Page MenuHomePhabricator

Toolforge SSH connection error
Closed, InvalidPublic

Description

I am a member of the public with a wikimedia developer account on Toolforge.

I am unable to connect to login.toolforge.org via ssh using the instructions at https://wikitech.wikimedia.org/wiki/Help:Toolforge/Quickstart#Connect_to_Toolforge_servers_using_SSH. I have uploaded my ssh public key properly and know that is not the issue.

The error I get when running ssh -F /dev/null -i .ssh/wmf philipnelson99@login.toolforge.com -vvv (/dev/null/ specified so configuration is empty) is:

OpenSSH_9.6p1, OpenSSL 3.2.1 30 Jan 2024
debug1: Reading configuration data /dev/null
debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/home/philip/.ssh/known_hosts'
debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/home/philip/.ssh/known_hosts2'
debug2: resolving "login.toolforge.com" port 22
debug3: resolve_host: lookup login.toolforge.com:22
debug3: channel_clear_timeouts: clearing
debug3: ssh_connect_direct: entering
debug1: Connecting to login.toolforge.com [104.247.82.52] port 22.
debug3: set_sock_tos: set socket 3 IP_TOS 0x48
debug1: connect to address 104.247.82.52 port 22: Connection timed out
ssh: connect to host login.toolforge.com port 22: Connection timed out

Tried connecting from a VPS I control, a VPN, and my cell network and had the same error as above on all of them so I don't believe it's an issue with my local machine or network.

Here's mtr --report-wide --show-ips --aslookup --tcp --port 22 login.toolforge.org sensitive IPs redacted:

Start: 2024-02-13T21:37:50-0500
HOST: nullserver                                                         Loss%   Snt   Last   Avg  Best  Wrst StDev
  1. AS???    _gateway (192.168.0.1)                                      0.0%    10    1.1   0.9   0.7   1.1   0.1
  2. AS???    100.105.56.1                                                0.0%    10    7.1   5.7   3.8   7.3   1.1
  3. AS???    172.26.19.100                                               0.0%    10    8.8   7.9   6.5   9.0   1.0
        172.26.1.100                                              
     AS???    172.26.1.100
  4. AS???    100.64.99.101                                               0.0%    10    8.7   7.1   5.4   8.9   1.3
        172.26.1.150                                              
     AS???    172.26.1.150
  5. AS???    100.64.99.101                                               0.0%    10    8.8   7.6   5.9   9.8   1.2
        <REDACTED> (<REDACTED>)   
     AS???    <REDACTED> (<REDACTED>)
  6. AS???    <redacted>                                             0.0%    10    9.3   8.2   6.3   9.6   1.2
        <REDACTED> (<REDACTED>)   
     AS???    <REDACTED> (<REDACTED>)
  7. AS???    64.53.0.118                                                40.0%    10    9.1   8.5   6.6   9.7   1.1
  8. AS1299   cha-b3-link.ip.twelve99.net (213.248.96.82)                80.0%    10   10.5  10.6  10.5  10.7   0.2
  9. AS1299   rest-bb1-link.ip.twelve99.net (62.115.125.94)               0.0%    10   25.5  22.9  20.2  25.5   1.4
        cha-b3-link.ip.twelve99.net (213.248.96.82)               
     AS1299   cha-b3-link.ip.twelve99.net (213.248.96.82)
 10. AS1299   rest-bb1-link.ip.twelve99.net (62.115.125.94)               0.0%    10   22.7  23.2  21.6  25.2   1.1
        ash-b2-link.ip.twelve99.net (62.115.123.123)              
     AS1299   ash-b2-link.ip.twelve99.net (62.115.123.123)
 11. AS1299   ash-b2-link.ip.twelve99.net (62.115.123.123)                0.0%    10  2084. 740.7  21.9 4106. 1367.6
        wikimedia-ic-308845.ip.twelve99-cust.net (8
0.239.132.226) 
     AS1299   wikimedia-ic-308845.ip.twelve99-cust.net (80.239.132.226)
        ash-b2-link.ip.twelve99.net (62.115.138.190)              
     AS1299   ash-b2-link.ip.twelve99.net (62.115.138.190)
 12. AS1299   wikimedia-ic-308845.ip.twelve99-cust.net (80.239.132.226)  60.0%    10   22.8  24.3  22.8  25.1   1.0
 13. AS14907  cloudgw1001.eqiad1.wikimediacloud.org (185.15.56.245)      40.0%    10   23.1  22.7  22.0  24.6   1.0
 14. AS14907  cloudgw1001.eqiad1.wikimediacloud.org (185.15.56.245)       0.0%    10   21.8  23.4  21.8  28.9   2.1
        login-buster.toolforge.org (185.15.56.66)                 
     AS14907  bastion.toolforge.org (185.15.56.66)
 15. AS14907  bastion.toolforge.org (185.15.56.66)                        0.0%     5   22.9  23.6  21.8  28.1   2.6

Willing to run more commands as needed to help figure out what is going wrong.

Event Timeline

This is totally fascinating. When I try that command on my Mac desktop, it also fails in the same way. I obviously don't have the .ssh/wmf key file, but that shouldn't cause the timeout...

% ssh -F /dev/null -i .ssh/wmf philipnelson99@login.toolforge.com -vvv
Warning: Identity file .ssh/wmf not accessible: No such file or directory.
OpenSSH_9.0p1, LibreSSL 3.3.6
debug1: Reading configuration data /dev/null
debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts' -> '/Users/roysmith/.ssh/known_hosts'
debug3: expanded UserKnownHostsFile '~/.ssh/known_hosts2' -> '/Users/roysmith/.ssh/known_hosts2'
debug1: Authenticator provider $SSH_SK_PROVIDER did not resolve; disabling
debug1: Connecting to login.toolforge.com port 22.
ssh: connect to host login.toolforge.com port 22: Operation timed out

I think the issue was I was using the .com tld and not .org. Really sorry about that. shout out to Jeremy for catching it.

JJMC89 changed the task status from Resolved to Invalid.Feb 14 2024, 3:43 AM