[BUG] SSL VPN Client - Zero Byte

Trying to download the SSL VPN Client from the Alpha of Copernicus. I get logged into the user portal and see the links to download the client for Windows and a link for the configuration for windows. However, when I client on both of these, the downloaded exec file is zero bytes.

0 vishaljpatel over 9 years ago

Hi,

actually, it happened if you don't configure "default" CA in Objects-->Identity-->Certificate Authority. You need to configure it. Then try to download configuration & client.

From newer version firmware, We provide it with default settings, so you won't face such issue in future.

Hope it resolves your issue.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 toddyo_01 over 9 years ago in reply to vishaljpatel

I went into Objects>Idenity>Certificate Authority and setup the Default CA

Default

/C=US/ST=Texas/L=Frisco/O=Fiserv/OU=OSI/CN=Copernicus.integrasys-ns.biz/emailAddress=todd.allison@fiserv.com

2015-07-15

2037-01-01

Yes

I deleted and re-added the user. I then, went to the user portal to download the Windows Client. The download is still Zero Bytes.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 vishaljpatel over 9 years ago in reply to toddyo_01

Hi,

What is the version of SSL VPN clients updated by up2date? You can check it via System-->Maintenance-->Updates. I would suggest you to update it to latest one.

Also share the appliance firmware version. You can check it using below command.

console> system diagnostics show version-info
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 toddyo_01 over 9 years ago in reply to vishaljpatel

SYSTEM > MAINTENANCE > UPDATES
SSL VPN Client      -    -  0  --

console> system diagnostics show version-info

Appliance Key:                  SFDemo-f1cea6c5
Device-Id:                      N.A
Appliance Model:                SF01V
Firmware Version:               SFOS 15.01.0 Beta-1
Firmware Build:                 111
Firmware Loader version:        0x00000006
HW version:                     SO01
Config DB version:              15.009
Signature DB version:           15.009
Report DB version:              15.009
IPS Signature version:          3.12.37
Webcat Signature version:       0.0.0.31
AntiVirus Signature version:
Web Proxy version:              HTTP-Proxy.
SMTP Proxy version:             1.0.6.4
POP/IMAP Proxy version:         1.0.0.3.4
IM Proxy version:               0.0.0.5
Logging Daemon version:         0.0.0.17
Hot Fix version:                N.A
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 snehagohil over 9 years ago in reply to toddyo_01

It seems SSLVPN client is not downloaded via up2date ; it should show you SSLVPN Client version 1.0.004 under system --> Maintenance --> Updates.

Please try to update pattern and check if you are able to update the SSLVPN client or not.

URL for update is : u2d.sophos.com Port 443
Log File from advance shell ( root) is /log/u2d.log
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 toddyo_01 over 9 years ago in reply to snehagohil

I tried to Update Patten Now to no avail. The u2d.lg is empty when I look at it.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 snehagohil over 9 years ago in reply to toddyo_01

I tried to Update Patten Now to no avail. The u2d.lg is empty when I look at it.

Are you able to connect u2d.sophos.com on 443 ?
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 toddyo_01 over 9 years ago in reply to snehagohil

I was able to connect via TELNET u2d.sophos.com 443

SF01V_SO01_SFOS 15.01.0 Beta-1# telnet u2d.sophos.com 443
Trying 54.152.140.131...
Connected to u2d.sophos.com.
Escape character is '^]'.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 VivekJanjrukiya over 9 years ago in reply to toddyo_01

I was able to connect via TELNET u2d.sophos.com 443

SF01V_SO01_SFOS 15.01.0 Beta-1# telnet u2d.sophos.com 443
Trying 54.152.140.131...
Connected to u2d.sophos.com.
Escape character is '^]'.

Can you again issue license bypass command and reboot appliance and check ?

Regards,

Vivek
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 toddyo_01 over 9 years ago in reply to VivekJanjrukiya

I re-applied the license and rebooted the unit.  I still am not seeing any pattern updates.  The u2d.log shows the following:

Mon Jul 20 21:00:54 2015 Current up2date schema 5 for module atp NOT present in public.tblup2dateinf
o, inserting...
Previous versions for atp were cv=1.00, version=1.0.001
Mon Jul 20 21:00:54 2015 Succesfully inserted atp details for up2date schema 5 in public.tblup2datei
nfo.
Mon Jul 20 21:00:54 2015 /content/atp is already pointing to correct /content/atp_1.00/1.0.001
Mon Jul 20 21:00:54 2015 Current up2date schema 5 for module savi NOT present in public.tblup2datein
fo, inserting...
Mon Jul 20 21:00:54 2015 Succesfully inserted savi details for up2date schema 5 in public.tblup2date
info.
Mon Jul 20 21:00:54 2015 Directory /content/savi_1.00/1.0.001 not found, creating and changing link
/content/savi_new to point at it
Mon Jul 20 21:00:54 2015 Executing ln -s /content/savi_1.00/1.0.001 /content/savi_new
Mon Jul 20 21:00:55 2015 Current up2date schema 5 for module avira NOT present in public.tblup2datei
nfo, inserting...
Mon Jul 20 21:00:55 2015 Succesfully inserted avira details for up2date schema 5 in public.tblup2dat
einfo.
Mon Jul 20 21:00:55 2015 Directory /content/avira_1.00/1.0.001 not found, creating and changing link
/content/avira to point at it
Mon Jul 20 21:00:55 2015 Executing ln -s /content/avira_1.00/1.0.001 /content/avira
Mon Jul 20 21:00:55 2015 Current up2date schema 5 for module ips NOT present in public.tblup2dateinf
o, inserting...
Mon Jul 20 21:00:55 2015 Succesfully inserted ips details for up2date schema 5 in public.tblup2datei
nfo.
Mon Jul 20 21:00:55 2015 Directory /content/ips_10.0/1.0.001 not found, creating and changing link /
content/ips to point at it
Mon Jul 20 21:00:55 2015 Executing ln -s /content/ips_10.0/1.0.001 /content/ips
Mon Jul 20 21:00:55 2015 Current up2date schema 5 for module apfw NOT present in public.tblup2datein
fo, inserting...
Mon Jul 20 21:00:55 2015 Succesfully inserted apfw details for up2date schema 5 in public.tblup2date
info.
Mon Jul 20 21:00:55 2015 Directory /content/apfw_1.00/1.0.001 not found, creating and changing link
/content/apfw to point at it
Mon Jul 20 21:00:55 2015 Executing ln -s /content/apfw_1.00/1.0.001 /content/apfw
Mon Jul 20 21:00:55 2015 Current up2date schema 5 for module waf NOT present in public.tblup2dateinf
o, inserting...
Previous versions for waf were cv=1.00, version=1.0.001
Mon Jul 20 21:00:55 2015 Succesfully inserted waf details for up2date schema 5 in public.tblup2datei
nfo.
Mon Jul 20 21:00:55 2015 /content/waf is already pointing to correct /content/waf_1.00/1.0.001
Mon Jul 20 21:00:55 2015 Current up2date schema 5 for module sslvpn NOT present in public.tblup2date
info, inserting...
Mon Jul 20 21:00:55 2015 Succesfully inserted sslvpn details for up2date schema 5 in public.tblup2da
teinfo.
Mon Jul 20 21:00:55 2015 Directory /content/sslvpn_1.00/0 not found, creating and changing link /con
tent/sslvpn to point at it
Mon Jul 20 21:00:55 2015 Executing ln -s /content/sslvpn_1.00/0 /content/sslvpn
Mon Jul 20 21:00:55 2015 Current up2date schema 5 for module client_auth NOT present in public.tblup
2dateinfo, inserting...
Mon Jul 20 21:00:55 2015 Succesfully inserted client_auth details for up2date schema 5 in public.tbl
up2dateinfo.
Mon Jul 20 21:00:55 2015 Directory /content/client_auth_1.00/1.0.001 not found, creating and changin
g link /content/client_auth to point at it
Mon Jul 20 21:00:55 2015 Executing ln -s /content/client_auth_1.00/1.0.001 /content/client_auth
Mon Jul 20 21:00:55 2015 Current up2date schema 5 for module redfw NOT present in public.tblup2datei
nfo, inserting...
Mon Jul 20 21:00:55 2015 Succesfully inserted redfw details for up2date schema 5 in public.tblup2dat
einfo.
Mon Jul 20 21:00:55 2015 Directory /content/redfw_1.00/0 not found, creating and changing link /cont
ent/redfw to point at it
Mon Jul 20 21:00:55 2015 Executing ln -s /content/redfw_1.00/0 /content/redfw
Mon Jul 20 10:36:48 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Mon Jul 20 10:36:48 2015 /content/atp is already pointing to correct /content/atp_1.00/1.0.001
Mon Jul 20 10:36:48 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Mon Jul 20 10:36:48 2015 /content/savi_new is already pointing to correct /content/savi_1.00/1.0.001
Mon Jul 20 10:36:48 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Mon Jul 20 10:36:48 2015 /content/avira is already pointing to correct /content/avira_1.00/1.0.001
Mon Jul 20 10:36:48 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Mon Jul 20 10:36:48 2015 /content/ips is already pointing to correct /content/ips_10.0/1.0.001
Mon Jul 20 10:36:48 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Mon Jul 20 10:36:48 2015 /content/apfw is already pointing to correct /content/apfw_1.00/1.0.001
Mon Jul 20 10:36:48 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Mon Jul 20 10:36:48 2015 /content/waf is already pointing to correct /content/waf_1.00/1.0.001
Mon Jul 20 10:36:48 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Mon Jul 20 10:36:48 2015 /content/sslvpn is already pointing to correct /content/sslvpn_1.00/0
Mon Jul 20 10:36:48 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Mon Jul 20 10:36:48 2015 /content/client_auth is already pointing to correct /content/client_auth_1.
00/1.0.001
Mon Jul 20 10:36:48 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Mon Jul 20 10:36:48 2015 /content/redfw is already pointing to correct /content/redfw_1.00/0
Tue Jul 21 10:30:37 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Tue Jul 21 10:30:38 2015 /content/atp is already pointing to correct /content/atp_1.00/1.0.001
Tue Jul 21 10:30:38 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Tue Jul 21 10:30:38 2015 /content/savi_new is already pointing to correct /content/savi_1.00/1.0.001
Tue Jul 21 10:30:38 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Tue Jul 21 10:30:38 2015 /content/avira is already pointing to correct /content/avira_1.00/1.0.001
Tue Jul 21 10:30:38 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Tue Jul 21 10:30:38 2015 /content/ips is already pointing to correct /content/ips_10.0/1.0.001
Tue Jul 21 10:30:38 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Tue Jul 21 10:30:38 2015 /content/apfw is already pointing to correct /content/apfw_1.00/1.0.001
Tue Jul 21 10:30:38 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Tue Jul 21 10:30:38 2015 /content/waf is already pointing to correct /content/waf_1.00/1.0.001
Tue Jul 21 10:30:38 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Tue Jul 21 10:30:38 2015 /content/sslvpn is already pointing to correct /content/sslvpn_1.00/0
Tue Jul 21 10:30:38 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Tue Jul 21 10:30:38 2015 /content/client_auth is already pointing to correct /content/client_auth_1.
00/1.0.001
Tue Jul 21 10:30:38 2015 Current up2date schema present in public.tblup2dateinfo, Nothing to do...
Tue Jul 21 10:30:38 2015 /content/redfw is already pointing to correct /content/redfw_1.00/0
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel