LABS

SSH Configuration

June 11, 2018
232 views
4 min read
Add comment

Configure SSH on R1 

R1
Router>enable
Router#configure terminal
Router(config)#hostname R1
R1(config)#ip domain name BITXPERT.LOCAL
R1(config)#ip ssh version 2
Please create RSA keys to enable SSH (and of atleast 768 bits for SSH v2).
R1(config)#cypto key generate rsa general-keys modulus 1024
% The key modulus size is 1024 bits
% Generating 1024 bit RSA keys, keys will be non-exportable…
[OK] (elapsed time was 1 seconds)

R1(config)#
*Jun 7 10:32:03.251: %SSH-5-ENABLED: SSH 2.0 has been enabled
R1(config)#username bitexpert privilege 15 password cisco
R1(config)#line vty 0 4
R1(config-line)#login local
R1(config-line)#transport input ssh
R1(config-line)#exit
R1(config)#exit

Open the SSH Session from your PC using Putty or SecureCRT:

R1#show ssh
Connection Version Mode Encryption Hmac State Username
0 1.99 IN aes128-ctr hmac-sha1 Session started bitexpert
0 1.99 OUT aes128-ctr hmac-sha1 Session started bitexpert
%No SSHv1 server connections running.

R1#show control-plane host open-ports
Active internet connections (servers and establishhed)
Prot Local Address Foreign Address Service State
tcp *:22 *:0 SSH-Server LISTEN
tcp *:23 *:0 Telnet LISTEN
tcp *:22 192.168.1.2:49165 SSH-Server ESTABLISH
udp *:18999 *:0 udp_transport Server LISTEN

R1#show tcp
tty2, virtual tty from host 192.168.1.2
Connection state is ESTAB, I/O status: 1, unread input bytes: 0
Connection is ECN Disabled, Mininum incoming TTL 0, Outgoing TTL 255
Local host: 192.168.1.1, Local port: 22
Foreign host: 192.168.1.2, Foreign port: 49165
Connection tableid (VRF): 0
Maximum output segment queue size: 20

Enqueued packets for retransmit: 0, input: 0 mis-ordered: 0 (0 bytes)

Event Timers (current time is 0x542F764):
Timer                      Starts Wakeups     Next
Retrans                     38            0             0x0
TimeWait                  0             0             0x0
AckHold                   36            0             0x0
SendWnd                  0             0             0x0
KeepAlive                 0             0             0x0
GiveUp                      0             0            0x0
PmtuAger                 0             0            0x0
DeadWait                 0             0            0x0
Linger                       0             0            0x0
ProcessQ                  0             0            0x0

iss: 526800267 snduna: 526805811 sndnxt: 526805811
irs: 1842799974 rcvnxt: 1842803471

sndwnd: 63176 scale: 0 maxrcvwnd: 4128
rcvwnd: 3608 scale: 0 delrcvwnd: 520

SRTT: 994 ms, RTTO: 1046 ms, RTV: 52 ms, KRTT: 0 ms
minRTT: 0 ms, maxRTT: 1000 ms, ACK hold: 200 ms
uptime: 296913 ms, Sent idletime: 73769 ms, Receive idletime: 73555 ms
Status Flags: passive open, active open
Option Flags: Retrans timeout
IP Precedence value : 6

TCB is waiting for TCP Process (112)

Datagrams (max data segment is 1460 bytes):
Rcvd: 59 (out of order: 0), with data: 37, total data bytes: 3496
Sent: 52 (retransmit: 0, fastretransmit: 0, partialack: 0, Second Congestion: 0), with data: 47, total data bytes: 5543

Packets received in fast path: 0, fast processed: 0, slow path: 0
fast lock acquisition failures: 0, slow path: 0
TCP Semaphore 0xF3180074 FREE

Add comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Sagar Jadhwani

View all posts