From owner-freebsd-questions@FreeBSD.ORG Sat Jun 4 22:48:27 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 82D5916A41C for ; Sat, 4 Jun 2005 22:48:27 +0000 (GMT) (envelope-from greg@grokking.org) Received: from herbert.sohotech.ca (herbert.sohotech.ca [206.116.63.239]) by mx1.FreeBSD.org (Postfix) with ESMTP id 43E2543D49 for ; Sat, 4 Jun 2005 22:48:26 +0000 (GMT) (envelope-from greg@grokking.org) Received: from localhost (unknown [127.0.0.1]) by herbert.sohotech.ca (Postfix) with ESMTP id 62BF217F069 for ; Sat, 4 Jun 2005 15:48:26 -0700 (PDT) Received: from herbert.sohotech.ca ([127.0.0.1]) by localhost (herbert.sohotech.ca [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 65989-06 for ; Sat, 4 Jun 2005 15:48:25 -0700 (PDT) Received: from [192.168.1.6] (chomsky.sohotech.ca [192.168.1.6]) by herbert.sohotech.ca (Postfix) with ESMTP id 423DC175CE8 for ; Sat, 4 Jun 2005 15:48:25 -0700 (PDT) Message-ID: <42A22FBA.8040908@grokking.org> Date: Sat, 04 Jun 2005 15:48:26 -0700 From: "greg@grokking.org" User-Agent: Mozilla Thunderbird 1.0.2 (X11/20050513) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-questions@freebsd.org X-Enigmail-Version: 0.90.2.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Virus-Scanned: amavisd-new at sohotech.ca Subject: Re: inbound ssh ceased on 4 servers at same time X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 04 Jun 2005 22:48:27 -0000 John Brooks wrote: > sshd is running on the affected machines > > no errors on console or logs, just times out waiting for > the password prompt. interestingly: when investigating this > at the console, attempting ssh sessions from the db server > and backup server to the file server (these two are 'deeper' > in the network so there was never an occasion to ssh FROM > them before) produced the std warning about an unknown host > prompting for inclusion in the ~/.ssh/known_hosts file. > > dns is not really involved, the ssh session is sent to the > ip address directly as in "ssh john@10.3.3.10" > > ping works in both directions as does all other network > services (internal mysql, intranet http, pop3, smtp, smbd, > nmdb, dns). network hardware and cabling issues have been > effectively ruled out. > Have you tried ssh with the -vvv switch to get extra debugging info at the console? If there's anything happening with ssh, it should show up there, I'd expect. Are you testing to/from multiple hosts here? If so, what's different between each set of hosts you're testing? Hope that helps, G