Macos – ssh: Could not resolve hostname – High Sierra

macosmacos-highsierrassh

I'm supporting a coworker who recently upgraded his MacBook Pro to High Sierra from Sierra. He's trying to connect to one of our boxes in the field via ssh. The box in question has an IPv6 address.

The ~/.ssh/config file is empty and the ssh keys haven't changed. The /etc/ssh/ssh_config file is the default installed on the MBP. Dig works just fine and reports the proper IPv6 address of the box. Ping6 also works as expected. He can connect to our in-house git server, which is published via DNS with an IPv4 address, and push/pull without issue.

When I get him to ssh to the box, like so:

ssh user@hostname

The connection fails with:

ssh: Could not resolve hostname [hostname]: nodename nor servname provided, or not known

Adding -vvvv to ssh produces the following output:

ssh -vvvv [hostname]
OpenSSH_7.6p1, LibreSSL 2.6.2
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 48: Applying options for *
debug2: ssh_connect_direct: needpriv 0
debug1: Connecting to [hostname] port 22.
ssh: Could not resolve hostname [hostname]: nodename nor servname provided, or not known

If he connects to the appliance using the IPv6 address, the connection succeeds and he can login.

Our DNS servers are properly configured and serving addresses as expected. I'm on an MBP with Sierra and I'm having no issues connecting. Also, our group all uses Macbooks of various vintages and OS flavors (no other High Sierra users) and, so far, he's the only one experiencing this issue.

EDIT: We tried the solution presented here. But, Apple's System Integrity Protection got in the way. I'm not about to turn it off at this point. I'd like to leave that as a last resort.

Best Answer

Here's a work around that helped in this case:

# install openssh from brew
brew install openssh

# /usr/local/sbin shouldn't be writable on High Sierra (by default), 
# so brew will fail to link the ssh binary

brew unlink openssh
ln -s /usr/local/Cellar/openssh/<version of openssh>/bin/ssh /usr/local/bin/ssh

That linked a version of ssh that's usable. My coworker is now able to connect as expected. Since there are now two versions of ssh on his mac, it's important to make sure that the openssh version installed via brew is found on the PATH first, eg.

PATH=/usr/local/bin:/usr/bin

Related Solutions

Linux – Putty can’t connect over SSH to hostname, IP connection works

You have a problem with name resolution on the client you try to connect from (W7).

All connections are made to a destination IP address. If you supply a name, the computer first resolves that name into an IP address. This is where you fail today.

If your gentoo box / home router's IP address can't be looked up from either the hosts file, or with an A (or AAAA for IPv6) record in DNS (possibly via a CNAME), your windows machine won't understand what IP the gentoo box has.

To be able to give a good answer to your question, we need a bit more information from you, describing the network setup a bit, so we don't make wrong guesses. For instance:

are the windows and gentoo boxes both on the "inside" network?
are they both configured as DHCP clients?
is the router the only DHCP server on the internal network?

Did you use any DynDNS service when it was working earlier, or has the W7 installation changed somehow? (Different PC, reinstall, virus, etc?) Perhaps you had an entry in the hosts file before, when it was working, and it is now missing.

Why the router can figure out the internal/private IP address of the linux box while the windows box cannot, is because they use different sources for their name information. Maybe the router itself has that information. Is it also a DHCP server? Maybe that's why the router knows.

EDIT (2012-08-06): Based on new input,
On the gentoo box, make sure you have an entry in /etc/hosts that looks like this:

192.168.0.3   hostname.domain.tld  hostname

(replace 192.168.0.3 with the real (internal) IP address of the gentoo server, and hostname.domain.tld to be the fully qualified domain name you wish to use, and the last word on the line to be the hostname without the domain (ie, the word before the first .).

Put the same line in the %WINDIR%\System32\drivers\etc\hosts file, but remember that windows name lookups of your gentoo box will be then taken from that file, and not from DNS.

This should make the name lookups work (locally) on both the gentoo server itself, and the windows client, without consulting DNS.

In /etc/apache2/vhosts.d/00_default_vhost.conf (if that's where your web server is configured), make the ServerName entry match the FQDN (hostname.domain.tld) that you have in the /etc/hosts file.
This should allow apache to start without warnings.

Networking – Shared connection frequently closes when opening a new connection

Disable these options in ssh config:

ControlMaster auto
ControlPath ~/.ssh/control:%h:%p:%r

Best Answer

Related Solutions

Linux – Putty can’t connect over SSH to hostname, IP connection works

Networking – Shared connection frequently closes when opening a new connection

Related Question