28 August 2009

SSH+Login+IOS

Bom, como sabemos só usa telnet quem é louco, corajoso ou quem não sabe o que faz. Dito isso, demonstro em poucas linhas como habilitamos o acesso via ssh em um router, switch etc.

Go, plugue seu rollover!

router> en
router#
router# conf t
router(config)# line vty 0 4
router(config-line)# login local
router(config-line)# transport input ssh
router(config-line)# exit
router(config)# username admin password aloha01
router(config)# ip domain-name aloha.com
router(config)# crypto key generate rsa
router(config)# ip ssh time-out 60
router(config)# ip ssh authentication-retries 2
router(config)# ip ssh version 2
router(config-line)# ^Z
router# show crypto key mypubkey rsa

Com isso temos um acesso SSH em nosso router|switch.

[*] troubleshooting|resolução de problemas:

router# debug ip ssh
router# show ssh
router# show ip ssh

A global configuration mode command used to generatethe security keys used by SSH:
crypto key generate rsa general-keys modulus modulus-size

A global configuration mode command used to specify the SSH timeout (that is, how many seconds the router waits onthe SSH client):
ip ssh timeout seconds

A global configuration mode command used to specify the number of SSH authentication retries before an interfaceis reset:
ip ssh authentication-retries number

A line configuration mode command used to prevent Telnet sessions on vty lines:
no transport input telnet

A line configuration mode command used to permit SSH connections on vty lines:
transport input ssh




biOos
Posted by at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)