Hi ya:
I've recently complied openssh-2.9p2 and it appears to perform fine on
our internal network, however when coming through a cisco 2600 router,
the system doesn't connect, well actually it does connect, but as you
can see from the log messages, the connection is messed up.
The logs show the following:
internal connnection:
Jul 23 13:25:21 vims sshd[26154]: connect from akhnaten
Jul 23 13:25:23 vims sshd[26154]: Generating 768 bit RSA key.
Jul 23 13:25:24 vims sshd[26154]: RSA key generation complete.
Jul 23 13:25:24 vims sshd[26154]: Connection from 10.196.145.103 port
4518
Jul 23 13:25:24 vims sshd[26154]: Enabling compatibility mode for
protocol 2.0
Jul 23 13:25:25 vims sshd[26154]: Failed none for dyer from
10.196.145.103 port 4518 ssh2
Jul 23 13:25:28 vims sshd[26154]: Accepted password for dyer from
10.196.145.103 port 4518 ssh2
Jul 23 13:25:36 vims sshd[26154]: Connection closed by remote host.
Jul 23 13:25:36 vims sshd[26154]: Closing connection to 10.196.145.103
external connection, i.e. through cisco router:
Jul 24 08:25:38 vims sshd[26760]: connect from unknown
Jul 24 08:25:40 vims sshd[26760]: Generating 768 bit RSA key.
Jul 24 08:25:42 vims sshd[26785]: warning: can't get client address:
Connection
reset by peer
Jul 24 08:25:42 vims sshd[26785]: connect from unknown
Jul 24 08:25:42 vims sshd[26760]: RSA key generation complete.
Jul 24 08:25:42 vims sshd[26760]: warning: can't get client address:
Connection
reset by peer
Jul 24 08:25:42 vims sshd[26760]: Connection from UNKNOWN port 65535
Jul 24 08:25:42 vims sshd[26760]: Could not write ident string to
UNKNOWN.
Jul 24 08:25:44 vims sshd[26785]: Generating 768 bit RSA key.
Jul 24 08:25:45 vims sshd[26785]: RSA key generation complete.
Jul 24 08:25:45 vims sshd[26785]: warning: can't get client address:
Connection
reset by peer
Jul 24 08:25:45 vims sshd[26785]: Connection from UNKNOWN port 65535
Jul 24 08:25:45 vims sshd[26785]: Could not write ident string to
UNKNOWN.
Jul 24 08:25:48 vims sshd[26815]: warning: can't get client address:
Connection
reset by peer
Jul 24 08:25:48 vims sshd[26815]: connect from unknown
Jul 24 08:25:51 vims sshd[26815]: Generating 768 bit RSA key.
Jul 24 08:25:52 vims sshd[26815]: RSA key generation complete.
Jul 24 08:25:52 vims sshd[26815]: Connection from UNKNOWN port 65535
Jul 24 08:25:52 vims sshd[26815]: Could not write ident string to
UNKNOWN.
note that the above will continue until I ^C out of the ssh attempt.
I still have an one machine on our internal net that is running an older
version of ssh2, i.e. SSH Version 2.0.13, and it seems to work fine
through the router.
It appears obvious what the problem is, but it is unclear how to fix
it. It is a router problem as it appears to be?
TIA,
Rick
--
Rick McCloskey
VIMS Data Systems Engineer
Lunar & Planetary Lab.
University of Arizona
Tucson, AZ 85745
Ph: 520/626-3255
FAX: 520/621-4933
