253
prefer-kex: Preferred key exchange algorithm, default to dh-group-exchange in non-FIPS mode, and
dh-group14 in FIPS mode.
• dh-group-exchange: Key exchange algorithm diffie-hellman-group-exchange-sha1.
• dh-group1: Key exchange algorithm diffie-hellman-group1-sha1.
• dh-group14: Key exchange algorithm diffie-hellman-group14-sha1.
prefer-stoc-cipher: Preferred encryption algorithm from server to client, defaulted to aes128.
prefer-stoc-hmac: Preferred HMAC algorithm from server to client, defaulted to sha1-96.
Description
Use the ssh2 ipv6 command to establish a connection to an IPv6 SSH server and specify public key
algorithm, the preferred key exchange algorithm, and the preferred encryption algorithm and preferred
HMAC algorithm between the client and server.
When the client's authentication method is publickey, the client needs to get the local private key for
validation. As the publickey authentication includes RSA and DSA algorithms, you must specify an
algorithm by using the identity-key keyword to get the correct data for the local private key. By default,
the public key algorithm is DSA.
Examples
# Login to remote SSH2.0 server 2000::1, setting the algorithms as follows:
• Preferred key exchange algorithm: DH-group1
• Preferred encryption algorithm from server to client: AES128
• Preferred HMAC algorithm from client to server: MD5
• Preferred HMAC algorithm from server to client: SHA1-96
<Sysname> ssh2 ipv6 2000::1 prefer-kex dh-group1 prefer-stoc-cipher aes128
prefer-ctos-hmac md5 prefer-stoc-hmac sha1-96
To Next Page
Loading...
