h3c E352/S3100 ssh配置
- 0关注
- 1收藏,2122浏览
问题描述:
完整配置如下:
sysname xxxxx
# radius scheme system
# domain system
# local-user admin password cipher (E<)'>D,BW'Q=^Q`MAF4<1!!
service-type ssh telnet terminal level 3
# stp mode rstp
stp enable #
vlan 1 description to guanli
# vlan 163 description to qizhilou
# interface Vlan-interface1 ip address 10.200.160.135 255.255.255.0
# interface Aux1/0/0 #
interface Ethernet1/0/1 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/2 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/3 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/4 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/5 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/6 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/7 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/8 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/9 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/10 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/11 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/12 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/13 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/14 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/15 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/16 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/17 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/18 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/19 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/20 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/21 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/22 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/23 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/24 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/25 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/26 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/27 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/28 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/29 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/30 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/31 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/32 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/33 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/34 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/35 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/36 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/37 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/38 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/39 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/40 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/41 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/42 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/43 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/44 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/45 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/46 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/47 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface Ethernet1/0/48 stp edged-port enable broadcast-suppression 30 port access vlan 163 # interface GigabitEthernet1/1/1 # interface GigabitEthernet1/1/2 # interface GigabitEthernet1/1/3 # interface GigabitEthernet1/1/4 port link-type trunk port trunk permit vlan all
# undo irf-fabric authentication-mode #
interface NULL0
# hwping-agent enable
# voice vlan mac-address 0001-e300-0000 mask ffff-ff00-0000
# ip route-static 0.0.0.0 0.0.0.0 10.200.160.1 preference 60
# snmp-agent snmp-agent local-engineid 800063A2000FE23E7E7E6877
snmp-agent community read public123
snmp-agent community write private123
snmp-agent sys-info version all snmp-agent target-host trap address udp-domain 10.200.0.68 params securityname public123
# ssh user admin authentication-type password
# user-interface aux 0 7
user-interface vty 0
user privilege level 3
set authentication password cipher :D84\K7*%0N,YWX*NZ55OA!!
user-interface vty 1 4
authentication-mode scheme user privilege level 3
set authentication password cipher (E<)'>D,BW'Q=^Q`MAF4<1!!
配置完成后,用SecureCRTP打开输入用户和密码后出现提示:
The server has disconnected with an error. Server message reads: A protocol error occurred. The connection is closed by SSH Server Current FSM is SSH_Main_Disconnect
请问是什么情况,我的配置哪里有问题。
还有一台H3C S3100-26TP 配置SSH也是,配置和上面雷同,每次要在telnet下执行下rsa local-key-pair create这条命令,才能用SecureCRTP工具打开SSH,关闭SecureCRTP后再开启,ssh又无法远程登陆了,又需要执行rsa local-key-pair create命令。
请高手解答下,万分感谢。
- 2018-03-20提问
- 举报
-
(0)
最佳答案
配置看不全,不过根据里的描述疑似没有生成本地KEY,public-key
local create rsa
- 2018-03-20回答
- 评论(2)
- 举报
-
(0)
public-key local create rsa H3C E352和3100 交换机没有这条命令啊
只有这条rsa local-key-pair create,执行了,不行。
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
- 1. 您举报的内容是什么?(请在邮件中列出您举报的内容和链接地址)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
- 3. 是哪家企业?(营业执照,单位登记证明等证件)
- 4. 您与该企业的关系是?(您是企业法人或被授权人,需提供企业委托授权书)
抄袭了我的内容
×
原文链接或出处
诽谤我
×
- 1. 您举报的内容以及侵犯了您什么权益?(请在邮件中列出您举报的内容、链接地址,并给出简短的说明)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
对根叔社区有害的内容
×
不规范转载
×
举报说明
只有这条rsa local-key-pair create,执行了,不行。