Cisco Cisco Packet Data Gateway (PDG)
Getting Started
▀ Configuring the System for Remote Access
▄ ASR 5500 System Administration Guide, StarOS Release 17
44
Configuring the System for Remote Access
Configure the system for remote access. An administrative user may access the system from a remote location over a
local area network (LAN) or wide area network (WAN):
local area network (LAN) or wide area network (WAN):
Telnet
Secure Shell (SSH)
File Transfer Protocol (FTP) (secured or unsecured)
Trivial File Transfer Protocol (TFTP)
Important:
If there are two simultaneous telnet sessions, and one administrator deletes the context into which the
other administrator is logged, the administrator in the deleted context will not be automatically kicked into the local
context. Although the deleted context will still appear in the CLI prompt, context specific commands will generate
errors.
context. Although the deleted context will still appear in the CLI prompt, context specific commands will generate
errors.
Important:
For maximum security, use SSH v2.
Step 1
Enter the context configuration mode by entering the following command:
[local]host_name(config)# context local
[local]host_name(config-ctx)#
[local]host_name(config-ctx)#
Step 2
Configure the system to allow Telnet access, if desired:
[local]host_name(config-ctx)# server telnetd
Step 3
Configure the system to allow SSH access, if desired:
[local]host_name(config-ctx)# ssh generate key [ type { v1-rsa | v2-rsa | v2-dsa } ]
Important:
v2-rsa
is the recommended key type.
[local]host_name(config-ctx)# server sshd
[local]host_name(config-sshd)# subsystem sftp
[local]host_name(config-sshd)# exit
[local]host_name(config-sshd)# subsystem sftp
[local]host_name(config-sshd)# exit
Step 4
Configure the system to allow FTP access, if desired, by entering the following command:
[local]host_name(config-ctx)# server ftpd
Step 5
Exit the configuration mode by entering the following command:
[local]host_name(config-ctx)# end
[local]host_name#
[local]host_name#