https://community.checkpoint.com/t5/Firewall-and-Security-Management/Check-and-config-SSHv1-or-SSHv2-on-GAIA/m-p/58156#M4370 <H2><FONT size="4">Check and config supported SSH protocol version.</FONT></H2> <H3><STRONG><FONT size="4">Method One</FONT></STRONG></H3> <P>If you want to check what SSH protocol version are supported by a local OpenSSH server, you can refer to&nbsp;/etc/ssh/sshd_config&nbsp;file. Open /etc/ssh/sshd_config with a vi editor and look for "Protocol" field. You can also config the version over this parameter. If you change the paarameter so you should restart sshd.</P> <P>If it shows the following, it means that OpenSSH server supports SSH2 only.</P> <P><STRONG><FONT color="#FF0000">Protocol 2</FONT></STRONG></P> <DIV> <DIV id="highlighter_307720" class="syntaxhighlighter plain">&nbsp;</DIV> </DIV> <P>If it displays the following instead, OpenSSH server supports both SSH1 and SSH2.</P> <P><STRONG><FONT color="#FF0000">Protocol 1,2</FONT></STRONG></P> <DIV> <DIV id="highlighter_167611" class="syntaxhighlighter plain"> <P>&nbsp;<BR /><STRONG><FONT size="4">Method Two</FONT></STRONG></P> <P>If you cannot access /etc/ssh/sshd_config because OpenSSH server is running on a remote server, you can test its SSH protocol support by using SSH client program called<SPAN>&nbsp;</SPAN><TT>ssh</TT>. More specifically, we force<SPAN>&nbsp;</SPAN><TT>ssh</TT><SPAN>&nbsp;</SPAN>to use a specific SSH protocol, and see how the remote SSH server responds.</P> <P>T<SPAN>he following command will force&nbsp;</SPAN><TT>ssh</TT><SPAN>&nbsp;command to use SSH1</SPAN></P> <P><SPAN>#&nbsp;ssh <STRONG><FONT color="#FF0000">-1</FONT></STRONG> user@remote_server</SPAN></P> <P><SPAN>If the remote SSH server supports SSH2 only, the first command with "-1" option will fails with an error message like this:</SPAN></P> <P><SPAN>#&nbsp;ssh <FONT color="#FF0000"><STRONG>-2</STRONG></FONT> user@remote_server</SPAN></P> </DIV> </DIV> Sun, 14 Jul 2019 19:01:57 GMT HeikoAnkenbrand 2019-07-14T19:01:57Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Check-and-config-SSHv1-or-SSHv2-on-GAIA/m-p/58156#M4370 <H2><FONT size="4">Check and config supported SSH protocol version.</FONT></H2> <H3><STRONG><FONT size="4">Method One</FONT></STRONG></H3> <P>If you want to check what SSH protocol version are supported by a local OpenSSH server, you can refer to&nbsp;/etc/ssh/sshd_config&nbsp;file. Open /etc/ssh/sshd_config with a vi editor and look for "Protocol" field. You can also config the version over this parameter. If you change the paarameter so you should restart sshd.</P> <P>If it shows the following, it means that OpenSSH server supports SSH2 only.</P> <P><STRONG><FONT color="#FF0000">Protocol 2</FONT></STRONG></P> <DIV> <DIV id="highlighter_307720" class="syntaxhighlighter plain">&nbsp;</DIV> </DIV> <P>If it displays the following instead, OpenSSH server supports both SSH1 and SSH2.</P> <P><STRONG><FONT color="#FF0000">Protocol 1,2</FONT></STRONG></P> <DIV> <DIV id="highlighter_167611" class="syntaxhighlighter plain"> <P>&nbsp;<BR /><STRONG><FONT size="4">Method Two</FONT></STRONG></P> <P>If you cannot access /etc/ssh/sshd_config because OpenSSH server is running on a remote server, you can test its SSH protocol support by using SSH client program called<SPAN>&nbsp;</SPAN><TT>ssh</TT>. More specifically, we force<SPAN>&nbsp;</SPAN><TT>ssh</TT><SPAN>&nbsp;</SPAN>to use a specific SSH protocol, and see how the remote SSH server responds.</P> <P>T<SPAN>he following command will force&nbsp;</SPAN><TT>ssh</TT><SPAN>&nbsp;command to use SSH1</SPAN></P> <P><SPAN>#&nbsp;ssh <STRONG><FONT color="#FF0000">-1</FONT></STRONG> user@remote_server</SPAN></P> <P><SPAN>If the remote SSH server supports SSH2 only, the first command with "-1" option will fails with an error message like this:</SPAN></P> <P><SPAN>#&nbsp;ssh <FONT color="#FF0000"><STRONG>-2</STRONG></FONT> user@remote_server</SPAN></P> </DIV> </DIV> Sun, 14 Jul 2019 19:01:57 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Check-and-config-SSHv1-or-SSHv2-on-GAIA/m-p/58156#M4370 HeikoAnkenbrand 2019-07-14T19:01:57Z