33.8.2 SSH Implementation on the ZyWALL/USG
Your ZyWALL/USG supports SSH versions 1 and 2 using RSA authentication and four encryption
methods (AES, 3DES, Archfour, and Blowfish). The SSH server is implemented on the ZyWALL/USG
for management using port 22 (by default).
33.8.3 Requirements for Using SSH
You must install an SSH client program on a client computer (Windows or Linux operating system)
that is used to connect to the ZyWALL/USG over SSH.
33.8.4 Configuring SSH
Click Configuration > System > SSH to change your ZyWALL/USG's Secure Shell settings. Use
this screen to specify from which zones SSH can be used to manage the ZyWALL/USG. You can also
specify from which IP addresses the access can come.
Figure 444 Configuration > System > SSH
The following table describes the labels in this screen.
Table 278 Configuration > System > SSH
LABEL
Enable
Version 1
Server Port
Server
Certificate
Service Control
Chapter 33 System
DESCRIPTION
Select the check box to allow or disallow the computer with the IP address that matches
the IP address(es) in the Service Control table to access the ZyWALL/USG CLI using this
service.
Select the check box to have the ZyWALL/USG use both SSH version 1 and version 2
protocols. If you clear the check box, the ZyWALL/USG uses only SSH version 2 protocol.
You may change the server port number for a service if needed, however you must use the
same port number in order to use that service for remote management.
Select the certificate whose corresponding private key is to be used to identify the
ZyWALL/USG for SSH connections. You must have certificates already configured in the My
Certificates screen.
This specifies from which computers you can access which ZyWALL/USG zones.
ZyWALL/USG Series User's Guide
639