Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
S2750 SSH login is slow

S2750 SSH login is slow

Latest reply: Dec 27, 2018 07:51:41 1696 7 1 0 0
View the author 1#

        1. First step: We need to collect some information when trying to login the switch, by using the commands below:


<Huawei>debugging ssh server all all  


<Huawei>terminal monitor


Info: Current terminal monitor is on.


<Huawei>terminal debugging


Info: Current terminal debugging is on.



        2. Second step: Analyze the debugging logs, firstly check the algorithm and then check how long it take:



S2750 SSH login is slow-2735569-1


       3. After analyzing the debug we noticed it use the highest complex one which should use the most time to compute.


SSH have 3 different algorithms dh_group_exchange_sha1dh_group14_sha1dh_group1_sha1 . It uses now “dh_group_exchange_sha1” which is the highest algorithms with complex security.


Since uses the most complex algorithm and since this switch does not have enough CPU to compute, it is normal to take that long.


       4. As a workaround, we can use this command to adjust the sequence but this will compromise the security:



“ssh server key-exchange”


The default sequence is dh_group_exchange_sha1 | dh_group14_sha1 | dh_group1_sha1 and the security is from high to low. We can also change the algorithm from Putty tool.


S2750 SSH login is slow-2735569-2

If you have any problems, please post them in our Community. We are happy to solve them for you!

This article contains more resources

You need to log in to download or view. No account? Register

x

Like (1) Dislike (0) Favorite(0) Share Report
Previous: [Troubleshooting Series]Case 11 PC of the same network segment cannot Ping
Next: EAP of 802.1X protocol
(0) (0)
2#
SupperRobin
Created Aug 25, 2018 02:03:05

Nice sharing, I´ll consider in the future.....!!! thanks very much !! :):)
View more
  • x
  • convention:
(0) (0)
3#
semphis
Created Dec 11, 2018 12:59:26

with the 5720 series ssh is slow too. are there some best practise workarounds too?
View more
  • x
  • convention:

criss_tee_an
criss_tee_an Created Dec 4, 2019 21:30:30 (0) (0)
Well, the higher the complexity, the longer the time to process. Lower the security has always been a compromise where applicable and not very sensitive areas.  
(0) (0)
4#
Torrent
Created Dec 22, 2018 01:24:44

After analyzing the debug we noticed it use the highest complex one which should use the most time to compute.

SSH have 3 different algorithms dh_group_exchange_sha1、dh_group14_sha1、dh_group1_sha1 . It uses now “dh_group_exchange_sha1” which is the highest algorithms with complex security.

Since uses the most complex algorithm and since this switch does not have enough CPU to compute, it is normal to take that long.

thanks for sharing.
View more
  • x
  • convention:
(0) (0)
5#
xiaomumu
Created Dec 24, 2018 01:41:12

This post was last edited by xiaomumu at 2018-12-27 02:57. S2750 SSH login speed is very slow, is there any way to avoid it?
View more
  • x
  • convention:
(0) (0)
6#
3li
Created Dec 24, 2018 17:10:14

It's hard
View more
  • x
  • convention:
(1) (0)
7#
dagui
Created Dec 27, 2018 07:51:41

After analyzing the debug we noticed it use the highest complex one which should use the most time to compute.How do you understand this sentence?
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.