Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

SSH issues on standalone linux boxes

Status
Not open for further replies.
nuzzy

nuzzy

MIS
Aug 16, 2001
42
0
0
US
Hello,

I'm having some REALLY weird issues with ssh. We have two separate networks set up. One production and one test. Traffic is allowed to flow to the test net, but only ssh is allowed back and forth between the two. We were testing ssh from production to test using PuTTY on a Windows machine with no errors. However, using a redhat and a Ubuntu box to the test didn't work. It just sat there. Note that the linux boxes had both iptables and selinux off.

Also, these go thru Cisco ASA's. After watching logging and opening up to see if PERMIT: ANY/ANY worked, we still had no success. It looked like ssh made a connection to the test box, but then it got a SYN Timeout, so I'm not sure what's going on. To complicate things even further, a Solaris box on the production net which also runs OpenSSH can connect to the test, as can VMWare images (Ubuntu, Fedora) on my local machine on the production network.

This is what the ssh output looks like:
Code: 
ssh -vvv 192.168.101.5
OpenSSH_5.1p1 Debian-5ubuntu1, OpenSSL 0.9.8g 19 Oct 2007
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug2: ssh_connect: needpriv 0
debug1: Connecting to 192.168.101.5 [192.168.101.5] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: identity file /root/.ssh/identity type -1
debug1: identity file /root/.ssh/id_rsa type -1
debug1: identity file /root/.ssh/id_dsa type -1

It will just sit there until I end it and the SSH server doesn't log any connection output.

I've also tried adding the authorized_keys to no avail.

Any possible ideas? I'm out of them!

P.S. - It seems to only happen on standalone linux boxes as well.
 
Sort by date Sort by votes
I'm no expert on Secure Shell, but those last two messages regarding RSA and DSA would have me looking at my Certificates and checking that the client is properly set up.

It looks to me like the initial connection is being made but from there on you have a some sort on decryption failure so the two machines aren't "talking the same language" (so to speak).

You might also try a sniffer trace to look at the conversation in more depth ;)

I used to be the Comaboy on Tek-Tips.

...And the despicable Jeremy Vyle elsewhere. ;)
 
Upvote 0 Downvote
can you verify you have correct routes back to the red hat box?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sue Adams
  • Locked
  • Question
Setting up a VPN to print documents to work printer in one city from home
Replies
2
Views
77
goombawaho
goombawaho
Destro1924
  • Locked
  • Question
Cisco 877w Access lits/port forwarding issues- Help needed
Replies
0
Views
101
Destro1924
Destro1924
MrMode
  • Locked
  • Question
default ports work but not ones I have generated
Replies
0
Views
53
MrMode
MrMode
goombawaho
  • Locked
  • Question
LogMeIn works better if installed on both ends??
Replies
2
Views
48
goombawaho
goombawaho
techlounge
  • Locked
  • Question
VNC SSH Tunnel - Is it correct?
Replies
0
Views
45
techlounge
techlounge

Part and Inventory Search

Sponsor

Back
Top