Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Issues with SSH 1

Status
Not open for further replies.
Eddiefdz

Eddiefdz

IS-IT--Management
Mar 20, 2002
273
US
Hello,

I have a machine which is acting kind of weird. Until about 2 days ago, i could SSH into the machine with no problems at all. Now I can only connect to SSH every so often. Although I can ping the machine and its on the network, i have to keep retrying the connection until finally it connects. Any reason why it would be doing that? Is there any command that I can try to see if there is a problem with SSH?

Thanks for the help,
Eddie

Eddie Fernandez
CCNA, Network+, A+, MCP
 
Sort by date Sort by votes
POssibilties:

- High system utilization affecting perceived performance of SSH login
- High hacking volume against your SSH in form of a dictionary attack which keeps your SSH sessions opening and closing, making it hard to get a new session
- High network traffic between you and the box preventing the establishment of a stable SSH "tunnel" to bring up the prompt/login
- Your SSH server is only willing to accept specific SSH protocols/encryption sizes, which are not being tried first by your client software (i.e. SSH1 vs. SSH2, 3DES vs. blowfish vs. AES)
- Bad kharma


D.E.R. Management - IT Project Management Consulting
 
Upvote 0 Downvote
Well, i really doubt system utilization is the problem, i ran TOP and the processor is completely idle. As per hacking, ssh ports are closed on my firewall from outside users. SSH only runs in the internal network. There may be network traffic, but also very unlikely, i have a 1gig connection from the switch to the server. And why would the server all of a sudden only willing to accept certain connections?

Eddie Fernandez
CCNA, Network+, A+, MCP
 
Upvote 0 Downvote
Another possibility is that the SSH server is trying to do a reverse DNS lookup which may timeout and then allow you to connect anyways.

I cannot speak to the "suddenly factor", you need to think critically about everything that has changed not only on that server but what resources it uses for network, DNS, etc.

You may also need to make sure that you don't have a RAID disk gone bad.

D.E.R. Management - IT Project Management Consulting
 
Upvote 0 Downvote
Eddie, have you checked for duplicate IPs in your network, which could confuse your switch?
You may wish to review your logfiles (RH: /var/log/secure.* unless specified other in /etc/syslog.conf)

Stefan
 
Upvote 0 Downvote
any changes ie ML upgrades etc.check your error logs and /var/adm/messages file for any clues.
 
Upvote 0 Downvote
Stefanhei,

Thanks for the enlightment. I did in fact have the ip address in use already on the network. A switch that i recently put in place had the same ip address configured on it.

Thanks,
Eddie

Eddie Fernandez
CCNA, Network+, A+, MCP
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

spamjim
  • Locked
  • Question
Sorting out NTFS filesystem issues
Replies
0
Views
245
spamjim
spamjim
RedLinux
  • Locked
  • Question
Login session issues with HTTP headers
Replies
0
Views
133
RedLinux
RedLinux
ComputersUnlimited
  • Locked
  • Question
Logging into SSH with PKI 1
Replies
2
Views
192
ComputersUnlimited
ComputersUnlimited
harro1968
  • Locked
  • Question
Help with ProxyPass
Replies
0
Views
180
harro1968
harro1968
CecilXavier
  • Locked
  • Question
RHEL IDM with Radius not authenticating
Replies
0
Views
222
CecilXavier
CecilXavier

Part and Inventory Search

Sponsor

Back
Top