05-17-2019 12:06 PM - edited 07-23-2019 05:57 AM
Just a few things I've noticed off with the new firmware and wanted to pass along:
Other than that, everything has been great, thanks!
Solved! Go to Solution.
08-22-2021 12:50 PM
Hi
In case some of you are still waiting to solve the below issue:
>>>>I log in (even with the correct credentials) I receive this email "<info>weblogin: pam_krb5(weblogin:auth): (user cisco) >>>>authentication failure"
To stop getting the above pesky messages everytime with logins, go to system-mgmnt/user-accounts page in GUI and if you scroll down below some...there will be "Remote Authentication Service"....and here
- in case you are NOT USING AD/LDAP/RADIUS for offloading the user-authentication to external servers, then kindly please delete all the 3 entries AD, LDAP, Radius - even if they are empty and not used/enabled.
- then apply/save
Now try by log-out of GUI and login to GUI again...test with giving a wrong user-auth credentials...it should result in email-alert...and then try with correct user-credentials...you should NOT see the above messages about pam-krb (its related to AD-Kerberos module i think)...
Please note: The order of user-auth priority-order is always AD/LDAP/RADIUS/Local-DB-user-accounts...if one of them is enabled and reachable and the user-account is not available or fails, then the authentication is considered as fail and wont check the subsequent user-db next...
07-23-2019 05:56 AM
Unfortunately, #3 came back to bite us. Occasionally, when an interface gets knocked out, we will lose a firewall rule which disrupts our VPN. We have two UDP ports that are forwarded (from WAN1 and WAN2 to VLAN1), then two firewall rules for each port to allow traffic from a specific ip and deny traffic for everything else. After the upgrade, the port forward on WAN2 will stop working and I'll have to go in and reset the firewall. Making any change to the firewall rules seems to restore traffic so I usually just disable and enable any firewall rule just to reset the firewall. This has been happening for months.
I've tried various fixes like deleting the rules, re-adding them, and changing the ordering but it doesn't seem to help. I guess the next step is to try a factory reset. We did not have this problem with the previous firmware version. Kind of regretting upgrading now.
08-03-2021 08:30 AM
Hello, I follow up this thread because I also have the issue #2, it is literally spamming my email everytime I login to the router. Did anybody find a solution? Thanks a lot
08-22-2021 12:50 PM
Hi
In case some of you are still waiting to solve the below issue:
>>>>I log in (even with the correct credentials) I receive this email "<info>weblogin: pam_krb5(weblogin:auth): (user cisco) >>>>authentication failure"
To stop getting the above pesky messages everytime with logins, go to system-mgmnt/user-accounts page in GUI and if you scroll down below some...there will be "Remote Authentication Service"....and here
- in case you are NOT USING AD/LDAP/RADIUS for offloading the user-authentication to external servers, then kindly please delete all the 3 entries AD, LDAP, Radius - even if they are empty and not used/enabled.
- then apply/save
Now try by log-out of GUI and login to GUI again...test with giving a wrong user-auth credentials...it should result in email-alert...and then try with correct user-credentials...you should NOT see the above messages about pam-krb (its related to AD-Kerberos module i think)...
Please note: The order of user-auth priority-order is always AD/LDAP/RADIUS/Local-DB-user-accounts...if one of them is enabled and reachable and the user-account is not available or fails, then the authentication is considered as fail and wont check the subsequent user-db next...
08-22-2021 01:50 PM
Hi nagrajk1969,
Following your advises I could avoid the pesky login failure message.
Now only wrong passwords generate the mail allert.
Gratefully
Cristian
12-01-2021 03:20 AM - edited 12-01-2021 03:22 AM
Thanks a lot! Fixed on my router too with 1.0.03.14 FW.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide