Modifying the server – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 1371

Advertising
background image

Secure Shell (SSH) Introduction

Software Reference for x310 Series Switches

C613-50046-01 REV A

AlliedWare Plus

TM

Operating System - Version 5.4.4C

52.5

When enabled, the SSH server allows SCP and SFTP sessions by default. To disable these
services, use the commands:

This allows you to reject SCP or SFTP file transfer requests, while still allowing Secure Shell
connections. To re-enable SCP and SFTP services, use the command:

Modifying the Server

To modify the SSH version that the server supports, or the TCP port that the server listens
to for incoming sessions, use the command:

The server listens on port 22 for incoming sessions, and supports both SSH version 2 and
SSH version 1, by default.

To modify session and login timeouts on the SSH server, and the number of
unauthenticated connections the server allows, use the command:

The SSH server waits 60 seconds for a client to authenticate itself, by default. You can alter
this waiting time by using the login-timeout parameter. If the client is still not
authenticated after the set timeout, then the SSH server disconnects the session.

The SSH server only allows only 10 unauthenticated SSH sessions at any point in time, by
default. You can modify the number of unauthenticated sessions it allows, by using the
max-startups parameter.

Once a client has authenticated, the SSH session does not time out, by default. Use the
session-timeout parameter to set a maximum time period the server waits before
deciding that a session is inactive and terminating it

For example, to set the session timeout to 600 seconds, the login timeout to 30 seconds,
and the maximum number of concurrent unauthenticated sessions to 5, use the
command:

To remove the configured session timeout, login timeout, or maximum startups, use the
command:

awplus(config)#

no ssh server scp

awplus(config)#

no ssh server sftp

awplus(config)#

ssh server scp

awplus(config)#

ssh server sftp

awplus(config)#

ssh server {[v1v2|v2only]|<1-65535>}

awplus(config)#

ssh server {[session-timeout <0-3600>]
[login-timeout <1-600>]
[max-startups <1-128>]}

awplus(config)#

ssh server session-timeout 600 login-timeout
30 max-startups 5

awplus(config)#

no ssh server session-timeout login-timeout
max-startups

Advertising
Popular Brands
Popular manuals