MeshCentral: Subdomain bug with SSH through relay

Describe your issue Hey, I’m having issues with getting SSH to connect to another device through a relay. The agent itself to the relay is working fine, all features work, but I’m not able to SSH/SFTP through the relay into other linux devices. From those devices themselves, I can connect to the targeted devices via SSH/SFTP fine.

Looking for help troubleshooting where this is failing. It prompts for a username & password, which I entered, and then it just freezes at “Setup…”

Server Software (please complete the following information):

  • OS: alpine:3.15.2
  • Virtualization: Docker
  • Network: LAN/WAN
  • Version: 1.1.11
  • Node: 16.16.0

Relay Device:

  • Device: Desktop
  • OS: Windows 10 22H2
  • Network: Different VLAN on same network
  • Current Core Version (if known): Dec 9 2022, 2577413753

Your config.json file

{
  "$schema": "http://info.meshcentral.com/downloads/meshcentral-config-schema.json",
  "settings": {
    "cert": "example.com",
    "WANonly": true,
    "TlsOffload": "aaaa",
    "_LANonly": true,
    "trustedProxy": ["172.0.0.0/8"],
    "sessionKey": "aaaa",
    "port": 443,
    "redirPort": 80,
    "relayDNS": "relay.example.com",
    "MpsPort": 0,
    "_redirAliasPort": 80,
    "_agentLogDump": true,
    "AgentPong": 300,
    "SelfUpdate": false,
    "AllowFraming": "false",
    "cookieIpCheck": false,
    "WebRTC": "false",
    "debug": true,
    "MariaDB": {
      "host": "example.com",
      "user": "meshcentral",
      "password": "pp",
      "database": "meshcentral"
    }
  },
  "smtp": {
     "host": "smtp.example.com",
     "port": 25,
     "from": "noreply@oexample.com"
  },
  "domains": {
    "mesh": {
      "title": "Org",
      "title2": "My Org",
      "newAccounts": false,
      "footer": "Org",
      "unknownUserRootRedirect": "/mesh/auth-saml",
      "showPasswordLogin": false,
      "ssh": true,
      "novnc": true,
      "ipkvm": true,
      "CertUrl": "https://blah:443/",
      "consentMessages": {
        "consentTimeout": 30,
        "autoAcceptOnTimeout": true
      },
      "ManageAllDeviceGroups": [ "myusers"],
      "deviceMeshRouterLinks": {
        "rdp": false, "ssh": false, "scp": false
      }
  }
}

About this issue

  • Original URL
  • State: closed
  • Created 9 months ago
  • Comments: 17

Commits related to this issue

Most upvoted comments

So you have setup a first device in a group and u can use the ssh connect in the Web ui no problem

First device is a Windows device (tried both a Windows Enterprise, as well as Windows Server device), so SSH isn’t a thing but Web RDP/Terminal work fine.

But if u setup a relay group and set the relay device as the first device, then add a second device in and try to use the ssh connect in the Web ui, it’s not working?

Yep.

Can u ssh from the first device to the second device, ok?

Yep. I’m able to SSH from the first device (from both Putty and Windows shell) to the second device just fine.

Is ur first device a lan device to meshcentral or is it remote?

Technically remote. It’s in the same network but different VLAN.

What is the os of the first and second devices?

First = Windows Server 2019, but have also tried a Windows 10 1903 Enterprise device. Second = RHEL 7, but have also tried Ubuntu (I think)

Thanks for any help you can provide! It’s pretty weird.

+1
takuy on Oct 8, 2023
Read more comments on GitHub
← MeshCentral: Server peering failure
MeshCentral: Terminal and File Transfer Timeouts when using NGINX as a reverse proxy →