Can we use simple TCP connection in place of SSH?

tail-f-systems / JNC

JNC (Java NETCONF Client) is the name of a Java library for communicating with NETCONF agents, and a plugin for pyang (http://code.google.com/p/pyang/) to generate Java classes from YANG models, to be used by the JNC library.

Other

77 stars 87 forks source link

Can we use simple TCP connection in place of SSH? #60

Closed vishwaraths closed 8 years ago

vishwaraths commented 8 years ago

Can we use simple TCP connection to connect with confd server in place of SSH, if yes then which library i need to use to establish a plane connection, so that i can easily see the request data.

klacke commented 8 years ago

Yes - by implementing a TCPSession class that implements the Transport interface. I think we had such a class earlier, but it looks as if it's been removed.

ConfD supports TCP, however this is not secure, the client TELLs ConfD which user/group it is, assuming auth is already done.

If the purpose here is to be able to see what data gets sent on the wire, ConfD has tracing support. Use that. Also JNC has cleartext payload support.

vishwaraths commented 8 years ago

Thanks for your quick response. I will try your suggested way.

vishwaraths commented 8 years ago

Hi klacke, How to enable clear text payload support in jnc?

klacke commented 8 years ago

As I wrote - not supported - you'd have to write "a TCPSession class that implements the Transport interface" I also wrote - that since both JNC as well as ConfD supports clear text traffic tracing, you probably don't need this