sstent/LogSeqDB
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
edce522e2ac4e2a4847c9dd34e7a013afbdfca67
LogSeqDB/pages/Tech/Networking/SSH authorized_keys USG Ubiquiti Community.md
sstent 4662fe2d3b first commit
2025-12-11 06:26:12 -08:00

4.0 KiB
Raw Blame History

created:: 2024-01-19T13:12:25 (UTC -05:00) tags:: Ubiquiti source:: https://community.ui.com/questions/SSH-authorizedkeys-USG/f73c36ff-e01c-4ca1-9868-584f31cdb310 author:: None

  • SSH authorized_keys USG | Ubiquiti Community

    Excerpt

    can just, for the life of me not get this to work. I don't have a system json entry in my config.gateway.json... and when i try to add the section [and I add it correctly as JSON object] it just gets the USG stuck in provisioning mode when it tries to pull down...I have tried inserting the code with necessary trailing comma - at the start of the file [after opening bracket... but fails.

    can just, for the life of me not get this to work. I don't have a system json entry in my config.gateway.json... and when i try to add the section [and I add it correctly as JSON object] it just gets the USG stuck in provisioning mode when it tries to pull down...I have tried inserting the code with necessary trailing comma - at the start of the file [after opening bracket... but fails. 

    {
  "firewall": {
      "name": {
          "WAN_LOCAL": {
              "rule": {
                  "4": {
                      "action": "accept",
                      "description": "SSH to WAN",
                      "destination": {
                          "address": "*redacted*",
                          "port": "22"
                      },
                      "protocol": "tcp"
                  },
                  "50": {
                      "action": "accept",
                      "description": "Allow L2TP",
                      "destination": {
                          "port": "500,1701,4500"
                      },
                      "protocol": "udp"
                  },
                  "51": {
                      "action": "accept",
                      "description": "Allow ESP",
                      "protocol": "esp"
                  }
              }
          }
      }
  },
  "vpn": {
      "pptp": {
          "remote-access": {
              "authentication": {
                  "local-users": {
                      "username": {
                          "user1": {
                              "password": "*redacted*"
                          }
                      }
                  },
                  "mode": "local"
              }
          }
      },
      "ipsec": {
          "auto-firewall-nat-exclude": "disable",
          "ipsec-interfaces": {
              "interface": [
                  "eth0"
              ]
          },
          "nat-networks": {
              "allowed-network": {
                  "0.0.0.0/0": "''"
              }
          },
          "nat-traversal": "enable"
      },
      "l2tp": {
          "remote-access": {
              "authentication": {
                  "local-users": {
                      "username": {
                          "user1": {
                              "password": "*redacted*"
                          }
                      }
                  },
                  "mode": "local"
              },
              "client-ip-pool": {
                  "start": "192.168.1.200",
                  "stop": "192.168.1.254"
              },
              "dhcp-interface": "eth0",
              "dns-servers": {
                  "server-1": "8.8.8.8",
                  "server-2": "8.8.4.4"
              },
              "ipsec-settings": {
                  "authentication": {
                      "mode": "pre-shared-secret",
                      "pre-shared-secret": "*redacted*"
                  },
                  "ike-lifetime": "3600"
              },
              "mtu": "1492"
          }
      }
  }
}
Reference in New Issue View Git Blame Copy Permalink