Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1477
Views
0
Helpful
4
Replies

no ssh access to switch

wavess
Level 1
Level 1

‎04-11-2022 06:08 AM

Hi Folks

 

I swapped an old cisco switch with a new cisco 9200 on Friday.  I mirrored the config, or so I thought.  Everything works but SSH.  I am wondering if someone could refreshed me on what commands need to be implemented for ssh to work.  I was trying to connect to a vlan interface on the switch.  It has several.  So far, I think the following (below).  If you need output from the new or old switch, just yell, I can provide.  the other switches at this remote site i can ssh to.  perhaps i need to do something in the site to site vpn to allow this new switch to be access via ssh?  i'm not sure, perhaps we can start with the basics and check things off the list.  thanks all!  let me know if I can provide any output.  

 

  • Hostname – enable, config t, hostname XXX
  • ip domain name – enable, config t, ip domain-name XXX
  • create ssh key – crypto key generate rsa general-keys modulus 1024
  • Enable ssh - Line vty 0 15, transport input ssh, login local
  • create a user – enable, config t, username XXX password XXX
  • update the version - enable, config t, ip ssh ver 2
Labels:
0 Helpful
4 Replies 4

balaji.bandi
Hall of Fame
Hall of Fame

‎04-11-2022 06:29 AM - edited ‎04-11-2022 06:31 AM

Are you not able to login or SSH not respondig - Can you provide below output :

 

show version

show ip ssh

show run (vty line config)

 

Do you have any ACL ?

 

also check add below config:

 

aaa new-model

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

wavess
Level 1
Level 1
In response to balaji.bandi

‎04-11-2022 09:37 AM

when I try, it just times out.  I'll head over there today to get the output.  thanks for the help.  

 

There is no ACL on the switch.  there is a site to site vpn where this switch is located.

 

thanks.

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to wavess

‎04-11-2022 11:50 AM

So when you attempt SSH you get no response, no prompt, or anything? It just hangs?

Do you have IP connectivity from where you are attempting SSH to the switch address? (easy way to demonstrate is can you ping the address)

It would be helpful to see the output of show ip ssh to verify that it is activated.

It is interesting that there is a site to site vpn. Is it possible that the site to site vpn is not allowing the SSH? The vpn possibility makes the question about IP connectivity even more important. It would be nice to see the complete config but if you can not provide the complete config then seeing the parts about the vpn, along with the parts about the vty configuration.

HTH

Rick
0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to wavess

‎04-12-2022 05:57 AM

i am sure you able to ping switch.

 

Do you have any device on that Local area, where the switch connected to try ?

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents