Comware

Hi,


HPE Comware Software, Version 7.1.064, Release 0821P11

We are using IPSec with L2TP.


Microsoft have suggest to disable Vendor ID for IPSec VPN January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466)

Microsoft		remove preview
January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466) UPDATED 01/11/22 REMINDER Windows 10, version 2004 reached end of servicing on December 14, 2021. To continue receiving security and quality updates, Microsoft recommends that you update to the latest version of Windows 10. To update to one of the newer versions of Windows 10, we recommend that you use the appropriate Enablement Package KB (EKB). View this on Microsoft >

Is it possibility to disable Vendor ID with Comware 7?

------------------------------
Matti Jaatinen
------------------------------

Hi Matti,

MSR routers running Comware 7 don't seem to have such feature.

If your VPN connections from Windows 10 clients with KB5009566 and KB5009543 updates installed have been affected, uninstallation of abovementioned patches should help to recover L2TP and IPSec connections.




------------------------------
Ivan Bondar
------------------------------

Original Message:
Sent: Jan 14, 2022 02:00 AM
From: Matti Jaatinen
Subject: Disable Vendor ID as suggested by KB5009543

Hi,


HPE Comware Software, Version 7.1.064, Release 0821P11

We are using IPSec with L2TP.


Microsoft have suggest to disable Vendor ID for IPSec VPN January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466)

Microsoft		remove preview
January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466) UPDATED 01/11/22 REMINDER Windows 10, version 2004 reached end of servicing on December 14, 2021. To continue receiving security and quality updates, Microsoft recommends that you update to the latest version of Windows 10. To update to one of the newer versions of Windows 10, we recommend that you use the appropriate Enablement Package KB (EKB). View this on Microsoft >

Is it possibility to disable Vendor ID with Comware 7?

------------------------------
Matti Jaatinen
------------------------------

Thank you for the reply, My Query has been solved.
Target Pay and Benefits
------------------------------
James Gross
------------------------------

Original Message:
Sent: Jan 14, 2022 02:43 AM
From: Ivan ivan.bondar@hpe.com
Subject: Disable Vendor ID as suggested by KB5009543

Hi Matti,

MSR routers running Comware 7 don't seem to have such feature.

If your VPN connections from Windows 10 clients with KB5009566 and KB5009543 updates installed have been affected, uninstallation of abovementioned patches should help to recover L2TP and IPSec connections.




------------------------------
Ivan Bondar

Original Message:
Sent: Jan 14, 2022 02:00 AM
From: Matti Jaatinen
Subject: Disable Vendor ID as suggested by KB5009543

Hi,


HPE Comware Software, Version 7.1.064, Release 0821P11

We are using IPSec with L2TP.


Microsoft have suggest to disable Vendor ID for IPSec VPN January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466)

Microsoft		remove preview
January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466) UPDATED 01/11/22 REMINDER Windows 10, version 2004 reached end of servicing on December 14, 2021. To continue receiving security and quality updates, Microsoft recommends that you update to the latest version of Windows 10. To update to one of the newer versions of Windows 10, we recommend that you use the appropriate Enablement Package KB (EKB). View this on Microsoft >

Is it possibility to disable Vendor ID with Comware 7?

------------------------------
Matti Jaatinen
------------------------------

Disabling the Stelnet service. Disable the Stelnet service when it is not required. The SSH service port number is easy to be found by a scanning attacker.

------------------------------
James Gross
------------------------------

Original Message:
Sent: Jan 14, 2022 02:00 AM
From: Matti Jaatinen
Subject: Disable Vendor ID as suggested by KB5009543

Hi,


HPE Comware Software, Version 7.1.064, Release 0821P11

We are using IPSec with L2TP.


Microsoft have suggest to disable Vendor ID for IPSec VPN January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466)

Microsoft		remove preview
January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466) UPDATED 01/11/22 REMINDER Windows 10, version 2004 reached end of servicing on December 14, 2021. To continue receiving security and quality updates, Microsoft recommends that you update to the latest version of Windows 10. To update to one of the newer versions of Windows 10, we recommend that you use the appropriate Enablement Package KB (EKB). View this on Microsoft >

Is it possibility to disable Vendor ID with Comware 7?

------------------------------
Matti Jaatinen
------------------------------

"Disabling the Stelnet service. Disable the Stelnet service when it is not required. The SSH service port number is easy to be found by a scanning attacker."
- How this would be helping?

https://downloadcdn.h3c.com/en/201907/10/20190710_4368721_99-book_1211734_1285_0.pdf

------------------------------
Matti Jaatinen
------------------------------

Original Message:
Sent: Jan 29, 2022 06:10 AM
From: James Gross
Subject: Disable Vendor ID as suggested by KB5009543

Disabling the Stelnet service. Disable the Stelnet service when it is not required. The SSH service port number is easy to be found by a scanning attacker.

------------------------------
James Gross

Original Message:
Sent: Jan 14, 2022 02:00 AM
From: Matti Jaatinen
Subject: Disable Vendor ID as suggested by KB5009543

Hi,


HPE Comware Software, Version 7.1.064, Release 0821P11

We are using IPSec with L2TP.


Microsoft have suggest to disable Vendor ID for IPSec VPN January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466)

Microsoft		remove preview
January 11, 2022-KB5009543 (OS Builds 19042.1466, 19043.1466, and 19044.1466) UPDATED 01/11/22 REMINDER Windows 10, version 2004 reached end of servicing on December 14, 2021. To continue receiving security and quality updates, Microsoft recommends that you update to the latest version of Windows 10. To update to one of the newer versions of Windows 10, we recommend that you use the appropriate Enablement Package KB (EKB). View this on Microsoft >

Is it possibility to disable Vendor ID with Comware 7?

------------------------------
Matti Jaatinen
------------------------------