SUSE Support

Here When You Need Us

ssh port forwarding suddenly stops working

This document (7018486) is provided subject to the disclaimer at the end of this document.

Environment

SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Desktop

Situation

ssh port forwarding has been working successfully for some time, with a command such as:
 
Executed on machine 10.1.2.99, by a process running as User1:
 
ssh -vvv -N -g -L 4001:10.1.2.3:2022 10.1.2.99
 
And is running as shown by:
 
# ps aux | grep ssh | grep User1
 
User1 9518  0.2  0.2  35044  2892 pts/3    S+   14:25   0:00 ssh -vvv -N -g -L 4001:10.1.2.3:2022 10.1.2.99
 
This ssh session causes 10.1.2.99 port 4001 to be opened in listen mode, and any new traffic there will be forwarded to 10.1.2.3 port 2022.
 
This has been working for some time, yet now it fails.  Within the debug logs for the ssh port forwarding session, the following is seen:
 
debug1: Connection to port 4001 forwarding to 10.1.2.3 port 2022 requested.
<snip>
channel 1: open failed: administratively prohibited: open failed

Resolution

User1's password had expired.  Due to the way the processes were started, the port forwarding session was able to start and open port 4001, but no real use of the port forwarding could succeed.
 
Once the user account was reset and functional, and the ssh port forwarding session was killed and restarted, it worked again.

Disclaimer

This Support Knowledgebase provides a valuable tool for SUSE customers and parties interested in our products and solutions to acquire information, ideas and learn from one another. Materials are provided for informational, personal or non-commercial use within your organization and are presented "AS IS" WITHOUT WARRANTY OF ANY KIND.

  • Document ID:7018486
  • Creation Date: 12-Jan-2017
  • Modified Date:03-Mar-2020
    • SUSE Linux Enterprise Server

< Back to Support Search

For questions or concerns with the SUSE Knowledgebase please contact: tidfeedback[at]suse.com

tick icon

SUSE Support Forums

Get your questions answered by experienced Sys Ops or interact with other SUSE community experts.

tick icon

Support Resources

Learn how to get the most from the technical support you receive with your SUSE Subscription, Premium Support, Academic Program, or Partner Program.

tick icon

Open an Incident

Open an incident with SUSE Technical Support, manage your subscriptions, download patches, or manage user access.