Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

IPSec & SSH IOS

Hi! I am looking for a stable IOS version to run both SSH & IPSec. I was intending to use 12.1(5) for IPSec but apparently SSH is not supported on that IOS version.

Any comments will be most appreciated.

5 REPLIES
New Member

Re: IPSec & SSH IOS

What platform? I can look it up on IOS planner. There is no GD code on any platform that supports both. It’s all ED.

New Member

Re: IPSec & SSH IOS

SSH DOES NOT work correctly even in their latest 12.2-2 I just received from their IOS group. It allows the SSH server to start but does not allow an SSH session (Client request) from router to router. The server portion from a software client connecting in does work, I use SecureCRT as the client.

New Member

Re: IPSec & SSH IOS

Thanks for that. I am intending to use SecureCRT as the client and use the router (1750, 2611, 3640 & 7120) as the server. Do you have any configuration examples/recommendations.

New Member

Re: IPSec & SSH IOS

I think the reason ssh does not work is because of the don't frag bit being turned on and when the certificates are exchanged the packets with the ipsec headers exceed the mtu. 12.2 has a new command for it : crypto ipsec df-bit [clear | set | copy] i have not tried yet to see how well it works though

New Member

Re: IPSec & SSH IOS

182
Views
0
Helpful
5
Replies