Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
792
Views
0
Helpful
3
Replies

HTTP: out of lines when trying to connec to switch ip http server

Go to solution
raj.nagra
Level 1
Level 1

‎03-31-2008 04:10 PM

I'm using a custom php/curl script to query a couple WS-C2950G-48-EI switches running 12.1(22)EA10a and both are configured with ip http server and a local account to login with that has level 15 access. One switch works fine, the other doesn't appear to return anything. Turned on http debugging and the log shows HTTP: out of lines.

I can't find any difference between the two switches, other than one works and the other doesn't. I can connect directly to the switches via a browser and execute the same commands the php script is executing.

Any thoughts?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee
In response to raj.nagra

‎04-01-2008 10:49 AM

This is a bug, CSCdz07515. It will never be fixed in the 2950 code, however. So you will need to use ACLs to limit the telnet traffic to this switch.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee

‎03-31-2008 10:17 PM

The message indicates you have no more free VTY lines to service the HTTP requests. Check the output of show lines to see who else is connected to this switch. And make sure you close any sockets in your script once you are done to free up the VTY resources.

0 Helpful

Go to solution
raj.nagra
Level 1
Level 1
In response to Joe Clarke

‎04-01-2008 10:34 AM

Thanks for the reply. When I look at show line, only one vty has been used.

s-ch-1066-1>show line

Tty Typ Tx/Rx A Modem Roty AccO AccI Uses Noise Overruns Int

0 CTY - - - - - 0 0 0/0 -

* 1 VTY - - - - 60 12 0 0/0 -

2 VTY - - - - 60 0 0 0/0 -

3 VTY - - - - 60 0 0 0/0 -

4 VTY - - - - 60 0 0 0/0 -

5 VTY - - - - 60 0 0 0/0 -

6 VTY - - - - 60 0 0 0/0 -

7 VTY - - - - 60 0 0 0/0 -

8 VTY - - - - 60 0 0 0/0 -

9 VTY - - - - 60 0 0 0/0 -

10 VTY - - - - 60 0 0 0/0 -

11 VTY - - - - 60 0 0 0/0 -

12 VTY - - - - 60 0 0 0/0 -

13 VTY - - - - 60 0 0 0/0 -

14 VTY - - - - 60 0 0 0/0 -

15 VTY - - - - 60 0 0 0/0 -

16 VTY - - - - 60 0 0 0/0 -

but, looking at the VTY config, I was specifically setting the 'transport input ssh', whereas on the other switch it was left at the default of telnet (I didn't notice that part before). If I change that to telnet, it works, but why is the http connection going through the vty? I thought 'ip http server' enable direct connections without going through the vty (bad assumption on my part). Even if I use https, I still need telnet available on the vty. Is there any way around this, other than ACLs on the vty lines?

0 Helpful

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee
In response to raj.nagra

‎04-01-2008 10:49 AM

This is a bug, CSCdz07515. It will never be fixed in the 2950 code, however. So you will need to use ACLs to limit the telnet traffic to this switch.

0 Helpful
Customers Also Viewed These Support Documents