Service Manual
kex key-exchange-
algorithm
Enter the keyword kex and then a space-delimited list of key exchange algorithms
supported by the SSH server.
The following key exchange algorithms are available:
• diffie-hellman-group-exchange-sha1
• diffie-hellman-group1-sha1
• diffie-hellman-group14-sha1
When FIPS is enabled, the default key-exchange-algorithm is diffie-hellman-
group14-sha1.
When FIPS is not enabled, the default key-exchange-algorithms are the following:
• diffie-hellman-group-exchange-sha1
• diffie-hellman-group1-sha1,
• diffie-hellman-group14-sha1
port port-number (OPTIONAL) Enter the keyword port then the port number of the listening port
of the SSH server. The range is from 1 to 65535. The default is 22.
[version {1 | 2}] (OPTIONAL) Enter the keyword version then the SSH version 1 or 2 to specify
only SSHv1 or SSHv2.
NOTE: If you enable FIPS mode, you can only select version 2.
Defaults
• Default listening port is 22.
• Default cipher list is 3des-cbc,aes128-cbc,aes192-cbc,aes256-cbc,aes128-ctr,aes192-ctr,aes256-ctr.
• When FIPS is enabled, the default is hmac-sha1-96.
• When FIPS is not enabled, the default is hmac-md5,hmac-md5-96,hmac-sha1,hmac-sha1-96,hmac-
sha2-256,hmac-sha2-256-96.
• When FIPS is enabled, the default is die-hellman-group14-sha1.
• When FIPS is not enabled, the default is die-hellman-group-exchange-sha1,die-hellman-group1-
sha1,die-hellman-group14-sha1.
Command Modes CONFIGURATION
Command History
This guide is platform-specic. For command information about other platforms, refer to the relevant Dell
Networking OS Command Line Reference Guide.
The following is a list of the Dell Networking OS version history for this command.
Version Description
9.7(0.0) Introduced on the S6000–ON.
9.5(0.0) Introduced the cipher, kex and mac options on the Z9000, S6000, S4820T,
S4810, and MXL.
9.0.2.0 Introduced on the S6000.
8.3.19.0 Introduced on the S4820T.
1234
Security