis
[r1-luser-manage-wiltjer]display this
#
local-user wiltjer class managepassword hash $h$6$VXDzEdcPZTk/WPiW$eu/4iKAk3rEnDn7UnN6atvg/vHgGrsC0RUSuFZ+KUdkFZZlglbW+lVeUKhByTR/l0zKE9U5Mn5/091P9cVS/CA==service-type telnetauthorization-attribute user-role network-operator
#
return

7.设置权限

给创建的账号设置权限等级，level-15可以直接设置为admin（代码中的admin可以换成level-15）

[r1-luser-manage-wiltjer]authorization-attribute user-role admin
[r1-luser-manage-wiltjer]display this
#
local-user wiltjer class managepassword hash $h$6$VXDzEdcPZTk/WPiW$eu/4iKAk3rEnDn7UnN6atvg/vHgGrsC0RUSuFZ+KUdkFZZlglbW+lVeUKhByTR/l0zKE9U5Mn5/091P9cVS/CA==service-type telnetauthorization-attribute user-role adminauthorization-attribute user-role network-operator
#
return

8.进入vty 0 4视图

[r1]user-interface vty 0 4

9.选择scheme模式

[r1-line-vty0-4]authentication-mode scheme

实验测试

在r2上：

输入r1端口号输入账号和密码

账号可见，密码是隐藏的！

<r2>telnet 192.168.12.1
Trying 192.168.12.1 ...
Press CTRL+K to abort
Connected to 192.168.12.1 ...******************************************************************************
* Copyright (c) 2004-2021 New H3C Technologies Co., Ltd. All rights reserved.*
* Without the owner's prior written consent,                                 *
* no decompiling or reverse-engineering shall be allowed.                    *
******************************************************************************Login: wiltjer
Password:

实验重要命令

telnet server enable						//开启telnet服务
local-user 【用户名】 class manage			//创建用户
password simple 【密码】						//创建简单密码
service-type telnet							//指定服务类型telnet
authorization-attribute user-role level-15	//设置用户权限为15
user-interface vty 0 4					    //设置用户人数为5人（0.1.2.3.4）
authentication-mode scheme			        //选择scheme模式，遵循该用户所属认证域所配置的 AAA 方案来进行认证