Block connections from outside a country?

Similar Messages

• Domain computers can't runt RD Web applications when connected from outside company – Windows server 2012 R2

  Hi Everyone,
  I have a question related to RDweb service.
  I have successfully installed RD web role on windows server 2012 R2.
  All went ok. I also installed a valid third party certificate.
  I can connect from outside to the server and run applications using any devices: Ipad’s, mobiles and laptops.
  The problem is that: Any Computer/Laptop that is joined on the domain can connect to RDWEB from outside the company BUT CAN'T RUN ANY APPLICATIONS. The RD session is taking long time it failes.
  Note that from inside the network is working.
  What it can be?
  Thank you in advance,
  Criss

  Hi,
  The internet connection from where I’m doing the tests is quite good. I think the error with the latency is not relevant because probably the computerRD gateway it doesn’t allow it and that way it fails with this error. For a computer that never been joined
  on the domain is working perfect no delay at all..
  We are using RD Gateway … installed everything on the same machine Windows server 2012 R2.
  When I click RemoteApp I see the remote the prompt of RD gateway, I click ok, then nothing happened for 2-3 min. after this time it brings the error with the delay.. OR “couldn’t connect on the remote computer because an error occurred on the remote
  computer that you want to connect to.”
  Again, the connection is failing ONLY when we try to connect from outside the company and it happened ONLY with the Computers that are joined on the Domain.
  EX: An user (with Office Laptop - joined on domain) can connect to RD Gateway and lunch the RemoteApp’s from inside LAN but when is leaving Home can’t run the Remote App;s. In the meantime he can connect and run RemoteApp’s with his private computer.
  What it can be different between the Office and his home private computer?
  For Outside users we’ve have open only port 443 on firewall. Why need to open UPD 3391?
  I’ve notice that if I take a laptop that is working and join it on the domain it will have the same issue. If will dis-join it will still have the same issue after all.
  Thank You

• Creating OIA connection from outside OIA

  Hi,
  We need to access OIA application using API's.
  Could you please let us know how to create the OIA connection from outside OIA, so that we can run sql queries and call OIA API using Java code.
  Thanks

  Hi,
  We need to access OIA application using API's.
  Could you please let us know how to create the OIA connection from outside OIA, so that we can run sql queries and call OIA API using Java code.
  Thanks

• SSH and media wiki not connecting from outside of my LAN

  I cant seem to connect to ssh or my mediawiki server from outside of my LAN. Ive forwarded all the needed ports and been going over my config all night. I also made sure my router wasn't blocking anything.
  -ssh tells me connection denied
  -when i go to my http server i can list directorys but as soon as i try to load media wiki i get a 502 error
  *these problems do not happen if im connecting from another machine in my local LAN
  This is my sshd_config
  # $OpenBSD: ssh_config,v 1.25 2009/02/17 01:28:32 djm Exp $
  # This is the ssh client system-wide configuration file. See
  # ssh_config(5) for more information. This file provides defaults for
  # users, and the values can be changed in per-user configuration files
  # or on the command line.
  # Configuration data is parsed as follows:
  # 1. command line options
  # 2. user-specific file
  # 3. system-wide file
  # Any configuration value is only changed the first time it is set.
  # Thus, host-specific definitions should be at the beginning of the
  # configuration file, and defaults at the end.
  # Site-wide defaults for some commonly used options. For a comprehensive
  # list of available options, their meanings and defaults, please see the
  # ssh_config(5) man page.
  #Host *
  # ForwardAgent no
  # ForwardX11 yes
  # RhostsRSAAuthentication no
  # RSAAuthentication yes
  # PasswordAuthentication yes
  #HostbasedAuthentication yes
  # GSSAPIAuthentication no
  # GSSAPIDelegateCredentials no
  # BatchMode no
  # CheckHostIP yes
  #AddressFamily any
  # ConnectTimeout 0
  # StrictHostKeyChecking ask
  # IdentityFile ~/.ssh/identity
  # IdentityFile ~/.ssh/id_rsa
  # IdentityFile ~/.ssh/id_dsa
  #Port 22
  Protocol 2
  # Cipher 3des
  # Ciphers aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc
  # MACs hmac-md5,hmac-sha1,[email protected],hmac-ripemd160
  # EscapeChar ~
  # Tunnel yes
  # TunnelDevice any:any
  # PermitLocalCommand no
  # VisualHostKey no
  #RSAAuthentication yes
  #PubkeyAuthentication yes
  #HostbasedAuthentication no
  #PasswordAuthentication no
  #HashKnownHosts yes
  #StrictHostKeyChecking ask
  #LoginGraceTime 120
  #PermitRootLogin no # (put yes here if you want root login)
  hosts.deny
  # /etc/hosts.allow
  sshd: ALL
  mysqld: ALL
  # End of file
  # /etc/hosts.deny
  ALL: ALL: DENY
  # End of file
  hosts.allow
  # /etc/hosts.allow
  sshd: ALL
  mysqld: ALL
  # End of file
  I feel like its a security policy or something im not catching.
  Ive been searching and working to fix this all night to no avail.
  Thanks ahead of time for any help.

  djszapi wrote:
  Hello ahronzombi!
  Do you try it with apache web server ? If yes, is there any related information in the apache.log when someone try to connect from out. What's in your http server related config files, vhosts, etc?
  Ill try that today. i tried something similar with sshd and looked at the verbose output of the program when trying to connect remotely. it was never touched, like no one tried to connect. i feel like its a network security issue since i can connect locally. but ill check these logs as well

• Connecting from outside into VM

  Hello
  I have a server application running that I need to access from external sources.
  I am unable to connect from external clients to the server application. 
  I tried using with public ip and fqdn to no avail
  Any help in the right direction would be greatly appreciated

  Hi,
  So the issue is that you want to connect to your application from outside using the publiuc IP.
  Yes you can do that, but you should know that your application uses one or more ports. And Azure, by default only allow two ports (Rmeote Desktop and Management). You will need to allow the trafic on your application ports. In Azure, we talk about Endpoints.
  So go to your VM>Endpoints
  Click Add
  Create a new Endpoint and choose the public port and the Private port.
  What do Private and Public mean ?
  The Private port mean the port that your application listen to : Example my application listen on port 445, so the traffic need to reach the server on that port
  The Public Port means what port my client will use to send trafic to the application. In a standard configuration, the public port is equal to the private port. But for some reasons (I will detail them if you ask), they can differ. So we create the mapping
  between them. Suppose that i will type port 6789
  What happens then ?
  My client will send the traffic to the Public IP on port 6789, when the traffic reaches Azure, Azure will pass the traffic to the VM but will change the port to 445 (Private Port). My application will work perfectly.
  Regards, Samir Farhat Infrastructure and Virtualization Consultant || Virtualization, Cloud, Azure ? Follow and Ask here https://buildwindows.wordpress.com

• Connect from Outside

  Hi,
  I'm to connect to one 11g DB that run in SUSE. Here is the name of the DB
  SQL> select name from v$database;
  NAME
  ORCL
  SQL>
  select instance_name from v$instance ;
  INSTANCE_NAME
  orcl
  But when I login as root in the SUSE machine I've got this (the reason of that I used ssh, is due to that telnet is not available in SUSE)
  [root@webserver oracle]# ssh -p 1521 orcl
  ssh: Could not resolve hostname orcl: Name or service not known
  Any advice for this message above?

  HuaMin Chen wrote:
  Many thanks Edstevens. Then how can I achieve that I want to be able to connect to it from outside. I know that "ssh/telnet" is one pre-condition for that, isn't it?Not necessarily. As I said before, you can install the oracle client on your desktop/laptop and use the tools from there. No need for ssh at all.
  >
  Another thing is:
  I've just added 1521 port to the router
  http://www.4shared.com/photo/SdPj4_y1/fig100.html
  Do I need to reboot the router? Does anyone know if there's a "reboot" option for this model "TL-WR740N "?Don't know. I'm not a router guy.
  >
  Within the machine, I can ssh to 22 port without any problem:That's because port 22 is the standard port for the ssh communications protocol
  >
  [root@webserver ~]# ssh -p 22 3masters.dyndns.info
  [email protected]'s password:
  Last login: Fri May 13 23:30:13 2011 from 014198214097.ctinets.comFine, you can connect to the server.
  As I said before, don't do this as root. Don't do anything as root that doesn't absolutely require the very powerful privileges of root.
  [root@webserver ~]# exit
  logout
  But I do have problem to ssh to 1521 port below:
  [root@webserver ~]# ssh -p 1521 3masters.dyndns.info
  ssh_exchange_identification: Connection closed by remote host
  One more time: port 1521 is used by the oracle listener to to listen for connection requests to the oracle database. SSH is not making such a request and is NOT the tool for connecting to the database. The listener has no idea what is being asked of it when ssh sends it a packet, so the listener refuses to deal with it. You DO NOT connect to port 1521 with ssh. You connect to port 1521 with an Oracle compliant, OCI aware, program such as sqlplus.
  Any ideas?
  Think of SSH as being unix's equivielent to Windows cmd.exe. You don't connect to the database with cmd, though you may open cmd and then, from there, execute sqlplus.
  What do you imagine yourself doing once you 'connect from the outside'? What commands are you expecting to give? What are you expecting to see?
  Best regards
  Edited by: HuaMin Chen on May 13, 2011 11:51 PM

• No rtmp connection (from outside)

  Hi guys,
  Just a little/hopefully simple Problem. I want to access a shared Object on my server (my Desktop PC). The connection looks like this:
  This all works:
  main_nc.connect("rtmp:/flashapp");
  main_nc.connect("rtmp://localhost/flashapp");
  main_nc.connect("rtmp://my_Internal_IP/flashapp");
  But this is working only from the mashine the server is running on. No access from other computers in the same network seems to be possible.
  I configured my firewall (Router) to forward port 80,1935 to my IP address. The Apache server which comes with FMS  is accessible from the network but not from outside (Internet) --> I guess thats just a Problem of a Apache config file?! But as I've read before the FMS is running without the Apache as well!?
  So, does anyone have an idea how I have to configure the FMS to access it from the Internet?
  Thanks in advance

  I'm having the same issue. It seems to be an issue with passive connections (vs. active connections). We've found active connections work fine, but passive connections fail.

• Blocking application from outside

  Hi,
  We have some apps running on SAP j2ee engine 6.40. All applications accesible from outside. We want to block accessibility of some of applications. Is it possible set it in SAP j2ee engine ?
  best regards,
  Altug Bayram

  hi,
     Restrict those applications to some users by using role assignment.
     then give only those user id's .By this Applications can be restricted
  Regards,
  raju.

• Connecting from outside - Connection refused

  Hey,
  I am trying to connect to my home computer using VNC / FreeNX.
  When trying to connect from inside the home network, everything works OK (using the internal network IP).
  But, when trying to connect to the same computer using its internet IP, I get "connection refused".
  Please note that I use a router for my home network, and I have DMZ enabled to the desktop computer.
  I know that DMZ works OK (checked it with aMule).
  hosts.allow and hosts.deny both contain nothing.
  Tnx
  Fiod

  Check the logs on the box you're trying to connect to - you should be able to determine whether the connection attempt reached it and was rejected for some reason, or didn't reach it at all. In the first case, the log messages should give you some idea on how to fix it; in the second case, the problem would be on your router.

• I have received a mail notifying that my account IP was connected from another EU country tried to enter and that APPLE has blocked it. Is it possible?

  How to detect that it is a wrong mail from apple ? I received a mail notifying that another IP number tried to enter in account and ask me to click on conditions ?

  It's a fake sent by criminals trying to get your account information. Do not respond to the email in any way, just delete it.
  For assistance in determining whether an email that purports to be from Apple is genuine, see:
  http://support.apple.com/kb/HT4933
  Regards.

• Can I buy an Iphone from the Apple Store in the US from outside the country?

  Is it possible to buy the upcoming Iphone 5 from the Apple store in US, but living in a foreign country?
  Would like to know if it is possible, the new Iphone will be shipped in an address in the US.
  Thanks

  To purchase from the US online store requires a verified billing/shipping address in the US.

• Problems connecting from "outside"

  Hi,
  i've a j2ee server successfully running on my machine, and all is ok when i try to connect to "http://localhost:8000/index.html" , but when i try via internet "http://<my IP address>:8000/index.html" i get a connection time out message...
  Someone can help me?
  Thanks in advance
  Luca

  Problem solved, probably posting msgs in this forum is a kind of "therapy" for me...
  The problem was "stupid" due to my carelessness, but if i can help anyone, here the solution: the winXP "built-in" firewall was blocking all the connections to my server.
  Hi,
  i've a j2ee server successfully running on my machine,
  and all is ok when i try to connect to
  "http://localhost:8000/index.html" , but when i try
  via internet "http://<my IP address>:8000/index.html"
  i get a connection time out message...
  Someone can help me?
  Thanks in advance
  Luca

• ITunes blocks connection from remote devices when menus are being used

  when any menu from the top menu bar is active (dropped down so you can see its contents), itunes refuses remote connections (iPod/iPhone) preventing you from starting stopping or otherwise controlling the remote computer. If the remote has not established a connection then it will be unable to, if it has an existing active connection then all commands will be queued until the menu is deactivated and at that time the computer goes crazy
  Expected behavior is such that the remote controlling the device would be able to connect and communicate with the computer regardless of if a menu is dropped down.

  anyone?

• PEAP MSCHAP restriccion to block connections from Iphone

  Good day my name is Ivan
  I have a problem about my wireless network.
  I have a Cisco WLC 5508 in which I have configured two SSID's. An SSID is working on my corporate network users, which uses 802.1X PEAP MSCHAP v2 session to authenticate user and computer in the wireless network.
  Computers are validated as part of the domain objects
  Everything works great but when I use a mobile device like an iPhone, iPad, or other similar, the iPhone asks me to write the domain user account (username and password) and below asks me inherit ACS certificate v5 .4 (Security server). I give a click to accept the certificate and admission to corporative wireless network.
  That is a security hole, since from the IPhone any person who knows the credentials of a corporate user, may enter the corporate network by the SSID set.
  What I can do in the ACS v5.4 for the IPhone not automatically inherit the user certificate. Any restrictions or configuration to support PEAP MSCHP V2 in Cisco ACS?.
  My ACS v5.4 is integrated to Active Directory with Machine authentication.
  My other solution is to use EAP TLS. But I would like to exhaust all MSCHAPV2 PEAP.
  I understand that PEAP user certificate valid only, not machine.
  Can you help with some advice?
  Thank you.

  Hi Scott, thanks for your answer
  Is there any special settings in policies, because I already I have configured two policies, one for authentication and authorization of users and one for computers.
  I have enabled MAR (Machine Access Restriction)
  Maybe I need to add some policy or characteristic of politics
  Maybe some condition especially as
  Compund condition: service type: match framed, nasport IEEE 802.1X wireless type?
  Thank you.

• Crashed connection blocks connections from other pools

  Setup:
  WLS 8.1.0.0 with 2-node cluster
  Sybase: 12.0 and 12.5
  jConnect 5.5 (EBF11248)
  Java HotSpot(TM) Client VM Version 1.4.2-b28
  I have two databases (DB1 & DB2) and two connection pools (P1 & P2), each pointing
  to a corresponding DB. The pools are created at WLS startup.
  Later on, say, DB1 is disconnected (crashed or lost network connectivity). We
  found that all connections, whether to DB1 or DB2, becomes extremely slow (on
  the order of 10+ mins) to obtain. The stack dumps (see following example) indicate
  the crashed one (Thread-36) was stuck at a socket connection and all the others
  (for DB2/P2) were waiting for the lock (0xf26b1958) during DriverManager.getConnection
  (eg. Thread-153).
  While searching at BEA, I noticed a fix CR125320 for 8.1 sp2 that seems to be
  relevant but I'm not sure that's the exact fix. That fix specifically mentions
  JTSConnection.doClose() but our dump doesn't show that.
  Please help.
  Thanks,
  Bill
  "Thread-36" daemon prio=5 tid=0x00da23a8 nid=0x8a runnable [5e97f000..5e9819a0]
  at java.net.PlainSocketImpl.socketConnect(Native Method)
  at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:305)
  - locked <0x82db64c0> (a java.net.PlainSocketImpl)
  at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:171)
  at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:158)
  at java.net.Socket.connect(Socket.java:452)
  at java.net.Socket.connect(Socket.java:402)
  at java.net.Socket.<init>(Socket.java:309)
  at java.net.Socket.<init>(Socket.java:124)
  at com.sybase.jdbc2.timedio.RawDbio.doConnect(RawDbio.java:88)
  at com.sybase.jdbc2.timedio.InStreamMgr.<init>(InStreamMgr.java:94)
  at com.sybase.jdbc2.tds.Tds.login(Tds.java:375)
  at com.sybase.jdbc2.jdbc.SybConnection.tryLogin(SybConnection.java:221)
  at com.sybase.jdbc2.jdbc.SybConnection.regularConnect(SybConnection.java:198)
  at com.sybase.jdbc2.jdbc.SybConnection.<init>(SybConnection.java:177)
  at com.sybase.jdbc2.jdbc.SybConnection.<init>(SybConnection.java:129)
  at com.sybase.jdbc2.jdbc.SybDriver.connect(SybDriver.java:179)
  at weblogic.jdbc.common.internal.ConnectionEnvFactory.makeConnection(ConnectionEnvFactory.java:175)
  at weblogic.jdbc.common.internal.ConnectionEnvFactory.createResource(ConnectionEnvFactory.java:111)
  at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1092)
  at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1029)
  at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:320)
  at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:253)
  at weblogic.jdbc.common.internal.ConnectionPool.reserve(ConnectionPool.java:339)
  at weblogic.jdbc.common.internal.ConnectionPoolManager.reserve(ConnectionPoolManager.java:78)
  at weblogic.jdbc.common.internal.ConnectionPoolManager.reserve(ConnectionPoolManager.java:85)
  at weblogic.jdbc.pool.Driver.connect(Driver.java:144)
  at java.sql.DriverManager.getConnection(DriverManager.java:512)
  - locked <0xf26b1958> (a java.lang.Class)
  at java.sql.DriverManager.getConnection(DriverManager.java:193)
  - locked <0xf26b1958> (a java.lang.Class)
  "Thread-153" daemon prio=5 tid=0x00c46280 nid=0xff waiting for monitor entry [57480000..574819a0]
  at java.sql.DriverManager.getConnection(DriverManager.java:187)
  - waiting to lock <0xf26b1958> (a java.lang.Class)

  For the crashed DB, when one tries to get a connection, it gets stuck on a socket
  connection. This means all subsequent requsts will all take a long time to just
  come out and say it didn't work.
  "Slava Imeshev" <[email protected]> wrote:
  "Bill" <[email protected]> wrote in message news:[email protected]...
  Thanks, Slava. You are right - getConnection is "public static synchronizedConnection
  getConnection(String url)". However, how would one reduce the timeouton the socket
  read on the crashed DB?I'd fix this problem first. In case of failure you serialize recreation
  of the
  connections. Depending on number of concurrent requests the process
  of recovery can be noticeably lengthy. Fix it and re-do the test.
  Regards,
  Slava Imeshev
  "Slava Imeshev" <[email protected]> wrote:
  Don't use DriverManager to obtain connections. DriverManager contains
  a lot class-level synchronization and is not recommended for use in
  J2EE
  environment. The best option is using DataSource obtained via a JNDI
  lookup.
  Or, use
  Driver driver = ((Driver)Class.forName("my.driver")).newInstance();
  Properties props = new Properties();
  Connection conn = driver.connect(url, props);
  Regards,
  Slava Imeshev
  "Bill" <[email protected]> wrote in message news:[email protected]...
  Setup:
  WLS 8.1.0.0 with 2-node cluster
  Sybase: 12.0 and 12.5
  jConnect 5.5 (EBF11248)
  Java HotSpot(TM) Client VM Version 1.4.2-b28
  I have two databases (DB1 & DB2) and two connection pools (P1 &
  P2),
  each pointing
  to a corresponding DB. The pools are created at WLS startup.
  Later on, say, DB1 is disconnected (crashed or lost network connectivity).We
  found that all connections, whether to DB1 or DB2, becomes extremelyslow (on
  the order of 10+ mins) to obtain. The stack dumps (see following
  example)
  indicate
  the crashed one (Thread-36) was stuck at a socket connection and
  all
  the others
  (for DB2/P2) were waiting for the lock (0xf26b1958) during DriverManager.getConnection
  (eg. Thread-153).
  While searching at BEA, I noticed a fix CR125320 for 8.1 sp2 that
  seems
  to be
  relevant but I'm not sure that's the exact fix. That fix specificallymentions
  JTSConnection.doClose() but our dump doesn't show that.
  Please help.
  Thanks,
  Bill
  "Thread-36" daemon prio=5 tid=0x00da23a8 nid=0x8a runnable [5e97f000..5e9819a0]
  at java.net.PlainSocketImpl.socketConnect(Native Method)
  at java.net.PlainSocketImpl.doConnect(PlainSocketImpl.java:305)
  - locked <0x82db64c0> (a java.net.PlainSocketImpl)
  at java.net.PlainSocketImpl.connectToAddress(PlainSocketImpl.java:171)
  at java.net.PlainSocketImpl.connect(PlainSocketImpl.java:158)
  at java.net.Socket.connect(Socket.java:452)
  at java.net.Socket.connect(Socket.java:402)
  at java.net.Socket.<init>(Socket.java:309)
  at java.net.Socket.<init>(Socket.java:124)
  at com.sybase.jdbc2.timedio.RawDbio.doConnect(RawDbio.java:88)
  at com.sybase.jdbc2.timedio.InStreamMgr.<init>(InStreamMgr.java:94)
  at com.sybase.jdbc2.tds.Tds.login(Tds.java:375)
  at com.sybase.jdbc2.jdbc.SybConnection.tryLogin(SybConnection.java:221)
  at com.sybase.jdbc2.jdbc.SybConnection.regularConnect(SybConnection.java:198)
  at com.sybase.jdbc2.jdbc.SybConnection.<init>(SybConnection.java:177)
  at com.sybase.jdbc2.jdbc.SybConnection.<init>(SybConnection.java:129)
  at com.sybase.jdbc2.jdbc.SybDriver.connect(SybDriver.java:179)
  at weblogic.jdbc.common.internal.ConnectionEnvFactory.makeConnection(ConnectionEnvFactory.java:175)
  at weblogic.jdbc.common.internal.ConnectionEnvFactory.createResource(ConnectionEnvFactory.java:111)
  at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1092)
  at weblogic.common.resourcepool.ResourcePoolImpl.makeResources(ResourcePoolImpl.java:1029)
  at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:320)
  at weblogic.common.resourcepool.ResourcePoolImpl.reserveResource(ResourcePoolImpl.java:253)
  at weblogic.jdbc.common.internal.ConnectionPool.reserve(ConnectionPool.java:339)
  at weblogic.jdbc.common.internal.ConnectionPoolManager.reserve(ConnectionPoolManager.java:78)
  at weblogic.jdbc.common.internal.ConnectionPoolManager.reserve(ConnectionPoolManager.java:85)
  at weblogic.jdbc.pool.Driver.connect(Driver.java:144)
  at java.sql.DriverManager.getConnection(DriverManager.java:512)
  - locked <0xf26b1958> (a java.lang.Class)
  at java.sql.DriverManager.getConnection(DriverManager.java:193)
  - locked <0xf26b1958> (a java.lang.Class)
  "Thread-153" daemon prio=5 tid=0x00c46280 nid=0xff waiting for monitorentry [57480000..574819a0]
  at java.sql.DriverManager.getConnection(DriverManager.java:187)
  - waiting to lock <0xf26b1958> (a java.lang.Class)