cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
468
Views
0
Helpful
1
Replies

Meaning of SSH log

Lance Wendel
Level 1
Level 1

Hi all,

does anyone know where to find the SSH log meaning or could you

help me to understand this SSH log please?

Mar 25 14:31:45.582: SSH2 0: input: padlen 10

Mar 25 14:31:45.582: SSH2 0: received packet type 20

Mar 25 14:31:45.582: SSH2 0: SSH2_MSG_KEXINIT received

Mar 25 14:31:45.582: SSH2: kex: client->server aes256-cbc hmac-sha1 none

Mar 25 14:31:45.582: SSH2: kex: server->client aes256-cbc hmac-sha1 none

Mar 25 14:31:45.610: SSH2 0: expecting SSH2_MSG_KEXDH_INIT

Mar 25 14:31:45.610: SSH2 0: ssh_receive: 144 bytes received

Mar 25 14:31:45.610: SSH2 0: input: packet len 144

Mar 25 14:31:45.610: SSH2 0: partial packet 8, need 136, maclen 0

Mar 25 14:31:45.610: SSH2 0: input: padlen 5

Mar 25 14:31:45.610: SSH2 0: received packet type 30

Mar 25 14:31:45.610: SSH2 0: SSH2_MSG_KEXDH_INIT received

Mar 25 14:31:45.686: SSH2 0: signature length 143

Mar 25 14:31:45.686: SSH2 0: send: len 448 (includes padlen 8)

Mar 25 14:31:45.686: SSH2: kex_derive_keys complete

with kind regards,

Lancellot

1 Reply 1

Marco Attene
Level 1
Level 1

Hi Lance,

spent 1h on the web trying to find any useful link but the only source I have been able to find related to Cisco config is the following :

http://www.cisco.com/en/US/docs/ios-xml/ios/sec_usr_ssh/configuration/xe-3s/asr903/sec-secure-shell-v2.html

SSH2_MSG_KEXINIT just tells you that the ssh key exchange process is begun (DH process). So, looking at the last line kex_derive_keys complete I would assume the RSA key  to use for SSH Handshaking and the logs above are related to that...

I gather the debug output does not stop there though?

Sorry, but I could not find anything more specific.

Regards,

Marco

Review Cisco Networking for a $25 gift card