Azure VPN or not to VPN for Site recovery

Similar Messages

• Firefox is not remembering passwords for sites that i visit regularly. Ihave checked the box "remember passwords for sites" in the security tab under tools, but the passwords are not being remembered when I return to the sites.

  Firefox is not remembering passwords for sites that i visit regularly. Ihave checked the box "remember passwords for sites" in the security tab under tools, but the passwords are not being remembered when I return to the sites. I am running v 3.6.18

  Websites remembering you and automatically log you in is stored in a cookie.
  * Create an allow cookie exception (Tools > Options > Privacy > Cookies: Exceptions) to keep such a cookie, especially for secure websites and if cookies expire when Firefox is closed.
  Make sure that you do not run Firefox in Private Browsing mode.
  * https://support.mozilla.com/kb/Private+Browsing
  * In [[Private Browsing]] mode all cookies are session cookies that expire if that session is ended, so websites won't remember you.
  * Do not use [[Clear Recent History]] to clear the "Cookies" and the "Site Preferences"
  Clearing "Site Preferences" clears all exceptions for cookies, images, pop-up windows, software installation, and passwords.
  * http://kb.mozillazine.org/Cookies

• Safari 3.0.4 in Leopard not accepting cookies for sites I navigate to.

  I'm currently using Safari 3.0.4 on Mac OS 10.5.1. And since upgrading to Leopard, I have the following problem:
  Safari will no longer accept a required cookie when I try to login to a site that I visit regularly. This behavior was not present with the same version of Safari running in 10.4.x.
  Currently, Safari (on 10.5) is set to accept cookies for "sites you navigate to". And as far as I can tell, during the login process, I never leave the domain to which I navigated. When changing the cookie setting to accept All Cookies, the login cookie is accepted as you might expect. And logging in with Firefox 2.x and an equivalent cookie setting, the site works fine.
  Strangely, this cookie-blocking behavior is not present in Safari 3.0.4 running on another system which has OS 10.4.x.
  Did something change in Leopard, which might cause this behavior?
  This is the site I'm trying to login to, as a paid subscriber:
  http://www.architectureweek.com/
  Thanks for any advice or insight!

  This exactly describes a problem effecting users on our site - on our test 10.4 machine with Safari 3.04 and blocking third party cookies there's no problem, but on a 10.5 box users have to accept all cookies to login.
  Given the time our users started reporting this we think it's related to the security patch of 11th Feb:
  http://docs.info.apple.com/article.html?artnum=307430
  With particular reference to this paragraph:
  Description: A memory corruption issue exists in Safari's handling of URLs. By enticing a user to access a maliciously crafted URL, an attacker may cause an unexpected application termination or arbitrary code execution. This update addresses the issue by performing additional validation of URLs. This issue does not affect systems prior to Mac OS X v10.5.
  but that's just an educated guess at the moment - we think our cookies are being blocked as part of this beefed up "validation" - whatever that is.
  If anyone else has a similar experience or can offer any further suggestions I'd be very interested to hear from them.

• VMWare to Azure Site Recovery pricing

  Hi all,
  We are looking into Disaster Recovery solution and I have a hard time understanding the pricing and the conditions of using Azure Site Recovery.
  We are going to have a file server running Windows Server 2012 R2 on a VMWare host.
  The files shared currently amount to 300GB of space.
  There is nothing else critical running on this server.
  I understand that there is a cost of 52.44 CHF/month/instance (http://azure.microsoft.com/en-us/pricing/details/site-recovery/).
  How can I calculate the cost in the case I need to use the Azure Site Recovery to run my server? What are the elements that I am going to pay for once the machine is running in Azure?
  Thank you very much.

  You dont need to use the Migration accelerator to protect to Azure. You can use ASR itself.
  The documentation has now been updated.
  Kindly also look at these blogs
  http://blogs.technet.com/b/in_the_cloud/archive/2015/03/27/announcing-azure-site-recovery-disaster-recovery-for-vmware-vms-physical-servers-amp-more.aspx
  http://azure.microsoft.com/blog/2015/03/26/announcing-the-preview-of-disaster-recovery-for-vmwarephysical-servers-to-microsoft-azure-with-asr/
  thank you,
  ruturaj

• Azure site recovery to Azure

  Hello everybody,
  Is it possible to recover Azure site to another data center in Azure? I coud'nt find any information about this, but in pricing there is a row:
  Azure Site Recovery to Azure
  €40.22/month per instance protected"
  (http://azure.microsoft.com/en-us/pricing/details/site-recovery/ )

  What do you mean ? You configured Azure site recovery to replicate from your datacenter to Azure, and you want now to replicate form Azure Datancenter to another Azure Datacenter (Exmaple US EAST to US WEST)
  Please give more explanation, what to you want exactly to do ?
  Regards, Samir Farhat Infrastructure and Virtualization Consultant || Virtualization, Cloud, Azure ? Follow and Ask here https://buildwindows.wordpress.com

• Internal SharePoint site is not working through VPN for external computers.

  I have consultants trying to access our internal sharepoint 2010 site through our VPN. Whenever accessing the site from non-company computer through the VPN after setting up domain access for those users, they cannot gain access to the internal SP
  2010 site. When I or another employee accesses the SP 2010 site through the VPN from a company computer, the site loads. One consultant is using a Mac and the other is using a PC with compatible browsers. The SP 2010 site is set up using Kerberos authentification.
  Any ideas?

  Hi,
  How do you access the portal now? Via dns name? Something like
  http://subdomain.domain.com
  If that is the case, can you ping it from external client's outside your network and from inside your network? I believe from your internal network it will be fine. But from external with VPN, there may be error.
  So this will boil down network troubleshooting and http tracing.
  Please do Fiddler or httpTrace from the external clients over VPN for additional trobleshooting.
  Thanks, Soumya | MCITP, SharePoint 2010

• ASA Cannot access https device via Clientless VPN bookmark, site to site works fine

  We've got two offices connected via an IPSEC tunnel.  This site to site VPN works great, we can access our remote devices fine from a PC on either LAN at each office.  The device's address is https://192.168.210.2
  However, if we make a bookmark on the Clientless VPN for that same address the conneciton just times out if it has to go over the site to site VPN. 
  We plugged the exact same web enabled device on the local side of the VPN, put in a bookmark for its https address and it works fine.  Its just remote bookmarks for devices on the other side of the tunnel do not work.
  Looking at the debug log I see the request going out from the source to the destination on port 443 but nothing more.  The NAT exemption etc are all right because people on the LAN have no problem accessing this device remotely with their browser. 
  I haven't been able to adequately describe this problem to find a matching Cisco example, anyone know how to fix this?

  hi luis,
  thank you for your reply. we've checked the smoothwall configuration, but couldn't discover anything which could cause this problem. we even tried replacing the sa520 with a draytek vigor router to set up an lan-to-lan vpn with the smoothwall. with the draytek in place we have no problems accessing the aforementioned servers, so it seems the issue is with the SA520.
  what exactly do you mean by creating an ACL from the remote WAN to our LAN? i assumed you meant creating a firewall rule, allowing traffic from the remote device's public ip to our LAN. however, in that case i need to enter an ip address of a device in our LAN, or else i cannot save this rule. as a test i entered the ip address of my machine as the destination address, but am still unable to access the aforementioned servers.
  here's how i set up the rule:
  from zone: UNSECURE (WAN/optional WAN)
  to zone: LAN
  service: ANY
  action: ALLOW always
  schedule: (not set)
  source hosts: Single address
  from: public ip of one of the aforementioned servers
  source NAT settings > external IP address: WAN interface address (cannot change this setting)
  source NAT settings >WAN interface: dedicated WAN (cannot change this setting)
  destination NAT settings > internal ip address: 192.168.11.123 (ip address of my machine)
  enable port forwarding: unchecked
  translate port number: empty
  external IP address: dedicated WAN

• Can we connect single Web role to multiple Azure VPN

  We have a one cloud service as Web role and created two Azure Virtual Networks. Now we have to connect this service with both Azure VPNs.So can we add two <VirtualNetworkSite> under the <NetworkConfiguration> node. like below configuration:
  <NetworkConfiguration>
  <VirtualNetworkSitename="myazure-vnet1"/>
  <VirtualNetworkSite name="myazure-vnet2"/>
  <AddressAssignments>
  <InstanceAddress roleName="MyMvcWebRole">
  <Subnets>
  <Subnet name="MainSubnet"/>
  </Subnets>
  </InstanceAddress>
  </AddressAssignments>
  </NetworkConfiguration>
  Can somebody provide the Answer? Thanks.
  hema

  Hi Hema,
  I'm afraid multiple VNETs for a single web role (Dual NICs) is not possible.
  Multiple NICs are only supported in VMs.
  You could refer the following link for details:
  http://blogs.technet.com/b/anneste/archive/2015/02/15/create-an-azure-virtual-machine-with-2-nics.aspx
  Regards,
  Malar.

• Unable to send message in Service bus queue through Webrole which are connected to Azure VPN

  I have created two Azure VPN and two cloud services(deployed webrole) and one service bus queue
  First Azure VPN and cloud service(deployed webrole) is created in same affinity group.
  Second Azure VPN and cloud service is created in West US
  Service bus queue is also created in West US.
  When I send message in service bus queue from first cloud service (same affinity group) then message sends successfuly
  but when I send message in same service bus queue from second service(West US- Webrole) then unable to send message and not throwing any exception.
  I don't know, whats happening?
  Its very urgent..... client is waiting.
  Please help me... Thanks.
  hema

  Thanks for reply. Got the cause but still looking for solution.
  Actually we have created Azure VPN using Express route and
  all are configured for Private Peering.
  Try to access service bus queue from Web role which is attached to Express route network.
  I am unable to access service bus queue and send message...because cloud services deployed in virtual networks are supported over the private peering path.
  There are 3 types: public, private and default route (forced tunneling). 
  How  can be configured for all 3 which will force all traffic through the tunnel except for Azure public service?
  Do you have any idea on this scenario?
  Thanks.
  hema

• VPN remote site tunnel-all with web and email filtering at core

  I'm helping a client setup a 'tunnel-all' VPN from remotes to the core.  That's not difficult - there's enough commentary in the community and I can set it up in the lab.  The rub comes with the location of the web filter box in particular - it's currently in-line with the inside interface of the ASA.
  What does the topology for a typical tunnel-all VPN with web filtering at the core look like?  Can't put my hands on any quickly.
  We only have one ISP conn at this time.  I have a layer-3 switch at the core too.
  Thx

  Hi,
  Thats a good question.
  I haven't thought about this part of VPN filtering much as I've usually had to open only a few ports. But if you really need to open all traffic from local to remote, you will also be doing the same for the other direction in the same ACL ACE rule.
  The only thing I can come up with right now is to stop using VPN Filter list and change the "sysopt" setting so that ASA wont let VPN traffic past the outside interface without checing the outside interface ACL
  The Configuration command (8.2) is the following:
  sysopt connection permit-vpn
  For traffic that enters the adaptive security appliance through a VPN tunnel and is then decrypted, use the sysopt connection permit-vpn command  in global configuration mode to allow the traffic to bypass interface  access lists. Group policy and per-user authorization access lists still  apply to the traffic. To disable this feature, use the no form of this command. sysopt connection permit-vpn no sysopt connection permit-vpn
  Though if you change this setting, you will have to take this into account with every VPN Client or L2L VPN you have configured so far.
  After this you can create rules on your outside interface access-list to limit remote user access to your local network. From local to remote networks you can use the access-lists assigned to each interface in question.
  Hope this helps
  - Jouni

• Hyper-V VM not showing up in Azure Site Recovery

  Hello,
  I'm trying to set up Azure Site Recovery as "On-Premise Hyper-V site to Azure" - so without VMM.
  So far I've followed the steps from here: https://msdn.microsoft.com/en-us/library/azure/dn879142.aspx up
  to Step 5. That's where I'm stuck.
  Wen trying to set up protection for my VMs Azure is not recognizing my on premise VMs although there is one running on my Hypervisor: http://i.imgur.com/h8TnV46.png
  The Hypervisor got recognized within the Hyper-V site and the Recovery Services Agent and Site Recovery Service are running on my Hypervisor.
  The Hypervisor's event log (Microsoft -> Azure Site Recovery -> Provider -> Operational) shows that replication is triggered every 15 minutes as configured in Azure but no changes are commited to Azure.
  My Hypervisor is a freshly installed Windows 2012 R2. Not domain joined, no proxies. Firewall disabled.

  Hi,
  Check for FAQ on Azure site recovery for Hyper-V and other VM's
  http://social.technet.microsoft.com/wiki/contents/articles/21619.microsoft-azure-site-recovery-common-error-scenarios-and-resolutions.aspx
  Girish Prajwal

• Azure Site Recovery to Azure - cost for data transfer and storage

  Hello,
  I send you this message on behalf of a small firm in Greece interested to implement Azure Site Recovery to Azure.
  We have one VM (Windows 2008 R2 Small Business Server) with 2 VHDs (100GB VHD for OS and 550GB VHD for Data) on a Windows 2012 server Std Edition.
  I would like to ask you a few questions about the cost of the data transfer and the storage 
  First: About the initial replication of the VHDs to Azure. It will be 650GBs. Is it free as inbound traffic? If not the Azure Pricing calculator shows about 57€. But there is also the import/export option which costs about the same:
  https://azure.microsoft.com/en-us/pricing/details/storage-import-export/
  What would be the best solution for our case? Please advice.
  Second: What kind of storage is required for the VHDs fo the VM (650GBs). My guess is Blob storage. For this storage locally redundant, the cost will be about 12-13€/month. Please verify.
  Third: Is the bandwidth for the replication of our VM to Azure free?
  That's all for now.
  Thank you in advance.
  Kind regards
  Harry Arsenidis 

  Hi Harry,
  1st question response: ASR doesn't support Storage Import/Export for seeding the initial replication storage. ASR pricing can be found
  here which details about 100GB of Azure replication & storage per VM is included with the purchase of the ASR to Azure subscription SKU through the Microsoft Enterprise Agreement. 
  Data transfer pricing
  here  indicates that inbound data transfers are free.
  As of now only option will be online replication. What is the current current network link type & bandwidth to Azure? Can you vote for the feature & update requirements here?
  2nd question response: A storage account with geo-redundancy is required. But as mentioned earlier with Microsoft Enterprise Agreement you will get 100GB of Azure replication & storage per VM included with ASR. 
  3rd question response: Covered as part earlier queries.
  Regards, Anoob

• Exchange Web Services are not currently available for this request because none of the Client Access Servers in the destination site could process the request.

  Hi,
  I am using EWS Java APIs and passing OAuth tokens to fetch data from office 365 mailboxes.
  Because I am developing Web APIs I preferred using "Application Permissions" defined in Azure active directory application for Office 365, and used "client credential flow" OAuth flow to fetch OAuth token specific to application which will
  allow "Have full access via EWS to all mailboxes in the organisation".
  After fetching token with the procedure specified in the document "http://blogs.msdn.com/b/exchangedev/archive/2015/01/21/building-demon-or-service-apps-with-office-365-mail-calendar-and-contacts-apis-oauth2-client-credential-flow.aspx"
  I passed this token to EWS Java APIs,
  it gave me error saying:
  microsoft.exchange.webservices.data.ServiceResponseException: Exchange Web Services are not currently available for this request because none of the Client Access Servers in the destination site could process the request.
  I tried similar thing with EWS managed APIs for .net. Got similar error.
  Can anyone provide some help and direction to resolve this error.
  Thanks & Best Regards,
  Pranjal

  I see you found an answer with the X-AnchorMailbox header on StackOverflow:
  http://stackoverflow.com/questions/29554724/exchange-web-services-are-not-currently-available-for-this-request-because-none

• Good, cheap VPN for personal use?

  I want to start using a VPN for home and when i use my PB at hotspots. Don't want to spend alot per month. I've heard of a couple VPN services like VforVPN and hotspot VPN. Anyone have experience with these or any other suggestions?
  thx
  lenn

  witopia VPN is extremely fast. i have a fios fiber connection and I don't even notice when it is on. amazingly, it actually seems to increase my upload speed too. I use Skype with it a lot, and again, it actually seems to improve the voice quality. I've used it since 2005 and it's been very reliable. best of all, it's only $40 for openVPN AND a PPTP account (I use on my iPhone). Not sure why it's so much less expensive, but who cares?

• Configuring Netgear FVS318 VPN for iPhone and Mac OS X clients.

  Hi,
            I am trying to configure the FVS318 VPN for iPhone and Mac clients to connect to. I have been able to set it up that all hard wired and wireless connections with in the network to connect seemlessly, but when it comes to VPN I am not able to get any connection from outside the network. I have set all the usernames, passwords and shared secrets multiple times and I am unable to connect even after reseting it. Any help setting this would be great.
  Thanks

  Are you using your external IP address to set this up? This works while on the network, as in at the office but not from any connection outside? What IP scheme are you using on the Netgear? If you are using something like 192.168.1.1 and starbucks uses the same scheme it wont work. Try setting your Netgear to something like 192.168.33.1