Need help 2801 acting weird ssh and ip host trouble 2

[bagz]

line vty 0 4
login local
transport input telnet ssh

I can telnet but not ssh into it and something else:
ip host switch1 10.3.4.2
ip host switch2 10.3.4.3

but when I try to telnet to it...

DTS-xprs-gw01#switch2
% Unknown command or computer name, or unable to find computer address

did a er nvram, reload, and re-config a few times but it's acting strange, need help please

here is scrubbed config...


Current configuration : 3698 bytes
!
version 12.4
service config
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname DTS-xprs-gw01
!
boot-start-marker
boot-end-marker
!
no logging buffered
enable secret 5 XXX
!
no aaa new-model
!
resource policy
!
mmi polling-interval 60
no mmi auto-configure
no mmi pvc
mmi snmp-timeout 180
ip subnet-zero
ip cef
!
!
no ip dhcp use vrf connected
ip dhcp excluded-address 10.3.4.1 10.3.4.50
ip dhcp excluded-address 10.3.4.200 10.3.4.255
!
ip dhcp pool LAN
network 10.3.4.0 255.255.255.0
default-router 10.3.4.1
dns-server 66.xxx.xxx.xxx
!
!
ip domain name dtscom.net
ip host switch1 10.3.4.2
ip host switch2 10.3.4.3
!
voice-card 0
!
!
!
!
voice class codec 1000
codec preference 1 g729r8 bytes 60
codec preference 2 g711ulaw
!
!
!
!
!
!
!
!
!
!
!
username admin password 7 xxx
username lbi password 7 xxx
!
!
!
!
interface FastEthernet0/0
ip address 66.xxx.xxx.xxx 255.255.255.240
ip nat outside
duplex auto
speed auto
!
interface FastEthernet0/1
no ip address
duplex auto
speed auto
!
interface FastEthernet0/1.1
encapsulation dot1Q 1 native
ip address 10.3.4.1 255.255.255.0
ip nat inside
no snmp trap link-status
!
interface FastEthernet0/1.2
encapsulation dot1Q 2
ip address 10.220.192.25 255.255.255.248
no snmp trap link-status
!
interface FastEthernet0/1.100
description ### NAT subnet for crew PC's ###
encapsulation dot1Q 100
ip address 192.168.100.1 255.255.255.0
ip nat inside
no snmp trap link-status
!
ip classless
ip route 0.0.0.0 0.0.0.0 66.xxx.xxx.xxx
!
!
ip http server
no ip http secure-server
ip nat inside source list 103 interface FastEthernet0/0 overload
ip nat inside source static 10.3.4.41 66.xxx.xxx.120
ip nat inside source static 10.3.4.42 66.xxx.xxx.121
ip nat inside source static tcp 192.168.100.48 8080 66.xxx.xxx.122 10048 extendable
ip nat inside source static tcp 192.168.100.49 8080 66.xxx.xxx.122 10049 extendable
ip nat inside source static tcp 192.168.100.50 8080 66.xxx.xxx.122 10050 extendable
ip nat inside source static 10.3.4.5 66.xxx.xxx.123
ip nat inside source static 10.3.4.44 66.xxx.xxx.124
ip nat inside source static 10.3.4.45 66.xxx.xxx.125
!
access-list 103 permit ip 10.3.4.0 0.0.0.255 any
access-list 103 permit ip 192.168.100.0 0.0.0.255 any
!
!
!
control-plane
!
!
!
voice-port 0/2/0
description 832-xxx-xxxx
!
voice-port 0/2/1
description 832-xxx-xxxx
!
!
!
!
!
dial-peer voice 1 voip
destination-pattern 1..........
voice-class codec 1000
session protocol sipv2
session target sip-server
dtmf-relay rtp-nte
fax-relay ecm disable
fax protocol pass-through g711ulaw
ip qos dscp cs5 media
no vad
!
dial-peer voice 2 voip
destination-pattern .T
voice-class codec 1000
session protocol sipv2
session target sip-server
dtmf-relay rtp-nte
fax-relay ecm disable
fax nsf 000000
fax protocol pass-through g711ulaw
ip qos dscp cs5 media
no vad
!
dial-peer voice 600 pots
destination-pattern 600
port 0/2/0
authentication username xxx password xxx
!
dial-peer voice 601 pots
destination-pattern 601
port 0/2/1
authentication username xxx password xxx
!
sip-ua
retry invite 3
retry response 3
retry bye 3
retry cancel 3
retry register 10
timers trying 1000
mwi-server ipv4:192.41.83.8 expires 3600 port 5060 transport udp unsolicited
registrar ipv4:192.41.8.11 expires 3600
sip-server ipv4:192.41.8.11
!
!
line con 0
login local
line aux 0
line vty 0 4
exec-timeout 30 0
login local
transport input ssh
line vty 5 15
login local
transport input ssh
!
end

 

[bagz]

Ok, i added
transport input telet ssh
to vty 0 4 and now i can telnet to it.

i can type "switch1" and it will telnet to 10.3.4.5 so that is working, but i still can't ssh to it.
i used another site as a templated and the other site is working fine. this router is behind a satellite modem so if i ssh into the modem and then try to ssh to the directly connected router, it immediately replies "connection refused"
no acls catching it, i can't find the problem. the only difference between this router and the working one is the version one is 12.4(3e) and one is 12.4(3i):

DTS-xlnc-gw01#sh ver
Cisco IOS Software, 2801 Software (C2801-SPSERVICESK9-M), Version 12.4(3e), RELEASE SOFTWARE (fc2)

DTS-xprs-gw01#sh ver
Cisco IOS Software, 2801 Software (C2801-SPSERVICESK9-M), Version 12.4(3i), RELEASE SOFTWARE (fc2)

i have someone there with a console cable that downloaded 12.4(24 T2)could it possibly be an IOS issue?

please help!!!

 

[unclerico]

do you have your crypto keys created??

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)

 

[bagz]

i think i did that in the SDM but i reloaded and re-config'd since then.
how do i check?

thanks

 

[burtsbees]

You need

crypto key gen rsa

/

tim@tim-laptop ~ $ sudo apt-get install windows
Reading package lists... Done
Building dependency tree
Reading state information... Done
E: Couldn't find package windows...Thank Goodness!

 

[bagz]

it works like a champ!!!!

thanks unclerico and burtsbees