SSH (Secure Shell) is the encrypted, authenticated alternative to telnet for remote device management. Telnet sends passwords in plain text - readable by anyone on the wire. SSH encrypts the entire session. This lab configures SSH version 2 on R1, generates RSA keys, and disables telnet on the vty lines so only SSH is allowed.
What you will learn
- Generating an RSA key pair for SSH
- Setting hostname + domain name (required for key generation)
- Configuring
ip ssh version 2(avoid v1) - Restricting vty to SSH only with
transport input ssh
What this lab does NOT cover
- SSH key-based authentication (vs password) - briefly mentioned
- AAA-controlled SSH login - that is sec-07
Topology
Download the CCNA Base Topology .yaml
3 iol-xe routers + 1 alpine + 1 ioll2-xe managed switch.
