Central SSH OOB with Opengear’s Lighthouse Console Gateway


Watch as Keith Hansen, Senior Sales Engineer at Opengear, gives us an overview of how to use Lighthouse Console Gateway feature as a single point of out-of-band access to all of your distributed console servers and connected serial ports.


Hi everybody! Keith here, Opengear SE. Today I will be reviewing our Lighthouse Console gateway feature. So I’ll review a couple of syntax-related items. How to connect into a device or a console server from the command line. It can be used either on a MAC or a PC using your prefered terminal application.

Here you’ll see your typical username. Console server name is one method that will get you directly connected to that console server that is being managed by your Lighthouse. You get a little more granular here by connecting to that console server and then to a particular port that you have configured on that console server. And then this option here will allow you to connect directly to the port. One thing here to know is that the port name must be unique.

And so let me go ahead, and we’ll jump over here to my terminal application. So the first method here that I’ve got is the username connecting directly to the IM7200. Go ahead and authenticate. And you’ll see that now I’m on that 7200 with the managed devices that I have enabled. We’ve been talking about my Cisco-ASA, so let’s go ahead and connect directly to that device. So port 6 – hit enter twice to get into the console of that, and go ahead and authenticate. I’m on my device here, as you can see.

The nice thing about this option is that if I want to manage multiple devices on one session — Now I can jump back to that menu and connect over to the Cisco switch here that I’ve got, and this one I didn’t set up an enable password so I can jump right on. Fairly easy and straightforward. And to close out, if we use ~? mark, you can see the different commands that you can use. Inside of our PM shell. Earlier, I enter ~m to get to the port menu. If i want to close out of that, I can simply enter ~., which is going to close me out.

And the second method is connecting directly though that 7200 to that Cisco-ASA 5520. Same thing — still authenticate. I accept it. It is directly connecting me to the Cisco-ASA without having to go through that pm shell menu a little bit quicker. Same thing to close — ~. dot to close that out.

And now the third option is directly connecting to my 5520. I’m authenticating as a different user this time, and I’ve set up SSH key authentication instead instead of entering passwords for root. And so that will make it a little bit quicker for you . And you’ll see there, as long as your device name is unique then you can directly connect to that. Again, if you happen to have two Cisco-ASA 5520’s, you’ll want to have a unique name. So for my second one Cisco-ASA 5520-2 or something.  As long as that’s, unique you are good to go. And that’s all I have for today, we’ll catch you next time.

View all Videos