beautypg.com

Disabling 3-des, Displaying ssh connection information, Displaying ssh connection information 1 – Brocade BigIron RX Series Configuration Guide User Manual

Page 1079: Filtering ssh access using acls

background image

BigIron RX Series Configuration Guide

1001

53-1002484-04

Displaying SSH connection information

31

Filtering SSH access using ACLs

You can permit or deny SSH access to the device using ACLs. To use ACLs, first create the ACLs you
want to use. You can specify a numbered standard IPv4 ACL, a named standard IPv4 ACL.

Then enter the following command.

BigIron RX(config)# access-list 10 permit host 192.168.144.241

BigIron RX(config)# access-list 10 deny host 192.168.144.242 log

BigIron RX(config)# access-list 10 permit host 192.168.144.243

BigIron RX(config)# access-list 10 deny any

BigIron RX(config)# ssh access-group 10

Syntax: ssh access-group < standard-named-acl> | < standard-numbered-acl>

Refer to the section

Chapter 22, “Access Control List”

for details on how to configure ACLs.

Disabling 3-DES

By default, both 3-DES and AES encryption algorithms are enabled on the BigIron RX device. You
can disable 3-DES by entering the following command.

BigIron RX(config)# ip ssh encryption aes-only

Syntax: [no] ip ssh encryption aes-only

Displaying SSH connection information

Up to five SSH connections can be active on the device. To display information about SSH
connections, enter the following command.

Syntax: show ip ssh [| begin < expression> | exclude < expression> | include < expression>]

This display shows the following information about the active SSH connections.

The show who command also displays information about SSH connections. For example.

TABLE 159

SSH connection information

This field...

Displays...

Connection

The SSH connection ID. This can be from 1 – 5.

Version

The SSH version number. This should always be 1.5.

Encryption

The encryption method used for the connection.

Username

The user name for the connection.

BigIron RX# show ip ssh

Connection Version Encryption Username

1 SSH-2 3des-cbc Hanuma

2 SSH-2 aes128-cbc Mikaila

3 SSH-2 aes192-cbc Jenny

4 SSH-2 aes256-cbc Mariah

5 SSH-2 3des-cbc Logan

See also other documents in the category Brocade Computer Accessories: