beautypg.com

Secure shell management – Allied Telesis 8100S Series User Manual

Page 111

background image

Stack Installation Guide for 8100S Series Switches

111

address 169.254.1.1. Refer to your computer’s documentation for
instructions on how to set the IP address.

Note

Your computer automatically defaults to an 169.254.n.n address if it
is running a DHCP client and does not receive a response from a
DHCP server. To have a DHCP client assign the address,
disconnect your computer from your network, power it on, wait for
the DHCP client to generate the IP address 169.254.n.n, and then
connect the computer to your new 8100L or 8100S Series switch.

Telnet management uses the Command Line Interface, which gives you
access to all of the features and parameter settings on the stack. For
instructions on how to start a Telnet management session, refer to
“Starting a Telnet Management Session” on page 83.

Telnet management sessions are not secure and are vulnerable to
snooping because the management packets are sent in plain text. The
security of the stack may be jeopardized if an intruder captures the packet
containing your username and password. For secure remote
management, use the secure shell protocol.

Secure Shell

Management

Secure shell management is similar to Telnet management in that you
may use it, together with the Command Line Interface, to manage all of the
features and functions of the stack, from a workstation on your network.
The difference is that this management method encrypts the packets
exchanged by your computer and the stack to protect your management
sessions.

Here are the requirements for SSH management:

Your management workstation must have an SSH client.

The SSH server on the stack has to be activated. The server’s
default setting is disabled.

You have to create an encryption key on the stack.

The stack must have an IP address. You may use the factory
169.254.1.1 address assigned to the Default VLAN.

You need to assign your management workstation an IP address
169.254.n.n with the subnet mask 255.255.0.0 or your workstation
must have access to that subnet through routing devices. The
variable n can be from 1 to 255. You may not use the switch’s IP
address 169.254.1.1. Refer to your computer’s documentation for
instructions on how to set the IP address.

For instructions on how to configure the stack for SSH management, refer
to the AT-8100 Series AlliedWare Plus Command Line Interface User’s
Guide
.