Configuring Secure Shell on Cisco IOS Routers
来源:互联网 发布:厦门入学积分怎么算法 编辑:程序博客网 时间:2024/04/30 23:56
Hardware and Software Versions
The information in this document is based on the software version below.
Cisco IOS 3600 Software (C3640-IK9S-M), Version 12.2(2)T1
SSH was introduced into IOS platforms/images as shown below.
SSH Version 1.0 (SSHv1) server was introduced in some IOS platforms/images starting in 12.0.5.S.
SSH client was introduced in some IOS platforms/images starting in 12.1.3.T.
SSH terminal-line access (also known as reverse-telnet) was introduced in some IOS platforms/images starting in 12.2.2.T.
!--- aaa new-model causes the local username/password on the router
!--- to be used in the absence of other aaa statements.
aaa new-model
username cisco password 0 cisco
line vty 0 4
!--- Instead of aaa new-model, the login local command may be used.ip domain-name rtp.cisco.com
!--- Generate an SSH key to be used with SSH.
Testing Authentication With SSH:
cry key generate rsa
ip ssh time-out 60
ip ssh authentication-retries 2
ip domain-name rtp.cisco.com
!--- Generate an SSH key to be used with SSH.
cry key generate rsa
ip ssh time-out 60
ip ssh authentication-retries 2
line vty 0 4
!--- Prevent non-SSH telnets.
transport input ssh
ssh
!--- Step 1: Configure hostname if you have not previously done so.
hostname carter
!--- aaa new-model causes the local username/password on the router
!--- to be used in the absence of other AAA statements.
aaa new-model
username cisco password 0 cisco
!--- Step 2: Configure the router's DNS domain.
ip domain-name rtp.cisco.com
!--- Step 3: Generate an SSH key to be used with SSH.
cry key generate rsa
ip ssh time-out 60
ip ssh authentication-retries 2
!--- Step 4: By default the vtys' transport is Telnet. In this case,
!--- Telnet has been disabled and only SSH is supported.
line vty 0 4
transport input SSH
!--- Instead of aaa new-model, the login local command may be used.
测试ssh
ssh -l cisco -c 3des 10.13.1.99
###Adding SSH Terminal-Line Access ###
ip ssh port 2001 rotary 1
line 1 16
no exec
rotary 1
transport input ssh
exec-timeout 0 0
modem In Out
Stopbits 1
- Configuring Secure Shell on Cisco IOS Routers
- Configuring SNMP in Cisco Routers
- Improving Security on Cisco Routers
- Configuring IPv6 for Cisco IOS
- Configuring SSH Secure Shell for TCP Wrappers Support
- Exploiting Cisco Routers: Part 1
- Exploiting Cisco Routers: All Part 1-2
- Cisco Routers Compare Products And Solutions
- cisco Auto Secure configure
- Configuring the Cisco PIX Firewall
- Configuring Cisco Voice Over IP
- cisco NAC Appliance & cisco secure acs
- SSH Secure Shell Client
- SSH Secure Shell
- SSH Secure Shell
- SSH Secure Shell Client
- SSH Secure Shell 使用:
- ssh ( Secure Shell )学习
- Windows操作系统下面利用C++语言进行内存共享程序的编写
- Use a Static Route to the Null0 Interface for routing Loop
- win2k下svnsync不能使用的临时的解决办法
- 设置Router阻击红色代码!
- Cisco’s QoS Device Manager
- Configuring Secure Shell on Cisco IOS Routers
- 关于AI的经典网址
- modem池配置
- Visual Studio .NET已检测到指定的Web服务器运行的不是ASP.NET 1.1 版问题的解决
- BGP学习精华
- IS-IS 中文说明
- cisco 28xx 安全配置示例
- Cisco网站的CCIE R&S资源资源导航
- good ebook net