2 Replies Latest reply on Sep 11, 2012 7:40 AM by seebvey

    Sidewinder Cluster Certificate

    seebvey

      Hello,

       

      does anybody know which Certificate is used by Sidewinder 70102 for the Cluster communication?

       

      I have a 70102 Cluster but the standy machine cannot sync the configuration. In audit log i can see errors "certificate expired".

       

      Which cert is used and can i change the cert?

       

      ******************************************************************************** ***

      Sep  5 14:57:05 2012 CEST  f_ent_relay_daemon a_libproxycommon t_attack p_major

      pid: 2947 ruid: 0 euid: 0 pgid: 2947 logid: 0 cmd: 'entrelayp'

      domain: Erlp edomain: Erlp hostname: f-fw01.domain.com

      category: protocol_violation event: SSL session error

      netsessid: 50474c210008dd89 srcip: 10.8.15.2 srcport: 18139 srcburb: Heartbeat

      dst_local_port: 9004 protocol: 6 src_local_port: 0 dstip: 127.0.0.1

      dstport: 9014 dstburb: Firewall attackip: 10.8.15.2 attackburb: Heartbeat

      rule_name: Entrelay

      reason: The SSL session failed.  This may be a configuration error, or it may be an attempt to subvert the protocol.  Connection closed.

      information: SSL_accept

      SSL routines:SSL3_READ_BYTES:sslv3 alert certificate expired

      ******************************************************************************** *****

       

       

      regards

      Sebastian

       

      Message was edited by: seebvey on 9/6/12 10:32:46 AM CEST