cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
178497
Views
26
Helpful
6
Replies

SSH from Cisco Router to another Cisco Router

stevjarbeck
Level 1
Level 1

I believe I already know what the issue is but wanted to confirm.

I recently changed the configuration of the routers so that all incoming SSH connections can only be done via the specified port:

ip ssh port xxxx rotary 10

created an ACL and everything works beautifully with Putty.  When I try to SSH from a router to another router it sits there and the ACL permits the connection but nothing happens.

I use ssh -p xxxx NAME.

I assume this is because of the cert not being recognized by the connecting router?

1 Accepted Solution

Accepted Solutions

Yes I did.  I tried ssh -l username -p xxxx ipaddress

Hi,

What is ios version and model name

Ganesh.H

View solution in original post

6 Replies 6

bcarroll
Level 1
Level 1

have you tried the -l option with a username?

Regards,

Brandon

Yes I did.  I tried ssh -l username -p xxxx ipaddress

Yes I did.  I tried ssh -l username -p xxxx ipaddress

Hi,

What is ios version and model name

Ganesh.H

m.kafka
Level 4
Level 4

Hi,

I'm afraid you misunderstood the purpose of ip ssh port:

To enable secure access to tty (asynchronous) lines, use the ip ssh port command in global configuration mode. To disable this functionality, use the no form of this command.

ip ssh port por-tnum rotary group

no ip ssh port por-tnum rotary group

The result of your command

ip ssh port xxxx rotary 10

is, that incoming ssh sessions destined to your secret port xxxx will be forwarded to a vacant async interface belonging to rotary group 10. That is: anything you type into your ssh client will be sent out as an asynchronous character to the async interface to which the ssh session is connected to. Now I assume that you dont have

What you might want to try is the command rotary which allows to put vty into a rotary group

line vty 2 4
 rotary 10
 login local 

Rgds, MiKa

Message was edited by: m.kafka (added line vty rotary)

ToddHobbs22565
Level 1
Level 1

I was able to login from 1 device to another by entering the following commands. My switch is a catalyst 9200

 

switch#ssh -l username IP Address <enter>

then it'll prompt for your password

dmlandtac
Level 1
Level 1

Sometimes you have to specify the SSH version:

 

ssh -v 2 -l username A.B.C.D

 

 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: