the public key. The client maintains a cache containing a list of fingerprints per
server IP address. If the information in this cache changes, the client notifies the
user.
5. The client chooses a random number that is used to encrypt and decrypt the
information sent.
6. This random number is sent to the Branch Gateway, after encryption based on the
Branch Gateway’s public key.
7. When the Branch Gateway receives the encrypted random number, it decrypts it
using the private key. This random number is now used with the 3DES-CBC
encryption method for all encryption and decryption of data. The public and private
keys are no longer used.
Password authentication process
Before any data is transferred, the Branch Gateway requires the client to supply a username
and password. This authenticates the user on the client side to the Branch Gateway.
Enabling SSH on the Gateway
About this task
To execute the SSH protocol, first assign the hostname identification.
Procedure
1. Use the
hostname
command to assign hostname identification.
2. To enable SSH to be used, you must also configure the server host key.
Use the
crypto key generate dsa
command to generate an SSH host key
pair.
3. Enter
ip
ssh
to enable SSH authentication.
SSH is enabled by default.
Disabling SSH on the Gateway
Procedure
1. Use the
disconnect ssh
command to disconnect an existing SSH session.
Accessing the Branch Gateway
46 Administering Avaya G430 Branch Gateway
October 2013
Summary of Contents for G430
Page 1: ...Administering Avaya G430 Branch Gateway Release 6 3 03 603228 Issue 5 October 2013 ...
Page 12: ...12 Administering Avaya G430 Branch Gateway October 2013 ...
Page 246: ...VoIP QoS 246 Administering Avaya G430 Branch Gateway October 2013 Comments infodev avaya com ...
Page 556: ...IPSec VPN 556 Administering Avaya G430 Branch Gateway October 2013 Comments infodev avaya com ...