ZyXEL Communications Corporation WAC6553D-E Manuel D’Utilisation
Chapter 12 System
NWA5000 / WAC6500 Series User’s Guide
141
Figure 84
How SSH v1 Works Example
1
Host Identification
The SSH client sends a connection request to the SSH server. The server identifies itself with a
host key. The client encrypts a randomly generated session key with the host key and server key
and sends the result back to the server.
The client automatically saves any new server public keys. In subsequent connections, the server
public key is checked against the saved version on the client computer.
host key. The client encrypts a randomly generated session key with the host key and server key
and sends the result back to the server.
The client automatically saves any new server public keys. In subsequent connections, the server
public key is checked against the saved version on the client computer.
2
Encryption Method
Once the identification is verified, both the client and server must agree on the type of encryption
method to use.
method to use.
3
Authentication and Data Transmission
After the identification is verified and data encryption activated, a secure tunnel is established
between the client and the server. The client then sends its authentication information (user
name and password) to the server to log in to the server.
between the client and the server. The client then sends its authentication information (user
name and password) to the server to log in to the server.
12.5.2 SSH Implementation on the NWA/WAC
Your NWA/WAC supports SSH versions 1 and 2 using RSA authentication and four encryption
methods (AES, 3DES, Archfour, and Blowfish). The SSH server is implemented on the NWA/WAC for
management using port 22 (by default).
methods (AES, 3DES, Archfour, and Blowfish). The SSH server is implemented on the NWA/WAC for
management using port 22 (by default).