Cisco 2501 - Router - EN Manual do Utilizador descarregar pdf (Página 31)

Router and Switch Administrative Configurations

209

Todd(config)#ip domain-name Lammle.com

Todd(config)#username todd password todd

Todd(config)#crypto key generate rsa general-keys modulus 1024

Todd(config)#line vty 0 4

Todd(config-line)#login local

Todd(config-line)#transport input SSH

Verifying the SSH service on your router

If you configure the basic SSH commands on your router, the router will now act as a SSH

server and any host that can run a SSH client can connect. It’s relatively simple.

From the router CLI, use the command ssh –l username IP_ address. The username is

the username created on the Todd router. You will then be prompted for a password, which

is the password configured with the username command. Here is an example of using a SSH

client on a Cisco router to connect to the Todd router that I configured above:

Sally#ssh 192.0.2.157

% No user specified nor available for SSH client

Sally#ssh -l todd 192.0.2.157

Trying 192.0.2.157...Open

Password:

Todd>

Notice that without the username specified that login is not allowed. Also, understand that

the hostname of the router is irrelevant to the username set on the router.

Let’s take a look at encrypting our passwords.

Encrypting Your Passwords

Because only the enable secret password is encrypted by default, you’ll need to manually

configure the user-mode and enable passwords for encryption.

Notice that you can see all the passwords except the enable secret when performing a show

running-config on a router:

Todd#sh running-config

Building configuration...

[output cut]

enable secret 5 $1$2R.r$DcRaVo0yBnUJBf7dbG9XE0

enable password todd

47020.book Page 209 Wednesday, January 2, 2008 4:31 PM

1 2 ... 26 27 28 29 30 31 32 33 34 35 36 ... 75 76

Sem comentários

Cisco 2501 - Router - EN Manual do Utilizador Página 31