To Next Page

To Previous Page

428

prefer-cipher

Use prefer-cipher to specify a preferred cipher suite for an SSL client policy.

Use undo prefer-cipher to restore the default.

Syntax

In non-FIPS mode:

prefer-cipher { dhe_rsa_aes_128_cbc_sha | dhe_rsa_aes_256_cbc_sha | exp_rsa_des_cbc_sha |

exp_rsa_rc2_md5 | exp_rsa_rc4_md5 | rsa_3des_ede_cbc_sha | rsa_aes_128_cbc_sha |

rsa_aes_256_cbc_sha | rsa_des_cbc_sha | rsa_rc4_128_md5 | rsa_rc4_128_sha }

undo prefer-cipher

In FIPS mode:

prefer-cipher { dhe_rsa_aes_128_cbc_sha | dhe_rsa_aes_256_cbc_sha | rsa_aes_128_cbc_sha |

rsa_aes_256_cbc_sha }

undo prefer-cipher

Default

In non-FIPS mode, the preferred cipher suite of an SSL client policy is rsa_rc4_128_md5.

In FIPS mode, the preferred cipher suite of an SSL client policy is rsa_aes_128_cbc_sha.

Views

SSL client policy view

Predefined user roles

network-admin

Parameters

dhe_rsa_aes_128_cbc_sha: Specifies the export cipher suite that uses the key exchange algorithm DHE

RSA, the data encryption algorithm 128-bit AES, and the MAC algorithm SHA.

dhe_rsa_aes_256_cbc_sha: Specifies the export cipher suite that uses the key exchange algorithm DHE

RSA, the data encryption algorithm 256-bit AES, and the MAC algorithm SHA.

exp_rsa_des_cbc_sha: Specifies the export cipher suite that uses the key exchange algorithm RSA, the

data encryption algorithm DES_CBC, and the MAC algorithm SHA.

exp_rsa_rc2_md5: Specifies the export cipher suite that uses the key exchange algorithm RSA, the data

encryption algorithm RC2, and the MAC algorithm MD5.

exp_rsa_rc4_md5: Specifies the export cipher suite that uses the key exchange algorithm RSA, the data

encryption algorithm RC4, and the MAC algorithm MD5.

rsa_3des_ede_cbc_sha: Specifies the key exchange algorithm RSA, the data encryption algorithm

3DES_EDE_CBC, and the MAC algorithm SHA.

rsa_aes_128_cbc_sha: Specifies the key exchange algorithm RSA, the data encryption algorithm 128-bit

AES_CBC, and the MAC algorithm SHA.

rsa_aes_256_cbc_sha: Specifies the key exchange algorithm RSA, the data encryption algorithm 256-bit

AES_CBC, and the MAC algorithm SHA.

rsa_des_cbc_sha: Specifies the key exchange algorithm RSA, the data encryption algorithm DES_CBC,

and the MAC algorithm SHA.

Other manuals for HP MSR SERIES

Configuration Guide889 pages

Questions and Answers:

Need help?

Do you have a question about the HP MSR SERIES and is the answer not in the manual?

HP MSR SERIES Specifications

General

Product Series	MSR Series
Manufacturer	HP
Category	Network Router
Ports	Varies by model
WAN Interfaces	Varies by model
LAN Interfaces	Varies by model
VPN Support	Yes
Firewall	Yes
Dimensions	Varies by model
Weight	Varies by model
Wireless Support	Varies by model
Management	Web-based, CLI
Power Supply	Varies by model
Operating Temperature	0°C to 45°C
Storage Temperature	-40°C to 70°C
Humidity	5% to 95% non-condensing