Can not connect to an SFTP Server with X20 Edge Controller, because firewall is blocking Psiphon

Ask Questions Controls & Vision
,
1

Hello,

I am using an X20EDS410 for reading variables from a machine via OPC-UA with Node-Red, which then creates a CSV. I want to send the CSV via SFTP to a Server but the Firewall is blocking the connection, because the System is using Psiphon.

image
image2508×215 131 KB

Does Psiphon come preinstalled with the system? Because I do not remember installing it. I only installed Node-Red and Filebrowser with Docker so far.

My IT Administrator says that Psiphon poses a security risk and needs to be disabled/removed.

How can I do that?

Thanks
Patrick

2

Is there anyone who can help @PatrickB?

3

Hi @PatrickB, I’m sorry, but it looks like no one in the Community can really help you. Please get in contact with support at your local B&R office. Please update us with your findings. :slight_smile:

4

Hello, I found out that the firewall was falsely classifying the SFTP connection as Psiphon traffic.

With some help from AI, and by enabling verbose SSH logging and testing one parameter at a time, I found that the default OpenSSH handshake included the MAC algorithm hmac-sha2-256-etm@openssh.com, which triggered the firewall.

Excluding that single MAC from the SSH negotiation allowed me to connect without any other changes.

1 Like
5

cool. thanks for update. It will for sure helps others :slight_smile: