取消
显示结果 
搜索替代 
您的意思是: 
cancel
8752
查看次数
0
有帮助
13
回复

2960交换机出现了没见过的log,大神给看看

Mansur
Spotlight
Spotlight
交换机log如下:
bj-*******03#sh logging
Syslog logging: enabled (0 messages dropped, 0 messages rate-limited, 0 flushes, 0 overruns, xml disabled, filtering disabled)
<中间省略>
Log Buffer (4096 bytes):
tp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 07:23:53.029: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 08:19:09.046: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 08:19:50.465: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 08:20:39.146: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 08:21:17.478: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 08:23:27.383: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 08:25:10.506: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 09:36:04.463: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 09:41:06.872: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 10:46:15.427: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 12:23:55.985: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 10 12:25:53.181: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 11 05:49:34.197: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 11 05:56:50.479: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 11 05:57:18.267: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 11 05:59:30.867: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 11 06:44:14.850: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 11 06:56:10.026: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 12 10:23:12.778: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 17 10:18:50.913: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 17 10:22:12.012: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 17 10:23:54.050: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 17 10:25:31.742: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 17 10:26:08.396: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 17 10:31:28.594: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 17 10:36:38.144: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
.Jan 17 10:36:59.299: SSH2 0: kex algo not supported: client curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,di
------------------------------------------
大概查了下好像是跟openssh有关,但是我没配置过ssh。
而且这个log没有给出log的等级,不知道怎么回事。搜索引擎也没找到什么y
目前能看到的log信息出现在1月10号,11号,12号和17号,今天没有
能确定的是一个月前还没有这个log。然后最近三个月没修改过交换机配置:
show run 信息如下:
bj-*****03#sh run
Building configuration...
Current configuration : 4685 bytes
!
! Last configuration change at 16:41:20 Beijing Mon Oct 10 2016
! NVRAM config last updated at 16:31:19 Beijing Mon Oct 10 2016
!
version 12.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime localtime show-timezone
service password-encryption
!
hostname bj-shidc-s03
!
boot-start-marker
boot-end-marker
!
enable secret 5 $************
!
!
!
no aaa new-model
clock timezone Beijing 8
!
!
!
!
crypto pki trustpoint TP-self-signed-**********
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-**********
revocation-check none
rsakeypair TP-self-signed-*******
!
!
crypto pki certificate chain TP-self-signed-*******
certificate self-signed 01
**********************************************
**********************************************
4D1383C0 0D599FE6 A8
quit
spanning-tree mode pvst
spanning-tree extend system-id
!
!
!
!
vlan internal allocation policy ascending
!
!
interface FastEthernet0
no ip address
!
interface GigabitEthernet0/1
switchport mode access
spanning-tree portfast
<二层接口配置都是access 或trunk>
!
interface GigabitEthernet0/24
switchport mode trunk
spanning-tree portfast
!
interface GigabitEthernet0/25
!
interface GigabitEthernet0/26
!
interface Vlan1
ip address 10.*.*.* 255.255.255.0
!
ip default-gateway 10.*.*.*
ip http server
ip http secure-server
snmp-server community ** RO
snmp-server host 10.*.*.* **
!
line con 0
line vty 0 4
password **************
login
line vty 5 15
login
end
1 个已接受解答

已接受的解答

fortune
VIP Alumni
VIP Alumni
谷歌了下,没几个帖子,没看出来具体什么个情况

在原帖中查看解决方案

13 条回复13

fortune
VIP Alumni
VIP Alumni
谷歌了下,没几个帖子,没看出来具体什么个情况

one-time
Level 13
Level 13
感谢您的提问!:)稍后会有小伙伴为您解答的!:)

Mansur
Spotlight
Spotlight
haitang 发表于 2017-1-22 16:53
感觉是指 有个帐号在通过ssh登录你的设备
瞎猜的仅供参考

嗯,谢谢。我自己也模拟了,没有产生log...

zeroarynas
Level 1
Level 1
字面意思看上去貌似是什么算法不支持

Mansur
Spotlight
Spotlight
zeroarynas 发表于 2017-2-6 14:13
字面意思看上去貌似是什么算法不支持

看起来像是ssh什么不支持,不知道,我也没配置过

Cheng Yang
Level 1
Level 1
什么算法不支持

one-time
Level 13
Level 13
haitang 发表于 2017-1-22 16:53
感觉是指 有个帐号在通过ssh登录你的设备
瞎猜的仅供参考

:)感谢您的辛苦回答!20金钱已发放给您啦~~

one-time
Level 13
Level 13
vsop5207 发表于 2017-2-7 14:18
谷歌了下,没几个帖子,没看出来具体什么个情况

感谢您的回复!20金钱已经发放给您啦~~:)

one-time
Level 13
Level 13
yang_cheng 发表于 2017-2-7 15:49
什么算法不支持

感谢您的回复!20金钱已经发放给您啦~~:)

one-time
Level 13
Level 13
zeroarynas 发表于 2017-2-6 14:13
字面意思看上去貌似是什么算法不支持

感谢您的回复!20金钱已经发放给您啦~~:)

xuxianda7
Spotlight
Spotlight
这个日志是否对生产环境有影响? 查了下system log 没看到有用的东西,可以建议你升级一下IOS咯!

alan_huang
Level 1
Level 1
查了一下好像是curve25519-sha256@libssh.org這個client要用SSH去連2960但是他沒有2960的RSA key
可以先找出curve25519-sha256@libssh.org這個client看為什麼要去SSH 2960

Mansur
Spotlight
Spotlight
alan_huang 发表于 2017-2-12 11:43
查了一下好像是這個client要用SSH去連2960但是他沒有2960的RSA key
可以先找出這個client看為什麼要去SSH ...

这个应该是一个ssh的组织的邮箱的吧。。并不是客户。。2960在内网。
外网访问不到,我自己尝试ssh登陆的话,不会产生什么log,目前还没找到关于这个问题的原因。
不过看起来除了log有提示,其他没什么异常,谢谢大家
入门指南

使用上面的搜索栏输入关键字、短语或问题,搜索问题的答案。

我们希望您在这里的旅程尽可能顺利,因此这里有一些链接可以帮助您快速熟悉思科社区:









快捷链接