In addition to Weibo, there is also WeChat
Please pay attention
WeChat public account
Shulou
2025-04-19 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >
Share
Shulou(Shulou.com)06/01 Report--
PIX configuration manual two telnet and ssh
Telnet
Open telnet to allow all:
Conf t
Telnet 0 0 inside: allow anyone to access
Telnet 0 0 outside
Open telnet to specify a host:
Telnet 1.1.1.2 255.255.255.255 inside
Set the password to enter privileged mode:
Passwd cisco encrypted (+ encrypted is the encryption key, or plaintext if left unadded)
Set the password to enter global mode:
Enable password cisco1 encrypted (if the former adds encrypted, encrypted can be omitted this time)
Check the telnet reply:
Who
Pixfirewall# who
0: 1.1.1.2
View telnet configuration information:
Sh running-config telnet or sh running-config
If there is a long-linked telnet, clear the telnet configuration
Clear conn protocol tcp all
The default pix thinks that the outside is unsafe and does not allow telnet
The lower version changes outside to a different name.
(instead of directly modifying the outside security level, it will show that outside is reserved by default)
Then set the interface security level to 5 and above; then who
You will see something like the following:
2.2.2.2 255.255.255.255 out (not outside) can be accessed.
Full configuration:
Hostname pixfirewall
Enable password WdJQMntV/mB02tJF encrypted
Passwd 2KFQnbNIdI.2KYOU encrypted
Names
!
Interface Ethernet0
Nameif outside
Security-level 0
Ip address 2.2.2.1 255.255.255.0
!
Interface Ethernet1
Nameif inside
Security-level 100
Ip address 1.1.1.1 255.255.255.0
Telnet 0.0.0.0 0.0.0.0 outside (default telnet may not be configured)
Telnet 1.1.1.0 255.255.255.0 inside
Telnet timeout 5
Delete telnet configuration information:
No telnet 0 0 outside
No telnet 1.1.1.0 255.255.255.0 inside
Ssh encrypted Terminal access Protocol:
Create encrypted public and private keys:
Give pix a name.
Hostname
Need to create a domain name
Domain aaa.com
Generate a secret key
Ca gen rsa key 512 returns all the way (due to different versions of ca generate rsa key 512 or crypto key generate rsa modulus 1024)
Open ssh
Ssh 0 0 inside: allow anyone to access
Ssh 0 0 outside: allow anyone to access
Open ssh to specify a host:
Ssh 1.1.1.2 255.255.255.255 inside
Set password
Passwd cisco
Ssh login will prompt you to enter a user name and password. By default, pix has a user name and password of pix, which is the password of passwd.
Ssh-l pix 1.1.1.1
Ssh allows outside access by default
Crypto key zeroize rsa clears the key
Sh crypto key mypubkey rsa View key
Ca generate rsa key 512 or crypto key generate rsa modulus 1024 set the key
Username cisco password cisco encrypted privilege 15
Enable password cisco privileged password
Ssh timeout 60 timeout
Ca save all saves the ca key
Write memory saves PIX configuration
Pix 635.bin download http://down.51cto.com/data/1164311 is also available
Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.
Views: 0
*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.
Continue with the installation of the previous hadoop.First, install zookooper1. Decompress zookoope
"Every 5-10 years, there's a rare product, a really special, very unusual product that's the most un
© 2024 shulou.com SLNews company. All rights reserved.
12
Report
