003B-通过ssh方式连接设备

SSH密码登录

通过ssh方式远程管理网络设备，用密文的方式在网络中传输管理数据，以满足企业网络设备的安全管理要求
Secure Shell （华为上叫Stelnet）
组网拓扑图如下，R2作为ssh客户端远程登录到ssh服务器R1，华为ensp模拟器中大部分交换机不支持SSH协议，本例中使用的是AR2220设备

1. 配置R1和R2的ip互通
2. R1上进入aaa模式创建用户名密码，服务类型为ssh、R1开启ssh密码认证，启动stelnet服务、设置远程登录通道vty0到4 为aaa认证模式，允许ssh登录vty
3. List item

R2测试ssh远程登录R1

配置R1和R2的ip地址，且能网络互通

[Huawei]sysname R1
[R1]interface GigabitEthernet 0/0/0
[R1-GigabitEthernet0/0/0]ip address 202.100.1.1 255.255.255.252
Feb 16 2020 14:56:41-08:00 R1 %%01IFNET/4/LINK_STATE(l)[0]:The line protocol IP on the interface GigabitEthernet0/0/0 has entered the UP state. 
[R1-GigabitEthernet0/0/0]
----------------------------------------------
<Huawei>system-view 
Enter system view, return user view with Ctrl+Z.
[Huawei]sysname R2
[R2]int g0/0/0                
[R2-GigabitEthernet0/0/0]ip address 202.100.1.2 30
Feb 16 2020 14:55:43-08:00 R2 %%01IFNET/4/LINK_STATE(l)[0]:The line protocol IP on the interface GigabitEthernet0/0/0 has entered the UP state. 

[R2-GigabitEthernet0/0/0]dis th
[V200R003C00]
#
interface GigabitEthernet0/0/0
 ip address 202.100.1.2 255.255.255.252 
#
return
[R2-GigabitEthernet0/0/0]ping 202.100.1.1
  PING 202.100.1.1: 56  data bytes, press CTRL_C to break
    Reply from 202.100.1.1: bytes=56 Sequence=1 ttl=255 time=100 ms
    Reply from 202.100.1.1: bytes=56 Sequence=2 ttl=255 time=40 ms
    Reply from 202.100.1.1: bytes=56 Sequence=3 ttl=255 time=20 ms
    Reply from 202.100.1.1: bytes=56 Sequence=4 ttl=2