config ssh-crypto
Description: Configure system SSH crpyto.
config system ssh-crpyto set strong-crypto [enable | disable] end
Sample command:
config system ssh-crypto set strong-crypto enable set ssh-enc-algo aes256-ctr aes256-gcm@openssh.com set ssh-hsk-algo ecdsa-sha2-nistp256 ecdsa-sha2-nistp384 ecdsa-sha2-nistp521 rsa-sha2-256 rsa-sha2-512 ssh-ed25519 set ssh-kex-algo curve25519-sha256@libssh.org diffie-hellman-group-exchange-sha256 diffie-hellman-group14-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 set ssh-mac-algo hmac-sha2-256 hmac-sha2-256-etm@openssh.com hmac-sha2-512 hmac-sha2-512-etm@openssh.com end
| Parameter | Description | Type | Size | Default | ||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| strong-crypto | Enable/disable strong encryption for SSH | option | - | disable | ||||||||||||||
|
|
|
|||||||||||||||||
| set ssh-enc-algo
|
Set supported ciphers for ssh-enc-algo. |
option | - | aes256-ctr aes256-gcm@openssh.com | ||||||||||||||
|
|
|
|||||||||||||||||
| set ssh-hsk-algo |
Set supported ciphers for ssh-hsk-algo. |
option | - | ecdsa-sha2-nistp521 ecdsa-sha2-nistp384 ecdsa-sha2-nistp256 rsa-sha2-256 rsa-sha2-512 ssh-ed25519 | ||||||||||||||
|
|
|
|||||||||||||||||
| set ssh-kex-algo |
Set supported ciphers for ssh-kex-algo. |
option |
- |
diffie-hellman-group14-sha256 diffie-hellman-group16-sha512 diffie-hellman-group18-sha512 diffie-hellman-group-exchange-sha256 curve25519-sha256@libssh.org ecdh-sha2-nistp256 ecdh-sha2-nistp384 ecdh-sha2-nistp521 | ||||||||||||||
|
|
|
|||||||||||||||||
|
set ssh-mac-algo |
Set supported ciphers for ssh-mac-algo. |
option |
- |
hmac-sha2-256 hmac-sha2-256-etm@openssh.com hmac-sha2-512 hmac-sha2-512-etm@openssh.com |
||||||||||||||
|
||||||||||||||||||