Got it
Huawei Enterprise Support Community
Community Forums Security
USG6625E: http/https mgmt...

USG6625E: http/https mgmt-access suddenly stopped

Created: Aug 4, 2020 16:02:18Latest reply: Sep 2, 2020 07:30:56 481 5 0 0 0
  Rewarded HiCoins: 0 (problem resolved)
View the author 1#

Hello everybody!


http/https mgmt-access to USG6625E suddenly stopped -

ERR_CONNECTION_ABORTED


Wiresshark shows that USG sends to host TCP-RST:


14:35:23.300279 10.10.37.7  10.11.1.2   TCP  40095 > pcsync-https [SYN] Seq=0 Win=8192 Len=0 MSS=1460 WS=256 SACK_PERM=1

14:35:23.302157 10.11.1.2   10.10.37.7  TCP  pcsync-https > 40095 [SYN, ACK] Seq=0 Ack=1 Win=65535 Len=0 MSS=1460

14:35:23.302481 10.10.37.7  10.11.1.2   TCP  40095 > pcsync-https [ACK] Seq=1 Ack=1 Win=64240 Len=0

14:35:23.303007 10.10.37.7  10.11.1.2   TCP  40095 > pcsync-https [PSH, ACK] Seq=1 Ack=1 Win=64240 Len=517

14:35:23.303786 10.11.1.2   10.10.37.7  TCP  pcsync-https > 40095 [RST] Seq=1 Win=65535 Len=0

14:35:23.304631 10.11.1.2   10.10.37.7  TCP  pcsync-https > 40095 [RST] Seq=1 Win=65535 Len=0

14:35:23.505839 10.10.37.7  10.11.1.2   TCP  40096 > pcsync-https [SYN] Seq=0 Win=8192 Len=0 MSS=1460 WS=256 SACK_PERM=1

14:35:23.507334 10.11.1.2   10.10.37.7  TCP  pcsync-https > 40096 [SYN, ACK] Seq=0 Ack=1 Win=65535 Len=0 MSS=1460

14:35:23.507520 10.10.37.7  10.11.1.2   TCP  40096 > pcsync-https [ACK] Seq=1 Ack=1 Win=64240 Len=0

14:35:23.507807 10.10.37.7  10.11.1.2   TCP  40096 > pcsync-https [PSH, ACK] Seq=1 Ack=1 Win=64240 Len=517

14:35:23.510206 10.11.1.2   10.10.37.7  TCP  pcsync-https > 40096 [RST] Seq=1 Win=65535 Len=0

14:35:23.510207 10.11.1.2   10.10.37.7  TCP  pcsync-https > 40096 [RST] Seq=1 Win=65535 Len=0

14:35:24.674832 10.11.1.2   10.10.37.7  TCP  ssh > 38866 [ACK] Seq=1 Ack=1 Win=40960 Len=0

14:35:24.674905 10.10.37.7  10.11.1.2   TCP  [TCP ACKed lost segment] 38866 > ssh [ACK] Seq=1 Ack=2 Win=63956 Len=0

14:35:28.531381 10.10.37.7  10.11.1.2   TCP  40101 > pcsync-https [SYN] Seq=0 Win=8192 Len=0 MSS=1460 WS=256 SACK_PERM=1

14:35:28.535857 10.11.1.2   10.10.37.7  TCP  pcsync-https > 40101 [SYN, ACK] Seq=0 Ack=1 Win=65535 Len=0 MSS=1460

14:35:28.536247 10.10.37.7  10.11.1.2   TCP  40101 > pcsync-https [ACK] Seq=1 Ack=1 Win=64240 Len=0

14:35:28.536845 10.10.37.7  10.11.1.2   TCP  40101 > pcsync-https [PSH, ACK] Seq=1 Ack=1 Win=64240 Len=517

14:35:28.537536 10.11.1.2   10.10.37.7  TCP  pcsync-https > 40101 [RST] Seq=1 Win=65535 Len=0

14:35:28.539249 10.11.1.2   10.10.37.7  TCP  pcsync-https > 40101 [RST] Seq=1 Win=65535 Len=0


It's possible that's of because sticky web session:


HRP_S<p-hwei-gw02>disp web-manager users

2020-08-04 01:33.329 +03:00

  Username                                      CurOnline

  -------------------------------------------------------

  admin                                         1

  -------------------------------------------------------

  Total online web users: 1

  Total SockNum: 6, SessionNum: 1

  -------------------------------------------------------

  ----------detail users info----------------------------

  UserName             Level UserIp           LoginTime

  ---------------------------------------------------------

  admin                15    10.10.37.7       2020/07/29 15:05:42

  ---------End------------------------------------------


MGMT interface config:


interface MEth0/0/0

 description --- MGMT ---

 undo shutdown

 ip binding vpn-instance default

 ip address 10.11.1.2 255.255.255.0

 service-manage http permit

 service-manage https permit

 service-manage ping permit

 service-manage ssh permit

 service-manage snmp permit


How could we solve this issue?


Perhaps the matter comes down to how to terminate sticked web user's session?


Like (0) Dislike (0) Favorite(0) Share Report
Previous: SecoManager
Next: Move 4: Don't Forget the Command When You Use the Eth-Trunk as the Heartbeat Interface
Featured Answers

Recommended answer

(0) (0)
DDSN
Admin Created Aug 5, 2020 02:23:21

Hi Valvaja,
Are you using Google Chrome? For details about how to handle the ERR_CONNECTION_ABORTED alarm on Google Chrome, see the following link: https://www.techbout.com/err-connection-aborted-chrome-39568/
I hope it helps!
View more
  • x
  • convention:

Valvaja
Valvaja Created Aug 5, 2020 07:26:24 (0) (0)
Hi! I tried to connect through http and https using Chrome and IE from different hosts with different OS.
And we have three USG more and everything is ok with http/https access to them.  
DDSN
DDSN Reply Valvaja  Created Aug 8, 2020 01:27:46 (0) (0)
You can compare the configurations between several firewalls and then configure the faulty firewall based on the configurations of the normal firewall.  
All Answers
(0) (0)
2#
Gustavo.HdezF
Gustavo.HdezF Admin Created Aug 4, 2020 16:03:48

Hello User. we are reviewing your question and we will answer you shortly. Thanks.
View more
  • x
  • convention:
(0) (0)
3#
DDSN
DDSN Admin Created Aug 5, 2020 02:23:21

Hi Valvaja,
Are you using Google Chrome? For details about how to handle the ERR_CONNECTION_ABORTED alarm on Google Chrome, see the following link: https://www.techbout.com/err-connection-aborted-chrome-39568/
I hope it helps!
View more
  • x
  • convention:

Valvaja
Valvaja Created Aug 5, 2020 07:26:24 (0) (0)
Hi! I tried to connect through http and https using Chrome and IE from different hosts with different OS.
And we have three USG more and everything is ok with http/https access to them.  
DDSN
DDSN Reply Valvaja  Created Aug 8, 2020 01:27:46 (0) (0)
You can compare the configurations between several firewalls and then configure the faulty firewall based on the configurations of the normal firewall.  
(0) (0)
4#
Hobbit
Hobbit Created Sep 2, 2020 07:30:56

The web-manager timeout command sets the timeout period for the web user interface (UI).
https://support.huawei.com/hedex/hdx.do?docid=EDOC1100092598&id=EN-US_CLIREF_0178952995&lang=en
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.