beautypg.com

Applying an ipsec policy to an interface – H3C Technologies H3C S12500-X Series Switches User Manual

Page 201

background image

189

d.

Click Save private key to save the private key.
A confirmation dialog box appears.

e.

Click Yes, enter a file name (private.ppk in this example), and click Save.

f.

Transmit the public key file to the server through FTP or TFTP. (Details not shown.)

2.

Configure the Stelnet server:
# Generate the RSA key pairs.

system-view

[Switch] public-key local create rsa

The range of public key size is (512 ~ 2048).

If the key modulus is greater than 512, it will take a few minutes.

Press CTRL+C to abort.

Input the modulus length [default = 1024]:

Generating Keys...

........................++++++

...................++++++

..++++++++

............++++++++

Create the key pair successfully.

# Generate a DSA key pair.

[Switch] public-key local create dsa

The range of public key size is (512 ~ 2048).

If the key modulus is greater than 512, it will take a few minutes.

Press CTRL+C to abort.

Input the modulus length [default = 1024]:

Generating Keys...

.++++++++++++++++++++++++++++++++++++++++++++++++++*

........+......+.....+......................................+

...+.................+..........+...+

Create the key pair successfully.

# Enable the SSH server function.

[Switch] ssh server enable

# Assign an IP address to VLAN-interface 2. The Stelnet client uses this address as the destination

for SSH connection.

[Switch] interface vlan-interface 2

[Switch-Vlan-interface2] ip address 192.168.1.40 255.255.255.0

[Switch-Vlan-interface2] quit

# Set the authentication mode for the user lines to AAA.

[Switch] line vty 0 63

[Switch-line-vty0-63] authentication-mode scheme

[Switch-line-vty0-63] quit

# Import the client's public key from file key.pub and name it switchkey.

[Switch] public-key peer switchkey import sshkey key.pub

# Create an SSH user client002 with the authentication method publickey, and assign the public
key switchkey to the user.

[Switch] ssh user client002 service-type stelnet authentication-type publickey assign

publickey switchkey

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: