cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
322
Views
0
Helpful
2
Replies

Enabling SSH

patrick.hurley
Level 3
Level 3

Are the following commands enough to configure ssh for allowing access from outside for full access to enable mode?

ssh 0.0.0.0 0.0.0.0 outside

cryto key generate rsa modulus 1024

aaa authentication ssh console LOCAL

username (username) password (password) privilege 15

2 Replies 2

Istvan_Rabai
Level 7
Level 7

Hi Patrick,

For ssh access through the vty lines you could add the following:

conf t

aaa authentication login SSH_LOGIN local

aaa authorization exec SSH_ACCESS local

line vty 0 4

login authentication SSH_LOGIN

authorization exec SSH_ACCESS

transport input ssh

Cheers:

Istvan

Farrukh Haroon
VIP Alumni
VIP Alumni

Assuming this is a Cisco firewall you are talking about, these commands should suffice.

However the ANY ANY access on the outside is not really a good security practice. But it will work!

Regards

Farrukh

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: