configure syslog tls cipher
Description
Turns on/off ciphers for Syslog Transport Layer Security (TLS) sessions.
Syntax Description
syslog | Specifies configuring the remote Syslog target. |
tls | Transport Layer Security (TLS) protocol. |
cipher | Specifies configuring the algorithm to use for encrypting Syslog TLS sessions. |
cipher | Specifies the cipher name to enable or disable. |
all | Specifies all ciphers for enabling. |
on | Enable selected cipher. Default is that all ciphers are on. |
off | Disables selected cipher. |
Default
By default, all ciphers are enabled.
Usage Guidelines
A minimum of one cipher must be enabled.
The following is the list of available ciphers:
- aes128-sha
- aes128-sha256
- aes256-sha256
- dhe-rsa-aes128-sha256
- dhe-rsa-aes256-sha256
To view which ciphers are enabled and disabled, use the command show log configuration.
Example
The following example enables all ciphers for Syslog TLS sessions:
configure syslog tls cipher all on
The following example disables the aes128-sha cipher for Syslog TLS
sessions:
configure syslog tls cipher aes128-sha off
History
This command was first available in ExtremeXOS 22.4.
Platform Availability
This command is available on ExtremeSwitching X435, X440-G2, X450-G2, X460-G2, X465, X590, X620, and X695 series switches.