You are not logged in.
- Topics: Active | Unanswered
#1 2015-09-22 12:30:01
- edke
- Member
- From: Kosice, Slovakia
- Registered: 2011-09-20
- Posts: 43
SSH's pubkey auth behaves differently from different newtorks
Hello guys.
I'm having interesting problem. I have a client that has pretty isolated network. We have bunch of servers in that network and we access it via Cisco VPN. But servers do behave differently when accessing via pubkey auth theirs SSH servers.
Sending diff of verbose `ssh -v`, the one on left is from outside using VPN, on the right is from one server inside network to the other, both to the same server. As you can see, from outside server does not offer pubkey auth on the other hand to inner server it does.
https://www.diffchecker.com/met8tzxo
Is there anything configured on some firewall on the way that somehow blocks some parts of protocol that we cannot auth using pubkey (which sucks big time by the way) ?
Thanks for any info regarding issue.
Last edited by edke (2015-09-22 12:30:40)
Offline
#2 2015-09-22 18:02:39
- byte
- Member
- From: Düsseldorf (DE)
- Registered: 2006-05-01
- Posts: 2,046
Re: SSH's pubkey auth behaves differently from different newtorks
It's probably a Cisco ASA or some other appliance acting as VPN concentrator/gateway/firewall, yes. OpenSSH 4.6? Wow.
1000
Offline
#3 2015-09-22 18:29:18
- edke
- Member
- From: Kosice, Slovakia
- Registered: 2011-09-20
- Posts: 43
Re: SSH's pubkey auth behaves differently from different newtorks
It's probably a Cisco ASA or some other appliance acting as VPN concentrator/gateway/firewall, yes. OpenSSH 4.6? Wow.
Yes, it's Cisco ASA. Can this be fixed?
Offline
#4 2015-09-22 19:44:29
- byte
- Member
- From: Düsseldorf (DE)
- Registered: 2006-05-01
- Posts: 2,046
Re: SSH's pubkey auth behaves differently from different newtorks
Ask your network administrators or whoever is responsible for that setup and device.
1000
Offline