NEC N8406-022 manual Secure Shell Server configuration

Page 60

Table 56 Syslog Configuration commands

Command

Description

[no] logging log {<feature>}

Displays a list of features for which syslog messages can

 

be generated. You can choose to enable/disable specific

 

features or enable/disable syslog on all available features.

 

Features include:

 

console

 

system

 

mgmt

 

cli

 

stg

 

vlan

 

ssh

 

ntp

 

ip

 

web

 

rmon

 

ufd

 

Command mode: Global configuration

show logging

Displays the current syslog settings.

 

Command mode: All

Secure Shell Server configuration

Telnet traffic on the network is not secure. These commands enable Secure Shell (SSH) access from any SSH client. The SSH program securely logs into another computer over a network and executes commands in a secure environment. All data using SSH is encrypted.

Secure Shell can be configured on the switch using the console port only. The commands are not available if you access the switch using Telnet or the Browser-based Interface (BBI).

NOTE: See the N8406-022 1Gb Intelligent L2 Switch Application Guide for information on SSH.

The following table describes the SSHD Configuration commands.

Table 57 SSHD Configuration commands

Command

Description

ssh interval <0-24>

Defines interval for auto-generating the RSA server key. The switch will auto-

 

generate the RSA server key at the interval defined in this command. The range

 

is 0-24 hours.

 

The value of zero (0) means the RSA server key auto-generation is disabled. If

 

the switch has been busy performing any other key generation and the assigned

 

time of interval expires, the RSA server will skip generating the key.

 

Command mode: Global configuration

ssh scp-password

Defines the administrator password that is for Secure Copy (SCP) only. The

 

username for this SCP administrator is scpadmin.

 

Typically, SCP is used to copy files securely from one machine to another. In the

 

switch, SCP is used to download and upload the switch configuration using

 

secure channels.

 

Command mode: Global configuration

ssh generate-host-key

Generates the RSA host keys manually. The switch creates this key

 

automatically while configuring the switch with Secure Shell (SSH). But you can

 

generate the key manually by using this command if you need to overwrite the

 

key for security reasons. The command will take effect immediately.

 

Command mode: Global configuration

ssh generate-server-key

Generates the RSA server key. The switch creates this key automatically while

 

configuring the switch with Secure Shell (SSH). You can generate the key

 

manually by using this command if you need to overwrite the key for security

 

reasons. The command will take effect immediately.

 

Command mode: Global configuration

ssh port <TCP port

Sets the SSH server port number.

number>

Command mode: Global configuration

ssh scp-enable

Enables the SCP apply and save.

 

Command mode: Global configuration

Configuration Commands 60

Page 59 Page 61
Image 60
Page 59 Page 61
Contents N8406-022 1Gb Intelligent L2 Switch Page Contents Statistics commands Operations Commands Connecting to the switch Iscli ReferenceIntroduction Additional referencesSetting an IP address Telnet 1Gb Intelligent L2 Switch IP addressEstablishing a Telnet connection Establishing an SSH connectionAccessing the switch # ssh user@1Gb Intelligent L2 Switch IP addressIdle timeout Typographical conventionsPing IP address Show portchannel 1-12hashinformationShow ip interface Show spanning-tree stpAccessing the Iscli Iscli Command ModesIscli basics Global commands Command line interface shortcuts Command abbreviationSwitchconfig# spanning-tree stp 1 bridge hello Switchconfig# sp stp 1 br hInformation Commands System Information commands SNMPv3 Information commandsSNMPv3 USM User Table information SNMPv3 View Table informationUser Name ProtocolSNMPv3 Access Table information View NameGroup Name PrefixSNMPv3 Group Table information SNMPv3 Community Table informationSec Model Index Name User Name Tag Trap1 Public V1v2only V1v2trapSNMPv3 Target Address Table information SNMPv3 Target Parameters Table informationSec Level SNMPv3 Notify Table information NameTag V1v2trapv1v2trapShow snmp-server v3 Command mode All SNMPv3 dumpSystem information Usernames Enabled Oper Disabled Admin Always Enabled Show recent syslog messagesSystem user information Layer 2 information FDB information commands Show all FDB informationSpanning Tree information Show spanning-tree stp 1-32informationRapid Spanning Tree and Multiple Spanning Tree information Priority bridge Designated bridgeCommon Internal Spanning Tree information Desg 8000-000342fa3b80 8001 P2P, Edge 128 2000Desg 8000-000342fa3b80 8002 128 2000 128 2000Disabled DSB Cist RootDiscarding DISC, Learning LRN, Forwarding FWD, or Trunk group 1, Enabled port state STG 1 forwarding Trunk group informationVlan information Layer 3 information ARP informationShow layer3 information Command mode All IP informationShow all ARP entry information ARP address list informationIgmp multicast group information Igmp multicast router port informationRmon Information Rmon history informationRmon alarm information Show rmon alarmInterval Rmon event information Show rmon eventLink status information Port information Port Tag Rmon PvidVLANs Show geaport Command mode All Logical Port to GEA Port mappingUplink Failure Detection information Information dump Statistics commands Port StatisticsBridging statistics Ethernet statisticsDot3StatsAlignmentErrors Dot3StatsFCSErrorsDot3StatsInternalMacTransmitError Dot3StatsSingleCollisionFramesInterface statistics Internet Protocol IP statistics Show interface gigabitethernet port number ip-countersLayer 2 statistics Link statisticsFDB statistics Show interface gigabitethernet port number link-countersLayer 3 statistics IP statisticsARP statistics ARP statistics ArpEntriesCur ArpEntriesHighWaterDNS statistics Icmp statisticsDNS statistics DnsInRequests DnsOutRequests DnsBadRequests TCP statistics UDP statistics Management Processor statistics Igmp Multicast Group statisticsShow mp tcp-block Show mp udp-block10ad41e8/10ad5790 All UDP allocated control blocks Listen161 Show snmp-server counters Command mode All except User Exec CPU statisticsSnmp statistics Decoding Snmp messages received Show ntp counters Command mode All NTP statisticsUplink Failure Detection statistics Statistics dumpConfiguration Commands Saving the configurationSystem configuration Viewing and saving changesSystem host log configuration Secure Shell Server configuration Radius server configuration TACACS+ server configuration NTP server configuration System Snmp configuration SNMPv3 configuration User Security Model configuration Privacy-password passwordPrivacy-protocol desnone No snmp-server userSNMPv3 View configuration View-based Access Control Model configurationSNMPv3 Group configuration SNMPv3 Community Table configurationSNMPv3 Target Address Table configuration SNMPv3 Target Parameters Table configurationSNMPv3 Notify Table configuration System Access configurationManagement Networks configuration User Access Control configuration User ID configurationHttps Access configuration Port configuration Temporarily disabling a portLayer 2 configuration Port link configurationSpanning-tree mrst Mode Spanning-tree mrst EnableSpanning-tree mstp NameCommon Internal Spanning Tree configuration Cist bridge configurationCist port configuration Spanning Tree configuration Bridge Spanning Tree configuration Spanning Tree port configuration Forwarding Database configuration Trunk configurationStatic FDB configuration Layer 3 configuration Vlan configurationIP interface configuration Default Gateway configurationAddress Resolution Protocol configuration Igmp configurationIgmp snooping configuration Igmp static multicast router configuration Igmp filtering configurationDomain Name System configuration Igmp filtering port configurationIgmp filter definition Remote Monitoring configuration Rmon history configurationRmon event configuration Rmon alarm configuration Uplink Failure Detection configuration Port mirroringPort-based port mirroring Configuration Dump Failure Detection Pair configurationLink to Monitor configuration Link to Disable configurationSaving the active switch configuration Restoring the active switch configurationOperations Commands Operations-level port optionsBoot Options Updating the switch software imageDownloading new software to the switch Router# copy tftp image1image2boot-imageUploading a software image from the switch Routerconfig# boot image image1image2Switch# copy image1image2boot-image tftp Selecting a software image to runSelecting a configuration block Resetting the switchAccessing the AOS CLI Maintenance Commands System maintenanceForwarding Database maintenance ARP cache maintenance Debugging optionsIgmp Snooping maintenance Igmp Mrouter maintenanceUuencode flash dump Panic command Switch# copy flash-dump tftp server filenameSwitch# clear flash-dump Tftp system dump putUnscheduled system dumps Index
Related manuals
Manual 62 pages 46.6 Kb

N8406-022 specifications

The NEC N8406-022 is a robust and versatile networking device designed primarily for organizations requiring high-performance connectivity solutions. As part of NEC's extensive portfolio of networking equipment, the N8406-022 is engineered to address the demands of modern enterprise environments, ensuring seamless communication and data processing capabilities.

One of the key features of the N8406-022 is its multi-layer switching functionality. This device supports Layer 2 and Layer 3 switching, allowing for efficient data routing and reducing latency within local area networks (LANs). This capability is particularly beneficial for businesses that rely on real-time data access and transfer, such as those in financial services, media, and telecommunications.

The N8406-022 is equipped with advanced Quality of Service (QoS) features that help prioritize critical network traffic. This means that voice and video data packets can be given precedence over less time-sensitive information, ensuring that essential communication remains clear and uninterrupted. This is crucial for organizations leveraging VoIP and video conferencing solutions.

In terms of connectivity, the NEC N8406-022 offers a variety of ports, including multiple Gigabit Ethernet ports, which facilitate high-speed data transfer and enable seamless integration into existing network infrastructures. The device may also include 10 Gigabit SFP+ ports, providing the flexibility for high-capacity uplinks to support bandwidth-intensive applications and storage solutions.

Security is another focal point of the NEC N8406-022, with integrated features such as VLAN support, access control lists (ACLs), and port security measures. These capabilities protect sensitive data from unauthorized access and ensure that only legitimate users and devices can connect to the network.

Moreover, the N8406-022 often incorporates advanced energy-efficient technologies that minimize power consumption without compromising performance. This not only contributes to operational cost savings but also supports organizations in their sustainability efforts.

With its combination of performance, security, and energy efficiency, the NEC N8406-022 stands out as a reliable networking solution suitable for a wide range of enterprises looking to enhance their connectivity and operational efficiency. Whether deployed in data centers or as part of a corporate network, this device is built to meet the evolving demands of today’s digital landscape.
Top Page Image Contents