beautypg.com

Bridging from a ssh connection on the wl-ssh-port, Table 2, Ssh initial configuration – B&B Electronics WLNN-AN(ER,SE,SP.EK)-DP551 - Manual User Manual

Page 39

background image

Airborne Enterprise CLI Reference Manual

39

These guideline apply to the use of Xmodem during firmware, certificate, Private key

and configuration file upload to the device server.

8.1.6 Bridging from a SSH connection on the wl-ssh-port

The module supports secure CLI operation and data bridging through use of a
Secure Shell (SSH) CLI Session. This feature behaves very similarly to a
TELNET CLI Session (see Section 8.1.2). To access the SSH port the
connection must use the wl-ssh-port value (default 22), in addition the SSH
server must be enabled and correctly configured.

In order to enable use of SSH CLI Sessions it is necessary to perform the
following steps to prepare the module for accepting SSH connections:

Table 2 - SSH Initial Configuration

Command

Description

Decide SSH Key size

ssh-keysize

The module's administrator must decide the

strength of the SSH encryption to use. This is
generally a customer site-specific policy (ask

your IT department) and is reflected in the
value of ssh-keysize.

The default value of 1024 makes use of 1024-

bit RSA public/private key pairs, and is a good
compromise of performance vs. strength. The

maximum value of 2048 takes significant time

both to generate the public/private key pair
and to establish connections with the SSH

server.

Generate SSH key on module

ssh-keygen

The RSA public/private key pair used by SSH
must be generated by the ssh-keygen
command.

This command can take several minutes to
complete, but need only be performed once per

module.

Save the generated key

commit

After the RSA public/private key pair is

generated, they must be used to the module's
FLASH to be persistent across restarts.

If they are not saved they will need to
recalculated before the SSH port can be used.

Restart or power cycle the module

restart

The module must be restarted or power cycled

to launch the SSH server.

After the module has been restarted the SSH

server will then listen to incoming SSH client
requests on wl-ssh-port.

The configuration of ssh-port is off until
keys are generated and committed.

For an SSH client program, B&B Electronics has verified proper operation of
TeraTerm, PuTTY and OpenSSH.

The modules own internal SSH client has also been verified.

See also other documents in the category B&B Electronics Accessories communication: