configure syslog tls cipher

configure syslog tls cipher [[cipher | all] on | cipher off]

Description

Turns on/off ciphers for Syslog Transport Layer Security (TLS) sessions.

Syntax Description

syslog Specifies configuring the remote Syslog target.
tls Transport Layer Security (TLS) protocol.
cipher Specifies configuring the algorithm to use for encrypting Syslog TLS sessions.
cipher Specifies the cipher name to enable or disable.
all Specifies all ciphers for enabling.
on Enable selected cipher. Default is that all ciphers are on.
off Disables selected cipher.

Default

By default, all ciphers are enabled.

Usage Guidelines

A minimum of one cipher must be enabled.

The following is the list of available ciphers:
  • aes128-sha
  • aes128-sha256
  • aes256-sha256
  • dhe-rsa-aes128-sha256
  • dhe-rsa-aes256-sha256

To view which ciphers are enabled and disabled, use the command show log configuration.

Example

The following example enables all ciphers for Syslog TLS sessions:

configure syslog tls cipher all on
The following example disables the aes128-sha cipher for Syslog TLS sessions:
configure syslog tls cipher aes128-sha off

History

This command was first available in ExtremeXOS 22.4.

Platform Availability

This command is available on ExtremeSwitching X435, X440-G2, X450-G2, X460-G2, X465, X590, X620, and X695 series switches.