03-06-2008 07:53 AM - edited 03-11-2019 05:13 AM
hello,
i have router 2801 which is connected to ASA to Outside interface, and have problem with ssh ver 1.
sh ssh
0.0.0.0 0.0.0.0 Inside
0.0.0.0 0.0.0.0 Outside.
any suggestions?
please-thanks
03-06-2008 08:06 AM
have you generated your ssh keys on the ASA?
Try this command:
crypto key generate rsa modulus 1024
03-06-2008 08:33 AM
yes i do...
and security-level on out interface is 50
from inside its work
03-06-2008 08:37 AM
try running:
'debug ssh'
And then attempt to connect to the firewall using ssh. This may give a clue why the session is failing.
03-07-2008 06:23 AM
when i try to connect i get this on router
2801#ssh -v 1 -l local 192.168.250.5
[Connection to 192.168.250.5 aborted: error status 33]
03-07-2008 03:42 PM
Could you run the 'debug ssh' command on the firewall whilst you try to connect.
10-16-2013 07:34 PM
I had a similar problem with an ASA5510 (192.168.50.206)
!------------------------------
Switch#ssh -l admin 192.168.50.206
[Connection to 192.168.50.206 aborted: error status 34]
!-----------------------------
after generating a new cert and changing ssh ver to 2 the problem disapeared.
Not sure if this is an option for you but I know there are some vulnerabilitys in ssh v1 as well.
DGW
10-16-2013 09:49 PM
Hello Dylan,
Remember that SSH version 1 uses 768 bits for the rsa key
Use
ssh -v 1 -l username IP address
Make sure you have configured the ASA to use Version 1
ASA(config)# ssh version 1
Regards
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide