Manualshelf

F3215-HP Load Balancing Module Security Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
211212213214215216217218219220
208
prefer-kex { dh-group-exchange | dh-group1 | dh-group14 } | prefer-stoc-cipher { 3des | aes128 |
des } | prefer-stoc-hmac { md5 | md5-96 | sha1 | sha1-96 } ] *
Views
User view
Default command level
3: Manage level
Parameters
server: IPv4 address or host name of the server, a case-insensitive string of 1 to 20 characters.
port-number: Port number of the server, in the range of 0 to 65535. The default is 22.
vpn-instance vpn-instance-name: Specifies the VPN that the server belongs to, where the
vpn-instance-name argument is a case-sensitive string of 1 to 31 characters. If the server is on the public
network, do not specify this option.
prefer-compress: Specifies the preferred compression algorithm. By default, the compression algorithm is
not used.
zlib: Specifies the compression algorithm ZLIB.
zlib-openssh: Specifies the compression algorithm ZLIB@openssh.com.
prefer-ctos-cipher: Specifies the preferred encryption algorithm from client to server, defaulted to aes128.
3des: Specifies the encryption algorithm 3des-cbc.
aes128: Specifies the encryption algorithm aes128-cbc.
des: Specifies the encryption algorithm des-cbc.
prefer-ctos-hmac: Specifies the preferred HMAC algorithm from client to server, defaulted to sha1-96.
md5: Specifies the HMAC algorithm hmac-md5.
md5-96: Specifies the HMAC algorithm hmac-md5-96.
sha1: Specifies the HMAC algorithm hmac-sha1.
sha1-96: Specifies the HMAC algorithm hmac-sha1-96.
prefer-kex: Specifies the preferred key exchange algorithm, defaulted to dh-group-exchange.
dh-group-exchange: Specifies the key exchange algorithm diffie-hellman-group-exchange-sha1.
dh-group1: Specifies the key exchange algorithm diffie-hellman-group1-sha1.
dh-group14: Specifies the key exchange algorithm diffie-hellman-group14-sha1.
prefer-stoc-cipher: Specifies the preferred encryption algorithm from server to client, defaulted to
aes128.
prefer-stoc-hmac: Specifies the preferred HMAC algorithm from server to client, defaulted to sha1-96.
Examples
# Connect to SFTP server 10.1.1.2, using the following connection scheme:
The preferred key exchange algorithm: dh-group1.
The preferred encryption algorithm from server to client: aes128.
The preferred HMAC algorithm from client to server: md5.
The preferred HMAC algorithm from server to client: sha1-96.
<Sysname> sftp 10.1.1.2 prefer-kex dh-group1 prefer-stoc-cipher aes128 prefer-ctos-hmac
md5 prefer-stoc-hmac sha1-96