SSH on a Cisco 2801 - error after crypto command

Unanswered Question
May 6th, 2010

I'm attempting to set up ssh in lieu of telnet on a 2801 router.  It's running IOS 12.4(16a).

When I enter in this:

Routername(config)#crypto key generate rsa

I get this error: "Invalid input detected at '^' marker."

What am I doing wrong?  Thanks.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jon Marshall Thu, 05/06/2010 - 12:25

Jamie

You may not have the right feature set. Can you post output of "sh version".

Jon

jamie_5th Thu, 05/06/2010 - 12:38

RTR#show version
Cisco IOS Software, 2801 Software (C2801-IPBASE-M), Version 12.4(16a), RELEASE S
OFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Mon 10-Sep-07 10:27 by prod_rel_team

ROM: System Bootstrap, Version 12.4(13r)T, RELEASE SOFTWARE (fc1)

RTR4 uptime is 7 weeks, 1 hour, 32 minutes
System returned to ROM by reload at 18:22:49 UTC Thu Mar 18 2010
System image file is "flash:c2801-ipbase-mz.124-16a.bin"

Cisco 2801 (revision 7.0) with 113664K/17408K bytes of memory.
Processor board ID FTX1145W1CS
2 FastEthernet interfaces
3 Serial interfaces
3 Channelized T1/PRI ports
DRAM configuration is 64 bits wide with parity disabled.
191K bytes of NVRAM.
62720K bytes of ATA CompactFlash (Read/Write)

Configuration register is 0x2102

Jon Marshall Thu, 05/06/2010 - 12:56

jamie_5th wrote:

RTR#show version
Cisco IOS Software, 2801 Software (C2801-IPBASE-M), Version 12.4(16a), RELEASE S
OFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Mon 10-Sep-07 10:27 by prod_rel_team

ROM: System Bootstrap, Version 12.4(13r)T, RELEASE SOFTWARE (fc1)

RTR4 uptime is 7 weeks, 1 hour, 32 minutes
System returned to ROM by reload at 18:22:49 UTC Thu Mar 18 2010
System image file is "flash:c2801-ipbase-mz.124-16a.bin"

Cisco 2801 (revision 7.0) with 113664K/17408K bytes of memory.
Processor board ID FTX1145W1CS
2 FastEthernet interfaces
3 Serial interfaces
3 Channelized T1/PRI ports
DRAM configuration is 64 bits wide with parity disabled.
191K bytes of NVRAM.
62720K bytes of ATA CompactFlash (Read/Write)

Configuration register is 0x2102

Jamie

Do a "dir flash:" and look at the image name. I suspect it will be -

c2801-ipbase-mz.124-16a.bin

which is the IP BASE image without crypto. You need crypto for SSH so the image you want is -

c2801-ipbasek9-mz.124-16a.bin

Jon

jamie_5th Thu, 05/06/2010 - 15:08

Jon,

That was exactly it.  Thank you.

I downloaded the ipbasek9 .bin, and was able to upload that to the router's flash dir.  However, I wasn't prompted to overwrite the contents of flash, and after reloading, the router still shows it's running the c2801-ipbase-mz.124-16a.bin image (both image files are present in the flash directory).

Is there a way to manually force the router to boot from the new image file?  And this probably a dumb question... but after that is complete, will the router then load with a blank, default running config that I'll need to set up again?

Jamie

Jon Marshall Thu, 05/06/2010 - 15:51

jamie_5th wrote:

Jon,

That was exactly it.  Thank you.

I downloaded the ipbasek9 .bin, and was able to upload that to the router's flash dir.  However, I wasn't prompted to overwrite the contents of flash, and after reloading, the router still shows it's running the c2801-ipbase-mz.124-16a.bin image (both image files are present in the flash directory).

Is there a way to manually force the router to boot from the new image file?  And this probably a dumb question... but after that is complete, will the router then load with a blank, default running config that I'll need to set up again?

Jamie

Jamie

Add this to your config -

boot system flash flash:/

boot system flash flash:/

this will tell your router to boot up the first image ie. the new one if it can find it and if not try the old one. Make sure you type out the image name correctly.

And no you won't need to setup your config again, uploading a new IOS does not wipe out the config.

Jon

Jon Marshall Thu, 05/06/2010 - 16:14

jamie_5th wrote:

Got it.  Thanks Jon.

No problem, glad to have helped.

Jon

Actions

This Discussion

Related Content