Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Enabling Remote Access and File Access Services

SSH, telnet, and FTP are widely used standards for remotely logging into network devices and exchanging files between systems. Before authorized users can access your device, or your device can exchange data with other systems, you must configure one or more of these enabling services. They are all disabled by default in Junos OS and Junos OS Evolved.

SSH is a protocol that uses strong authentication and encryption for remote access across a nonsecure network. SSH provides remote login, remote program execution, file copy, and other functions. SSH is telnet’s successor and is the recommended method for remote access. SSH encrypts all traffic, including passwords, to effectively eliminate eavesdropping, connection hijacking, and other attacks. The SSH utility includes SCP (secure copy), a file transfer program that uses SSH and is the recommended method for secure file exchange.

Because both telnet and FTP are legacy applications that use clear text passwords (therefore creating a potential security vulnerability), we recommend that you use SSH (and SCP). If you do not intend to use FTP or telnet, you do not need to configure them on your device. However, do not forget to consider that some users might use FTP to store configuration templates, retrieve software, or perform other administrative tasks.

To set up remote access and file transfer services:

  1. Enable SSH access.
  2. Enable telnet access.
  3. Enable FTP.
  4. At the top level of the configuration, apply the configuration group.

    If you use a configuration group, you must apply it for it to take effect.

  5. Commit the configuration.