HPE Community
Operating System - HP-UX
1752812 Members
5927 Online
108789 Solutions
New Discussion

Re: SCP is slow in 1 out of 4 directions! Different than most things

 
Dennis Handly
Acclaimed Contributor

‎01-14-2013 10:33 PM - edited ‎01-14-2013 10:34 PM

‎01-14-2013 10:33 PM - edited ‎01-14-2013 10:34 PM

Re: SCP is slow in 1 out of 4 directions! Different than most things

>I can see the SSH version when i do a swlist -l product | grep -i Secure

 

This gives the HP-UX version.  If you want the ssh version use: ssh -V

0 Kudos
Reply
marvin51796
Regular Advisor

‎01-15-2013 08:41 AM - edited ‎01-15-2013 08:44 AM

‎01-15-2013 08:41 AM - edited ‎01-15-2013 08:44 AM

Re: SCP is slow in 1 out of 3 directions!!! Different than most things

Matti

both the client and server say Protocol 2,1. Is there a reason it is using 1.99 stuf??? i  guess i dont understand if both systems are setup for 2 why is it not being used on both ends?
thanks

 

0 Kudos
Reply
Matti_Kurkela
Honored Contributor

‎01-19-2013 12:50 AM

‎01-19-2013 12:50 AM

Re: SCP is slow in 1 out of 3 directions!!! Different than most things

> both the client and server say Protocol 2,1. Is there a reason it is using 1.99 stuf???

 

According to the SSH protocol specification (both protocol versions), when a SSH connection is established, the server must declare its protocol version to initiate the connection set-up, without knowing anything at all about the capabilities of the client.

 

According to the original SSH 1.x protocol spec, an increase in a major version number means a backwards-incompatible change in the protocol, so if an old client that only supports protocol 1.x receives a protocol version string with "2.0" in it from the server, the client will get a terminal case of shyness, display an error message "incompatible protocol versions" to the user, and abort the connection. So, the server *must* declare a 1.x version number if it is going to allow old protocol 1.x clients to connect. 

 

The protocol version number "1.99" is a kind of "secret handshake" that is still SSH 1.x compliant, but offers a clue that protocol version greater than 1.x is supported too. If the client also claims a 1.x protocol version, then the connection will proceed using SSH 1.x protocol; but if the client also indicates that it supports higher protocol versions, then protocol version 2.0 will be used.

 

Apparently "they" who produced the protocol identification string did not do any deep analysis of the SSH server capabilities, just captured the initial protocol version string sent by the server and presented it as-is as the protocol identification. You can do the same by simply telnetting to the SSH port of any server that has sshd running: the server will send its version string as human-readable text, wait a while, and then cut the connection since a telnet client cannot complete a SSH session key exchange.)

MK
0 Kudos
Reply
marvin51796
Regular Advisor

‎01-21-2013 11:04 AM

‎01-21-2013 11:04 AM

Re: SCP is slow in 1 out of 3 directions!!! Different than most things

Thanks for the great explanation of this, its helpful, now if we can just get the cisco hardware to work with the hp hardware..LOL..
thanks again to everyone , you all have been so helpful
0 Kudos
Reply
marvin51796
Regular Advisor

‎02-18-2013 07:21 AM

‎02-18-2013 07:21 AM

Re: SCP is slow in 1 out of 3 directions!!! Different than most things

Just to add more information to anyone who might run into this, apparently the issue is that we were going from a 10G HP switch in a blade chassis, to a 1G Cisco switch in another blade chassis. The issue was resolved by useing the second sets of ques in each switch. We are using the ques that are setup for Telephone and other traffic as the primary for our ECP traffic. apparently this happens to IBM and DELL chassis also.

 

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.