Manualshelf

F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices System Management and Maintenance Command Reference-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
231232233234235236237238239240
225
In FIPS mode, the default algorithms are as follows:
The public key algorithm is rsa.
The preferred encryption algorithm from client to server is aes128.
The preferred HMAC algorithm from client to server is sha1-96.
The preferred key exchange algorithm is dh-group14.
The preferred encryption algorithm from server to client is aes128.
The preferred HMAC algorithm from server to client is sha1-96.
Examples
# Log in to Stelnet server 10.214.50.51, using the following connection scheme:
The preferred key exchange algorithm: dh-group1.
The preferred encryption algorithm from server to client: aes128.
The preferred HMAC algorithm from client to server: md5.
The preferred HMAC algorithm from server to client: sha1-96.
<Sysname> ssh2 10.214.50.51 prefer-kex dh-group1 prefer-stoc-cipher aes128
prefer-ctos-hmac md5 prefer-stoc-hmac sha1-96
ssh2 ipv6
Use ssh2 ipv6 to establish a connection to an IPv6 Stelnet server and specify public key algorithm, the
preferred key exchange algorithm, and the preferred encryption algorithms and preferred HMAC
algorithms between the client and server.
Syntax
In non-FIPS mode:
ssh2 ipv6 server [ port-number ] [ vpn-instance vpn-instance-name ] [ identity-key { dsa | rsa } |
prefer-compress { zlib | zlib-openssh } | prefer-ctos-cipher { 3des | aes128 | aes256 |des } |
prefer-ctos-hmac { md5 | md5-96 | sha1 | sha1-96 } | prefer-kex { dh-group-exchange | dh-group1
| dh-group14 } | prefer-stoc-cipher { 3des | aes128 | aes256 | des } | prefer-stoc-hmac { md5 |
md5-96 | sha1 | sha1-96 } ] *
In FIPS mode:
ssh2 ipv6 server [ port-number ] [ identity-key rsa | prefer-ctos-cipher { aes128 | aes256 } |
prefer-ctos-hmac { sha1 | sha1-96 } | prefer-kex dh-group14 | pr
efer-stoc-cipher { aes128 | aes256 }
| prefer-stoc-hmac { sha1 | sha1-96 } ] *
Views
User view
Default command level
0: Visit level
Parameters
server: IPv6 address or host name of the server, a case-insensitive string of 1 to 46 characters.
port-number: Port number of the server, in the range of 0 to 65535. The default is 22.
vpn-instance vpn-instance-name: Specifies the VPN that the server belongs to, where the
vpn-instance-name argument is a case-sensitive string of 1 to 31 characters. If the server is on the public
network, do not specify this option.