H3C Technologies H3C SecBlade LB Cards User Manual

179

[Router] public-key local create rsa

The range of public key size is (512 ~ 2048).

NOTES: If the key modulus is greater than 512,

It will take a few minutes.

Press CTRL+C to abort.

Input the bits of the modulus[default = 1024]:

Generating Keys...

++++++++

++++++++++++++

+++++

++++++++

# Enable the SSH server function.

[Router] ssh server enable

# Configure an IP address for interface GigabitEthernet 0/1. The Stelnet client uses this IP address
as the destination address for SSH connection.

[Router] interface gigabitethernet 0/1

[Router-GigabitEthernet0/1] ip address 192.168.1.40 255.255.255.0

[Router-GigabitEthernet0/1] quit

# Set the authentication mode for the user interface to AAA.

[Router] user-interface vty 0 4

[Router-ui-vty0-4] authentication-mode scheme

# Enable the user interface to support SSH.

[Router-ui-vty0-4] protocol inbound ssh

[Router-ui-vty0-4] quit

# Create a local user client001, with the password as aabbcc and service type as ssh.

[Router] local-user client001

[Router-luser-client001] password simple aabbcc

[Router-luser-client001] service-type ssh

[Router-luser-client001] quit

# Specify the service type for the user client001 as stelnet, and the authentication method as

password. (Optional. If an SSH user is not created, password authentication is used by default.)

[Router] ssh user client001 service-type stelnet authentication-type password

2.

Establish a connection to the Stelnet server:
# Configure an IP address for interface GigabitEthernet 0/1.

system-view

[LB] interface gigabitethernet 0/1

[LB-GigabitEthernet0/1] ip address 192.168.1.56 255.255.255.0

[LB-GigabitEthernet0/1] quit

[LB] quit

{

If the client supports first-time authentication, you can directly establish a connection from the

client to the server.
# Establish an SSH connection to the Stelnet server 192.168.1.40.

ssh2 192.168.1.40

Username: client001

Trying 192.168.1.40 ...

Press CTRL+K to abort