Hi,

I am trying to connect to a remote ios device via proxy. However, when I try to connect below error is received from the device:

info Failed to connect to device edge-cisco1: connection refused: NEDCOM CONNECT: Timeout after 720s, blocked on: "\r\nUnable to negotiate with xx.xx.xx.xx(device ip) port 22: no matching cipher found. Their offer: aes128-cbc,3des-cbc,arcfour,aes192-cbc,aes256-cbc\r\r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# \r\n# " in state login

I tried to do direct ssh from proxy server and same error was returned:

# ssh cisco@xx.xx.xx.xx
Unable to negotiate with 192.168.36.101 port 22: no matching cipher found. Their offer: aes128-cbc,3des-cbc,arcfour,aes192-cbc,aes256-cbc

Running same command with -c option I was able connect to device using username and password. I used one of the ciphers offered by the remote device.

ssh -c aes128-cbc cisco@xx.xx.xx.xx

Is there a way to configure this option in NSO?

Thanks,

Shashank