Filter
Top Products
CLI (Command Line Interface)
180
NXA-ENET24 - Software Management Guide
Secure Shell Commands (Cont.)
Command Function
show ip ssh
This command displays
the connection settings
used when authenticating
client access to the SSH
server.
Command Mode: Privileged Exec
Example:
Console#show ip ssh
SSH Enabled - version 1.99
Negotiation timeout: 120 secs; Authentication retries: 3
Server key size: 768 bits
Console#
show ssh
This command displays
the current SSH server
connections.
Command Mode: Privileged Exec
Example:
Console#show ssh
Connection Version State Username Encryption
0 2.0 Session-Started admin ctos aes128-cbc-hmac-md5
stoc aes128-cbc-hmac-md5
Console#
show ssh - display description
Field Description
Session: The session number. (Range: 0-3)
Version: The Secure Shell version number.
State: The authentication negotiation state.
(Values: Negotiation-Started, Authentication-Started, Session-
Started)
Username: The user name of the client.
Encryption: The encryption method is automatically negotiated between the client
and server.
Options for SSHv1.5 include: DES, 3DES
Options for SSHv2.0 can include different algorithms for the client-to-
server (ctos) and server-to-client (stoc):
• aes128-cbc-hmac-sha1
• aes192-cbc-hmac-sha1
• aes256-cbc-hmac-sha1
• 3des-cbc-hmac-sha1
• blowfish-cbc-hmac-sha1
• aes128-cbc-hmac-md5
• aes192-cbc-hmac-md5
• aes256-cbc-hmac-md5
• 3des-cbc-hmac-md5
• blowfish-cbc-hmac-md5
Terminology:
• DES – Data Encryption Standard (56-bit key)
• 3DES – Triple-DES (Uses three iterations of DES, 112-bit key)
• aes – Advanced Encryption Standard (160 or 224-bit key)
• blowfish – Blowfish (32-448 bit key)
• cbc – cypher-block chaining
• sha1 – Secure Hash Algorithm 1 (160-bit hashes)
• md5 – Message Digest algorithm number 5 (128-bit hashes)