Fortinet white logo
Fortinet white logo

CLI Reference

config firewall ssh setting

config firewall ssh setting

SSH proxy settings.

config firewall ssh setting
    Description: SSH proxy settings.
    set caname {string}
    set untrusted-caname {string}
    set hostkey-rsa2048 {string}
    set hostkey-dsa1024 {string}
    set hostkey-ecdsa256 {string}
    set hostkey-ecdsa384 {string}
    set hostkey-ecdsa521 {string}
    set hostkey-ed25519 {string}
    set host-trusted-checking [enable|disable]
end

config firewall ssh setting

Parameter

Description

Type

Size

Default

caname

CA certificate used by SSH Inspection.

string

Maximum length: 35

untrusted-caname

Untrusted CA certificate used by SSH Inspection.

string

Maximum length: 35

hostkey-rsa2048

RSA certificate used by SSH proxy.

string

Maximum length: 35

hostkey-dsa1024

DSA certificate used by SSH proxy.

string

Maximum length: 35

hostkey-ecdsa256

ECDSA nid256 certificate used by SSH proxy.

string

Maximum length: 35

hostkey-ecdsa384

ECDSA nid384 certificate used by SSH proxy.

string

Maximum length: 35

hostkey-ecdsa521

ECDSA nid384 certificate used by SSH proxy.

string

Maximum length: 35

hostkey-ed25519

ED25519 hostkey used by SSH proxy.

string

Maximum length: 35

host-trusted-checking

Enable/disable host trusted checking.

option

-

enable

Option

Description

enable

Enable host key trusted checking.

disable

Disable host key trusted checking.

config firewall ssh setting

config firewall ssh setting

SSH proxy settings.

config firewall ssh setting
    Description: SSH proxy settings.
    set caname {string}
    set untrusted-caname {string}
    set hostkey-rsa2048 {string}
    set hostkey-dsa1024 {string}
    set hostkey-ecdsa256 {string}
    set hostkey-ecdsa384 {string}
    set hostkey-ecdsa521 {string}
    set hostkey-ed25519 {string}
    set host-trusted-checking [enable|disable]
end

config firewall ssh setting

Parameter

Description

Type

Size

Default

caname

CA certificate used by SSH Inspection.

string

Maximum length: 35

untrusted-caname

Untrusted CA certificate used by SSH Inspection.

string

Maximum length: 35

hostkey-rsa2048

RSA certificate used by SSH proxy.

string

Maximum length: 35

hostkey-dsa1024

DSA certificate used by SSH proxy.

string

Maximum length: 35

hostkey-ecdsa256

ECDSA nid256 certificate used by SSH proxy.

string

Maximum length: 35

hostkey-ecdsa384

ECDSA nid384 certificate used by SSH proxy.

string

Maximum length: 35

hostkey-ecdsa521

ECDSA nid384 certificate used by SSH proxy.

string

Maximum length: 35

hostkey-ed25519

ED25519 hostkey used by SSH proxy.

string

Maximum length: 35

host-trusted-checking

Enable/disable host trusted checking.

option

-

enable

Option

Description

enable

Enable host key trusted checking.

disable

Disable host key trusted checking.