Hi jorge,

i have already tried that, and im getting the black screen also. But when we giv an enter after that, its suddenly tearing down the connection. For example when i giv,

Tlenet 192.168.1.1 from command line , im getting only black screen. Not getting login prompt. And the session disconnects immediately.

This is what i found.

yes, the telnet test is just for troubleshooting don't expect to get a login prompt, telnet test on port 22 just proves the outbound connection went through and accepted at the router end.., I don't think this could be frewall problem, you need to check on the router side or atleast try ssh client from another machine to try narrow down the problem.

Hi,

In the router i have enable both telnet and ssh. And we are able to telnet and ssh within that farm from router to router, not from behind pix. So the conf in router seems correct.

Leave ssh, now im trying to do telnet to router from behind pix. ie, like "telnet 192.168.1.1". Then i should be getting login prompt rite ?

But here also i'm getting Blank black screen. I believe u got the point now.

sudeep

I am interested in your statement in the original post that it was working until last week. Am I correct in understanding that until last week you were able to telnet and SSH through the PIX to these routers and successfully establish sessions?

There are several things that occur to me that could cause these symptoms. There could be a problem in translating addresses between your machine inside and the routers outside. Is there any possibility that your machine IP address has changed? If you can ping the routers that would seem to indicate that it is probably not an issue with translation.

It might also be an issue with allowing the telnet or SSH packets through the PIX or allowing the response packets from the routers to your machine. Are there any logs on the PIX that show these packets or that show translations being set up for them? Are there any log messages or debugs on the router that could show the attempt to connect to the router - this would establish that the packets are getting through the PIX?

It might also be that there is an access class applied to the routers on the vty lines which are not permitting your connection attempts. Can you verify whether the routers are configured with access-class under the vty lines? If so can you post the config of the vty lines and of the access list?

HTH

Rick

Hi,

The translation is working fine.

Also we are not getting any logs from pix showing the ssh access from pix inside. Also i have tried telnet ans ssh from diff machines from our vlan. Its not working.

I think the pix is resetting/timing -out the session b/t router and my machine.

Conf is correct in router as we can ssh and telnet from router farm ie, from router to router.