v2.2.4 no longer works on Cisco IOS15, v1.6.0 stil does
iPAD automatically updated to v2.2.4 but I receive a handshake error when connecting. v1.60 on the iPhone still works. debug commands show a "Invalid modulus length" message before the session disconnects.
Let me know if you need packet traces.
4 commentsComments are closed
Rhodri Jenkins commented
Hi ther, I fixed this issue using the following command on my router...
ip ssh dh min size 2048
I have the same problem, "handshake failed" error on my iPad when connecting to my 15.1 IOS router. Never had problems with my version 12.4 router.
I'm using a 1024 bit key.
SSH debug on the router:
.Apr 22 14:30:49: SSH2: starting SSH control process
.Apr 22 14:30:49: SSH2: sent protocol version id SSH-2.0-Cisco-1.25
.Apr 22 14:30:49: SSH2: protocol version id is - SSH-2.0-libssh2_1.7.0
.Apr 22 14:30:49: SSH2 2: SSH2_MSG_KEXINIT sent
.Apr 22 14:30:49: SSH2 2: SSH2_MSG_KEXINIT received
.Apr 22 14:30:49: SSH2:kex: client->server enc:aes256-cbc mac:hmac-sha1
.Apr 22 14:30:49: SSH2:kex: server->client enc:aes256-cbc mac:hmac-sha1
.Apr 22 14:30:49: SSH2 2: SSH2_MSG_KEX_DH_GEX_REQUEST received
.Apr 22 14:30:49: SSH2 2: Range sent by client is - 1024 < 1536 < 2048
.Apr 22 14:30:49: SSH2 2: Invalid modulus length
.Apr 22 14:30:49: SSH2: Session disconnected - error 0x00
John Dough commented
Just installed the app - getting the same "Handshake Failed" error...
Could you please clarify, do you use key authentication method on your Cisco?
If so, what type of key do you use for connection's establishment? What length does it have?
And what type of keys does the Cisco support?