09-17-2008 06:30 PM - edited 03-10-2019 04:05 PM
Are the following commands enough to configure ssh for allowing access from outside for full access to enable mode?
ssh 0.0.0.0 0.0.0.0 outside
cryto key generate rsa modulus 1024
aaa authentication ssh console LOCAL
username (username) password (password) privilege 15
09-17-2008 08:26 PM
Hi Patrick,
For ssh access through the vty lines you could add the following:
conf t
aaa authentication login SSH_LOGIN local
aaa authorization exec SSH_ACCESS local
line vty 0 4
login authentication SSH_LOGIN
authorization exec SSH_ACCESS
transport input ssh
Cheers:
Istvan
09-18-2008 12:28 AM
Assuming this is a Cisco firewall you are talking about, these commands should suffice.
However the ANY ANY access on the outside is not really a good security practice. But it will work!
Regards
Farrukh
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: