Supported sshv2 clients, Supported features – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual
Page 257
Multi-Service IronWare Security Configuration Guide
239
53-1003035-02
SSH server version 2 support
5
•
SSH server Protocol Assigned Numbers
•
SSH server Transport Layer Encryption Modes
•
SCP or SFTP or SSH server URI Format
If you are using redundant management modules, you can synchronize the DSA host key pair and
RSA Host key pair between the active and standby modules by entering the sync-standby command
at the Privileged EXEC level of the CLI. By default these keys are synced to standby. The user can do
force sync using the sync-standby command.
Supported SSHv2 clients
The following SSH clients have been tested with SSHv2:
•
SSH server Secure Shell 3.2.3
•
Van Dyke SecureCRT 4.0, 4.1, 5.1, 5.5, 6.1, and 6.5.2
•
F-Secure SSH Client 5.3, 6.0, 6.1, and 6.2 beta
•
PuTTY 0.54 and 0.56
NOTE
On the PuTTy client, under the options that control key re-exchange, it is recommended that the
maximum minutes before rekey be set to 0 and the maximum data before rekey be set to 0.
•
Open SSH server 3.5_p1, 3.6.1p2, 4.3p1, 5.3p1, 5.8p1 and 5.9p2
•
Multi-Service IronWare R05.3.00 SSH Client
NOTE
Supported SSH client public key sizes are 1024 bits for DSA keys, and 1024 or 2048 bits for
RSA keys.
•
Solaris Sun-SSH-1.0, version 2.4
Supported features
SSHv2 provides an SSH server and an SSH client.The SSH server allows secure remote access
management functions on a device.
SSHv2 support includes the following:
•
The following encryption cipher algorithm are supported. They are listed in order of preference:
-
aes256-cbc: AES in CBC mode with 256-bit key
-
aes192-cbc: AES in CBC mode with 192-bit key
-
aes128-cbc: AES in CBC mode with 128-bit key
-
3des-cbc: Triple-DES
•
Key exchange methods, in the order of preference are:
-
diffie-hellman-group1-sha1
-
diffie-hellman-group14-sha1
•
Public key algorithm ssh-dss
•
Public key algorithm ssh-rosa