Brocade Communications Systems 6650 Switch User Manual


 
64 Brocade ICX 6650 Security Configuration Guide
53-1002601-01
SSH version 2 overview
SSH Fingerprint Format
SSH Protocol Assigned Numbers
SSH Transport Layer Encryption Modes
SCP/SSH URI Format
Tested SSH2 clients
The following SSH clients have been tested with SSH2:
SSH Secure Shell 3.2.3
Van Dyke SecureCRT 5.2.2
F-Secure SSH Client 5.3 and 6.0
PuTTY 0.60
OpenSSH 4.3p2
Brocade SSH Client
NOTE
Supported SSH client public key sizes are 1024 bits for DSA keys, and 1024 or 2048 bits for RSA
keys.
SSH2 supported features
SSH2 (Secure Shell version 2 protocol) provides an SSH server and an SSH client. The SSH server
allows secure remote access management functions on a Brocade device. SSH provides a function
that is similar to Telnet, but unlike Telnet, SSH provides a secure, encrypted connection.
Brocade SSH2 support includes the following:
Key exchange methods are diffie-hellman-group1-sha1
The supported public key algorithms are ssh-dss and ssh-rsa.
Encryption is provided with 3des-cbc, aes128-cbc, aes192-cbc or aes256-cbc. AES encryption
has been adopted by the U.S. Government as an encryption standard.
Data integrity is ensured with hmac-sha1.
Supported authentication methods are Password and publickey.
Five inbound SSH connection at one time are supported.
One outbound SSH is supported.
SSH2 unsupported features
The following are not supported with SSH2:
Compression
TCP/IP port forwarding, X11 forwarding, and secure file transfer
SSH version 1