Linux Debian 8 - SSH Connection

Availability for the Always-On Enterprise

Re: Linux Debian 8 - SSH Connection

Veeam Logoby PTide » Tue Oct 10, 2017 5:06 pm

Hi,

Please contact our support team on that matter and post your case ID.

Thank you
PTide
Veeam Software
 
Posts: 3311
Liked: 275 times
Joined: Tue May 19, 2015 1:46 pm

Re: Linux Debian 8 - SSH Connection

Veeam Logoby Gostev » Thu Nov 09, 2017 11:36 am

nlaurino wrote:The issue is still present in VEEAM Backup and Replication 9.5 w/SP2 We have two new Debian 8 machines that are showing this error when trying to configure the backups:
Warning Failed to create Granados SSH connection, switch to Renci SSH. Server does not support diffie-hellman-group1-sha1 for keyexchange

This is a different issue then, as we do support this cipher in 9.5U2. Indeed, just as the error says, the legacy Granados SSH client still does not support diffie-hellman-group1-sha1 - which is why we automatically failover to using Renci SSH client that does support one (Granados SSH client was left in the product as the first option for compatibility with really old Linux systems). So, whatever issue you're experiencing is not the same that started the thread (lack of support for modern ciphers).
Gostev
Veeam Software
 
Posts: 21648
Liked: 2433 times
Joined: Sun Jan 01, 2006 1:01 am
Location: Baar, Switzerland

Re: Linux Debian 8 - SSH Connection

Veeam Logoby PTide » Fri Nov 10, 2017 3:53 pm 1 person likes this post

nlaurino,

I've managed to test ssh connection with Debian 8 and VBR U2 and it works without any issues - adding linux host into console works, backup jobs work, guest processing works. It seems that there might be some misconfiguration on the ssh server side (Debian), because the error message clearly states that it's the server does not support diffie-hellman-group1-sha1. Have you tried to add these lines into the /etc/ssh/sshd_config file:

Code: Select all
KexAlgorithms diffie-hellman-group1-sha1,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha1
Ciphers 3des-cbc,blowfish-cbc,aes128-cbc,aes128-ctr,aes256-ctr


regen the keys:
Code: Select all
ssh-keygen -A


and restart sshd?

Also, what is the version of your ssh server?

Thanks
PTide
Veeam Software
 
Posts: 3311
Liked: 275 times
Joined: Tue May 19, 2015 1:46 pm

Previous

Return to Veeam Backup & Replication



Who is online

Users browsing this forum: Exabot [Bot], Majestic-12 [Bot] and 1 guest