Users Guide
When FIPS is enabled, the default key-exchange-algorithm is diffie-hellman-
group14-sha1.
When FIPS is not enabled, the default key-exchange-algorithms are the following:
• diffie-hellman-group-exchange-sha1
• diffie-hellman-group1-sha1,
• diffie-hellman-group14-sha1
port port-number (OPTIONAL) Enter the keyword port then the port number of the listening port
of the SSH server. The range is from 1 to 65535. The default is 22.
[version {1 | 2}] (OPTIONAL) Enter the keyword version then the SSH version 1 or 2 to specify
only SSHv1 or SSHv2.
NOTE: If you enable FIPS mode, you can only select version 2.
Defaults
• Default listening port is 22.
• Default cipher list is 3des-cbc,aes128-cbc,aes192-cbc,aes256-cbc,aes128-ctr,aes192-ctr,aes256-ctr.
• When FIPS is enabled, the default is hmac-sha1-96.
• When FIPS is not enabled, the default is hmac-md5,hmac-md5-96,hmac-sha1,hmac-sha1-96,hmac-
sha2-256,hmac-sha2-256-96.
• When FIPS is enabled, the default is die-hellman-group14-sha1.
• When FIPS is not enabled, the default is die-hellman-group-exchange-sha1,die-hellman-group1-
sha1,die-hellman-group14-sha1.
Command Modes CONFIGURATION
Command History
This guide is platform-specic. For command information about other platforms, refer to the relevant Dell
Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version Description
9.8(0.0P5) Introduced on the S4048-ON.
9.8(0.0P2) Introduced on the S3048-ON.
9.7(0.0) Introduced on the S6000–ON.
9.5(0.1) Introduced the cipher , kex and mac options on the Z9500.
9.5(0.0) Introduced the cipher, kex and mac options on the Z9000, S6000, S4820T,
S4810, and MXL.
9.2(1.0) Introduced on the Z9500.
9.0.2.0 Introduced on the S6000.
8.3.19.0 Introduced on the S4820T.
8.3.11.1 Introduced on the Z9000.
8.3.7.0 Introduced on the S4810.
Security
1479