Can anyone briefly tell me how to do this without hanging myself out of the box . We have basically been tasked with adding ssh access on both IOS and Catos boxes . I have read thru the cisco documents been its not entirely clear what needs to be done , specially on catos. Can you enable SSH on a catos box without having to use permit lists ? Also on IOS how do you restrict access to ssh only with hanging yourself out of the box , do have to enable SSH and then go back and remove the transport input telnet commnad after the fact ? Our first problem is going to be we have to upgrade hundreds of boxes in order to even run this . Just thought maybe someone could put this in plain english instead of overly complicated ciscospeak . thanks for any help ....
You have to enable " ip permit list " on cat OS boxes to configure the SSH. Also, on Cat4000 Cat OS supports only SSH Ver1, SSH ver2 is not supported. If you have Cat6500 with CatOS SSH ver2 is supported starting with 8.3.x
In playing with ssh on a catos box it appears though you can ssh into a catos box , you cannot ssh from a catos box to another box as the ssh command is not present even in the crypto version of the code , does this sound correct?
I'd just expand on what someone else said, you can use the "transport input all" command and then confirm ssh is working, this way you can always telnet if there is anything wrong. Once you're sure everything is okay you can change that to "transport input ssh" which effectively turns off telnet access.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...