For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

gongya's avatar
gongya
Icon for Altocumulus rankAltocumulus
Feb 23, 2024

virtual server forward 22 to 2022

when I connected to the virtual server on port 22, I got the following:

ssh_exchange_identification: read: Connection reset by peer

when I used -vvv, I got the following:

OpenSSH_7.2p2 Ubuntu-4ubuntu2.8, OpenSSL 1.0.2g  1 Mar 2016
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug2: resolving "10.10.10.10" port 22
debug2: ssh_connect_direct: needpriv 0
debug1: Connecting to 10.10.10.10 [10.10.10.10] port 22.
debug1: Connection established.
debug1: identity file /home/gongya/.ssh/id_rsa type 1
debug1: key_load_public: No such file or directory
debug1: identity file /home/gongya/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/gongya/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/gongya/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/gongya/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/gongya/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/gongya/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/gongya/.ssh/id_ed25519-cert type -1
debug1: Enabling compatibility mode for protocol 2.0
write: Connection reset by peer

Anyone has clue ?
thanks a lot !!

Virtual IP

4 Replies

  • gongya's avatar
    gongya
    Icon for Altocumulus rankAltocumulus
    Feb 23, 2024

    I did not many tests to notice the above is not relevant. It is related the special port ssh.

  • Cypher's avatar
    Cypher
    Icon for Cirrus rankCirrus
    Feb 23, 2024

    Is your destination pool cerrectly configured with (example) srvubuntu:2022 where 2022 is the port.

    i believe the virtual server only needs the tcp profiles, SNAT Automap for networks that are not directly connected,  persistence profile (if you load balance) and a Default Pool.

    • gongya's avatar
      gongya
      Icon for Altocumulus rankAltocumulus
      Feb 23, 2024

      All the configurations you mentioned are OK. 
      I need the virtual servers to serve multiple ports all of which need port forwarding,  ssh is one of them. 

      If I do not need port forwarding, all of them work fine, including ssh. But port forwarding does not work.

      thanks !! 

  • gongya's avatar
    gongya
    Icon for Altocumulus rankAltocumulus
    Feb 26, 2024

    thanks a lot for all the responses.  I have been working with F5 tech support for 2 days. I might come across some hypervisor issue. F5 Tech is suspicious of this after they reviewed qkview. I am waiting for their findings.