Skip to main content

HTTPS login issue on SonicWALL

Issue:

I recently noticed that I was unable to login to a customer's SonicWALL TZ-210 over HTTPS using Google Chrome.  HTTP was fine but attempting login with HTTPS gave the following error message:

 ERR_SSL_VERSION_OR_CIPHER_MISMATCH

 Clicking on "Details" revealed the following additional information:

 A secure connection cannot be established because this site uses an unsupported protocol or cipher suite. This is likely to be caused when the server needs RC4, which is no longer considered secure.

Cause:

This was due to two issues:
  1. Google Chrome no longer supporting RC4 encryption for HTTPS which the customer's SonicWALL was obviously using.
  2. The customer's SonicWALL using RC4 encryption for its HTTPS sessions rather than a more secure protocol.

Fix:

There's already an excellent fix for this issue on Spiceworks:

Comments

Post a Comment

Popular posts from this blog

Where are SCANPST.EXE and/or SCANOST.EXE?

I sometimes have to deal with customer computers whose Outlook PST or OST files have become corrupted.  Very often the fix is to run SCANPST.EXE on the offending PST/OST file.   However, every time I go to do this I forget where the two executable files are.  Here is where they are on a Vista machine running Office 2007: C:\Program Files\Microsoft Office\Office12 I hope this helps.
11 comments
Read more

WSUS Issues

Was configuring WSUS on a Server 2016 VM for a customer recently and found the performance to be very sluggish and most of the time the client PCs would time-out and throw an error message when trying to check for updates. After much digging on different forums I came across a fix that worked nicely: Open Internet Information Services (IIS) Manager and click on Application Pools Then Right-Click on your WsusPool instance and choose Advanced Settings Scroll down to Private Memory Limit (KB) and change it from the default of 1843200 to 0 which means unlimited. Then right-click and stop the WsusPool and then start it again. Hope this works for you.
Post a Comment
Read more

SNMP on HPE Aruba Switches

After installing a number of HPE/Aruba CX switches I was finding that they were completely unresponsive to SNMP requests. Went through the config and couldn't see anything... Eventually found that you need to configure this line in order for the SNMP service to run: snmp-server vrf default Don't forget to do a "wr mem" afterwards!
Post a Comment
Read more