%ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows; Connection for tcp src outside:10.159.159.3/49204 dst tru777:10.1.34.19/3389 denied due to NAT reverse path failure

Similar Messages

• Asymmetric NAT rules matched for forward and reverse flows - NAT Issue

  Having a problem with a VPN site trying to communicate to a subnet off my ASA 5505.   The network is simple, VPN IPSEC remote site is 192.168.6.0/24 and I can ping and access hosts on 192.168.10.0/24 (called InfraNet).   I am now trying to allow communications between 192.168.6.0/24 (called FD_net) to 192.168.9.0/24 (called Inside)
  The Error:
  5          Nov 12 2012          13:52:50                    192.168.9.19                                        Asymmetric NAT rules matched for forward and reverse flows; Connection for icmp src outside:192.168.6.11 dst inside:192.168.9.19 (type 8, code 0) denied due to NAT reverse path failure
  I understand this is a NAT issue; but I not seeing the error and could use a second set of eyes.   Here's my current running configuration.
  : Saved
  ASA Version 8.3(2)
  hostname fw1
  domain-name xxxxxxxx.xxx
  enable password <removed>
  passwd <removed>
  names
  interface Vlan1
  description Town Internal Network
  nameif inside
  security-level 100
  ip address 192.168.9.1 255.255.255.0
  interface Vlan2
  description Public Internet
  nameif outside
  security-level 0
  ip address 173.xxx.xxx.xxx 255.255.255.248
  interface Vlan3
  description DMZ (CaTV)
  nameif dmz
  security-level 50
  ip address 192.168.2.1 255.255.255.0
  interface Vlan10
  description Infrastructure Network
  nameif InfraNet
  security-level 100
  ip address 192.168.10.1 255.255.255.0
  interface Vlan13
  description Guest Wireless
  nameif Wireless-Guest
  security-level 25
  ip address 192.168.1.1 255.255.255.0
  interface Vlan23
  nameif StateNet
  security-level 75
  ip address 10.63.198.2 255.255.255.0
  interface Vlan33
  description Police Subnet
  shutdown
  nameif PDNet
  security-level 90
  ip address 192.168.0.1 255.255.255.0
  interface Ethernet0/0
  switchport access vlan 2
  interface Ethernet0/1
  switchport trunk allowed vlan 1,5,10,13
  switchport trunk native vlan 1
  switchport mode trunk
  speed 100
  duplex full
  interface Ethernet0/2
  switchport access vlan 3
  interface Ethernet0/3
  interface Ethernet0/4
  switchport trunk allowed vlan 1,10,13
  switchport trunk native vlan 1
  switchport mode trunk
  interface Ethernet0/5
  switchport access vlan 23
  interface Ethernet0/6
  shutdown
  interface Ethernet0/7
  switchport trunk allowed vlan 1
  switchport trunk native vlan 1
  switchport mode trunk
  shutdown
  banner exec                     Access Restricted to Personnel Only
  banner login                     Access Restricted to Personnel Only
  ftp mode passive
  clock timezone EST -5
  clock summer-time EDT recurring
  dns server-group DefaultDNS
  domain-name xxxxxxx.xxx
  same-security-traffic permit inter-interface
  object network obj_any
  subnet 0.0.0.0 0.0.0.0
  object service IMAPoverSSL
  service tcp destination eq 993
  description IMAP over SSL     
  object service POPoverSSL
  service tcp destination eq 995
  description POP3 over SSL     
  object service SMTPwTLS
  service tcp destination eq 465
  description SMTP with TLS     
  object network obj-192.168.9.20
  host 192.168.9.20
  object network obj-claggett-https
  host 192.168.9.20
  object network obj-claggett-imap4
  host 192.168.9.20
  object network obj-claggett-pop3
  host 192.168.9.20
  object network obj-claggett-smtp
  host 192.168.9.20
  object network obj-claggett-imapoverssl
  host 192.168.9.20
  object network obj-claggett-popoverssl
  host 192.168.9.20
  object network obj-claggett-smtpwTLS
  host 192.168.9.20
  object network obj-192.168.9.120
  host 192.168.9.120
  object network obj-192.168.9.119
  host 192.168.9.119
  object network obj-192.168.9.121
  host 192.168.9.121
  object network obj-wirelessnet
  subnet 192.168.1.0 255.255.255.0
  object network WirelessClients
  subnet 192.168.1.0 255.255.255.0
  object network obj-dmznetwork
  subnet 192.168.2.0 255.255.255.0
  object network FD_Firewall
  host 74.94.142.229
  object network FD_Net
  subnet 192.168.6.0 255.255.255.0
  object network NETWORK_OBJ_192.168.10.0_24
  subnet 192.168.10.0 255.255.255.0
  object network obj-TownHallNet
  subnet 192.168.9.0 255.255.255.0
  object network obj_InfraNet
  subnet 192.168.10.0 255.255.255.0
  object-group service EmailServices
  description Normal Email/Exchange Services
  service-object object IMAPoverSSL
  service-object object POPoverSSL
  service-object object SMTPwTLS
  service-object tcp destination eq https
  service-object tcp destination eq imap4
  service-object tcp destination eq pop3
  service-object tcp destination eq smtp
  object-group service DM_INLINE_SERVICE_1
  service-object object IMAPoverSSL
  service-object object POPoverSSL
  service-object object SMTPwTLS
  service-object tcp destination eq pop3
  service-object tcp destination eq https
  service-object tcp destination eq smtp
  object-group service DM_INLINE_SERVICE_2
  service-object object IMAPoverSSL
  service-object object POPoverSSL
  service-object object SMTPwTLS
  service-object tcp destination eq https
  service-object tcp destination eq pop3
  service-object tcp destination eq smtp
  object-group network obj_clerkpc
  description Clerk's PCs
  network-object object obj-192.168.9.119
  network-object object obj-192.168.9.120
  network-object object obj-192.168.9.121
  object-group network TownHall_Nets
  network-object 192.168.10.0 255.255.255.0
  network-object object obj-TownHallNet
  object-group network DM_INLINE_NETWORK_1
  network-object 192.168.10.0 255.255.255.0
  network-object 192.168.9.0 255.255.255.0
  access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_2 any interface outside
  access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_1 any host 192.168.9.20
  access-list StateNet_access_in extended permit ip object-group obj_clerkpc any
  access-list outside_2_cryptomap extended permit ip object-group DM_INLINE_NETWORK_1 object FD_Net
  pager lines 24
  logging enable
  logging asdm debugging
  logging mail errors
  logging from-address hostmaster@xxxxxxxxx
  logging recipient-address john@xxxxxxxxx level errors
  mtu inside 1500
  mtu outside 1500
  mtu dmz 1500
  mtu Wireless-Guest 1500
  mtu StateNet 1500
  mtu InfraNet 1500
  mtu PDNet 1500
  no failover
  icmp unreachable rate-limit 1 burst-size 1
  asdm image disk0:/asdm-635.bin
  no asdm history enable
  arp timeout 14400
  nat (InfraNet,outside) source static TownHall_Nets TownHall_Nets destination static FD_Net FD_Net
  nat (inside,outside) source static TownHall_Nets TownHall_Nets destination static FD_Net FD_Net
  object network obj_any
  nat (inside,outside) static interface
  object network obj-claggett-https
  nat (inside,outside) static interface service tcp https https
  object network obj-claggett-imap4
  nat (inside,outside) static interface service tcp imap4 imap4
  object network obj-claggett-pop3
  nat (inside,outside) static interface service tcp pop3 pop3
  object network obj-claggett-smtp
  nat (inside,outside) static interface service tcp smtp smtp
  object network obj-claggett-imapoverssl
  nat (inside,outside) static interface service tcp 993 993
  object network obj-claggett-popoverssl
  nat (inside,outside) static interface service tcp 995 995
  object network obj-claggett-smtpwTLS
  nat (inside,outside) static interface service tcp 465 465
  object network obj-192.168.9.120
  nat (inside,StateNet) static 10.63.198.12
  object network obj-192.168.9.119
  nat (any,StateNet) static 10.63.198.10
  object network obj-192.168.9.121
  nat (any,StateNet) static 10.63.198.11
  object network obj-wirelessnet
  nat (Wireless-Guest,outside) static interface
  object network obj-dmznetwork
  nat (any,outside) static interface
  object network obj_InfraNet
  nat (InfraNet,outside) static interface
  access-group outside_access_in in interface outside
  access-group StateNet_access_in in interface StateNet
  route outside 0.0.0.0 0.0.0.0 173.166.117.190 1
  route StateNet 10.0.0.0 255.0.0.0 10.63.198.1 1
  timeout xlate 3:00:00
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  dynamic-access-policy-record DfltAccessPolicy
  http server enable 5443
  http 192.168.9.0 255.255.255.0 inside
  http 74.xxx.xxx.xxx 255.255.255.255 outside
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec security-association lifetime seconds 28800
  crypto ipsec security-association lifetime kilobytes 4608000
  crypto map outside_map 2 match address outside_2_cryptomap
  crypto map outside_map 2 set pfs
  crypto map outside_map 2 set peer 173.xxx.xxx.xxx
  crypto map outside_map 2 set transform-set ESP-3DES-SHA
  crypto map outside_map interface outside
  crypto isakmp enable outside
  crypto isakmp policy 10
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  telnet 192.168.9.0 255.255.255.0 inside
  telnet timeout 5
  ssh 192.168.9.0 255.255.255.0 inside
  ssh timeout 5
  console timeout 0
  dhcpd dns 208.67.222.222 208.67.220.220
  dhcpd lease 10800
  dhcpd auto_config outside
  dhcpd address 192.168.2.100-192.168.2.254 dmz
  dhcpd dns 8.8.8.8 8.8.4.4 interface dmz
  dhcpd enable dmz
  dhcpd address 192.168.1.100-192.168.1.254 Wireless-Guest
  dhcpd enable Wireless-Guest
  threat-detection basic-threat
  threat-detection statistics host number-of-rate 2
  threat-detection statistics port
  threat-detection statistics protocol
  threat-detection statistics access-list
  no threat-detection statistics tcp-intercept
  ntp server 63.240.161.99 source outside prefer
  ntp server 207.171.30.106 source outside prefer
  ntp server 70.86.250.6 source outside prefer
  webvpn
  group-policy FDIPSECTunnel internal
  group-policy FDIPSECTunnel attributes
  vpn-idle-timeout none
  vpn-tunnel-protocol IPSec l2tp-ipsec
  username support password <removed> privilege 15
  tunnel-group 173.xxx.xxx.xxx type ipsec-l2l
  tunnel-group 173.xxx.xxx.xxx general-attributes
  default-group-policy FDIPSECTunnel
  tunnel-group 173.xxx.xxx.xxx ipsec-attributes
  pre-shared-key *****
  smtp-server 192.168.9.20
  prompt hostname context
  call-home
  profile CiscoTAC-1
    no active
    destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
    destination address email [email protected]
    destination transport-method http
    subscribe-to-alert-group diagnostic
    subscribe-to-alert-group environment
    subscribe-to-alert-group inventory periodic monthly
    subscribe-to-alert-group configuration periodic monthly
    subscribe-to-alert-group telemetry periodic daily
  Cryptochecksum:e4dc3cef0de15123f11439822880a2c7
  : end
  Any ideas would be appreciated.
  John

  I don't see any inspection-commands in your config. Is there a reason for not using any of them?
  If your problem is only with ICMP, then you should enable at least icmp-inspection. You can do that easiely with the legacy command " fixup protocol icmp"
  Sent from Cisco Technical Support iPad App

• Asymmetric NAT rules matched for forward and reverse flows

  Hi! I don't know why this comes up in the logs when I have configured my vpn like so:
  crypto dynamic-map L2L_MAP 50 set reverse-route
  crypto dynamic-map OUTSIDE_dyn_map 20 set transform-set ESP-3DES-SHA
  crypto dynamic-map OUTSIDE_dyn_map 40 set pfs
  crypto dynamic-map OUTSIDE_dyn_map 40 set transform-set ESP-3DES-SHA
  crypto dynamic-map OUTSIDE_dyn_map 60 set pfs
  crypto dynamic-map OUTSIDE_dyn_map 60 set transform-set ESP-3DES-SHA
  crypto dynamic-map OUTSIDE_dyn_map 65535 set transform-set ESP-3DES-SHA
  crypto dynamic-map OUTSIDE_dyn_map 65535 set security-association lifetime seconds 288000
  crypto dynamic-map OUTSIDE_dyn_map 65535 set security-association lifetime kilobytes 4608000
  crypto dynamic-map INSIDE_dyn_map 20 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 20 match address IDP_VPN
  crypto map L2L_MAP 20 set peer x.x.x.x
  crypto map L2L_MAP 20 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 40 match address cp_l2l_map_40
  crypto map L2L_MAP 40 set peer x.x.x.x
  crypto map L2L_MAP 40 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 60 match address bwi_l2l
  crypto map L2L_MAP 60 set peer x.x.x.x
  crypto map L2L_MAP 60 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 80 match address outside_80_cryptomap
  crypto map L2L_MAP 80 set peer x.x.x.x
  crypto map L2L_MAP 80 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 65535 ipsec-isakmp dynamic OUTSIDE_dyn_map
  crypto map L2L_MAP interface outside
  crypto map INSIDE_map 65535 ipsec-isakmp dynamic INSIDE_dyn_map
  crypto map INSIDE_map interface inside
  I am able to connect successfully via vpn client.  Its just that i cant reach the internal servers...  Any ideas?
  i get this error:
  Oct 18 2012 00:52:37: %ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows; Connection for udp src outside:10.10.13.221/137 dst inside:10.10.13.255/137 denied

  I put in the important configs:
  interface GigabitEthernet0/0
  nameif outside
  security-level 0
  ip address x.x.x.x 255.255.255.0 standby x.x.x.x
  ospf cost 10
  interface GigabitEthernet0/1
  nameif inside
  security-level 100
  ip address 10.10.13.5 255.255.255.0 standby 10.10.13.6
  ospf cost 10
  interface GigabitEthernet0/2
  nameif dmz
  security-level 50
  no ip address
  ospf cost 10
  interface GigabitEthernet0/2.720
  vlan 720
  nameif dmz-vsp
  security-level 50
  ip address 172.24.0.1 255.255.255.0 standby 172.24.0.2
  ospf cost 10
  interface GigabitEthernet0/2.724
  vlan 724
  nameif dmz-dbz
  security-level 75
  ip address 172.24.4.1 255.255.255.0 standby 172.24.4.2
  ospf cost 10
  interface GigabitEthernet0/2.725
  vlan 725
  nameif dmz-smtp
  security-level 50
  ip address 172.24.5.1 255.255.255.0 standby 172.24.5.2
  ospf cost 10
  dns domain-lookup outside
  dns domain-lookup inside
  dns server-group DefaultDNS
  name-server 10.10.10.50
  domain-name xxxx.local
  access-list nonatacl extended permit ip 10.10.0.0 255.255.0.0 10.40.4.0 255.255.255.0
  access-list nonatacl extended permit ip 172.16.0.0 255.255.0.0 10.40.4.0 255.255.255.0
  access-list nonatacl extended permit ip 192.168.2.0 255.255.255.0 10.40.4.0 255.255.255.0
  access-list nonatacl extended permit ip 192.168.3.0 255.255.255.0 10.40.4.0 255.255.255.0
  access-list nonatacl extended permit ip 10.10.0.0 255.255.0.0 10.40.14.0 255.255.255.0
  access-list nonatacl extended permit ip 10.10.13.0 255.255.255.0 10.10.10.0 255.255.255.0
  access-list nonatacl extended permit ip 10.10.10.0 255.255.255.0 10.10.13.0 255.255.255.0
  access-list nonatacl extended permit ip 10.10.13.0 255.255.255.0 192.168.6.0 255.255.255.0
  access-list nonatacl extended permit ip 192.168.6.0 255.255.255.0 10.10.13.0 255.255.255.0
  ip local pool inshse-vpn-pool2 192.168.6.220-192.168.6.230 mask 255.255.255.0
  global (outside) 201 192.168.16.1-192.168.16.250
  global (outside) 202 10.201.5.145-10.201.5.158
  global (outside) 4 10.10.13.180-10.10.13.189 netmask 255.0.0.0
  global (outside) 101 interface
  global (outside) 1 x.x.x.x netmask 255.0.0.0
  global (inside) 204 10.10.13.70-10.10.13.79 netmask 255.0.0.0
  nat (inside) 0 access-list nonatacl
  nat (inside) 201 access-list NAT_TO_IDP
  nat (inside) 202 access-list inside2-vsp_nat_outbound
  nat (inside) 101 0.0.0.0 0.0.0.0
  nat (dmz-vsp) 202 access-list dmz-vsp_nat_outbound
  nat (dmz-vsp) 101 0.0.0.0 0.0.0.0
  route outside 0.0.0.0 0.0.0.0 x.x.x.x 1
  route inside 10.0.0.0 255.240.0.0 10.10.13.1 1
  route inside 10.40.1.0 255.255.255.0 10.10.13.1 1
  route inside 10.40.2.0 255.255.255.0 10.10.13.1 1
  route inside 10.40.3.0 255.255.255.0 10.10.13.1 1
  route inside 10.40.4.0 255.255.255.0 10.10.13.1 1
  route inside 10.40.13.0 255.255.255.0 10.10.13.1 1
  route inside 10.40.254.0 255.255.255.0 10.10.13.1 1
  route inside 172.16.0.0 255.255.0.0 10.10.13.1 1
  route inside 192.168.2.0 255.255.255.0 10.10.13.1 1
  dynamic-access-policy-record DfltAccessPolicy
  aaa-server VPN_Auth protocol radius
  aaa-server VPN_Auth (inside) host 10.10.2.20
  timeout 5
  key *****
  no mschapv2-capable
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec security-association lifetime seconds 28800
  crypto ipsec security-association lifetime kilobytes 4608000
  crypto dynamic-map L2L_MAP 50 set reverse-route
  crypto dynamic-map OUTSIDE_dyn_map 20 set transform-set ESP-3DES-SHA
  crypto dynamic-map OUTSIDE_dyn_map 40 set pfs
  crypto dynamic-map OUTSIDE_dyn_map 40 set transform-set ESP-3DES-SHA
  crypto dynamic-map OUTSIDE_dyn_map 60 set pfs
  crypto dynamic-map OUTSIDE_dyn_map 60 set transform-set ESP-3DES-SHA
  crypto dynamic-map OUTSIDE_dyn_map 65535 set transform-set ESP-3DES-SHA
  crypto dynamic-map OUTSIDE_dyn_map 65535 set security-association lifetime seconds 288000
  crypto dynamic-map OUTSIDE_dyn_map 65535 set security-association lifetime kilobytes 4608000
  crypto dynamic-map INSIDE_dyn_map 20 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 20 match address IDP_VPN
  crypto map L2L_MAP 20 set peer x.x.x.x
  crypto map L2L_MAP 20 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 40 match address cp_l2l_map_40
  crypto map L2L_MAP 40 set peer x.x.x.x
  crypto map L2L_MAP 40 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 60 match address nonatacl
  crypto map L2L_MAP 60 set peer x.x.x.x
  crypto map L2L_MAP 60 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 80 match address outside_80_cryptomap
  crypto map L2L_MAP 80 set peer x.x.x.x
  crypto map L2L_MAP 80 set transform-set ESP-3DES-SHA
  crypto map L2L_MAP 65535 ipsec-isakmp dynamic OUTSIDE_dyn_map
  crypto map L2L_MAP interface outside
  crypto map INSIDE_map 65535 ipsec-isakmp dynamic INSIDE_dyn_map
  crypto map INSIDE_map interface inside
  crypto isakmp enable outside
  crypto isakmp enable inside
  crypto isakmp enable dmz
  crypto isakmp enable dmz-vsp
  crypto isakmp policy 20
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  crypto isakmp policy 65535
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  no vpn-addr-assign aaa
  no vpn-addr-assign dhcp
  group-policy ihasavpn2_gp internal
  group-policy ihasavpn2_gp attributes
  dns-server value 10.10.10.52
  vpn-tunnel-protocol IPSec
  default-domain value xxxx.local
  tunnel-group ihasavpn2 type remote-access
  tunnel-group ihasavpn2 general-attributes
  address-pool inshse-vpn-pool2
  authentication-server-group VPN_Auth
  authentication-server-group (inside) VPN_Auth
  default-group-policy ihasavpn2_gp
  tunnel-group ihasavpn2 ipsec-attributes
  pre-shared-key *****
  tunnel-group ihasavpn2 ppp-attributes
  authentication ms-chap-v2

• [svn] 4235: Fix for - Links and type information missing for air.update. event events in @event listings

  Revision: 4235
  Author: [email protected]
  Date: 2008-12-04 13:02:39 -0800 (Thu, 04 Dec 2008)
  Log Message:
  Fix for - Links and type information missing for air.update.event events in @event listings
  Also adding support for multiple @event for a method.
  QE Notes: None
  Doc Notes: None
  Bugs: SDK-18319
  tests: checkintests
  Ticket Links:
  http://bugs.adobe.com/jira/browse/SDK-18319
  Modified Paths:
  flex/sdk/trunk/modules/compiler/src/java/flex2/compiler/asdoc/AsDocUtil.java
  flex/sdk/trunk/modules/compiler/src/java/flex2/compiler/asdoc/ClassTable.java
  flex/sdk/trunk/modules/compiler/src/java/flex2/compiler/asdoc/DocComment.java
  flex/sdk/trunk/modules/compiler/src/java/flex2/compiler/asdoc/TopLevelClassesGenerator.ja va

  Hi All,
  I have sorted out the problem and this is fixed now.
  Regards,
  Ajay Kunde

• [svn:fx-trunk] 8551: Fix for focusSkin and errorSkin to account for bogus bitmap snapshots when objects are 3D transformed .

  Revision: 8551
  Author:   [email protected]
  Date:     2009-07-14 11:31:50 -0700 (Tue, 14 Jul 2009)
  Log Message:
  Fix for focusSkin and errorSkin to account for bogus bitmap snapshots when objects are 3D transformed.
  Bugs: SDK-17766
  Reviewer: Glenn
  QE Notes: None
  Doc Notes: None
  Ticket Links:
      http://bugs.adobe.com/jira/browse/SDK-17766
  Modified Paths:
      flex/sdk/trunk/frameworks/projects/spark/src/spark/skins/spark/ErrorSkin.as
      flex/sdk/trunk/frameworks/projects/spark/src/spark/skins/spark/FocusSkin.as

• I have tried downloading photoshop cs2 and cs4 on a new computer.  I have the disc available for cs2 and the serial number for cs4.  They are both registered in my name.  I need help doing a download.

  I have tried downloading photoshop cs2 and cs4 on a new computer.  I have the disc available for cs2 and the serial number for cs4.  They are both registered in my name.  I need help doing a download.  I was able to get part way through cs4, it showed up in my downloads but never got as far in the process as to ask for serial numbers.  I tried with cs2 and I got an error message that some bit of information was incorrect.  I currently have both downloaded on two other lap tops I own.  One is operational and one is dead.  I cannot access the dead one to remove the program. Thank you in advance for any assistance.

  For CS2 you will need to download a special new version
  CS2 Activation
  You might find CS4 download here
  Prodesign Tools — Photoshop Direct Download Links

• What is SM62 Tcode is used for? and the consequence's for executing it?

  What is SM62 Tcode is used for? and the consequence's for executing it?
  Thank you,
  York

  Hi Les,
  You can goto this URL to understand more about events :
  http://help.sap.com/saphelp_nw2004s/helpdata/en/44/c079239d3756a2e10000000a1553f6/frameset.htm
  http://www.sapfans.com/sapfans/sapfaq/robert.htm
  About my experience working with events:
  In one of my BW Project: we were using AutoSys to do job scheduling (to run InfoPackages).
  To automate the loading process we created events for  each infopackage. Then in that Infopackage we used to select option "Start later in Background" and then select option "After Event". Then specified the event name and parameter.
  Then in the same infopackage we selected button "Subsequent Process" the in that seelct option "Trigger Events" Here you can have options to specify if this event is successful then what next event to trigger and if this event fails what next event to trigger.
  So this way we used to automate data loads.
  This was dont caz there was no process chains concept during that time. So good example of events and event based process are PROCESS CHAINS.
  Hope this helps !!
  Assign points if helps !!
  Regards,
  Naveen Rao Kattela

• My IPhone 5's Imessages just stopped working and I tried restarting and then turning them off and turning them on.  It now says "Waiting for activation" and has said this for 15 minutues.

  My IPhone 5's Imessages just stopped working and I tried restarting and then turning them off and turning them on.  It now says "Waiting for activation" and has said this for 15 minutues.

  At the time of this post, there seems to be a problem with iMessage and Facetime but only some users are affected.
  http://www.apple.com/support/systemstatus/

• I started to download a movie for rent and lost internet connection. Now it tells me to go to my downloads but I can't find them where should I look.

  I started to download a movie for rent and lost internet connection. Now it tells me to go to my downloads but I can't find them where should I look.

  Me too!!! It says check your Downloads, but unable to find Downloads...

• Home sharing is working fine for musics and videos but not for apps. What is wrong?

  Home sharing is working fine for musics and videos but not for apps. What is wrong?

  i had the same issue as everyone here after upgrading to itunes 10.x.  vista could see xp home share.  ipod touch could see xp home share.
  neither could see vista home share.
  after several hours of authorizing de-authorizing, rebooting router etc, i knew it had to be a firewall thingy with vista as xp was working fine
  i went to this article http://support.apple.com/kb/ht2553 and followed the instructions.  itunes was already in my vista exception list.  on a hunch i deleted the itunes exception and followed the steps to add it again and boom it worked!! i could now see my vista machine from my ipod touch immediately.
  something must have screwed up the firewall exception on the upgrade to itunes 10.x
  it worked for me, i hope this helps others

• I have a CC subscription for Lightroom and purchased the upgrade for my standalone Ver. 5 to Ver. 6, but I can't install the standalone upgrade. Anyone have any idea how to do it?

  I have a CC subscription for Lightroom and purchased the upgrade for my standalone Ver. 5 to Ver. 6, but I can't install the standalone upgrade. Anyone have any idea how to do it?

  sjrozas wrote:
  I'm only trying out the subscription. Thanks for being so concerned about my finances.
  Sent from my mobile.
  Your initial post indicated that you had a CC subscription. That seems to imply that you have subscribed. If you hadn't already purchased Lightroom 6 I would suggest that you wait until you decide about CC. You really don't need both because the Lightroom program is precisely the same except for Lightroom 6 without the creative cloud has no Lightroom mobile capabilities. But I was only trying to help.

• I have a second coppy of cs6 design and web premium. Its only for mac and I need it for pc. Can i swap its platform?

  I have a second coppy of cs6 design and web premium. Its only for mac and I need it for pc. Can i swap its platform?

  From Adobe: "If you have an older version of a product, you must order an upgrade instead of a swap." Because you have a CS6 suite your only option may be to subscribe to Creative Cloud in order to get current cross-platform versions of all their applications. Check here for further info: Order product | Platform, language swap

• I play music from my iPhone via Bluetooth on the car radio. The phone also connects over the radio. Can I turn off Bluetooth for phone and leave it on for music?

  I play music from my iPhone via Bluetooth on the car radio. The phone also connects over the radio. Can I turn off Bluetooth for phone and leave it on for music?

  I haven't tried it yet, but I believe this would disconnect Bluetooth for both the phone and music. I have a 2013 Hyundai Sonata if this will help.

• I created an account but haven't yet purchase any products yet! I'm a publisher launching  a magazine so i need something for design and making a layout for magazine! Please help is there a number i can talk to someone ?

  created an account but haven't yet purchase any products yet! I'm a publisher launching  a magazine so i need something for design and making a layout for magazine! Please help is there a number i can talk to someone ?

  Adobe Connect Support phone numbers
  or
  Cloud Plans https://www.adobe.com/products/creativecloud/buying-guide.html

• ITunes Match family account and separate store accounts for kids

  Hi there,
  I've googled a lot and also read through this support forum, but I'm still not sure whether I can use iTunes Match with my setup or not. My setup is like this:
  1) I do have one iTunes account for most of my music ans app puchases
  2) My kids are using my iTunes account but they also have their own accounts for their purchases.
  3) All those accounts are synced with one iTunes instance on a Mac (thus, if kid A purchases a song kid B is also able to sync the song to its iPod)
  All devices are authorized for all accounts, but I want to keep separate accounts for my kids, so I can control their iTunes budget (they only have gift cards, no credit card is associated with their account)
  So, as far as I've understood if I enable iTunes Match on my Mac, _all_ songs will be transferred to iCloud - no matter if I have purchased them or my kids. Fine for my iPhone, since the iTunes Match account and my iTunes Store account will be the same and I'm authorized for my kids songs.
  But what do I have to expect on my kids iPods?
  - Do I have a chance to use the family account for iTunes Match and the kids account for puchases?
  - If so, what happens if a song is bought on the iPod with the kids account - does it get matched on iTunes Match with the family account?
  - What about apps? I guess this no subject here, since I'm able to specify a different apps store account anyway - right?
  Thanks in advance,
  Ralph

  You're not going to be able to keep the same setup if you want to use iTunes Match across all your iDevices. iTunes Match is associated with one iTunes Store account ID, and since iDevices can only be signed into one iTunes store account ID at a time (and can only switch iDs every 90 days), to be able to use iTM all iDevices will have to be signed into the same iTunes Store account ID that was originally used to purchase iTM. There's really no way around this.