Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 5 Jun 2005 18:34:47 -0500
From:      "Richard J. Valenta" <RJV@WEBLINKMO.COM>
To:        "Phusion" <phusion2k@gmail.com>, "Robert Marella" <rmarella@gmail.com>
Cc:        freebsd-questions@freebsd.org
Subject:   RE: ssh delays 40 seconds
Message-ID:  <5EEBE9C3C61D1142994C6B620C51E847110B80@depot.weblinkmo.com>

next in thread | raw e-mail | index | archive | help
I had this problem in the past, and it was due to DNS problems where my
IP from the client machine was unable to be resolved... but I think it
took longer than 40 seconds.  I mentioned this in this list before, a
search of the list may help.

rjv

-----Original Message-----
From: owner-freebsd-questions@freebsd.org
[mailto:owner-freebsd-questions@freebsd.org] On Behalf Of Phusion
Sent: Sunday, June 05, 2005 6:11 PM
To: Robert Marella
Cc: freebsd-questions@freebsd.org
Subject: Re: ssh delays 40 seconds

I've noticed this same thing on one of the machines I've built in the
last week. The machine is running FreeBSD 5.4-STABLE with OpenSSH
4.0p1. The delay is probably about 30 seconds. Also, the machine isn't
being used by anyone at the time. This happens when connecting from
one local machine to another local machine on the same LAN.

On 6/5/05, Robert Marella <rmarella@gmail.com> wrote:
> A little nudge is needed. All of a sudden, my attempts to ssh any of
the
> other computers in my SOHO take 40 seconds before I am prompted for a
> password or pass-phrase. At that time I can log in and all is well. It
> is consistent in all directions.
>=20
> I have made NO changes to ssh or any other config file. I don't
believe
> it is dns because I can ping and connect quickly to inside and outside
> locations using x.x.x.x or www.blah.org from all computers.
>=20
> I have attached the output of ssh -vvv with comments as to were the
> delay occurs. I need some help or direction as to what it all means.
>=20
> I thank you
>=20
> Robert
>=20
> P.S I have also attached a network map.
>=20
>=20
> [frankie] ~> ssh -vvv gateway
> OpenSSH_3.8.1p1 FreeBSD-20040419, OpenSSL 0.9.7e 25 Oct 2004
> debug1: Reading configuration data /etc/ssh/ssh_config
> debug2: ssh_connect: needpriv 0
> debug1: Connecting to gateway [10.0.0.1] port 22.
> debug1: Connection established.
> debug1: identity file /home/robert/.ssh/identity type -1
> debug3: Not a RSA1 key file /home/robert/.ssh/id_rsa.
> debug2: key_type_from_name: unknown key type '-----BEGIN'
> debug3: key_read: missing keytype
> debug2: key_type_from_name: unknown key type 'Proc-Type:'
> debug3: key_read: missing keytype
> debug2: key_type_from_name: unknown key type 'DEK-Info:'
> debug3: key_read: missing keytype
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug3: key_read: missing whitespace
> debug2: key_type_from_name: unknown key type '-----END'
> debug3: key_read: missing keytype
> debug1: identity file /home/robert/.ssh/id_rsa type 1
> debug1: identity file /home/robert/.ssh/id_dsa type -1
> debug1: Remote protocol version 2.0, remote software version
OpenSSH_3.8.1p1 FreeBSD-20040419
> debug1: match: OpenSSH_3.8.1p1 FreeBSD-20040419 pat OpenSSH*
> debug1: Enabling compatibility mode for protocol 2.0
> debug1: Local version string SSH-2.0-OpenSSH_3.8.1p1 FreeBSD-20040419
> debug1: SSH2_MSG_KEXINIT sent
> debug1: SSH2_MSG_KEXINIT received
> debug2: kex_parse_kexinit:
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
> debug2: kex_parse_kexinit: ssh-dss,ssh-rsa
> debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-c
bc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-c
bc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-9
6,hmac-md5-96
> debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-9
6,hmac-md5-96
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit:
> debug2: kex_parse_kexinit:
> debug2: kex_parse_kexinit: first_kex_follows 0
> debug2: kex_parse_kexinit: reserved 0
> debug2: kex_parse_kexinit:
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1
> debug2: kex_parse_kexinit: ssh-dss
> debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-c
bc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit:
aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,aes192-cbc,aes256-c
bc,rijndael-cbc@lysator.liu.se,aes128-ctr,aes192-ctr,aes256-ctr
> debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-9
6,hmac-md5-96
> debug2: kex_parse_kexinit:
hmac-md5,hmac-sha1,hmac-ripemd160,hmac-ripemd160@openssh.com,hmac-sha1-9
6,hmac-md5-96
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit: none,zlib
> debug2: kex_parse_kexinit:
> debug2: kex_parse_kexinit:
> debug2: kex_parse_kexinit: first_kex_follows 0
> debug2: kex_parse_kexinit: reserved 0
> debug2: mac_init: found hmac-md5
> debug1: kex: server->client aes128-cbc hmac-md5 none
> debug2: mac_init: found hmac-md5
> debug1: kex: client->server aes128-cbc hmac-md5 none
> debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
> debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
> debug2: dh_gen_key: priv key bits set: 129/256
> debug2: bits set: 519/1024
> debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
> debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
> debug3: check_host_in_hostfile: filename /home/robert/.ssh/known_hosts
> debug3: check_host_in_hostfile: match line 1
> debug1: Host 'gateway' is known and matches the DSA host key.
> debug1: Found key in /home/robert/.ssh/known_hosts:1
> debug2: bits set: 505/1024
> debug1: ssh_dss_verify: signature correct
> debug2: kex_derive_keys
> debug2: set_newkeys: mode 1
> debug1: SSH2_MSG_NEWKEYS sent
> debug1: expecting SSH2_MSG_NEWKEYS
> debug2: set_newkeys: mode 0
> debug1: SSH2_MSG_NEWKEYS received
> debug1: SSH2_MSG_SERVICE_REQUEST sent
> debug2: service_accept: ssh-userauth
> debug1: SSH2_MSG_SERVICE_ACCEPT received
> debug2: key: /home/robert/.ssh/identity (0x0)
> debug2: key: /home/robert/.ssh/id_rsa (0x806f4d0)
> debug2: key: /home/robert/.ssh/id_dsa (0x0)
>=20
> #################################
> 40 second delay is right here!
> #################################
>=20
> debug1: Authentications that can continue: publickey
> debug3: start over, passed a different list publickey
> debug3: preferred publickey,keyboard-interactive,password
> debug3: authmethod_lookup publickey
> debug3: remaining preferred: keyboard-interactive,password
> debug3: authmethod_is_enabled publickey
> debug1: Next authentication method: publickey
> debug1: Trying private key: /home/robert/.ssh/identity
> debug3: no such identity: /home/robert/.ssh/identity
> debug1: Offering public key: /home/robert/.ssh/id_rsa
> debug3: send_pubkey_test
> debug2: we sent a publickey packet, wait for reply
> debug1: Server accepts key: pkalg ssh-rsa blen 149
> debug2: input_userauth_pk_ok: fp
7d:24:8c:24:07:95:3f:87:ca:9f:83:14:fb:3d:e8:76
> debug3: sign_and_send_pubkey
> debug1: PEM_read_PrivateKey failed
> debug1: read PEM private key done: type <unknown>
> Enter passphrase for key '/home/robert/.ssh/id_rsa':
>=20
>                em1 ________________________________________ em0
>        192.168.1.1| "GATEWAY"  gateway/firewall/ntpd serv  |DHCP
>           ________| Celeron 266MHz 384 MB RAM              |_________
>          |        |________________________________________|         |
>          |                    | aue0                                 |
>  ________|__     (((o)))      | 10.0.0.1
_______|_________
> | Linksys   |       |         |                              |   Cable
Modem   |
> | BEFW-154  |_______|         |                              |   Road
Runner   |
> |___WAP_____|192.168.1.100    |
|_________________|
>                       ________|__________________________________
>                      |               HUB                         |
>                      |___________________________________________|
>                                 |         |         |
>                                 |         |         |
>  ________________       ((o))   |         |         |
__________________
> |"HP" Pavillion  |        |     |         |         |      |"P4" ASUS
MOBO    |
> |Celeron N5310   |        |     |         |         |      |P4P800E
Pent 4    |
> |750MHz 256MB RAM|________|     |         |         |______|2.6GHz 1GB
RAM    |
> |                |ndis0         |         |             sk0|NFS Server
|
> |________________|192.168.1.104 |         |
10.0.0.103|__________________|
>                                 |         |
>                                 |         |
> _________________       ((o))   |         |
__________________
> |"T2590" Toshiba |        |     |         |                |"SCSI"
Mercury    |
> |2590CDT Celeron |        |     |         |                |KOB 630E
MOBO     |
> |400MHz 192MB RAM|________|     |         |________________|VIA C3
650MHz CPU |
> |                |wi0           |                       rl0|686 512MB
RAM     |
> |________________|192.168.1.110 |
10.0.0.102|__________________|
>                                 |
>                                 |
>  ________________       ((o))   |
__________________
> |"NCR" KU440EX   |        |     |                          |"FRANKIE"
Pent III|
> |Celeron 266 MHz |        |     |                          |Mach Speed
694TAS |
> |384 MB RAM      |________|     |__________________________|1.1GHz
1.5GB RAM  |
> |                |wi0                                   rl0|NFS-Server
|
> |________________|192.168.1.106
10.0.0.101|__________________|
>=20
>=20
>=20
>=20
>=20
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
"freebsd-questions-unsubscribe@freebsd.org"
>=20
>
_______________________________________________
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to
"freebsd-questions-unsubscribe@freebsd.org"





Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5EEBE9C3C61D1142994C6B620C51E847110B80>