{"type":"rich","version":"1.0","provider_name":"phorkie","provider_url":"https:\/\/p.cweiske.de\/","title":"ssh: kex_exchange_identification: read: Connection reset by peer","author_name":"Christian Weiske","cache_age":86400,"width":900,"height":900,"html":"<!-- embedding all files of https:\/\/p.cweiske.de\/968 -->\n<link rel=\"stylesheet\" href=\"https:\/\/p.cweiske.de\/css\/embed.css\"\/>\n<div class=\"phork\" id=\"968\">\n    <div class=\"phork-file\">\n <div class=\"phork-content\">\n  \n<div class=\"document\">\n\n\n<p>Client:<\/p>\n<pre class=\"literal-block\">\nkex_exchange_identification: read: Connection reset by peer\nConnection reset by 159.195.22.112 port 22\n<\/pre>\n<p>Server:<\/p>\n<pre class=\"literal-block\">\n$ journalctl -efu ssh\n[...]\ndrop connection #10 from [212.99.194.59]:59789 on [159.195.22.112]:22 Maxstartups\n<\/pre>\n<p><tt class=\"docutils literal\">$ man sshd_config<\/tt>:<\/p>\n<blockquote>\n<dl class=\"docutils\">\n<dt><tt class=\"docutils literal\">MaxStartups<\/tt><\/dt>\n<dd>Specifies the maximum number of concurrent unauthenticated connections to the SSH daemon. Additional connections will be dropped until  authentication  succeeds or the LoginGraceTime expires for a connection.  The default is 10:30:100.\nAlternatively, random early drop can be enabled by specifying the three colon separated values start:rate:full (e.g. &quot;10:30:60&quot;).  sshd(8) will refuse connection attempts  with a probability of rate\/100 (30%) if there are currently start (10) unauthenticated connections.  The probability increases linearly and all connection attempts are refused if the number of unauthenticated connections reaches full (60).<\/dd>\n<\/dl>\n<\/blockquote>\n<\/div>\n\n <\/div>\n <div class=\"phork-meta\">\n  <a href=\"https:\/\/p.cweiske.de\/968\/rev-raw\/55e3f7a2c3150da1e14439b43342e7e4513021c7\/README.rst\" style=\"float: right\">view raw source<\/a>\n  <a href=\"https:\/\/p.cweiske.de\/968#README.rst\">README.rst<\/a>\n <\/div>\n<\/div>\n<\/div>\n"}