Configuring a manual ipsec policy – H3C Technologies H3C S12500-X Series Switches User Manual
Page 197
185
............++++++++
Create the key pair successfully.
# Generate a DSA key pair.
[Switch] public-key local create dsa
The range of public key size is (512 ~ 2048).
If the key modulus is greater than 512, it will take a few minutes.
Press CTRL+C to abort.
Input the modulus length [default = 1024]:
Generating Keys...
.++++++++++++++++++++++++++++++++++++++++++++++++++*
........+......+.....+......................................+
...+.................+..........+...+.
Create the key pair successfully.
# Enable the SSH server function.
[Switch] ssh server enable
# Assign an IP address to VLAN-interface 2. The Stelnet client uses this address as the destination
for SSH connection.
[Switch] interface vlan-interface 2
[Switch-Vlan-interface2] ip address 192.168.1.40 255.255.255.0
[Switch-Vlan-interface2] quit
# Set the authentication mode for the user lines to AAA.
[Switch] line vty 0 63
[Switch-line-vty0-63] authentication-mode scheme
[Switch-line-vty0-63] quit
# Create a local device management user client001 with the plaintext password aabbcc, the
service type ssh, and the user role network-admin.
[Switch] local-user client001 class manage
[Switch-luser-manage-client001] password simple aabbcc
[Switch-luser-manage-client001] service-type ssh
[Switch-luser-manage-client001] authorization-attribute user-role network-admin
[Switch-luser-manage-client001] quit
# Create an SSH user client001 with the service type stelnet, and the authentication method
password. (Optional. If an SSH user is not created, password authentication is used by default.)
[Switch] ssh user client001 service-type stelnet authentication-type password
2.
Establish a connection to the Stelnet server:
There are different types of Stelnet client software, such as PuTTY, and OpenSSH. This example
uses an Stelnet client that runs PuTTY version 0.58.
To establish a connection to the Stelnet server:
a.
Launch PuTTY.exe to enter the interface shown in
894H
Figure 49
.
b.
In the Host Name (or IP address) field, enter the IP address 192.168.1.40 of the Stelnet server.
- H3C S5560 Series Switches H3C WX6000 Series Access Controllers H3C WX5000 Series Access Controllers H3C WX3000 Series Unified Switches H3C LSWM1WCM10 Access Controller Module H3C LSWM1WCM20 Access Controller Module H3C LSQM1WCMB0 Access Controller Module H3C LSRM1WCM2A1 Access Controller Module H3C LSBM1WCM2A0 Access Controller Module H3C S9800 Series Switches H3C S5130 Series Switches H3C S5120 Series Switches