cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2123
Views
0
Helpful
1
Replies

connection error" connection refused" on ssh sessions

jahblessed0205
Level 1
Level 1

hi all,

 

i am receiving connection refused on my ssh sessions. i have redone my RSA keys and still same problem.....


Building configuration...

Current configuration : 2645 bytes
!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname Lab
!
boot-start-marker
boot-end-marker
!
logging message-counter syslog
logging buffered 64000
enable secret 5 $1$IjDg$vj14Kiby4ByikypGwD/SC.
enable password 7 09461E084C1C131705
!
aaa new-model
!
!
aaa authentication login default local
!
!
aaa session-id common
dot11 syslog
ip source-route
!
!
ip dhcp excluded-address 192.168.1.1
ip dhcp excluded-address 192.168.2.1
ip dhcp excluded-address 192.168.1.5
ip dhcp excluded-address 192.168.2.2
!
ip dhcp pool JAP
   network 192.168.1.0 255.255.255.0
   default-router 192.168.1.5
   dns-server 200.1.104.35 200.1.104.36
!
ip dhcp pool TEST
   network 192.168.2.0 255.255.255.0
   default-router 192.168.2.2
   dns-server 200.1.104.35 200.1.104.36
!
ip dhcp pool switch
   default-router 192.168.1.5
   dns-server 200.1.104.35 200.1.104.36
!
!
ip cef
ip domain lookup source-interface FastEthernet0/0
ip domain name cisco.com
ip name-server 200.1.104.35
ip name-server 200.1.105.36
multilink bundle-name authenticated
!
!
!
!
!
username jason privilege 15 password 7 060C00374D400710
username admin privilege 15 password 7 060C00374D400710
archive
 log config
  hidekeys
!
!
ip ssh version 2
!
!
!
interface FastEthernet0/0
 ip address 192.168.0.5 255.255.255.0
 ip nat outside
 ip virtual-reassembly
 duplex auto
 speed auto
!
interface FastEthernet0/1
 ip address 192.168.1.5 255.255.255.0
 ip nat inside
 ip virtual-reassembly
 duplex auto
 speed auto
!
interface FastEthernet0/1.1
 encapsulation dot1Q 1 native
 ip address 192.168.2.2 255.255.255.0
 ip nat inside
 ip virtual-reassembly
!
ip default-gateway 192.168.0.1
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 192.168.0.1
!
no ip http server
no ip http secure-server
!
ip nat pool Jason 192.168.1.1 192.168.1.200 prefix-length 24
ip nat inside source list 1 interface FastEthernet0/0 overload
ip nat inside source list 7 pool admin overload
ip nat inside source static tcp 192.168.1.5 33 interface FastEthernet0/0 3333
ip nat inside source static tcp 192.168.0.5 22 interface FastEthernet0/0 2222
!
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 1 permit 192.168.2.0 0.0.0.255
access-list 7 permit 192.168.1.0 0.0.0.31
access-list 7 permit 192.168.1.0 0.0.0.255
!
!
control-plane
!
!
line con 0
 password 7 09464F1A160B
 logging synchronous
line aux 0
line vty 0 4
 exec-timeout 15 0
 password 7 000E12150B55
 logging synchronous
 transport input ssh
line vty 5 15
 exec-timeout 15 0
 password 7 000E12150B55
 logging synchronous
 transport input ssh
!
scheduler allocate 20000 1000


Lab#show ip ssh
SSH Enabled - version 2.0
Authentication timeout: 120 secs; Authentication retries: 3
Minimum expected Diffie Hellman key size : 1024 bits

 

 

 

 


Lab(config)#crypto key zeroize rsa
% All RSA keys will be removed.
% All router certs issued using these keys will also be removed.
Do you really want to remove these keys? [yes/no]: y
Lab(config)#

 

i zero the rsa keys and still received the below:


Lab#show ssh
%No SSHv2 server connections running.
%No SSHv1 server connections running.

 

1 Reply 1

Hello.

All the vty lines might be busy. Try to clear them or reload the device.

PS: I see you deleted your ssh key, have you regenerated the key?

What is the source/destination (IP-address) of your SSH session?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco