HP VPN Firewall Appliances System Management and Maintenance Command Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

221

222

223

224

225

226

227

228

229

230

214

Parameters

ipv6: Specifies the type of the server as IPv6. If this keyword is not specified, the server is an IPv4 server.

server: Specifies an IPv4 or IPv6 server by its address or host name. For an IPv4 server, it is a

case-insensitive string of 1 to 255 characters. For an IPv6 server, it is a case-insensitive string of 1 to 255

characters.

port-number: Specifies the port number of the server, in the range of 0 to 65535. The default is 22.

get: Downloads the file.

put: Uploads the file.

source-file-path: Specifies the directory of the source file.

destination-file-path: Specifies the directory of the target file. If this argument is not specified, the

directory names of the source and target files are same.

identity-key: Specifies the algorithm for publickey authentication, either dsa or rsa. The default is dsa.

• dsa: Specifies the public key algorithm dsa.

• rsa: Specifies the public key algorithm rsa.

prefer-compress: Specifies the preferred compression algorithm. By default, the compression algorithm is

not used.

• zlib: Specifies the compression algorithm ZLIB.

• zlib-openssh: Specifies the compression algorithm ZLIB@openssh.com.

prefer-ctos-cipher: Specifies the preferred client-to-server encryption algorithm. The default is aes128.

• 3des: Specifies the encryption algorithm 3des-cbc.

• aes128: Specifies the encryption algorithm aes128-cbc.

• des: Specifies the encryption algorithm des-cbc.

prefer-ctos-hmac: Specifies the preferred client-to-server HMAC algorithm. The default is sha1-96.

• md5: Specifies the HMAC algorithm hmac-md5.

• md5-96: Specifies the HMAC algorithm hmac-md5-96.

• sha1: Specifies the HMAC algorithm hmac-sha1

• sha1-96: Specif

ies the HMAC algorithm hmac-sha1-96.

prefer-kex: Specifies the preferred key exchange algorithm. The default is dh-group-exchange.

• dh-group-exchange: Specifies the key exchange algorithm diffie-hellman-group-exchange-sha1.

• dh-group1: Specifies the key exchange algorithm diffie-hellman-group1-sha1.

• dh-group14: Specifies the key exchange algorithm diffie-hellman-group14-sha1.

prefer-stoc-cipher: Specifies the preferred server-to-client encryption algorithm. The default is aes128.

prefer-stoc-hmac: Specifies the preferred server-to-client HMAC algorithm. The default is sha1-96.

Usage guidelines

When the server adopts publickey authentication to authenticate a client, the client must get the local

private key for digital signature. As the publickey authentication uses either RSA or DSA algorithm, you

must specify an algorithm of the client (by using the identity-key keyword) in order to get the correct data

for the local private key.