About falke

falke · 08-27-2025

Hello,system is a FPR-1010 with ASA-SW 9.23(1)13.When enrolling LetsEncrypt certificates with ACME I noticed a strange timeout problem.Without "alt-fqdn" entries, everything works fine!crypto ca trustpoint LetsEncrypt_Trustpoint enrollment interface...

falke · 04-29-2024

Hello,on my FPR 1010 with ASA-Software 9.20(2)10 there are frequently these errors:3 Apr 29 09:36:41 firepower-1010 pidof[39335]: can't read from 39333/stat3 Apr 29 10:03:55 firepower-1010 pidof[19499]: can't read from 19501/stat3 Apr 29 10:45:15 fir...

falke · 06-24-2021

Hello, since the last reload two days ago I have a lot of dnsproxy errors in my log3199015Jun 24 16:32:07 firepower-1010 dnsproxy: No server for ctx: 1, idx: 0working on a FPR-1010 with cisco-asa-fp1k.9.16.1.SPA installed.What does this error mean? T...

falke · 08-27-2025

All three domains are resolved to a public IP. crypto ca trustpoint LetsEncrypt_Trustpoint enrollment interface outside enrollment protocol acme authentication http01 outside enrollment protocol acme url https://acme-v02.api.letsencrypt.org:443/di...

falke · 08-27-2025

ciscoasa(config)# debug crypto ca messages ^ ERROR: % Invalid input detected at '^' marker. ciscoasa(config)# debug crypto ca transactions ^ ERROR: % Invalid input detected at '^' ...

falke · 08-27-2025

Yes, all three real host-names can be resolved.ciscoasa(config)# ping asa.domain1 Type escape sequence to abort. Sending 5, 100-byte ICMP Echos to x.x.x.x, timeout is 2 seconds: !!!!! Success rate is 100 percent (5/5), round-trip min/avg/max = 1/2/10...

falke · 08-27-2025

Thank you for your reply. Sub-domain is always "asa.", the domain name is different.This should be a common task as RFC 5280 defines "Subject Alternative Names" (=alt-fqdn) to be expressed in the same manner as any other subject distinguished name.

falke · 04-30-2024

it started after upgrade to latest ASA code (an is still reported repeatedly) but as of now I can say that it is apparently just an error (!) entry in ASA logthere is no obvious impact on ASA functionality

Member Since	‎10-19-2017 10:51 PM
Date Last Visited	‎08-27-2025 11:44 PM
Posts	8
Total Helpful Votes Received	2

User Statistics

User Activity

LetsEncrypt ACME timeout problem

firepower-1010 pidof[...]: can't read from ../stat

firepower-1010 dnsproxy error

Re: LetsEncrypt ACME timeout problem

Re: LetsEncrypt ACME timeout problem

Re: LetsEncrypt ACME timeout problem

Re: LetsEncrypt ACME timeout problem

Re: firepower-1010 pidof[...]: can't read from ../stat