3com 5500-ei pwr Reference Guide

 

1-36 

z 

3des: 3DES_cbc encryption algorithm. Support for this keyword depends on the number of 

encryption bits of the software version. The 168-bit version supports this keyword, while the 56-bit 

version does not. 

z 

des: DES_cbc encryption algorithm. 

z 

aes128: AES_128 encryption algorithm. 

prefer_ctos_hmac: Specifies the preferred client-to-server HMAC (Hash-based message 

authentication code) algorithm, which is SHA1_96 by default. 

prefer_stoc_hmac: Specifies the preferred server-to-client HMAC algorithm, which is SHA1_96 by 

default. 

z 

sha1: HMAC-SHA1 algorithm. 

z 

sha1_96: HMAC-SHA1-96 algorithm. 

z 

md5: HMAC-MD5 algorithm. 

z 

md5_96: HMAC-MD5-96 algorithm. 

 

z 

DES (data encryption standard) is a standard data encryption algorithm. 

z 

AES (advanced encryption standard) is an advanced encryption standard algorithm. 

 

Use the ssh2 command to start the SSH client to establish a connection with an SSH server, and at the 

same time specify the preferred key exchange algorithm, encryption algorithms and HMAC algorithms 

between the server and client. 

Note that when logging into the SSH server using publickey authentication, an SSH client needs to read 

its own private key for authentication. As two algorithms (RSA or DSA) are available, the identity-key 

keyword must be used to specify one algorithm in order to get the correct private key. 

# Log into SSH server 10.214.50.51 with:  

z 

dh_exchange_group as the preferred key exchange algorithm, 

z 

aes128 as the preferred server-to-client encryption algorithm, 

z 

md5 as the preferred client-to-server HMAC algorithm, and 

z 

sha1_96 as the preferred server-to-client HMAC algorithm. 

<Sysname> system-view 

System View: return to User View with Ctrl+Z. 

[Sysname] ssh2 10.214.50.51 prefer_kex dh_exchange_group prefer_stoc_cipher aes128 

prefer_ctos_hmac md5 prefer_stoc_hmac sha1_96 

ssh2 source-interface interface-type interface-number