cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1004
Views
0
Helpful
4
Replies

how do I set ssh access on a Cisco 350XG

SJNIII
Level 1
Level 1

I am trying to access a Cisco 350XG switch via ssh . The switch is used in a test environment inside a SCIF with no outside access.  We are using 192.168.56.0/24 for our range

I attempted to ssh to the switch but could not connect.  I was told the switch has an IP address.

I connected a console cable to the switch and logged in and issued a show running-config.  At the end of the running-config, I see an OOB interface that has an assigned Ip address that is in our usable range of IPs – 192.168.56.40.  I do not see an Ip address assigned to any VLANs (there are three VLANs 1, 20, 419).   

I have not worked with Cisco 350XG which looks to be a Layer 2/3 switch.

I was thinking the of the below, but I am not sure since the OOB is set to – 192.168.56.40

Sw>enable

Sw#

Sw#conf t

Sw#(config)#vlan databsase

Sw#(config-vlan)# vlan 99 name vlan-mgt

Sw(config-vlan)#exit

Sw#

Sw#conf t

Sw# (config)#interface vlan 99

Sw# (config-if)ip address 192.168.56.2  255.255.255.0

Sw#(config-if) no shutdown

Sw#(config-if)ex

Sw#conf t

Sw#(config)#interface te1/0/24

Sw#(config-if) no shutdown

Sw#(config-if)switchport mode access

Sw(config-if)switchport access vlan 99

Sw#(config-if) no shutdown

Sw#(config-if)ex

 

Sw# copy running-config startup-config

  

thanks for any info

 

4 Replies 4

Mark Malone
VIP Alumni
VIP Alumni

Hi

ip ssh time-out 60
ip ssh authentication-retries 2
ip ssh source-interface vlan 99
ip ssh version 2

the generate the keys

crypto key generate rsa

(hit return and type 1024 , hit return again it will generate crypto keys

line vty 0 4
 exec-timeout 30 0
 transport input ssh

check with

#sh ip ssh
SSH Enabled - version 2.0
Authentication methods:publickey,keyboard-interactive,password
Authentication Publickey Algorithms:x509v3-ssh-rsa,ssh-rsa
Hostkey Algorithms:x509v3-ssh-rsa,ssh-rsa

thanks

are you saying i need to issue the commands you show in addiction to the ones I listed?

also, are the below to be used as I see these in the CLI guide ?

ip ssh-client authentication
ip ssh-client change server password
ip ssh-client key
ip ssh-client password
ip ssh-client server authentication
ip ssh-client server fingerprint
ip ssh-client source-interface
ipv6 ssh-client source-interface
ip ssh-client username
show ip ssh-client
show ip ssh-client server

Here are some more info on activating SSH in IOS: Guide to better SSH-Security

Thanks

I have to first check if ssh is enabled.  I was told that it was already set.

I am also asking if the commands I show in my original post should be executed to an Ip address on the switch because of the OOB IP being set to an Ip address in our same Ip scheme.

Review Cisco Networking products for a $25 gift card