Fortinet black logo

CLI Reference

Home FortiSandbox 4.4.4 CLI Reference
4.4.4
4.4.5
4.4.4
4.4.3
4.4.2
4.4.1
4.4.0
4.2.7
4.2.6
4.2.5
4.2.4
4.2.3
4.2.1
4.2.0
4.0.5
4.0.4
4.0.3
4.0.2
4.0.1
4.0.0
3.2.4
3.2.3
3.2.2
3.2.1
3.2.0
3.1.5
3.1.4
3.1.3
3.1.2
3.1.1
3.1.0
3.0.7
3.0.6
3.0.4
3.0.3
3.0.2
3.0.1
3.0.1
3.0.0
3.0.0

client-lenc

client-lenc

Enable/disable OFTPD supporting FG-LENC devices , TLS 1.3 protocol and specific SSL CBC Suites protocol.

Note

The client-lenc command replaces the device-lenc command in previous versions of FortiSandbox.

Sytntax

client-lenc [-h|-l|-e|-d|-i|-g|-f|-j|-k]

Option

Description

-h

Help information.

-e

Enable support for Low-Encryption (LENC) devices.

-d

Disable support for Low-Encryption (LENC) devices. This is the default value.

-l

Display current support status for Low-Encryption (LENC) devices.

-i

Display current support status for TLS 1.3 and CBC ciphers.

-g

Enable support for TLS 1.3.

-f

Disable support for TLS 1.3, max TLS version will be 1.2. This is the default value.

-j

Disable CBC cipher suite. See CBC ciphers..

-k

Enable CBC cipher suite.This is the default value.
CBC ciphers
Note

The following CBC cipher suites are disabled when option -j is applied:
  • DHE-RSA-AES128-SHA
  • DHE-RSA-AES256-SHA
  • DHE-RSA-CAMELLIA128-SHA
  • DHE-RSA-CAMELLIA256-SHA
  • DHE-RSA-SEED-SHA
  • ECDHE-RSA-AES128-SHA
  • ECDHE-RSA-AES256-SHA
  • AES128-SHA
  • AES256-SHA
  • CAMELLIA128-SHA
  • CAMELLIA256-SHA
  • SEED-SHA
  • DHE-RSA-AES128-SHA256
  • DHE-RSA-AES256-SHA256
  • DHE-RSA-CAMELLIA128-SHA256
  • DHE-RSA-CAMELLIA256-SHA256
  • ECDHE-RSA-AES128-SHA256
  • ECDHE-RSA-AES256-SHA384
  • RSA-AES128-SHA256
  • RSA-AES256-SHA256
  • RSA-CAMELLIA128-SHA256
  • RSA-CAMELLIA256-SHA256
  • AES128-SHA256
  • AES256-SHA256
  • CAMELLIA128-SHA256
  • CAMELLIA256-SHA256
  • ECDHE-RSA-CAMELLIA128-SHA256
  • ECDHE-RSA-CAMELLIA256-SHA384
Previous
Next

client-lenc

Enable/disable OFTPD supporting FG-LENC devices , TLS 1.3 protocol and specific SSL CBC Suites protocol.

Note

The client-lenc command replaces the device-lenc command in previous versions of FortiSandbox.

Sytntax

client-lenc [-h|-l|-e|-d|-i|-g|-f|-j|-k]

Option

Description

-h

Help information.

-e

Enable support for Low-Encryption (LENC) devices.

-d

Disable support for Low-Encryption (LENC) devices. This is the default value.

-l

Display current support status for Low-Encryption (LENC) devices.

-i

Display current support status for TLS 1.3 and CBC ciphers.

-g

Enable support for TLS 1.3.

-f

Disable support for TLS 1.3, max TLS version will be 1.2. This is the default value.

-j

Disable CBC cipher suite. See CBC ciphers..

-k

Enable CBC cipher suite.This is the default value.
CBC ciphers
Note

The following CBC cipher suites are disabled when option -j is applied:
  • DHE-RSA-AES128-SHA
  • DHE-RSA-AES256-SHA
  • DHE-RSA-CAMELLIA128-SHA
  • DHE-RSA-CAMELLIA256-SHA
  • DHE-RSA-SEED-SHA
  • ECDHE-RSA-AES128-SHA
  • ECDHE-RSA-AES256-SHA
  • AES128-SHA
  • AES256-SHA
  • CAMELLIA128-SHA
  • CAMELLIA256-SHA
  • SEED-SHA
  • DHE-RSA-AES128-SHA256
  • DHE-RSA-AES256-SHA256
  • DHE-RSA-CAMELLIA128-SHA256
  • DHE-RSA-CAMELLIA256-SHA256
  • ECDHE-RSA-AES128-SHA256
  • ECDHE-RSA-AES256-SHA384
  • RSA-AES128-SHA256
  • RSA-AES256-SHA256
  • RSA-CAMELLIA128-SHA256
  • RSA-CAMELLIA256-SHA256
  • AES128-SHA256
  • AES256-SHA256
  • CAMELLIA128-SHA256
  • CAMELLIA256-SHA256
  • ECDHE-RSA-CAMELLIA128-SHA256
  • ECDHE-RSA-CAMELLIA256-SHA384
Previous
Next