login about faq

Using SSH Tectia Version 6.0.11.5. I can ssh from server A to server B but when using the SSH Tectia Terminal to connect to server B I get the following error:

Error Failed to open a secure terminal session: can't establish connection to broker.

Any help or suggestions would be appreciated.

asked Sep 08 '11 at 18:44

hardys1's gravatar image

hardys1
26111


We found that when we removed the "Banners" from the /etc/hosts.allow file we were able to make a connection.

link

answered Sep 09 '11 at 23:42

hardys1's gravatar image

hardys1
26111

Hi,

Can you update your question with the answer to the following:

Are both connections (command line and graphical terminal) using the exact same connection parameters (user, server)? When connecting from the SSH Tectia Terminal are you using a profile or the "Quick Connect" button?

Can you paste the log messages that are produced when the connection fails? These can be found from the "Logs" button in the SSH Tectia status window.

UPDATE:

So if I understand this correctly, the connection works from host A (solaris) to host B but not from host C (windows?) to host B.

Are you able to connect form host C to host B using the command line? If not please try again with verbose enabled paste the error that you see:

sshg3 -v user@hostb
link

answered Sep 08 '11 at 21:28

Roman's gravatar image

Roman ♦♦
7735817

edited Sep 08 '11 at 21:56

Grapical terminal. We use Solaris ssh command line to go from server A to server B. I am using a profile to connect to it. Also, it was verified that fsecure will work but no Tect

No "Logs view" in the SSH Tectia status window.

(Sep 08 '11 at 21:41) hardys1 hardys1's gravatar image

Hi hardys1,

what if you open a command prompt on the windows machine (cmd.exe) and type:

> ssh-broker-gui

that should bring up the SSH Tectia Status Window (the connection broker in fact). After that typing:

> ssh-client-g3

should start a SSH Tectia Terminal (GUI) whose connection statuses can be monitored in previously started Status Window.

If there is any problem in starting any of those 2 applications then no connections can be made. Putting here the outcome of those commands and outcome of the command suggested by Roman:

sshg3 -v user@hostb

Would help us to understand what is going on.

With regards

Martin

link

answered Sep 08 '11 at 22:17

Martin%20Dobsik's gravatar image

Martin Dobsik
599126

edited Sep 08 '11 at 22:19

Our pc's are locked down being on a government facility.

When going to the command prompt and typing "C:>ssh-broker-gui" nothing happens.

Then I type "C:>ssh-client-g3" the The SSH Tectia Terminal opens.

While still at the command prompt I type "C:>sshg3 -v myusername@IP_of_host I get the following: Disconnect reason code: 0 (remote disconnect) Disconnect description: Server authentication failed: User authentications completed: none Server identity: key information not available. Request exec channel error: Unable to connect to Broker.

(Sep 08 '11 at 22:29) hardys1 hardys1's gravatar image

Hmm, I see the error diagnostics was not really perfect in 6.0 version stil. That should be much better now in 6.2. But it seems that the broker component is for some reason not starting. You could get high detailed debug info by trying to start non-GUI version of connection broker this way (in version 6.0):

"ssh-broker-cli -D3 --console"

If it does not seem to help try higher debug levels (-D6 should be enough). If you find some error message that could explain the problem, post it here please.

(Sep 08 '11 at 23:05) Martin Dobsik Martin%20Dobsik's gravatar image

I have no idea what I'm looking for but here is the output to C:>ssh-broker-cli -D6 --console

C:>ssh-broker-cli -D6 --console

debug: 08/09/2011 15:25:25:748 SshNio/sshnio_win.c:38: Initialize with env 0.
debug: 08/09/2011 15:25:25:764 Broker/broker.c:3533: Broker address: /tmp/ssh-ADMIN_Scott.Hardy/ssh-
broker
debug: 08/09/2011 15:25:25:764 SshUser/sshwinuser.c:1285: ssh_user_initialize()
debug: 08/09/2011 15:25:25:764 SshUser/sshwinuser.c:1383: ssh_user_initialize for user: NULL
debug: 08/09/2011 15:25:25:764 SshUser/sshwinuser.c:1390: default user: Scott.Hardy
debug: 08/09/2011 15:25:25:764 SecShUserProcess/secsh_user_process_win.c:209: termhandler thread sta
rting, pid 7940
debug: 08/09/2011 15:25:25:764 SecShUserProcess/secsh_user_process_win.c:232: Waiting for 0 processe
s...
debug: 08/09/2011 15:25:25:780 SshUser/sshwinuser.c:1251: AdjustTokenPrivileges FAILED: 5
debug: 08/09/2011 15:25:25:795 SshUser/sshwinuser.c:2880: Updating user access token.(1680)
debug: 08/09/2011 15:25:25:795 SshUser/sshwinuser.c:3937: session was freed
debug: 08/09/2011 15:25:25:795 SshUser/sshwinuser.c:2898: automatic access token: 1
debug: 08/09/2011 15:25:25:795 SshUser/sshwinuser.c:1455: Full local user name: (null)Scott.Hardy
debug: 08/09/2011 15:25:25:795 SshUser/sshwinuser.c:1459: Returning successfully, uc = 0x377108.
debug: 08/09/2011 15:25:25:795 SecshUserFiles/secsh_user_files.c:227: real path: Scott.Hardy
debug: 08/09/2011 15:25:25:811 SshUser/sshwinuser.c:1480: Freeing user context 0.
debug: LOG EVENT (discard,notice): 6100 Broker_starting, Local username: Scott.Hardy
debug: 08/09/2011 15:25:25:811 SshOSVersion/sshosversion.c:116: OS: Windows XP Service Pack 3
debug: 08/09/2011 15:25:25:811 SshOSVersion/sshosversion.c:128: Wow64Process: FALSE
debug: 08/09/2011 15:25:25:827 SecshUserFiles/secsh_user_files.c:227: real path: Scott.Hardy
debug: 08/09/2011 15:25:25:827 SshUser/sshwinuser.c:1480: Freeing user context 0.
debug: 08/09/2011 15:25:25:827 SecShRandSeed/secsh_randseed.c:84: Failed to load random seed file.
debug: 08/09/2011 15:25:25:827 Broker/broker.c:3072: Couldn't load random seed
debug: LOG EVENT (discard,informational): 1200 Key_store_create
debug: 08/09/2011 15:25:25:842 SecShValidator/secsh_validator.c:313: Validator params: cache_size=36
700160, max_crl_size=11534336, external_search_timeout=60, max_ldap_response_length=11534336, ldap_i
dle_timeout=30
debug: 08/09/2011 15:25:25:842 SshCertDB/cert-db.c:707: initializing cert-db.
debug: 08/09/2011 15:25:25:842 SshCertEdb/cmi-edb.c:247: EDB: Initializing databases.
debug: 08/09/2011 15:25:25:842 SshCertEdb/cmi-edb.c:499: EDB: Adding database: ssh.ldap
debug: 08/09/2011 15:25:25:842 SshCertEdbHttp/cmi-http.c:399: Initializing HTTP.
debug: 08/09/2011 15:25:25:873 SshCertEdb/cmi-edb.c:499: EDB: Adding database: ssh.http
debug: 08/09/2011 15:25:25:873 SshCertEdbFile/cmi-file-url.c:247: Initializing FILE URL handler.
debug: 08/09/2011 15:25:25:873 SshCertEdb/cmi-edb.c:499: EDB: Adding database: ssh.file
debug: 08/09/2011 15:25:25:873 SshEKSystem/sshexternalkey.c:1152: next provider name software://0/
debug: 08/09/2011 15:25:25:873 SshUser/sshwinuser.c:1285: ssh_user_initialize()
debug: 08/09/2011 15:25:25:873 SshUser/sshwinuser.c:1383: ssh_user_initialize for user: NULL
debug: 08/09/2011 15:25:25:873 SshUser/sshwinuser.c:1390: default user: Scott.Hardy
debug: 08/09/2011 15:25:25:873 SshUser/sshwinuser.c:1251: AdjustTokenPrivileges FAILED: 5
debug: 08/09/2011 15:25:25:873 SshUser/sshwinuser.c:2880: Updating user access token.(1408)
debug: 08/09/2011 15:25:25:873 SshUser/sshwinuser.c:3937: session was freed
debug: 08/09/2011 15:25:25:873 SshUser/sshwinuser.c:2898: automatic access token: 1
debug: 08/09/2011 15:25:25:873 SshUser/sshwinuser.c:1455: Full local user name: (null)Scott.Hardy
debug: 08/09/2011 15:25:25:889 SshUser/sshwinuser.c:1459: Returning successfully, uc = 0x37c4b0.
debug: 08/09/2011 15:25:25:889 SshUser/sshwinuser.c:1884: Profile dir = C:/Documents and Settings/Sc
ott.Hardy.
debug: 08/09/2011 15:25:25:889 SshUser/sshwinuser.c:1480: Freeing user context 37c4b0.
debug: 08/09/2011 15:25:25:889 SshUser/sshwinuser.c:3937: session was freed
debug: 08/09/2011 15:25:25:889 SshUser/sshwinuser.c:1513: done.
debug: 08/09/2011 15:25:25:889 SshEKSoft/softprovider.c:4283: softkey; init-string use_proxy(), dire
ctory(path(C:Documents and SettingsScott.HardyApplication DataSSHUserKeys)) passphrase_timeout(
0) passphrase_idle_timeout(0)
debug: 08/09/2011 15:25:25:905 SshEKSoft/softprovider.c:2864: Hard passphrase timeout 0 seconds.
debug: 08/09/2011 15:25:25:905 SshEKSoft/softprovider.c:2882: Idle passphrase timeout 0 seconds.
debug: 08/09/2011 15:25:25:905 SecShKeyStore/secsh_keystore.c:1620: Provider software://0/ added.
debug: 08/09/2011 15:25:25:905 SecShKeyStore/secsh_keystore.c:576: Waiting for provider software://0
/ to scan all keys..
debug: 08/09/2011 15:25:25:905 SshEKSystem/sshexternalkey.c:787: Got result 4 from provider: softwar
e://0/, Softprovider
debug: 08/09/2011 15:25:25:920 SshEKSystem/sshexternalkey.c:787: Got result 5 from provider: softwar
e://0/, Softprovider
debug: 08/09/2011 15:25:25:920 SecShKeyStore/secsh_keystore.c:598: Provider software://0/ scanned 0
keys.
debug: 08/09/2011 15:25:25:920 SshEKSoft/softprovider.c:4640: No certificate found from path (null)[
0]
debug: 08/09/2011 15:25:25:920 SecShKeyStore/secsh_keystore.c:3282: 0 certificates scanned for softw
are://0/.
debug: LOG EVENT (normal,informational): 1204 Key_store_add_provider, Type: software
debug: 08/09/2011 15:25:25:936 Broker/broker.c:453: Added provider software as software://0/ to key
store. Provider has notified 0 keys.
debug: 08/09/2011 15:25:25:936 SshEKSystem/sshexternalkey.c:1152: next provider name software://1/
debug: 08/09/2011 15:25:25:936 SshUser/sshwinuser.c:1285: ssh_user_initialize()
debug: 08/09/2011 15:25:25:936 SshUser/sshwinuser.c:1383: ssh_user_initialize for user: NULL
debug: 08/09/2011 15:25:25:936 SshUser/sshwinuser.c:1390: default user: Scott.Hardy
debug: 08/09/2011 15:25:25:936 SshUser/sshwinuser.c:1251: AdjustTokenPrivileges FAILED: 5
debug: 08/09/2011 15:25:25:936 SshUser/sshwinuser.c:2880: Updating user access token.(1384)
debug: 08/09/2011 15:25:25:936 SshUser/sshwinuser.c:3937: session was freed
debug: 08/09/2011 15:25:25:952 SshUser/sshwinuser.c:2898: automatic access token: 1
debug: 08/09/2011 15:25:25:952 SshUser/sshwinuser.c:1455: Full local user name: (null)Scott.Hardy
debug: 08/09/2011 15:25:25:952 SshUser/sshwinuser.c:1459: Returning successfully, uc = 0x37c4b0.
debug: 08/09/2011 15:25:25:952 SshUser/sshwinuser.c:1884: Profile dir = C:/Documents and Settings/Sc
ott.Hardy.
debug: 08/09/2011 15:25:25:952 SshUser/sshwinuser.c:1480: Freeing user context 37c4b0.
debug: 08/09/2011 15:25:25:952 SshUser/sshwinuser.c:3937: session was freed
debug: 08/09/2011 15:25:25:952 SshUser/sshwinuser.c:1513: done.
debug: 08/09/2011 15:25:25:967 SshEKSoft/softprovider.c:4283: softkey; init-string use_proxy(), dire
ctory(path(C:Documents and SettingsScott.HardyApplication DataSSHUserCertificates)) passphrase_
timeout(0) passphrase_idle_timeout(0)
debug: 08/09/2011 15:25:25:967 SshEKSoft/softprovider.c:2864: Hard passphrase timeout 0 seconds.
debug: 08/09/2011 15:25:25:967 SshEKSoft/softprovider.c:2882: Idle passphrase timeout 0 seconds.
debug: 08/09/2011 15:25:25:967 SecShKeyStore/secsh_keystore.c:1620: Provider software://1/ added.
debug: 08/09/2011 15:25:25:967 SecShKeyStore/secsh_keystore.c:576: Waiting for provider software://1
/ to scan all keys..
debug: 08/09/2011 15:25:25:983 SshEKSystem/sshexternalkey.c:787: Got result 4 from provider: softwar
e://1/, Softprovider
debug: 08/09/2011 15:25:25:983 SshEKSystem/sshexternalkey.c:787: Got result 5 from provider: softwar
e://1/, Softprovider
debug: 08/09/2011 15:25:25:983 SecShKeyStore/secsh_keystore.c:598: Provider software://1/ scanned 0
keys.
debug: 08/09/2011 15:25:25:983 SshEKSoft/softprovider.c:4640: No certificate found from path (null)[
0]
debug: 08/09/2011 15:25:25:998 SecShKeyStore/secsh_keystore.c:3282: 0 certificates scanned for softw
are://1/.
debug: LOG EVENT (normal,informational): 1204 Key_store_add_provider, Type: software
debug: 08/09/2011 15:25:25:998 Broker/broker.c:453: Added provider software as software://1/ to key
store. Provider has notified 0 keys.
debug: 08/09/2011 15:25:25:998 SshUser/sshwinuser.c:1285: ssh_user_initialize()
debug: 08/09/2011 15:25:25:998 SshUser/sshwinuser.c:1383: ssh_user_initialize for user: NULL
debug: 08/09/2011 15:25:25:998 SshUser/sshwinuser.c:1390: default user: Scott.Hardy
debug: 08/09/2011 15:25:26:014 SshUser/sshwinuser.c:1251: AdjustTokenPrivileges FAILED: 5
debug: 08/09/2011 15:25:26:014 SshUser/sshwinuser.c:2880: Updating user access token.(1376)
debug: 08/09/2011 15:25:26:014 SshUser/sshwinuser.c:3937: session was freed
debug: 08/09/2011 15:25:26:014 SshUser/sshwinuser.c:2898: automatic access token: 1
debug: 08/09/2011 15:25:26:014 SshUser/sshwinuser.c:1455: Full local user name: (null)Scott.Hardy
debug: 08/09/2011 15:25:26:014 SshUser/sshwinuser.c:1459: Returning successfully, uc = 0x37c4b0.
debug: 08/09/2011 15:25:26:014 SshUser/sshwinuser.c:1884: Profile dir = C:/Documents and Settings/Sc
ott.Hardy.
debug: 08/09/2011 15:25:26:030 SshUser/sshwinuser.c:1480: Freeing user context 37c4b0.
debug: 08/09/2011 15:25:26:030 SshUser/sshwinuser.c:3937: session was freed
debug: 08/09/2011 15:25:26:030 SshUser/sshwinuser.c:1513: done.
debug: 08/09/2011 15:25:26:030 SshUser/sshwinuser.c:1285: ssh_user_initialize()
debug: 08/09/2011 15:25:26:030 SshUser/sshwinuser.c:1383: ssh_user_initialize for user: NULL
debug: 08/09/2011 15:25:26:030 SshUser/sshwinuser.c:1390: default user: Scott.Hardy
debug: 08/09/2011 15:25:26:030 SshUser/sshwinuser.c:1251: AdjustTokenPrivileges FAILED: 5
debug: 08/09/2011 15:25:26:030 SshUser/sshwinuser.c:2880: Updating user access token.(1372)
debug: 08/09/2011 15:25:26:030 SshUser/sshwinuser.c:3937: session was freed
debug: 08/09/2011 15:25:26:045 SshUser/sshwinuser.c:2898: automatic access token: 1
debug: 08/09/2011 15:25:26:045 SshUser/sshwinuser.c:1455: Full local user name: (null)Scott.Hardy
debug: 08/09/2011 15:25:26:045 SshUser/sshwinuser.c:1459: Returning successfully, uc = 0x37c4b0.
debug: 08/09/2011 15:25:26:045 SshUser/sshwinuser.c:1884: Profile dir = C:/Documents and Settings/Sc
ott.Hardy.
debug: 08/09/2011 15:25:26:045 SshUser/sshwinuser.c:1480: Freeing user context 37c4b0.
debug: 08/09/2011 15:25:26:045 SshUser/sshwinuser.c:3937: session was freed
debug: 08/09/2011 15:25:26:045 SshUser/sshwinuser.c:1513: done.
debug: 08/09/2011 15:25:26:061 Broker/broker.c:347: Adding user identification file 'C:Documents an
d SettingsScott.Hardy.ssh2identification'.
debug: 08/09/2011 15:25:26:061 Broker/broker.c:348: Base path 'C:Documents and SettingsScott.Hardy
Application DataSSH'.
debug: 08/09/2011 15:25:26:061 SecShKeyStore/secsh_keystore.c:6733: Failed to read identity file 'C:
Documents and SettingsScott.Hardy.ssh2identification'.
debug: 08/09/2011 15:25:26:061 Broker/broker.c:356: Failed to process indentity file 'C:Documents a
nd SettingsScott.Hardy.ssh2identification'.
debug: 08/09/2011 15:25:26:077 Broker/broker.c:523: Added provider identification as (null) to key s
tore.
debug: 08/09/2011 15:25:26:077 SecShProtocol/secsh_protocol.c:545: ssh_secsh_protocol_create
debug: 08/09/2011 15:25:26:077 SecShProtocol/secsh_protocol.c:118: Task processor thread starts.
debug: 08/09/2011 15:25:26:077 SecShProtocol/secsh_protocol.c:118: Task processor thread starts.
debug: 08/09/2011 15:25:26:077 SecShProtocol/secsh_protocol.c:118: Task processor thread starts.
debug: 08/09/2011 15:25:26:077 SshLicense/sshlicense.c:282: 194 bytes (9 pairs) of license attribute
s found.
debug: 08/09/2011 15:25:26:077 SecShPluginLoad/secsh_plugin_load.c:282: Loading plugins from `C:Pro
gram FilesSSH Communications SecuritySSH TectiaSSH Tectia AUXPlugins6.0.11.5'.
debug: 08/09/2011 15:25:26:092 SecShProtocol/secsh_protocol.c:900: Registered auth plugin 'gssapi-wi
th-mic'
debug: 08/09/2011 15:25:26:092 SecShProtocol/secsh_protocol.c:900: Registered auth plugin 'keyboard-
interactive'
debug: 08/09/2011 15:25:26:092 SecShProtocol/secsh_protocol.c:900: Registered auth plugin 'password'

debug: 08/09/2011 15:25:26:092 SecShProtocol/secsh_protocol.c:900: Registered auth plugin 'publickey ' debug: 08/09/2011 15:25:26:123 SecShProtocol/secsh_protocol.c:965: Registered KEX plugin 'diffie-hel lman-group1-sha1' debug: 08/09/2011 15:25:26:123 SecShProtocol/secsh_protocol.c:965: Registered KEX plugin 'extension1 -sha1@ssh.com' debug: 08/09/2011 15:25:26:123 Broker/broker.c:3853: Creating broker server, run_on_demand = FALSE, console = TRUE debug: 08/09/2011 15:25:26:123 BrokerService/broker_service.c:629: Creating broker server to address `/tmp/ssh-ADMIN_Scott.Hardy/ssh-broker'. debug: 08/09/2011 15:25:26:123 SecShBrokerCom/secshbrokercom.c:838: Verifying broker saneness. debug: 08/09/2011 15:25:26:139 SecShBrokerCom/secshbrokercom.c:1019: Sending message SSH_SECSH_BROKE R_INIT(2). debug: 08/09/2011 15:25:26:139 SshNioPacketWrapper/sshnio_packet_wrapper.c:206: Header read result=5 , status=SSH_NIO_SUCCESS, fd=1200 debug: 08/09/2011 15:25:26:139 SshNioPacketWrapper/sshnio_packet_wrapper.c:128: 2 references left debug: 08/09/2011 15:25:26:139 SshNioPacketWrapper/sshnio_packet_wrapper.c:319: Read result=16 statu s=SSH_NIO_SUCCESS debug: 08/09/2011 15:25:26:139 SecShBrokerCom/secshbrokercom.c:879: Broker connection is up. debug: 08/09/2011 15:25:26:139 SecShBrokerCom/secshbrokercom.c:1019: Sending message SSH_SECSH_BROKE R_OP_GET_PID(34). debug: 08/09/2011 15:25:26:155 SshNioPacketWrapper/sshnio_packet_wrapper.c:128: 2 references left debug: 08/09/2011 15:25:26:155 SshNioPacketWrapper/sshnio_packet_wrapper.c:206: Header read result=5 , status=SSH_NIO_SUCCESS, fd=1200 debug: 08/09/2011 15:25:26:155 SshNioPacketWrapper/sshnio_packet_wrapper.c:319: Read result=12 statu s=SSH_NIO_SUCCESS debug: 08/09/2011 15:25:26:155 SecShBrokerCom/secshbrokercom.c:1401: Got broker pid 5364. debug: 08/09/2011 15:25:26:155 SecShBrokerCom/secshbrokercom.c:1273: Shutting down, status 5. debug: 08/09/2011 15:25:26:170 SshNioPacketWrapper/sshnio_packet_wrapper.c:934: Shutdown for packet wrapper 0x13ac270 debug: 08/09/2011 15:25:26:170 SshNioPacketWrapper/sshnio_packet_wrapper.c:128: 2 references left debug: 08/09/2011 15:25:26:170 SshNioPacketWrapper/sshnio_packet_wrapper.c:206: Header read result=0 , status=SSH_NIO_SHUTDOWN, fd=-1 debug: 08/09/2011 15:25:26:170 SecShBrokerCom/secshbrokercom.c:527: Got EOF from packet wrapper. debug: 08/09/2011 15:25:26:170 SshNioPacketWrapper/sshnio_packet_wrapper.c:976: Destroying packet wr apper 0x13ac270 debug: 08/09/2011 15:25:26:170 SecShBrokerCom/secshbrokercom.c:1273: Shutting down, status 2. debug: 08/09/2011 15:25:26:186 SshNioPacketWrapper/sshnio_packet_wrapper.c:128: 1 references left debug: 08/09/2011 15:25:26:186 SshNioPacketWrapper/sshnio_packet_wrapper.c:137: Last reference remov ed, destroying debug: 08/09/2011 15:25:26:186 BrokerService/broker_service.c:686: Broker 5364 is already running in /tmp/ssh-ADMIN_Scott.Hardy/ssh-broker. debug: 08/09/2011 15:25:26:186 BrokerService/broker_service.c:944: Destroying server. debug: 08/09/2011 15:25:26:186 BrokerService/broker_service.c:796: server destroyed. debug: LOG EVENT (normal,warning): 6101 Broker_start_failed, Local username: Scott.Hardy, Error: Gen eric error, "Broker is already running." Broker is already running.

(Sep 08 '11 at 23:13) hardys1 hardys1's gravatar image

The server we are trying to connect to is Solaris 10.

(Sep 08 '11 at 23:24) hardys1 hardys1's gravatar image

This log seems to show that the connection broker component is already running and everything is fine. Could you try to stop any existing broker:

> ssh-broker-cli --exit

(It would be good to make sure if the process is gone using Task Manager). And then start it again in command prompt as before:

> ssh-broker-cli -D6 --console

If it starts correctly now, could you repeat the test with sshg3 client please?

> sshg3 -v myusername@IP_of_host

That is in another command prompt window while the ssh-broker-cli is running in the first window. If that fails than this time broker log should yield some useful information.

Regards

Martin

(Sep 08 '11 at 23:31) Martin Dobsik Martin%20Dobsik's gravatar image
debug: 09/09/2011 09:59:42:275 BrokerService/broker_service.c:321: Connection received, status 0, handle 37be00.
debug: 09/09/2011 09:59:42:275 SshNioPacketWrapper/sshnio_packet_wrapper.c:206: Header read result=5, status=SSH_NIO_SUCCESS, fd=1116
debug: 09/09/2011 09:59:42:275 SshNioPacketWrapper/sshnio_packet_wrapper.c:319: Read result=30 status=SSH_NIO_SUCCESS
debug: 09/09/2011 09:59:42:275 BrokerIpc/broker_ipc.c:812: [0] Request SSH_SECSH_BROKER_INIT(2) from client 0x13b8148
debug: 09/09/2011 09:59:42:275 BrokerIpc/broker_ipc.c:830: Init received.
debug: 09/09/2011 09:59:42:275 BrokerIpc/broker_ipc.c:862: Init from client 2492.
debug: 09/09/2011 09:59:42:275 BrokerServer/broker_server.c:836: New client accepted. Name=sshg3, pid=2492.
debug: LOG EVENT (discard,informational): 6000 Broker_client_connect, Client: sshg3, Pid: 2492, Local username: Scott.Hardy
debug: 09/09/2011 09:59:42:275 BrokerIpc/broker_ipc.c:3298: [2492] Sending packet, type SSH_SECSH_BROKER_REPLY_INIT(1).
debug: 09/09/2011 09:59:42:275 SshNioPacketWrapper/sshnio_packet_wrapper.c:206: Header read result=5, status=SSH_NIO_SUCCESS, fd=1116
debug: 09/09/2011 09:59:42:275 SshNioPacketWrapper/sshnio_packet_wrapper.c:128: 2 references left
debug: 09/09/2011 09:59:42:275 SshNioPacketWrapper/sshnio_packet_wrapper.c:319: Read result=50 status=SSH_NIO_SUCCESS
debug: 09/09/2011 09:59:42:306 BrokerIpc/broker_ipc.c:812: [2492] Request SSH_SECSH_BROKER_OP_CONFIG_GET_CLIENTS_VALUE(116) from client 0x13b8148
debug: 09/09/2011 09:59:42:306 BrokerIpc/broker_ipc.c:3275: reply 13b8540 len 20
debug: 09/09/2011 09:59:42:306 BrokerIpc/broker_ipc.c:3298: [2492] Sending packet, type SSH_SECSH_BROKER_REPLY_CONFIG_GET_CLIENTS_VALUE(117).
debug: 09/09/2011 09:59:42:306 SshNioPacketWrapper/sshnio_packet_wrapper.c:206: Header read result=5, status=SSH_NIO_SUCCESS, fd=1116
debug: 09/09/2011 09:59:42:306 SshNioPacketWrapper/sshnio_packet_wrapper.c:319: Read result=154 status=SSH_NIO_SUCCESS
debug: 09/09/2011 09:59:42:306 SshNioPacketWrapper/sshnio_packet_wrapper.c:128: 2 references left
debug: 09/09/2011 09:59:42:306 BrokerIpc/broker_ipc.c:812: [2492] Request SSH_SECSH_BROKER_OP_OPEN_EXEC(10) from client 0x13b8148
debug: 09/09/2011 09:59:42:306 BrokerServer/broker_server.c:702: Connection target: type=3, target=shardy@xxx.xxx.xxx.xxx, port=(null), username=(null), connection_id=0, allowed_auth_methods=0, exclusive
=FALSE, num_identities=0, tcp_connect_timeout=-1
debug: 09/09/2011 09:59:42:306 BrokerConfigFrontend/broker_config_frontend.c:2202: user = shardy, host = xxx.xxx.xxx.xxx, port = (null)
debug: 09/09/2011 09:59:42:306 BrokerConfigFrontend/broker_config_frontend.c:2288: No profile found with name 'xxx.xxx.xxx.xxx', try connection with host name.
debug: 09/09/2011 09:59:42:322 BrokerServer/broker_server.c:465: Connection settings: host=xxx.xxx.xxx.xxx, port=22, user=shardy, proto=secsh2, num_auth_methods=4, num_server_auth_methods=0, exclusive=FA
LSE, num_identities=0, tcp_connect_timeout=0, keepalive_timeout=0, only_client_keys=FALSE, idle_timeout=5, rekey_bytes=1000000000, ciphers=crypticore128@ssh.com,aes128-cbc,aes192-cbc,aes256-cbc,3des-c
bc,seed-cbc@ssh.com, macs=crypticore-mac@ssh.com,hmac-md5,hmac-sha1, compressions=(null), compression_level=-1, server_banners_visible=TRUE, hostkey=(null), hostkey_file=(null)
debug: 09/09/2011 09:59:42:322 BrokerConnection/broker_connection.c:531: Setting conn 13aeae8 state to INITIAL
debug: 09/09/2011 09:59:42:322 BrokerServer/broker_server.c:143: New connection 13aeae8 created.
debug: 09/09/2011 09:59:42:322 SshUser/sshwinuser.c:1285: ssh_user_initialize()
debug: 09/09/2011 09:59:42:322 SshUser/sshwinuser.c:1383: ssh_user_initialize for user: NULL
debug: 09/09/2011 09:59:42:322 SshUser/sshwinuser.c:1390: default user: Scott.Hardy
debug: 09/09/2011 09:59:42:337 SshUser/sshwinuser.c:1251: AdjustTokenPrivileges FAILED: 5
debug: 09/09/2011 09:59:42:337 SshUser/sshwinuser.c:2880: Updating user access token.(1056)
debug: 09/09/2011 09:59:42:337 SshUser/sshwinuser.c:3937: session was freed
debug: 09/09/2011 09:59:42:337 SshUser/sshwinuser.c:2898: automatic access token: 1
debug: 09/09/2011 09:59:42:337 SshUser/sshwinuser.c:1455: Full local user name: (null)\Scott.Hardy
debug: 09/09/2011 09:59:42:337 SshUser/sshwinuser.c:1459: Returning successfully, uc = 0x37c4b0.
debug: 09/09/2011 09:59:42:337 SecshUserFiles/secsh_user_files.c:227: real path: Scott.Hardy
debug: 09/09/2011 09:59:42:337 SshUser/sshwinuser.c:1480: Freeing user context 37c4b0.
debug: 09/09/2011 09:59:42:353 SshUser/sshwinuser.c:3937: session was freed
debug: 09/09/2011 09:59:42:353 SshUser/sshwinuser.c:1513: done.
debug: 09/09/2011 09:59:42:353 SshUser/sshwinuser.c:1285: ssh_user_initialize()
debug: 09/09/2011 09:59:42:353 SshUser/sshwinuser.c:1383: ssh_user_initialize for user: NULL
debug: 09/09/2011 09:59:42:353 SshUser/sshwinuser.c:1390: default user: Scott.Hardy
debug: 09/09/2011 09:59:42:353 SshUser/sshwinuser.c:1251: AdjustTokenPrivileges FAILED: 5
debug: 09/09/2011 09:59:42:353 SshUser/sshwinuser.c:2880: Updating user access token.(1044)
debug: 09/09/2011 09:59:42:353 SshUser/sshwinuser.c:3937: session was freed
debug: 09/09/2011 09:59:42:353 SshUser/sshwinuser.c:2898: automatic access token: 1
debug: 09/09/2011 09:59:42:369 SshUser/sshwinuser.c:1455: Full local user name: (null)\Scott.Hardy
debug: 09/09/2011 09:59:42:369 SshUser/sshwinuser.c:1459: Returning successfully, uc = 0x37c4b0.
debug: 09/09/2011 09:59:42:369 SshUser/sshwinuser.c:1884: Profile dir = C:/Documents and Settings/Scott.Hardy.
debug: 09/09/2011 09:59:42:369 SshUser/sshwinuser.c:1480: Freeing user context 37c4b0.
debug: 09/09/2011 09:59:42:369 SshUser/sshwinuser.c:3937: session was freed
debug: 09/09/2011 09:59:42:369 SshUser/sshwinuser.c:1513: done.
debug: 09/09/2011 09:59:42:369 SshSalt/sshsalt.c:328: Salt type: default.
debug: 09/09/2011 09:59:42:384 SshSalt/sshsalt.c:337: Not found in `C:\Documents and Settings\Scott.Hardy\Application Data\SSH\hostkeys\keys_62916cdf0159b2235003dbe50282ad157b7cf5ec', trying compat lo
cation.
debug: 09/09/2011 09:59:42:384 SshSalt/sshsalt.c:344: Compat location `C:\Documents and Settings\Scott.Hardy\Application Data\SSH\hostkeys\keys_61916bdf0158b2235002dae50181ad157b7bf4ec'.
debug: 09/09/2011 09:59:42:384 SshHostkeyDigest/sshhostkeydigest.c:113: Trying salted file path: C:\Documents and Settings\Scott.Hardy\Application Data\SSH\hostkeys\keys_62916cdf0159b2235003dbe50282ad
157b7cf5ec .
debug: 09/09/2011 09:59:42:384 SshHostkeyDigest/sshhostkeydigest.c:122: Failed to get digests: <error information="" not="" available="">
debug: 09/09/2011 09:59:42:384 SshHostkeyDigest/sshhostkeydigest.c:126: Thus far we have 0 digests.
debug: 09/09/2011 09:59:42:384 SshHostkeyDigest/sshhostkeydigest.c:131: Trying unsalted file path: C:\Documents and Settings\Scott.Hardy\Application Data\SSH\hostkeys\key_22_xxx.xxx.xxx.xxx.pub .
debug: 09/09/2011 09:59:42:400 SshHostkeyDigest/sshhostkeydigest.c:140: Failed to get digests: <error information="" not="" available="">
debug: 09/09/2011 09:59:42:400 SshHostkeyDigest/sshhostkeydigest.c:143: Thus far we have 0 digests.
debug: 09/09/2011 09:59:42:400 SshHostkeyDigest/sshhostkeydigest.c:126: Thus far we have 0 digests.
debug: 09/09/2011 09:59:42:400 SshHostkeyDigest/sshhostkeydigest.c:131: Trying unsalted file path: C:\Documents and Settings\All Users\Application Data\SSH\HostKeys\key_22_xxx.xxx.xxx.xxx.pub .
debug: 09/09/2011 09:59:42:400 SshHostkeyDigest/sshhostkeydigest.c:140: Failed to get digests: <error information="" not="" available="">
debug: 09/09/2011 09:59:42:400 SshHostkeyDigest/sshhostkeydigest.c:143: Thus far we have 0 digests.
debug: 09/09/2011 09:59:42:400 SshHostkeyDigest/sshhostkeydigest.c:161: Trying known-hosts file: `/etc/ssh/ssh_known_hosts'
debug: 09/09/2011 09:59:42:400 SshHostkeyDigest/sshhostkeydigest.c:179: Failed to get from `/etc/ssh/ssh_known_hosts' digests: <error information="" not="" available="">
debug: 09/09/2011 09:59:42:400 SshHostkeyDigest/sshhostkeydigest.c:161: Trying known-hosts file: `C:/Documents and Settings/Scott.Hardy/.ssh/known_hosts'
debug: 09/09/2011 09:59:42:415 SshHostkeyDigest/sshhostkeydigest.c:179: Failed to get from `C:/Documents and Settings/Scott.Hardy/.ssh/known_hosts' digests: <error information="" not="" available="">
debug: 09/09/2011 09:59:42:415 SshHostkeyDigest/sshhostkeydigest.c:184: Thus far we have 0 digests.
debug: 09/09/2011 09:59:42:415 SecShKeyStore/secsh_keystore.c:6385: Setting the client 4 parent to 3
debug: 09/09/2011 09:59:42:415 BrokerConnection/broker_connection.c:849: Connecting to xxx.xxx.xxx.xxx:22 (secsh2)
debug: 09/09/2011 09:59:42:415 SecShHostKeyStore/secsh_hostkeystore.c:158: Host key storage does not exist
debug: 09/09/2011 09:59:42:415 SecShConnection/secsh_connection.c:214: Connection 13ba2e8 created, connection count now 1.
debug: 09/09/2011 09:59:42:415 BrokerConnection/broker_connection.c:908: num_auth_methods=4
debug: 09/09/2011 09:59:42:415 SecShConnection/secsh_connection.c:1311: Uninitializing methods...
debug: 09/09/2011 09:59:42:431 SecShConnection/secsh_connection.c:1334: done.
debug: 09/09/2011 09:59:42:431 SecShAuth/secsh_auth.c:189: No init for method 'password', pretending success.
debug: 09/09/2011 09:59:42:431 SecShPluginCGSSAPI/authc-gssapi.c:590: GSSAPI plugin: Initializing Plugin
debug: 09/09/2011 09:59:42:431 SecShPluginCGSSAPI/authc-gssapi.c:632: Calling ssh_secsh_gssapi_dll_init
debug: 09/09/2011 09:59:42:431 SecShPluginCPublickey/authc-publickey.c:332: Plugin init called
debug: 09/09/2011 09:59:42:431 BrokerConnection/broker_connection.c:922: Setting conn 13aeae8 state to CONNECTING_TCP
debug: LOG EVENT (discard,informational): 6200 Broker_tcp_connect, Dst: xxx.xxx.xxx.xxx, Dst Port: 22, Src Port: 4224, Local username: Scott.Hardy
debug: 09/09/2011 09:59:42:525 BrokerConnection/broker_connection.c:941: Setting conn 13aeae8 state to CONNECTING
debug: 09/09/2011 09:59:42:634 SecShConnection/secsh_connection.c:981: Disconnected notification, aborting all operations
debug: 09/09/2011 09:59:42:634 SecShConnection/secsh_connection.c:1009: Calling disconnection callback for 13ba2e8
debug: 09/09/2011 09:59:42:634 BrokerConnection/broker_connection.c:228: Remote disconnect. Reason 0: (null)
debug: 09/09/2011 09:59:42:634 BrokerConnection/broker_connection.c:246: Setting conn 13aeae8 state to DISCONNECTED
debug: 09/09/2011 09:59:42:634 BrokerServer/broker_server.c:613: connect failed (status: 0, result: 2) for client 2492, conn 13aeae8, secsh conn 13ba2e8.
debug: 09/09/2011 09:59:42:634 SecShConnection/secsh_connection.c:1028: Destroy notification.
debug: LOG EVENT (normal,warning): 6209 Broker_connection_connect_failed, Dst: xxx.xxx.xxx.xxx, Dst Port: 22, Local username: Scott.Hardy, Remote username: shardy, Uses gateway?: No, Session-Id: 4, "Unab
le to connect to Broker, (null), remote disconnect"
debug: 09/09/2011 09:59:42:634 BrokerServer/broker_server.c:1236: Connection failed (Unable to connect to Broker (2)).
debug: LOG EVENT (normal,warning): 6005 Broker_exec_channel_open_failed, Client: sshg3, Pid: 2492, Server: shardy@xxx.xxx.xxx.xxx, Server Port: 0, Local username: Scott.Hardy, Command: (null), "Terminal
width: 80 chars, Terminal height: 25 rows, Terminal width: 640 pixels, Terminal height: 480 pixels, Stderr type: separate, Is subsystem?: FALSE, Allocate pty?: TRUE, X11 forwarding?: retain, Agent for
warding?: retain, X11 Display Variable: :0, Agent variable: (null), Term variable: vt100", Channel Id: 0, "Unable to connect to Broker"
debug: 09/09/2011 09:59:42:650 BrokerServer/broker_server.c:1360: Exec '(null)' failed
debug: 09/09/2011 09:59:42:650 BrokerIpc/broker_ipc.c:3330: [2492] Got error `Unable to connect to Broker`(2) for request 2.
debug: 09/09/2011 09:59:42:650 BrokerIpc/broker_ipc.c:5005: reply 13ba0d8 len 246
debug: 09/09/2011 09:59:42:650 BrokerIpc/broker_ipc.c:4284: reply 37ce90 len 274
debug: 09/09/2011 09:59:42:650 SecShConnection/secsh_connection.c:1102: Destroying connection 13ba2e8 (Connections still left 0)
debug: 09/09/2011 09:59:42:650 SecShConnection/secsh_connection.c:1311: Uninitializing methods...
debug: 09/09/2011 09:59:42:665 SecShPluginCGSSAPI/authc-gssapi.c:660: GSSAPI plugin: Uninitializing Plugin
debug: 09/09/2011 09:59:42:665 SecShPluginCGSSAPI/authc-gssapi.c:574: Unloading GSSAPI DLL.
debug: 09/09/2011 09:59:42:665 SecShPluginCGSSAPI/authc-gssapi.c:380: Destroying the client GSSAPI authentication context.
debug: 09/09/2011 09:59:42:665 SecShPluginConfig/secsh_plugin_config.c:141: References still left.
debug: 09/09/2011 09:59:42:665 SecShPluginConfig/secsh_plugin_config.c:141: References still left.
debug: 09/09/2011 09:59:42:665 SecShPluginConfig/secsh_plugin_config.c:141: References still left.
debug: 09/09/2011 09:59:42:665 SecShPluginConfig/secsh_plugin_config.c:141: References still left.
debug: 09/09/2011 09:59:42:665 SecShConnection/secsh_connection.c:1334: done.
debug: 09/09/2011 09:59:42:665 SecShConnection/secsh_connection.c:1341: Uninitializing kbdint submethods...
debug: 09/09/2011 09:59:42:681 SecShConnection/secsh_connection.c:1364: done.
debug: 09/09/2011 09:59:42:681 SshUser/sshwinuser.c:1480: Freeing user context 0.
debug: 09/09/2011 09:59:42:681 SecShPluginConfig/secsh_plugin_config.c:28: Destroying plugin configuration.
debug: 09/09/2011 09:59:42:681 SecShPluginConfig/secsh_plugin_config.c:28: Destroying plugin configuration.
debug: 09/09/2011 09:59:42:681 SecShPluginConfig/secsh_plugin_config.c:28: Destroying plugin configuration.
debug: 09/09/2011 09:59:42:681 SecShPluginConfig/secsh_plugin_config.c:28: Destroying plugin configuration.
debug: 09/09/2011 09:59:42:681 BrokerIpc/broker_ipc.c:3298: [2492] Sending packet, type SSH_SECSH_BROKER_REPLY_CHANNEL(51).
debug: 09/09/2011 09:59:42:697 SshNioPacketWrapper/sshnio_packet_wrapper.c:128: 2 references left
debug: 09/09/2011 09:59:42:806 SshNioPacketWrapper/sshnio_packet_wrapper.c:206: Header read result=0, status=SSH_NIO_SUCCESS, fd=1116
debug: 09/09/2011 09:59:42:806 BrokerClient/broker_client.c:139: Client disconnected. Name=sshg3, pid=2492.
debug: 09/09/2011 09:59:42:806 SecShFtpCapture/secsh_ftp_capture.c:348: Number of FTP capture contexts: 0
debug: LOG EVENT (discard,informational): 6002 Broker_client_disconnect, Client: sshg3, Pid: 2492, Local username: Scott.Hardy
debug: 09/09/2011 09:59:42:806 SshNioPacketWrapper/sshnio_packet_wrapper.c:976: Destroying packet wrapper 0x13a10a8
debug: 09/09/2011 09:59:42:806 SshNioPacketWrapper/sshnio_packet_wrapper.c:128: 1 references left
debug: 09/09/2011 09:59:42:806 SshNioPacketWrapper/sshnio_packet_wrapper.c:137: Last reference removed, destroying
(Sep 09 '11 at 17:47) hardys1 hardys1's gravatar image

From the logs it seems that the TCP connection has been disconnected by the server (or something in between). A bug in broker then causes it to report meaningless error code (actually the code reported by server is not recognized by broker). In fact it looks like the server is responding with reason code SSH_DISCONNECT_RESERVED or some other reason code not defined in RFC4253.

Are you sure that the server B you are trying to reach is reachable from your Windows host C and that SSH server is running there? What SSH server is on that server? And is it configured so that it would accept connection from your Windows computer C?

(Sep 09 '11 at 20:29) Martin Dobsik Martin%20Dobsik's gravatar image

Yes, I can ping the server. We can ssh to that server from Server A. Version: 11.10.0,REV=2005.01.21.15.53 It is configured to accept and has worked in the past. Is there some type of Tectia DB that can be purged, etc? Also, what version of SSH does Tectia currently use?

(Sep 09 '11 at 21:01) hardys1 hardys1's gravatar image

The version information is not a version of SSH server. At least a version of any SSH servers I know. This command, issued from windows machine C, would print a server version string:

> telnet server_name 22

There is not much you can do on client side. You could try to remove the client configuration files:

%APPDATA%\SSH\ssh-broker-config.xml
C:\Program Files\SSH Communications Security\SSH Tectia\SSH Tectia Broker\ssh-broker-config.xml

And restart the connection broker with default configuration, to avoid any configuration problems. For the server side, you would have to investigate what is actually happening there upon such failing connection request.

The fact that computer A can connect to computer B has little or no relevance to computer C connecting to computer B. There are many things that can be configured to prevent such connection. One of them is SSH server configuration of course. It many be configured to refuse connections from some servers or to accept connections only from certain servers. It may fail to resolve the client computer's hostname and refuse such connection. So next step would be to see what is going on on the server side.

The latest version of Tectia SSH Server and Client is 6.2.1.

(Sep 09 '11 at 21:44) Martin Dobsik Martin%20Dobsik's gravatar image
showing 5 of 9 show all
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or __italic__
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Tags:

×82
×63
×31
×27
×9

Asked: Sep 08 '11 at 18:44

Seen: 32,203 times

Last updated: Jan 09 '12 at 21:11

All user contributed content licensed under the cc-by-sa license.
Powered by OSQA.