160
source: Specifies a source IP address or source interface for SSH packets. By default, the device
uses the primary IPv4 address of the output interface in the routing entry as the source address of
SSH packets. For successful Stelnet connections, use one of the following methods:
Specify the loopback interface as the source interface.
Specify the IPv4 address of the loopback interface as the source IPv4 address.
interface interface-type interface-number: Specifies a source interface by its type and number. The
primary IPv4 address of this interface is the source IPv4 address of the SSH packets.
ip ip-address: Specifies a source IPv4 address.
Usage guidelines
If the client and the server have negotiated to use certificate authentication, the client must verify the
server's certificate. For the client to correctly get the server's certificate, you must specify the server's
PKI domain on the client by using the server-pki-domain domain-name option. The client uses the
CA certificate stored in the specified PKI domain to verify the server's certificate and does not need to
save the server's public key before authentication. If you do not specify the server's PKI domain, the
client uses the PKI domain of its own certificate to verify the server's certificate.
The combination of an escape character and a dot (.) works as an escape sequence. This escape
sequence is typically used to quickly terminate an SSH connection when the server reboots or
malfunctions.
For the escape sequence to take effect, you must enter it at the very beginning of a line. If you have
entered other characters or performed operations in a line, enter the escape sequence in the next
line. HPE recommends that you use the default escape character (~). Do not use any character in
SSH usernames as the escape character.
Examples
# Use the 128-bit Suite B algorithms to establish a connection to the SFTP sever 3.3.3.3. Specify the
client's PKI domain and the server's PKI domain as clientpkidomain and serverpkidomain,
respectively.
<Sysname> ssh2 3.3.3.3 suite-b 128-bit pki-domain clientpkidomain server-pki-domain
serverpkidomain
New command: ssh2 algorithm cipher
Use ssh2 algorithm cipher to specify encryption algorithms for SSH2.
Use undo ssh2 algorithm cipher to restore the default.
Syntax
In non-FIPS mode:
ssh2 algorithm cipher { 3des-cbc | aes128-cbc | aes256-cbc | des-cbc | aes128-ctr | aes192-ctr
| aes256-ctr | aes128-gcm | aes256-gcm } *
undo ssh2 algorithm cipher
To Next Page
Loading...
Need help?
General
