cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
653
Views
5
Helpful
2
Replies

Pix 515E SSH w/ 3DES Error

luke.redd
Beginner
Beginner

I have a Pix 515E with an Unrestricted license and I have completed the basic commands to enable SSH support.

However, when I try to connect (with SecureCRT) to the firewall, I receive the error "The server does not support cipher 3DES. The server supports the following ciphers: DES"

If I change SecureCRT to DES it works just fine.

Am I just missing something here? I have a 501 with a Restricted license, same PixOS and exact same conf (as far as ssh is concerned) and it is working just fine with 3DES.

If anyone could shed some light on this I would be extremely grateful.

--Luke

NOTES:

Pix 515E

Pix OS 6.3(4)

Unrestricted License

2 Replies 2

scottmac
Advocate
Advocate

You may just need to download the hash key to enable 3DES.

When you do a SH VER, it should give you a capability list at the bottom. For Example:

Licensed Features:

Failover: Disabled

VPN-DES: Enabled

VPN-3DES-AES: Enabled

Maximum Interfaces: 2

Cut-through Proxy: Enabled

Guards: Enabled

URL-filtering: Enabled

Inside Hosts: 10

Throughput: Unlimited

IKE peers: 10

This PIX has a Restricted (R) license.

If you register your PIX (re-register your PIX?) Cisco will email you hash to unlock the 3DES capability.

Check it out.

Good Luck

Scott

Soctt,

Thank you for that! I completely forogt about registering to obtain a 3DES key, I guess I thought a UR license would include it.

Thanks,

Luke

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: