Chapter 2 Configuring the Secure Shell Daemon Protocol

Configuring SSHD in the CSS

Use the sshd keepalive command to enable SSHD keepalive. SSHD keepalive is enabled by default.

To enable sending SSHD keepalives to the client, enter:

(config)# sshd keepalive

To disable sending SSHD keepalives, enter:

(config)# no sshd keepalive

Configuring SSHD Port

The default port number for SSH is 22. To specify the port number to which the server listens for connections from clients, use the sshd port command. Enter a port number of 22 or from 512 to 65535.

Note When you configure a new sshd port, you may receive a message saying that the port is invalid or unavailable. This message can appear if the port is in use internally by the CSS. If this message occurs, enter a different port number.

For example, to configure port number 65530 as the SSHD port, enter:

(config)# sshd port 65530

To reset the port number to the default of 22, enter:

(config)# no sshd port

Configuring SSHD Server-Keybits

To specify the number of bits in the ephemeral protocol server key, use the sshd server-keybitscommand. The sshd server-keybitscommand pertains only to SSH v1 connections. Enter the number of bits from 512 to 1024 (the valid range). The default is 768.

 

Cisco Content Services Switch Security Configuration Guide

2-4

OL-5650-02

Page 66
Image 66
Cisco Systems OL-5650-02 manual Configuring Sshd Port, Configuring Sshd Server-Keybits