5 月 312015
5 月 282015
^
5 月 212015
5 月 192015
5 月 192015
参数
可选择加密算法和加密位数,可增加私钥密码,使用私钥是需输入私钥密码。
-b bits Specifies the number of bits in the key to create. For RSA keys, the minimum size is 768 bits and the default is 2048 bits. Gen- erally, 2048 bits is considered sufficient. DSA keys must be exactly 1024 bits as specified by FIPS 186-2. -P passphrase Provides the (old) passphrase. -t type Specifies the type of key to create. The possible values are “rsa1” for protocol version 1 and “dsa”, “ecdsa” or “rsa” for protocol version 2. -C comment Provides a new comment.
配置
主机A,生成密钥对
主机A,查看密钥信息
主机B,生成目录和文件并保存公钥
主机B,显示IP地址信息
主机A,使用SSH登录主机B,无需验证密码(用户密码和私钥密码)
主机A,首次SSH连接断开后,本地保存的主机B公钥信息
5 月 052015
In routed mode, hosts on the inside (Business and Home VLANs) count towards the limit when they communicate with the outside (Internet VLAN), including when the inside initiates a connection to the outside as well as when the outside initiates a connection to the inside. Note that even when the outside initiates a connection to the inside, outside hosts are not counted towards the limit; only the inside hosts count. Hosts that initiate traffic between Business and Home are also not counted towards the limit. The interface associated with the default route is considered to be the outside Internet interface. If there is no default route, hosts on all interfaces are counted toward the limit. In transparent mode, the interface with the lowest number of hosts is counted towards the host limit. See the show local-host command to view host limits.
For a 10-user license, the max. DHCP clients is 32. For 50 users, the max. is 128. For unlimited users, the max. is 250, which is the max. for other models.
http://www.cisco.com/c/en/us/td/docs/security/asa/asa83/configuration/guide/config/license.html