Справочник Пользователя для ZyXEL Communications 5 Series
Chapter 27 Remote Management Screens
ZyWALL 5/35/70 Series User’s Guide
507
27.5 The SSH Screen
You can use SSH (Secure SHell) to securely access the ZyWALL’s SMT or command line
interface. Specify which interfaces allow SSH access and from which IP address the access
can come.
interface. Specify which interfaces allow SSH access and from which IP address the access
can come.
Unlike Telnet or FTP, which transmit data in plaintext (clear or unencrypted text), SSH is a
secure communication protocol that combines authentication and data encryption to provide
secure encrypted communication between two hosts over an unsecured network. In the
following figure, computer A on the Internet uses SSH to securely connect to the WAN port of
the ZyWALL for a management session.
secure communication protocol that combines authentication and data encryption to provide
secure encrypted communication between two hosts over an unsecured network. In the
following figure, computer A on the Internet uses SSH to securely connect to the WAN port of
the ZyWALL for a management session.
Figure 305 SSH Communication Over the WAN Example
SSH Implementation on the ZyWALL
Your ZyWALL supports SSH version 1.5 using RSA authentication and three encryption
methods (DES, 3DES and Blowfish). The SSH server is implemented on the ZyWALL for
remote SMT management and file transfer on port 22. Only one SSH connection is allowed at
a time.
methods (DES, 3DES and Blowfish). The SSH server is implemented on the ZyWALL for
remote SMT management and file transfer on port 22. Only one SSH connection is allowed at
a time.
Requirements for Using SSH
You must install an SSH client program on a client computer (Windows or Linux operating
system) that is used to connect to the ZyWALL over SSH.
system) that is used to connect to the ZyWALL over SSH.
27.6 Configuring the SSH Screen
Click ADVANCED > REMOTE MGMT > SSH to change your ZyWALL’s Secure Shell
settings.
settings.
Server Access
Select the interface(s) through which a computer may access the ZyWALL using
this service.
this service.
Secure Client IP
Address
Address
A secure client is a “trusted” computer that is allowed to communicate with the
ZyWALL using this service.
Select All to allow any computer to access the ZyWALL using this service.
Choose Selected to just allow the computer with the IP address that you specify to
access the ZyWALL using this service.
ZyWALL using this service.
Select All to allow any computer to access the ZyWALL using this service.
Choose Selected to just allow the computer with the IP address that you specify to
access the ZyWALL using this service.
Apply
Click Apply to save your customized settings and exit this screen.
Reset
Click Reset to begin configuring this screen afresh.
Table 149 ADVANCED > REMOTE MGMT > WWW (continued)
LABEL
DESCRIPTION