It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda NextGen Firewall X

Log message 'Size limit exceeded' reported while retrieving CRLs

  • Type: Knowledgebase
  • Date changed: one year ago
Solution #00005244 
 
Scope:
This solution replies to:
- NG Firewall firmware versions 4.2.x, 5.0.x, 5.2.x
- netfence firmware versions 4.2.x

 
Symptoms:

While retrieving a CRL of a root certificate in the VPN server, the following message in the "Log" > "<Servername>" > "<Servicename>" > "vpnserver.log" occurs and the CRL updates does not work.

 

Error +0200 CRL Destination path on LDAP-Server ldap.server.com for yourcertname not found (Size limit exceeded)

 

What does it mean? 


 
Solution:

Some LDAP server uses a "maxHits" limit to protect the server for long search requests. If this limit is reached, the error "size limit exceeded" occurs. The reason could be the global search string " ?cn=* "at the CRL path, which is configured for the certificate.

 

  ou=VPNROOT,o=TEST,c=COM?cn=*

 

 

Enter your certificate name for the global search parameter to limit the search request.

 

 ou=VPNROOT,o=TEST,c=COM?cn=VPNROOT 

 

 

Link to This Page:
https://campus.barracuda.com/solution/50160000000IKabAAG