| Author |
Message |
Mike Farnham
Guest
|
 Posted:
Thu Sep 16, 2004 6:22 pm Post subject:
Nortel - SSH -versus- Non-SSH codes ** WARNING ** |
|
|
Hey gang -
You may or may not be aware but Nortel has been releasing 2 versions
of code lately for their switches - one is a SSH version and one is a
Non-SSH version.
The SSH version will eliminate your text menus when you telnet/console
into the switch. I called them about this, and this is a security
feature. So if you do not know the Nortel CLI very well, then do not
install the SSH version.
For example, on the 5510 switches there is a new version:
4.0.1.32 (Non-SSH) and
4.0.1.33s (SSH)
We want to put on SSH, but are not happy about the loss of the menu,
so we're holding off on it. The CLI is very similar to Cisco's so that
helps, but the menu is nice to have. There is no way to invoke the
menu either once the SSH code is on there, BTW.
Anyhow, I wanted to make sure the word was out there about this.
Comments?? Post em - Thanks, Mike |
|
| Back to top |
|
 |
Rick Harris
Guest
|
| Posted:
Fri Sep 17, 2004 5:29 pm Post subject:
Re: Nortel - SSH -versus- Non-SSH codes ** WARNING ** |
|
|
mike.farnham@co.manatee.fl.us (Mike Farnham) wrote in message news:<af3623de.0409160622.4d37f696@posting.google.com>...
| Quote: | Hey gang -
You may or may not be aware but Nortel has been releasing 2 versions
of code lately for their switches - one is a SSH version and one is a
Non-SSH version.
The SSH version will eliminate your text menus when you telnet/console
into the switch. I called them about this, and this is a security
feature. So if you do not know the Nortel CLI very well, then do not
install the SSH version.
For example, on the 5510 switches there is a new version:
4.0.1.32 (Non-SSH) and
4.0.1.33s (SSH)
We want to put on SSH, but are not happy about the loss of the menu,
so we're holding off on it. The CLI is very similar to Cisco's so that
helps, but the menu is nice to have. There is no way to invoke the
menu either once the SSH code is on there, BTW.
Anyhow, I wanted to make sure the word was out there about this.
Comments?? Post em - Thanks, Mike
|
Do you lose the web interface too ? |
|
| Back to top |
|
|
Charles R. Anderson
Guest
|
| Posted:
Sat Sep 18, 2004 2:55 pm Post subject:
Re: Nortel - SSH -versus- Non-SSH codes ** WARNING ** |
|
|
Mike Farnham <mike.farnham@co.manatee.fl.us> wrote:
| Quote: | The SSH version will eliminate your text menus when you telnet/console
into the switch. I called them about this, and this is a security
feature. So if you do not know the Nortel CLI very well, then do not
install the SSH version.
|
It is most likely not as much a security issue as an issue of space to
store both the SSH code and the menu code in same firmware image. Due
to the limited resources of flash/memory space, they give you a choice
of either menus/no SSH or SSH/no menus. |
|
| Back to top |
|
|
Mike Farnham
Guest
|
| Posted:
Mon Sep 20, 2004 6:18 pm Post subject:
Re: Nortel - SSH -versus- Non-SSH codes ** WARNING ** |
|
|
I am not aware that the web interface is lost. I usually use the
Device Manager and Nortel told me they are pushing people to use the
device manager and that's part of the reason for the text menu going
away.
rick.harris@scdmv.net (Rick Harris) wrote in message news:<96aff1fe.0409170529.ad7d7e3@posting.google.com>...
| Quote: | mike.farnham@co.manatee.fl.us (Mike Farnham) wrote in message news:<af3623de.0409160622.4d37f696@posting.google.com>...
Hey gang -
You may or may not be aware but Nortel has been releasing 2 versions
of code lately for their switches - one is a SSH version and one is a
Non-SSH version.
The SSH version will eliminate your text menus when you telnet/console
into the switch. I called them about this, and this is a security
feature. So if you do not know the Nortel CLI very well, then do not
install the SSH version.
For example, on the 5510 switches there is a new version:
4.0.1.32 (Non-SSH) and
4.0.1.33s (SSH)
We want to put on SSH, but are not happy about the loss of the menu,
so we're holding off on it. The CLI is very similar to Cisco's so that
helps, but the menu is nice to have. There is no way to invoke the
menu either once the SSH code is on there, BTW.
Anyhow, I wanted to make sure the word was out there about this.
Comments?? Post em - Thanks, Mike
Do you lose the web interface too ? |
|
|
| Back to top |
|
|
Walter Roberson
Guest
|
| Posted:
Mon Sep 20, 2004 8:00 pm Post subject:
Re: Nortel - SSH -versus- Non-SSH codes ** WARNING ** |
|
|
In article <af3623de.0409200618.5f24ac82@posting.google.com>,
Mike Farnham <mike.farnham@co.manatee.fl.us> wrote:
:I am not aware that the web interface is lost. I usually use the
:Device Manager and Nortel told me they are pushing people to use the
:device manager and that's part of the reason for the text menu going
:away.
Hmmm -- the 5510 is currently our #2 choice for our upcoming network
expansion, but I really don't want to be configuring or managing
my network using Device Manager!
I had numerous problems with Device Manager years ago when we first
received our Accelar 1150 -- couldn't configure devices the way I
wanted, was clumsy for a number of operations, DM would hang, and
if we were doing any serious DM reconfiguration work, the Accelar 1150
itself would hang when we used DM. So I put it aside and didn't even
-try- to use it for years.
It so happens that a few weeks ago, I loaded the latest DM and gave
it a whirl. Slow slow slow slow slow!!! Several minutes just to bring
it up, and delays of several seconds for -everything- I did. Unusuable
as a configuration or monitoring tool, or at least unusable if one
does not use much faster equipment than I was using (800 MHz, 512 Mb.)
--
Warning: potentially contains traces of nuts. |
|
| Back to top |
|
|
MC
Guest
|
| Posted:
Tue Sep 21, 2004 2:32 am Post subject:
Re: Nortel - SSH -versus- Non-SSH codes ** WARNING ** |
|
|
not sure why it is slow on that fast of a machine, it does OK for us on
similar machine, however a fster machine does much better.
It is Java based and much improved.
"Walter Roberson" <roberson@ibd.nrc-cnrc.gc.ca> wrote in message
news:cimuq4$moh$1@canopus.cc.umanitoba.ca...
| Quote: | In article <af3623de.0409200618.5f24ac82@posting.google.com>,
Mike Farnham <mike.farnham@co.manatee.fl.us> wrote:
:I am not aware that the web interface is lost. I usually use the
:Device Manager and Nortel told me they are pushing people to use the
:device manager and that's part of the reason for the text menu going
:away.
Hmmm -- the 5510 is currently our #2 choice for our upcoming network
expansion, but I really don't want to be configuring or managing
my network using Device Manager!
I had numerous problems with Device Manager years ago when we first
received our Accelar 1150 -- couldn't configure devices the way I
wanted, was clumsy for a number of operations, DM would hang, and
if we were doing any serious DM reconfiguration work, the Accelar 1150
itself would hang when we used DM. So I put it aside and didn't even
-try- to use it for years.
It so happens that a few weeks ago, I loaded the latest DM and gave
it a whirl. Slow slow slow slow slow!!! Several minutes just to bring
it up, and delays of several seconds for -everything- I did. Unusuable
as a configuration or monitoring tool, or at least unusable if one
does not use much faster equipment than I was using (800 MHz, 512 Mb.)
--
Warning: potentially contains traces of nuts. |
|
|
| Back to top |
|
|
Mike Farnham
Guest
|
| Posted:
Tue Sep 21, 2004 3:29 pm Post subject:
Re: Nortel - SSH -versus- Non-SSH codes ** WARNING ** |
|
|
roberson@ibd.nrc-cnrc.gc.ca (Walter Roberson) wrote in message news:<cimuq4$moh$1@canopus.cc.umanitoba.ca>...
| Quote: | In article <af3623de.0409200618.5f24ac82@posting.google.com>,
Mike Farnham <mike.farnham@co.manatee.fl.us> wrote:
:I am not aware that the web interface is lost. I usually use the
:Device Manager and Nortel told me they are pushing people to use the
:device manager and that's part of the reason for the text menu going
:away.
Hmmm -- the 5510 is currently our #2 choice for our upcoming network
expansion, but I really don't want to be configuring or managing
my network using Device Manager!
|
....well that was some time ago and the newer versions are very stable.
I am running mine on a 350mhz Windows NT PC with 192MB RAM and it does
take a little bit to load (it's 160 megs so I am not expecting a
racehorse)
As far as configuring - one the program is loaded, it runs just fine
opewrationally and speed-wise. No complaints. Been using it in one
form or another for 5 years now and it has only gotten better.
| Quote: | I had numerous problems with Device Manager years ago when we first
received our Accelar 1150 -- couldn't configure devices the way I
wanted, was clumsy for a number of operations, DM would hang, and
if we were doing any serious DM reconfiguration work, the Accelar 1150
itself would hang when we used DM. So I put it aside and didn't even
-try- to use it for years.
|
....again, it is MUCH better now than those days...
| Quote: | It so happens that a few weeks ago, I loaded the latest DM and gave
it a whirl. Slow slow slow slow slow!!! Several minutes just to bring
it up, and delays of several seconds for -everything- I did. Unusuable
as a configuration or monitoring tool, or at least unusable if one
does not use much faster equipment than I was using (800 MHz, 512 Mb.)
|
....version 5.8.2.1 ?? Solid as a rock. Works great for monitoring and
configuration. Not sure why your setup is having issues - unless
there's a java conflict or something. |
|
| Back to top |
|
|
Paul Tichy
Guest
|
| Posted:
Sun Sep 26, 2004 12:37 am Post subject:
Re: Nortel - SSH -versus- Non-SSH codes ** WARNING ** |
|
|
------------------------
From: Walter Roberson <roberson@ibd.nrc-cnrc.gc.ca>
Subject: Re: Nortel - SSH -versus- Non-SSH codes ** WARNING **
Date: 20 Sep 2004 16:00:04 GMT
To: "comp.dcom.sys.bay-networks"
In article <af3623de.0409200618.5f24ac82@posting.google.com>,
Mike Farnham <mike.farnham@co.manatee.fl.us> wrote:
:I am not aware that the web interface is lost. I usually use the
:Device Manager and Nortel told me they are pushing people to use the
:device manager and that's part of the reason for the text menu going
:away.
Hmmm -- the 5510 is currently our #2 choice for our upcoming network
expansion, but I really don't want to be configuring or managing
my network using Device Manager!
I had numerous problems with Device Manager years ago when we first
received our Accelar 1150 -- couldn't configure devices the way I
wanted, was clumsy for a number of operations, DM would hang, and
if we were doing any serious DM reconfiguration work, the Accelar 1150
itself would hang when we used DM. So I put it aside and didn't even
-try- to use it for years.
It so happens that a few weeks ago, I loaded the latest DM and gave
it a whirl. Slow slow slow slow slow!!! Several minutes just to bring
it up, and delays of several seconds for -everything- I did. Unusuable
as a configuration or monitoring tool, or at least unusable if one
does not use much faster equipment than I was using (800 MHz, 512 Mb.)
--
Warning: potentially contains traces of nuts.
---------------End of Original Message-----------------
I use the latest JDM on a 200Mhz PII with 64M and it runs
just fine. I'm not saying you didn't see what you saw, but
there may be reasons other than the product itself.
Anyway.
Please make no claim or assumption Nortel is "pushing" JDM.
If a Nortel employee recommends JDM it may be an expression
of his preference; I happen to like it; but Nortel is not
trying to sway users toward any particular utility. If it
did, they wouldn't offer products with menus/cli/web/snmp
configuration tools. That isn't my opinion, it's by design.
You pick the UI you like, that's just one reason to buy Nortel.
The menus were removed from the SSH images for internal
development and technical reasons. There has always
been discussion about putting them back (may be on the
plan, I haven't looked). If you have a need for it please
contact your local Nortel engineer and fill him in on
your requirements.
/*
Paul Tichy Houston 281-260-4849
Southwest District Achitect, Switching Solutions
Nortel Networks
*/ |
|
| Back to top |
|
|
Michael Roberts
Guest
|
| Posted:
Wed Oct 13, 2004 8:47 pm Post subject:
Re: Nortel - SSH -versus- Non-SSH codes ** WARNING ** |
|
|
We are using the 4.0.1 image on our BS5510s. This image supports
SSH/Telnet/SNMP/HTTP. It also gives you the choice of the NNCLI or menu
interface with Telnet and SSH.
We have traditionaly used the menu interface on all of the Baystack type
devices we have owned; however, we are finding that several configuration
options such as SSH and CANA (custom autonegoiate advertisements) can not be
configured through the menu inteface.
Not sure what Nortel's roadmap is for adding configuration of these options
into the menu interface, so we have re-written our SOPs based on the CLI.
We are finding the CLI can be every bit as fast as configuring via the menu
interface.
-mike
"Charles R. Anderson" <craIHateSpam@wpi.edu> wrote in message
news:slrnckoj3a.bfe.craIHateSpam@angus.ind.WPI.EDU...
| Quote: | Mike Farnham <mike.farnham@co.manatee.fl.us> wrote:
The SSH version will eliminate your text menus when you telnet/console
into the switch. I called them about this, and this is a security
feature. So if you do not know the Nortel CLI very well, then do not
install the SSH version.
It is most likely not as much a security issue as an issue of space to
store both the SSH code and the menu code in same firmware image. Due
to the limited resources of flash/memory space, they give you a choice
of either menus/no SSH or SSH/no menus. |
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in