Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

Configuring SSH on our WAN routers...

Hello, we are running two 2610's for a our WAN connectivity. The image version is 12.3 (6c).

From priviledged mode, when I type sh ssh, I get nothing in return.

Is there another ios image I need to upgrade to inorder to run ssh?

TIA,

Gary

3 REPLIES
Hall of Fame Super Silver

Re: Configuring SSH on our WAN routers...

Gary

The information that you provided is about the version but does not mention the feature set. Within a given version some feature sets will support SSH and some will not. So if you identify the feature set we can give better advice about whether to upgrade.

Though I suspect that if you get no output to show ssh that you are running an image that does not support SSH and may need to upgrade. As a general thing feature sets that include support for encryption should support SSH and feature sets without support for encryption would not support SSH.

HTH

Rick

New Member

Re: Configuring SSH on our WAN routers...

On one of our routers I rans sh ssh, and it showed my connection. When I connected via telnet, and ran the show ssh command it said no current ssh server connections, so I would guess that your IOS version does not support ssh. You can try going into config mode (I don't know why this is in configu mode, but that is where cisco put it) and typing:

crypto key generate rsa modulus 2048

Depending on the IOS version it or if it is an international version it may not support 2048 bit key (the max on our version). You can use the ? to see the key size etc. that you can generate. Some other commands related to ssh that you can try putting in the config to see if it supports ssh are :

ip ssh timeout 120

ip ssh authentication-retries 3

line vty 0 4

transport input telnet ssh

One you generate the key, and put commands above you should be able to ssh to the router or switch.

New Member

Re: Configuring SSH on our WAN routers...

http://www.cisco.com/en/US/tech/tk583/tk617/technologies_q_and_a_item09186a0080267e0f.shtml#qa2

This is the SSH FAQ. I believe you have to run Advanced Security or some similiar IOS.

The FAQ has a link to the Feature Navigator

Hope this helps.

219
Views
0
Helpful
3
Replies
CreatePlease to create content