meta data for this page
  •  

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
sw:ssh:issues [2022/02/15 07:44] – created niziaksw:ssh:issues [2023/07/14 15:29] (current) niziak
Line 1: Line 1:
 ====== Issues ====== ====== Issues ======
 +
 +===== debug1: expecting SSH2_MSG_KEX_ECDH_REPLY =====
 +
 +SSH hangs on ''debug1: expecting SSH2_MSG_KEX_ECDH_REPLY'' when using VPN (OpenVPN, MT Ipsec, ... doesn't matter).
 +
 +Not catched root issue yet. Internet says it is related to packet size. So some workaround sometimes works:
 +  - reducing MTU in interface
 +  - limiting Kex list (reduce packet size during exchange)
 +  - specifing cipher for connection
 +
 +
 +<code bash>ip li set mtu 1400 dev wlan0</code>
 +
 +<code bash>ssh -c aes256-gcm@openssh.com host</code>
 +
 +<code bash>
 +ssh -o KexAlgorithms=ecdh-sha2-nistp521 username@systemname
 +</code>
 +
 +<file config ~/.ssh/config>
 +KexAlgorithms ecdh-sha2-nistp521
 +</file>
 +
 +Source:
 +  * [[https://serverfault.com/questions/210408/cannot-ssh-debug1-expecting-ssh2-msg-kex-dh-gex-reply|Cannot SSH: debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY [closed]
 +]]
 +  * [[https://askubuntu.com/questions/1229456/ssh-fails-with-connection-timed-out-in-vpn-and-hangs-here-expecting-ssh2-msg|SSH fails with connection timed out - in VPN and hangs here "expecting SSH2_MSG_KEX_ECDH_REPLY" + Ubuntu 16.04.6 LTS]]
  
 ===== X11 forwarding request failed on channel 0 ===== ===== X11 forwarding request failed on channel 0 =====