Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 05 Jun 2005 12:34:17 -1000
From:      Robert Marella <rmarella@gmail.com>
To:        freebsd-questions@FreeBSD.org
Subject:   ssh delays 40 seconds
Message-ID:  <42A37DE9.5040609@gmail.com>

next in thread | raw e-mail | index | archive | help
This is a multi-part message in MIME format.
--------------020506060704020606060202
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit

A little nudge is needed. All of a sudden, my attempts to ssh any of the 
other computers in my SOHO take 40 seconds before I am prompted for a 
password or pass-phrase. At that time I can log in and all is well. It 
is consistent in all directions.

I have made NO changes to ssh or any other config file. I don't believe 
it is dns because I can ping and connect quickly to inside and outside 
locations using x.x.x.x or www.blah.org from all computers.

I have attached the output of ssh -vvv with comments as to were the 
delay occurs. I need some help or direction as to what it all means.

I thank you

Robert

P.S I have also attached a network map.

--------------020506060704020606060202
Content-Type: text/plain;
 name="ssh-fail.txt"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
 filename="ssh-fail.txt"

[frankie] ~> ssh -vvv gateway
OpenSSH_3.8.1p1 FreeBSD-20040419, OpenSSL 0.9.7e 25 Oct 2004
debug1: Reading configuration data /etc/ssh/ssh_config
debug2: ssh_connect: needpriv 0
debug1: Connecting to gateway [10.0.0.1] port 22.
debug1: Connection established.
debug1: identity file /home/robert/.ssh/identity type -1
debug3: Not a RSA1 key file /home/robert/.ssh/id_rsa.
debug2: key_type_from_name: unknown key type '-----BEGIN'
debug3: key_read: missing keytype
debug2: key_type_from_name: unknown key type 'Proc-Type:'
debug3: key_read: missing keytype
debug2: key_type_from_name: unknown key type 'DEK-Info:'
debug3: key_read: missing keytype
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug3: key_read: missing whitespace
debug2: key_type_from_name: unknown key type '-----END'
debug3: key_read: missing keytype
debug1: identity file /home/robert/.ssh/id_rsa type 1
debug1: identity file /home/robert/.ssh/id_dsa type -1
debug1: Remote protocol version 2.0, remote software version OpenSSH_3.8.1p1 FreeBSD-20040419
debug1: match: OpenSSH_3.8.1p1 FreeBSD-20040419 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.8.1p1 FreeBSD-20040419
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-dss,ssh-rsa
debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: kex_parse_kexinit: diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
debug2: kex_parse_kexinit: ssh-dss
debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-cbc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-96,hmac-md5-96
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit: none,zlib
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit:
debug2: kex_parse_kexinit: first_kex_follows 0
debug2: kex_parse_kexinit: reserved 0
debug2: mac_init: found hmac-md5
debug1: kex: server->client aes128-cbc hmac-md5 none
debug2: mac_init: found hmac-md5
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug2: dh_gen_key: priv key bits set: 129/256
debug2: bits set: 519/1024
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug3: check_host_in_hostfile: filename /home/robert/.ssh/known_hosts
debug3: check_host_in_hostfile: match line 1
debug1: Host 'gateway' is known and matches the DSA host key.
debug1: Found key in /home/robert/.ssh/known_hosts:1
debug2: bits set: 505/1024
debug1: ssh_dss_verify: signature correct
debug2: kex_derive_keys
debug2: set_newkeys: mode 1
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug2: set_newkeys: mode 0
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug2: service_accept: ssh-userauth
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug2: key: /home/robert/.ssh/identity (0x0)
debug2: key: /home/robert/.ssh/id_rsa (0x806f4d0)
debug2: key: /home/robert/.ssh/id_dsa (0x0)

#################################
40 second delay is right here!
#################################

debug1: Authentications that can continue: publickey
debug3: start over, passed a different list publickey
debug3: preferred publickey,keyboard-interactive,password
debug3: authmethod_lookup publickey
debug3: remaining preferred: keyboard-interactive,password
debug3: authmethod_is_enabled publickey
debug1: Next authentication method: publickey
debug1: Trying private key: /home/robert/.ssh/identity
debug3: no such identity: /home/robert/.ssh/identity
debug1: Offering public key: /home/robert/.ssh/id_rsa
debug3: send_pubkey_test
debug2: we sent a publickey packet, wait for reply
debug1: Server accepts key: pkalg ssh-rsa blen 149
debug2: input_userauth_pk_ok: fp 7d:24:8c:24:07:95:3f:87:ca:9f:83:14:fb:3d:e8:76
debug3: sign_and_send_pubkey
debug1: PEM_read_PrivateKey failed
debug1: read PEM private key done: type <unknown>
Enter passphrase for key '/home/robert/.ssh/id_rsa':            
--------------020506060704020606060202
Content-Type: text/plain;
 name="network"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
 filename="network"

               em1 ________________________________________ em0
       192.168.1.1| "GATEWAY"  gateway/firewall/ntpd serv  |DHCP
          ________| Celeron 266MHz 384 MB RAM              |_________
         |        |________________________________________|         |
         |                    | aue0                                 |
 ________|__     (((o)))      | 10.0.0.1                      _______|_________
| Linksys   |       |         |                              |   Cable Modem   |
| BEFW-154  |_______|         |                              |   Road Runner   |
|___WAP_____|192.168.1.100    |                              |_________________|
                      ________|__________________________________
                     |               HUB                         |
                     |___________________________________________|
                                |         |         |                 
                                |         |         |                 
 ________________       ((o))   |         |         |       __________________
|"HP" Pavillion  |        |     |         |         |      |"P4" ASUS MOBO    |
|Celeron N5310   |        |     |         |         |      |P4P800E Pent 4    |
|750MHz 256MB RAM|________|     |         |         |______|2.6GHz 1GB RAM    |
|                |ndis0         |         |             sk0|NFS Server        |
|________________|192.168.1.104 |         |      10.0.0.103|__________________|
                                |         |
                                |         |                                    
_________________       ((o))   |         |                 __________________
|"T2590" Toshiba |        |     |         |                |"SCSI" Mercury    |
|2590CDT Celeron |        |     |         |                |KOB 630E MOBO     |
|400MHz 192MB RAM|________|     |         |________________|VIA C3 650MHz CPU | 
|                |wi0           |                       rl0|686 512MB RAM     |
|________________|192.168.1.110 |                10.0.0.102|__________________|
                                |
                                |                                        
 ________________       ((o))   |                           __________________
|"NCR" KU440EX   |        |     |                          |"FRANKIE" Pent III|
|Celeron 266 MHz |        |     |                          |Mach Speed 694TAS |
|384 MB RAM      |________|     |__________________________|1.1GHz 1.5GB RAM  |
|                |wi0                                   rl0|NFS-Server        | 
|________________|192.168.1.106                  10.0.0.101|__________________|
                                                                                                 
                                                                                                                                                                                                                            


--------------020506060704020606060202--



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?42A37DE9.5040609>