ssh_exchange_identification: read: Connection reset by peer
SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
ssh_exchange_identification: read: Connection reset by peer
I'm trying to connect to a server (Slack64 13.37) in the US from Italy. The server has been running for a long time, and I was able to connect to it last week from Italy. Now it is giving me this error (full output of ssh -vv pasted below). The http server on the same computer is responding normally. Unfortunately there is no one that can physically access the computer to troubleshoot or restart. I have tried also with a clean .ssh directory.
If I try to access the server with an Android device, it goes so far as to request a password (something it does not do from the Linux client), and then fails with the message java.net.SocketException:recvfrom failed ECONNRESET (Connection reset by peer).
Any idea what could be causing this? Am I screwed until someone can physically access the server?
Thanks for any ideas,
Brian
Code:
OpenSSH_6.4, OpenSSL 1.0.1e 11 Feb 2013
debug1: Reading configuration data /etc/ssh/ssh_config
debug2: ssh_connect: needpriv 0
debug1: Connecting to my.net [xx.xx.xx.xx] port 22.
debug1: Connection established.
debug1: identity file /home/me/.ssh/id_rsa type -1
debug1: identity file /home/me/.ssh/id_rsa-cert type -1
debug1: identity file /home/me/.ssh/id_dsa type -1
debug1: identity file /home/me/.ssh/id_dsa-cert type -1
debug1: identity file /home/me/.ssh/id_ecdsa type -1
debug1: identity file /home/me/.ssh/id_ecdsa-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_6.4
ssh_exchange_identification: read: Connection reset by peer
It's hard to know for sure (without viewing the OpenSSH server logs), but it appears to be deliberately sending you an RST packet. You could easily verify that with tcpdump(8).
At this point - who knows? Could be access control (e.g. TCP wrappers, AllowUsers directive), the OpenSSH server having any number of issues (e.g. due to physical disk, filesystem, permissions problems), or even a marginal network device at some point along the way.
Without 1) physical access; or 2) DRAC / ILOM access, this is going to be tricky to troubleshoot and resolve.
ssh_exchange_identification: read: Connection reset by peer
I know this thread is old but I was having the same problem and this was one of the first things to come up in a google search.
FWIW, in my case, the problem was the target (setup long prior to my assuming Admin duties) was also using hosts.allow/deny for SSH connections, as well as the firewall. We recently had a change of the IP range for the entire organization and though I modified iptables for the new range, hosts.allow/deny of course still was in the way.
Even more confounding, some machines are in DNS now, but others are not, so only the machines in DNS were blocked. Problems that only occur SOMETIMES are the worst!
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.