1830899 Members
2910 Online
110017 Solutions
New Discussion

SSH problem

 
SOLVED
Go to solution
Richard Pereira_1
Regular Advisor

SSH problem

Users started to report they could no longer login to the server.

myhost:/:>ssh -v HostA
OpenSSH_3.9, OpenSSL 0.9.7d 17 Mar 2004
HP-UX Secure Shell-A.03.91.002, HP-UX Secure Shell version
debug1: Reading configuration data /opt/ssh/etc/ssh_config
debug1: Connecting to HostA [142.101.x.y] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/3
debug1: identity file /.ssh/id_rsa type 1
debug1: identity file /.ssh/id_dsa type -1
debug1: ssh_exchange_identification:


debug1: ssh_exchange_identification: Destination server does not have Ssh activated.


debug1: ssh_exchange_identification: Contact Cisco Systems, Inc to purchase a


debug1: ssh_exchange_identification: license key to activate Ssh.


ssh_exchange_identification: Connection closed by remote host

ANy ideas? checked google, nothing relevant.
3 REPLIES 3
Mel Burslan
Honored Contributor

Re: SSH problem

I am not familiar with this problem but it seems like your ssh connection gets hijacked by a cisco device and not allowed to proceed.

Check if you have an IP address conflict between this server and a cisco device interface IP. Best bet is to take the message to the network admins and by their help sniff the traffic to figure out which device is stronarming you to buy a cisco ssh license key, looking at the mac addresses.
________________________________
UNIX because I majored in cryptology...
Devesh Pant_1
Esteemed Contributor

Re: SSH problem

Richard,
You need to talk to your network folks and have the ssh port opened up from the firewall.

DP
Armin Kunaschik
Esteemed Contributor
Solution

Re: SSH problem

I guess the error messages is clear:

ssh access is not working anymore on the cisco device because the license key is missing.

If the user used to reach a server under that address this might reveal a networking/routing problem. Maybe it's a kind of NAT or policy routing activated and configured the wrong way.

Maybe just the IP address changed?

May 2 cents,
Armin

BTW: Please assign points!
And now for something completely different...