HPE Community
Operating System - Tru64 Unix
1820254 Members
2566 Online
109622 Solutions
New Discussion юеВ

Tru64 SSH-Exceed Client Help Needed

 
Terry Ivory
New Member

тАО01-31-2004 07:35 AM

тАО01-31-2004 07:35 AM

Tru64 SSH-Exceed Client Help Needed

I'm tyring to implement Hummingbird Exceed Security Connection to DS10 servers sitting behind a firewall. Problem: Cannot establish more than 1 client connection to the server. I'm able to open an Xsession with one client only. Looking for guidence/help in setting up the enviornment to allow concurrent multiply connections.
0 Kudos
8 REPLIES 8
Johan Brusche
Honored Contributor

тАО02-01-2004 12:07 AM

тАО02-01-2004 12:07 AM

Re: Tru64 SSH-Exceed Client Help Needed


What OS version and what ssh implementation do you have on the DS10 ?
The restriction is most probably due to a setting on the Firewall and not on the DS10.
Any error message displayed when 2nd connection is attempted ?

Johan.

_JB_
0 Kudos
Ralf Puchner
Honored Contributor

тАО02-01-2004 07:36 PM

тАО02-01-2004 07:36 PM

Re: Tru64 SSH-Exceed Client Help Needed

I sound like a setup issue on the firewall. What kind of setup was done on the firewall (e.g. proxy, transparent mode etc.)?
Help() { FirstReadManual(urgently); Go_to_it;; }
0 Kudos
Kevin Townsend
New Member

тАО02-04-2004 08:13 AM

тАО02-04-2004 08:13 AM

Re: Tru64 SSH-Exceed Client Help Needed

Hi Terry Ivory has asked me to elaborate on the nature of this problem:

Network Layout:
Our users' workstations utilizing the Exceed X11 servers exist on a corporate network. The servers running HP's SSH server daemon are located on a development DMZ network. The two networks are seperated by a firewall which only permits outbound connections from the corporate network to the DMZ.

Concept:
What we are attempting to do is establish a connection from the workstations' SSH clients to the SSH servers on the DMZ. We then wish to use X11Forwarding to enable the server to establish and Xsession back to the workstation.
(X11Forwarding has been enabled on both the server and the workstation.)

Problem:
When the SSH client connects to the server is supposed to automatically set the enviornment DISPLAY variable to
localhost:10.0 (numeric value may incriment dependant upon how many connections are already established)
However instead the DISPLAY variable is set to 6010 (numeric value may incriment dependant upon how many connections are already established) with no hostname and colon.

I understand that 6000+ is the tcp port number that X traffic uses but it was my understanding that this was not directly reflected in the automatic setting of the DISPLAY variable.

Result:
We can't establish Xsessions between servers on our DMZ and our workstations.

Request:
Help in getting SSH service to set the DISPLAY variable correctly.
0 Kudos
Ann Majeske
Honored Contributor

тАО02-04-2004 10:22 AM

тАО02-04-2004 10:22 AM

Re: Tru64 SSH-Exceed Client Help Needed

Hi,

This sounds like a known problem with our ssh. I'm forwarding this topic to our local ssh gurus to see if I can get confirmation on this.

Ann
0 Kudos
Paul Moore_3
Advisor

тАО02-05-2004 01:48 AM

тАО02-05-2004 01:48 AM

Re: Tru64 SSH-Exceed Client Help Needed

Hello,

This is a known problem with the SSH version 3.2.2 webkit for Tru64 V5.1A which will be fixed in the next release. If you need this fixed right away I suggest you contact your customer support center, they will be able to get you a patch to fix the problem.
0 Kudos
Terry Ivory
New Member

тАО02-05-2004 05:37 AM

тАО02-05-2004 05:37 AM

Re: Tru64 SSH-Exceed Client Help Needed

Can you provide me with the bundle name and/or patch kit number? Do you know if it is available via the web? Thanks for your help.
0 Kudos
Paul Moore_3
Advisor

тАО02-06-2004 04:54 AM

тАО02-06-2004 04:54 AM

Re: Tru64 SSH-Exceed Client Help Needed

Hello,

Unfortunately, at the present time the patch is not available on the web. However, we are working on a new release which will include the fix which will be posted on the Tru64 web site. I also do not have a patch number to give you as SSH for Tru64 UNIX V5.1A is not part of the aggregate patch kits for Tru64 UNIX V5.1A.

Contact your CSC and describe the problem, give them my name, Paul Moore, and mention that this is a known problem with a fix available.

If you have any problems let me know.
0 Kudos
Paul Moore_3
Advisor

тАО03-03-2004 05:02 AM

тАО03-03-2004 05:02 AM

Re: Tru64 SSH-Exceed Client Help Needed

Hello,

I have just updated the SSH webkit for Tru64 UNIX V5.1A which should resolve this problem. You can download there kit here:

* http://h30097.www3.hp.com/unix/ssh
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.