BigIron RX Series Configuration Guide 92153-1002253-01Displaying SSH connection information 30Filtering SSH access using ACLsYou can permit or deny SSH access to the device using ACLs. To use ACLs, first create the ACLs youwant to use. You can specify a numbered standard IPv4 ACL, a named standard IPv4 ACL.Then enter the following command.BigIron RX(config)# access-list 10 permit host 192.168.144.241BigIron RX(config)# access-list 10 deny host 192.168.144.242 logBigIron RX(config)# access-list 10 permit host 192.168.144.243BigIron RX(config)# access-list 10 deny anyBigIron RX(config)# ssh access-group 10Syntax: ssh access-group < standard-named-acl> | < standard-numbered-acl>Refer to the section Chapter 21, “Access Control List” for details on how to configure ACLs.Disabling 3-DESBy default, both 3-DES and AES encryption algorithms are enabled on the BigIron RX device. Youcan disable 3-DES by entering the following command.BigIron RX(config)# ip ssh encryption aes-onlySyntax: [no] ip ssh encryption aes-onlyDisplaying SSH connection informationUp to five SSH connections can be active on the device. To display information about SSHconnections, enter the following command.Syntax: show ip ssh [| begin < expression> | exclude < expression> | include < expression>]This display shows the following information about the active SSH connections.The show who command also displays information about SSH connections. For example.TABLE 147 SSH connection informationThis field... Displays...Connection The SSH connection ID. This can be from 1 – 5.Version The SSH version number. This should always be 1.5.Encryption The encryption method used for the connection.Username The user name for the connection.BigIron RX# show ip sshConnection Version Encryption Username1 SSH-2 3des-cbc Hanuma2 SSH-2 aes128-cbc Mikaila3 SSH-2 aes192-cbc Jenny4 SSH-2 aes256-cbc Mariah5 SSH-2 3des-cbc Logan