Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7593
Views
15
Helpful
4
Replies

3750 SSH Log.

Go to solution
Diana Karolina Rojas
Cisco Employee
Cisco Employee

‎05-22-2017 11:23 AM

Hello!

I was reviewing at my SW-3750 logs and I found this serie of outputs:


May 19 13:10:57: SSH2 0: kex algo not supported: client diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256,diffie-hellman-group1
May 19 13:10:57: SSH2 1: kex algo not supported: client diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha256,diffie-hellman-group1

I searched in internet about this and I did not find information. I do not know if this is a bug or it's really a problem. Thanks in advance for any information, answers or solution you can give me.

Regards,

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee

‎05-22-2017 12:17 PM

Hi Diana,

Some of the SSH clients that are connecting to this 3750 have offered to use a set of cryptographic algorithms that is not supported by this switch, and that is the cause of the message you are seeing.

This does not indicate any error per se. Are there also any other messages around this one that contain the IP address of the client? It would be interesting to know what software has been used to connect to your switch.

If your clients do not have issues connecting to the switch via SSH then you do not need to worry.

Best regards,
Peter

View solution in original post

4 Replies 4

Go to solution
Julio E. Moisa
VIP
VIP

‎05-22-2017 12:16 PM

Hi Diana,

Unfortunately I'm not familiar with these logs, I think a debug ip ssh could provide more information. 




>> Marcar como útil o contestado, si la respuesta resolvió la duda, esto ayuda a futuras consultas de otros miembros de la comunidad. <<
0 Helpful

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee

‎05-22-2017 12:17 PM

Hi Diana,

Some of the SSH clients that are connecting to this 3750 have offered to use a set of cryptographic algorithms that is not supported by this switch, and that is the cause of the message you are seeing.

This does not indicate any error per se. Are there also any other messages around this one that contain the IP address of the client? It would be interesting to know what software has been used to connect to your switch.

If your clients do not have issues connecting to the switch via SSH then you do not need to worry.

Best regards,
Peter

Go to solution
Diana Karolina Rojas
Cisco Employee
Cisco Employee
In response to Peter Paluch

‎05-22-2017 01:42 PM

Hello Peter!

Thank you for your response. I use SuperPutty to connect to my devices and I've not problem to connect them. There is not any other Logs in my Switch.

Thanks a lot!

0 Helpful

Go to solution
sujeet20011988
Level 1
Level 1

‎07-13-2018 09:17 PM - edited ‎07-13-2018 09:25 PM

This is the basic problem with the third party client application e.g. putty, super putty, secure crt which uses its own algorithm to exchange the encryption key with the device which is being accessed through ssh. So the best idea is to use putty only, if there is issue with then try other one.

Refer attachment.

Acknowledge if found helpfull.

Preview file
96 KB
Preview file
435 KB
Preview file
132 KB
0 Helpful
Customers Also Viewed These Support Documents