HCNA配置ssh遠程登陸

阿新 • • 發佈：2017-12-09

serve please nas use png pre cati ble lin

1、拓撲圖

技術分享圖片

最終實現通過AR１　來SSH登陸到AR2 上

2、配置AR2為開啟SSH服務

Please press enter to start cmd line!
##############
<Huawei>sys
Enter system view, return user view with Ctrl+Z.
[Huawei]int    
[Huawei]interface g    
[Huawei]interface GigabitEthernet 0/0/0
[Huawei-GigabitEthernet0/0/0]ip addr    
[Huawei-GigabitEthernet0/0 
/0]ip address 12.1.1.2 24
[Huawei-GigabitEthernet0/0/0]
Dec  8 2017 22:12:30-08:00 Huawei %%01IFNET/4/LINK_STATE(l)[1]:The line protocol
 IP on the interface GigabitEthernet0/0/0 has entered the UP state. 
[Huawei-GigabitEthernet0/0/0]q
[Huawei]stel    
[Huawei]stelnet ser    
[Huawei]stelnet server en    
[Huawei]stelnet server enable 
Info: Succeeded  
in starting the STELNET server.
[Huawei]rsa ?
  local-key-pair   Local RSA public key pair operations
  peer-public-key  Remote peer RSA public key configuration.
[Huawei]rsa loc    
[Huawei]rsa local-key-pair ?
  create   Create new local public key pairs
  destroy  Destroy the local public key pairs
[Huawei]rsa local 
-key-pair cre    
[Huawei]rsa local-key-pair create 
The key name will be: Host
% RSA keys defined for Host already exist.
Confirm to replace them? (y/n)[n]:y
The range of public key size is (512 ~ 2048).
NOTES: If the key modulus is greater than 512,
       It will take a few minutes.
Input the bits in the modulus[default = 512]:1024
Generating keys...
........................++++++
.........++++++
............++++++++
...............++++++++

[Huawei]aaa
[Huawei-aaa]loc    
[Huawei-aaa]local-user user-ssh pass    
[Huawei-aaa]local-user user-ssh password ci    
[Huawei-aaa]local-user user-ssh password cipher huawei
Info: Add a new user.
[Huawei-aaa]loc    
[Huawei-aaa]local-user user-ssh pri    
[Huawei-aaa]local-user user-ssh privilege level    
[Huawei-aaa]local-user user-ssh privilege level 2
[Huawei-aaa]loc    
[Huawei-aaa]local-user user    
[Huawei-aaa]local-user user-ssh serv    
[Huawei-aaa]local-user user-ssh service-type ssh
[Huawei-aaa]q
[Huawei]user-in    
[Huawei]user-interface vty    
[Huawei]user-interface vty 0    
[Huawei]user-interface vty 0 4    
[Huawei]user-interface vty 0 4
[Huawei-ui-vty0-4]aut    
[Huawei-ui-vty0-4]authentication-mode aaa
[Huawei-ui-vty0-4]pro    
[Huawei-ui-vty0-4]protocol ?
  inbound  Incoming protocol
[Huawei-ui-vty0-4]protocol in    
[Huawei-ui-vty0-4]protocol inbound ssh
[Huawei-ui-vty0-4]q
[Huawei]ssh user    
[Huawei]ssh user user    
[Huawei]ssh user user-    
[Huawei]ssh user user-ssh au    
[Huawei]ssh user user-ssh authentication-type ?
  all           All authentication, password or RSA
  password      Password authentication
  password-rsa  Both password and RSA
  rsa           RSA authentication
[Huawei]ssh user user-ssh authentication-type all
 Authentication type setted, and will be in effect next time
[Huawei]sysnan    
[Huawei]sysna    
[Huawei]sysname AR@
[AR@]sysname AR@
[AR@]sysname AR2
[AR2]

3、AR1作為SSH客戶端接連AR2測試

Please press enter to start cmd line!
##########################
<Huawei>
Dec  8 2017 22:11:25-08:00 Huawei %%01IFPDT/4/IF_STATE(l)[0]:Interface GigabitEt
hernet0/0/0 has turned into UP state.
<Huawei>

  Please check whether system data has been changed, and save data in time

  Configuration console time out, please press any key to log on

<Huawei>sys
Enter system view, return user view with Ctrl+Z.
[Huawei]sysname AR1
[AR1]int    
[AR1]interface g    
[AR1]interface GigabitEthernet 0/0/0
[AR1-GigabitEthernet0/0/0]ip address 12.1.1.1 24
[AR1-GigabitEthernet0/0/0]
Dec  8 2017 22:20:08-08:00 AR1 %%01IFNET/4/LINK_STATE(l)[0]:The line protocol IP
 on the interface GigabitEthernet0/0/0 has entered the UP state. 
[AR1-GigabitEthernet0/0/0]q
[AR1]ping  12.1.1.2
  PING 12.1.1.2: 56  data bytes, press CTRL_C to break
    Reply from 12.1.1.2: bytes=56 Sequence=1 ttl=255 time=160 ms
    Reply from 12.1.1.2: bytes=56 Sequence=2 ttl=255 time=50 ms
    Reply from 12.1.1.2: bytes=56 Sequence=3 ttl=255 time=20 ms
    Reply from 12.1.1.2: bytes=56 Sequence=4 ttl=255 time=20 ms
    Reply from 12.1.1.2: bytes=56 Sequence=5 ttl=255 time=30 ms

  --- 12.1.1.2 ping statistics ---
    5 packet(s) transmitted
    5 packet(s) received
    0.00% packet loss
    round-trip min/avg/max = 20/56/160 ms

[AR1]ssh 12.1.1.2
         ^
Error: Unrecognized command found at ‘^‘ position.
[AR1]ssh    
[AR1]ssh ?
  client  Set SSH client attribute
  server  Specify the server attribute
  user    SSH user
[AR1]ssh ssh    
[AR1]ssh clei    
[AR1]ssh clien    
[AR1]ssh client ?
  STRING<1-64>  Specify SSH server IP address or name
  first-time    Set SSH client attribute of authenticating user for the first   
                time access.
[AR1]ssh client fri    
[AR1]ssh client fir    
[AR1]ssh client first-time 
                           ^
Error:Incomplete command found at ‘^‘ position.
[AR1]ssh client first-time 
                           ^
Error:Incomplete command found at ‘^‘ position.
[AR1]ssh client first-time ?
  enable  Enable authentication for first time access.
[AR1]ssh client first-time en    
[AR1]ssh client first-time enable 
[AR1]ssh    
[AR1]ssh ?
  client  Set SSH client attribute
  server  Specify the server attribute
  user    SSH user
[AR1]ste    
[AR1]stelnet ?
  STRING<1-255>  IP address or host name of a remote system
  -a             Set the source IP address of SSH packets
  server         Set Stelnet server
[AR1]stelnet 12.1.1.2
Please input the username:user-ssh
Trying 12.1.1.2 ...
Press CTRL+K to abort
Connected to 12.1.1.2 ...
The server is not authenticated. Continue to access it? (y/n)[n]:y
Dec  8 2017 22:23:15-08:00 AR1 %%01SSH/4/CONTINUE_KEYEXCHANGE(l)[1]:The server h
ad not been authenticated in the process of exchanging keys. When deciding wheth
er to continue, the user chose Y. 
[AR1]
Save the server‘s public key? (y/n)[n]:y
The server‘s public key will be saved with the name 12.1.1.2. Please wait...

Dec  8 2017 22:23:21-08:00 AR1 %%01SSH/4/SAVE_PUBLICKEY(l)[2]:When deciding whet
her to save the server‘s public key 12.1.1.2, the user chose Y. 
[AR1]
Enter password:
<AR2>dis ip in    
<AR2>dis ip interface bri    
<AR2>dis ip interface brief 
*down: administratively down
^down: standby
(l): loopback
(s): spoofing
The number of interface that is UP in Physical is 2
The number of interface that is DOWN in Physical is 2
The number of interface that is UP in Protocol is 2
The number of interface that is DOWN in Protocol is 2

Interface                         IP Address/Mask      Physical   Protocol  
GigabitEthernet0/0/0              12.1.1.2/24          up         up        
GigabitEthernet0/0/1              unassigned           down       down      
GigabitEthernet0/0/2              unassigned           down       down      
NULL0                             unassigned           up         up(s)     
<AR2>

HCNA配置ssh遠程登陸

serve please nas use png pre cati ble lin 1、拓撲圖最終實現通過AR１　來SSH登陸到AR2 上 2、配置AR2為開啟SSH服務 Please press enter to start cmd line! ###

配置ssh遠程訪問策略

.net cin 不能 onf host conf 規則 inux 一個假如有兩個域，一個是example.com(172.25.0.0/16),一個是my133t.org(172.24.0.0/16) 要求：從域group3.example.com能ssh遠程訪問兩個虛

centos 配置ssh遠程登錄

用戶 root用戶登錄 config 配置 port blog 文件中 san article 參考博客： http://blog.csdn.net/sangjian1006/article/details/51603236 1.修改SSH配置文件/etc/ssh/

HCNA配置telnet遠程管理

ret eth urn 拓撲圖路由器 loopback data -- ati 1、拓撲圖說明：通過配置最終能通過R5 用telnet協議登陸到R4上並將R4改名為R44 2、R4配置 <Huawei>sys Enter system view,

Centos 7 配置SSH遠程連接及RAID 5的創建

Centos 7 SSH遠程連接 RAID 5的創建 Centos 7 配置SSH遠程連接及RAID的創建安裝Centos系統首先進入引導界面：選擇第一項，安裝Centos7選擇安裝語言：默認即可下面進入安裝信息界面時區選擇：選擇安裝界面，web版就行點擊完成，進入安裝界面，這時設置root

SSH 遠程登陸

style 也有原理輸入 ger 12.1 tac put 中間 2019-03-10 20:41:39 一、什麽是SSH 簡單說，SSH是一種網絡協議，用於計算機之間的加密登錄。如果一個用戶從本地計算機，使用SSH協議登錄另一臺遠程計算機，我們就可以認為，這種

(轉)Linux SSH配置和禁止Root遠程登陸設置

登錄進行 mit 遠程重命名客戶端設置 get 問題服務原文一、修改vi /etc/ssh/sshd_config 文件 1、修改默認端口：默認Port為22,並且已經註釋掉了；修改是把註釋去掉，並修改成其它的端口。 2、禁止root用戶遠程登陸：修改Perm

SSH：遠程登陸

登錄 https協議偽造中間遠程沒有遠程登陸 https 我們 SSH用於計算機之間的加密登錄的前提是公鑰為真，所以存在中間人攻擊中間人攻擊：與https協議不同，SSH協議的公鑰是沒有CA公證的，當對公鑰的請求被中間截獲時，中間人可以發出偽造公鑰幹壞事而不被識破

linux中修改ssh端口和禁止root遠程登陸設置

linux中修改ssh端口和禁止root遠程登陸設置linux中修改ssh端口和禁止root遠程登陸設置查看下系統版本[[email protected]/* */ ~]# cat /etc/redhat-releaseCentOS release 6.7 (Final)修改配置文件linux修改

第三章交換機的Telnet遠程登陸配置

telnet 交換機配置遠程一、實驗名稱交換機的Telnet遠程登陸配置二、實驗內容1.新建 Packet Tracer 拓撲圖配置交換機管理 ip 地址 Switch(config)# int vlan 1 Switch(config-if)#

在Packet Tracer中交換機的Telnet遠程登陸配置

交換機 Telnet 實驗目標： <1>掌握采用Telnet方式配置交換機的方法。技術原理： <1>配置交換機的管理ip地址，為telnet用戶配置用戶名和登錄口令。 <2>交換機、路由器中有很多密碼，設置對這些密碼可以有效的提高設備的安全性 &l

centos6.8安裝mysql並配置遠程登陸

配置 server ack span body 改密 mmu pos spa 1.wget dev.mysql.com/get/mysql-community-release-el6-5.noarch.rpm 2.yum install mysql-community-re

Centos7.3 mysql5.7 密碼修改及遠程登陸配置

改密碼遠程 error 遠程連接連接 safe trie 5.7 sql 修改密碼命令 set password for root@localhost = password(‘admin@123‘); 連接命令 ln -s /usr/local/mysql/bin

SSH遠程管理常用的幾種配置

通信系統 -a cat grep rac users 主配置文件 ces 一、關於SSH（Secure Shell） 1、SSH是一種安全性通道協議，主要用來實現字符界面的遠程登錄、遠程復制等功能。2、SSH協議對通信雙方的數據傳輸進行了加密處理，其中包括用戶登錄時輸入的

ubuntu使用ssh遠程登錄服務器及上傳本地文件到服務器

支持 ssh遠程登錄本地文件 scp 遠程服務器輸入 bsp 5.1 1. ubuntu 遠程登錄　　首先你的ubuntu要能夠支持ssh，如果不能，自行百度！　　　　　打開終端，輸入　　　　　　ssh [email protected]/*

ssh遠程服務器

輸入遠程登錄 name 目錄 use 文件中命令行 -a 令行使用用戶名密碼登錄在命令行中輸入命令： ssh username@ip_address -p port 之後系統會提示輸入密碼，輸入後即可登錄如果不添加-p選項，則默認是22端口還可以使用-l選項

CentOS 6.8 SSH遠程登錄優化

ssh sshd 遠程登錄近期發現通過Xshell登錄遠程Linux主機時需要等待很長時間：通過配置文件sshd_config，修改以下2個參數的值：# vim /etc/ssh/sshd_config#UseDNS yes --> UseDNS noGSSAPIAuthenticat

免密碼SSH遠程執行命令

ssh我們經常需要在遠程主機上執行一些命令，為了方便，可以使用一些方法來實現免密碼SSH登錄，比如：公鑰授權的方式。但是這種方式有一些缺陷，它是針對單臺機器做的授權，也就是說，如果換了一臺機器，授權就失效了，還是需要手動輸入密碼。其實還有另外一種通用性比較強的方式： expect。 expect是一種模擬人機

Linux遠程登陸

src restart 如果 mod 遠程登陸遠程 log 配置開啟 1. 遠程機器root賬號（也可以是自定義的賬號abc）. 進入.ssh/authorized_keys 文件。沒有的話在用戶下新建一個相同目錄的文件出來 2. 將本地登陸機的%userprofile

CentOS 7.1下SSH遠程登錄服務器詳解-轉

info which 開啟如何 pty wan public keygen ger 轉自：http://www.linuxidc.com/Linux/2016-03/129204.htm 一、明文傳輸與加密傳輸明文傳輸：當我們的數據包在網絡上傳輸的時候，以數據包的原

HCNA配置ssh遠程登陸

相關推薦