[rancid] Nexus 9k Login Crypto

Piegorsch, Weylin William weylin at bu.edu
Thu Dec 29 03:08:32 UTC 2016

Regarding type “cisco-nx”, is there a need to take into account the Nexus 9000 crypto support?

See here:

I found that my default setting yielded:

[rancid at localhost ~]$ clogin Nexus-9k
spawn telnet Nexus-9k
telnet: connect to address Connection refused
spawn ssh -c 3des -x -l rancid Nexus-9k
no matching cipher found: client 3des-cbc server aes128-ctr,aes192-ctr,aes256-ctr

Error: Couldn't login: Nexus-9k
[rancid at localhost ~]$

However, if I added the line to my .cloginrc:
add cyphertype Nexus-9k {aes128-ctr,aes192-ctr,aes256-ctr}

Then everything worked fine (I’ll spare everyone the output).

I’m not clear this is a rancid issue, or a local system issue.  Is it something at least worth noting?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/rancid-discuss/attachments/20161229/f0a4bad9/attachment.html>

More information about the Rancid-discuss mailing list