HP VPN Firewall Appliances System Management and Maintenance Configuration Guide
201
Network requirements
As shown in Figure 91, the firewall acts as an SCP client and the router acts as an SCP server. A user can
securely transfer files with the router through firewall. The router uses the password authentication method
and the client's username and password are saved on the router.
Figure 91 Network diagram
Configuration procedure
1. Configure the SCP server:
<Router> system-view
[Router] public-key local create rsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++++
++++++++++++++
+++++
++++++++
# Generate a DSA key pair.
[Router] public-key local create dsa
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
It will take a few minutes.
Press CTRL+C to abort.
Input the bits of the modulus[default = 1024]:
Generating Keys...
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+++++++++++++++++++++++++++++++++++
# Enable the SSH server function.
[Router] ssh server enable
# Configure an IP address for GigabitEthernet 0/1. The SCP client uses this address as the
destination for SCP connection.
[Router] interface gigabitethernet 0/1
[Router-GigabitEthernet0/1] ip address 192.168.0.1 255.255.255.0
[Router-GigabitEthernet0/1] quit
# Set the authentication mode of the user interfaces to AAA.
[Router] user-interface vty 0 4