Configuring The Ssh Server Cipher List - Dell C9000 Series Networking Configuration Manual

hmac-algorithm: Enter a space-delimited list of keyed-hash message authentication code (HMAC) algorithms
supported by the SSH server.
The following HMAC algorithms are available:
• hmac-md5
• hmac-md5-96
• hmac-sha1
• hmac-sha1-96
• hmac-sha2-256
The default list of HMAC algorithm is in the following order:
• hmac-sha2-256
• hmac-sha1
• hmac-sha1-96
• hmac-md5
• hmac-md5-96
When FIPS is enabled, the default HMAC algorithm is hmac-sha2-256, hmac-sha1, hmac-sha1-96.
Example of Configuring a HMAC Algorithm
The following example shows you how to configure a HMAC algorithm list.
Dell(conf)# ip ssh mac hmac-sha1-96

Configuring the SSH Server Cipher List

To configure the cipher list supported by the SSH server, use the ip ssh server cipher cipher-list
command in CONFIGURATION mode.
cipher-list-: Enter a space-delimited list of ciphers the SSH server will support.
The following ciphers are available.
•
3des-cbc
•
aes128-cbc
•
aes192-cbc
•
aes256-cbc
•
aes128-ctr
•
aes192-ctr
•
aes256-ctr
The default cipher list is aes256-ctr, aes256-cbc, aes192-ctr, aes192-cbc, aes128-ctr, aes128-cbc, 3des-cbc.
Example of Configuring a Cipher List
Security 1005