Have you been studying for an AWS certification and have yet to actually
test? Now might be the time. AWS is currently offering free retakes of
their cer...
2 months ago
My Blog List
-
-
The debates around IP multicast stopped about five to ten years ago AFAICT. No one wants to deal with it anymore. In theory, IP multicast was a good idea b...10 months ago
-
https://cloud.google.com/load-balancing/docs/tcp/internal-proxy Traffic flow: client -> Load-balancer Forwarding rule TCP IP:port -> Target proxy -> backen...1 year ago
-
At its core, DNS is what makes the internet work. Without it, everyone would need to remember the IP address…1 year ago
-
Defining service availability using the famous X nines (and all the hacks like “planned downtime doesn’t count”) is pretty useless in a highly distribute...4 years ago
-
Please join us in congratulating the following iPexpert students who have passed their CCIE lab! This Week’s CCIE Success Stories Lucas Handybiantoro, CCIE...8 years ago
-
It’s official, the CCIE DC has been announced. Here’s the meat of the announcement: “Cisco announced today that a new expert-level certification for data c...12 years ago
About Me
- Packets Analyzed
- A dynamic, innovative, and skilled individual that is passionate about technology providing technical leadership and architectural oversight. I have in depth knowledge in a variety of technologies which provides a holistic overview of the environment and allows for superior solutions. I take business challenges and create IT solutions that are highly available, scalable, and secure. I have the ability to translate business objectives into IT initiatives. I have a continued thirst for knowledge and share that knowledge with colleagues, business partners, and vendors. I make contributions to the IT community participating in seminars, online forums, and actively blogging.
CCIE, CCNP, CCDP, CCIP, CCNA Voice, CCNA Security, CCNA R&S, CCDA, Network, GCFW, GSEC, CEH, VCP4, VCP3, CNE6, MCITP - WK8 Server Admin, MCTS - WK8 MS Certified Technology Specialist, MCTS - WK8 Network Infrastructure Config, MCTS - WK8 AD Config, MCTS - WK8 Application Infrastructure Config, MCSA-MS Certified Solutions Associate, MCSE 2K, MCSE 2K8, MCSA 2K, MCSE 2K3, A+, ITILv3, CSA, CQS-FDS, FCNSA, FCNSP, BCNP, CDCSN-DS, BCLE, ACE, CNSS, CNSE, BCLP, CS-CRSFS, HP AIS
Popular Posts
-
When building networks leveraging a variety of products you need to consider interoperability and configuration consistency. When leveraging... -
The topology depicted in the diagrams is used to help demonstrate data flow during failure and to provide discussion around best practices a... -
JunOS separates the control plane and the forwarding (data) plane. The control plane contains the processes that control routing and switchi... -
The flow starts with the initial "Packet Processing" ----> "Security Pre-Policy" ----> "Application" --... -
VLR - (Visitor Location Register) A database of the subscribers who have roamed into the domain of another MNO (Mobile Network Operator/MS...
-
Confirming that local authentication on the switch and ACS is working after you finished your configuration perform the following: Run t... -
If you struggle with what is what in regards to Inside/Outside Local/Global then the following may help. View it from the following perspe... -
Well it is time to buckle down and make it happen in 2014. The goal is to become a dual CCIE by the end of 2014. I have previously passed th...
-
Nexus 7000/5000 SPAN Sessions SPAN Session Limit - 18 Nexus 1000V SPAN Session Limit (SPAN and ERSPAN) - 64 Nexus 5000 SPAN Sessions Can S...
-
Master Selection - High Availability with Fortinet Master (also known as the Primary) is chosen based on the following monitored port ...
1 comments:
Prerequisites - Hostname, domain name configured, generate crypto keys, configure user authentication for local or remote access
-You must have the hostname and domain name configured before you creating the crypto key. If you have not configured the domain name you will receive the following
R2(config)#crypto key generate rsa general-keys modulus 1024
% Please define a domain-name first.
R2(config)#ip domain-name packetsanalyzed.blogspot.com
R2(config)#crypto key generate rsa general-keys modulus 1024
The name for the keys will be: R2.packetsanalyzed.blogspot.com
% The key modulus size is 1024 bits
% Generating 1024 bit RSA keys, keys will be non-exportable...[OK]
R2(config)#
*Mar 3 18:09:08.207: %SSH-5-ENABLED: SSH 1.99 has been enabled
Here is the complete configuration
R2
__
ip hostname R2
ip domain name packetsanalyzed.blogspot.com
username packetsanalyzed password 0 cisco
ip ssh time-out 60
ip ssh logging events
ip ssh version 2
line vty 0 4
login local
transport input ssh
Test this by connecting from another router. I will be using R1.
R1#ssh -l packetsanalyzed 10.0.1.2
Password:cisco
R2> [Successfully connected to R2]
Output on R2 since we enable logging events
*Mar 3 18:20:47.691: %SSH-5-SSH2_SESSION: SSH2 Session request from 10.0.1.1 (tty = 0) using crypto cipher 'aes128-cbc', hmac 'hmac-sha1' Succeeded
*Mar 3 18:20:50.631: %SSH-5-SSH2_USERAUTH: User 'packetsanalyzed' authentication for SSH2 Session from 10.0.1.1 (tty = 0) using crypto cipher 'aes128-cbc', hmac 'hmac-sha1' Succeeded
*Mar 3 18:22:03.655: %SSH-5-SSH2_CLOSE: SSH2 Session from 10.0.1.1 (tty = 0) for user 'packetsanalyzed' using crypto cipher 'aes128-cbc', hmac 'hmac-sha1' closed
Post a Comment