Friday, February 22, 2013

Configuring SSH Access on a Cisco ASA

Configuring SSH Access on a Cisco ASA 5510 Firewall

  • Enter configuration mode
fw> 
fw> enable
fw#
fw# config t
fw(config)#
  • You need to have an enable password to use ssh
fw(config)# enable password <your password>
  • User name and password to connect via ssh
fw(config)# username <your username> password <your password>
  • Configure Authentication Mode
fw(config)# aaa authentication ssh console LOCAL
  • Specify ssh protocol version
fw(config)# ssh version 2
  • Allow Access from a particular network over a particular interface ("inside" is the interface name)
fw(config)# ssh 192.168.0.0 255.255.255.0 inside
  • Generate a key pair
fw(config)# domain-name <your domain>
fw(config)# crypto key generate rsa modulus 1024
  • Exit configuration mode
fw(config)# exit
fw# 
fw# disable
fw>
 
That's it. You can now connect to your ASA 5510 Firewall via ssh on Port 22 from Network 192.168.0.0/255.255.255.0.

No comments:

Post a Comment