Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

SSH from Cisco Router to another Cisco Router

I believe I already know what the issue is but wanted to confirm.

I recently changed the configuration of the routers so that all incoming SSH connections can only be done via the specified port:

ip ssh port xxxx rotary 10

created an ACL and everything works beautifully with Putty.  When I try to SSH from a router to another router it sits there and the ACL permits the connection but nothing happens.

I use ssh -p xxxx NAME.

I assume this is because of the cert not being recognized by the connecting router?

1 ACCEPTED SOLUTION

Accepted Solutions

Re: SSH from Cisco Router to another Cisco Router

Yes I did.  I tried ssh -l username -p xxxx ipaddress

Hi,

What is ios version and model name

Ganesh.H

4 REPLIES
New Member

Re: SSH from Cisco Router to another Cisco Router

have you tried the -l option with a username?

Regards,

Brandon

New Member

Re: SSH from Cisco Router to another Cisco Router

Yes I did.  I tried ssh -l username -p xxxx ipaddress

Re: SSH from Cisco Router to another Cisco Router

Yes I did.  I tried ssh -l username -p xxxx ipaddress

Hi,

What is ios version and model name

Ganesh.H

Bronze

Re: SSH from Cisco Router to another Cisco Router

Hi,

I'm afraid you misunderstood the purpose of ip ssh port:

To enable secure access to tty (asynchronous) lines, use the ip ssh port command in global configuration mode. To disable this functionality, use the no form of this command.

ip ssh port por-tnum rotary group

no ip ssh port por-tnum rotary group

The result of your command

ip ssh port xxxx rotary 10

is, that incoming ssh sessions destined to your secret port xxxx will be forwarded to a vacant async interface belonging to rotary group 10. That is: anything you type into your ssh client will be sent out as an asynchronous character to the async interface to which the ssh session is connected to. Now I assume that you dont have

What you might want to try is the command rotary which allows to put vty into a rotary group

line vty 2 4
 rotary 10
 login local 

Rgds, MiKa

Message was edited by: m.kafka (added line vty rotary)

65518
Views
5
Helpful
4
Replies
CreatePlease to create content