R2511-HP MSR Router Series Security Command Reference(V5)

ManualsBrandsHP ManualsNetwork HardwareHP MSR1003-8 AC Router

441

442

443

444

445

446

447

448

449

450

434

Parameters

ipv6: Specifies the type of the server as IPv6. If this keyword is not specified, the server is an IPv4 server.

server: Specifies an IPv4 or IPv6 server by its address or host name. For an IPv4 server, it is a

case-insensitive string of 1 to 20 characters. For an IPv6 server, it is a case-insensitive string of 1 to 46

characters.

port-number: Specifies the port number of the server, in the range of 0 to 65535. The default is 22.

get: Downloads the file.

put: Uploads the file.

source-file-path: Specifies the directory of the source file.

destination-file-path: Specifies the directory of the target file. If this argument is not specified, the

directory names of the source and target files are same.

identity-key: Specifies the algorithm for publickey authentication, either dsa or rsa. The default is dsa.

• dsa: Specifies the public key algorithm dsa. This keyword is not available in FIPS mode.

• rsa: Specifies the public key algorithm rsa.

prefer-compress: Specifies the preferred compression algorithm. By default, the compression algorithm is

not used.

• zlib: Specifies the compression algorithm ZLIB.

• zlib-openssh: Specifies the compression algorithm ZLIB@openssh.com.

prefer-ctos-cipher: Specifies the preferred client-to-server encryption algorithm. The default is aes128.

• 3des: Specifies the encryption algorithm 3des-cbc. This keyword is not available in FIPS mode.

• aes128: Specifies the encryption algorithm aes128-cbc.

• aes256: Specifies the encryption algorithm aes256-cbc. This keyword is only available in FIPS

mode.

• des: Specifies the encryption algorithm des-cbc. This keyword is not available in FIPS mode.

prefer-ctos-hmac: Specifies the preferred client-to-server HMAC algorithm. The default is sha1-96.

• md5: Specifies the HMAC algorithm hmac-md5. This keyword is not available in FIPS mode.

•

md5-9

6: Specifies the HMAC algorithm hmac-md5-96. This keyword is not available in FIPS mode.

• sha1: Specifies the HMAC algorithm hmac-sha1.

• sha1-96: Specifies the HMAC algorithm hmac-sha1-96.

prefer-kex: Specifies the preferred key exchange algorithm. The default is dh-group-exchange.

• dh-group-exchange: Specifies the key exchange algorithm diffie-hellman-group-exchange-sha1.

This keyword is not available in FIPS mode.

• dh-group1: Specifies the key exchange algorithm diffie-hellman-group1-sha1. This keyword is not

available in FIPS mode.

• dh-group14: Specifies the key exchange algorithm diffie-hellman-group14-sha1.

prefer-stoc-cipher: Specifies the preferred server-to-client encryption algorithm. The default is aes128.

prefer-stoc-hmac: Specifies the preferred server-to-client HMAC algorithm. The default is sha1-96.

Usage guidelines

When the client's authentication method is publickey, the client must get the local private key for digital

signature. In non-FIPS mode, because the publickey authentication uses either RSA or DSA algorithm, you