Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

SSH v2 or SSH v1.99

Hi,

I would like to know if the following IOS version only supports ssh v.1.99 or if it supports true ssh v.2.

The IOS is 12.4(13r)T

Our Nessus scans continue to kick back the vulnerability due to the 1.99 option which allows version 1 ssh connections. I believe we may have purchased the incorrect IOS image for the router.

If not, how do I allow the router to only accept version 2 connections?

ip ssh version 2.0 at the CLI continues to report back as v1.99

thanks,

Jim

2 REPLIES
New Member

Re: SSH v2 or SSH v1.99

Jim,

I think U have made the correct selection of IOS,

We do have the same IOS Version 12.4(13r)T, and this support SSH V2.

R01#sh ssh

Connection Version Mode Encryption Hmac State

514 2.0 IN aes256-cbc hmac-sha1 Session started

514 2.0 OUT aes256-cbc hmac-sha1 Session started

%No SSHv1 server connections running.

R01#sh ip ssh

SSH Enabled - version 1.99

Authentication timeout: 60 secs; Authentication retries: 3

HTH

New Member

Re: SSH v2 or SSH v1.99

hi tim

try this command : ip ssh version 2 in global config.

it will allow only ssh v2.

Hth

ouajih

1262
Views
0
Helpful
2
Replies
CreatePlease to create content