Dear All,
After configuring IPMP in 2 fresh Servers (T5520 and T2000) I can't login in any of them using SSH, I can login by serial console then I had to enable Telnet to access.
IPMP works fine.
This is the error in /var/adm/messages:
Code:
sshd[1071]: Failed password for lvalle from 172.28.12.95 port 50532 ssh2
lag-pro-cdrs-01-e1000g0 deprecated -failover netmask + broadcast + group ipmp up addif lag-pro-cdrs-01 netmask + broadcast + up
/etc/hostname.e1000g2:
Code:
lag-pro-cdrs-01-e1000g2 deprecated -failover netmask + broadcast + group ipmp up
This is the network configuration:
Code:
-bash-3.2# ifconfig -a
lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
inet 127.0.0.1 netmask ff000000
e1000g0: flags=9040843<UP,BROADCAST,RUNNING,MULTICAST,DEPRECATED,IPv4,NOFAILOVER> mtu 1500 index 2
inet 172.28.11.82 netmask ffffff80 broadcast 172.28.11.127
groupname ipmp
ether 0:14:4f:ae:2d:b0
e1000g0:1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
inet 172.28.11.81 netmask ffffff80 broadcast 172.28.11.127
e1000g2: flags=9040843<UP,BROADCAST,RUNNING,MULTICAST,DEPRECATED,IPv4,NOFAILOVER> mtu 1500 index 3
inet 172.28.11.83 netmask ffffff80 broadcast 172.28.11.127
groupname ipmp
ether 0:14:4f:ae:2d:b2
I'll appreciate your advice in this regard.
---------- Post updated at 04:37 PM ---------- Previous update was at 03:37 PM ----------
Self solved
I'm not sure whether was related to the password complexity (/etc/default/passwd), or the fact my user ID was 0 same as root and in /etc/ssh/sshd_config PermitRootLogin was set to "no".
Strange thing login only failed after configuring IPMP.
So you now know where to look if you have this problem I think it was the UID 0 stuff.
Hi all...........
I work for a big french car manufacturer.
I'm supposed to put up a secure protocol, that means ssh. I'm looking for free ssh codes and binaries, and the install and config of it...
Any help would be great...
:confused: :confused: :confused:
Thanx
Jason (3 Replies)
Hi all!
I'm new to the SSh concept, and i'm supposed to install SSH over 400 servers.
I found out how to generate all the keys and the passphrases ( you'll say that ain't that hard!).
But now, i just can't get the thing to start. I started sshd on both of my test servers, and on one of 'em, i... (1 Reply)
Hi
I am setting up a test server for actual 2 node servers which will be behind load balancer. I will not be using sun cluster at all. The test machine is installed with solaris 10.
I am not sure how to setup a test env of 2 nodes on only 1 node..may be creating 2 zones on test server will... (8 Replies)
Hi All,
I have unplumbed one interface.
after that ifconfig -a shows that
lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
inet 127.0.0.1 netmask ff000000
e1000g0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
... (7 Replies)
I have downloaded the Putty SSH configuration. I have entered my Host name as illinois.engr.sjsu.edu and i am trying to save that. But i am unable to save.
Also i opened the session and entered my log in name
But it says using keyboard interactive authentication.I am not able to get into $
... (1 Reply)
Hello all
I have question regarding the id_dsa keys and authorized_keys file in .ssh directory.
I know if we try to SFTP, id_dsa.pub file on server1 will be verified with contents of authorized_keys on other server and SFTP will happen once verification passes.
No i want to use id_dsa1.pub... (1 Reply)
why I can login by telnet using root account
but when i use login by ssh using root account
it is not successful ,is it different password
i am sure ssh service is started (2 Replies)
I'm trying use 'sed' to change a line on sshd_config file. But the problem is sshd_config file can be two different locations.(eg: /etc/ssh/sshd_config or /usr/local/ssh/sshd_config)
Was wondering how to write a shell script to search or mention the sshd_config location? (3 Replies)
Discussion started by: pjeedu2247
3 Replies
LEARN ABOUT DEBIAN
rlm_ippool_tool
RLM_IPPOOL_TOOL(8) System Manager's Manual RLM_IPPOOL_TOOL(8)NAME
rlm_ippool_tool - dump the contents of the FreeRadius ippool database files
SYNOPSIS
If an ipaddress is specified then that address is used to limit the actions or output.
rlm_ippool_tool [-a] [-c] [-o] [-v] session-db index-db [ipaddress]
Mark the entry nasIP/nasPort as having ipaddress
rlm_ippool_tool -n session-db index-db ipaddress nasIP nasPort
Update old format database to new.
rlm_ippool_tool -u session-db new-session-db
DESCRIPTION
rlm_ippool_tool dumps the contents of the FreeRADIUS ippool databases for analyses or for removal of active (stuck?) entries.
Or with the -n argument adds a usage entry to the FreeRADIUS ippool databases.
OPTIONS -a Print all active entries.
-c Report number of active entries.
-r Remove active entries.
-v Verbose report of all entries.
-o Assume old database format (nas/port pair, not md5 output).
-n Mark the entry nasIP/nasPort as having ipaddress.
-u Update old format database to new.
EXAMPLES
Given the syntax in the FreeRadius radiusd.conf:
ippool myippool {
range-start = 192.168.1.0
range-stop = 192.168.1.255
[...]
session-db = ${raddbdir}/ip-pool.db
ip-index = ${raddbdir}/ip-index.db
}
To see the number of active entries in this pool, use:
$ rlm_ippool_tool -c ip-pool.db ip-index.db
13
To see all active entries in this pool, use:
$ rlm_ippool_tool -a ip-pool.db ip-index.db
192.168.1.5
192.168.1.82
192.168.1.244
192.168.1.57
192.168.1.120
192.168.1.27
[...]
To see all information about the active entries in the use, use:
$ rlm_ippool_tool -av ip-pool.db ip-index.db
NAS:172.16.1.1 port:0x2e8 - ipaddr:192.168.1.5 active:1 cli:0 num:1
NAS:172.16.1.1 port:0x17c - ipaddr:192.168.1.82 active:1 cli:0 num:1
NAS:172.16.1.1 port:0x106 - ipaddr:192.168.1.244 active:1 cli:0 num:1
NAS:172.16.1.1 port:0x157 - ipaddr:192.168.1.57 active:1 cli:0 num:1
NAS:172.16.1.1 port:0x2d8 - ipaddr:192.168.1.120 active:1 cli:0 num:1
NAS:172.16.1.1 port:0x162 - ipaddr:192.168.1.27 active:1 cli:0 num:1
[...]
To see only information of one entry, use:
$ rlm_ippool_tool -v ip-pool.db ip-index.db 192.168.1.1
NAS:172.16.1.1 port:0x90 - ipaddr:192.168.1.1 active:0 cli:0 num:0
To add an IP address usage entry, use:
$ rlm_ippool_tool -n ip-pool.db ip-index.db 192.168.1.1 172.16.1.1 0x90
rlm_ippool_tool: Allocating ip to nas/port: 172.16.1.1/144
rlm_ippool_tool: num: 1
rlm_ippool_tool: Allocated ip 192.168.1.1 to client on nas 172.16.1.1,port 144
SEE ALSO radiusd(8)AUTHORS
Currently part of the FreeRADIUS Project (http://www.freeradius.org) Originally by Edwin Groothuis, edwin@mavetju.org
(http://www.mavetju.org)
Mailing list details are at http://www.freeradius.org/
RLM_IPPOOL_TOOL(8)
01-23-2013
