beautypg.com

Ssh configuration guidelines, General steps for configuring ssh, Ssh management workstation – Allied Telesis AT-S63 User Manual

Page 611: Slave switch master switch, Class 1 laser product, L/a d/c d/c l/a d/c l/a

background image

AT-S63 Management Software Menus Interface User’s Guide

Section IV: Security

611

Figure 191 SSH Remote Management of a Slave Switch

Because enhanced stacking does not allow for SSH encrypted
management sessions between a management station and a slave
switch, you configure SSH only on the master switch of a stack.
Activating SSH on a slave switch has no affect.

SSH

Configuration

Guidelines

Below are the guidelines to observe when you configure SSH:

❑ SSH requires two encryption key pairs. One key pair will function

as the host key and the other the server key. For instructions on
creating keys, refer to ”Creating an Encryption Key” on page 559.

❑ The two encryption key pairs must be of different lengths of at

least one increment (256 bits) apart. The recommended bit size
for a server key is 768 bits. The recommended size for the host key
is 1024 bits.

❑ You activate and configure SSH on the master switch of an

enhanced stack, not on slave switches.

❑ The AT-S63 software uses well-known port 22 as the SSH default

port.

General Steps

for Configuring

SSH

Configuring the SSH server involves several procedures. This section lists
the procedures you need to complete to configure the SSH feature.

FAULT

RPS

MASTER

POWER

CLASS 1

LASER PRODUCT

STATUS

TERMINAL

PORT

1

3

5

7

9

11

2

4

6

8

10

12

13

15

17

19

21

23R

14

16

18

20

22

24R

AT-9424T/SP

Gigabit Ethernet Switch

1

3

5

7

9

11

13

15

17

19

21

23R

2

4

6

8

10

12

14

16

18

20

22

24R

23

24

L/A

D/C

D/C

L/A

D/C

L/A

1000 LINK / ACT

HDX / COL

FDX

10/100 LINK / ACT

PORT ACTIVITY

L/A

1000 LINK / ACT

SFP

SFP

24

SFP

23

FAULT

RPS

MASTER

POWER

GBIC

23

GBIC

24

CLASS 1

LASER PRODUCT

STATUS

TERMINAL

PORT

1

3

5

7

9

11

2

4

6

8

10

12

13

15

17

19

21

23R

14

16

18

20

22

24R

AT-9424T/GB

Gigabit Ethernet Switch

1

3

5

7

9

11

13

15

17

19

21

23R

2

4

6

8

10

12

14

16

18

20

22

24R

23

24

L/A

D/C

D/C

L/A

D/C

L/A

1000 LINK / ACT

HDX / COL

FDX

10/100 LINK / ACT

PORT ACTIVITY

L/A

1000 LINK / ACT

GBIC

Plaintext Management Packets
(Proprietary Enhanced Stacking Protocol)

Encrypted Management Packets
(SSH Protocol)

Slave Switch

Master Switch

SSH
Management
Workstation

See also other documents in the category Allied Telesis Computer hardware: