cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


9722
Views
0
Helpful
20
Replies

Re: problem with ssh access on asa

Hi Jullio...

Follow..

FW(config)# crypto key zeroize rsa
WARNING: All RSA keys will be removed.
WARNING: All device digital certificates issued using these keys will also be removed.

Do you really want to remove these keys? [yes/no]: yes

and now? generate new?

Highlighted

Re: problem with ssh access on asa

I generated... but, no way

Re: problem with ssh access on asa

Hello Diego,

Do you still get the same log from the client?

What logs are being showed by the ASA?

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Re: problem with ssh access on asa

So..

FWINTERNO# debug ssh
debug ssh  enabled at level 1


FW# Device ssh opened successfully.
SSH1: SSH client: IP = '172.19.4.121'  interface # = 2
SSH: host key initialised
SSH1: starting SSH control process
SSH1: Exchanging versions - SSH-1.5-Cisco-1.25

SSH1: send SSH message: outdata is NULL

server version string:SSH-1.5-Cisco-1.25SSH1: receive SSH message: 83 (83)
SSH1: client version is - SSH-1.5-OpenSSH_4.3

client version string:SSH-1.5-OpenSSH_4.3SSH1: begin server key generation
SSH1: complete server key generation, elapsed time = 910 ms
SSH1: declare what cipher(s) we support:
00  0x00  0x00  0x04  0xSSH1: send SSH message: SSH_SMSG_PUBLIC_KEY (2)
SSH1: SSH_SMSG_PUBLIC_KEY message sent
SSH1: receive SSH message: [no message ID: variable *data is NULL]
SSH1: Session disconnected by SSH server - error 0x00 "Internal error"
SSH0: receive SSH message: SSH_CMSG_WINDOW_SIZE (11)

Re: problem with ssh access on asa

And now?

Any idea???

Re: problem with ssh access on asa

Hello Diego,

Hmm provide the following:

Show version

Show run ssl

sh crypto key mypubkey rsa

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC