Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
315
Views
0
Helpful
3
Replies

HTTPS Access

WerllenSilva
Level 1
Level 1

‎08-10-2024 04:57 PM - edited ‎08-10-2024 04:58 PM

Hello everyone,

I configured ip http secure server to test https access to my router. 

I can access from the web browser, but when I try to telnet from the router to interfaces within it the session does not close. I would like to know if anyone has had this problem, if there might be a bug or i'm forgetting some configuration.

Even though it works using the web browser, I need to test it using a non routed interface, so I'm checking to see if there might be a problem.

HTTP secure server status: Enabled
HTTP secure server port: 443
HTTP secure server ciphersuite: XXXX
HTTP secure server TLS version: TLSv1.2 TLSv1.1
HTTP secure server client authentication: Disabled
HTTP secure server PIV authentication: Disabled
HTTP secure server PIV authorization only: Disabled
HTTP secure server trustpoint: XXXX
HTTP secure server peer validation trustpoint:
HTTP secure server ECDHE curve: XXXX
HTTP secure server active session modules: ALL

 

Loopback IP (not routed)

telnet 192.168.10.168 443
Trying 192.168.10.168, 443 ...
% Connection timed out; remote host not responding

As I`m doing a telnet from the router itself, I think that the vty acl is not used.

Cisco 9400 Series

 

Labels:
0 Helpful
3 Replies 3

Kasun Bandara
VIP
VIP

‎08-10-2024 06:42 PM - edited ‎08-10-2024 06:42 PM

@WerllenSilva Hi, can you share the configuration of the router which have the HTTP server enabled? there can be many reasons. for start,, check if you have any ACLS to block HTTP traffic to mentioned port.

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB
0 Helpful

M02@rt37
VIP
VIP

‎08-11-2024 01:11 AM

Hello @WerllenSilva 

By default, the HTTPS service binds to all interfaces. If you haven’t restricted it, it should already be listening on the loopback...

Do yo check c9400 logs ?

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
0 Helpful

WerllenSilva
Level 1
Level 1

‎08-13-2024 09:58 AM

Hey everyone,

I was able to schedule a reboot for the device and now is working fine.

One point I noticed is that after the reboot, a new trustpoint certificate was generated, I cannot confirm that this was the problem but now is working fine.

Thank you everyone for your help.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card