Learn more. Asked 1 year, 3 months ago. Modified 1 month ago. Viewed 16k times. Improve this question. Add a comment. Sorted by: Reset to default. Highest score default Date modified newest first Date created oldest first. The issue occurred in two different scenarios. The solution here of course was to regenerate the keys. Improve this answer. Danbardo Danbardo 3 3 silver badges 12 12 bronze badges.

I got to give it to ya, your second scenario allowed me to connect. Had me literally pulling my hair. Thanks a lot, second solution made my day! Adam Kiraly Adam Kiraly 51 1 1 silver badge 1 1 bronze badge. I've been fighting that off and on all day.

Would be nice, if you would add this code snippet to your solution. Vladimir Ch Vladimir Ch 11 11 silver badges 24 24 bronze badges. This solution worked for me. Thank you very much. Rinze Smits Rinze Smits 6 6 silver badges 5 5 bronze badges.

It'll ask for the private key password. It'll ask for the file name to assign to the converted OpenSSH key. Give it a different name than the PuTTY private key one you started with. When asked, enter the private key password. Click Add. If your mysql server uses another port, ammend as such. The forwarded port is listed. Click Open. It will start SSH connection to remote server. You will need to enter username and password. Enter your password for MySql on the remote machine.

If successful the confirmation message is displayed. You can use both localhost or The command above will open a pseudo terminal. If you only want to create a tunnel you can use -NnT option. You only need to add -NnT options behind the command above. So the command above becomes :. To create an SSH Tunnel to a server behind server. After successfully creating the tunnel, using another window or tab on your terminal app you can test connecting to MySQL on the remote server.

You can use the command below. Other names may be trademarks of their respective owners. You have to specify host with -h and put Make sure that you have already created the SSH Tunnel to the server. In this tutorial we learned how to create an SSH tunnel and how-to use the tunnel to connect to a service on the server.

How can I connect to a private Amazon RDS MySQL DB instance using SSH tunnel and MySQL Workbench?

For final try I uninstall MySql Workbench and delete setting folder mentioned before and install recently downloaded version of MySql workbench. Fortunately everything working fine. I solved this issue by downgrading python-crypto package in ubuntu Rollback version 2. Then you will see the list of key exchange algorithms configured on your server as well as the list supported by your client. For example, the OpenSSH 6.

You should allow sshd to use this key exchange algorithm by putting the KexAlgorithms line to your sshd config. Ubuntu Community Ask! Sign up to join this community. The best answers are voted up and rise to the top. Stack Overflow for Teams — Collaborate and share knowledge with a private group. Create a free Team What is Teams? Learn more. Asked 5 years, 6 months ago. Modified 4 years, 9 months ago. Viewed 8k times.

I fail to establish connection by Navicat and keep getting SSH:expected key exchange group packet from server. I appreciate for any help you will provide. Improve this question. Marc Vanhoomissen 1, 5 5 gold badges 18 18 silver badges 34 34 bronze badges. Hamid Hamid 31 1 1 silver badge 4 4 bronze badges. Add a comment. Sorted by: Reset to default. Highest score default Date modified newest first Date created oldest first. Improve this answer. Connect and share knowledge within a single location that is structured and easy to search.

Here's the basic config; note that I changed some values in the screenshot for security reasons. The problem is every time I try to connect over an SSH tunnel from one of our app servers, I get the following error:. Failed to connect to us-east Can't connect to MySQL server on Been talking with the rest of my development team here and none of us can figure out why I can't tunnel over SSH from our app servers with Workbench; but when I SSH to one of our app servers and connect to MySQL via the command line; I can connect successfully.

And why is it trying to connect over I didn't specify that in the configuration; nor is my hosts file redirecting the domains shown below to that IP. The ip address of your computer is When you connect to the mysql server on us-east If you had another tunnel open, or MySQL running locally on your computer, then it may be that other MySQL server that's rejecting your authentication attempts. We're assuming that MySQL workbench is creating the tunnel on your computer. If so, in MySQL workbench, try tunneling through another port number like And as Rolando said, you'll want to verify that you are connecting with the right credentials.

For example, if you are connecting as myuser The reason that The message seems to suggest that an SSH connection is not being made. Make sure that SSH is allowing forwarded ports; if you get a message that states the forward was not permitted or was refused, then that is why. To fix this, you'd have to change the server configuration; add this configuration to the SSH server:.

I kept dealing with this problem for nearly 2 weeks now I've managed to set it. I'll post the it here so more people can try it. Step-by-step: 1. Add your SSH host keys to the agent using ssh-add. Generate the key pairs using ssh-keygen. Add the generated keys you just made to agent using ssh-add. The steps above are pretty much the configuration of a command line SSH Server which I figure out the OP already did for his connection is working through the terminal.

I'm an inexperienced analyst, so if a more advanced user knows which of the two. I find the OpenSSH kinda ambiguous about this. This worked for me while setting a local development environment using localhost only. Just for learning purposes. If is really needed I can add images. In my case the issue I had to switch back to a valid domain name or IP instead of a custom host locally host resolved.

For some reason with MySQL 5. Simply switch to a public domain name such as my-website. I had a similar problem, and this may be obvisous, but check you firewall rules in AWS. I have an IP range set, to restrict connections from the outside world. And the IP at my office changed, so it got outside the IP range. My colleague in another ofice could still connect, so I thought the problem is on my PC, but the problem was with the firewall rules in AWS.

