ssh support is available for C17x0, C25xx, C26xx, C36xx, C4x00, C7x00 (and
12000?) series routers. It has been available for 3 or 4 months since
12.1(1)T with 12.1(3)T being the most recent. Notice the "T" as a "T"
release is required (last I checked). You must have 12.1(1)T or higher to
run ssh. The down side to IOS'es that support ssh is their flash and RAM
requirements. For a 2500 series you need 16MB flash (max) and 10MB RAM
(16MB max). I haven't tested the performance on a 2500 using ssh since I
only have 8MB flash :-( (hopefully do be upgraded soon). I've got it
running on our 2 test 3640's and it seems to work quite well. We haven't
tried a production router, but will very soon. It takes careful reading of
the configuration requirements to get it working. I'm in the process of
writing it up for our techs, so I'll try and remember to post the setup if
anyone's interested...
Check here for more info:
http://www.cisco.com/warp/public/cc/pd/iosw/iore/iomjre121/prodlit/1065_pp.h
tm
Mike
----- Original Message -----
From: "dave" <[EMAIL PROTECTED]>
To: "Mike Forrester" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Wednesday, August 09, 2000 2:18 AM
Subject: RE: Router Fresh Start (WAS: Cisco product break-in)
> I thought IOS only supported ssh on the 7xxx + series?
>
> regards,
> dave.
>
> On Tue, 8 Aug 2000, Mike Forrester wrote:
>
> > Well, now might be the right time to upgrade the IOS if you want/need
any
> > features that are available in the latest IOS releases (i.e. ssh). I
have a
> > Cisco 2514 (4MB RAM and 12MB flash) at home and I've upgraded it to
12.0(9).
> > Which version and feature set you can upgrade to depends upon how much
RAM
> > and flash the router has.
> >
> > As for an enema, reloading the IOS and creating a new config are
probably
> > all that you need to do to wipe it clean. Also, do what you can to lock
> > down the router and keep people out. Put access lists on your vty ports
to
> > limit who can connect. The following link is a good place to start:
> >
> > http://www.cisco.com/warp/public/707/21.html
> >
> > HTH,
> >
> > Mike
> >
> > BTW - I use HyperTerm on Windows 98 and 2000 with no problems (except
arrow
> > keys on Win2K with same config as Win98). Ctrl-Break works just fine.
> > You're supposed to use it within 30 secs of powering on the router. I
> > usually do right after I the the model and memory.
> >
> > -----Original Message-----
> > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED]]On Behalf Of Mail @
> > faithinchaos.com
> > Sent: Tuesday, August 08, 2000 10:23 PM
> > To: [EMAIL PROTECTED]
> > Subject: Router Fresh Start (WAS: Cisco product break-in)
> >
> >
> > OK, I'm in.
> >
> > Thank you everyone for your views, recommendations and blurbs. Even if
some
> > on it didn't hit the topic I was looking for, I found all of it to be
good
> > information to know. In this business, you just can't pass anything up.
I
> > just continually hope I retain enough to be able to handle a similar
problem
> > if it ever does come my way.
> >
> > BTW, none of the [HyperTerminal] recommendations worked - and neither
did
> > the paper-clip trick [totally bummed-out]. I opted for a 3rd party
terminal
> > program instead. Perhaps for the paper-clip trick, it was just a matter
of
> > finding the right pin-out for the +V to cross pin 2 with. Ill look that
up
> > later, but anyway...
> >
> > Now that that's done, and I have made a copy of the config, I have a new
> > question:
> >
> > What would anyone recommend that I do to give this router an enema (i.e.
> > clean-slate/reset/start-over/etc)?
> >
> > I know what needs to be configured on the router for the environment to
work
> > (and I have a backup of the config to fall back to), but I am leery of
what
> > the previous admin configured. Not being a Router IOS guru, I could
really
> > appreciate some advise here.
> >
> > Thanks again...
> >
> > -
> > [To unsubscribe, send mail to [EMAIL PROTECTED] with
> > "unsubscribe firewalls" in the body of the message.]
> >
> > -
> > [To unsubscribe, send mail to [EMAIL PROTECTED] with
> > "unsubscribe firewalls" in the body of the message.]
> >
>
> +-----------------------------+
> | Dave Ryan |
> | Default Security |
> | http://www.default.org.uk |
> +-----------------------------+
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
