Network Security Internet Technology Development Database Servers Mobile Phone Android Software Apple Software Computer Software News IT Information

In addition to Weibo, there is also WeChat

Please pay attention

WeChat public account

Shulou

PIX configuration manual II (telnet and ssh)

2025-04-02 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Share

Shulou(Shulou.com)06/01 Report--

PIX configuration manual two telnet and ssh

Telnet

Open telnet to allow all:

Conf t

Telnet 0 0 inside: allow anyone to access

Telnet 0 0 outside

Open telnet to specify a host:

Telnet 1.1.1.2 255.255.255.255 inside

Set the password to enter privileged mode:

Passwd cisco encrypted (+ encrypted is the encryption key, or plaintext if left unadded)

Set the password to enter global mode:

Enable password cisco1 encrypted (if the former adds encrypted, encrypted can be omitted this time)

Check the telnet reply:

Who

Pixfirewall# who

0: 1.1.1.2

View telnet configuration information:

Sh running-config telnet or sh running-config

If there is a long-linked telnet, clear the telnet configuration

Clear conn protocol tcp all

The default pix thinks that the outside is unsafe and does not allow telnet

The lower version changes outside to a different name.

(instead of directly modifying the outside security level, it will show that outside is reserved by default)

Then set the interface security level to 5 and above; then who

You will see something like the following:

2.2.2.2 255.255.255.255 out (not outside) can be accessed.

Full configuration:

Hostname pixfirewall

Enable password WdJQMntV/mB02tJF encrypted

Passwd 2KFQnbNIdI.2KYOU encrypted

Names

!

Interface Ethernet0

Nameif outside

Security-level 0

Ip address 2.2.2.1 255.255.255.0

!

Interface Ethernet1

Nameif inside

Security-level 100

Ip address 1.1.1.1 255.255.255.0

Telnet 0.0.0.0 0.0.0.0 outside (default telnet may not be configured)

Telnet 1.1.1.0 255.255.255.0 inside

Telnet timeout 5

Delete telnet configuration information:

No telnet 0 0 outside

No telnet 1.1.1.0 255.255.255.0 inside

Ssh encrypted Terminal access Protocol:

Create encrypted public and private keys:

Give pix a name.

Hostname

Need to create a domain name

Domain aaa.com

Generate a secret key

Ca gen rsa key 512 returns all the way (due to different versions of ca generate rsa key 512 or crypto key generate rsa modulus 1024)

Open ssh

Ssh 0 0 inside: allow anyone to access

Ssh 0 0 outside: allow anyone to access

Open ssh to specify a host:

Ssh 1.1.1.2 255.255.255.255 inside

Set password

Passwd cisco

Ssh login will prompt you to enter a user name and password. By default, pix has a user name and password of pix, which is the password of passwd.

Ssh-l pix 1.1.1.1

Ssh allows outside access by default

Crypto key zeroize rsa clears the key

Sh crypto key mypubkey rsa View key

Ca generate rsa key 512 or crypto key generate rsa modulus 1024 set the key

Username cisco password cisco encrypted privilege 15

Enable password cisco privileged password

Ssh timeout 60 timeout

Ca save all saves the ca key

Write memory saves PIX configuration

Pix 635.bin download http://down.51cto.com/data/1164311 is also available

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

Views: 0

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.

Share To

Network Security

Wechat

© 2024 shulou.com SLNews company. All rights reserved.

12
Report