Table of Contents
Advertisement
Guidelines
SSH is disabled by default. You can use the optional arguments to explicitly bind
SSH to a specified interface. If you explicitly bind SSH to an interface, you must
have previously configured that interface.
In the absence of an explicit address assignment, SSH first attempts to bind to the
management port. If the management port has not been previously configured,
SSH binds to all configured interfaces.
You can compile an ACL to restrict access to SSH.
Use the no ssh command to disable SSH.
Related Commands
xml-mgmt
Examples
v Enables SSH on port 22 (the default port) of the specified interface.
v Enables SSH on port 2200 of the specified interface.
v Disables SSH on all interfaces, which restores the default state.
sslforwarder
Creates an SSL Proxy (forwarder) service.
Syntax
sslforwarder name [local-address | 0] local-port remote-address remote-port sslproxy
[priority]
no sslforwarder name
Parameters
name
local-address
0
# ssh 10.10.13.4
SSH service listener enabled
#
# ssh 10.10.13.4 2200
SSH service listener enabled
#
# no ssh
SSH service listener disabled
#
Specifies the name of the SSL forwarding service.
The name can contain a maximum of 128 characters. For restrictions, refer
to "Object name conventions" on page xxiv.
Specifies the IP address (primary or secondary) of an appliance interface.
In conjunction with the local port, identifies a specific IP address and port
that the SSL Proxy service monitors.
Indicates all appliance interfaces. In conjunction with the local port,
identifies a specific port on all IP interfaces that the SSL Proxy service
monitors.
Chapter 2. Global configuration mode
103
Advertisement
Table of Contents
