From owner-freebsd-questions Tue Feb 19 17: 1:59 2002 Delivered-To: freebsd-questions@freebsd.org Received: from rwcrmhc54.attbi.com (rwcrmhc54.attbi.com [216.148.227.87]) by hub.freebsd.org (Postfix) with ESMTP id DEBE637B41D for ; Tue, 19 Feb 2002 17:01:46 -0800 (PST) Received: from blossom.cjclark.org ([12.234.91.48]) by rwcrmhc54.attbi.com (InterMail vM.4.01.03.27 201-229-121-127-20010626) with ESMTP id <20020220010141.TIRC1214.rwcrmhc54.attbi.com@blossom.cjclark.org>; Wed, 20 Feb 2002 01:01:41 +0000 Received: (from cjc@localhost) by blossom.cjclark.org (8.11.6/8.11.6) id g1K11ea40246; Tue, 19 Feb 2002 17:01:40 -0800 (PST) (envelope-from cjc) Date: Tue, 19 Feb 2002 17:01:40 -0800 From: "Crist J. Clark" To: "B.K. DeLong" Cc: freebsd-questions@FreeBSD.ORG Subject: Re: SSHD problems: Forked child when logging in locally Message-ID: <20020219170140.M48401@blossom.cjclark.org> References: <5.1.0.14.2.20020219113057.03467bb0@pop.earthlink.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <5.1.0.14.2.20020219113057.03467bb0@pop.earthlink.net>; from bkdelong@pobox.com on Tue, Feb 19, 2002 at 12:16:25PM -0500 X-URL: http://people.freebsd.org/~cjc/ Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Tue, Feb 19, 2002 at 12:16:25PM -0500, B.K. DeLong wrote: > Hi all - > > I recently lost the ability to ssh into my firewall from the local side of > the network, though ironically I can still ssh to it from the outside. > > I'm running FreeBSD 4.5-STABLE and OpenSSH_3.0.2. > > When I try to ssh into the machine (192.168.2.1) from my Win98 SE laptop > using ssh2 in SecureCRT 3.3 (192.168.2.11) my authlog shows: > > sshd[90]: debug1: Forked child 178. > > Then I close SecureCRT since nothing shows up in the window. > > Several seconds after I close it, this appears in my authlod: > > sshd[178]: Connection from 192.168.2.11 port 2696 > sshd[178]: Connection from 192.168.2.11 port 2696 > sshd[178]: Did not receive identification string from 192.168.2.11. > sshd[178]: debug1: Calling cleanup 0x805ef04(0x0) These messages make sense. You close up your connection, so sshd(8) eventually gives up and quits. I guess the only question is, why doesn't the connection start up? Why is it hanging long enough for you to get impatient and close up SecureCRT? How long are you giving it? Let it sit for at least a minute or two in case there are some DNS problems. Also, you might want to sniff the connection (tcpdump(8)) to watch the connection establish (and watch for the DNS traffic too). Finally, review the firewall logs to make sure something weird isn't happening there. -- Crist J. Clark | cjclark@alum.mit.edu | cjclark@jhu.edu http://people.freebsd.org/~cjc/ | cjc@freebsd.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message