SSH: no matching cipher found

On occasion we run across an old Cisco switch that throws the following error when connecting via ssh from a modern client:

[email protected]:~ $ ssh 192.168.86.42
Unable to negotiate with 192.168.86.42 port 22: no matching cipher found. Their offer: aes128-cbc,3des-cbc,aes192-cbc,aes256-cbc

The best solution is to upgrade the software on the switch to something more modern. If that is not possible, use the -c option with ssh to select one of the ciphers presented in the Their offer: section:

[email protected]:~ $ ssh -c aes128-cbc 192.168.86.42
Password:

3560sw-1#

comments powered by Disqus