[resolution]SSL login and SFTP used possible in OXE 9.1 ?

[thkim81]

Dear All

I searching the login with SSL not used telnet. but I cannot search. TT

I want login OXE 9.1 and mtcl account with SSL.

Is is possible?

and SFTP is possible in OXE 9.1 ?

I have ever used this protocol(?).

so I trying to search this function.

but I cann't found not yet.

so I want give to me tip about SSL and SFTP use manual.

I hope want answer as soon as possible.

thanks.


=>
I testing the SSH and SFTP. hu~~~I first testing and very hard to me

<Method>
1. You connecting the rs232 + serial cable at OXE server.
2. su(root) privilidge
3. netadmin -m -> 11.security -> 1.1. 'Isolate Ethernet interface and TCP accesses'
The internet accesses to the PABX are currently SECURED.

WARNING : Only machines declared as trusted hosts
will be able to have access to the PABX.

Do you want to secure your Internet accesses (y/n default is y) ? y

4. 2. 'Restricted Ethernet access' -> 3. 'Add/Update a trusted host' ->

Enter the type of the trusted host(s) :
1. Router, SIP gateway, other applications
2. CPU
3. 47xx (management machines)
4. IP equipments (IP-Phone, INTIPA/INTIPB, GD, LIOE...)
5. PC Installer
0. Previous menu
What is your choice ? 3

Trusted host's IP name ? kkk

The name you gave isn't in our hosts database. Do you want to add it and so
give the corresponding address (y/n default is 'n') ? y

Trusted host's IP address ? 211.111.111.111

[PS] : manager computer(need to connecting OXE) choose 47xx or pc installer cause they are supporting SSH.

5. 7. 'SSH configuration' choose and
Do you want to enhance security with SSH (y/n, default is n) ? y

0. "Quit" choose -> 18. 'Apply modifications'


and putty program using the connecting the OXE. secure crt used too.

ssh1 or ssh2 choose and port 22.

[tot3nkopf]

Sys doc-->Security

[thkim81]

I check security. but I connecting with putty. but network connection is fail.

Is this netstat -an is status LISTEN

(1)eit_b> netstat -an
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 0.0.0.0:9090 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:2565 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:2533 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:2535 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:2569 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:2538 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:2539 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:2540 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:2543 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:2546 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:2555 0.0.0.0:* LISTEN
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN
tcp 0 0 127.0.0.1:2535 127.0.0.1:10001 ESTABLISHED
tcp 0 0 211.52.153.208:2538 211.52.153.208:10003 ESTABLISHED
tcp 0 0 127.0.0.1:2535 127.0.0.1:10002 ESTABLISHED
tcp 0 0 211.52.153.208:2538 211.52.153.208:10005 ESTABLISHED
tcp 0 0 211.52.153.208:2555 211.52.153.208:10004 ESTABLISHED
tcp 0 0 127.0.0.1:10001 127.0.0.1:2535 ESTABLISHED
tcp 0 0 127.0.0.1:10002 127.0.0.1:2535 ESTABLISHED

and config is

1. I connecting with rs232 cable direct OXE server.
2. change mode SU.
3. netadmin -m -> 11. security ->1.'Isolate Ethernet interface and TCP accesses -> yes -> 7. 'SSH configuration' -> Yes .

and connecting with Putty program. and session -> Host Name (OXE IP) and port 22 -> open button click.

but error window indicate and release error syntax ( Server unexpetedly closed netwirk connection)

I testing lab in my office. hardware config is OXE (1EA) + Intel Express 410T standlaone switch + my notebook (with OS XP pro)

configuration is very simple. why do not enter with SSH ?

I hope answer as soon as possible.

thanks.

[tot3nkopf]

Put your IP in netadmin -m:
menu 9 (Host names and addresses)
menu 11 (Security)-->menu 2 (Restricted ethernet access)-->menu 3 (Add update a trusted host) as PC installer or managemet 47xx (see sys doc)

[thkim81]

thanks tot3nkopf

but this error syntac indicating.

Please wait, working ...
(N7G-apply): Creating /etc/hosts.allow and /etc/hosts.deny has failedError -1 return by called function for index 18 (Return to continue)

I search hosts files. hosts.allow cann't found the host name my notebook IP.

so How can I add the my notebook IP ?

pls answer the my question. thirds days going... TT

[thkim81]

thanks tot3nkopf

I don't how do I thank you.

but I want config sftp. but my manual book isn't indicate.

I want to supporting for you help.

thanks.

[Klink]

My dear friend isolate the system on the network for a while and run on backup(Standby becomes new MAIN CPU)
disable security on OXE
add all ip addresses of all equipment(do not forget virtual machines) which will interact with OXE in trusted hosts and addresses list
perform ping to each with security disabled
check network if any issues
enable security again
try the system out on test basis and check the results
Build & check
Config_BT.cfg
Sign lanpbx.cfg

if all is fine, put the system back on and replicate on standby

if system still not working fine, just do the following:
try to access OXE and post the result of running "incvisu" command. "excvisu" command and "checkdb"(to run in directory /DHS3data/mao). I am sure someone will help.

Would someone mind telling me what is SFTC? I have to admit I'm not familiar with it. Am I even replying on the right topic I wonder?