HOW TO CONFIGURE SSH V2 ON CISCO ROUTER

The SSH protocol (Secure Shell) is a method for secure remote login from one device to other.SSH provides a secure channel over an unsecured network in a client-server architecture, connecting an SSH client application with an SSH server. SSH works on port 22.

It is a secure alternative to the non-protected login protocols (such as Telnet) and insecure file transfer methods (such as FTP).Advertisements

Below is sample configuration to enable Secure Shell (SSHv2) version 2 on a Cisco router IOS –

Step 1-
Configure Hostname and DNS Domain
hostname R1
aaa new-model
username Cisco password Cisco
ip domain-name Cisco.local Step 2 –
Generate RSA key to be used.
ip ssh rsa keypair-name sshkey Enables the SSH server for local and remote authentication on the router
For SSH Version 2, the modulus size must be at least 768 bits.
crypto key generate rsa usage-keys label sshkey modulus 768 Configures SSH control variables on the Router.
ip ssh timeout 120 Configure SSH version 2 (This will disable SSH version 1)
ip ssh version 2 Step 3 –
Enable SSH transport support for the virtual type terminal (vty)
line vty 0 4
transport input SSH

COMMANDS TO VERIFY SSH CONFIGURATION:

• show ssh
• how ip ssh
• debug ip ssh