Manualshelf

Specifications

ManualsBrandsCisco ManualsComputer equipment5428 - SN Router
61626364656667686970
3-9
Cisco SN 5428-2 Storage Router Software Configuration Guide
78-15471-01
Chapter 3 Configuring System Parameters
Configuring the High-Availability Interface
Configuring the High-Availability Interface
If you configured the SN 5428-2 for high availability during the initial system configuration, you were
prompted to enter an IP address for the high availability (HA) interface. The HA interface is a 10/100
Ethernet interface, and is used along with the management interface to exchange information as
heartbeats to detect changes or failures in the cluster.
If you configured the SN 5428-2 as a stand-alone system, or if you need to change the HA IP address
without changing clusters, use the following procedure to configure the HA interface IP address.
See Chapter 10, Configuring a High Availability Cluster, for more information about configuring
SN 5428-2s in a high availability cluster.
Configuring for Secure Shell (SSH) Access
The SN 5428-2 Storage Router supports Secure Shell (SSH) as an alternative to Telnet protocol for
SN 5428-2 management. SSH provides encryption and strong authentication for interactive SN 5428-2
management sessions. The SN 5428-2 supports SSH protocol version 2 and allows port forwarding.
The SN 5428-2 SSH implementation supports execution of interactive commands only; non-interactive
commands cannot be executed. Secure FTP (sftp) and Secure Copy (scp) are not supported.
SSH is enabled for the SN 5428-2 and the SSH service is started, by default. However, you must generate
a public/private key pair for the SN 5428-2 before you can use SSH to establish a management session.
By default, SSH is restricted on all interfaces except the management interface.
Use the following procedure to configure the SN 5428-2 to use SSH.
Command Description
Step 1
enable Enter Administrator mode.
Step 2
interface ha ip-address
10.1.20.56/24
Specify or change the IP address and subnet mask for the HA
interface.
Command Description
Step 1
enable Enter Administrator mode.
Step 2
show ssh Display the status of the SSH service for the SN 5428-2. The SSH
service is running and is enabled by default (Example 3-1).
Step 3
ssh enable (Optional) If SSH is not enabled, start the SSH service.
Step 4
ssh keygen Generate the SSH public/private key pair, using the specified
number of bits. For example, generate a 1024-bit key pair (the
default setting).
Step 5
show restrict Display the current protocol restrictions for the SN 5428-2. Verify
that SSH is enabled for the required interface.
Step 6
no restrict mgmt ssh (Optional) Enable SSH for the required interfaces. For example,
enable SSH for the SN 5428-2 the management interface.