Hi,
I found this on our router:
Router#show crypto key mypubkey rsa
% Key pair was generated at: 13:52:01 GMT Oct 9 2010
Key name: Router
Storage Device: private-config
Usage: General Purpose Key
Key is not exportable.
Key Data:
<blah blah>
% Key pair was generated at: 17:50:29 GMT Nov 1 2012
Key name: Router.server
Temporary key
Usage: Encryption Key
Key is not exportable.
Key Data:
<blah blah>
% Key pair was generated at: 17:54:08 GMT Nov 1 2012
Key name: Router
Storage Device: not specified
Usage: General Purpose Key
Key is not exportable.
Key Data:
<blah blah>
My question:
1. I found no statement in configuration that explicitly configures the router for using RSA. any specific reason why Cisco router uses RSA keys & not DH keys by default? can I configure it to use DH keys?
2. When I enter crypto key generate rsa command it generates 2 pairs of keys! Why 2 pairs? isnt 1 pair enough?
3. If I enter crypto key generate rsa command again 1 more pair will be generated. Which one the router will use for SSH?