cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
334
Views
5
Helpful
1
Replies

Cannot start IDM with https or http to 4235

yulan.lee
Level 1
Level 1

I’m running IDS-K9-sp-4.1-4-S91 on 4235. I cannot use MS IE with https://IP to my IDS. There is no authentication, simply timed out. I’m using IE 6.0 with all SP on Win2K Server. It is a problem on both https with port 443 and http with port 80. The following is the outputs from various shows:

sensor(config-WebServer)# show setting

general

-----------------------------------------------

enable-tls: true default: true

ports: 443 <defaulted>

server-id: HTTP/1.1 compliant <defaulted>

-----------------------------------------------

sensor(config-Host)# show setting

networkParams

-----------------------------------------------

ipAddress: 10.1.1.1

netmask: 255.255.255.0 <defaulted>

defaultGateway: 10.1.1.254

hostname: sensor

telnetOption: disabled <defaulted>

ftpTimeout: 300 seconds <defaulted>

accessList (min: 0, max: 512, current: 0)

-----------------------------------------------

sensor# p 10.1.1.254

PING 10.1.1.254 (10.1.1.254) from 10.1.1.1 : 56(84) bytes of data.

64 bytes from 10.1.1.254: icmp_seq=1 ttl=128 time=0.235 ms

64 bytes from 10.1.1.254: icmp_seq=2 ttl=128 time=0.210 ms

64 bytes from 10.1.1.254: icmp_seq=3 ttl=128 time=0.206 ms

64 bytes from 10.1.1.254: icmp_seq=4 ttl=128 time=0.200 ms

--- 10.1.1.254 ping statistics ---

4 packets transmitted, 4 received, 0% loss, time 2998ms

rtt min/avg/max/mdev = 0.200/0.212/0.235/0.022 ms

bash-2.05a$ ps -ef | grep cidwebserv

cids 1105 1067 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1118 1105 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1119 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1122 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1141 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1142 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1143 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1144 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1145 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1146 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1147 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1148 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1149 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1150 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

cids 1151 1118 0 14:27 ? 00:00:00 /usr/cids/idsRoot/bin/cidwebserv

1 Reply 1

mkodali
Cisco Employee
Cisco Employee

Hi Yulan,

Looks like you are missing an entry in the access-list in the sensor which will allow access from your desktop to the sensor. I see current 0 under the access-lists under networkParams. Once you have an access-list entry which includes your address, entered on the sensor, the https with port 443 should hopefully work fine.