Upload an ssh public key, Disable unused and non-secure network services, Use ip filtering – Digi X2 User Manual

Page 163

Advertising

1 6 3

C o n f i g u r e D i g i d e v i c e s

Upload an SSH public key

SSH can be configured to log into to servers without having to provide a password. This is

called “public key authentication” and is more secure than using a normal password. You

generate a public/private key using a program called ssh-keygen, and store a copy of the

public key on the server(s) that you wish to use for authentication. When you attempt to

decrypts it and sends back the original message, proving your identity.

To upload an SSH public key:

On the Main menu, click Security.

On the Security Configuration page, check the

Enable SSH public key

authentication check box.

Type or paste the SSH public key in the edit box.

Click Apply.

Disable unused and non-secure network services

Depending on your mobile service provider, other users can access your Digi device

device over the Internet, through various network services enabled on your Digi device.

To further secure the Digi device, network services not necessary to the device,

particularly non-secure or un-encrypted network services such as Telnet, can be disabled.

Use IP filtering

You can better restrict your device on the network by only allowing certain devices or

networks to connect. This is known as IP filtering or Access Control Lists (ACL). IP

filtering configures a Digi device to accept connections from specific and known IP

addresses or networks only, and silently drop other connections. Digi devices can be

filtered on a single IP address or restricted as a group of devices using a subnet mask that

only allows specific networks to access to the device. IP Filtering settings are a part of the

Important: Plan and review your IP filtering settings before applying them. Incorrect

settings can make the Digi device inaccessible from the network.

Advertising

Popular Brands

Popular manuals