I have a script that runs from a linux server,connects to a mikrotik router and changes some firewall rules,it works but i’ve picked up that the following happens.(I have ssh kyes shared between the mikrotik router and the lunix server,so no need for passwords.).Say i do the following command from linux.
The command works and it disables all rules with src-address=192.12.100.12,which is fine,but if i chaeck the logs i see the following each time the above command gets executed.
08:38:59 system,error,critical login failure for user username from 192.12.100.1 via ssh
08:39:00 system,info nat rule changed by username
I have made sure that the ssh command only gets executed once.Any idea what might cause this first login failure?
ssh tries once first without authentication I believe
I dit not know this,as far as i know this is not normal ssh behaviour?Maybe an option to switch this off?
You should specify a password, or use a certificate and this should be fixed.
I believe i do have a certificate.I generated the ssh-keys in my server,and imported this to mikrotik,therefore no password is needed when connecting from that server,or am i missing the meaning of a certifcate.If so,how will i go about installing this certificate on the Mikrotik OS.
Maybe somebody from Mikrotik could comment this..