To Next Page

To Previous Page

713

Predefined user roles

network-admin

Parameters

server: Specifies a server by its IPv4 address or host name, a case-insensitive string of 1 to 253

characters.

port-number: Specifies the port number of the server, in the range 1 to 65535. The default is 22.

vpn-instance vpn-instance-name: Specifies the MPLS L3VPN instance to which the server belongs.

The vpn-instance-name argument is a case-sensitive string of 1 to 31 characters.

identity-key: Specifies a public key algorithm for the client. The default is dsa in non-FIPS mode and

is rsa in FIPS mode. If the server uses publickey authentication, you must specify this keyword. The

client generates the digital signature by using the local private key that is associated with the

specified algorithm.

• dsa: Specifies the public key algorithm dsa.

• ecdsa: Specifies the public key algorithm ecdsa.

• rsa: Specifies the public key algorithm rsa.

prefer-compress: Specifies the preferred compression algorithm between the server and the client.

By default, compression is not supported.

zlib: Specifies the compression algorithm zlib.

prefer-ctos-cipher: Specifies the preferred client-to-server encryption algorithm. The default is

aes128-cbc. Supported algorithms are des-cbc, 3des-cbc, aes128-cbc, and aes256-cbc, in

ascending order of security strength and computation time.

• 3des-cbc: Specifies the encryption algorithm 3des-cbc.

• des-cbc: Specifies the encryption algorithm des-cbc.

• aes128-cbc: Specifies the encryption algorithm aes128-cbc.

• aes256-cbc: Specifies the encryption algorithm aes256-cbc.

prefer-ctos-hmac: Specifies the preferred client-to-server HMAC algorithm. The default is sha1.

Algorithms sha1 and sha1-96 provide stronger security but cost more computation time than

algorithms md5 and md5-96.

• md5: Specifies the HMAC algorithm hmac-md5.

• md5-96: Specifies the HMAC algorithm hmac-md5-96.

• sha1: Specifies the HMAC algorithm hmac-sha1.

• sha1-96: Specifies the HMAC algorithm hmac-sha1-96.

prefer-kex: Specifies the preferred key exchange algorithm. The default is

dh-group-exchange-sha1 in non-FIPS mode and dh-group14-sha1 in FIPS mode.

• dh-group-exchange-sha1: Specifies the key exchange algorithm

diffie-hellman-group-exchange-sha1.

• dh-group1-sha1: Specifies the key exchange algorithm diffie-hellman-group1-sha1.

• dh-group14-sha1: Specifies the key exchange algorithm diffie-hellman-group14-sha1. The

algorithm dh-group14-sha1 provides stronger security but costs more computation time than

the algorithm dh-group1-sha1.

prefer-stoc-cipher: Specifies the preferred server-to-client encryption algorithm. The default is

aes128-cbc. Supported algorithms are the same as the client-to-server encryption algorithms (see

the prefer-ctos-cipher keyword).

prefer-stoc-hmac: Specifies the preferred server-to-client HMAC algorithm. The default is sha1.

Supported algorithms are the same as the client-to-server HMAC algorithms (see the

prefer-ctos-hmac keyword).

Other manuals for H3C MSR Series

Manual33 pages

Probe Command Reference28 pages

Configuration Guide80 pages

Troubleshooting Guide28 pages

User Guide26 pages

Questions and Answers:

Need help?

Do you have a question about the H3C MSR Series and is the answer not in the manual?

H3C MSR Series Specifications

General

Category	Network Router
IPv6 Support	Yes
Dimensions	Varies by model
Weight	Varies by model
Product Type	Modular Router
Ports	Varies by model
WAN Interfaces	Varies by model
Firewall	Yes
QoS	Yes
Wireless Support	Varies by model
USB Ports	Varies by model
Console Port	Yes
Power Supply	Varies by model
Redundancy	Varies by model
Operating Temperature	0°C to 45°C
Storage Temperature	-40°C to 70°C
Humidity	5% to 95% non-condensing
Series	MSR
Certifications	CE, FCC, RoHS