H3C S7006E ssh跳转登录华为网络设备报错提示算法不匹配

问题描述：S交换机V200R019C10SPC500版本客户端ssh登录失败登录低版本设备正常

根因：从V200R019C10SPC500开始交换机默认不支持sha2_256_96、sha1、sha1_96、md5和md5_96等参数导致低版本的客户端登录失败
解决方案：安装WEAKEA插件
V200R019C10SPC500到v200R020需要到华为官网下载WEAKEA插件
参考插件指导说明书操作
V200r021C00SPC100起系统软件已经包含插件但需要手动加载
 

V200r021C00SPC100到V200r021C01SPC200执行如下命令：
load-module  weakea
install-module weakea.mod

V200r021C10SPC500执行如下命令：

load-module  weakea

<JBZHSL-S7706>load-module weakea 
Info: Load weakea_V200R021C10SPC600.mod from the startup system software to $_install_mod/weakea_V200R021C10SPC600.mod. You can run the install-module weakea_V200R021C10SPC600.mod command to install it.

再执行：install-module weakea_V200R021C10SPC600.mod

插件安装结束后将算法恢复成默认配置，将指定的算法参数全部undo掉（不指定任何算法就是默认支持所有算法）

设备生成的指定秘钥算法配置等类似如下：

ssh server cipher aes256_ctr aes128_ctr
ssh server hmac sha2_256
ssh server key-exchange dh_group_exchange_sha1 dh_group14_sha1 dh_group1_sha1
ssh client cipher aes256_ctr aes128_ctr
ssh client hmac sha2_256

ssh client key-exchange dh_group_exchange_sha1 dh_group14_sha1 dh_group1_sha1

ssh server publickey rsa_sha2_512 rsa_sha2_256

将上述算法全部undo掉

Undo ssh server cipher 

Undo ssh server hmac 

Undo ssh server key-exchange 

Undo ssh client cipher 

Undo ssh client hmac

Undo ssh client key-exchange 

Undo ssh server publickey 

v200R020版本起有登录源接口限制 建议配置ssh server-source  all-interface