The Telnet protocol is capable of remotely managing network devices or computers over LAN or WAN. It is still popular today because it was one of the first protocols used with the launch of the Internet in 1969.
What is Telnet?
Telnet is an abbreviation of “teletype network”, “terminal network” or “telecommunications network”.
TELecommunication NETwork is one of the oldest protocols on the Internet, extends to the time of ARPANET and is used to connect to a remote computer over the Network so that the client computer acts as a terminal connected to the remote computer.
All it takes is a Telnet client. Using pre-web computing terminology, we can say that a client is actually a teleprocessor terminal emulation program adapted to the Internet system, that is, the TCP / IP protocol.
Introduction to the Protocol
Telnet is a standard Internet protocol that allows terminals and applications to connect to the Internet. The protocol provides basic rules that allow a client (a system consisting of a screen and keyboard) to connect with a command interpreter (on the server-side). It is implemented over a TCP connection to send data in an 8-bit encoded ASCII format with verification sequences between them. Thus, it provides an easy-to-implement 8-bit coded, bidirectional (half-duplex) communication system.
This protocol is used to configure remote hosts. So, for example, you use Serial Cable to initially configure a Cisco Router, and then you can configure this protocol remotely from the local or remote network without being next to this device.
Telnet protocol is based on three basic concepts:
Virtual Network Terminal (NVT) paradigm.
The principle of options negotiated.
The trading rules.
This is a basic protocol to which other protocols of the TCP/IP set (FTP, SMTP, POP3, etc.) are implemented. It does not mention authentication because it is completely separate from the applications that use it. Also, it is not a secure data transfer protocol because the data it transmits travels over the network as unencrypted text. Port 23 is assigned to this protocol when it is used to connect the remote host to a computer running as a server.
Apart from the associated options and negotiation rules, these protocol features are essential. Data transmission consists of only byte transmission in the TCP stream. When byte 255 is transmitted, the next byte should be interpreted as a command. Therefore, byte 255 is called IAC (Interpret as Command).
The basic features of the Telnet protocol are available in RFC 854.
How Does It Work?
To use Telnet, it is very important to note that its client has two ways to work: Command mode and normal use mode. Command mode allows you to use a series of commands that affect the operating mode, including connection and disconnection.
These commands include:
CLOSE: Closes the Telnet connection to the remote computer and returns to command mode (if started in command mode) or closes the application.
QUIT: Sign out of the Telnet session. If you are connected to a remote computer, this command closes the connection and then the application.
SET ECHO: If we cannot see what we are writing or, on the contrary, we double it, this command corrects the situation.
OPEN: This command establishes a connection to a remote computer.
In normal mode, our equipment behaves like the keyboard of the computer we connect to. Each keystroke is sent to the remote device, and what we see on the screen is the echo that the remote equipment actually sends to us in response to this signal.
When you are in normal mode and want to go into command mode (for example, to end the session using QUIT), you must send the escape character. In turn, we are in command mode and if we press CR or Enter, we exit the mode and return to normal mode.
Telnet only serves terminal mode, i.e. without graphics access, but it is a very useful tool for remotely correcting errors without having to be physically in the same place as the machine they own. In addition, personal data on machines accessible by the Internet were used to consult data such as bibliographic information remotely.
Apart from these uses, in general, Telnet was used to log in with a UNIX machine (and it can still be used in the SSH variant today), so multiple users who have an account on the machine, connect, login and work using this machine. It is a very usual way of working with UNIX systems.
Given the above, the first action for Telnet on a remote system would be to connect (“Login”). The client program initiates a negotiation with the host that we want to access the negotiation involving the creation of certain methods and features of the transmission/service to be used. For this, it is necessary to provide the customer with a few initial data that you need to know:
Name: Refers to the server’s IP Address numerically or URL form. For example 192.168.0.1.
Port Number: Specifies the service you want to access on the server. An address with an additional port number allows access to not only the remote computer but also to a particular service or program within it. Unless otherwise stated, the default number is 23 (normally used to connect to a user access account). During connection, the number can be added after the name or in a separate box, depending on the program.
Terminal Type: Terminal identification is a contract used by both the client machine and the server with reference to the specific features and queues to be used. In this way, a virtual terminal is used regardless of what the physically used terminal actually is. From the customer’s point of view, identification should be done in two parts.
a: It is shown to the client program, which acts as a particular type of virtual terminal.
In MS Telnet v.1.0, this is done in Terminal Preferences Emulation. You can choose two types: 52 and 100 / ANSI.
b: Sets what type of terminal we will use on the server. This is a string of characters that is sent to the host during the connection negotiation.
In MS Telnet v.1.0, it is specified in the Connect, Remote system, Terminal type section. The available options are typical character strings (the most standard is VT100) that a host expects during this call.
Login: In some services, login and password are not required because the server does not require them for that service.
Password: The password that authenticates the user. You can enter your own e-mail address for general services that accept guests (visiting users).
Log-Off: The last step at the end of a session on a remote system is to log out before physical connection is interrupted, so as not to leave a session open indefinitely on the host computer (it always consumes system resources). The concrete form depends on the system. There are no fixed rules, but on some systems, at the entrance, along with a welcome message, the appropriate word for disconnection is indicated. Usually, it is one of the following:
BYE, LOGOFF, LOGOUT, QUIT, END, EXIT, STOP. CLOSE first, the escape sequence comes. ABORT, escape sequence before (Use as a last resort).
Both Unix and Windows have their own clients: Telnet.exe. In the case of Windows, you can find it in the C: \ Windows directory. This program has Telnet.chm, a good help file with all the details necessary for its operation.
The usual thing is that it involves connecting with large computers (hosts, hosts, servers, etc.), at companies, universities, research centers and similar sites (usually Unix machines). Therefore, it is not a problem to connect to the neighbor’s computer over the Internet (there are other types of tools for this). The reason for the connection is not Web services, from a researcher who wants to continue the workday away from home, to a user who only requests service on a host that can be accessed this way.
The first idea to consider is not to connect to a PC, as we said, but to huge machines with dozens, sometimes hundreds of users. For security reasons, nobody can access these systems. The process is done by granting a right (access account) issued by the system administrator, which expresses a wide range of conditions.
For example, the dates and times we can connect; directories we can visit/use; if we can register for them or just read; how much information we can save. To identify each user with an account opened in the system, a name (nickname) identifying the user or service and an access key (password) that authenticates are used.
It is important to know how to work with Telnet on a remote computer, after communication. There is no point in connecting to a remote machine without knowing the Operating System and the application program we should use to a minimum.
For security reasons, there are three main reasons why Telnet is not recommended for modern systems:
Telnet General Purpose Domains have several vulnerabilities that have been discovered over the years and still exist.
Telnet does not encrypt data (including passwords) sent over the connection by default, so it’s easy to interfere and save communications and use the password for malicious purposes later.
Telnet does not have an authentication scheme that allows communication between two desired hosts and is not interrupted.
The biggest problem is security, as all the usernames and passwords required to enter the machines browse the Internet in Plain Text (unencrypted text strings). This makes it easy for anyone who spies on network traffic to get usernames and passwords so they can access all these machines. Therefore, SSH appeared almost a few years ago when it emerged and became popular as an encrypted version of Telnet – at the moment all protocol communications can be encrypted during session setup.
Where Not Used?
Telnet should not be used in environments where security is important, for example on the public internet, because sessions are not encrypted.
This means that anyone who has access to any Router, Switch, or Gateway on the Network between two hosts using Telnet can capture packets passing close by and easily get connection and password information with any of the few common ones, such as TCPDump and Wireshark.
These flaws resulted in the rapid abandonment and depreciation of the Telnet protocol in favor of a safer and functional protocol called SSH launched in 1995. SSH provides all the functionality available in Telnet and strong encryption is added to prevent data sensitivity.
Computer security experts such as the SANS Institute and members of the comp.os.linux.security newsgroup recommends stopping Telnet usage for remote connections under all normal conditions.
When Telnet was first developed in 1969, the majority of Internet computer users were in the computer services of academic institutions or large private and government research facilities. Security was not a cause for concern in this environment, and only after the explosion of the 90’s bandwidth was a cause for concern. It may not be recommended to use Telnet in networks with an Internet connection, by multiplying the number of people with Internet access and by the number of people trying to break other people’s servers.
Today, this protocol is also used to access BBSs that was initially only accessible via a modem via a telephone line. To access BBS over Telnet, the Client must support ANSI graphics and file transfer protocols. ANSI charts are widely used among BBS. With file transfer protocols (the most common and best employee is ZModem), you can send and receive files from the BBS, whether it’s a program, a game, or a BBS (local mail, mail from FidoNet).
Some Telnet clients; (Supporting ANSI graphics and file transfer protocols such as Zmodem and others) mTelnet !, NetRunner, Putty, Zoc.
You can configure all network devices using the TCP/IP protocol with this protocol. In addition, a user name and password are required when connecting to a remote device.
When you transfer data with this protocol, it is an unsafe protocol because of your data sends as Clear Text. Instead of using Telnet over the network, SSH protocol is preferred.
How to Use It?
To use telnet, it must first be enabled on a host to be managed. After you enable it, you can easily connect to your remote host via the TCP 23 port with Command Prompt (CMD).
There are two different structures to use/configure the Telnet protocol. These; Server and Client. If you configure a server, you must install or activate the Client service to connect to it remotely.
After the definition of Telnet, now let’s examine how to use Telnet in Windows 10.
In this article, after enabling Telnet Client, we will provide a connection to the active Telnet Server on the ADSL Router.
How to Enable Telnet on Windows 10
You can easily enable and use it on Microsoft Win XP, Vista, 7, 8, 8.1, and 10 operating systems.
Follow the steps below to activate/install the Telnet Client.
Right-click on the Start menu, and then click Programs and Features.
In the Programs and Features, click Turn Windows features on or off.
When the Windows features open or close window opens, select the Telnet Client option.
After selecting the Client option, press the OK button.
Applying changes to your system …
After installing the service, click on the Close button.
Open the Run by pressing the Windows Key + R together, type “cmd” and press the Enter key. After running the CMD prompt, type “telnet” at the command prompt and press Enter to start this service.
After you see the welcome message, you can see that it works successfully.
Now, type O (o) at the CMD prompt to connect to the ADSL Router on the local area network and press Enter.
Type your default gateway IP address to access the ADSL Modem and press Enter.
When you look at the image below, you can see a successful connection to an ADSL router using CMD.
How to Enable it using CMD
Another way to enable this service is to use the CMD command prompt. You can enable or disable it by using the CMD command prompt.
The DISM command is used on the CMD to activate the client. Execute the command below to install Telnet with CMD on the Windows operating system.