Search

1 to 10 of 29
Sort by

Discussion Reply
RE: SSH arriving on ephemeral ports on MX80, above 10000 -- ssh block filters not effective.

Hi akushner After I use your command the result to me surprise that there are many many connection to 830 port in this router from outside source and to many gateway IPs of the VLans setting up in this system. Then I blocked the 830 port from outside, which immediately reduce the CPU usage to be...


Discussion Reply
RE: SSH arriving on ephemeral ports on MX80, above 10000 -- ssh block filters not effective.

show system connections - will show you used ports. If netconf enabled in system , it will use port 830 (be default), and also will be displayed as ssh in processes -- Anatoliy --


Discussion Reply
RE: SSH arriving on ephemeral ports on MX80, above 10000 -- ssh block filters not effective.

Hello CuddlyVampire Do you resolve this matter? I also can not totally block the SSH login attempt in my route. Which each the CPU much. I running Junos: 17.4R3.16 > show system processes extensive | match ssh | count Count: 151 lines I have add the filter on the lo0 interface of this...



Discussion Post
Veriexec in Junos

Hello everyone, I can't connect to an MX104 through ssh. On the logs, I can see this message: Sep 5 15:45:39 MX104 Maquette /kernel: veriexec: fingerprint for file='/usr/sbin/sshd' fsid=77 fileid=70908 gen=1 uid=0 pid=47044 does not match loaded value I understand that veriexec...


Discussion Post
SSH arriving on ephemeral ports on MX80, above 10000 -- ssh block filters not effective.

Anyone else seeing log messages of late where SSH attempts are being received on NON ssh ports somehow? Only a full port block to the router's interfaces are effective: rtredge-[98208]: Failed password for [some name]from [multiple IP addresses] port [above 10000] ssh2 Is there...



Discussion Post
MX10003 SSH issues / SSHD

Hello community I have a Juniper MX10003 (running 17.4R2.4) that suddenly stopped to reply ssh login requests, only Telnet is allowed. I can see dozens of sessions on " show system users " output. I am trying to remove them manually but SSH still does not work. There are...



Discussion Post
Restricting access to in-band SSH on EX2300-C based on a prefix-list as a "whitelist"

Hi all! I'd really appreciate some insight. I'm trying to do something I can do very easily in Cisco IOS but apparently cannot do easily in Junos on this switch. I have an EX2300-C (the compact switch, not the full size 1U model) and need to use in-band management with a public IP...