im trying to ssh switch but getting below error
Unable to negotiate with 172.19.12.4 port 22: no matching cipher found. Their offer: 3des-cbc
if i used below cmd will get access.
ssh -c 3des-cbc dduser@XX.XX.XX.XX
Please let me know this switches (WS-C2950G-24-EI )can support algorithm encryption aes128-cbc ?
With 12.1(22)EA13 veersion.
Go to Solution.
Run that command from a host CLI which has nmap installed. Not the switch.
View solution in original post
The images released for the 2950G are of such a vintage that I doubt these ‘next-generation’ ciphers are available.
…dated 2012 recommends replacing 3DES with AES. So it is probably safe to assume the 2950G image builds were not around when Cisco was making this transition.
Nmap has a built in script you run against your switches to determine ciphersuite:
nmap --script ssh2-enum-algos -sV -p <port> <host>
thanks for the reply...
how do i run below script on switch ?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: