Citrix: mac OSX ‘You have chosen not to trust…’
KB ID 0001520 Problem After a colleague deployed Citrix for a customer the other day, they complained that they had a mac user that was getting certificate errors. They had a publicly signed wildcard certificate, but this user was still having problems. After I heard a few “tell him to stop using a mac” comments, I said, “I’m using a MacBook here, would you like me to test it?” The URL opened fine in...
Meraki Block Page http://wired.meraki.com:8090 ‘Not Found’
KB ID 0001365 Problem If you have a Meraki Security device and have enabled ‘Content Filtering’, instead of a nice ‘block-page’ informing you why you are being blocked you may see this; http://wired.meraki.com:8090 This is happening because your Corporate DNS is resolving ‘wired.meraki.com’ to 54.241.7.184, which you can also see if you look at the URL you are trying to connect to it on port 8090. A...
vCenter – Management Ports
KB ID 0001324 Problem A while ago my colleague was struggling to get into a vCenter server. Normal https (TCP 443) wasn’t letting him in, I knew you could manage the appliance directly, (but I couldn’t remember the port number!) He knew there was an alternate port number, but we didn’t know what it was. Solution vCenter Appliance (Direct) Management Port TCP: 5480 i.e. https://{ip-or-host-name}:5480 vCenter /...
Cisco ASA – Allowing Microsoft Activation
KB ID 0001237 Problem Activation occurs over TCP 80 and 443, so usually this will not trip you up. However if you are on a site with a very restrictive firewall config, then you might want to add the following. Solution I’ll break with the norm, and just post the config in its entirety, (just remove the comments in red.) !The Firewall needs a domain name of its own. ! domain-name petenetlive.com ! !Setup DNS Lookups so the...
Cisco Catalyst Switches – Adding Licenses
KB ID 0001012 Problem I had a load of Cisco Catalyst 3560 switches that needed ‘ipbase’ licenses adding to them today. I’ve messed about with plenty of ASA license upgrades before, but not switches. Solution 1. First thing you need is a Cisco PAK, this may be in an email or turn up in a cardboard envelope. 2. Go to http://www.cisco.com/go/license and log in (if you don’t already have a Cisco CCO account you...