I want to import an existing device (PIX 515) into pix mc. None of my efforts are successful.
- PIX MC access the pix via https
- authentication is o.k. (syslog message)
- show version command is executed (syslog message
- a SSL transmission from pix to pix mc starts (ethereal)
- pix terminates ssl session with FIN ACK
- pix mc sends RST
... and at the end the import is completed with errors: Cannot connect to server ... check username and password ...
PIX OS is 6.3 and I am using latest version of pix mc.
Thanks in advance
Probably you should update IDSM or VMS or both from :
There was an issue (see CSCeb30468) where the HTTPS server returned one byte of data at a time under some circumstances. In versions prior to 1.2, Firewall MC did not properly process this single byte stream. This issue is fixed in Firewall MC 1.2 and later.
I can't try till next week, but... I think to have found a good point:
what do you think about this?
I've found this information, in the PIX-MC 1.2.2 release-notes:
The following topics supplement the troubleshooting information found in Using Management Center for Firewalls 1.2.
Why does the error message "Failed to contact the device" appear when I try to import from a device?
Solaris patch 112438-01 is required for Firewall MC 1.2.2 to communicate with the device. After installing this patch, you must reboot the Solaris server.
I'll try it as soon as possible !