Chapter 33 System Remote Management
ZyWALL (ZLD) CLI Reference Guide
214
33.3 SSH
Unlike Telnet or FTP, which transmit data in clear text, SSH (Secure Shell) is a secure
communication protocol that combines authentication and data encryption to provide secure
encrypted communication between two hosts over an unsecured network.
33.3.1 SSH Implementation on the ZyWALL
Your ZyWALL supports SSH versions 1 and 2 using RSA authentication and four encryption
methods (AES, 3DES, Archfour and Blowfish). The SSH server is implemented on the
ZyWALL for remote management on port 22 (by default).
33.3.2 Requirements for Using SSH
You must install an SSH client program on a client computer (Windows or Linux operating
system) that is used to connect to the ZyWALL over SSH.
33.3.3 SSH Commands
The following table describes the commands available for SSH. You must use the configure
terminal
command to enter the configuration mode before you can use these commands.
Table 130 Command Summary: SSH
COMMAND DESCRIPTION
[no] ip ssh server Allows SSH access to the ZyWALL CLI. The
no
command disables SSH access to the ZyWALL
CLI.
[no] ip ssh server cert certificate_name Sets a certificate whose corresponding private
key is to be used to identify the ZyWALL for SSH
connections. The
no command resets the
certificate used by the SSH server to the factory
default (default).
certificate_name: The name of the
certificate. You can use up to 31 alphanumeric
and ;‘~!@#$%^&()_+[]{}’,.=-
characters.
[no] ip ssh server port <1..65535> Sets the SSH service port number. The no
command resets the SSH service port number to
the factory default (22).
ip ssh server rule {<1..32>|append|insert
<1..32>} access-group {ALL|address_object} zone
{ALL|zone_object} action {accept|deny}
Sets a service control rule for SSH service.
address_object: The name of the IP address
(group) object. You may use 1-31 alphanumeric
characters, underscores(
_), or dashes (-), but the
first character cannot be a number. This value is
case-sensitive.
zone_object: The name of the zone. You may
use 1-31 alphanumeric characters,
underscores(
_), or dashes (-), but the first
character cannot be a number. This value is
case-sensitive.
ip ssh server rule move <1..32> to <1..32> Changes the index number of a SSH service
control rule.
To Next Page
Loading...
