Cisco Cisco Packet Data Gateway (PDG) Guía De Instalación
Initial System Configuration
Configure the System for Remote Access ▀
ASR 5500 Installation Guide ▄
125
Configure the System for Remote Access
When the system is configured for remote access, an administrative user may access the system from a remote location
over a local area network (LAN) or wide area network (WAN) via the following communication protocols:
over a local area network (LAN) or wide area network (WAN) via the following communication protocols:
Telnet
Secure Shell (SSH
File Transfer Protocol (FTP) (secured or unsecured)
Trivial File Transfer Protocol (TFTP)
Important:
For maximum security, use SSH v2.
Step 1
At the Exec mode CLI command prompt, enter config followed by context local to enter the Context Configuration
mode.
mode.
[local]host_name# config
[local]host_name(config)# context local
[local]host_name(config-ctx)#
[local]host_name(config)# context local
[local]host_name(config-ctx)#
Step 2
Go to a previously defined interface.
[local]host_name(config-ctx)# interface interface_name
Step 3
Enter server telnetd to allow Telnet access.
[local]host_name(config-ctx)# server telnetd
Important:
For maximum system security, you should not enable telnet.
Step 4
Enter the following command sequence to allow SSH and SFTP access:
Important:
v2-rsa is the default SSH key type.
Important:
In StarOS 19.2 and higher, the v1-rsa keyword has been removed from and the v2-dsa keyword has
been concealed within the Context Configuration mode ssh generate CLI command. A keyword that was supported in
a previous release may be concealed in subsequent releases. StarOS continues to parse concealed keywords in existing
scripts and configuration files created in a previous release. But the concealed keyword no longer appears in the
command syntax for use in new scripts or configuration files. Entering a question mark (?) will not display a concealed
keyword as part of the Help text. A removed keyword generates an error message when parsed.
a previous release may be concealed in subsequent releases. StarOS continues to parse concealed keywords in existing
scripts and configuration files created in a previous release. But the concealed keyword no longer appears in the
command syntax for use in new scripts or configuration files. Entering a question mark (?) will not display a concealed
keyword as part of the Help text. A removed keyword generates an error message when parsed.
[local]host_name(config-ctx)# ssh generate key type v2-rsa
Step 5
Configure the system to support SFTP:
[local]host_name(config-ctx)# server sshd
[local]host_name(config-sshd)# subsystem sftp
[local]host_name(config-sshd)# exit
[local]host_name(config-sshd)# subsystem sftp
[local]host_name(config-sshd)# exit