Support User Manuals

Linksys DES-3028/DES-3028P/DES-3052/DES-3052P Portable DVD Player User Manual

Open as PDF

of 250

DES-3028 DES-3028P DES-3052 DES-3052P Layer 2 Fast Ethernet Switch CLI Reference Manual

disable ssl

Purpose To disable the SSL function on the Switch.

Syntax

disable ssl {ciphersuite {RSA_with_RC4_128_MD5 |

RSA_with_3DES_EDE_CBC_SHA |

DHE_DSS_with_3DES_EDE_CBC_SHA |

RSA_EXPORT_with_RC4_40_MD5}}

Description This command will disable SSL on the Switch and can be used to

disable any one or combination of listed ciphersuites on the Switch.

Parameters ciphersuite - A security string that determines the exact cryptographic

parameters, specific encryption algorithms and key sizes to be used for

an authentication session. The user may choose any combination of the

following:

Restrictions Only administrator-level users can issue this command.

1. RSA_with_RC4_128_MD5 – This ciphersuite combines the RSA

key exchange, stream cipher RC4 encryption with 128-bit keys

and the MD5 Hash Algorithm.

2. RSA_with_3DES_EDE_CBC_SHA - This ciphersuite combines

the RSA key exchange, CBC Block Cipher 3DES_EDE

encryption and the SHA Hash Algorithm.

3. DHE_DSS_with_3DES_EDE_CBC_SHA - This ciphersuite

combines the DSA Diffie Hellman key exchange, CBC Block

Cipher 3DES_EDE encryption and SHA Hash Algorithm.

4. RSA_EXPORT_with_RC4_40_MD5 - This ciphersuite combines

the RSA Export key exchange, stream cipher RC4 encryption

with 40-bit keys.

Example usage:

To disable the SSL status on the Switch:

DES-3028P:4#disable ssl

Command: disable ssl

Success.

DES-3028P:4#

To disable ciphersuite RSA_EXPORT_with_RC4_40_MD5 only:

DES-3028P:4#disable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5

Command: disable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5

Success.

DES-3028P:4#

config ssl cachetimeout timeout

Purpose Used to configure the SSL cache timeout.

Syntax

config ssl cachetimeout timeout <value 60-86400>

Description This command will set the time between a new key exchange

between a client and a host using the SSL function. A new SSL

session is established every time the client and host go through a

key exchange. Specifying a longer timeout will allow the SSL session

to reuse the master key on future connections with that particular

host, therefore speeding up the negotiation process.

215

previous next