R0106-HP MSR Router Series Security Configuration Guide(V7)
351
Figure 101 Network diagram
Configuration procedure
1. Configure the SFTP server:
# Generate the RSA key pairs.
<Router> system-view
[Router] public-key local create rsa
The range of public key size is (512 ~ 2048).
If the key modulus is greater than 512, it will take a few minutes.
Press CTRL+C to abort.
Input the modulus length [default = 1024]:
Generating Keys...
........................++++++
...................++++++
..++++++++
............++++++++
Create the key pair successfully.
# Generate a DSA key pair.
[Router] public-key local create dsa
The range of public key size is (512 ~ 2048).
If the key modulus is greater than 512, it will take a few minutes.
Press CTRL+C to abort.
Input the modulus length [default = 1024]:
Generating Keys...
.++++++++++++++++++++++++++++++++++++++++++++++++++*
........+......+.....+......................................+
...+.................+..........+...+
Create the key pair successfully.
# Enable the SSH server function.
[Router] ssh server enable
# Enable the SFTP server.
[Router] sftp server enable
# Assign an IP address to interface GigabitEthernet 2/1/1. The client uses this address as the
destination for SSH connection.
[Router] interface gigabitethernet 2/1/1
[Router-GigabitEthernet2/1/1] ip address 192.168.1.45 255.255.255.0
[Router-GigabitEthernet2/1/1] quit
# Create a local device management user client002 with the plaintext password aabbcc, the
service type ssh, the user role network-admin, and the working directory flash:/.
[Router] local-user client002 class manage
[Router-luser-manage-client002] password simple aabbcc
[Router-luser-manage-client002] service-type ssh