HP 6125XLG R2306-HP 6125XLG Blade Switch Security Command Reference - Page 177

• If the ACL does not exist, or the ACL does not have any statement, all the IPv6 SSH clients can access the server. The ACL filters only new SSH connections after the configuration. If you execute this command multiple times, the most recent configuration takes effect. Examples # Configure ACL 2001 and reference the ACL to allow only the IPv6 SSH client at 1::1 to access the server. system-view [Sysname] acl ipv6 number 2001 [Sysname-acl6-basic-2001] rule permit source 1::1 128 [Sysname-acl6-basic-2001] quit [Sysname] ssh server ipv6 acl ipv6 2001 Related commands display ssh server ssh server rekey-interval Use ssh server rekey-interval to set an interval for updating the RSA server key pair. Use undo ssh server rekey-interval to restore the default. Syntax ssh server rekey-interval hours undo ssh server rekey-interval Default The interval for updating the RSA server key pair is 0, and the system does not update the RSA server key pair. Views System view Predefined user roles network-admin Parameters hours: Specifies an interval for updating the server key pair, in the range of 1 to 24 hours. Usage guidelines Updating the RSA server key pair periodically can prevent malicious hacking to the key pair and enhance security of the SSH connections. This command takes effect only on SSH clients that use SSH1 client software. This command is not available in FIPS mode. Examples # Set the RSA server key pair update interval to 3 hours. system-view [Sysname] ssh server rekey-interval 3 168