HP 3600 v2 Series Command Reference Manual page 271
Hide thumbs
Also See for 3600 v2 Series:
- Command reference manual (510 pages) ,
- Configuration manual (449 pages) ,
- Security configuration manual (398 pages)
Table of Contents
Advertisement
Parameters
server: IPv4 address or host name of the server, a case-insensitive string of 1 to 20 characters.
port-number: Port number of the server, in the range of 0 to 65535. The default is 22.
vpn-instance vpn-instance-name: Specifies the MPLS L3VPN that the server belongs to, where
vpn-instance-name is a case-sensitive string of 1 to 31 characters. If the server is on the public network,
do not specify this option.
identity-key: Specifies the algorithm for publickey authentication, either dsa or rsa. The default is dsa.
prefer-ctos-cipher: Preferred encryption algorithm from client to server, defaulted to aes128.
3des: Encryption algorithm 3des-cbc.
•
•
aes128: Encryption algorithm aes128-cbc.
des: Encryption algorithm des-cbc.
•
prefer-ctos-hmac: Preferred HMAC algorithm from client to server, defaulted to sha1-96.
md5: HMAC algorithm hmac-md5.
•
md5-96: HMAC algorithm hmac-md5-96.
•
•
sha1: HMAC algorithm hmac-sha1.
sha1-96: HMAC algorithm hmac-sha1-96.
•
prefer-kex: Preferred key exchange algorithm, defaulted to dh-group-exchange.
dh-group-exchange: Key exchange algorithm diffie-hellman-group-exchange-sha1.
•
•
dh-group1: Key exchange algorithm diffie-hellman-group1-sha1.
dh-group14: Key exchange algorithm diffie-hellman-group14-sha1.
•
prefer-stoc-cipher: Preferred encryption algorithm from server to client, defaulted to aes128.
prefer-stoc-hmac: Preferred HMAC algorithm from server to client, defaulted to sha1-96.
Description
Use the ssh2 command to establish a connection to an IPv4 SSH server and specify the public key
algorithm, the preferred key exchange algorithm, and the preferred encryption algorithms and preferred
HMAC algorithms between the client and server.
When the client's authentication method is publickey, the client needs to get the local private key for
validation. As the publickey authentication includes RSA and DSA algorithms, you must specify an
algorithm (by using the identity-key keyword) in order to get the correct data for the local private key. By
default, the encryption algorithm is DSA.
Examples
# Log in to remote SSH2.0 server 10.214.50.51, using the following algorithms:
Preferred key exchange algorithm: DH-group1
•
•
Preferred encryption algorithm from server to client: AES128
Preferred HMAC algorithm from client to server: MD5
•
Preferred HMAC algorithm from server to client: SHA1-96
•
<Sysname>
prefer-ctos-hmac md5 prefer-stoc-hmac sha1-96
ssh2
10.214.50.51
prefer-kex
dh-group1
261
prefer-stoc-cipher
aes128
- Quick Links:
- Local User Configuration Commands
Hide quick links:
Advertisement
Table of Contents
