问题描述:
有台s7300x 本来用xshell7能正常登录
用linux无法登录
论坛查询了一些帖子之后重新创建了2048位的 rsa跟dsa
其中还操作了开启日志显示的设置 terminal display terminal monitor
其余操作不记得了 应该没啥
本来是没开 compatible-ssh1x enable 后面开了Linux用ssh v1 也连不上
现在不光linux登不上了 xshell也登不上了 compatible-ssh1x enable 开关都连不上了 rsa 跟dsa 重新创建成默认的长度也连不上
日志如下
不知道咋回事
组网及组网描述:
交换机配置
<MZFT_SBW_3FJF_S7003X>dis cur
#
version 7.1.070, Release 7743P04
#
sysname MZFT_SBW_3FJF_S7003X
#
clock timezone Beijing add 08:00:00
clock protocol none
#
telnet server enable
#
fabric multicast-forwarding mode standard
multicast forwarding-mode default
#
system-working-mode standard
password-recovery enable
#
stp global enable
#
interface NULL0
#
interface Vlan-interface1
dhcp client identifier ascii 58c7acdb0600-VLAN0001
#
scheduler logfile size 16
#
line class console
user-role network-admin
#
line class vty
user-role network-operator
#
line con 0
user-role network-admin
#
line vty 0 3
user-role network-operator
#
line vty 4
authentication-mode scheme
user-role network-admin
user-role network-operator
idle-timeout 0 0
#
line vty 5 63
user-role network-operator
#
#
snmp-agent
snmp-agent local-engineid 800063A28058C7676ACDB060100000001
snmp-agent community read cipher $c878$3$G0U9VhrrKhDwJ7w3kNZ7beqCfiImFRuu2KuiNTuI
snmp-agent sys-info version v2c v3
#
ssh server enable
ssh server compatible-ssh1x enable
#
domain system
#
domain default enable system
#
user-group system
#
local-user admin class manage
password hash $h$6$XCzUI6u7t454e465664vl5+USoqrzZBVnTd8rraeDjLV880wQ7l4ukfghtOrxPkB85MMVhpvwTjT/cLK8Ej0Hq4w==
service-type https ssh terminal
authorization-attribute user-role level-15
authorization-attribute user-role network-admin
authorization-attribute user-role network-operator
#
#
ip https enable
#
return
以下为linux客户端连接日志
[root@mtsnmparp ~]# ssh -v admin@139.4.139.1
OpenSSH_7.4p1, OpenSSL 1.0.2k-fips 26 Jan 2017
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 58: Applying options for *
debug1: Connecting to 139.4.139.1 [139.4.139.1] port 22.
debug1: Connection established.
debug1: permanently_set_uid: 0/0
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_rsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /root/.ssh/id_ed25519-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_7.4
debug1: Remote protocol version 1.99, remote software version Comware-7.1.070
debug1: no match: Comware-7.1.070
debug1: Authenticating to 139.4.139.1:22 as 'admin'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: ecdh-sha2-nistp256
debug1: kex: host key algorithm: ssh-rsa
debug1: kex: server->client cipher: aes128-ctr MAC: hmac-sha2-256 compression: none
debug1: kex: client->server cipher: aes128-ctr MAC: hmac-sha2-256 compression: none
debug1: kex: ecdh-sha2-nistp256 need=32 dh_need=32
debug1: kex: ecdh-sha2-nistp256 need=32 dh_need=32
debug1: sending SSH2_MSG_KEX_ECDH_INIT
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ssh-rsa SHA256:PGAsyFtgOrQw2nuMcfVCuDT0/29FHZvSbijqBswqoO0
debug1: Host '139.4.139.1' is known and matches the RSA host key.
debug1: Found key in /root/.ssh/known_hosts:35
debug1: rekey after 4294967296 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey after 4294967296 blocks
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: password
debug1: Next authentication method: password
admin@139.4.139.1's password:
debug1: Authentication succeeded (password).
Authenticated to 139.4.139.1 ([139.4.139.1]:22).
debug1: channel 0: new [client-session]
debug1: Entering interactive session.
debug1: pledge: network
debug1: Sending environment.
debug1: Sending env LANG = en_US.UTF-8
debug1: channel 0: free: client-session, nchannels 1
Connection to 139.4.139.1 closed by remote host.
Connection to 139.4.139.1 closed.
Transferred: sent 2296, received 1136 bytes, in 0.3 seconds
Bytes per second: sent 9063.7, received 4484.5
debug1: Exit status -1
以下为linux客户端认证h3c日志
*Jan 12 08:35:38:253 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Start new child 14419.
*Jan 12 08:35:38:279 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Connection from 139.4.132.118 port 44108
*Jan 12 08:35:38:282 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Client protocol version 2.0, client software version OpenSSH_7.4
*Jan 12 08:35:38:282 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Enabling compatibility mode for protocol 2.0
*Jan 12 08:35:38:282 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Local version string SSH-1.99-Comware-7.1.070
*Jan 12 08:35:38:283 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Pki-domain-name is not configure.
*Jan 12 08:35:38:283 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Pki-domain-name is not configure.
*Jan 12 08:35:38:286 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Hostkey string is : ssh-rsa,ssh-dss
*Jan 12 08:35:38:288 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[20].
*Jan 12 08:35:38:289 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 20.
*Jan 12 08:35:38:289 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_KEXINIT.
*Jan 12 08:35:38:289 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: My proposal kex:
*Jan 12 08:35:38:290 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(0): ecdh-sha2-nistp256,ecdh-sha2-nistp384,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
*Jan 12 08:35:38:290 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(1): ssh-rsa,ssh-dss
*Jan 12 08:35:38:290 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(2): aes128-ctr,aes192-ctr,aes256-ctr,AEAD_AES_128_GCM,AEAD_AES_256_GCM,aes128-cbc,3des-cbc,aes256-cbc,des-cbc
*Jan 12 08:35:38:290 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(3): aes128-ctr,aes192-ctr,aes256-ctr,AEAD_AES_128_GCM,AEAD_AES_256_GCM,aes128-cbc,3des-cbc,aes256-cbc,des-cbc
*Jan 12 08:35:38:290 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(4): hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5,hmac-sha1-96,hmac-md5-96
*Jan 12 08:35:38:291 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(5): hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5,hmac-sha1-96,hmac-md5-96
*Jan 12 08:35:38:291 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(6): none,zlib,zlib@openssh.com
*Jan 12 08:35:38:291 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(7): none,zlib,zlib@openssh.com
*Jan 12 08:35:38:291 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(8):
*Jan 12 08:35:38:291 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(9):
*Jan 12 08:35:38:291 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Peer proposal kex:
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(0): curve25519-sha256,curve25519-sha256@***.***,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha256,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1,ext-info-c
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(1): ssh-rsa-cert-v01@openssh.com,rsa-sha2-512,rsa-sha2-256,ssh-rsa,ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,ssh-dss-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,ssh-dss
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(2): chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,aes128-cbc,aes192-cbc,aes256-cbc
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(3): chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,aes128-cbc,aes192-cbc,aes256-cbc
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(4): umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(5): umac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(6): none,zlib@openssh.com,zlib
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(7): none,zlib@openssh.com,zlib
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(8):
*Jan 12 08:35:38:292 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(9):
*Jan 12 08:35:38:295 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex: client->server, Encrypt: aes128-ctr, HMAC: hmac-sha2-256, Compress: none
*Jan 12 08:35:38:298 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex: server->client, Encrypt: aes128-ctr, HMAC: hmac-sha2-256, Compress: none
*Jan 12 08:35:38:313 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Expecting packet type 30.
*Jan 12 08:35:38:313 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 30.
*Jan 12 08:35:38:329 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[31].
*Jan 12 08:35:38:336 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[21].
*Jan 12 08:35:38:336 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Set new keys: mode=1
*Jan 12 08:35:38:337 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Expecting packet type 21.
*Jan 12 08:35:38:340 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Set new keys: mode=0
*Jan 12 08:35:38:341 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 21.
*Jan 12 08:35:38:341 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: KEX done.
*Jan 12 08:35:38:353 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 5.
*Jan 12 08:35:38:354 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_SERVICE_REQUEST.
*Jan 12 08:35:38:354 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[6].
*Jan 12 08:35:38:362 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 50.
*Jan 12 08:35:38:363 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_USERAUTH_REQUEST.
*Jan 12 08:35:38:363 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Username: admin, service: ssh-connection, method: none
*Jan 12 08:35:38:363 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: initializing for "admin", service:login, domain:
*Jan 12 08:35:38:366 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Try authentication method none.
*Jan 12 08:35:38:366 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Get authentication methods: password
*Jan 12 08:35:38:366 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[51].
*Jan 12 08:35:42:514 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 50.
*Jan 12 08:35:42:514 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_USERAUTH_REQUEST.
*Jan 12 08:35:42:514 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Username: admin, service: ssh-connection, method: password
*Jan 12 08:35:42:514 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Try authentication method password.
*Jan 12 08:35:42:515 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Password authentication and authorization.
*Jan 12 08:35:42:549 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: Get work directory flash:.
*Jan 12 08:35:42:549 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: Get role list level-15?network-admin?network-operator.
*Jan 12 08:35:42:550 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: password authentication accepted for admin.
*Jan 12 08:35:42:550 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: accounting.
*Jan 12 08:35:42:561 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: account management : 0 (success)
%Jan 12 08:35:42:562 2023 MZFT_SBW_3FJF_S7003X SSHS/6/SSHS_AUTH_SUCCESS: SSH user admin from 139.4.132.118 port 44108 passed password authentication.
*Jan 12 08:35:42:562 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[52].
*Jan 12 08:35:42:564 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Entering interactive session for SSH2.
*Jan 12 08:35:42:565 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Initiate server message dispatch, compatibility:1/0
*Jan 12 08:35:42:569 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 90.
*Jan 12 08:35:42:569 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_CHANNEL_OPEN: ctype session, rchan 0, win 1048576, max 16384
*Jan 12 08:35:42:570 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received session request.
*Jan 12 08:35:42:570 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Channel 0: new [server-session]
*Jan 12 08:35:42:570 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Session id 0 unused.
*Jan 12 08:35:42:570 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Session opened: session 0, link with channel 0
*Jan 12 08:35:42:571 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[91].
*Jan 12 08:35:42:577 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 98.
*Jan 12 08:35:42:578 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_CHANNEL_REQUEST: channel 0, request pty-req, reply 1
*Jan 12 08:35:42:578 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Channel request: user admin, service type 1 rtype:pty-req
*Jan 12 08:35:42:811 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Open pty: pseudo-terminal-master(-1), pseudo-terminal-sub(-1)
*Jan 12 08:35:42:812 2023 MZFT_SBW_3FJF_S7003X SSHS/7/ERROR: Allocate pty failed.
%Jan 12 08:35:42:812 2023 MZFT_SBW_3FJF_S7003X SSHS/6/SSHS_DISCONNECT: SSH user admin (IP: 139.4.132.118) disconnected from the server.
*Jan 12 08:35:42:815 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: cleanup
*Jan 12 08:35:42:816 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Close pty: pseudo-terminal-master(-1), pseudo-terminal-sub(-1)
以下为xshell 7 客户端认证h3c日志
*Jan 12 08:36:10:436 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Start new child 14420.
*Jan 12 08:36:10:463 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Connection from 139.4.131.88 port 54777
*Jan 12 08:36:10:466 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Client protocol version 2.0, client software version nsssh2_7.0.0026 NetSarang Computer, Inc.
*Jan 12 08:36:10:466 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Enabling compatibility mode for protocol 2.0
*Jan 12 08:36:10:467 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Local version string SSH-1.99-Comware-7.1.070
*Jan 12 08:36:10:467 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Pki-domain-name is not configure.
*Jan 12 08:36:10:468 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Pki-domain-name is not configure.
*Jan 12 08:36:10:471 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Hostkey string is : ssh-rsa,ssh-dss
*Jan 12 08:36:10:472 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[20].
*Jan 12 08:36:10:473 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 20.
*Jan 12 08:36:10:473 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_KEXINIT.
*Jan 12 08:36:10:474 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: My proposal kex:
*Jan 12 08:36:10:474 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(0): ecdh-sha2-nistp256,ecdh-sha2-nistp384,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1
*Jan 12 08:36:10:475 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(1): ssh-rsa,ssh-dss
*Jan 12 08:36:10:475 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(2): aes128-ctr,aes192-ctr,aes256-ctr,AEAD_AES_128_GCM,AEAD_AES_256_GCM,aes128-cbc,3des-cbc,aes256-cbc,des-cbc
*Jan 12 08:36:10:475 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(3): aes128-ctr,aes192-ctr,aes256-ctr,AEAD_AES_128_GCM,AEAD_AES_256_GCM,aes128-cbc,3des-cbc,aes256-cbc,des-cbc
*Jan 12 08:36:10:476 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(4): hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5,hmac-sha1-96,hmac-md5-96
*Jan 12 08:36:10:476 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(5): hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-md5,hmac-sha1-96,hmac-md5-96
*Jan 12 08:36:10:476 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(6): none,zlib,zlib@openssh.com
*Jan 12 08:36:10:477 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(7): none,zlib,zlib@openssh.com
*Jan 12 08:36:10:477 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(8):
*Jan 12 08:36:10:477 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(9):
*Jan 12 08:36:10:477 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Peer proposal kex:
*Jan 12 08:36:10:477 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(0): curve25519-sha256@***.***,curve25519-sha256,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group18-sha512,diffie-hellman-group16-sha512,diffie-hellman-group14-sha256,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1,ext-info-c
*Jan 12 08:36:10:478 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(1): ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519
*Jan 12 08:36:10:478 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(2): chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,aes128-cbc,aes192-cbc,aes256-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,rijndael128-cbc,rijndael192-cbc,rijndael256-cbc,rijndael-cbc@lysator.liu.se,arcfour128,arcfour256
*Jan 12 08:36:10:478 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(3): chacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,aes128-cbc,aes192-cbc,aes256-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,rijndael128-cbc,rijndael192-cbc,rijndael256-cbc,rijndael-cbc@lysator.liu.se,arcfour128,arcfour256
*Jan 12 08:36:10:478 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(4): hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-sha1-96,hmac-md5,hmac-md5-96,hmac-ripemd160,hmac-ripemd160@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha1-96-etm@openssh.com,hmac-md5-etm@openssh.com,hmac-md5-96-etm@openssh.com,umac-64-etm@openssh.com,umac-128-etm@openssh.com,none
*Jan 12 08:36:10:478 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(5): hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1,hmac-sha1-96,hmac-md5,hmac-md5-96,hmac-ripemd160,hmac-ripemd160@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha1-96-etm@openssh.com,hmac-md5-etm@openssh.com,hmac-md5-96-etm@openssh.com,umac-64-etm@openssh.com,umac-128-etm@openssh.com,none
*Jan 12 08:36:10:479 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(6): none
*Jan 12 08:36:10:479 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(7): none
*Jan 12 08:36:10:479 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(8):
*Jan 12 08:36:10:479 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex strings(9):
*Jan 12 08:36:10:487 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex: client->server, Encrypt: aes128-ctr, HMAC: hmac-sha2-256, Compress: none
*Jan 12 08:36:10:492 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Kex: server->client, Encrypt: aes128-ctr, HMAC: hmac-sha2-256, Compress: none
*Jan 12 08:36:10:508 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Expecting packet type 30.
*Jan 12 08:36:10:509 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 30.
*Jan 12 08:36:10:525 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[31].
*Jan 12 08:36:10:532 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[21].
*Jan 12 08:36:10:533 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Set new keys: mode=1
*Jan 12 08:36:10:533 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Expecting packet type 21.
*Jan 12 08:36:10:540 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Set new keys: mode=0
*Jan 12 08:36:10:540 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 21.
*Jan 12 08:36:10:541 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: KEX done.
*Jan 12 08:36:10:542 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 5.
*Jan 12 08:36:10:543 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_SERVICE_REQUEST.
*Jan 12 08:36:10:543 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[6].
*Jan 12 08:36:12:629 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 50.
*Jan 12 08:36:12:629 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_USERAUTH_REQUEST.
*Jan 12 08:36:12:629 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Username: admin, service: ssh-connection, method: none
*Jan 12 08:36:12:630 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: initializing for "admin", service:login, domain:
*Jan 12 08:36:12:633 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Try authentication method none.
*Jan 12 08:36:12:633 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Get authentication methods: password
*Jan 12 08:36:12:633 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[51].
*Jan 12 08:36:16:285 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 50.
*Jan 12 08:36:16:285 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_USERAUTH_REQUEST.
*Jan 12 08:36:16:285 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Username: admin, service: ssh-connection, method: password
*Jan 12 08:36:16:286 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Try authentication method password.
*Jan 12 08:36:16:286 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Password authentication and authorization.
*Jan 12 08:36:16:325 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: Get work directory flash:.
*Jan 12 08:36:16:325 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: Get role list level-15?network-admin?network-operator.
*Jan 12 08:36:16:325 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: password authentication accepted for admin.
*Jan 12 08:36:16:325 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: accounting.
*Jan 12 08:36:16:336 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: account management : 0 (success)
%Jan 12 08:36:16:336 2023 MZFT_SBW_3FJF_S7003X SSHS/6/SSHS_AUTH_SUCCESS: SSH user admin from 139.4.131.88 port 54777 passed password authentication.
*Jan 12 08:36:16:336 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[52].
*Jan 12 08:36:16:338 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Entering interactive session for SSH2.
*Jan 12 08:36:16:339 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Initiate server message dispatch, compatibility:1/0
*Jan 12 08:36:16:342 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 90.
*Jan 12 08:36:16:342 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_CHANNEL_OPEN: ctype session, rchan 0, win 32768, max 16384
*Jan 12 08:36:16:343 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received session request.
*Jan 12 08:36:16:343 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Channel 0: new [server-session]
*Jan 12 08:36:16:343 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Session id 0 unused.
*Jan 12 08:36:16:343 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Session opened: session 0, link with channel 0
*Jan 12 08:36:16:343 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[91].
*Jan 12 08:36:16:349 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 98.
*Jan 12 08:36:16:349 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_CHANNEL_REQUEST: channel 0, request x11-req, reply 1
*Jan 12 08:36:16:350 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Channel request: user admin, service type 1 rtype:x11-req
*Jan 12 08:36:16:350 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Prepare packet[100].
*Jan 12 08:36:16:353 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 98.
*Jan 12 08:36:16:353 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Received SSH2_MSG_CHANNEL_REQUEST: channel 0, request pty-req, reply 0
*Jan 12 08:36:16:353 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Channel request: user admin, service type 1 rtype:pty-req
*Jan 12 08:36:16:584 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Open pty: pseudo-terminal-master(-1), pseudo-terminal-sub(-1)
*Jan 12 08:36:16:584 2023 MZFT_SBW_3FJF_S7003X SSHS/7/ERROR: Allocate pty failed.
%Jan 12 08:36:16:584 2023 MZFT_SBW_3FJF_S7003X SSHS/6/SSHS_DISCONNECT: SSH user admin (IP: 139.4.131.88) disconnected from the server.
*Jan 12 08:36:16:587 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: PAM: cleanup
*Jan 12 08:36:16:587 2023 MZFT_SBW_3FJF_S7003X SSHS/7/EVENT: Close pty: pseudo-terminal-master(-1), pseudo-terminal-sub(-1)
*Jan 12 08:36:23:833 2023 MZFT_SBW_3FJF_S7003X SSHS/7/MESSAGE: Received packet type 2.
- 2023-01-12提问
- 举报
-
(0)
最佳答案
您好,把这个删除
ssh server compatible-ssh1x enable
其次, authorization-attribute user-role level-15
authorization-attribute user-role network-admin
authorization-attribute user-role network-operator
这三个选项,只保留 authorization-attribute user-role network-admin即可
line vty 0 3
user-role network-operator
#
line vty 4
authentication-mode scheme
user-role network-admin
user-role network-operator
idle-timeout 0 0
#
line vty 5 63
user-role network-operator
这三个,修改为
line vty 0 63
authentication-mode scheme
- 2023-01-12回答
- 评论(3)
- 举报
-
(0)
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作
举报
×
侵犯我的权益
×
侵犯了我企业的权益
×
- 1. 您举报的内容是什么?(请在邮件中列出您举报的内容和链接地址)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
- 3. 是哪家企业?(营业执照,单位登记证明等证件)
- 4. 您与该企业的关系是?(您是企业法人或被授权人,需提供企业委托授权书)
抄袭了我的内容
×
原文链接或出处
诽谤我
×
- 1. 您举报的内容以及侵犯了您什么权益?(请在邮件中列出您举报的内容、链接地址,并给出简短的说明)
- 2. 您是谁?(身份证明材料,可以是身份证或护照等证件)
对根叔社区有害的内容
×
不规范转载
×
举报说明
关了也不行
看下最新的答案,进行修改即可
好的 我看到这个 line vty 4 应该是vty4 所以只能登录一个。。。