Cisco 2501 - Router - EN Manual do Utilizador descarregar pdf (Página 30)

208

Chapter 4

Introduction to the Cisco IOS and SDM

Set the domain name (both the hostname and domain name are required for the encryp-

tion keys to be generated):

Todd(config)#ip domain-name Lammle.com

Create a username and password on the router for login:

Todd(config)#username todd password lammle

Generate the encryption keys for securing the session:

Todd(config)#crypto key generate rsa general-keys modulus ?

<360-2048> size of the key modulus [360-2048]

Todd(config)#crypto key generate rsa general-keys modulus 1024

The name for the keys will be: Todd.Lammle.com

% The key modulus size is 1024 bits

% Generating 1024 bit RSA keys, keys will be non-exportable...[OK]

*June 24 19:25:30.035: %SSH-5-ENABLED: SSH 1.99 has been enabled

Optionally set the max idle timer for a SSH session:

Todd(config)#ip ssh time-out ?

<1-120> SSH time-out interval (secs)

Todd(config)#ip ssh time-out 60

Optionally set the max failed attempts for an SSH connection:

Todd(config)#ip ssh authentication-retries ?

<0-5> Number of authentication retries

Todd(config)#ip ssh authentication-retries 2

Connect to the VTY lines of the router:

Todd(config)#line vty 0 1180

Configure the lines for local authentication:

Todd(config-line)#login local

Last, configure SSH as the access protocol:

Todd(config-line)#transport input ssh

If you want to use either SSH or Telnet on the device, then use the keyword telnet at the

end of the command string:

Todd(config-line)#transport input ssh telnet

Here is a summary of the minimum SSH commands (it would be wise to remember this):

Router#config t

Router(config)#hostname Todd

47020.book Page 208 Wednesday, January 2, 2008 4:31 PM

1 2 ... 25 26 27 28 29 30 31 32 33 34 35 ... 75 76

Sem comentários

Cisco 2501 - Router - EN Manual do Utilizador Página 30