Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Article Number: 000216118

PowerPath:當 Tenable 漏洞掃描連接埠 9083 時,對等方會重設連線

Summary: 當 Tenable 漏洞掃描連接埠 9083 時,具有相互傳輸層安全性 (mTLS) 的 Windows 7.2.X 遠端管理的 PowerPath 會達到對等方的最大插槽連線限制和連線重設。

This article may have been automatically translated. If you have any feedback regarding its quality, please let us know using the form at the bottom of this page.

Article Content

Symptoms

當 Tenable 掃描軟體掃描連接埠 9083 時,啟用 mTLS 的 PowerPath 遠端管理程序會失敗,最終達到最大插槽連線數,並記錄對等重設的連線訊息。

 

在 PPMA GUI 上,要等到下一個輪詢週期才會看到中斷連線狀態。輪詢週期運行時,伺服器最終在 GUI 中顯示為斷開連接(紅色)。

 

## Windows 遠端管理應用程式事件記錄

07/23/2023 07:05:23 PM  Warning       HOSTNAME 3       EmcPowerPathManagementComponent  EMC PowerPath Warning:  Management Component: Warning: Max socket connection limit reached, incoming connection dropped. Remote host: ip=10.x.x.x, hostname=PPMAHOST.DOMAIN.COM.
07/23/2023 07:05:23 PM  Information   HOSTNAME 2       EmcPowerPathManagementComponent  EMC PowerPath Information:  Management Component: Info: SSPI decryption failed. InitSSLServerSchannel(): Failed to query the client.
07/23/2023 07:05:19 PM  Warning       HOSTNAME 3       EmcPowerPathManagementComponent  EMC PowerPath Warning:  Management Component: Warning: Max socket connection limit reached, incoming connection dropped. Remote host: ip=10.x.x.x, hostname=PPMAHOST.DOMAIN.COM.
07/23/2023 07:05:19 PM  Error         HOSTNAME 4       EmcPowerPathManagementComponent  EMC PowerPath Error:  Management Component: Error: Socket library: send - Connection reset by peer. (err=10054).
07/23/2023 07:05:18 PM  Warning       HOSTNAME 3       EmcPowerPathManagementComponent  EMC PowerPath Warning:  Management Component: Warning: Max socket connection limit reached, incoming connection dropped. Remote host: ip=10.x.x.x, hostname=PPMAHOST.DOMAIN.COM.
07/23/2023 07:05:18 PM  Error         HOSTNAME 4       EmcPowerPathManagementComponent  EMC PowerPath Error:  Management Component: Error: Socket library: send - Connection reset by peer. (err=10054)

 

## PPMA DataCollector 記錄

ERROR 19:16:08.320 [AnonymousIoService-6] c.e.p.d.hosts.impl.HostAgentListener - Internal error occurred in the connection to HOSTNAME.DOMAIN.COM:9083
WARN  19:16:08.321 [AnonymousIoService-6] c.e.p.d.h.impl.HostAgentConnector - java.lang.Exception: Invalid Header Tag       ??U? (Hexdump: 15 03 03 00 1A 00 00 00 00 00 00 00 01 99 FB 16 55 98 19 50 B2 E1 87 35 F2 0D 26 E6 F4 A1 6D)
org.apache.mina.filter.codec.ProtocolDecoderException: java.lang.Exception: Invalid Header Tag       ??U? (Hexdump: 15 03 03 00 1A 00 00 00 00 00 00 00 01 99 FB 16 55 98 19 50 B2 E1 87 35 F2 0D 26 E6 F4 A1 6D)
    at org.apache.mina.filter.codec.ProtocolCodecFilter.messageReceived(ProtocolCodecFilter.java:165)
    at org.apache.mina.common.support.AbstractIoFilterChain.callNextMessageReceived(AbstractIoFilterChain.java:299)
    at org.apache.mina.common.support.AbstractIoFilterChain.access$1100(AbstractIoFilterChain.java:53)
    at org.apache.mina.common.support.AbstractIoFilterChain$EntryImpl$1.messageReceived(AbstractIoFilterChain.java:648)
    at org.apache.mina.filter.support.SSLHandler.flushScheduledEvents(SSLHandler.java:275)
    at org.apache.mina.filter.SSLFilter.messageReceived(SSLFilter.java:427)
    at org.apache.mina.common.support.AbstractIoFilterChain.callNextMessageReceived(AbstractIoFilterChain.java:299)
    at org.apache.mina.common.support.AbstractIoFilterChain.access$1100(AbstractIoFilterChain.java:53)
    at org.apache.mina.common.support.AbstractIoFilterChain$EntryImpl$1.messageReceived(AbstractIoFilterChain.java:648)
    at org.apache.mina.filter.executor.ExecutorFilter.processEvent(ExecutorFilter.java:220)
    at org.apache.mina.filter.executor.ExecutorFilter$ProcessEventsRunnable.run(ExecutorFilter.java:264)
    at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
    at org.apache.mina.util.NamePreservingRunnable.run(NamePreservingRunnable.java:51)
    at java.lang.Thread.run(Thread.java:750)
Caused by: java.lang.Exception: Invalid Header Tag       ??U?
    at com.emc.powerpath.datacollector.remote.nio.mina.client.codec.AgentResponseDecoder.getExpectedBytes(AgentResponseDecoder.java:64)
    at com.emc.powerpath.datacollector.remote.nio.mina.client.codec.AgentResponseDecoder.doDecode(AgentResponseDecoder.java:117)
    at org.apache.mina.filter.codec.CumulativeProtocolDecoder.decode(CumulativeProtocolDecoder.java:133)
    at org.apache.mina.filter.codec.ProtocolCodecFilter.messageReceived(ProtocolCodecFilter.java:158)
    ... 14 common frames omitted
WARN  19:16:08.325 [AnonymousIoService-14] c.e.p.d.h.impl.HostAgentConnector - Connection reset by peer
java.io.IOException: Connection reset by peer
    at sun.nio.ch.FileDispatcherImpl.read0(Native Method)
    at sun.nio.ch.SocketDispatcher.read(SocketDispatcher.java:39)
    at sun.nio.ch.IOUtil.readIntoNativeBuffer(IOUtil.java:223)
    at sun.nio.ch.IOUtil.read(IOUtil.java:197)
    at sun.nio.ch.SocketChannelImpl.read(SocketChannelImpl.java:378)
    at org.apache.mina.transport.socket.nio.SocketIoProcessor.read(SocketIoProcessor.java:218)
    at org.apache.mina.transport.socket.nio.SocketIoProcessor.process(SocketIoProcessor.java:198)
    at org.apache.mina.transport.socket.nio.SocketIoProcessor.access$400(SocketIoProcessor.java:45)
    at org.apache.mina.transport.socket.nio.SocketIoProcessor$Worker.run(SocketIoProcessor.java:485)
    at org.apache.mina.util.NamePreservingRunnable.run(NamePreservingRunnable.java:51)
    at java.lang.Thread.run(Thread.java:750)
WARN  19:16:08.325 [AnonymousIoService-14] c.e.p.d.h.impl.HostAgentConnector - Broken pipe
java.io.IOException: Broken pipe
    at sun.nio.ch.FileDispatcherImpl.write0(Native Method)
    at sun.nio.ch.SocketDispatcher.write(SocketDispatcher.java:47)
    at sun.nio.ch.IOUtil.writeFromNativeBuffer(IOUtil.java:93)
    at sun.nio.ch.IOUtil.write(IOUtil.java:65)
    at sun.nio.ch.SocketChannelImpl.write(SocketChannelImpl.java:469)
    at org.apache.mina.transport.socket.nio.SocketIoProcessor.doFlush(SocketIoProcessor.java:414)
    at org.apache.mina.transport.socket.nio.SocketIoProcessor.doFlush(SocketIoProcessor.java:332)
    at org.apache.mina.transport.socket.nio.SocketIoProcessor.access$500(SocketIoProcessor.java:45)
    at org.apache.mina.transport.socket.nio.SocketIoProcessor$Worker.run(SocketIoProcessor.java:488)
    at org.apache.mina.util.NamePreservingRunnable.run(NamePreservingRunnable.java:51)
    at java.lang.Thread.run(Thread.java:750)
ERROR 19:16:08.325 [AnonymousIoService-14] c.e.p.d.hosts.impl.HostAgentListener - Connection to HOSTNAME.DOMAIN.COM:9083 has been lost

 

Cause

這是啟用 mTLS 的 Windows 7.2.X 遠端管理的 PowerPath 問題,無法正確處理來自非 PPMA 伺服器的 Winsock 連線。

 

Resolution

此修正將會在 Windows 的 PowerPath 未來版本中提供,但目前沒有 ETA。

 

因應措施是從 Windows 服務重新啟動「EMC PowerPath Remote Management component」服務。

 

Article Properties

Last Published Date

19 Jul 2024

Version

3

Article Type

Solution

Back to Top