LMS SSH sessions on ACE

Similar Messages

• LMS 3.2 doesn't terminated SSH sessions on ACE

  Hi all,
  the customer has a problem with LMS 3.2. This software doesn't terminate ssh sessions created by LMS on ACE. All ssh sessions still exist on ACE, so no new  ssh session can be created until the administrator manually clear these session on ACE. Thank you for your advice.
  Roman

  Hi Gaganjeet,
  thank you very much for your reply. But I think, that this problem is with LMS, because I used some manually created SSH sessions on ACE an these sessions was terminated correctly. I'm sending you the output from one ACE module:
  ace1/Admin# sho ssh session-info
  Session ID     Remote Host         Active Time        
  789            10.210.40.41:24389   280: 2:14          
  3946           10.210.40.41:37910   160:47:13          
  7394           10.210.40.41:46981   256:46:54          
  11129          10.210.40.41:11010   136:46:43          
  11651          10.210.40.41:11295   136:40:53          
  14651          10.210.40.41:20522   232:46:45          
  15143          10.210.40.41:20759   232:42:26          
  18317          10.210.40.41:32636   112:47: 5          
  19061          10.210.40.41:35109   112: 2:25          
  19152          10.210.40.41:35240   112: 0:20          
  21886          10.210.40.41:42629   208:47: 1          
  22383          10.210.40.41:42839   208:43:14          
  25713          10.210.40.41:7305    88:47: 4           
  28996          10.210.40.41:48379   400:47: 8          
  29105          10.210.40.41:16016   184:47:16          
  29579          10.210.40.41:16193   184:44:15         
  You can see that there are a lot of ssh sessions from LMS (10.210.40.41) with the long active time.:-(
  Best regards
  Roman

• ACE 4710. Unable to clear ssh sessions

  Hi.
  Once in the CLI of an ACE 4710, using the command "clear ssh session id" I am unable to clear/kill any of the remote ssh sessions established.
  According to the administration guide, the "clear ssh .." command must clear the sessions, but it does not, or maybe I am missing something?
  http://www.cisco.com/en/US/docs/app_ntwk_services/data_center_app_services/ace_appliances/vA1_7_/configuration/administration/guide/access.html#wp1050335
  /* Style Definitions */
  table.MsoNormalTable
  {mso-style-name:"Tabla normal";
  mso-tstyle-rowband-size:0;
  mso-tstyle-colband-size:0;
  mso-style-noshow:yes;
  mso-style-priority:99;
  mso-style-qformat:yes;
  mso-style-parent:"";
  mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
  mso-para-margin:0cm;
  mso-para-margin-bottom:.0001pt;
  mso-pagination:widow-orphan;
  font-size:11.0pt;
  font-family:"Calibri","sans-serif";
  mso-ascii-font-family:Calibri;
  mso-ascii-theme-font:minor-latin;
  mso-fareast-font-family:"Times New Roman";
  mso-fareast-theme-font:minor-fareast;
  mso-hansi-font-family:Calibri;
  mso-hansi-theme-font:minor-latin;}
  ACE/CONTEXTO_A# show ssh session-info
  Session ID     Remote Host         Active Time
  13728          222.98.54.158:50556   67:43:38
  13732          200.44.158.70:46172   67:43:36
  13735          200.44.158.70:46174   67:43:36
  13737          200.44.158.70:46177   67:43:36
  ACE/CONTEXTO_A#
  ACE/CONTEXTO_A# clear ssh 13728
  ACE/CONTEXTO_A# clear ssh 13732
  ACE/CONTEXTO_A# clear ssh 13735
  ACE/CONTEXTO_A# clear ssh 13737
  ACE/CONTEXTO_A# show ssh session-info
  Session ID     Remote Host         Active Time
  13728          222.98.54.158:50556   67:43:54
  13732          200.44.158.70:46172   67:43:52
  13735          200.44.158.70:46174   67:43:52
  13737          200.44.158.70:46177   67:43:52

  Hello,
  Seems to be working for me in my tests.  Works in the Admin context and a user context, and when clearing connections from console connection or one of the SSH sessions.
  ace-appliance-15/CTX1# sho ssh sess
  Session ID     Remote Host         Active Time
  24705          161.44.77.245:1586     0: 1:42
  25100          161.44.77.245:1589     0: 0:27
  25116          161.44.77.245:1590     0: 0:16
  ace-appliance-15/CTX1# clear ssh 25116
  ace-appliance-15/CTX1#
  ace-appliance-15/CTX1# sho ssh sess
  Session ID     Remote Host         Active Time
  24705          161.44.77.245:1586     0: 2: 5
  25100          161.44.77.245:1589     0: 0:50
  What version of software are you running on your 4710?  I am running the latest A3(2.4).  Can you try this version?
  Thanks,
  Sean

• ACE 4710 fills up with unexplained 127.0.0.1 SSH sessions

  What could be the cause of such SSH management sessions:
  ACE/Admin# sh ssh session-info
  Session ID     Remote Host         Active Time
  21763          127.0.0.1   :11034   -347:-22: 9
  Such 127.0.0.1 originated SSH sessions are constantly filling the maximum amount of SSH management sessions (16), and block out actual remote management!

  Hello, Timo Miiluvaara,
  What is the software version ?
  If it is A3.(2.3) or earier release, and you are using SSL feature also managing the appliance via DM,
  you might hit a bug below.
  CSCtc13377
  http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtc13377
  Regards,
  Kim

• Screen Sharing and SSH sessions freeze occasionally on multiple mac minis

  I have 28 Mac Minis at work. With such a large number of minis, I obviously can't have a monitor attached to each of them so I've got them plugged into a network switch and access them via Screen Sharing (both via regular Screen Sharing and ARD) and SSH sessions.
  A few of them seem to suffer from intermittent problems however. I'll be using Screen Sharing when the session freezes. It may unfreeze eventually, but I can also usually just quit out and re-connect and it will be unfrozen. The same thing happens when I'm connected via SSH, it will freeze and I won't be able to type in any more commands.
  I need help troubleshooting (or if anyone knows what could be causing this, that'd be cool too).
  I've tried connecting from both a Mac Pro on the wired network and a MacBook Pro on the wireless network. The freezing seems to only happen on certain Mac Minis as well.
  I've tried switching network cables from a Mac Mini that doesn't suffer from this problem with one that does and nothing changed.
  I also thought it might be a bandwidth issue at first, despite being a gigabit switch connected via cat6 to the rest of our gigabit network, but even when no significant bandwidth is being used, the freezing still occurs.
  One more thing I want to test is the connection between the switch all these Mac Minis is plugged into and one of the other switches that all our other network traffic goes through. I didn't set it up myself so I fear that it might be an old, damaged cable or something. Failing that, I have no idea what the problem could be, which is why I'm posting here.
  So, does anyone have any idea what the problem could be? Or any other ideas for troubleshooting the problem? Thanks.
  (They're all running 10.6.8, and range from Mid-2007 to 2009 models).

  It would be in the system log. However, the next step would be to safe-boot in order to eliminate third-party system modifications. That goes for both client and server. If you can reproduce the problem in safe mode, then you probably have a network issue. Take everything offline except one client and one server, and test.

• Capture ssh sessions in the background

  Hi together,
  i would like to capture all ssh-session (hidden in the background) on a solaris 10 server.
  I hade some tries with /usr/bin/script -a <somewhere> in the .bash_profile but this is not what i need. e.g. "exit" exits the script and not the session.
  do you have some clever idea how to solve the issue?
  i can�t find any helpful tool.
  chears, claudius

  No, i have a System where some users get the possibility to access the server by ssh. To have a control, what the user did - and do have a verification when he did something wrong - i would like to have a possibility to see what he did within the session (e.g. editing a configfile) I had some tries with "script" and other little OS-tools but, i was�nt able to find a perfect sollution.
  Perfect meens - it�works and it is not vissible for the user.

• How to reconnect to a disconnected remote ssh session on solaris 10

  hi all
  How to reconnect to a disconnected remote ssh session on solaris 10
  is there a way to accomplish this

  No, there's not.
  A common solution for this is to get a copy of 'screen'. After connecting via ssh (or any other protocol), you can start a "screen" session. If you get disconnected (or disconnect intentionally), you can later come back on the machine and bring your existing "screen" session back.
  Darren

• SSH sessions over Putty die unexpectedly & commandline entry is slow

  I have a Sun Ultra-60 running Solaris 9 at patch level 118558-05. Users of this server report that their ssh sessions over Putty to this server die unexpectedly anywhere from one to two times per week. The users are usually in a vim session at the time editing php files for the website hosted on the system. Another problem reported is that the user's command line input slows dramatically and they must wait for the server to complete the line they were typing prior to proceeding.
  I cannot find the source of this problem. To date, the following is what I have tried in my troubleshooting efforts.
  1) ptdiag - reports no hardware failures
  2) /var/adm/messages - reports no issues relating to the problem mentioned above.
  3) swap -l - the server has plenty of swap and shows no need for additional swap space Here is the output from swap -l
  swapfile dev swaplo blocks free
  /dev/vx/dsk/swapvol 213,6 16 8389632 8358176
  I should also mention that /tmp is not full and is currently only at 2% of it's capacity.
  4) ndd shows that the link speed, duplex, etc. are correct at 100Mbps full-duplex.
  5) System uptime is at 337 days and the uptime command currently shows the following load: load average: 0.12, 0.11, 0.09
  6) vxdisk list shows the two internal mirrored disks as being online and no errors. iostat -En shows no soft or hard errors on the two disks
  7) This server only has two users and the main applications in use are mysql and apache.
  8) I have upgraded to the latest version of the vim editor and the problem still persists. I have also had the users upgrade to the latest version of Putty and to turn on the logging feature of Putty which hasn't revealed any information as to why the sessions are unexpectedly terminating.
  9) I have checked the /etc/default/login setting for the "TIMEOUT" variable which is commented out. I also checked the users profiles and verified that there are no timeout variables defined.
  10) Here is my netstat -i output:
  Name Mtu Net/Dest Address Ipkts Ierrs Opkts Oerrs Collis Queue
  lo0 8232 loopback localhost 52375982 0 52375982 0 0 0
  qfe0 1500 servername servername 2319804623 29884 1493848177 0 0 0
  qfe1 1500 servernamea servernamea 231550668 0 3694 0 0 0
  qfe2 1500 servernameb servernameb 40944152 1 65630146 0 0 0
  Some of these numbers look high, but I don't see any collisions.
  Any help would be appreciated. If additional commands need to be run, please advise and I will gladly post.
  Thanks much for any assistance.

  Hi Darren,
  The user's vim session dies when the users are actively typing.
  As for there being a firewall or NAT device between the workstation and the server, yes, there is. The users are in one building and the server is housed in a datacenter in a separate building. The users do not have this issue with out other Solaris 8 and Solaris 10 servers...only this one particular server. A traceroute to the server takes only 5 hops and returns quickly.
  As for the logs, I just checked /var/adm/messages and it is reporting the following types of messages over and over.:
  [ID 317013 daemon.notice] bpcd[11746] from some IP
  I think these messages are generated from Veritas Netbackup which is administered by a separate team than what I am on, but I can have them investigate.

• Error on sessioning into ACE module

  Hi,
  I am getting the below error on sessioning into ACE module in CAT 6500.
  6509A#session sl 2 pr 1
  The default escape character is Ctrl-^, then x.
  You can also type 'exit' at the remote prompt to end the session
  Trying 127.0.0.21 ...
  % Connection timed out; remote host not responding
  Slot 2 is the ACE module. Please assist.

  Ok. It is working now. The processor should be '0'. Could anyone please explain the significance of the processor # in session slot command.
  Regards.

• Slow download in ssh session

  Hi, I hope someone could shed some light on this one...
  The setup: 2 boxes, one acting as ssh client, the other one as ssh server.
  The problem: When I ssh to my box on the internet, any download initiated through ssh is painfully slow, only about 40 or 50 KB/s. Only when I download or upload files from/to this box without ssh, the speed is normal, that is a few MB/s.
  Examples:
  From my client box:
  scp filename servername:~
  The file is uploaded fast, as expected.
  From my client box:
  wget servername/somefile
  The file is downloaded fast, as expected.
  From my server box:
  wget somefile_on_internet
  or
  pacman -Syu
  Download is fast only if I do this from local session (with keyboard attached to the server directly). When I do the same from ssh session, download is slow.
  In any other aspect, ssh is working fine, I don't have any noticeable delay when typing and executing commands.
  Thanks!
  Last edited by mico (2013-06-12 19:01:52)

  I am using ecdsa. I am not sure about the key length, but judging from file size I think it is 521 bits.
  I checked CPU usage on the server while downloading through ssh, and it is almost zero, 99% idle. Same on the client.
  Last edited by mico (2013-06-12 19:35:48)

• Ufsdump acros ssh session seems to get corrupted

  Hi,
  I am trying to perform a ufsdump to a remote tape device by piping it through an ssh session to a server with an LTO drive locally attached.
  ie. ufsdump 0uf - / | ssh tapedump@tapeserver /usr/bin/dd bs=32k "of=/dev/rmt/0un"
  It completes succesfully but when I go to do a ufsrestore on the tape server I get errors such as:
  "Media read error: not enough space"
  "Read error while restoring <directory file - name unknown>
  just wierd stuff like this so I am suspecting corruption.
  I really don't want to use rmt if at all possible :-)
  The user "tapedump" is a member of the local "sys" group on the tape server.
  If (as root) I run a similar command on the tape server
  ie. ufsdump 0uf - / | /usr/bin/dd bs=32k "of=/dev/rmt/0un"
  but ofcourse not using ssh it works a treat, no errors when using ufsrestore.
  Any ideas anyone? Anyone done this sort of thing before ?
  Cheers
  Rob

  Tried the ufsrestore command below with blocking factor of 64 which I believe is correct (512byte records * 64 = 32k)
  # ufsrestore ibf 64 /dev/rmt/0
  However it produces the error:
  resync restore, skipped 11 blocks
  resync restore, skipped 225 blocks
  resync restore, skipped 4 blocks
  resync restore, skipped 10 blocks
  resync restore, skipped 10 blocks
  resync restore, skipped 10 blocks
  resync restore, skipped 20 blocks
  resync restore, skipped 22 blocks
  resync restore, skipped 10 blocks
  Bus Error (core dumped)
  Not specifying a blocking factor at all (ie. ufsrestore if /dev/rmt/0) which I assume should default to 32K yeah, produces the error
  "Read error while restoring <file removal list>"

• Using Start-Job to launch multiple SSH sessions and esxtop?

  Hello folks,
  I am trying to start an esxtop session on multiple esx servers at the same time.
  I started trying using Start-Job thinking it would help do it asynchronously.
  The script I have below works on one host so far, but need suggestions to repeat it for multiple hosts, thinking by looping through changing the $i each time?
  Checking if anyone would have comment?
  $i = 1
  $seconds = 5
  $iterations = 2
  $esxtopfile = "esxtop$i_$((Get-Date).ToString('MMddyyy-hhmm')).csv"
  $ComputerName = "z420esxi$i.domain.net"
  # Start an esxtop session using SSH.net and start an esxtop command - module already loaded.
  $sb = {New-SshSession -ComputerName $($args[0]) -KeyFile C:\esxi-key-openssh.key -Username root
         Invoke-SshCommand -ComputerName $($args[0]) -command "esxtop -d $($args[1]) -a -b -n $($args[2]) > /tmp/$($args[3])"     
  Start-Job  -ScriptBlock $sb -ArgumentList $ComputerName,$seconds,$iterations,$esxtopfile | Wait-Job | Receive-Job