service password-encryption
ip domain-name [domain-name]
crypto key generate rsa
The name for the keys will be: [hostname].[domain-name]
Choose the size of the key modulus in the range of 360 to 4096 for your
General Purpose Keys. Choosing a key modulus greater than 512 may take
a few minutes.
How many bits in the modulus [512]: 1024
% Generating 1024 bit RSA keys, keys will be non-exportable...
[OK] (elapsed time was 2 seconds)
switch(config)#
ip ssh port [port-number] rotary 1
ip ssh authentication-retries 5
ip ssh logging events
ip ssh version 2
ip access-list extended [extended acl명]
deny tcp any any eq 22
permit ip any any
!
line vty 0 4
transport input ssh
rotary 1
access-class [extended acl명] in
exit
ntp server 203.248.240.140
clock timezone KST 9 0
no service config // TFTP load config files
Network Vendor
[Cisco] Switch 기본 설정 / ssh enable / ssh port change
2021. 11. 30. 16:32