Cisco VPN :: Unable To Delete Certificate From 3640 Router?
May 13, 2012
i have configured a cisco router with the following configuration to practice obtaining certificates from a microsoft 2008 server configured as a stand alone CA.this part works okay but what i am trying to do next is giving me a headachei am trying to delete the identity certificate but am having no luck whatsoever
interface FastEthernet0/0ip address 192.168.2.1 255.255.255.0ip nat outsideno shut
interface FastEthernet0/1ip address 192.168.1.1 255.255.255.0ip nat insideno shut
access-list 101 permit ip 192.168.1.0 0.0.0.255 192.168.5.0 0.0.0.255
access-list 102 deny ip 192.168.1.0 0.0.0.255 192.168.5.0 0.0.0.255access-list 102 permit ip 192.168.1.0 0.0.0.255 any
[code].....
i entered the following commands on the router to delete the certificatebut as you can see its telling me the certificate dosn't exist(this method of deleting the cert has come from Richard Deals complete cisco vpn configuration guide) 3Purley(config)#crypto ca certificate chain PurleyPurley(config-cert-chain)#no certificate 61E0446A000000000002% Certificate not found.ps the router is a 3640 running c3640-jk9o3s-mz.124-7.bin
On 1811W Router i have OSPF running and i do not need this static route.ip route 192.168.20.0 255.255.255.0 192.168.20.3,when i try to delete i get error ,1811w#,config t,Enter configuration commands, one per line. End with CNTL/Z.,1811w(config)#no ip route 192.168.20.0 255.255.255.0 192.168.20.3,%No matching route to delete,1811w(config)#.
I have a EA4500 that I get error 2315 when I try to Delete,change name,or icon. I did a 30/30/30 and everything worked great,24 hours later I was back to error 2315. I tried re-flashing the firmware, but that didn't work. I get the same problems when I try using the Smart Wifi app. There are also times when I can not access the router using Smart Wifi unless I reboot the router when I get home.
I have a Cisco 3640 router with IOS v.12.3(16) It does not recognize the crypto commands.
#sh version Cisco Internetwork Operating System Software IOS (tm) 3600 Software (C3640-I-M), Version 12.3(16), RELEASE SOFTWARE (fc4) Technical Support: [URL] Copyright (c) 1986-2005 by cisco Systems, Inc. Compiled Tue 23-Aug-05 20:03 by ssearch Image text-base: 0x60008B00, data-base: 0x60D36000 ROM: System Bootstrap, Version 11.1(20)AA2, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1) ROM: 3600 Software (C3640-I-M), Version 12.3(16), RELEASE SOFTWARE (fc4) router01 uptime is 3 hours, 43 minutes System returned to ROM by power-on System image file is "flash:c3640-i-mz.123-16.bin"
I have two ACS 5.2 running as primary and secondary instances respectively. When I try to delete a remote log target under System Administration > ... > Configuration > Log Configuration > Remote Log Targets I get the following error message...."The item you trying to delete is referenced by other items. You must remove all references to this item before it can be deleted".
I have searched the configuration within the web gui and was unable to find anything that reference the object that I'm trying to delete.
We have a location that currently has one frame T1 and 4 point-to-point T1s. We are looking at adding a second frame T1 to be bonded with the first. Currently, we have an old 3640 router, so I am thinking this would be a good time for an upgrade. Cost is a concern, so I am hoping to buy something refurbished that is newer than what we have now but is not going to cost a ton as buying new would. My thought is either a 2821 or 2921 with 2 HWIC-4T1/E1. I am not familiar with this HWIC just wanting to make sure this a good solution for our situation.
I have two Cisco WLC 5508 controllers that I'm trying to set-up for our new corporate WLAN. I've gone through most of the configuration fine but have ran into an issue uploading a signed certificate to one of my controllers. I should point out that I have managed to upload the certificate successfully to one of the controllers, I just can't seem to upload it to the second.The issue is as follows:
- I've logged into the controller, gone to Security -> Web Auth -> Certificate -> Download Certificate - I've specified my tftp server details and selected apply - the process begins and I can see through my tftp client that the controller is attempting to copy and install the certificate - The controller tries to install the certificate but fails, reporting the same
I have been confronted with an issue recently with two of my 3640 series router reloading endlessly.Initially i thought it could be a matter of MEM not well seated, but unfortunately it wasn't the problem.i have attached the gibberish produced when these routers are booted up.Be informed as well that these devices are loaded with max MEM.
i have 2 x T1 terminating on border router cisco 3640 route. (configured using multilink interface). Our IP block is routed on this bundled T1 circuits by At&T. I want more internet bandwidth.
1. Can i connect my DSL (on ethernet interface and using static DSL IP) on the same router and confgure two static routes to internet - one to multilink interface and other to ethernet interface (connected to DSL) ?
2. I have many servers using static NAT to external IPs which are routed on T1 circuits. Will it get into issues when communicating to outside? [for example my exchange server, websites etc?
The Cisco 3600 series (3640) is hanged during booting proccess, the IOS is decompressed, but after some text it hanges and I even cannot go to user exec. ROMmon and bypassing the config setting, but the result is still the same.
My friend has just got a laptop and when she is at my place it shows that my computer is nearby but message says "Windows was unable to find a certificate to log in to network".
I just got back from vacation and suddenly can't connect to my Wifi network at home with my netbook anymore. It says validating identity but never connects. When I try to repair the connection, it keeps authenticating and then says that windows is unable to find a certificate to log me on to the network. I did some googling and it was suggested to uncheck the Enable IEEE 802.1x authentication for this network box under the Authentication tab in Wireless Network properties. I tried that but then I get an error message saying "The network password needs to be 40bits or 104bits depending on your network configuration".I have no idea what to do or what the problem is. My other laptop works fine from which I have set up this network works fine. My phone seems to work fine, too. I already restarted the router and my netbook but that didn't work either.
I've been wrestling with a Windows XP reinstall that wiped out my network adapter. Fortunately I found D-Link AirPlus Utility and have restored it. However, now it says that windows was unable to find a certificate to log me on to the network, although I have entered the correct key.
i am running c3640-is-mz.124-21.bin on a cisco router 3640. i am trying to create a monitor session in the CLI and everytime i type the command Router(config)#monitor session 1 interface ethernet2/1 % Invalid input detected at '^' marker. Router(config)#monitor session 1 interface ethernet2/1 ^% Invalid input detected at '^' marker. i get the error invalid input ?
I have a 3640 router with 4 Fast Ethernet Network Modules (1fe-tx, 1fe2w & 2fe2w-v2) and a Catalyst 2912 switch. I can not acheive a link between the 2 devices. All four will not get a link light and the interface(s) show no errors. If I plug the Router nic into virtually any other switch or workstation it works flawlessly. I put a switch between the catalyst and the 3640 and it works without error.
Steps I have tried...
1. Configure interfaces on both Switch and Router to Auto Speed, Auto Duplex2. Configure interfaces on both Switch and Router to speed 100, Full Duplex3. Try Both Crossover and Straight-Through verified working cables.4. Tried a second 2912xl-en switch
Both 2912 switches are factory defaulted, other then the changes I made to the speed and duplex to try to get them connected.Both the router and switches have been doing other functions (seperatlly) within our network for years?So my question is...Why is the NICs in the router compatible with every other vendor other than CISCO?
We find ourselves in a difficult situation with the Cisco VPN Client version 5.0.07.0290 where it keeps giving us an
"Error 42: Unable to create certificate enrollment request"
When we attempt to use the Online enrollment method to create and enroll a new certificate. There is no additional information in the VPN client logs where we have set 3-High for all logs. In addition, Wire shark does not show any packets sent from the machine running the client to the Cisco 3825 router which runs the Cisco CA.
To create and enroll a certificate we do the following:
1. Click on the Enroll button to show the Certificate Enrollment dialog 2. Select Online 3. Select <New> for Certificate Authority 4. Enter http://192.168.120.1 as CA URL (note, 192.168.120.1 is the IP of the Cisco 3825) 5. Click Next to display the dialog where we can enter certificate details 6. Enter details in all fields except IP Address and Domain 7. Click Enroll which shows a dialog with the Error 42 ... message in it.
If we attempt to create a request by using the File method, all works fine, that is, the client creates a file with the enrollment request. The fact that the client does not send any messages to the Cisco CA leads us to believe that we have a problem on the client machine. However, the client does not write any information in the logs, so it is a bit hard to fix the problem. I can provide additional configuration information if required for both the client and the Cisco CA. Note that we have not modified any client configuration. Basically, we installed the client on a Windows 7 64bit machine and attempted the steps listed above.
There is ASA with remote access VPN and users are authenticated using third party signed certificates (CA is not local in ASA).When user certificate expires i can see it in syslog messages. For example:
%ASA-3-717009: Certificate validation failed. Certificate date is out-of-range, serial number: (...)
I would like to know if there is an opportunity to view user's certificate expiry date beforehand, say, 3 days before?
I have a Linksys Wireless-G WRT54GL v1.1 with password I don´t know.I wonder how can I delete the password? I tried resetting but still asks for the password!
I moved to Comcast internet yesterday (from 3Mbps DSL), and the E4200 seems to be working well (although somewhere along the way it decided to delete all the files on the NAS drive...an issue for another day). On my laptops and wired PCs I'm now seeing 15-20Mbps down, and 4Mbps up. However, when I connect with my iPhone 3GS, I only see about 7.5Mbps down, and 4Mbps up using online speedtests. I have tried messing with the router settings and resetting all the network settings on the iPhone but nothing changes. I know my iPhone can handle more, because I get 15Mbps down when I visit family (they have a Netgear N300). I can only conclude that my E4200 is the cause.
I'm looking to upgrade the iOS on a Cisco 3640 to the last supported level, 12.4.25, and then see what I can make it do.
I'm understanding that the only way to acquire a legitimate copy of the appropriate iOS version is to pay for a service contract, even though I won't need any other service provided for it.
when dealing with NATing with port fowarding from a specific IP range on the outside to a inside IP address. Here is what I have now:Cisco 3640 WAN Router: [code]
which ofcouurse did not work and ASA did not respond to 443 on either Anyconnect or HTTPS. Nothing showing in"show ip nat translations" for the incoming traffic from “ip nat outside source static tcp 15.236.10.0 192.168.4.2” and “ip nat inside source static tcp 192.168.4.2 15.236.10.0”
I want upgrade IOS on my 7206VXR from 12.4(12c) to 15.1(4)M5 , but the CF card only 64M.
-NAME: "disk2", DESCR: "64MB Compact Flash Disk for NPE-G1" -Router#show bootvar
BOOT variable = disk2:c7200-jk9s-mz.124-12c.bin,15.1(4)M5 is almost 40M. So there is not enough space.I want to ask is it ok if I upgrade with normal precedure , With the command " copy tftp: disk2: " ?Does the router will automatically delete the older IOS first and then copy into the new one ? Or Is there something I should pay attention first ?
I have an Acer AX3400 (windows 7). I'm trying to install wireless router Netgear WNR3500v2. I did not succeed sofar. Do I have to uninstall NVIDIA drivers first?
I correct in understanding that when an external hd is connected to the e3000 via usb, that i can read and write to it, but i cannot delete files from the external drive? i have been trying to figure this out for a while and cannot delete files after i write them.
I have two routers I am trying to connect via the WIC-2T port. I can ping from router to router, but not from my PC (192.168.2.122) to the 3745 (10.0.1.3)..
3640: Current configuration : 1846 bytes ! version 12.2
I'm using 3640 router running on c3640-js-mz.124-25d.bin IOS. I'm using NM-1A-OC3SML= (ATM OC3, long reach single mode) interface card. Now my pc is connected an fast ethernet interface of the router. Need to know the ATM configuration on this cisco 3640 router in order to achieve the ATM over ethernet traffic get success. As of now i've confugred as below but it's not working it seems.
interface ATM2/0 bandwidth 120000 ip address 10.2.2.1 255.255.255.0 no atm ilmi-keepalive pvc 0/36 protocol ip 10.2.2.10 broadcast cbr 70000 encapsulation aal5mux ip
let me know the correct encapsulation type for the connectivity.
