F3215-HP Load Balancing Module Security Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

141

142

143

144

145

146

147

148

149

150

142

SFTP configuration examples

When the LB module acts as an SFTP server for password

authentication

Network requirements

As shown in Figure 53, you can log in to the LB module through the SFTP client that runs on the host. The

LB module acts as the SFTP server and uses password authentication. The username and password of the

client are saved on the LB module.

Figure 53 Network diagram

Configuration procedure

1. Configure the SFTP server:

# Generate the RSA key pairs.

<LB> system-view

[LB] public-key local create rsa

The range of public key size is (512 ~ 2048).

NOTES: If the key modulus is greater than 512,

It will take a few minutes.

Press CTRL+C to abort.

Input the bits of the modulus[default = 1024]:

Generating Keys...

++++++++

++++++++++++++

+++++

++++++++

# Enable the SSH server function.

[LB] ssh server enable

# Enable the SFTP server.

[LB] sftp server enable

# Configure an IP address for interface GigabitEthernet 0/1, which the client will use as the

destination for SSH connection.

[LB] interface gigabitethernet 0/1

[LB-GigabitEthernet0/1] ip address 192.168.1.45 255.255.255.0

[LB-GigabitEthernet0/1] quit

# Set the authentication mode of the user interface to AAA.

[LB] user-interface vty 0 4

[LB-ui-vty0-4] authentication-mode scheme

# Enable the user interface to support SSH.

[LB-ui-vty0-4] protocol inbound ssh