F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices System Management and Maintenance Configuration Guide-6PW100

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

181

182

183

184

185

186

187

188

189

190

172

Hardware Feature com

atible

F1000-E Yes

F5000 Yes

Firewall module Yes

U200-A Yes

U200-S No

You can launch the SFTP client to establish a connection to an SFTP server, and specify the public key

algorithm, the preferred encryption algorithm, preferred HMAC algorithm, and preferred key exchange

algorithm.

After the connection is established, you can directly enter SFTP client view on the server to perform

directory and file operations.

To establish a connection to an SFTP server:

Task Command Remarks

Establish a

connection to an

SFTP server and

enter SFTP client

view.

• Establish a connection to an IPv4 SFTP server:

{ In non-FIPS mode:

sftp server [ port-number ] [ vpn-instance

vpn-instance-name ] [ identity-key { dsa | rsa } |

prefer-compress { zlib | zlib-openssh } |prefer-ctos-cipher

{ 3des | aes128 | aes256 | des } | prefer-ctos-hmac { md5

| md5-96 | sha1 | sha1-96 } | prefer-kex

{ dh-group-exchange | dh-group1 | dh-group14 } |

prefer-stoc-cipher { 3des | aes128 | aes256 | des } |

prefer-stoc-hmac { md5 | md5-96 | sha1 | sha1-96 } ] *

{ In FIPS mode:

sftp server [ port-number ] [ vpn-instance

vpn-instance-name ] [ identity-key rsa | prefer-ctos-cipher

{ aes128 | aes256 } | prefer-ctos-hmac { sha1 | sha1-96 }

| prefer-kex dh-group14 | prefer-stoc-cipher { aes128 |

aes256 } | prefer-stoc-hmac { sha1 | sha1-96 } ] *

• Establish a connection to an IPv6 SFTP server:

{ In non-FIPS mode:

sftp ipv6 server [ port-number ] [ vpn-instance

vpn-instance-name ] [ identity-key { dsa | rsa }|

prefer-compress { zlib | zlib-openssh } | prefer-ctos-cipher

{ 3des | aes128 | aes256 | des } | prefer-ctos-hmac { md5

| md5-96 | sha1 | sha1-96 } | prefer-kex

{ dh-group-exchange | dh-group1 | dh-group14 } |

prefer-stoc-cipher { 3des | aes128 | aes256 | des } |

prefer-stoc-hmac { md5 | md5-96 | sha1 | sha1-96 } ] *

{ In FIPS mode:

sftp ipv6 server [ port-number ] [ identity-key rsa |

prefer-ctos-cipher { aes128 | aes256 } | prefer-ctos-hmac

{ sha1 | sha1-96 } | prefer-kex dh-group14 |

prefer-stoc-cipher { aes128 | aes256 } | prefer-stoc-hmac

{ sha1 | sha1-96 } ] *

Use either

command in user

view.

NOTE:

Support for the

sftp ipv6

command

depends on the

device model.