12/13/2012 by BB1030
Hi, I hope someone can help, I'm getting an SSH error when doing a gtm_add from a blank GTM, wanted to verify that FW rules allowed ssh, is there a way I can telnet on port 22 to another GTM using the tmsh?
Not telnet, but have you considered using traceroute w/TCP? The syntax would be:
run util traceroute -T -p 22
That worked, thank you so much. FW port seem to be opened...
Have you btw seen where you run the gtm_add and get stuck at the "enter root password if prompted" ?
alm@nygtm01(Active)(/Common)(tmos)# run gtm gtm_add
WARNING: Running this script will wipe out the current configuration
files (bigip_gtm.conf, named.conf and named zone files) on the BIG-IP GTM
Controller on which this script is run. The configuration will be
replaced with the configuration of the remote BIG-IP GTM Controller
in the specified sync group
The local BIG-IP GTM MUST already be added in the configuration of the
Are you absolutely sure you want to do this? [y/n] y
Enter the IP address of a remote GTM BIG-IP from which
you want to copy the configuration:
==> Running 'bigstart shutdown gtmd' on the local system
==> Running 'bigstart shutdown zrd' on the local system
==> Running 'bigstart shutdown named' on the local system
Retrieving remote and installing local BIG-IP's SSL certs ...
Enter root password if prompted
ssh: connect to host 10.5.10.28 port 22: Connection timed out
ERROR: Can't read remote cert via /usr/bin/ssh.
This worked too, thanks!