telnet [ip]
The telnet command establishes an unencrypted remote terminal session to another network device using the Telnet protocol, typically for remote management and troubleshooting.
telnet [ip]When to Use This Command
- Remotely managing a router or switch from a management workstation
- Troubleshooting connectivity to a remote device by verifying TCP port 23 reachability
- Accessing a device's CLI when console access is not available
- Verifying that Telnet service is enabled and reachable on a target device
Command Examples
Basic Telnet to a remote router
telnet 192.168.1.1Trying 192.168.1.1 ... Open User Access Verification Username: admin Password: Router>
The 'Trying' line indicates the router is attempting to connect. 'Open' means the TCP connection succeeded. The router then prompts for username and password. After successful authentication, the user is placed in user EXEC mode (Router>).
Telnet with a specific source interface
telnet 10.0.0.1 /source-interface loopback0Trying 10.0.0.1 ... Open User Access Verification Username: admin Password: Router>
The /source-interface option forces the Telnet session to use the IP address of Loopback0 as the source. This is useful when you need to match ACLs or routing policies that depend on the source IP.
Understanding the Output
The Telnet command output begins with 'Trying <ip> ...' indicating the connection attempt. If successful, 'Open' appears, followed by the login prompt. The login process is identical to a console session. If the connection fails, you may see 'Connection refused' (Telnet disabled or ACL blocking) or 'Timeout' (no route or host down). In a real network, a successful Telnet means the remote device is reachable and its VTY lines are configured for Telnet access. Always verify that the remote device has 'transport input telnet' on its VTY lines and that an ACL is not blocking the source IP.
CCNA Exam Tips
CCNA exam tip: Telnet is unencrypted; SSH is the secure alternative. The exam may ask you to choose SSH over Telnet for security.
CCNA exam tip: The 'transport input telnet' command under VTY lines enables Telnet; if missing, Telnet will be refused.
CCNA exam tip: You can use 'telnet' from user EXEC mode; no need to enter privileged EXEC first.
CCNA exam tip: The /source-interface option is a Cisco IOS extension; the exam may test your knowledge of specifying a source IP for Telnet.
Common Mistakes
Mistake 1: Forgetting to configure 'transport input telnet' on VTY lines, causing 'Connection refused'.
Mistake 2: Trying to Telnet to a device that has an ACL blocking TCP port 23 from the source IP.
Mistake 3: Using Telnet over the internet without encryption, exposing credentials in plaintext.
Practice for the CCNA 200-301
Test your knowledge with hundreds of CCNA practice questions covering all exam domains.
Practice CCNA Questions