[Date Prev] [Date Index] [Date Next] [Thread Prev] [Thread Index] [Thread Next]

Re: Conserver and ssh

Chris Ross cross+conserver@distal.com
Mon, 21 Apr 2014 19:30:37 GMT 

  I don’t know, I’m afraid.  You’re correct that that’s what it does.  It’s designed and used as a console logging apparatus, as much as a console access mechanism.  As I mentioned, that’s something I require of such a system myself.  It’s where all of my console logs live.  If you only want it to establish a connect in an on-demand basis, I would be surprised if there _wasn’t_ a way to do that, but I don’t know what it is myself.

  Sorry I can’t help directly.

                     - Chris

On Apr 21, 2014, at 15:25, Brandon Stout <bstout@squareup.com> wrote:

> Thanks for the reply Chris. You are correct, it is not using the local/conserver password but just the console server (opengear) password. I actually don't really care which password to use, as long as it asks for a password anytime someone wants to connect to a console port. It works correctly if you just ssh to the console via port 30xx. But when using conserver, it just asks once and that is it. Looking at the logs, it looks like it conserver tries to login to every port preemptively and keep it open as opposed to just opening a session when someone asks for it. Is there a way to change this behavior?
> 
> 
> On Mon, Apr 21, 2014 at 12:13 PM, Chris Ross <cross+conserver@distal.com> wrote:
> 
>   “Your milage may vary”, but for myself, I’m consoling UNIX servers, so I want their console output to be logged even when noone is connected.  To accomplish this, I have a script that will log into the session for me upon initialization of the console, and then stay attached.  As you’ve determined, conserver leaves the TCP connection active, so you don’t need to authenticate against the ssh connection again after the initial connection.
> 
>   I suspect you’re not getting it to use the local/conserver password at all, or else when you first start up, you’d have to enter both, in the correct sequence.  One to connect to the established ssh command, then another to ssh to authenticate the network connection.
> 
>   So, I guess you need to decide whether you want to have the connection drop and reestablish, which is what you seemed to be asking for, or rather want just to get the conserver password prompting working, which I’m not doing, so can’t help with directly.
> 
>   Thoughts and information that I hope is helpful.
> 
>                              - Chris
> 
> On Apr 21, 2014, at 14:38, Brandon Stout <bstout@squareup.com> wrote:
> 
> > Also, how does the conserver.passwd work? When does it use that rather than the authentication on the Opengear itself? To test, I have the same user on the Opengear as well as in the conserver.passwd with different passwords to see where it gets its passwords from. So far it just looks like it is using the password from the Opengear. I configured conserver with all the defaults so I am assuming conserver.passwd just needs to exist within the same directory as conserver.cf. Did I configure something incorrectly or does there need to be a line in the conserver.cf file to point to where conserver.passwd exists?
> >
> >
> > On Mon, Apr 21, 2014 at 11:32 AM, Brandon Stout <bstout@squareup.com> wrote:
> > So I actually figured out the problem so now it connects, I get the password prompt and when I enter it correctly it works. The problem is that when I disconnect and reconnect, it no longer asks me for a password and just puts me through to the console. is there some sort of disconnect I need to do manually to get it to reset and ask for a password? Seems like it just stays connected once the pw is entered, regardless of someone exiting.
> >
> >
> > On Mon, Apr 21, 2014 at 11:26 AM, Brandon Stout <bstout@squareup.com> wrote:
> > thanks Nathan, I actually was trying that right after I sent this email and added this
> >
> > default opengear-ssh { type exec; portbase 2000; portinc 1;
> >                    exec /usr/bin/ssh -p P -l tsuser H;
> >                    execsubst H=hs,P=Pd; }
> >
> > still not working though with just about nothing useful in the logs. Doesn't hang but it still doesn't work. Just empty space and no output.
> >
> >
> > On Mon, Apr 21, 2014 at 10:39 AM, Nathan Straz <nstraz@redhat.com> wrote:
> > On Apr 21 10:29, Brandon Stout wrote:
> > > hello, I am trying to use conserver to connect to serial ports over ssh and
> > > it is hanging. When I go direct it works fine (i am using Opengear IMX4248):
> > >
> > > [bstout@lab etc]$ ssh root@172.24.19.40 -p 3002
> > ...
> > > default full { rw *; }
> > > default opengear  { type host; portbase 3000; portinc 1; }
> > > default * {
> > > logfile /var/log/conserver;
> > > timestamp 1hab;
> > > include full;
> > > master localhost;
> > > }
> > > default console01 { include opengear; host console01; }
> > > console dr01.arista { include console01; port 1; }
> > > console dr02.arista { include console01; port 2; }
> > ...
> > > Has anyone gotten this to work using ssh?
> >
> > I think you need to use the exec host type and setup the right execsubst
> > to get ssh to use the right port number.  The "host" type is just a raw
> > TCP socket connection.
> >
> > Nate
> > _______________________________________________
> > users mailing list
> > users@conserver.com
> > https://www.conserver.com/mailman/listinfo/users
> >
> >
> >
> > --
> >
> > brandon
> >
> >
> >
> > --
> >
> > brandon
> >
> >
> >
> > --
> >
> > brandon
> > _______________________________________________
> > users mailing list
> > users@conserver.com
> > https://www.conserver.com/mailman/listinfo/users
> 
> 
> 
> 
> -- 
> 
> brandon