ssh connexion problem from AIX server to Windows 2003 Server
Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
ssh connexion problem from AIX server to Windows 2003 Server
Good day members,
I have configured Openssh on a Windows Server 2003 named bkp_swift1
This server bkp_swift1 is supposed to accept in coming connections from a cluster of AIX Servers for files transfer in both directions via scp and rcp. The cluster is made up of two nodes: SGBGEPROD1 and SGBGEPROD2.
I have succeeded to configure an ssh connection between:
node2(SGBGEPROD2) of the cluster and the Windows Server2003(bkp_swift1).
The file transfer with scp has also been tested between the two servers SGBGEPROD2<====>bkp_swift1 and is effective.
But when I attempt to carry out similar configuration between nod1 SGBGEPROD1 and the windows2003 server bkp_swift1,I encountered the following problem:
An attempt to ssh from:
node1 SGBGEPROD1 to the windows server 2003bkp_swift1
gives the following error message:
ssh_exchange_identification:connexion closed by remote host
Meanwhile, an ssh from the:
windows server 2003 bkp_swift1 to nod1 SGBGEPRD1 is successful as well as the file transfer.
Thanks for helping me to solve the problem ie configure ssh connexion from: node1 SGBGEPROD1 to the windows 2003 server bkp-swift1.
It doesn't strictly apply, as you're connecting to a Windows host, which doesn't have an /etc/hosts.deny file. However it presents an interesting avenue of investigation...
Can you SSH to 'localhost' when you're on the Windows host's command-line?
Are you running any Firewall software on the Windows host?
Have you looked in TCP/IP filtering under network properties, to see if the protocol/port is disabled?
Do you see any kind of 'SSH' prompt if you try and 'telnet bkp_swift 22'?
An ssh localhost on the Windows Server 2003 (bkp_swift1) works perfectly.
Also my Windows host has an /etc/hosts.deny file which is set as below:
ALL:ALL EXCEPT localhostENY
My supprise is that
an ssh from node2(SGBGEPROD2)=====> bkp_swift1(Windows Server2003) works perfectly.
But it is an ssh from node1 (SGBGEPROD1)===>bkp_swift1(Windows Server2003) that gives this error.
Whereas, an ssh from bkp_swift1 (Windows Server2003)====>node1 (SGBGEPROD1) also works perfectly.
All these servers are on the same lan. There is no firewall on the windows host.
You're right, it is a surprise that you can connect from anywhere with a hosts.deny file that is set to deny everything except traffic from the localhost.
Perhaps there are some more exemptions in /etc/hosts.allow that for some reason allows NODE2 to connect.
If I was you, I'd start by looking at these files.
First, comment-out all the lines in /etc/hosts.allow and /etc/hosts.deny.
Now re-try your SSH from NODE1 -- if it works, you know these files are the problem.
I wouldn't leave everything commented-out though, it's a bit of a security hole. If it does fix it, you should probably read up on these files and find a way of allowing the traffic.
Your hints have been very useful to me. I can now ssh from node1 to the Windows Server2003 (bkp_swift1).
I first of all commented everything in the host.deny file and it did not solve the problem. I then commented everything in the host.allow file except the line
sshd : ALL : allow
and this was the final magic that oppened the way from node1 to the Windows Server 2003. Once more, thank you for your help.
I wish I could have your phone and mail contacts as I believe you could be very helpful to me in my AIX problems. I am actually the administrator of this cluster of AIX servers in a bank located in Malabo (Equatorial Guinea), a country in Central Africa. My phone number is: +240 595283. My mail is: dtiaha@gmail.com
Feel free to contact me whenever you like.
You can send me a PM through this site, or use the email functionality.
Add me to your LinuxQuestions.org 'Contacts'.
I'm usually around and if not, the site sends me email alerts when someone's trying to get in touch!
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.