Specifications

ManualsBrandsCisco ManualsComputer equipmentMGX-FRSM-2CT3

411

412

413

414

415

416

417

418

419

420

9-61

Cisco MGX 8800/8900 Series Software Configuration Guide

Release 5.1, Part Number OL-6482-01, Rev. A0, January 25, 2005

Chapter 9 Switch Operating Procedures

Starting and Managing Secure (SSH) Access Sessions Between Switches

You must enter an IP address or host name with the ssh command as shown in the following example:

M8850_NY.7.PXM.a > ssh 172.29.52.88

cisco@172.29.52.88's password:

M8850_LA.8.PXM.a >

Note When establishing secure sessions between switches, you can establish only one additional session

beyond the original. For example, you can establish a CLI management session from a workstation to

switch B, and then establish a secure session from switch B to switch C. However, you cannot extend

the secure session from switch C to another device.

The following example shows what happens the first time a secure session is established between two

switches:

PXM1E_SJ.7.PXM.a > ssh 172.29.52.89

The authenticity of host '172.29.52.89 (172.29.52.89)' can't be established.

DSA key fingerprint is 21:a0:7e:f2:64:b5:0c:71:ac:95:05:0b:42:11:4c:94.

Are you sure you want to continue connecting (yes/no)? yes

Warning: Permanently added '172.29.52.89' (DSA) to the list of known hosts.

cisco@172.29.52.89's password:

M8950_SF.8.PXM.a >

In the previous example, the remote host is not known to the local host. After you type yes (the word yes

must be spelled out), the remote host is added to the list of known hosts and the next login requires only

a password:

-p The port option specifies the port to connect to at the remote server. The default value

for the client and the server is 22. If you change the port number at the remote switch,

you must specify the correct port number when entering the ssh command.

-1 The -1 option forces the secure session to use the SSH Version 1 protocol.

-2 The -2 option forces the secure session to use the SSH Version 2 protocol.

username@ Specifies a username for login on the remote host. If no username is specified, the client

switch where you enter this command uses your current login name. Example:

PXM1E_SJ.7.PXM.a > ssh superuser@172.29.52.56

superuser@172.29.52.56's password:

host Replace host with the IP address of the remote switch. If a remote switch name is

associated with an IP address in the local hosts file, you can enter a name instead of the

IP address.

Note If your IP configuration supports it, you can establish a secure session with the

active or the standby PXM. For more information, see “Guidelines for Creating

an IP Address Plan” in Chapter 1, “Preparing for Configuration.”

command The command option specifies a command to be executed on a remote host.

Note This feature is not supported on remote Cisco MGX nodes.

Table 9-28 Command Parameters for ssh (continued)

Parameter Description