Manualshelf

User`s guide

ManualsBrandsDigi ManualsComputer equipmentTransPort WR44v2
231232233234235236237238239240
233
Entity
Instance
Parameter
Values
Equivalent Web Parameter
0 = Disabled
ssh 0 - 7 encaes128cbc 0 - 2147483647 AES (128 bits)
ssh 0 - 7 encaes192cbc 0 - 2147483647 AES (192 bits)
ssh 0 - 7 encaes256cbc 0 - 2147483647 AES (256 bits)
ssh 0 - 7 macmd5 0 - 2147483647 MAC MD5
ssh 0 - 7 macmd596 0 - 2147483647 MAC MD5-96
ssh 0 - 7 macsha1 0 - 2147483647 MAC SHA1
ssh 0 - 7 macsha196 0 - 2147483647 MAC SHA1-96
ssh 0 - 7 debug
0,1
0 = Off
1 = On
Enable Debug
Configuring SSH
In order to fully configure SSH, a version1 SSH key and a version 2 SSH key need to be
generated and the router configured to use them. This procedure will be described below.
Note:
SSH version 2 is more secure than version 1 and so is the recommended version to use.
However, some SSH clients may only support version 1 keys and so the router supports
both version 1 and version 2 SSH.
Configuration using the web interface
Navigate to Administration – X.509 Certificate Management > Key Generation and
select the size of the key file from the drop-down list. The larger the key file, the more
secure it will be.
Enter the name for the key file in the Key filename box or select from those already
present using the drop-down selector. The filename should have a prefix of “priv” and a file
extension of “.pem”, e.g. “privssh1.pem”. (Please note that the 8.3 file name convention
applies as mentioned previously).
Check the checkbox marked Save in SSHv1 format in order to generate a version 1 SSH
key. Click the Generate Key button to generate the private key file. The key file will be
stored in the router’s FLASH filing system.
Repeat steps 1 to 3 in order to generate the second key. This time, however, make sure
that the Save in SSHv1 format checkbox is unchecked. This key file should be given a
different name to the version 1 file previously generated.
On the Configuration – Network > SSH Server > SSH Server n page, enter the
filename generated in step 3 into the Host Key 1 Filename text box and the filename
generated in step 4 into the Host Key 2 Filename text box.
Apply the configuration changes using the Apply button at the bottom of the page and when
the “Configuration successfully applied” message appears, click on the highlighted link to
save the configuration.