Chapter8NetworkManagement
Example2:Onlyallowthenetworkmanagementusertoaccess
theswitchfrom10.40.92.212throughTelnetSSHSNMPWeb.
zte(cfg)#setremote-accessspecific
zte(cfg)#setremote-accessipaddress10.40.92.212
zte(cfg)#showremote-access
Whethercheckremotemanageaddress:YES
Allowableremotemanageaddress(es)andapplication(s)::
10.40.92.212/255.255.255.255snmp,telnet,ssh,web
Example3:Allowthenetworkmanagementusertoaccessthe
switchfromanyIPaddressthroughT elnetSSHSNMPWeb.
zte(cfg)#setremote-accessany
zte(cfg)#showremote-access
Whethercheckremotemanageaddress:NO
Allowableremotemanageaddress(es)andapplication(s):
any
SSH
SSHOverview
Thesecureshell(SSH)isaprotocolcreatedbyNetworkWorking
GroupoftheIETF ,whichisusedtooffersecureremoteaccessand
othersecurenetworkservicesoveraninsecurenetwork.
ThepurposeoftheSSHprotocolistosolvethesecurityprob-
lemsininterconnectednetworks,andtoofferasecurersubstitute
forTelnetandRlogin(Althoughthepresentdevelopmentofthe
SSHprotocolhasfarexceededtheremoteaccessfunctionscope),
therefore,theSSHconnectionprotocolshallsupportinteractive
session.
TheSSHcanbeusedtoencryptalltransmitteddata.Evenifthese
dataisintercepted,nousefulinformationcanbeobtained.
Atpresent,theSSHprotocolhastwoincompatibleversions:SSH
v1.xandSSHv2.x.ThisswitchonlysupportsSSHv2.0anduses
thepasswordauthenticationmode.TheSSHusesport22.
BasicConfigurationofSSH
TheSSHcongurationontheswitchincludesthefollowingcon-
tents:
CommandFunction
zte(cfg)#setssh{enable|disable}Thisenablesordisables
SSH.
zte(cfg)#showsshThisdisplaystheSSH
congurationand
status.
CondentialandProprietaryInformationofZTECORPORATION195
To Next Page
Loading...
