DVR5100 SSH Info

Issue

There are intricacies to establishing SSH connectivity to DVR5100 systems.

Product Line

Pelco Video Management

Environment

Endura DVR5100 all versions

Cause

SSH must be enabled and accessed differently on DVR5100 than other Endura devices.

Resolution

First, follow LL#12379 to determine whether or not the DVR5100 has been "Endura Enabled".
note: The default DVR5100 boot logo always shows the text "Endura Enabled" regardless of whether or not the Endura Enabled CD has actually been installed.
 

If DVR5100 has been Endura Enabled

  1. Use the DVR5100s' local console monitor to verify that SSH is enabled via the Setup > Network menu.
  2. Putty into the DVR5100 like any other Endura device (normal login credentials of root pel2899100).
     

If DVR5100 has not been Endura Enabled

  1. Use the DVR5100s' local console monitor to verify that SSH is enabled via the Setup > Network menu.
  2. From a Windows PC workstation, launch the DVR5100 Remote Client application and connect to the DVR5100.
  3. Putty into the DVR5100 using the alternate login credentials of pelcoremote pel2899100.
  4. After the SSH connection has been established, type "sudu su" to gain root access.
     

To keep SSH enabled permanently (stop it from disabling upon DVR5100 reboot)

  1. Login to DVR5100 via SSH or a local monitor with blind login.
  2. vi /etc/sysconfig/firewall
  3. Enter /SSH and press return to search for the SSH section of the file...
  4. ...press / to go into edit mode, then adjust the following text...
    if [ "$SSH" == "1" ] ; then
       if [ ! -e /tmp/SSH.FW ]; then
             PRINT "Enabling SSH Traffic"
             $iptables -D INPUT -i tap0 -p tcp --dport 22 -j DROP
          touch /tmp/SSH.FW
       fi
    else
       if [ -e /tmp/SSH.FW ]; then
             PRINT "Disabling SSH Traffic"
             $iptables -I INPUT -i tap0 -p tcp --dport 22 -j DROP
          rm -f /tmp/SSH.FW
       fi
    fi

    ...so that the else section is commented (#) out as shown below...

    if [ "$SSH" == "1" ] ; then
       if [ ! -e /tmp/SSH.FW ]; then
             PRINT "Enabling SSH Traffic"
             $iptables -D INPUT -i tap0 -p tcp --dport 22 -j DROP
          touch /tmp/SSH.FW
       fi
    #else
    #   if [ -e /tmp/SSH.FW ]; then
    #         PRINT "Disabling SSH Traffic"
    #         $iptables -I INPUT -i tap0 -p tcp --dport 22 -j DROP
    #      rm -f /tmp/SSH.FW
    #   fi
    fi
  5. Press escape to get out of edit mode, then type :wq and press enter to exit.