Zte ZXR10 2900E Series - Chapter 6 Management; Ssh

To Next Page

To Previous Page

Chapter6Management

192.168.1.1/255.255.255.255snmp,telnet,ssh,web

zte(cfg)#setremote-accessipaddress192.168.1.1255.255.255.255snmpdeny

zte(cfg)#setremote-accessipaddress192.168.1.1255.255.255.255webdeny

zte(cfg)#showremote-access

Whethercheckremotemanageaddress:YES

Allowableremotemanageaddress(es)andapplication(s):

192.168.1.1/255.255.255.255telnet,ssh

6.2SSH

SSHOverview

TheSecureShell(SSH)isaprotocolcreatedbytheNetworkWorkingGroupoftheInternet

EngineeringTaskForce(IETF),whichisusedtooffersecureremoteaccessandother

securenetworkservicesoveraninsecurenetwork.

TheinitialpurposeoftheSSHprotocolistosolvethesecurityproblemsininterconnected

networks,andtoofferasecurersubstituteforTelnetandRlogin,althoughthepresent

developmentoftheSSHprotocolhasfarexceededremoteaccess.So,theSSH

connectionprotocolshouldsupportinteractivesessions.

TheSSHcanbeusedtoencryptalltransmitteddata.Evenifthesedataisintercepted,no

usefulinformationcanbeobtained.

Atpresent,theSSHprotocolhastwoincompatibleversions:SSHv1.xandSSHv2.x.The

ZXR102900EonlysupportsSSHv2.0andusesthepasswordauthenticationmode.The

SSHusesTCPport22.

ConguringSSH

TheSSHcongurationincludesthefollowingcommands:

CommandFunction

zte(cfg)#setssh{enable|disable}EnablesordisablesSSH.

zte(cfg)#setsshregenerateGeneratesanewSSHkey.

zte(cfg)#setsshsftp{enable|disable}EnablesordisablestheSFTP

serverfunction.

showssh(allcongurationmodes)DisplaystheSSHconguration

andstatus.

SSHCongurationInstance

lCongurationDescription

SeeFigure6-1,onecomputerattemptstoaccesstheswitchthroughSSH.Theswitch

isconguredwithalayer-3port.TheIPaddressoftheportis192.168.1.1/24,and

theIPaddressofthecomputeris192.168.1.100/24.

6-3

SJ-20130731155059-002|2013-11-27(R1.0)ZTEProprietaryandCondential

Other manuals for Zte ZXR10 2900E Series