gnu/81689: Unable to connect via SSH using protocol v2

Xin LI delphij at frontfree.net
Mon May 30 21:00:22 PDT 2005 

The following reply was made to PR gnu/81689; it has been noted by GNATS.

From: Xin LI <delphij at frontfree.net>
To: Eric Pretorious <eric at pretorious.net>
Cc: freebsd-gnats-submit at FreeBSD.org
Subject: Re: gnu/81689: Unable to connect via SSH using protocol v2
Date: Tue, 31 May 2005 11:57:45 +0800

 --=-WaHjeTHOK38D/dPOAnIb
 Content-Type: text/plain; charset=UTF-8
 Content-Transfer-Encoding: quoted-printable
 
 Hi, Eric,
 
 =E5=9C=A8 2005-05-31=E4=BA=8C=E7=9A=84 02:38 +0000=EF=BC=8CEric Pretorious=
 =E5=86=99=E9=81=93=EF=BC=9A
 > >Description:
 > Attempting to connect to server via SSH using protocol v2 (default) fails=
 . SSHD complains...
 > sshd[PID]: fatal: Timeout before authentication for [CLIENT_ADDR]
 > >How-To-Repeat:
 > 1. Install FreeBSD 4.11.
 > 2. Configure SSHD to run at start-up (manually via /etc/rc.conf or using =
 /stand/sysinstall).
 > 3. Complete the installation (i.e., shutdown and restart).
 > 3. Login at console.
 > 4. Verify that the interface has been assigned an IP address and that SSH=
  has started (using `ifconfig` & `netstat -f inet -an`)
 > 5. Attempt to SSH to the machine locally (i.e., using the machine's own I=
 P address). e.g.,  `ssh me at 172.16.0.2`
 > 6. Attempt to SSH to the machine remotely (i.e., from a client on the LAN=
 ). e.g., `ssh me at 172.16.0.2`
 >=20
 > Both methods result in this error (on the console):
 > sshd[PID]: fatal: Timeout before authentication for [CLIENT_ADDR]
 >=20
 > Specifying protocol v1 (i.e., `ssh -1 me at 172.16.0.2`) allows a connection=
  BUT is EXTREMELY slow to negotiate the connection/session.
 
 I bet that this is because some misconfiguration.  You may want to check
 your DNS server which should provide resolve/reverse resolve record for
 172.16.0.2, and its connection; a workaround for this issue is to add
 "UseDNS no" in your sshd configuration (i.e. /etc/ssh/sshd_config).
 
 Please consult sshd_config(5) for more information.
 
 Cheers,
 --=20
 Xin LI <delphij delphij net>  http://www.delphij.net/
 
 --=-WaHjeTHOK38D/dPOAnIb
 Content-Type: application/pgp-signature; name=signature.asc
 Content-Description: This is a digitally signed message part
 
 -----BEGIN PGP SIGNATURE-----
 Version: GnuPG v1.4.1 (FreeBSD)
 
 iD8DBQBCm+C5/cVsHxFZiIoRAoX3AJsEQRh2R1ES9w03EAKIAc4WYbXKxQCfRigO
 29qgqteMHXAwIJ1WS/MIWtE=
 =X6YH
 -----END PGP SIGNATURE-----
 
 --=-WaHjeTHOK38D/dPOAnIb--

More information about the freebsd-bugs mailing list