can't enable ssh

[mrmoneymatters]

I am trying to set my router to require ssh over telnet.
Here is the command I am giving.
line vty 0 4
transport input telnet ssh

When I do it give me an error. So I started from the beggining, typed transport?, then transport input?, then transport input telnet?, the last time it doesn't give me an option to pick ssh. Anyone know why?



Network Admin
A+, Network+, MCSA 2000, MCSE 2000

 

[ADB100]

What router is it and what software image are you running? You need an IPSec DES or 3DES image to enable SSH. Once you have the correct image you have generate a local crypto key:

hostname cisco-router
ip domain-name company.com
!
crypto key generate rsa [general-keys] modulus 1024
!

The crypto key command differs depending on IOS version so general-keys is not needed on some.

Andy

 

[mrmoneymatters]

1700, 12.1.(5)T10
C1700-sy-m

Is this not the correct software? Do I have to pay to get the correct software image?

Network Admin
A+, Network+, MCSA 2000, MCSE 2000

 

[ADB100]

It looks like you have the IP Plus feature set; this doesn't have any cryptographic features so SSH is not available. You would need the 12.1x IP PLUS IPSEC DES feature set for SSH. 2nd thing to note is the version of IOS you are running is a deferred release so even if you can't enable SSH I would certainly upgrade it (free) to 12.1(27a)GD (unless you need any of the 12.1T features?)

Speak to your supplier for a cost of the crypto images, bear in mind you may need extra memory as well.

Andy

 

[mrmoneymatters]

OK, thanks for your help.

Network Admin
A+, Network+, MCSA 2000, MCSE 2000