ASA 1000v controlled by Prime Network Services Controller

I have a problem with a ASA 1000v which is controlled by the Prime Network Services Controller. I made a Policy for one port-profile which a server is connected. I configured nat and I am able to reach hosts on the Outside Network.
Somehow I would like to limit the traffic to certain ports. So I made a ACL which looks like this
I would guess that this give me a ACL which permits only SSH to 192.168.1.1. But instead it gives me a ip 192.168.2.2 192.168.1.1 ACL on the ASA.
Has anybody a clou on how to do this?

I found the answer. The ACL must look like this then it will work :)

Similar Messages

Cisco Prime Network Service Controller failed to config VSM

Hello Gents
Trying to integrate Cisco PNSC with N1KV in ESXi 5.5
CPNSC management reports error while trying to communicate with N1KV (see attaches). connectivity between mgmt-interfaces is Ok.
What does this fault mean? How to fight it?

Same problem

Cisco Prime Infrastructure 1.2 with Cisco Prime Network Control System Hardware Appliance

Hi Team,
I have following BOM
Cisco Prime Infrastructure
R-PI-1.2-K9
Cisco Prime Infrastructure 1.2
1
R-PI-1.1-500-K9
Prime Infrastructure 1.2 Software - 500 Device Base Lic
1
L-PILMS42-500
Prime Infrastructure LMS 4.2 - 500 Device Base Lic
1
L-PINCS12-500
Prime Infrastructure NCS 1.2 - 500 Device Base Lic
1
PRIME-NCS-APL-K9
Cisco Prime Network Control System Hardware Appliance
1
PI-APL-IMAGE-1.2
Cisco Prime Infrastructure 1.2 Appliance Software
1
Pls let me know if we have both NCS and LMS preinstalled with Cisco Prime Infrastructure 1.2 Appliance Software orwe need seperate appliance or server for LMS 4.2.
Regards

Hi Scott,
Thanks for the response but I got to know that LMS and NCS are combined in single ISO image from PI 1.2 and can be installed on the same physical NCS appliance.
Can you pls check this.
Regards

Control Network Services

Hello
how can i control which network service to run at startup , please in detail . how to enable telnet to the system . how to restart all of the network services while the system is running ?

Try going through this url:
http://www.sun.com/bigadmin/features/articles/littleAdmin.html

Prime network control system appliance (NCS)

Hi,
i have a new cisco prime network control system appliance (NCS)
I completed the initial installation however post installation it performed a reboot and is now stuck at Init Level 3.
I have restarted the machine several time but the same result.

Umm a new appliance should have had the application pre-installed. Were you upgrading?
In either case, you'll probably need to open a TAC case. Even without Smartnet you should have at least 90-day warranty support

Unified CCX serviceability - Control Center - Network Services

Hello
Troubleshooting some Partial service issue: I cannot find any information on Cisco site that will tell me what the S means on the Control Center - Network Services page for CCX serviceability. Could anyone please provide the documentation that explains these letter notations ?

Hello-
I'm assuming you're running 2 UCCX servers as an HA cluster. If so, the "S" next to the service means it is asking as the secondary/slave node, and the other server should have an "M" next to the service indicating it is currently the master/primary node.

Cisco Wireless Control System need wireless Lan Controller ?

Cisco Wireless Control System need wireless Lan Controller , for Rogue detection

Hi Joao,
The WCS is used in conjuntion with the WLC (Wireless Lan Controller) for Rogue Detection. It is not a must for this function but more of an add-on :)
The Cisco WCS is an optional network component that works in conjunction with Cisco Aironet Lightweight Access Points, Cisco wireless LAN controllers and the Cisco Wireless Location Appliance.
From this doc;
http://www.cisco.com/en/US/products/ps6305/index.html
Overview of WCS
The Cisco Wireless Control System (WCS) is a Cisco Unified Wireless Network Solution management tool that adds to the capabilities of the web user interface and command line interface (CLI), moving from individual controllers to a network of controllers. WCS includes the same configuration, performance monitoring, security, fault management, and accounting options used at the controller level and adds a graphical view of multiple controllers and managed access points.
WCS runs on Windows 2003 and Red Hat Enterprise Linux ES 4.0 and AS 4.0 servers. On both Windows and Linux, WCS can run as a normal application or as a service, which runs continuously and resumes running after a reboot.
The WCS user interface enables operators to control all permitted Cisco Unified Wireless Network Solution configuration, monitoring, and control functions through Internet Explorer 6.0 or later. Operator permissions are defined by the administrator using the WCS user interface Administration menu, which enables the administrator to manage user accounts and schedule periodic maintenance tasks.
WCS simplifies controller configuration and monitoring while reducing data entry errors with the Cisco Unified Wireless Network Controller autodiscovery algorithm. WCS uses the industry-standard SNMP protocol to communicate with the controllers.
From this good doc;
http://www.cisco.com/en/US/products/ps6305/products_configuration_guide_chapter09186a00806b7270.html#wp1131195
Detect and Locate Rogue Access Points
From this WCS doc;
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_tech_note09186a00806f070a.shtml#new5
Rogue Detection under Unified Wireless Networks
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_white_paper09186a0080722d8c.shtml
Hope this helps!
Rob

Cisco Prime Network 4.0

Hi,
Has someone installed Cisco Prime Network on another distribution than Redhat ? I want to install a local demo and I have only RedHat trial.
What is the optimal mode of installation Prime Network ? Unit + GW and DB on the same machine? I would like to install in the same machine, but
I´m not sure if it will run ok.
If this is the optimal assembly mode, which is the required bandwidth between Unit, Gw and DB.?
Thanks.
Regards.

I found the solution is to restart network control services in Prime Network and restart control services in Prime Central from the Linux OS

Deployment issue - Login failed for user 'NT AUTHORITY\NETWORK SERVICE'

I am attempting to deploy a site from my development PC to my server. I have no issues running the site on the server using VS2010 Express Web in debug. All page queries are working within the debugger. The connection strings are identical between the PC
and Server, except the host name.
connectionString
="Data
Source=SOCIALSERVER;Initial Catalog=Intake_be;Integrated Security=True"
However, when using the site normally via IIS, the pages containing data access are failing with a permissions problem. The non-data access pages render normally.
Login failed for user 'NT AUTHORITY\NETWORK SERVICE'
Looking at the SQL2005 instance via SQL Management Studio, I see security folder with Logins under the Server. NTA\NS is listed as a user login. But, I also see similar folders under each
of 3 databases. NTA\NS is not listed as a login specific to my target dB.
My site is for internal (intranet) use only. There is no internet access into my IIS. This is my first deployment into production. I think I only need Windows Authentication but I lack the experience to make a good decision. My goal is to allow domain users
to access pages that produce read only data. But, I also need controlled access to pages that can modify data. I used the native winform template for ASP.NET 4, which includes some roles based security.
How do I grant permissions for internal users on the pages that access SQL data? How does that security model work with the native roles based security? i.e.
add
name="AspNetSqlMembershipProvider"type="System.Web.Security.SqlMembershipProvider"connectionStringName="ApplicationServices"...
etc.
Thanks for your time and patience on this Deployment 101 type issue.
Kurt

hi,
You receive either of these error messages specifically when you use integrated security.
To resolve you can use one of below.
Method 1: Programmatically change the security context of the ASP.NET worker process to a user who has the correct SQL Server permissions.
Method 2: Change the default configuration of ASP.NET so that the ASP.NET worker process starts and runs under the context of a user who has the correct permissions in SQL Server.
Method 3: Grant the correct permissions in SQL Server so that the ASPNET account (or NetworkService account, for an application that runs on IIS 6.0) has the appropriate access to the required resources.(Go to the Computer Management >> Local User and
Groups >> Groups >> Right Click and go to properties on IIS_IUSRS >> Add appropriate user.
Thanx, Mark as answered if you are ok ..

Ask The Expert: Understanding, Implementing, and Troubleshooting Cisco Prime Network

Ask questions and learn about Cisco Prime Network with Cisco experts Vignesh Rajendran Praveen and Jaminder Singh Bali.
Cisco Prime Network is and Cisco Prime Network provides cost-effective device operation, administration and network fault management for today’s complex and evolved programmable networks (EPNs). It is a single solution to support both the traditional physical network components, as well as compute infrastructure, and the virtual elements found in data centers. Automated configuration and change management combined with advanced troubleshooting and diagnostics greatly help service providers enable proactive service assurance. Additionally, the flexible and extensible architecture is designed to support the multivendor environment, helping to lower operational costs.
This event runs January 5 through January 16, 2015.
Vignesh Rajendran Praveen is a High Touch Engineer with the Focused Technical Services team supporting Cisco's major Service Provider customers in Routing, Switching, Multiprotocol Label Switching (MPLS) technologies and Cisco Prime Network related issues. Previously at Cisco he has worked as a Network Consulting Engineer for Enterprise Customers and as a Customer Support Engineer for Service Provider customers. He has been in the networking industry for ten years and holds CCIE certification (#34503) in the Routing and Switching as well as Service Provider tracks.
Jaminder Singh Bali is a Customer Support Engineer working in SP-NMS TAC team, supporting Cisco's major service provider customers in Cisco Prime Network, Performance and Prime Central related issues. His areas of expertise include Oracle, Linux and NMS applications. He has been in the industry for past six years.
Remember to use the rating system to let the experts know if you have received an adequate response.
The Experts might not be able to answer each question due to the volume expected during this event. Remember that you can continue the conversation in Network Infrastructure community, sub-community, LAN, Switching and Routing discussion forum shortly after the event. This event lasts through January 16, 2015. Visit this forum often to view responses to your questions and the questions of other community members.

Hello Jerome,
A variety of Cisco devices are supported by the the Cisco Prime Network. I would encourage you to go through the below links on the user guide depending the version of Cisco Prime Network being used.
"Cisco Prime Network Supported Cisco Virtual Network Elements (VNEs)"
"Cisco Prime Network Supported Cisco VNEs - Addendum"
Below is the link for the user guide.
http://www.cisco.com/c/en/us/support/cloud-systems-management/prime-network/products-user-guide-list.html
Hope this would help in providing you more clarity.
***********Plz do rate this post if you found it helpful*************************
Thanks & Regards,
Vignesh R P

Enabling Network Services not working PLEASE HELP

Hello,
I created a virtual machine with the Oracle_Developer_Day.ova file downloaded from oracle page in order to test the application express tool.
I´m trying to ad a webservice reference but getting the error:
ORA-29273: HTTP request failed ORA-06512: at "SYS.UTL_HTTP", line 1130 ORA-24247: network access denied by access control list (ACL)
I researched and find out that oracle 11g does not have network services enabled so you have to enable them with the following script:
DECLARE
ACL_PATH VARCHAR2(4000);
ACL_ID RAW(16);
BEGIN
-- Look for the ACL currently assigned to '*' and give APEX_030200
-- the "connect" privilege if APEX_030200 does not have the privilege yet.
SELECT ACL INTO ACL_PATH FROM DBA_NETWORK_ACLS
WHERE HOST = '*' AND LOWER_PORT IS NULL AND UPPER_PORT IS NULL;
-- Before checking the privilege, ensure that the ACL is valid
-- (for example, does not contain stale references to dropped users).
-- If it does, the following exception will be raised:
-- ORA-44416: Invalid ACL: Unresolved principal 'ADMIN'
-- ORA-06512: at "XDB.DBMS_XDBZ", line ...
SELECT SYS_OP_R2O(extractValue(P.RES, '/Resource/XMLRef')) INTO ACL_ID
FROM XDB.XDB$ACL A, PATH_VIEW P
WHERE extractValue(P.RES, '/Resource/XMLRef') = REF(A) AND
EQUALS_PATH(P.RES, ACL_PATH) = 1;
DBMS_XDBZ.ValidateACL(ACL_ID);
IF DBMS_NETWORK_ACL_ADMIN.CHECK_PRIVILEGE(ACL_PATH, 'HR',
'connect') IS NULL THEN
DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE(ACL_PATH,
'HR', TRUE, 'connect');
END IF;
EXCEPTION
-- When no ACL has been assigned to '*'.
WHEN NO_DATA_FOUND THEN
DBMS_NETWORK_ACL_ADMIN.CREATE_ACL('power_users.xml',
'ACL that lets power users to connect to everywhere',
'HR', TRUE, 'connect');
DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL('power_users.xml','*');
END;
COMMIT;
***Note: I have a workspace called HR and a user called HR.
I run the script and everything works fine but when I try to add the webservice reference I get the same error.
I don´t know what to do and my time to fixing this problem is ending so please if someone can help me I would really appreciate it.
THanks in advance

Hi Luis,
You will find the script for the relevant releases in the respective installation guides of their releases.
Here is the script for Oracle APEX 4.1 and its sub-version releases:
DECLARE
ACL_PATH VARCHAR2(4000);
BEGIN
-- Look for the ACL currently assigned to '*' and give APEX_040100
-- the "connect" privilege if APEX_040100 does not have the privilege yet.
SELECT ACL INTO ACL_PATH FROM DBA_NETWORK_ACLS
   WHERE HOST = '*' AND LOWER_PORT IS NULL AND UPPER_PORT IS NULL;
IF DBMS_NETWORK_ACL_ADMIN.CHECK_PRIVILEGE(ACL_PATH, 'APEX_040100',
     'connect') IS NULL THEN
      DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE(ACL_PATH,
     'APEX_040100', TRUE, 'connect');
END IF;
EXCEPTION
-- When no ACL has been assigned to '*'.
WHEN NO_DATA_FOUND THEN
DBMS_NETWORK_ACL_ADMIN.CREATE_ACL('power_users.xml',
    'ACL that lets power users to connect to everywhere',
    'APEX_040100', TRUE, 'connect');
DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL('power_users.xml','*');
END;
COMMIT;
Refer : http://docs.oracle.com/cd/E23903_01/doc/doc.41/e21673/otn_install.htm#BEHGBHDF
Here is the script for Oracle APEX 4.2 and its sub-version releases:
DECLARE
ACL_PATH VARCHAR2(4000);
BEGIN
-- Look for the ACL currently assigned to '*' and give APEX_040200
-- the "connect" privilege if APEX_040200 does not have the privilege yet.
SELECT ACL INTO ACL_PATH FROM DBA_NETWORK_ACLS
   WHERE HOST = '*' AND LOWER_PORT IS NULL AND UPPER_PORT IS NULL;
IF DBMS_NETWORK_ACL_ADMIN.CHECK_PRIVILEGE(ACL_PATH, 'APEX_040200',
     'connect') IS NULL THEN
      DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE(ACL_PATH,
     'APEX_040200', TRUE, 'connect');
END IF;
EXCEPTION
-- When no ACL has been assigned to '*'.
WHEN NO_DATA_FOUND THEN
DBMS_NETWORK_ACL_ADMIN.CREATE_ACL('power_users.xml',
    'ACL that lets power users to connect to everywhere',
    'APEX_040200', TRUE, 'connect');
DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL('power_users.xml','*');
END;
COMMIT;Refer: http://docs.oracle.com/cd/E37097_01/doc/install.42/e35123/otn_install.htm#BEHGBHDF
Hope it Helps!
Regards,
Kiran

NULL values and Data Control based on Web Service

One of my ADF control is based on a Data Control created through a web service. Every thing is working fine except the way ADF control is handling the null values return by the web service based data control.
For example for null columns the web service is sending the following:
<ns0:beginDate xsi:nil="1"/>
or
<ns0:sourceCode xsi:nil="1"/>
But the corresponding column in my ADF data control is trying to initialize itself using the value [{nil=1}]. It fails with the following error.
2006-04-20 13:31:37.510 WARNING JBO-25009: Cannot create an object of type:java.util.Date with value:[{nil=1}]
I will appreciate if someone could help me resolve this issue.
Thanks,

I tried again, but it seems that I'm unable to reproduce this in a test project which uses another data controls but is still as similar as possible to the original project in which I've encountered this behaviour.
However, using a data control based on the same web service as in the original project, [{nil=1}] appears again instead of emtpy values.
Is it possible that there is a significant difference in the generated wrapper classes? The underlying PL/SQL is the same (in strucutre) and the corresponding elements in the response XML of the web service are the same in the two cases, always like <ns0:someResponeValue xsi:nil="1"/>, so I don't know how it is possible that I can't reproduce this behaviour.
A short description of the projects:
Services/Model:
I created a PL/SQL funcition in a package that returns a user type object. This return parameter consists of a non-empty string and a null value string. On top of this I created a PL/SQL web service and a data control for that.
View/Controller:
A JSF JSP page which has a read-only form showing the return values of the web service.
Regards,
Patrik

I can't start listener in the Control Painel/Admin Tools/ Services

Windows XP - Home Edition (I know it´s not the better but came with my laptop)
I installed the Oracle 10g and I don't know why I have 3 listener as services. Its services showed me different messages when I tried start it:
1. OracleOraDb10g_home1TNSListener: Could not start the 2. OracleOraDb10g_home1TNSListener service on Local Computer
2. OracleOraDb10g_home1TNSListenerORCL: The OracleOraDb10g_home1TNSListenerORCL service on Local Computer started and then stopped. Some services stop automatically if they have no work to do, for example, the Performace Logs and Alerts service
3. OracleOraDb10g_home1TNSListenerSID_LIST_LISTENER: The OracleOraDb10g_home1TNSListenerSID_LIST_LISTENER service on Local Computer started and then stopped. Some services stop automatically if they have no work to do, for example, the Performace Logs and Alerts service
====PATH======
Path=C:\oracle\product\10.1.0\Db_3\bin;C:\Program Files\oracle 8i\bin;C:\oracle\
product\10.1.0\Db_3\jdk\jre\bin;C:\oracle\product\10.1.0\Db_3\jdk\jre\bin\classi
c;C:\oracle\product\10.1.0\Db_3\jdk\jre\bin\classic;C:\oracle\product\10.1.0\Db_
3\jlib;C:\oracle\product\10.1.0\Db_3\bin;C:\Program Files\Oracle\jre\1.3.1\bin;C
:\oracle\product\10.1.0\Db_3\jre\1.4.2\bin\client;C:\oracle\product\10.1.0\Db_3\
jre\1.4.2\bin;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program
Files\ATI Technologies\ATI Control Panel;%java_home%\bin;C:\Program Files\Commo
n Files\Ulead Systems\MPEG;C:\WINDOWS\system32\gs\gs8.13\bin
====REGISTRY======
TNS_ADMIN I set as Binary Data in the HKEY_CURRENT_USER\Environment with the path C:\oracle\product\10.1.0\Db_3\NETWORK\ADMIN
====LISTENER.ORA======
SID_LIST_LISTENER =
(SID_LIST =
(SID_DESC =
(SID_NAME = PLSExtProc)
(ORACLE_HOME = C:\oracle\product\10.1.0\Db_3)
(PROGRAM = extproc)
LISTENER =
(DESCRIPTION_LIST =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC))
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.0.17)(PORT = 1521))
====TNSNAMES.ORA========
ORCL =
(DESCRIPTION =
(ADDRESS = (PROTOCOL = TCP)(HOST = 192.168.0.17)(PORT = 1521))
(CONNECT_DATA =
(SERVER = DEDICATED)
(SERVICE_NAME = orcl)
EXTPROC_CONNECTION_DATA =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC))
(CONNECT_DATA =
(SID = PLSExtProc)
(PRESENTATION = RO)
====SQL.ORA========
NAMES.DEFAULT_DOMAIN = 192.168.0.17
SQLNET.AUTHENTICATION_SERVICES= (NTS)
NAMES.DIRECTORY_PATH= (TNSNAMES, EZCONNECT)
=======OS CONFIGURATION================
C:\>lsnrctl status
LSNRCTL for 32-bit Windows: Version 10.1.0.2.0 - Production on 23-MAR-2006 08:23
:44
Copyright (c) 1991, 2004, Oracle. All rights reserved.
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC)))
TNS-12541: TNS:no listener
TNS-12560: TNS:protocol adapter error
TNS-00511: No listener
32-bit Windows Error: 2: No such file or directory
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=192.168.0.17)(PORT=1521)
TNS-12541: TNS:no listener
TNS-12560: TNS:protocol adapter error
TNS-00511: No listener
32-bit Windows Error: 61: Unknown error
C:\>ipconfig
Windows IP Configuration
Ethernet adapter Local Area Connection:
Media State . . . . . . . . . . . : Media disconnected
Ethernet adapter Wireless Network Connection 2:
Connection-specific DNS Suffix . : myhome.westell.com
IP Address. . . . . . . . . . . . : 192.168.0.17
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.1
C:\>
Please, if somebody knows this problem I need a very urgent help. Thank you very much.

Thanks ALL, I GOT IT, but I used other solution.
Since I installed and uninstalled the Oracle several times, it keeps also many different Services for the listener. I don't know why, it didn't create a Service for my actual instalation with its path. In other words, all the services remained in the services.msc panel, had the path that was already removed from the Windows folder.
Then what I did, was that I picked one service, took its name (OracleOraDb10g_home1TNSListener), went to regedit to [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\OracleOraDb10g_home1TNSListener] and simply changed the image path that was setted for the one that was removed (C:\oracle\product\10.1.0\Db_2\BIN\TNSLSNR ) for mine that is installed right now
(C:\oracle\product\10.1.0\Db_1\BIN\TNSLSNR). Nothing more and finally works.
I have tried something in the services.msc panel before, as you can see in this forum at the thread "I can't start listener in the Control Painel/Admin Tools/ Services", but I never got
success.
Appreciate your time!!

Wi Fi disappeared from my network services. Now, Wi Fi unavailable on my Mac.

I am using a Mac Pro (early 2009 Model) OS X 10.10.2, 2.93 GHz, 8GB memory.
About a week ago, my Wi Fi suddenly disappeared from my Network Services. I cannot access any Wi Fi network because the Icon or a Wi Fi link does not show up anywhere. I tried the diagnostic test but that did not work. I re-booted my computer, I re-installed Yosemite and did a software update and my Wi Fi still did not show up in the network services.
Any help in reconnecting my Wi Fi services will be greatly appreciated.
Skel.

Open the Network pane in System Preferences. A list of available network services appears on the left. If Wi-Fi is in the list, select it, then from the popup menu labeled with a gear icon at the bottom of the list, select
          Make Service Active
Click Apply.
If Wi-Fi is not in the service list, click the plus-sign button at the bottom of the list, and then select Wi-Fi from the Interface menu in the sheet that drops down. Click Create, then Apply.
If there is a closed padlock icon in the lower left corner of the preference pane, click it and enter your administrator password to unlock the settings.
If the above steps don't solve the problem, continue.
Triple-click anywhere in the line below on this page to select it:
/Library/Preferences/SystemConfiguration/com.apple.airport.preferences.plist
Right-click or control-click the line and select
         Services ▹ Reveal in Finder (or just Reveal)
from the contextual menu.* A folder should open with "com.apple.airport.preferences.plist" selected. Move the selected item to the Trash. You may be prompted for your administrator password. Restart the computer and recreate your settings for Wi-Fi in the Network preference pane.
*If you don't see the contextual menu item, copy the selected text to the Clipboard by pressing the key combination command-C. In the Finder, select
          Go ▹ Go to Folder...
from the menu bar and paste into the box that opens by pressing command-V. You won't see what you pasted because a line break is included. Press return.

Restrict AFP to use a certain network service?

I'm working with a client who has two new (Early 2008) Mac Pro systems, and we'd like to set it up so that internet is accessed over one slower connection (100Base-T), and really large video files are shared via another connection, like Gigabit Ethernet.
Accordingly, is there any way to restrict through which of the networks services AFP is offered and requested? We obviously don't want the video files to try and transfer over the slower network, nor do we want the office-wide internet access clogging up the data-transfer gigabit LAN.
We have a small DSL router that will be parsing out the internet LAN, and have a separate Gigabit switch in place to connect to the second ethernet port on both Mac Pros (which will soon be extended by another few machines, which is why the switch and not just direct connection). I currently have the internet-accessible LAN on the 192.168.1.x subnet, and the video data transfer LAN on 10.1.1.x.
All that's left is to configure AFP service and requests to only go out over the 10.1.1.x LAN, but I'm having a bit of trouble sussing that out. Any pointers you might have would be most appreciated. Thanks!
Cheers,
MB

It'll be available on any interface.
The exception to this (for any protocol) is when you have a firewalled interface. then the rules on that particular interfaces firewall will dictate what is and isn't available on that interface. OSX however does not allow such granular control of the inbuilt firewall, so in this case it's on or off.
Regardless of this, it is still route based. If you had a protocol blocked on your 10.x.x.x network and enabled on your 192.168.x.x network, and attempted to connect to it, you can still only connect to it with traffic destined for the 192.168.x.x network. Blocking it on one network does not force traffic to try the other network. Everything is still dependent on following IP routes.
One thing of note is whether you're using a name to connect to the other machine or an IP address. Given that this is a small network and DNS is likely only on your router, trying to connect via machine name could be hit and miss. Try it out with IP address only to test it out and see if you get consistent results.

ASA 1000v controlled by Prime Network Services Controller

Similar Messages

Maybe you are looking for