Forum Discussion

Nimbostratus

Feb 09, 2024

SSH proxy KO

Hello,

I configured an SSH proxy on our F5 BIG IP.

I follow all instructions of https://techdocs.f5.com/kb/en-us/products/big-ip-afm/manuals/product/network-firewall-policies-implementations-12-1-0/13.html.

When I test the connection, I have the message "Network error: Software caused connection abort"

On F5, I see this log at each request:

err sshplugin[14513]: SSHPLUGIN: sshplugin_0|SSHPlugin|sshplugin_client_handler|Core|Error listening to socket: ECDSA, DSA, or RSA host key file must be set

I check on the F5, I could connect to the final server on sftp with the right key exchange (we use ECDSA and not RSA). The key is in the known_hosts file with the right key and IP.

I must forget something but I don't know what.

Thanks in advance for your help!

security

No RepliesBe the first to reply

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SSH proxy KO

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Proxy Protocol v2 Initiator

SSH proxy not working

Enable telnet on SSH

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

Seeking Guidance on Enabling Telnet Access via SSH Proxy Using F5 BIG-IP LTM

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS