3com 5500-ei pwr Reference Guide
1-36
z
3des: 3DES_cbc encryption algorithm. Support for this keyword depends on the number of
encryption bits of the software version. The 168-bit version supports this keyword, while the 56-bit
version does not.
z
des: DES_cbc encryption algorithm.
z
aes128: AES_128 encryption algorithm.
prefer_ctos_hmac: Specifies the preferred client-to-server HMAC (Hash-based message
authentication code) algorithm, which is SHA1_96 by default.
prefer_stoc_hmac: Specifies the preferred server-to-client HMAC algorithm, which is SHA1_96 by
default.
z
sha1: HMAC-SHA1 algorithm.
z
sha1_96: HMAC-SHA1-96 algorithm.
z
md5: HMAC-MD5 algorithm.
z
md5_96: HMAC-MD5-96 algorithm.
z
DES (data encryption standard) is a standard data encryption algorithm.
z
AES (advanced encryption standard) is an advanced encryption standard algorithm.
Description
Use the ssh2 command to start the SSH client to establish a connection with an SSH server, and at the
same time specify the preferred key exchange algorithm, encryption algorithms and HMAC algorithms
between the server and client.
Note that when logging into the SSH server using publickey authentication, an SSH client needs to read
its own private key for authentication. As two algorithms (RSA or DSA) are available, the identity-key
keyword must be used to specify one algorithm in order to get the correct private key.
Examples
# Log into SSH server 10.214.50.51 with:
z
dh_exchange_group as the preferred key exchange algorithm,
z
aes128 as the preferred server-to-client encryption algorithm,
z
md5 as the preferred client-to-server HMAC algorithm, and
z
sha1_96 as the preferred server-to-client HMAC algorithm.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] ssh2 10.214.50.51 prefer_kex dh_exchange_group prefer_stoc_cipher aes128
prefer_ctos_hmac md5 prefer_stoc_hmac sha1_96
ssh2 source-interface
Syntax
ssh2 source-interface interface-type interface-number
undo ssh2 source-interface