[f-nsp] SSL experience with ServerIronGT
Mike Lott
lists.accounts at gmail.com
Thu Oct 18 05:26:04 EDT 2007
Stefan Hegger wrote:
> Hi,
>
> we have a lot of problems with the SSL stuff on Foundry on a
>
> SW: Version 09.5.02eTD2 Copyright (c) 1996-2003 Foundry Networks, Inc.
> Compiled on Aug 04 2007 at 11:41:16 labeled as WXM09502e
> (4093958 bytes) from Primary WXM09502e.bin
> HW: ServerIronGT C-Series Switch, SYSIF version 21, Serial #: Non-exist
>
> SL 1: WSM6-SSL Management Module, SYSIF 2, M6, ACTIVE
>
> At first we had problems with the SSL keys. We did not know that you had to
> put a passphrase (only small letters) on each key. If not you get problems
> uploading the keys with SSL.
>
> Second we have problems uploading the certs. Sometimes we can upload 5 certs,
> sometimes 2 sometimes 17. There seems not to be any logic. Does anybody has
> the same problems?
>
Hi list
We have had a few issues with SSL (still going on) related to exporting
SSL keypairs to the SI from a server. We don't use passwords on our keys
as we use monitors on the webserver process, and if it fails, it is
reloaded - using a key password would make this very difficult.
So far, I have had successful uploads of keys to the SI (using a '*' in
place of where the password would go in the scp string), but on trying
to view the keyfile, I get kicked out of the ssh session with a "bad
length" error.
I am about to raise a ticket about this with our support contract, and
if I get a solution to this, I'll post back.
Mike
More information about the foundry-nsp
mailing list