Chapter 43 System
43.7.2 SSH Implementation on the ZyWALLYour ZyWALL supports SSH versions 1 and 2 using RSA authentication and four encryption methods (AES, 3DES, Archfour and Blowfish). The SSH server is implemented on the ZyWALL for management using port 22 (by default).
43.7.3 Requirements for Using SSHYou must install an SSH client program on a client computer (Windows or Linux operating system) that is used to connect to the ZyWALL over SSH.
43.7.4 Configuring SSHClick System > SSH to change your ZyWALL’s Secure Shell settings. Use this screen to specify from which zones SSH can be used to manage the ZyWALL. You can also specify from which IP addresses the access can come.
"It is recommended that you disable Telnet and FTP when you configure SSH for secure connections.
Figure 516 System > SSH
The following table describes the labels in this screen.
Table 240 System > SSH
LABEL | DESCRIPTION |
Enable | Select the check box to allow or disallow the computer with the IP address that |
| matches the IP address(es) in the Service Control table to access the ZyWALL |
| CLI using this service. |
|
|
Version 1 | Select the check box to have the ZyWALL use both SSH version 1 and version 2 |
| protocols. If you clear the check box, the ZyWALL uses only SSH version 2 |
| protocol. |
|
|
Server Port | You may change the server port number for a service if needed, however you must |
| use the same port number in order to use that service for remote management. |
|
|
Server | Select the certificate whose corresponding private key is to be used to identify the |
Certificate | ZyWALL for SSH connections. You must have certificates already configured in the |
| My Certificates screen (Click My Certificates and see Chapter 41 on page 639 for |
| details). |
|
|
| 691 |
ZyWALL USG 100/200 Series User’s Guide | |
|
|