CommScope RUCKUS Community Forums

ohabib · ‎01-29-2023

I have one ICX7150 and two R510 AP .

ICX7150 - FW Version:09.0.10dT211 (SPS09010d.bin)

R510 - FW version: 200.13.6.1.319

R510 can't connect to the ICX switch and shows "ICX Switch is Connecting". It used to work with the old FW release, what is going on ? SSH is enabled, I can manually SSH to the Switch or AP

I saw a lot of other questions about the same topic but nothing there helped

Vásquez_Fer · ‎01-31-2023

Hi @ohabib

Hope you are doing well !

Could you please log in to the switch and provide me the following command :

Enable

show logging

Best Regards

Fernando Vasquez

ohabib · ‎01-31-2023

Hi @Vásquez_Fer

Below is the show logging

SSH@ICX7150-C12-SWITCH#show logging
Syslog logging: disabled ( 0 messages dropped, 0 flushes, 0 overruns)
Buffer logging: level ACDMEINW, 877 messages logged
level code: A=alert C=critical D=debugging M=emergency E=error
I=informational N=notification W=warning

Static Log Buffer:
Oct 06 19:50:30:I:System: Stack unit 1 POE PS 1, Internal Power supply with 124000 mwatts capacity is up

Dynamic Log Buffer (4000 lines):
Oct 06 17:54:42:I:sshd: Unable to negotiate with 192.168.1.3 port 41041: no matching host key type found. Their offer: ssh-rsa,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-dss
Oct 06 17:54:19:I:sshd: Unable to negotiate with 192.168.1.3 port 41040: no matching host key type found. Their offer: ssh-rsa,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-dss
Oct 06 17:53:57:I:sshd: Unable to negotiate with 192.168.1.3 port 41038: no matching host key type found. Their offer: ssh-rsa,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-dss
Oct 06 17:53:35:I:Security: Security: user r510 deleted by admin from SSH session. by admin user from ssh session

The concern I have is that I only have "admin" user not "super" -which is the default for the ICX switch. but when looking at the ip ssh. I see the 192.168.1.3 which is the R510 connection show up and disappears but trying to use "super" logging info. Not sure why is that, any idea ?

I tried to create user called "super" again but it does not let me chose the default password to create it

The last point here, From R510 Web interface, without having me going and manually adding the switch, it automatically seems to detect it and tries to connect to it but stays in "connecting state"

SSH@ICX7150-C12-SWITCH#show ip ssh

SSH-v2.0 enabled.
Connection Version Username IP Address
Inbound:
1 SSH-2 admin 192.168.1.16
2 SSH-2 super 192.168.1.3
Outbound:

ohabib · ‎01-31-2023

Syslog from R510 side shows it's trying to log in using super but I removed super default account not sure how to restore it

Jan 31 12:20:12 RuckusAP 1st Floor sys_wrapper: icx_test_default():ICXD: ICX[id=1]: 192.168.1.4: start to access ICX as user "super".

Vásquez_Fer · ‎01-31-2023

Hi @ohabib

Hope you are doing well !

1-Since your Switch is running 9010d the lasted version the SSH tunnel behavior is different on these versions in order to SYNC with the unleased .

Please run the following commands :

enable

config terminal

crypto key generate ec size 384

2-In order to re-create a username and password is using the following example:

Device>enable
Device#config terminal

3-Edit the current password and username

device(config)# username super password pass

Where the username is ’super’ and password ‘pass’

Best Regards

Fernando Vasquez

CommScope RUCKUS Community Forums

AP R510 can't connect to ICX7150 "ICX Switch is Connecting"