03-23-2008 04:26 AM
I'm trying to set up a http server on a c2950.
I downloaded and installed the following tar: c2950-i6k2l2q4-tar.121-22.EA9.tar
And of course reloaded into the new image.
Now whenever I try to connect to the http server on the switch the connection is immediately closed.
When I do 'debug ip http transactions' an "HTTP: out of lines" error is logged on every connection attempt.
What is going wrong here?
03-28-2008 08:39 AM
Check if you have any firewall or Antivirus installed that is blocking http access. Try to reload the image and also ensure that the configuration done is right as per the following URL http://www.cisco.com/en/US/partner/products/hw/switches/ps628/products_configuration_example09186a0080169627.shtml
04-01-2008 08:02 AM
You most likely run out of VTY connections. On your switch run 'show users all', to see open VTY connections. Once you close these connections (clear line vty #) it should work.
04-01-2008 08:44 AM
Thanks for the answers, but nevermind. It suddenly works now.
04-01-2008 10:34 AM
Thats most likely it suddenly works; a user logged out or timed-out and released one of the vty lines. Glad to hear its working
04-04-2008 01:09 PM
I am currently having the same issue, however, I am only using one VTY connection (the rest are free). Any ideas?
04-05-2008 01:10 AM
I am convinced I was not using more than 2 vty lines, as this is my personal switch. But all I did was wait a few days and then it suddenly worked.
Maybe it just takes a while before vty lines are actually assigned to the httpd process?
04-05-2008 01:51 AM
I just did some testing. Take a look at your line vty configuration.
If there's a transport input protocol defined, like 'transport input ssh' the vty lines will not accept http connections, hence the 'out of lines' error.
If you change this into 'transport input all' it'll work.
When I said I did nothing for a couple of days, I meant I did do a reboot. As I was setting up my switch I had probably set the transport input to ssh and didn't save. So after the reload it was set to transport input all again.
This does leave an issue, that telnet access to the switch is possible and I don't like that. You can of course block this by using access lists.
I also wonder why there's no possibility to do 'transport input http'
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: