configuring ssh

From: Jo Johnson (groupstudyjo@gmail.com)
Date: Fri Feb 16 2007 - 12:13:26 ART

• Next message: Joe Yohannan: "RE: configuring ssh"
• Previous message: Stefan Grey: "Port-security on the switch interesting question.."
• Next in thread: Joe Yohannan: "RE: configuring ssh"
• Maybe reply: Joe Yohannan: "RE: configuring ssh"
• Maybe reply: Victor Cappuccio: "RE: configuring ssh"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi all,

Can someone give me some feedback on my configuration below. I am trying to
configure ssh and having some trouble understanding the doc cd's
explanation.

If I want to configure ssh on a device and restrict telnet access, I think
I would use the below configuration. Also, what if I wanted to restrict
other access, such as the global config mode, enable mode, etc:

hostname R1

ip domain-name cisco.com

ip ssh version 2

username ccie password cisco

access-list 2 permit 130.10.22.0

line vty 0 4

 access-class 2 in

 no login

 transport input ssh

line vty 5 15

 access-class 2 in

 no login

 transport input ssh

To configure both version 1 and 2 use the, no ip ssh version command and for
version 1 only, ip ssh version 1 command.

Thanks,

Jo

• Next message: Joe Yohannan: "RE: configuring ssh"
• Previous message: Stefan Grey: "Port-security on the switch interesting question.."
• Next in thread: Joe Yohannan: "RE: configuring ssh"
• Maybe reply: Joe Yohannan: "RE: configuring ssh"
• Maybe reply: Victor Cappuccio: "RE: configuring ssh"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Mar 01 2007 - 07:38:46 ART