Nortel: Unable to make configuration changes to a group of Branch Office Tunnels

Problem Description

Fact:
Nortel VPN Router
Nortel VPN Router 600
Nortel VPN Router 1010
Nortel VPN Router 1050
Nortel VPN Router 1100
Nortel VPN Router 1600
Nortel VPN Router 1700
Nortel VPN Router 1740
Nortel VPN Router 2600
Nortel VPN Router 2700
Nortel VPN Router 4500
Nortel VPN Router 4600
Nortel VPN Router 5000
Nortel VPN Router Software
Nortel VPN Router Software version 4.8 and up
Contivity 600
Contivity 1010
Contivity 1050
Contivity 1100
Contivity 1600 Secure IP Services Gateway
Contivity 1700
Contivity 1740
Contivity 2600 Secure IP Services Gateway
Contivity 2700
Contivity 4500 Secure IP Services Gateway
Contivity 4600 Secure IP Services Gateway
Contivity 5000
Contivity Server Software
Contivity Server Software version 4.8 and up
Branch Office Tunnel

Symptom:
Unable to make configuration changes to a group of Branch Office Tunnels.
The error message "The requested page is temporarily unavailable. Please use your browser’s back button to return to the previous page, and try the operation again" appears when trying to edit/configure Branch Office Tunnel.
Error: "The requested page is temporarily unavailable. Please use your browser’s back button to return to the previous page, and try the operation again."

Change:
Upgraded to v4.8x code.

Cause:
The problem usually happens when there’s a forward slash "/" on the group name. Nortel VPN Router Software (formerly known as Contivity Server Software) releases prior to 4.8 incorrectly allow using "/" (slash) in connection (tunnel) names. "/" is not a valid character in BO group names, user group names, BO connection names and user names. "/" is a reserved character that serves as a separator between group names in the group hierarchy – similarly to "/" or "\" being a separator in OS paths. So after upgrading to v4.8 code, the "/" on the BO group name becomes invalid and causes the above-mentioned error.

Problem Resolution

Fix:

  1. Save the LDAP and export it to a PC.
  2. Edit the LDAP using Notepad or WordPad.
  3. Look for the BO group name that has "/" on it and modify it by removing the "/".
    Note: when editing the LDAP, you can use "replace all" to replace all BO names with "/" on it.
  4. Save the LDAP to a new name and import/ftp it back to the Nortel VPN Router.
  5. Restore the new LDAP and try to edit/configure the BO. The error should be gone and the BO group should be modifiable/configurable.

Affected Products

VPN Router
VPN Router 100/400(Instant Int)
VPN Router 100/400(Instant Int) VPN Router 100
VPN Router 100/400(Instant Int) VPN Router 400
VPN Router 1000
VPN Router 1000 Contivity 1000
VPN Router 1000 Contivity 1500
VPN Router 1000 Contivity 1600
VPN Router 1000 VPN Router 1010
VPN Router 1000 VPN Router 1050
VPN Router 1000 VPN Router 1100
VPN Router 1000 VPN Router 1700
VPN Router 1000 VPN Router 1740
VPN Router 1000 VPN Router 1750
VPN Router 200
VPN Router 200 VPN Router 221
VPN Router 200 VPN Router 251
VPN Router 2000
VPN Router 2000 Contivity 2000
VPN Router 2000 Contivity 2500
VPN Router 2000 Contivity 2600
VPN Router 2000 VPN Router 2700
VPN Router 4000
VPN Router 4000 Contivity 4000
VPN Router 4000 Contivity 4500
VPN Router 4000 Contivity 4600
VPN Router 5000
VPN Router 5000 VPN Router 5000
VPN Router 600
VPN Router 600 VPN Router 600
VPN Router Beta
VPN Router Beta VPN Router Beta
VPN Router Client
VPN Router Client VPN Client
VPN Router Client VPN Client Admin
VPN Router Client VPN Multi-OS Client
VPN Router Config Manager
VPN Router Config Manager Easy Install Tool
VPN Router Config Manager VPN Rtr Multi-Element Mngr
VPN Router Pre-Alpha
VPN Router Pre-Alpha VPN Router Pre-Alpha
VPN Router SSL VPN
VPN Router SSL VPN SSL VPN Module 1000
VPN Router Tunnel Guard
VPN Router Tunnel Guard Tunnel Guard Agent
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: