ciscocsoc

Member Since: Feb 14, 2005

English
ciscocsoc's Activity on Cisco Support Community
Currently displaying 50 results

ciscocsoc has commented on Managing Certificates and Keys in End-to-End SSL

2 months 2 weeks ago
Hi, It depends what you mean by end-to-end SSL. If you mean just passing...

ciscocsoc has commented on ACE LDAPS terminator

1 year 10 months ago
Yes. It uses the same technique as HTTPS termination. Just remember to specify...

ciscocsoc has commented on Unable to configure ACE 20s

2 years 3 weeks ago
That is the error message you would see if the ACS was not setting the user...

ciscocsoc has commented on ACE Startup-config file location

2 years 2 months ago
The ACE has a number of compressed filesystems held in an internal filesystem...

ciscocsoc has commented on Question about Migrate Certificates

2 years 3 months ago
Hi Rodrigo,iPlanet is an Oracle product so looking at their documentation is...

ciscocsoc has commented on ACE: parse length-exceed action

2 years 4 months ago
There is a small difference.The default max-parse-length is 2048 bytes, so the...

ciscocsoc has commented on ACE20 and TLSv1.0 extensions problem

2 years 5 months ago
Hi Ajay,Odd. This is now starting to look like a server-side issue. I'll...

ciscocsoc has commented on ACE20 and TLSv1.0 extensions problem

2 years 5 months ago
Thanks for looking at this.I can' t see why this would work. I'm not doing SSL...

ciscocsoc has commented on ACE20 and TLSv1.0 extensions problem

2 years 5 months ago
Hi Jorge, César,I've attached a capture of an attempted TLSv1-only session from...

ciscocsoc has commented on Restrict Access To A L7 URL On ACE

2 years 5 months ago
Hi,You should be able to do this with nested class-maps. The class-map that...

ciscocsoc has commented on ACE20 and TLSv1.0 extensions problem

2 years 5 months ago
Hi Cesar,I didn't get a 10Gig capture - but I did a cpature from the context on...

ciscocsoc has commented on ACE20 and TLSv1.0 extensions problem

2 years 5 months ago
Hi Ajay,Disabling normalization made no difference. I thought it might help,...

ciscocsoc has commented on ACE20 and TLSv1.0 extensions problem

2 years 5 months ago
Hi Ajay,Thank you.  I don't think that is the problem as I'm not using the SSL...

ciscocsoc has created ACE20 and TLSv1.0 extensions problem

2 years 5 months ago
Hi,I have a problem with an ACE20 running software version A2(2.3) [build 3.0(0...

ciscocsoc has commented on ACE HTTPS Probe problem related to dns

3 years 1 month ago
> I'm thinking that you are saying to do thisCorrect.The HTTP header...

ciscocsoc has commented on ACE HTTPS Probe problem related to dns

3 years 1 month ago
Hi,In the probe definition you can specify an HTTP header value:probe https...

ciscocsoc has commented on Issue with Scripted Probe for LDAP

3 years 1 month ago
To update the script==============Extract the Cisco-supplied LDAP script from...

ciscocsoc has commented on Issue with Scripted Probe for LDAP

3 years 1 month ago
Hi Robert,Yes - it is just like Active Directory. The Bind Success response is...

ciscocsoc has commented on Issue with Scripted Probe for LDAP

3 years 1 month ago
Reply using the "Use advanced editor" option (top rh corner)This brings up an...

ciscocsoc has commented on Issue with Scripted Probe for LDAP

3 years 1 month ago
> but I can get a tcpdump from the server if that helpsIt can't hurt. The 30002...

ciscocsoc has commented on Issue with Scripted Probe for LDAP

3 years 1 month ago
Hi Robert,A packet capture from the switchport to which the server is connected...

ciscocsoc has commented on ACE functionally question - SSL tunnelling / proxy on behalf of non SSL client

3 years 1 month ago
Hi,Yes. The ACE SSL Configuration Guide shows how to do this in the "...

ciscocsoc has commented on ACE SSL Offload Advantage on End to End SSL

3 years 3 months ago
Hi,If you terminate on the ACE before re-encrypting you have an opportunity to...

ciscocsoc has commented on ACE SSL Offload Advantage on End to End SSL

3 years 3 months ago
Hi,If you terminate on the ACE before re-encrypting you have an opportunity to...

ciscocsoc has commented on Certificate order for SSL ChainGroup on ACE

3 years 4 months ago
Only if you use a PKCS12 format file. See https://supportforums.cisco.com/...

ciscocsoc has commented on Certificate order for SSL ChainGroup on ACE

3 years 4 months ago
Only if you use a PKCS12 format file. See https://supportforums.cisco.com/...

ciscocsoc has commented on Certificate order for SSL ChainGroup on ACE

3 years 4 months ago
Hi Sez,The preferred order is:Issued CertIntermediatesRootHTHCathy

ciscocsoc has commented on Certificate order for SSL ChainGroup on ACE

3 years 4 months ago
Hi Sez,The preferred order is:Issued CertIntermediatesRootHTHCathy

ciscocsoc has commented on ACE: parse length-exceed action

3 years 4 months ago
Hi, The following config snippet should point you in the right direction:...

ciscocsoc has commented on ACE: parse length-exceed action

3 years 4 months ago
Hi, The following config snippet should point you in the right direction:...

ciscocsoc has commented on multiple probes in a serverfarm

3 years 4 months ago
Hi,From the ACE Server Load Balancing Guide:"By default, the real servers that...

ciscocsoc has commented on multiple probes in a serverfarm

3 years 4 months ago
Hi,From the ACE Server Load Balancing Guide:"By default, the real servers that...

ciscocsoc has commented on ACE - LDAP TCL Script

3 years 4 months ago
Hi,It looks like you are probing a Microsoft AD LDAP server. The ASN.1 encoding...

ciscocsoc has commented on ACE - LDAP TCL Script

3 years 4 months ago
Hi,It looks like you are probing a Microsoft AD LDAP server. The ASN.1 encoding...

ciscocsoc has commented on ACE4710 HTTP probe

3 years 5 months ago
Hi,One  potential problem is that the server needs to send a  Content-Length...

ciscocsoc has commented on ACE4710 HTTP probe

3 years 5 months ago
Hi,One  potential problem is that the server needs to send a  Content-Length...

ciscocsoc has commented on Checking the return string in probe.

3 years 5 months ago
Hi,The regex string should be unquoted e.g. ...expect regex onlineYou only need...

ciscocsoc has commented on Checking the return string in probe.

3 years 5 months ago
Hi,The regex string should be unquoted e.g. ...expect regex onlineYou only need...

ciscocsoc has commented on ACE service-policy out of service - still able to connect to VIP on port.

3 years 6 months ago
Hi,In the class-map under the policy map do you have something like:policy-map...

ciscocsoc has commented on ACE service-policy out of service - still able to connect to VIP on port.

3 years 6 months ago
Hi,In the class-map under the policy map do you have something like:policy-map...

ciscocsoc has commented on ACE - LDAP TCL Script

3 years 10 months ago
The cause of the immediate problem is the way in which ASN.1 codes lengths -...

ciscocsoc has commented on ACE - LDAP TCL Script

3 years 10 months ago
Error codes are documented in the "Server Load-Balancing Configuration Guide"...

ciscocsoc has commented on ACE probe for rserver

3 years 11 months ago
Hi,You will need a custom script. The supplied CHECKPORT_STD_SCRIPT should...

ciscocsoc has commented on http to https redirection URL

3 years 11 months ago
Hi George,From the Server Load-Balancing Guide:"The syntax of this command is...

ciscocsoc has commented on ACE probe

3 years 11 months ago
Hi,This will not work.From the manual section on configuring probes."An HTTP...

ciscocsoc has commented on ACE : can't get to loadbalance

4 years 4 weeks ago
Hi,Your VIP address isn't in VLAN 265. If you look really close at the OVH...

ciscocsoc has commented on Cisco ACE 4710 - load balancing base on URL pattern

4 years 3 months ago
Hi,The Cisco example at http://www.cisco.com/en/US/products/hw/modules/ps2706/...

ciscocsoc has commented on ACE ipsec issue

4 years 4 months ago
> becomes available again, the ACE sends all connections to the primary server...

ciscocsoc has commented on ACE30 Script Issues, LDAP_PROBE

4 years 4 months ago
Hi,Looks OK - if a little complicated.  If you look through the archives of...

ciscocsoc has commented on ACE module inter serverfarm communication ( on VIP)

4 years 5 months ago
Hi,You need to put a NAT-Pool on VLAN 460 and reference that in the policy-map...

Bio












ciscocsoc's Stats

Points407
Discussion started 14
Answers marked as Correct 37
Endorsed 0
Content Rated 9