Support for SNETCONF

The NETCONF agent, an application running on the SSH server, uses the secure transport channel established through SSH. NETCONF is used to access configuration and state information and to modify configuration information. Therefore, the ability to access this protocol must be limited to authorized clients. To run NETCONF over SSH, the client must establish an SSH connection using SSH. The client and server exchange keys for message integrity and encryption. Once the client is successfully authenticated, the client invokes the "SSH-connection" service, which is also known as the SSH connection protocol. After the SSH connection service is established, the client opens a session channel, which triggers the establishment of an SSH session. Once the SSH session is established, the client (or application) invokes SNETCONF as an SSH subsystem, which is a feature of SSH2.0. The SSH server ensures the reliability and packet sequencing for the data packets delivered for the SNETCONF subsystem.

Figure 1 Applying NETCONF on the SSH server

Parent Topic: Application Scenarios for SSH
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic