Manualshelf

Technical data

ManualsBrandsBrocade Communications Systems ManualsHome Theater ServerServerIron ADX 12.4.00
21222324252627282930
10 ServerIron ADX Administration Guide
53-1002434-01
Configuring SSH
1
To copy the configuration file to a file called config1.cfg on the PCMCIA flash card in slot 2 on a
Management IV module.
C:\> scp c:\cfg\brocade.cfg terry@192.168.1.50:b:/config1.cfg
To copy the running-config file on a ServerIron ADX to a file called c:\cfg\brcdhprun.cfg on the
SCP-enabled client.
C:\> scp terry@192.168.1.50:runConfig c:\cfg\brcdhprun.cfg
To copy the startup-config file on a ServerIron ADX to a file called c:\cfg\brcdhpstart.cfg on the
SCP-enabled client.
C:\> scp terry@192.168.1.50:startConfig c:\cfg\brcdhpstart.cfg
To copy a file called config1.cfg on the PCMCIA flash card in slot 1 on a Management IV module to
the SCP-enabled client.
C:\> scp terry@192.168.1.50:a:/config1.cfg c:\cfg\config1.cfg
To copy a file called config2.cfg on the PCMCIA flash card in slot 1 on a Management IV module to
the SCP-enabled client.
C:\> scp terry@192.168.1.50:b:/config2.cfg c:\cfg\config2.cfg
Defining the SSH timeout value
When the SSH server attempts to negotiate a session key and encryption method with a connecting
client, it waits a maximum of 120 seconds for a response from the client. If there is no response
from the client after 120 seconds, the SSH server disconnects.
To change the SSH timeout value, enter the following command.
ServerIronADX(config)# ip ssh timeout 60
Syntax: [no] ip ssh timeout <seconds>
The <seconds> parameter is from 1 to 120 seconds. The default is 120.
Using a standard ACL to control SSH access
You can apply an ACL to control SSH access to the device.
The following commands configure ACL 10, then apply the ACL as the access list for SSH access.
The device will allow SSH access to all IP addresses except those listed in ACL 10.
ServerIronADX(config)# access-list 10 deny host 209.157.22.32 log
ServerIronADX(config)# access-list 10 deny 209.157.23.0 0.0.0.255 log
ServerIronADX(config)# access-list 10 deny 209.157.24.0 0.0.0.255 log
ServerIronADX(config)# access-list 10 deny 209.157.25.0/24 log
ServerIronADX(config)# access-list 10 permit any
ServerIronADX(config)# ssh access-group 10
Syntax: [no] ssh access-group <num>
The <num> parameter specifies the number of a standard ACL and must be from 1 – 99.
Displaying SSH information
To display detailed SSH information, enter the following command.