Nortel 4134 用户指南
75
SSH2 fundamentals
SSH2 features
The Secure Shell (SSH) server is designed as a secure alternative to well
known applications like Telnet, rlogin, RCP, RSH and FTP. The SR4134
supports an SSH server to provide authentication, confidentiality and
integrity. It is a protocol for secure remote login and other secure network
services over an insecure network. It also supports compression.
known applications like Telnet, rlogin, RCP, RSH and FTP. The SR4134
supports an SSH server to provide authentication, confidentiality and
integrity. It is a protocol for secure remote login and other secure network
services over an insecure network. It also supports compression.
The SSH version 2.0 server has a layered architecture.
The Transport Layer Protocol provides server authentication, confidentiality,
and integrity. It can also optionally provide compression. The authentication
in this protocol level is host based.
and integrity. It can also optionally provide compression. The authentication
in this protocol level is host based.
The User Authentication Protocol runs over the transport layer protocol and
authenticates the client-side user to the server.
authenticates the client-side user to the server.
The Connection Protocol runs over the user authentication protocol and
multiplexes the encrypted tunnel into several logical channels.
multiplexes the encrypted tunnel into several logical channels.
Secure shell implementation typically consists of SSH server, SSH client,
SCP client and SFTP client.
SCP client and SFTP client.
The SSH server listens for connections (on port number 22) from client
machines. Whenever it receives connection, it performs authentication and
starts serving the client.
machines. Whenever it receives connection, it performs authentication and
starts serving the client.
The SSH client is used to log into another machine or to execute commands
on the other machine.
on the other machine.
The secure copy (SCP) client is used to securely copy files from one
machine to another.
machine to another.
The secure FTP (SFTP) client is used for secure interactive file transfer,
similar to FTP.
similar to FTP.
The SR4134 supports the SSH server, but not SSH clients.
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600
01.02
Standard
10.0
3 August 2007
Copyright © 2007, Nortel Networks
.