12.14.2010

SSL warning: contains unauthenticated content

One of the major annoyances of SSL is getting it to work when bouncing between http and https access with the same resources (e.g. stylesheets, images, etc). The most common of issues is most likely to be "contains unauthenticated content " warning (via FF). Some of the "symptoms" may include embedded content (image, flash movies, etc.) not loading.

Below is a quick and dirty run-down list on how to eliminate this warning, and stop giving your potential clients cyber heart attacks when they see this huge red exclamation mark.

1. Do not use any absolute URLs in code. Period. Load files/link with relative path only. In other words, when in https there shouldn't be any http reference in html for any loads (script/image/file/etc). Get firebug addon for firefox that will help you inspect your source code.

2. modify htaccess rule to exclude .css, js, image(e.g. gif,png, jpe?g) and other types (e.g. swf) from being redirected for objects that you "share" between http and https. When page loads it should grab files under correct protocol.

3. Most hosts nowadays offer some type of hotlink protection. If you followed suggestions above and still having warning issues, turn off hotlink protection.

VoilĂ ! You have a sweet clean page with a nice lock under https.
you're welcome.

4.06.2010

ATM-T1 4T1-IMA not recognized

Writing this one down cuz it took me *FOREVER* to figure it out. I can't be the only one working with old junk. In my case Cisco 2600XM and ATM-T1 4T1-MA network module.


SYMPTOM:
Card is not recognized. Unable to configure ATM and IMA interface.

Visual verify:
Right after IOS load, EN light goes off -- adapter disabled.


Sys verify:
Get following in show diag
Slot 1:
Unknown (type 188) Port adapter
Port adapter is disabled
Port adapter insertion time unknown
EEPROM contents at hardware discovery:
Hardware Revision : 1.0
Top Assy. Part Number : 800-03974-03
Board Revision : D0
Deviation Number : 0-0
Fab Version : 05
PCB Serial Number : JAD________
RMA Test History : 00
RMA Number : 0-0-0-0
RMA History : 00
Product (FRU) Number : NM-ATM-4T1=
EEPROM format version 4
EEPROM contents (hex):
0x00: 04 FF 40 00 BC 41 01 00 C0 46 03 20 00 0F 86 03
0x10: 42 44 30 80 00 00 00 00 02 05 C1 8B 4A 41 44 30
0x20: 37 32 37 30 34 46 31 03 00 81 00 00 00 00 04 00
0x30: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
0x40: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
0x50: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
0x60: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF
0x70: FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF

FIX:
Any Cisco IOS passed version 12.2 DOES NOT support the adapter (would be helpful if documentation reflected that). To fix go to cisco, select router model you have (2651XM in my case) download earliest version of IOS 12.2

LOAD OLD OS HOW TO:

1. Your router must be connected via console and fastEthernet with IP configured.
2. Download TFTPD32 to client WS. Extract, copy cisco IOS file to root directory. Run program (tftpd32.exe) in server mode.
3. Connect client WS to console port of the router via hyperTerminal. Switch to enable mode.
4. List files currently in flash: dir flash:
5. Make back up of your current IOS (not covered here)
6. See if you have enough room to hold on to your original IOS by running show file system command
7. Verify that client WS with TFTP server running has IP connectivity to the router (do ping from client to the router's ethernet adapter)
8. Copy downloaded older version of cisco IOS to the router. From hyperTerminal session type in the following: copy tftp: flash:
9. Enter address of client WS when prompted

10. Enter file name of the downloaded OS when prompted and verify as destination file. Hit 'y' enter to confirm copy.
11. If you have enough free space, select 'n' to 'erase flash' prompt. If you're out of space, select 'y', but make sure you've got back up of original OS. I can't emphasize this enough. Also, may want to do backup of show run as config may change.
12. Verify image file loaded successfully in flash: dir flash:
13. Verify file's integrity: verify flash:IOS_FILE_NAME.bin
14. Verify config register:
#config terminal
#config-register 0x2102
15. Set newly loaded IOS to boot
#show run | include boot
#configure terminal
(config)no boot system
(config)boot system flash:IOS_FILE_NAME.bin
16. Verify by running show run | include boot
Newly loaded IOS file name should show.
17. Commit to memory and reload
#write memory
#reload
18. Upon reload run #show version. You should see 12.2 or something along those lines. 4T1-IMA lights should also nicely stay on to indicate that adapter has been successfully recognized. Now you can configure your ATM interface.

I'm not responsible for any non-bootable routers. It is YOUR responsibility to do back up if you choose to follow these instructions. If your router is non-bootable, I cannot help you. G'luck.