Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2439
Views
0
Helpful
3
Replies

Hi everyone. I'm trying to use SSH for router and switch

Go to solution
pierre512
Level 1
Level 1

‎03-18-2022 03:30 AM

I'm trying to do that in cisco paket racer

in switch i have vlan 10 and vlan 20 and in the router port0/0 i used no ip add then i used encapsulation dot1q to share the port with this tow vlan i have. 

i did the SSH in the router and in the switch in vlan1 but now i can go in into the router with a pc who is connected to vlan 10 or 20 but i can't connect the switch

have anyone an answer for why i can't connect the switch with SSH

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to pierre512

‎03-26-2022 10:09 AM

because the switch has a different IP address and belongs to VLAN 1

 

On Router, try add below config

 

interface FastEthernet0/0.1

encapsulation dot1Q 1 native

ip address 10.0.0.1 255.255.255.0

no shutdown

 

On SWITCH :

ip default-gateway 10.0.0.1

 

Try Ping from router to 10.0.0.15  - Ping ok ?

Try ping from switch to 10.0.0.1 - Ping ok ?

 

Add RSA Keys for SSH :

 

######### Generate SSH keys :

ip domain-name bb.com  (change what ever you like)
crypto key generate rsa  ( use 1024 or higher for security)

 

Then test from Device to connect to switch.

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
3 Replies 3

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎03-18-2022 03:47 AM

From Vlan 10 and 20 are you able to ping Router IP ?

 

can you post switch side and router relevant config to look ?

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
pierre512
Level 1
Level 1
In response to balaji.bandi

‎03-18-2022 04:09 AM - last edited on ‎08-02-2023 05:35 AM by Community Manager

Yes i can pin router from vlan 10 and vlan 20

this is the router config

Current configuration : 1297 bytes

!

version 12.2

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

!

hostname R1

!

!

!

enable secret xxx

!

!

ip dhcp excluded-address 192.168.1.1

ip dhcp excluded-address 192.168.2.1

!

ip dhcp pool vlan10

network 192.168.1.0 255.255.255.0

default-router 192.168.1.1

ip dhcp pool vlan20

network 192.168.2.0 255.255.255.0

default-router 192.168.2.1

!

!

!

ip cef

no ipv6 cef

!

!

!

username R1 secret xxx

!

!

!

!

!

!

!

!

ip domain-name R1.se

!

!

!

!

!

!

!

!

interface FastEthernet0/0

no ip address

duplex auto

speed auto

!

interface FastEthernet0/0.10

encapsulation dot1Q 10

ip address 192.168.1.1 255.255.255.0

!

interface FastEthernet0/0.20

encapsulation dot1Q 20

ip address 192.168.2.1 255.255.255.0

!

interface FastEthernet1/0

no ip address

duplex auto

speed auto

shutdown

!

interface Serial2/0

no ip address

shutdown

!

interface Serial3/0

no ip address

shutdown

!

interface FastEthernet4/0

no ip address

shutdown

!

interface FastEthernet5/0

no ip address

shutdown

!

ip classless

!

ip flow-export version 9

!

!

!

!

!

!

!

!

line con 0

!

line aux 0

!

line vty 0 4

login local

transport input ssh

line vty 5 15

login local

transport input ssh

!

!

!

end

 

and this is the switch one

Current configuration : 809 bytes

!

version 12.1

no service timestamps log datetime msec

no service timestamps debug datetime msec

no service password-encryption

!

hostname S1

!

enable secret xxx

!

!

!

ip domain-name S1.se

!

username S1 secret xxx

!

!

!

spanning-tree mode pvst

spanning-tree extend system-id

!

interface FastEthernet0/1

switchport mode trunk

!

interface FastEthernet1/1

switchport access vlan 10

switchport mode access

!

interface FastEthernet2/1

switchport access vlan 20

switchport mode access

!

interface FastEthernet3/1

!

interface FastEthernet4/1

!

interface FastEthernet5/1

!

interface Vlan1

ip address 10.0.0.15 255.255.255.0

!

!

!

!

line con 0

!

line vty 0 4

login local

transport input ssh

line vty 5 15

login local

transport input ssh

!

!

!

!

end

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to pierre512

‎03-26-2022 10:09 AM

because the switch has a different IP address and belongs to VLAN 1

 

On Router, try add below config

 

interface FastEthernet0/0.1

encapsulation dot1Q 1 native

ip address 10.0.0.1 255.255.255.0

no shutdown

 

On SWITCH :

ip default-gateway 10.0.0.1

 

Try Ping from router to 10.0.0.15  - Ping ok ?

Try ping from switch to 10.0.0.1 - Ping ok ?

 

Add RSA Keys for SSH :

 

######### Generate SSH keys :

ip domain-name bb.com  (change what ever you like)
crypto key generate rsa  ( use 1024 or higher for security)

 

Then test from Device to connect to switch.

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents