华为交换机SSH报错Socket error Event: 32 Error: 10053. Connection closing...Socket close.

环境：

FutureMatrix S5735S-S Switch

Software Version : VRP ® Software, Version 5.170 (V200R021C01SPC200)

问题描述：

Xshell连接不上SSH 出现Socket error Event: 32 Error: 10053.
Connection closing…Socket close.

原因分析

SSH登录弱秘钥算法不支持问题

从V200R019C10SPC500开始交换机默认不支持sha2_256_96、sha1、sha1_96、md5和md5_96等参数导致低版本的客户端登录失败

解决方案：

手动加载WEAKEA插件

1.载入弱模块WEAKEA插件

load-module weakea

install-module weakea.mod

2.sy视图，取消之前配置

将指定的算法参数全部undo掉

[xx-core]

undo ssh server cipher
undo ssh server hmac
undo ssh server key-exchange
undo ssh server dh-exchange min-len
undo ssh server publickey
undo ssh client cipher
undo ssh client hmac
undo ssh client key-exchange

[xx-core]undo ssh server cipher
Warning: Insecure encryption algorithms are enabled. Disabling them is recommended.
[xx-core]undo ssh server hmac
Warning: Insecure digest algorithms are enabled. Disabling them is recommended.
[xx-core]undo ssh server key-exchange
Warning: Insecure key exchange algorithms are enabled. Disabling them is recommended.
[xx-core]undo ssh server dh-exchange min-len
Warning: Setting the minimum value of the Diffie-hellman-group-exchange key exchange algorithm to be less than 2048 imposes security risks.
[xx-core]undo ssh server publickey
Warning: Insecure encryption algorithms are enabled. Disabling them is recommended.
[xx-core]undo ssh client cipher
Warning: Insecure encryption algorithms are enabled. Disabling them is recommended.
[xx-core]undo ssh client hmac
Warning: Insecure digest algorithms are enabled. Disabling them is recommended.
[xx-core]undo ssh client key-exchange
Oct 25 2022 00:04:22 Soterea-core DS/4/DATASYNC_CFGCHANGE:OID 1.3.6.1.4.1.56813.5.25.191.3.1 configurations have been changed. The current change number is 24, the change loop count is 0, and the maximum number of records is 4095.
[xx-core]undo ssh client key-exchange

3.更改source端口

输入：ssh server-source all-interface

[xx-core]ssh server-source all-interface
Warning: SSH server source configuration will take effect in the next login. Continue? [Y/N]:y
Warning: It expandes the range of accessed Ip.
[xx-core]
Oct 25 2022 00:07:31 Soterea-core LLDP/4/RATEEXCESSIVE:OID 1.3.6.1.4.1.56813.5.25.134.2.7 The rate of received PDUs exceeded the threshold. (IfName=GigabitEthernet0/0/1)

4.更新一下服务类型
ssh user admin service-type stelnet