Configuring the maximum idle time for ssh sessions, Filtering ssh access using acls, Terminating an active ssh connection – Brocade TurboIron 24X Series Configuration Guide User Manual

128

Brocade TurboIron 24X Series Configuration Guide

53-1003053-01

Filtering SSH access using ACLs

Example

TurboIron(config)#interface ethernet 4

TurboIron(config-if-e10000-4)#ip address 10.157.22.110/24

TurboIron(config-if-e10000-4)#exit

TurboIron(config)#ip ssh source-interface ethernet 4

Configuring the maximum idle time for SSH sessions

By default, SSH sessions do not time out. Optionally, you can set the amount of time an SSH
session can be inactive before the device closes it. For example, to set the maximum idle time for
SSH sessions to 30 minutes, enter the following command.

TurboIron(config)#ip ssh idle-time 30

Syntax: ip ssh idle-time

If an established SSH session has no activity for the specified number of minutes, the device
closes it. An idle time of 0 minutes (the default value) means that SSH sessions never time out. The
maximum idle time for SSH sessions is 240 minutes.

Filtering SSH access using ACLs

You can permit or deny SSH access to the device using ACLs. To use ACLs, first create the ACLs you
want to use. You can specify a numbered standard IPv4 ACL, a named standard IPv4 ACL

Enter commands such as the following.

TurboIron(config)#access-list 10 permit host 192.168.144.241

TurboIron(config)#access-list 10 deny host 192.168.144.242 log

TurboIron(config)#access-list 10 permit host 192.168.144.243

TurboIron(config)#access-list 10 deny any

TurboIron(config)#ssh access-group 10

Syntax: ssh access-group |

Terminating an active SSH connection

To terminate one of the active SSH connections, enter the following command

TurboIron#kill ssh 1

Syntax: kill ssh

Displaying SSH connection information

Up to five SSH connections can be active on the device. To display information about SSH
connections, enter the following command.