248
Enabling NETCONF over SSH
This feature allows users to use a client to perform NETCONF operations on the device through a
NETCONF-over-SSH connection.
To enable NETCONF over SSH:
1. Enter system view.
system-view
N/A
2.
SSH.
netconf ssh server enable
By default, NETCONF over SSH is
disabled.
3. Specify a port to listen for
NETCONF-over-SSH
connections.
netconf ssh server port
port
number
B
y default, port 830 listens for
NETCONF-over-SSH connections.
Enabling NETCONF logging
NETCONF logging generates logs for different NETCONF operation sources and NETCONF
operations.
To enable NETCONF logging:
1. Enter system view.
N/A
2. Enable NETCONF logging.
netconf log source
{
all
|
{
agent
|
soap
|
web
} * }
{ {
protocol-operation
{
all
|
{
action
|
config
|
get
|
set
|
session
|
syntax
|
others
} * } } |
verbose
}
By default, NETCONF logging is
disabled.
Establishing a NETCONF session
A client must send a hello message to a device to finish capabilities exchange before the device
processes other requests from the client.
The device supports a maximum of 32 NETCONF sessions. If the upper limit is reached, new
NETCONF users cannot access the device.
Setting the NETCONF session idle timeout time
This feature is available in Release 1121 and later.
If no NETCONF packets are exchanged on a NETCONF session within the NETCONF session idle
timeout time, the device tears down the session.
To set the NETCONF session idle timeout time: