4402 anchor in DMZ, how to configure the Firewall
Hello,
I am not sure if there is a document or thread on this topic aleady though I have been looking.
We have a 5508 foreign controller
We have a 4402 anchor controller
We have a DMZ layer 2 only switch
We have a ASA5520 firewall
I have configured both WLC controllers for guest wireless to the DMZ. They see each other in the mobility group.
I have added vlan800 (arbitrary vlan we chose) in the DMZ switch. Currently is does not have any ip address on it and we would prefer if it stays that way.
We want the anchor to also provide the dhcp scope for all guest wireless which is why we created vlan800 on the DMZ switch as well as in the Anchor controller.
The Anchor controller vlan800 has an ip address 172.18.1.2/24.
The guest wireless network is 172.18.1.x/24 (again, provided by the anchor controller).
My firewall has a DMZ address of 172.16.67.1/24
Ok here is where I get more fuzzy, How do i configure my firewall to accept traffic from the new ip scope i created?
The firewall does not have anymore free physical ports so I think I have to somehow make the existing physical DMZ interface a trunk or give it a secondary ip address of 172.18.1.1/24 to become the gateway for the guest wireless traffic. (besides setting up the allow/deny rules for internet access in the firewall).
I have not been able to find a document that goes into the DMZ requirements for wireless so far.
Thanks!
Hi Dennis,
Yes I have gotten the two controllers talking to one another and able to do both ping test eping and the other one (i forget the name).
I do believe I have a working understanding of the anchor to foreign controller configuration.
My question is specific in as much as it relates to the DMZ switch and firewall.
The configuration of the DMZ switch and firewall is the documentation I am unable to locate with examples of this configuration.
I cannot seem to get to any link that has the word "partner" in it even though I log into my cisco account.
If there is a different link I would be happy to check it out.
As for your question about trunking the port, can you clarify which device your speaking of?
I have the DMZ switch port trunked that connects to the Anchor controller.
Thanks
Similar Messages
-
I have ASA 5505 8.4. How to configure the switch to the backup channel to the primary with a delay (for example 5 min.) using the SLA monitor?
Or as something else to implement it?
My configuration for SLA monitor:
sla monitor 123
type echo protocol ipIcmpEcho IP_GATEWAY_MAIN interface outside_cifra
num-packets 3
timeout 3000
frequency 10
sla monitor schedule 123 life forever start-time now
track 1 rtr 123 reachabilityHey cadet alain,
thank you for your answer :-)
I have deleted all such attempts not working, so a packet-trace will be not very useful conent...
Here is the LogLine when i try to browse port 80 from outside (80.xxx.xxx.180:80) without VPN connection:
3
Nov 21 2011
18:29:56
77.xxx.xxx.99
59068
80.xxx.xxx.180
80
TCP access denied by ACL from 77.xxx.xxx.99/59068 to outside:80.xxx.xxx.180/80
The attached file is only the show running-config
Now i can with my AnyConnect Clients, too, but after connection is up, my vpnclients can't surf the web any longer because anyconnect serves as default route on 0.0.0.0 ... that's bad, too
Actually the AnyConnect and Nat/ACL Problem are my last two open Problems until i setup the second ASA on the right ;-)
Regards.
Chris -
How to configure the mail in Sales Support of SAP SD
Hi,
Experts I have one scenario in my co. that we have 300 users we have to send the mails to our 300
users for every 2 or 3 months once. Regarding new promotions (Discounts , Price changes) of
company. For this every time we are changing the sold to party in quotation and taking printouts then
sending to our users its a lengthy procedure, to avoid this long time very soon we are going to
implement SAP SD Sales Suppor in our company is there any functionality in SAP to send mail at
once to our 300 users may i know about how to configure the mail for this scenario.
Thanks and Regards
MHHi Prashant,
Thanks for you immediate responce, Can you give me the configuration steps in detail.
Thanks and Regards,
MH -
How to configure the JMS application in WSAD 5.0
hi
i need to configure an JMS application in WSAD 5, but while configuring the application i am checked with intial context exception. but i have configured the jndi in the server. but i cant able to run the application.
can anybody help me like how to configure the JMS application in WSAD (can we configure it without MQ simulator if yes i need the steps)
thanks in advanceHi,
did you check the WebSphere documentation or ask a question on an IBM forum?
Frank -
In Exports sales process, how you configure the Duty Draw Back
in my case
we r creating Exports but
duty unavailability of time and time taking process in export processing
we are creating Excise invoice and cenvat is debited .
now we r asking the govt. for the duty draw back for the value already cenvat is debited with proper documents like ARE1 etc.
how to manage this duty back and what r the replications or changes thereafter
thanks in advanceHi Sunitha,
Pls can u explain how did u solve (In Exports sales process, how you configure the Duty Draw Back) this issue....since i don't have idea abt this...but shortly i am going to do this in my client place....
thanks, -
Can anybody explain how to configure the Centralized contract in SRM 7
Hi All,
Can anybody explain how to configure the Centralized contract management in SRM 7 with ECC EHP4 ?what are all that need to be perform in PI system.
Thank you,
praveenHello,
PI will be required here. You can also refer the config guides maintained at the belwo mentioned location.
Goto URL http://service.sap.com/srm-inst and then navigate to SAP SRM --> SAP SRM Server 7.0 -> Configuration Guides for SAP SRM 7.0
Best Regards,
Rahul -
How to configure the email in SAP
Hi Experts,
Can you please let me know how to configure the email in the server?
Thanks in Advance
Regards,
Kuldeep VermaHello Indu Rayepudi ..
I have followed the Recommendations and everything is going well but I can only send emails from the same domain, how can I set up to send to hotmail, gmail, yahoo?
Mi sap es SAP ECC 6.0
The administrator said that the Exchange server already has registered the server's ip sap to enable him to relay this IP.
But nothing happens.
Do you have any idea? any help from you, I would greatly appreciate .. Gina
Here is the error: http://img.photobucket.com/albums/v484/mauzzz/SAP/SO01Erroringles-1.jpg
Edited by: GCH on Sep 25, 2008 11:24 PM -
How to configure the runtime and consolidation for a track in CMS.
How to configure the runtime and consolidation for a track in CMS.
I can see the track exists in CMS but the same doesnt pull up in the NWDS in the development configuration perspective.
I compared the given track with the one which gets pulled up in NWDS. Theres something called runtime system and consolidation which isnt defined for the track which is invisible.
Please advise , what are these required for. And how can we configure the same.The runtime systems are defined for a track to setup the Transport path for any code changes....the Consolidation system is usually defined as a Virtual system for the track and used for comparison and fixing any broken or Dirty DC's ....that means it's not used as a Runtime System for Deployment as compared to DEV,QAT and PROD used for Deployment...
Hope it helps..
Regards,
Shikhil -
How to Configure the Blackberry Facebook Integrated Applicatio​n
Hi Friends ,
How to Configure the Blackberry Facebook Integrated Application while getting the Application Id , Application Secret for Registering the App in Facebook.
Please Help me , It''s Urgent.
Thanks & Regards,
Nagarjuna Metla.
arjunaBonjour,
Effectivement, la valeur du filtre de la carte NI-6280 est 40kHz.
En simulant la carte, j'ai pu faire le test avec le VI joint.
Si ce VI ne fonctionne pas, quelle est le code d'erreur obtenu et à quelle fonction apparaît-il ?
Salutations,
Isabelle
Ingénieur d'applications
National Instruments France
Attachments:
filtre 6280.vi 73 KB -
How to configure the services(WDA) in ESS with EHP7
Hi Experts,
I have a requirement to configure ESS/MSS in R/3 . fisrt time am going to configure the ESS/MSS in R/3 with EHP7.currently we are using
ECC6.0 EHP7 with SP 2 and portal 7.4 can any one help me out which business functions need to be activate and which components need to activate.
How to configure the service in launch pad with WDA.please guide me the step by step procedure.
Please share the config guide if anyone have.hi sap scn ,
Tips & Recommendations for customizing ESS Menu (WD ABAP) - ess launchpad
Summary of configuration options in ESS Personal Information scenario -personal information
go to t-code lpd_cust see ROLE ESS and INSTNACE MENU ...Clcik it and copy to Z launchpad and drag and drop the services which u want and use it
if any other revert back again -
How to configure the use of WS-RM in "PI 7.11 EHP1?
How to configure the use of WS-RM in "PI 7.11 EHP1?
Currently in the editing window of the communication channel (adapter type WS), I can not see any options regarding Reliable Messaging protocol (WS-RM).
The scenario that is required is as follows.
(Consumer WS-RM) -> (Provider WS-RM PI 7.11 EHP1) -> (ABAP Proxy Backend NW 7.0)
I would greatly appreciate any help,
Thanks,
Roger.
Edited by: Roger Solano on Apr 7, 2011 10:31 PMWS adapter supports WS Reliable Messaging. But WS adapter is used to communicate between two SAP web service runtime.
Check this blog and its links for understanding direct connection or point to point communcation using WS adapter
/people/william.li/blog/2008/02/13/point-to-point-connection-using-abap-in-sap-using-pi-71
Hoe that helps. -
How to configure the .ini file with applet
hai
i am using native methods in that methods they use some ip addresses. when i am using that native methods in applet run the applet using appletviewer tool it works fine but when i am open that applet using html page browser not configure that .ini file data .how to configure that .ini file with browserHi Jay SenSharma,
Thanks for your immediate response.
I saw your URL links, But in your link give the recursive deployment using wlst. But my question is how to configure the oracle weblogic library files into Admin server & Managed Servers by using the wls.jar file through wlst script to create the new domain.
But if create the new domain by using GUI mode then we manually give the admin server port number & managed servers port number and name.
By default the library files are configured with the Admin server in GUI mode. But the Managed server the Library files are not configured with the Managed servers. Then we manually select all the library files to the corresponding managed servers. Then only the applications are deployed into the corresponding managed server.
Regards,
S.vinoth Babu -
How to configure the smtp server..
i had an error when running the java mail program..
this is my program
import javax.mail.*;
import javax.mail.internet.*;
import javax.activation.*;
import java.io.*;
import java.util.Properties;
public class MailClient
public void sendMail(String mailServer, String from, String to,
String subject, String messageBody,
String[] attachments) throws
MessagingException, AddressException
// Setup mail server
Properties props = System.getProperties();
props.put("mail.smtp.host", mailServer);
// Get a mail session
Session session = Session.getDefaultInstance(props, null);
// Define a new mail message
Message message = new MimeMessage(session);
message.setFrom(new InternetAddress(from));
message.addRecipient(Message.RecipientType.TO, new InternetAddress(to));
message.setSubject(subject);
// Create a message part to represent the body text
BodyPart messageBodyPart = new MimeBodyPart();
messageBodyPart.setText(messageBody);
//use a MimeMultipart as we need to handle the file attachments
Multipart multipart = new MimeMultipart();
//add the message body to the mime message
multipart.addBodyPart(messageBodyPart);
// add any file attachments to the message
// addAtachments(attachments, multipart);
// Put all message parts in the message
message.setContent(multipart);
// Send the message
Transport.send(message);
protected void addAtachments(String[] attachments, Multipart multipart)
throws MessagingException, AddressException
for(int i = 0; i<= attachments.length -1; i++)
String filename = attachments;
MimeBodyPart attachmentBodyPart = new MimeBodyPart();
//use a JAF FileDataSource as it does MIME type detection
DataSource source = new FileDataSource(filename);
attachmentBodyPart.setDataHandler(new DataHandler(source));
//assume that the filename you want to send is the same as the
//actual file name - could alter this to remove the file path
attachmentBodyPart.setFileName(filename);
//add the attachment
multipart.addBodyPart(attachmentBodyPart);
public static void main(String[] args)
try
MailClient client = new MailClient();
String server="smtp.canvasindia.com";
String from="[email protected]";
String to = "[email protected]";
String subject="Test";
String message="Testing";
String[] filenames ={"c:/A.java"};
client.sendMail(server,from,to,subject,message,filenames);
catch(Exception e)
e.printStackTrace(System.out);
the error is .................
javax.mail.SendFailedException: Invalid Addresses;
nested exception is:
com.sun.mail.smtp.SMTPAddressFailedException: 553 Attack detected from p
ool 59.144.8.116. <http://unblock.secureserver.net/?ip=59.144.8.*>
at com.sun.mail.smtp.SMTPTransport.rcptTo(SMTPTransport.java:1196)
at com.sun.mail.smtp.SMTPTransport.sendMessage(SMTPTransport.java:584)
at javax.mail.Transport.send0(Transport.java:169)
at javax.mail.Transport.send(Transport.java:98)
at MailClient.sendMail(MailClient.java:47)
at MailClient.main(MailClient.java:84)
Caused by: com.sun.mail.smtp.SMTPAddressFailedException: 553 Attack detected fro
m pool 59.144.8.116. <http://unblock.secureserver.net/?ip=59.144.8.*>
at com.sun.mail.smtp.SMTPTransport.rcptTo(SMTPTransport.java:1047)
... 5 more
how to configure the smtp server in my machine..
please guide me...This uses gmail account, and gmail smtp
* MailSender.java
* Created on 14 November 2006, 17:07
* This class is used to send mails to other users
package jmailer;
* @author Abubakar Gurnah
import javax.mail.*;
import javax.mail.internet.*;
import java.util.*;
public class MailSender{
private String d_email,d_password;
* This example is for gmail, you can use any smtp server
* @param d_email --> your gmail account e.g. [email protected]
* @param d_password --> your gmail password
* @param d_host --> smtp.gmail.com
* @param d_port --> 465
* @param m_to --> [email protected]
* @param m_subject --> Subject of the message
* @param m_text --> The main message body
public String send(String d_email,String d_password,String d_host,String d_port,
String m_from,String m_to,String m_subject,String m_text ) {
this.d_email=d_email;
this.d_password=d_password;
Properties props = new Properties();
props.put("mail.smtp.user", d_email);
props.put("mail.smtp.host", d_host);
props.put("mail.smtp.port", d_port);
props.put("mail.smtp.starttls.enable","true");
props.put("mail.smtp.auth", "true");
//props.put("mail.smtp.debug", "true");
props.put("mail.smtp.socketFactory.port", d_port);
props.put("mail.smtp.socketFactory.class", "javax.net.ssl.SSLSocketFactory");
props.put("mail.smtp.socketFactory.fallback", "false");
SecurityManager security = System.getSecurityManager();
try {
Authenticator auth = new SMTPAuthenticator();
Session session = Session.getInstance(props, auth);
//session.setDebug(true);
MimeMessage msg = new MimeMessage(session);
msg.setText(m_text);
msg.setSubject(m_subject);
msg.setFrom(new InternetAddress(m_from));
msg.addRecipient(Message.RecipientType.TO, new InternetAddress(m_to));
Transport.send(msg);
return "Successful";
} catch (Exception mex) {
mex.printStackTrace();
return "Fail";
//public static void main(String[] args) {
// MailSender blah = new MailSender();
private class SMTPAuthenticator extends javax.mail.Authenticator {
public PasswordAuthentication getPasswordAuthentication() {
return new PasswordAuthentication(d_email, d_password);
} -
How to configure the .EAR to the OC4J server step by step ?
I have configured the JavaBean of the OC4J server with the following step:
1.create the eosp.ear with the JDeveloper's wizard
2.copy the eosp.ear to the OC4J Server with the Path:
J2EE_HOME/applications/
3.modify the server.xml and add the following words:
<application name="eosp" path="../applications/eosp.ear" auto-start="true"/>
4.restart the OC4J server and show the information:
Auto-deploying eosp (New server version detected)...
5.create the new JSP and this source code is:
<%@ page import="com.beautybeard.eosp.common.*"%>
<%@ page import="com.beautybeard.eosp.constant.*"%>
6.visit the JSP and show the error information:
Error parsing JSP page /eosp/usr_profile/login.jsp
Syntax error in source/eosp/usr_profile/login.jsp.java:5: Package com.beautybeard.eosp.common not found in import.import com.beautybeard.eosp.common.*; ^/eosp/usr_profile/login.jsp.java:6: Package com.beautybeard.eosp.constant not found in import.import com.beautybeard.eosp.constant.*; ^2 errors
why?
why can not find the package?
please help me outHi Sky-
It looks like you have a web application only.
You need to create a war file as described above. A war file is a jar'd file containing your web components, including your javabean class files, etc. JDeveloper 9i can do this for you. You've already done the hard work. Suppose that the project you have created that contains your javabeans, etc in JDev 9i is called myproject (with myproject.jpr as the project file). Right click on the myproject.jpr in the JDev navigator and select 'new...', go to Deployment Profiles and select J2EE Web Module (WAR File) - a general screen will pop up asking you to save the deployment profile (you can just use the default if you want). Once you select OK on that, you will get a screen that calls itself the J2EE Web Module Deployment Profile Settings. This is the screen that you can use to enter your information.
Your servlet and javabean classes will go into WEB-INF/classes subdirectory that you see to your left in this window. Simply select the WEB-INF/classes entry and it will display a list of your java sources (it will only place the compiled output in this directory - there is a toggle for it).
Once you have specified that your javabean and servlet classes go in this directory, you should be set. Go ahead and save / close. In your navigation screen under your project (myproject.jpr or whatever your project name is) you will see your files, jsps, etc and something called webapp1.deploy (if you accepted the default). If you right-click on that, you will get a menu that asks a number of things, one of which is to Deploy to EAR file. Select that entry and it will create an ear file for you. You can play with the various settings to change the name of the ear file, but that's about all you have to do. Once this is completed, you can put the EAR file on your linux box or wherever you want, adjust your server.xml and default-web-app.xml files and launch the app!
Good luck!
Ray
Hi,Ray
Thank you for giving me the detail information!
I'm sorry that I can not give the detail and clear problem ,which make you delusoried.
ok,now I give you my aim.
1. I will construct my application system with JavaBean(not EJB),Servlet,JSPs (linux+IAS+JDeveloper+Oracle8i database)
2. I will package business function with JavaBean. example:
* CheckLogin.java
package com.beautybeard.eosp.javabean.usrprofile;
import com.beautybeard.eosp.common.*;
import com.beautybeard.eosp.data.*;
import java.io.*;
import java.lang.*;
public class CheckLogin{
public CheckLogin()
//do nothing here
public boolean getCheckLogin(){
3. I will control the request and response with Servlets.
example:
*CheckLoginSevlet.java
package com.beautybeard.eosp.servlet.usrprofile;
import javax.servlet.*;
import javax.servlet.http.*;
import java.io.*;
import java.util.*;
import java.sql.*;
import com.beautybeard.eosp.servlet.*;
import com.beautybeard.eosp.javabean.usrprofile.*;
public class CheckLoginServlet extends DefaultServlet
public void service(HttpServletRequest req,HttpServletResponse res) throws IOException, ServletException
//use the JavaBean
CheckLogin cl = new CheckLogin();
if (cl.getCheckLogin){
res.sendRedirect("login.jsp");
}else{
res.sendRedirect("err.jsp");
4. I will display the result with JSPs:
example:
<%//login.jsp%>
<%@ page import="com.beautybeard.eosp.common.*"%>
<%@ page import="com.beautybeard.eosp.data.*"%>
5. I have success on running the above steps in the 9iJDevelper(pure java) environment(OS:Windows 2000 Server), and now I will move the JSPs ,Servlets,JavaBeans to the Server(linux) without the JDeveloper's deployment wizard.
how to configure the IAS to carry my point?
thank you!
Sky liu -
How to configure the jdeveloper 11 with .dbc files?
hi, all
i am a new bie here. 4 jdeveloper 10, i can configure the .dbc files at project setting, while 4 jdeveloper 11, it's totally different. i can't find any place to configure it. How to configure the .dbc in jdeveloper 11?
Regards,
ChelseaYou cant use jdev 11g for OAF development..
You need to download the jdeveloper patch from metalink to develope OAF objects.
Refer this metalink note to find the correct version of jdeveloper that you need to download https://metalink2.oracle.com/metalink/plsql/ml2_documents.showDocument?p_database_id=NOT&p_id=416708.1
--Prasanna
Maybe you are looking for
-
PrintMode="ActiveX" & Crystal Reports 2008
Using CR XI.5, we were having our users print crystal reports in our .NET web application using a CrystalReportViewer and setting the PrintMode="ActiveX". To do this, we had to add this to our Web.Config: <configSections><sectionGroup name="businessO
-
How to use java classes of DC1 in DC2
When I was trying to use a java-class from another DC, I stumbled into an error I didn't expect: java.lang.NoClassDefFoundError: com/company/application/utils This is what I did to get this far: 1. Created an empty Web Dynpro DC (DC1), to be used as
-
Keyboard not working with xorg-server 1.6.1-1 or xkeyboard 1.5-1
Hello! I have a problem with a no working keyboard. It seems like this is a problem related to some of the latest xkeyboard-config or xorg-server versions. This have been a problem some time, but it have been solved by downgrading xkeyboard-config to
-
I bought osx lion by mistake. How can I get a refund?
I was waiting desperately for OSX Mountain Lion, which was anounced for july. I went to the App store on july 2nd, I looked for Lion in the search tab, I did find an OSX Lion and I clicked BUY. It started download, but never got even 10% because of m
-
How to work with Sonar in iPhone
Hello all, I am trying to work with Sonar.For measure distance between two points using sound.How its possible it with iphone? because as i know for that i required to send sound at velocity(reference to temperature). So in iphone how its possible &