|
Chilkat •
HOME •
Android™ •
ASP •
Visual Basic •
VB.NET •
C# •
iOS (IPhone) •
Objective-C •
C++ •
C •
MFC •
Delphi •
FoxPro •
Java •
Perl •
PHP Extension •
PHP ActiveX •
Python •
PowerShell •
Ruby •
SQL Server •
VBScript
SSH Firewall - Login and Run Shell Commands on FirewallDemonstrates how to start a shell on a SonicWALL firewall and execute commands. Downloads: MS Windows Visual C/C++ Libraries Linux/CentOS C/C++ Libraries MAC OS X C/C++ Libraries Solaris C/C++ Libraries C++ Builder Libraries #include <CkSsh.h> void ChilkatSample(void) { // Important: It is helpful to send the contents of the // ssh.LastErrorText property when requesting support. CkSsh ssh; // Any string automatically begins a fully-functional 30-day trial. bool success; success = ssh.UnlockComponent("30-day trial"); if (success != true) { printf("%s\n",ssh.lastErrorText()); return; } // Connect to a firewall with SSH admin capabilities: const char * hostname; long port; // Hostname may be an IP address or hostname: hostname = "192.168.1.106"; port = 22; // Keep a session log, which is available via the SessionLog // property: ssh.put_KeepSessionLog(true); success = ssh.Connect(hostname,port); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // When reading, if no additional data arrives for more than // 5 seconds, then abort: ssh.put_IdleTimeoutMs(5000); // SSH Server Authentication // If there is no login/password required, you must still call // AuthenticatePw and use any values for login/password. success = ssh.AuthenticatePw("myLogin","myPassword"); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Open a session channel. long channelNum; channelNum = ssh.OpenSessionChannel(); if (channelNum < 0) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Request a pseudo-terminal const char * termType; termType = "dumb"; long widthInChars; widthInChars = 120; long heightInChars; heightInChars = 40; long pixWidth; pixWidth = 0; long pixHeight; pixHeight = 0; success = ssh.SendReqPty(channelNum,termType,widthInChars,heightInChars,pixWidth,pixHeight); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Start a shell on the channel: success = ssh.SendReqShell(channelNum); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // The SonicWALL firewall will send prompts for // username and password. Read to get the first prompt: success = ssh.ChannelReceiveUntilMatch(channelNum,"User:","ansi",true); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Display what we've received so far: printf("%s\n",ssh.getReceivedText(channelNum,"ansi")); // Send our firewall username. // Note, we must end the command with a bare-LF because // if we send a CRLF, the firewall thinks the CR is part of // the username: success = ssh.ChannelSendString(channelNum,"myLogin\n","ansi"); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Read until we get the prompt for the password: success = ssh.ChannelReceiveUntilMatch(channelNum,"Password:","ansi",true); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Display what we've received so far: printf("%s\n",ssh.getReceivedText(channelNum,"ansi")); // Send our firewall password. // Terminate the password with a bare-LF success = ssh.ChannelSendString(channelNum,"myPassword\n","ansi"); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Assuming it's successful, we should get a command prompt. // In this case, it is "IS-SGxxx>" success = ssh.ChannelReceiveUntilMatch(channelNum,"IS-SGxxx>","ansi",true); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Display what we've received so far. This clears // the internal receive buffer, which is important. // After we send the command, we'll be reading until // the next command prompt. If the command prompt // is already in the internal receive buffer, we'll think we're // already finished... printf("%s\n",ssh.getReceivedText(channelNum,"ansi")); // Send a command. In this case, we are sending the "help" command: success = ssh.ChannelSendString(channelNum,"help\n","ansi"); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Read until the next command prompt: success = ssh.ChannelReceiveUntilMatch(channelNum,"IS-SGxxx>","ansi",true); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Display the command output: printf("%s\n",ssh.getReceivedText(channelNum,"ansi")); // You may continue sending additional commands. // The technique is: send the command, read until the next command prompt, // and then empty the internal receive buffer. // We're done, so shut it down.. // Send an EOF. This tells the server that no more data will // be sent on this channel. The channel remains open, and // the SSH client may still receive output on this channel. success = ssh.ChannelSendEof(channelNum); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Close the channel: success = ssh.ChannelSendClose(channelNum); if (success != true) { printf("%s\n",ssh.lastErrorText()); printf("%s\n",ssh.sessionLog()); return; } // Disconnect ssh.Disconnect(); } |
© 2000-2010 Chilkat Software, Inc. All Rights Reserved.