asa5510 v8 - ssh connection is immediately reset

george · ‎02-24-2009

i have an asa 5510 that i'm trying to ssh into. here is what packet capture shows:

9: 06:57:06.455329 10.10.20.11.2099 > 192.168.0.1.22: S 2708005213:2708005213(0) win 65535 <mss 1380,nop,nop,sackOK>

10: 06:57:06.455420 192.168.0.1.22 > 10.10.20.11.2099: S 4114938244:4114938244(0) ack 2708005214 win 8192 <mss 1380>

11: 06:57:06.460318 10.10.20.11.2099 > 192.168.0.1.22: . ack 4114938245 win 65535

12: 06:57:06.460715 192.168.0.1.22 > 10.10.20.11.2099: R 4114938245:4114938245(0) ack 2708005214 win 65535

i have no idea why connection is reset immediately. i have:

ssh 10.10.20.0 255.255.255.0 ptp

so ssh from that that subnet on that interface is allowed.

anybody has any ideas?

thanks.

Ivan Martinon · ‎02-24-2009

Does the ASA log anything to its log when dropping this connection?

george · ‎02-24-2009

i looked at the syslog and the only info i can see is connection being built and the immediately it goes into teardown...

Ivan Martinon · ‎02-24-2009

Can you debug ssh on the ASA and post it here? also can you check the rsa keys?

george · ‎02-24-2009

rsa keys should be fine since i can ssh from 192.168.0.0 subnet. and as far as debuging goes i'll have to console into the device...

any other ideas?

thanks.