wireshark ssh remote connect on linux server


First, install the optional component from Tools section of Wireshark installer


Then, select config gear of the SSH remote capture from the welcome screen


Configure the following information:
    
    Server ip/hostname and port

    Remote user name and private rsa key in OpenSSH format (use puttygen > conversions > export openssh key)
 (user and password should work too)
You shouldn't have to change anything in Capture tab

If you get an error linked to Kex algos:

Error by extcap pipe: 
** (sshdump.exe:8216): WARNING **: Error creating connection.

** (sshdump.exe:8216): WARNING **: Connection error: kex error : no match for method kex algos: server [curve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group16-sha512,diffie-hellman-group18-sha512,diffie-hellman-group14-sha256], client [diffie-hellman-group14-sha1,diffie-hellman-group1-sha1]

You have to add the requested algorithms to the server or client.
I've handled it adding this line to /etc/ssh/sshd_config on the server:

KexAlgorithms +diffie-hellman-group1-sha1

Then reload the ssh server









Comments

Post a Comment

Popular posts from this blog

Resolve "Cannot download packages whilst offline" issue in Deja-Dup backup software

If you got the error message "Cannot download packages whilst offline" but your internet connection is active, this is probably because you've managed the network configuration yourself and the network manager is reporting an offline status even if it's not correct. To fix this issue, simply edit the file /etc/NetworkManager/NetworkManager.conf and change the following configuration to be inline with: [ifupdown] managed=true Then restart the Network Manager : sudo service NetworkManager restart #1
Read more

ubuntu 20.04 / netplan / change mac address and static ip

I wasn't able to set together a virtual mac address and a static IP using netplan: either the mac address didn't change, or IP was not set. I finally got the trick using a fake nic definition that matches the new virtual mac address I've set.    network:   renderer: networkd   ethernets:     ens160:       match:         macaddress: 00:0c:29:5a:69:00       macaddress: 00:50:56:0c:de:a6     ens160_2:       match:         macaddress: 00:50:56:0c:de:a6        addresses: [ 139.99.5.72/32 ]       nameservers:         addresses: [ 8.8.8.8 ]       routes:       - to: 0.0.0.0/0         via: 139.99.5.254         on-link: true     ens192:       addresses: [192.168.103.14/24]       #dhcp4: true   version: 2
Read more