Fibre Channel (SAN)

Reply
New Contributor
Posts: 2
Registered: ‎12-11-2015

https access problem

Hello! I have a problem with https access. 
The system is Lenovo Flex System Enterpise and i have two FC5022
The firmware is 7.4.0a. After some  actions with seccertutil genkey we lost access to web gui.

This is result with broken switch:

Starting Nmap 6.47  at 2015-12-11 10:02 EST
Nmap scan report for 192.168.149.205
Host is up (0.0032s latency).
Not shown: 910 closed ports, 89 filtered ports
PORT STATE SERVICE
22/tcp open ssh

This is result with normal switch:
Starting Nmap 6.47  at 2015-12-11 09:48 EST
Nmap scan report for 192.168.149.206
Host is up (0.0016s latency).
Not shown: 909 closed ports, 89 filtered ports
PORT STATE SERVICE
22/tcp open ssh
443/tcp open https

This is result with broken switch:
FC5022:root> seccertutil show -commoncertall
List of common certificate files:
Passphrase : Exist
Private Key : Exist
CSR : Exist
Certificate : Empty
Root Certificate: Empty
CA : Empty

This is result with normal switch:
FC5022:root> seccertutil show -commoncertall
List of common certificate files:
Passphrase : Empty
Private Key : Empty
CSR : Empty
Certificate : Empty
Root Certificate: Empty
CA : Exist
HTTPS : Exist

FC5022:root> ipfilter --show -a
Legends: [Proto-Protocol, P-Permit, D-Deny, FWD-FORWARD, I/P-INPUT]

Name: default_ipv4, Type: ipv4, State: active
Rule Source_IP Proto Dest_Port Action Flow Destination_IP
1 any tcp 22 P I/P any
2 any tcp 23 D I/P any
3 any tcp 80 D I/P any
4 any tcp 443 P I/P any
5 any udp 161 P I/P any
6 any udp 123 P I/P any
7 any tcp 600-1023 P I/P any
8 any udp 600-1023 P I/P any

Name: default_ipv6, Type: ipv6, State: active
Rule Source_IP Proto Dest_Port Action Flow Destination_IP
1 any tcp 22 P I/P any
2 any tcp 23 D I/P any
3 any tcp 80 D I/P any
4 any tcp 443 P I/P any
5 any udp 161 P I/P any
6 any udp 123 P I/P any
7 any tcp 600-1023 P I/P any
8 any udp 600-1023 P I/P any



I think there is a problem with certificates. 
Thx all for advice!!!


New Contributor
Posts: 2
Registered: ‎12-11-2015

Re: https access problem

Someone, help me please.

Join the Community

Get quick and easy access to valuable resource designed to help you manage your Brocade Network.