Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

IOS image k9 and other client security issues

Hi - I downloaded an image for a Cat2960 that has k9 in the image name. I upgrade the ios and after sh run, I saw the crypto info. Does crypto need to be turned on? It doesn't appear to be on because my file access did not slow down. Also I want to set up crypto to another Cat2960 and Cat1841 router. Thanks - Dave

6 REPLIES

Re: IOS image k9 and other client security issues

David,

The crypto runs strictly in the switch. Having the crypto IOS allows you to establish a secure connection to the switch Via SSH, or HTTPS. The crypto image does not perform encryption to your actual data.

HTH,

Mark

New Member

Re: IOS image k9 and other client security issues

Hi Thanks for the reply. Does the switch I have support encryption to a router like the Cat1841 or is encryption only between routers?

Re: IOS image k9 and other client security issues

You will need another router with a crypto IOS to create a VPN encrypted tunnel between the two routers. The switch is unable to perform VPN encryption.

New Member

Re: IOS image k9 and other client security issues

Hi - Thanks for the info. I have another issue with my switch and lan setup. My client computer needs to send the data across our network to connect to a vendor router. He wants to have it encrypted. Do you have any suggestions? I am going to setup "protected ports"(no forwarding of info) and "port security"(port set to mac address). This isn't encryption. Thanks - Dave

New Member

Re: IOS image k9 and other client security issues

Hi. Your answers have help my situation so my post can be considered resolved. If you come up with an answer to my previous question, that would be great. Thanks - Dave

Re: IOS image k9 and other client security issues

With your current setup I don't believe it can be done in a hardware configuration. Your best bet would be use a third party SSH tunneling software between the clients. I've never used this before but the only thing that came to mind.

HTH,

Mark

131
Views
0
Helpful
6
Replies