Wired Intelligent Edge

 View Only
last person joined: yesterday 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of your switching devices, and find ways to improve security across your network to bring together a mobile-first solution
Back to discussions
Expand all | Collapse all

HP J9773A 2530-24G-PoEP Switch - ssh login fault

This thread has been viewed 0 times

  • 1.  HP J9773A 2530-24G-PoEP Switch - ssh login fault

    Posted Jul 18, 2018 04:47 AM

    Hi

    When I login with ssh to the swicth then I see the orange fault indicator and the switch seems to reboot.  This happens everytime just after I type the password and presses enter?

    I'm actually able to do an scp filestransfer using the same username and password - with no problem.

    I have regenerate ssh rsa keys and it didn't help.

    The switch came with software version YA.16.04.0008 and I upgraded to version YA_16_06_0006 but the problem persists. I then downgraded to version YA.15.17.0009 and this version has no problem.

    Is this a bug or do I need to do some extra configuration in version YA.16.xx to fix this?

    Config:

    ----

    hostname "SW01"
    console idle-timeout serial-usb 0
    logging 10.24.2.10
    timesync sntp
    sntp unicast
    sntp server priority 1 194.255.101.171
    sntp server priority 2 213.5.39.34
    time daylight-time-rule western-europe
    time timezone 60
    ip authorized-managers 100.64.0.0 255.192.0.0 access manager
    ip dns server-address priority 1 1.1.1.1
    ip dns server-address priority 2 1.0.0.1
    ip ssh filetransfer
    ip route 0.0.0.0 0.0.0.0 100.82.0.57
    snmp-server community "******" operator
    snmp-server mib hpSwitchAuthMIB excluded
    lldp admin-status 1-23,25-27 disable
    vlan 1
       name "ADMIN"
       no untagged 1-23,25-27
       untagged 24,28
       ip address 100.82.0.58 255.255.255.248
       exit
    vlan 10
       name "PRODUCTION"
       untagged 1-23,25-27
       tagged 24,28
       no ip address
       exit
    no tftp client
    no tftp server
    no dhcp config-file-update
    no dhcp image-file-update
    no dhcp tr69-acs-url
    password manager

    ----

    Cheers, Martin


    #ssh


  • 2.  RE: HP J9773A 2530-24G-PoEP Switch - ssh login fault

    Posted Jul 19, 2018 10:24 AM

    I found the issue :-)

    I used another ssh client and it worked fine. The issue with the ssh client that caused the switch to spontaneous reboot seems to be in my ".ssh/config" where I use "RemoteForward 52698 localhost:52698" for my rmate editor.

    If I ignore "RemoteForward 52698 localhost:52698" then I have no problem with ssh login.

    What I know of is that this issue has affect on version YA_16_06_0006 and YA.16.04.0008 - so maybe from version YA.16.xx

    There is no issue in version YA_15_17_0009.

    I would suggest that the switch should just ignore ssh RemoteForward like most other equipment. I think it's rather critical that somebody malicious or by accident can bring the switch to spontaneous reboot?

    Can somebody comment on this?

    Cheers, Martin

     



  • 3.  RE: HP J9773A 2530-24G-PoEP Switch - ssh login fault

    Posted Jul 22, 2018 08:11 AM

    The same goes for:

    HP J9772A 2530-48G-PoEP Switch
    Software revision YA.16.04.0008

    Cheers, Martin