Re: ssh access denied in PIX 501

mhel · ‎11-02-2003

Hi,

Anybody here can help me. Im having problem, when our remote office try to access our PIX 501 using ssh. I already issued the command:

ssh 202.x.x.4 255.255.255.255 outside

ssh timeout 5

And also i specify the username and password with the "priviledge 15" statement. Is theres any other syntax that i forgot?

Thanks.

mhel

egerritsen · ‎11-03-2003

Hello,

The Pix only support SSH version 1.

Look if your ssh client supports ssh 1.

I use putty (windows shareware) and they support ssh -1.

Also linux supports ssh-1 but you give some parameters to use ssh -1 instead of default ssh-2.

Also you have to configure local authorization:

aaa-server LOCAL protocol local

aaa authentication ssh console LOCAL

Kind regards

Edwin Gerritsen

Dhs Informatisering

egerritsen@dhs.nl

smia · ‎11-03-2003

Hi Glenn,

I'm new to PIX/VPN etc, I wanted to ask how do I setup a PIX 501 or 506 with ADSL. Our ISP will provide ADSL connection with 5 IP addresses. Can you point me in the right direction and or documents on the above matter and also on setting up VPN tunnels using the above setup. Much appreciate for any help.

Thanks.

steven.wilson · ‎11-03-2003

mhel,

the commands that you have listed will allow the host to connect to the PIX using SSH. Have you put in the commands to create a key?

conf t

hostname steve-pix

domain-name steve.co.uk

ca generate rsa key 2048

ca save all

The above lines will generate a key to be used by your ssh connection.

Cheers,

Steve

mhel · ‎11-07-2003

Steve,

I already done that. Well thanks for your help.

Mhel