Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

VRF aware IOS ssh client

Unanswered Question
Nov 22nd, 2006
User Badges:


since nowadays SSH is being deployed as one-and-only access method for IOS boxes in some installation, I'm somewhat struggling with the IOS ssh client:

Is there a way to tell the ssh client in which VRF it should do a lookup for the ssh server?

Something like the ssh equivalent of:

PE-box#telnet CE-box /vrf foo

There doesn't seem to be an option in the parser:

PE-box#ssh ?

-c Select encryption algorithm

-l Log in using this user name

-m Select HMAC algorithm

-o Specify options

-p Connect to this port

-v Specify SSH Protocol Version

WORD IP address or hostname of a remote system

Is anyone aware of a hidden one? Or is this feature road-mapped at least?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Pavel Bykov Mon, 07/23/2007 - 13:09
User Badges:
  • Silver, 250 points or more

Hmm... looked all over the place but could not find anything specific that might help.

Since IOS is based on UNIX, sometimes Cisco leaves out some features, that can be used, even though they are not documented (like searching in long output using "/" or filtering already displayed output with "+"). So i tried binding ssh to an interface, because that should achieve the goal, but to no avail... It does not recognize "-b" option.

But then again, i don't have much real world experience with VRFs

sanjeewa Mon, 07/23/2007 - 21:04
User Badges:
  • Cisco Employee,

Unfortunatly this feature is not yet available, CSCsa62544 is the ddts you should track, I *THINK* this would be available in 12.5T



oettls Tue, 07/24/2007 - 00:57
User Badges:

Hi Sanjeewa,

thanks for the info - though I had the hope that this would happen somewhat sooner ;-)

Can you make CSCsa62544 viewable for non-Cisco folks - at the moment no description is available ...



sanjeewa Tue, 07/24/2007 - 04:32
User Badges:
  • Cisco Employee,

Hi Stefan,

Nearly missed your reply :)

I shall try my best, the reason this is non-viewable from CCO is because of this not a defect but an internal software enhancement.

But I believe making it public viewable would help our customers.




This Discussion