SNMP_TRAP: SSL cert EXPIRED

Question

Getting heaps of these messages in my syslog server:&nbsp;
&nbsp;SNMP_TRAP: SSL cert EXPIRED from IP ::ffff:203.42.xx.xx:62255&nbsp;
&nbsp;THe problem is that none of my SSL certs are expired and the public IP it lists is not even one that my company owns... its a random IP.&nbsp;
&nbsp;Any thoughts?&nbsp;

hooleylist · Answer

Hi Luca, 
&nbsp;  
&nbsp; Can you run tcpdump or something like it on your syslog server to see what the source IP is for the trap? 
&nbsp;  
&nbsp; How many LTMs do you have?  Can you run checkcert -v on your LTMs to see if there are any expired certs?  Maybe it's a default cert for the GUI? 
&nbsp;  
&nbsp; Aaron

luca_55898 · Answer

We have numerous LTMs.  This error is comming from two LTMs that are in a HA cluster. 
&nbsp;  
&nbsp; We have about 10 certs on this device, the earliest one expires in 2013.

luca_55898 · Answer

Actually just looking around a bit under "System  ››  Device Certificates  ››  Trusted Device Certificates" there are a few certs that have exipred but i don't know what they are. 
&nbsp;  
&nbsp; There is one names - DHCP-217, My company 
&nbsp;  
&nbsp; and 
&nbsp;  localhost.localdomain, my company. 
&nbsp;  &nbsp;

nitass · Answer

...&nbsp;
&nbsp;sorry forget it. i misunderstood the question.&nbsp;

luca_55898 · Answer

Anyone got any other suggestions here? 
&nbsp; I can't see anything else that would be causing this. 
&nbsp;  
&nbsp; Might log a case with F5 anyway.

Forum Discussion

SNMP_TRAP: SSL cert EXPIRED

6 Replies

Recent Discussions

Rundeck ansible F5 errors

What is the meaning is 52% block in WAF

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

SSL Cert expiration Tracker

Identify and cleanse expired and soon to expire certs from BIG-IP

LTM Certificate expire

Server cert expired

Expired ssl warning