R3721-F3210-F3171-HP High-End Firewalls System Management and Maintenance Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

Displaying and maintaining SNMP ··························································································································· 136

SNMP configuration examples ··································································································································· 137

SNMPv1/SNMPv2c configuration example ···································································································· 137

SNMPv3 configuration example························································································································ 138

SNMP logging configuration example ············································································································· 139

Configuring RSH ····················································································································································· 141

RSH overview ······························································································································································· 141

Configuration procedure ············································································································································· 141

RSH configuration example ········································································································································ 141

Configuring SSH2.0 ··············································································································································· 144

Feature and hardware compatibility ·························································································································· 144

Overview ······································································································································································· 144

SSH Operation ···················································································································································· 144

SSH connection across VPNs ····························································································································· 147

Configuring the firewall as an SSH server ················································································································ 147

SSH server configuration task list ······················································································································ 147

Generating a DSA or RSA key pair ·················································································································· 148

Enabling the SSH server function ······················································································································· 148

Configuring the user interfaces for SSH clients ································································································ 149

Configuring a client public key ·························································································································· 149

Configuring an SSH user ···································································································································· 150

Setting the SSH management parameters ········································································································ 151

Configuring the firewall as an SSH client ················································································································· 152

SSH client configuration task list ························································································································ 152

Specifying a source IP address/interface for the SSH client ·········································································· 152

Configuring whether first-time authentication is supported ············································································· 153

Establishing a connection between an SSH client and the server ································································· 154

Displaying and maintaining SSH ······························································································································· 154

SSH server configuration examples ··························································································································· 155

When the Firewall acts as a server for password authentication ·································································· 155

When the Firewall acts as a server for publickey authentication ·································································· 157

SSH client configuration examples ····························································································································· 162

When the Firewall acts as a client for password authentication ··································································· 162

When the Firewall acts as a client for publickey authentication ···································································· 165

Configuring SFTP ····················································································································································· 168

Configuring the device as an SFTP server ················································································································· 168

Configuration prerequisites ································································································································ 168

Enabling the SFTP server ···································································································································· 168

Configuring the SFTP connection idle timeout period ····················································································· 168

Configuring the device an SFTP client ······················································································································· 169

Specifying a source IP address or interface for the SFTP client ······································································ 169

Establishing a connection to the SFTP server ···································································································· 169

Working with SFTP directories ··························································································································· 170

Working with SFTP files ······································································································································ 171

Displaying help information ······························································································································· 171

Terminating the connection to the remote SFTP server ···················································································· 172

SFTP client configuration example ····························································································································· 172

SFTP server configuration example ···························································································································· 175

Managing Virtual firewalls ····································································································································· 178

Configuring a virtual device ······································································································································· 179