Tuesday, December 29, 2015

Firefox CUCM SSL Handshake Error



Firefox Error:
Secure Connection Failed
An error occurred during a connection to <IP ADDRESS of CUCM>. SSL peer rejected a handshake message for unacceptable content. (Error code: ssl_error_illegal_parameter_alert)

In Firefox:
Open About:Config
Search for “security.tls
Edit security.tls.insecure_fallback_hosts and add the <IP ADDRESS of CUCM>
Edit security.tls.version.fallback-limit and set to 0
Edit security.tls.version.min and set to 0

Saturday, October 3, 2015

vSphere 6 Update 1 - Veeam NFC storage connection is unavailable

vSphere 6 strikes again.

After an upgrade from vSphere 6 to vSphere 6 Update 1 all of our Veeam backups were failing with the message

"Processing VirtualMachineName Error: NFC storage connection is unavailable. Storage: [stg:datastore-42,nfchost:host-174,conn:vCenterServer]. Storage display name: [datastore]. Failed to create NFC download stream. NFC path....."

Here are a couple of write ups I found after the fact.  Had I known, I probably would have held off a few more weeks before upgrading.

http://triumphr3.blogspot.com/2015/09/vmware-6.html

http://www.vzaddict.com/updates/alert-veeam-customers-read-this-before-applying-vmware-vsphere-6-0-update-1/

https://www.veeam.com/kb2063

Friday, October 2, 2015

ESXi /var/log/hpHelper.log growing

As a follow up to my previous post (http://technotes.smoothwater.net/2015/10/ramdisk-var-is-full-and-vmotion-fails.html)

I found how to disable the HP Service that came in a custom ESXi image. We don't use the iLO connection between VMWare and iLO.  Here is a KB Article from VMWare.

http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2055924

Thursday, October 1, 2015

ramdisk 'var' is full and vMotion Fails

I recently had a couple of odd events in a VM cluster.  I started looking one particular host and found the some odd entries in the Events tab in the vSphere Client.  Mostly it was

  • The ramdisk 'var' is full.  As a result, the file /var/run/vmware/tickets/vmtck-<id> could not be written.

I couldn't find the particular error in VMWare KBs, but I found my problem in an article at Techazine.com

Here's an excerpt from that post.

Friday, September 11, 2015

vCenter virtual machine console "Unable to connect to the MKS: Internal Error"

When trying to connect to a virtual machine console in vCenter and the error "Unable to connect to the MKS: Internal Error" is displayed.  A restart of the Management Agents will likely fix the problem.  This can be done from the console of the ESXi host or via ssh.  If you have easy access to the console skip to the Restart Management Agents


SSH Setup to Direct Console User Interface:

Friday, July 17, 2015

Program fails to start properly with "This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms exception"

I recently came across this problem when running a Dot Net 3.5 application. Uninstall and Reinstall was no success. I finally found a local policy setting that was the problem.

Details:
The Windows environment may be configured to use FIPS encryption that is conflicting with some part of the code in the program you are trying to launch.

To correct this you will need to disable the "Local Security Setting System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing" policy in Windows.



Go to Start > Control Panel > Administrative tools > Local Security Policy. The Group Policy dialog appears. Under the "Local Policies" heading, select "Security Options" and look for the entry, "System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing." If this entry is enabled, disable it.


Additionally, open the registry editor, browse to the following path and make sure this registry subkey is set to 0:


HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\fipsalgorithmpolicy

Wednesday, March 25, 2015

Serial GPS device detected as "crazy" Serial Mouse

Windows will detect a Serial GPS device attached to a Com Port as a Serial Mouse and cause some "crazy" behavior.  Typically it will continually move the mouse to the top right corner of the screen every 1 second (the update interval of the GPS unit)

My particular application is a GPS unit plugged into a Toughbook CF-31 Docking station.

To resolve the problem, we can simply tell Windows not to enumerate any "Plug and Play" devices on the serial port.... or what it thinks are plug and play devices.


Monday, February 2, 2015

GX440 (ES440) Serial Port Reverse Telnet

The Seirra Wireless Airlink Series has the ability to user the serial port connector as a tenet interface to the console port on network equipment. Here is information on how to set that up for a Cisco device console port.

Build the appropriate cable connection using an existing cisco console cable or making an adapter. 
  • Use a Male-to-Male Null Modem adapter to connect the blue cisco console cable to the serial port 
  • Build an adapter with a DB9m to RJ45 adapter.
Configure the GX440 (ES440) serial port settings.




Telnet to the AirLink device on port 12345 (default port unless change in settings above).



** for reference