HP VPN Firewall Appliances System Management and Maintenance Command Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module

221

222

223

224

225

226

227

228

229

230

215

Examples

# Connect to the SCP server 192.168.0.1, download the file remote.bin from the server, and save it locally

to the file local.bin

<Sysname> scp 192.168.0.1 get remote.bin local.bin

sftp

Use sftp to establish a connection to an IPv4 SFTP server and enter SFTP client view.

Syntax

In non-FIPS mode:

sftp server [ port-number ] [ vpn-instance vpn-instance-name ] [ identity-key { dsa | rsa } |

prefer-compress { zlib | zlib-openssh } | prefer-ctos-cipher { 3des | aes128 | aes256 | des } |

prefer-ctos-hmac { md5 | md5-96 | sha1 | sha1-96 } | prefer-kex { dh-group-exchange | dh-group1

| dh-group14 } | prefer-stoc-cipher { 3des | aes128 | aes256 | des } | prefer-stoc-hmac { md5 |

md5-96 | sha1 | sha1-96 } ] *

In FIPS mode:

sftp server [ port-number ] [ vpn-instance vpn-instance-name ] [ identity-key rsa | prefer-ctos-cipher

{ aes128 | aes256 } | prefer-ctos-hmac { sha1 | sha1

-96 } | prefer-k

ex dh-group14 | prefer-stoc-cipher

{ aes128 | aes256 } | prefer-stoc-hmac { sha1 | sha1-96 } ] *

Views

User view

Default command level

3: Manage level

Parameters

server: Specifies an IPv4 server by its address or host name, a case-insensitive string of 1 to 20

characters.

port-number: Specifies the port number of the server, in the range of 0 to 65535. The default is 22.

vpn-instance vpn-instance-name: Specifies the VPN to which the server belongs, where the

vpn-instance-name argument is a case-sensitive string of 1 to 31 characters. If the server is on the public

network, do not specify this option.

identity-key: Specifies the algorithm for publickey authentication. In non-FIPS mode, the algorithm is

either dsa or rsa and the default is dsa. In FIPS mode, the algorithm is rsa.

• dsa: Specifies the public key algorithm dsa.

• rsa: Specifies the public key algorithm rsa.

prefer-compress: Specifies the preferred compression algorithm. By default, the compression algorithm is

not used.

• zlib: Specifies the compression algorithm ZLIB.

• zlib-openssh: Specifies the compression algorithm ZLIB@openssh.com.

prefer-ctos-cipher: Specifies the preferred client-to-server encryption algorithm. The default is aes128.

• 3des: Specifies the encryption algorithm 3des-cbc.

• aes128: Specifies the encryption algorithm aes128-cbc.