C1130 telnet trouble

Similar Messages

• Open a Telnet link with Firefox and bad things can happen

  I happened to come across a site with a number of links, and the one I chose happened to be a telnet link. Here was my experience, and I had to put myself into the shoes of the average user who knows nothing about programming.
  The link that caused Firefox trouble when Firefox was chosen to run it is this:
  telnet://dxc.nc7j.com:7300
  Click on the link and Firefox tells you that you need to select a program to open the Internet Shortcut Shell extension DLL. I have never heard of this, and I have no idea what to do here.
  Choose to open with Firefox.
  Now, if some error-handling routine had caught that Firefox, which is not capable of doing Telnet, was selected by the unknowing person behind the keyboard to go ahead and do Telnet, the error-handler would advise the user to the fact that this protocol is not supported and kill the process that is going to run out-of-control otherwise. Or cause to open the program that will run the Telnet session.
  Better yet, I clicked on the Telnet link and offer a better description of the choices.
  After all of what happened below, I installed Iron, a Chromium-based browser, and it opened a Telnet session window right away.
  So what did happen, I clicked on Firefox to do this chore and was greeted by a never-ending opening of empty tabs and upon closing the browser, it relaunched and was off to the races again. And again.
  OK so this ain't getting us anywhere.
  Firefox opens once again, this time hit the big red X to close it, and let the prompt to close however many tabs anyway prompt sitting there.
  I chose to run CCleaner, and I set that to blow away Firefox Cache and session. Run CCleaner, and tell it to force Firefox closed when it prompts that Firefox is open.
  If by chance Firefox launches again, timing was perfect that the file that was causing Firefox to open was not yet cleaned, so run the CCleaner again a few times. When Firefox is no longer opening, we are back to the world of sanity.
  Now, I could go in and reset the Tools Options Applications tab and look for Telnet, and replace the use of Firefox with "ask me."
  Fortunately, I know a little more than some about the computer, and I knew I had to use a utility to clear out the Firefox cache.
  You have a description of the issue in your knowledgebase, but it has Firefox opening endless empty tabs, but Firefox was closed and the situation is under control.. Restart Firefox manually, start a new session and then enter the Tools menu and fix the setting.
  There is a knowledge base article on this very topic, but it has the user close Firefox and then all is back to normal. One can open Firefox and get into the menu to fix the issue. There was a mention in there about malware as a possible cause of the constant reopening I experienced, but Malwarebytes scans were clean.
  "Well, this is embarrassing!" I have seen that nice touch to Firefox for many years, and may I compliment those who thought of that one.

  I agree, it can become a vicious circle.
  The default setting to try to restore all the windows and tabs automatically after a crash isn't the best setting. Personally I do change that so I get the "this is embarrassing" screen. So one option would be to file a bug report suggesting this be changed going forward.
  Another potential follow-up action would be to update the knowledge base article to better address how to recover in these situations. For example, a user could start up Firefox without restoring the previous session by:
  * Launching Firefox with a specific URL
  ** Using a desktop shortcut
  ** Using a link in an external application
  ** On the command line, typing firefox.exe "about:blank"
  ** (Possibly more ways to do it)
  * Renaming the sessionstore.js file in the profile folder
  ** On the plus side, preserves the option to restore that session later
  ** On the minus side, difficult for many users to find folders hidden by the OS, and the .js extension may be hidden by the OS
  Since the KB is a wiki, you can go in and make edits and improvements. The syntax is a bit funky, but not much worse than this forum.

• Under the tools/options/applications tab Telnet is not listed. I have 2 computers running the same OS and on 1 telnet is listed under the applications tab and on the other it is not. How can I add Telnet to the applications tab.

  This is an issue in both the 3.x and the 4.x versions. On the computer that has telnet listed I have it setup so that when I enter telnet:x.x.x.x it opens a putty session. I have created a bunch of bookmarks using the telnet:x.x.x.x format and exported them to my peers but some have telnet option and some do not. Telnet is enabled on there PC's

  Yes you can. Make sure that domains configured to use different multicast address. WLS uses multicast for communications between nodes in domain.
            although your configuration will work, you could have troubles if you going to execute inter-domain calls between domains/servers with the same names.

• Problem with Telnet and Escript/Fscript

  I have a lot a problems using Telnet and Escript/Fscript with Forte
  3.0.G.2.
  Does anyone has the same trouble or any experience about that.
  Thanks for your answers.
  To unsubscribe, email '[email protected]' with
  'unsubscribe forte-users' as the body of the message.
  Searchable thread archive <URL:http://pinehurst.sageit.com/listarchive/>

  I use EScript and FScript through telnet sessions all the time, and I
  don't have any problems. Can you give more information on the problems
  you are experiencing? Are there any error messages? Does it hang? Any
  other information about the platforms and process you are using?
  For example, can you even get into FScript/EScript? If not, your
  environment variables for the user may not be set (you have to have set,
  at least, FORTE_ROOT and FORTE_NS_ADDRESS, or you have to use explicit
  paths and the -fns flag).
  Also, how are you invoking telnet (Unix-to-Unix, Windows-to-Unix,
  etc.)? Which telnet client are you using?
  More information would be really helpful in diagnosing your problem.
  Regards,
  -Katie
  Pascale Voisin-Bouton-FX01314 wrote:
  >
  I have a lot a problems using Telnet and Escript/Fscript with Forte
  3.0.G.2.
  Does anyone has the same trouble or any experience about that.
  Thanks for your answers.
  To unsubscribe, email '[email protected]' with
  'unsubscribe forte-users' as the body of the message.
  Searchable thread archive <URL:http://pinehurst.sageit.com/listarchive/>--
  Katie Carty
  Senior Consultant
  Forte Software, Inc.
  http://www.forte.com
  4801 Woodway Drive, Suite 300E
  Houston, Texas 77056
  vmail: (510) 986-3802
  email: [email protected]
  To unsubscribe, email '[email protected]' with
  'unsubscribe forte-users' as the body of the message.
  Searchable thread archive <URL:http://pinehurst.sageit.com/listarchive/>

• AP Telnet & http problem

  i have cisco AP 1131AG-E-K9. i am getting a problem in it, that i cant telnet the device from my pc and when i try to open in http its also not responding.
  axcept that i can update the ios of device and can give the ip to interfaces and also configured the telnet but still there is no telnet and http working.
  this erroe comes when i telnet the device.
  could not open connection to the host, on port 23: connection failed.

  i have the console connection with AP and this is the show run and show version of the AP.
  ap#show run
  Building configuration...
  Current configuration : 1414 bytes
  version 12.3
  no service pad
  service timestamps debug datetime msec
  service timestamps log datetime msec
  service password-encryption
  hostname ap
  enable secret xxx
  ip subnet-zero
  no aaa new-model
  power inline negotiation prestandard source
  username Cisco password xxx
  bridge irb
  interface Dot11Radio0
  no ip address
  no ip route-cache
  shutdown
  speed
  station-role root
  bridge-group 1
  bridge-group 1 subscriber-loop-control
  bridge-group 1 block-unknown-source
  no bridge-group 1 source-learning
  no bridge-group 1 unicast-flooding
  bridge-group 1 spanning-disabled
  interface Dot11Radio1
  no ip address
  no ip route-cache
  shutdown
  speed
  station-role root
  bridge-group 1
  bridge-group 1 subscriber-loop-control
  bridge-group 1 block-unknown-source
  no bridge-group 1 source-learning
  no bridge-group 1 unicast-flooding
  bridge-group 1 spanning-disabled
  interface FastEthernet0
  no ip address
  no ip route-cache
  duplex auto
  speed auto
  bridge-group 1
  no bridge-group 1 source-learning
  bridge-group 1 spanning-disabled
  hold-queue 160 in
  interface BVI1
  ip address 192.168.1.1 255.255.255.0
  no ip route-cache
  ip http server
  no ip http secure-server
  ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
  control-plane
  bridge 1 route ip
  line con 0
  line vty 0 4
  password xxx
  login
  end
  ap#show sh tac ecq
  ap#sh tech-support
  ------------------ show version ------------------
  Cisco IOS Software, C1130 Software (C1130-K9W7-M), Version 12.3(8)JA2, RELEASE SOFTWARE (fc1)
  Technical Support: http://www.cisco.com/techsupport
  Copyright (c) 1986-2006 by Cisco Systems, Inc.
  Compiled Tue 30-May-06 18:05 by pwade
  ROM: Bootstrap program is C1130 boot loader
  BOOTLDR: C1130 Boot Loader (C1130-BOOT-M) Version 12.3(7)JA1, RELEASE SOFTWARE (fc1)
  ap uptime is 2 minutes
  System returned to ROM by power-on
  System image file is "flash:/c1130-k9w7-mx.123-8.JA2"
  This product contains cryptographic features and is subject to United
  States and local country laws governing import, export, transfer and
  use. Delivery of Cisco cryptographic products does not imply
  third-party authority to import, export, distribute or use encryption.
  Importers, exporters, distributors and users are responsible for
  compliance with U.S. and local country laws. By using this product you
  agree to comply with applicable laws and regulations. If you are unable
  to comply with U.S. and local laws, return this product immediately.
  A summary of U.S. laws governing Cisco cryptographic products may be found at:
  http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
  If you require further assistance please contact us by sending email to
  [email protected].
  cisco AIR-AP1131AG-A-K9 (PowerPCElvis) processor (revision A0) with 24566K/8192K bytes of memory.
  Processor board ID FOC09501JTE
  PowerPCElvis CPU at 262Mhz, revision number 0x0950
  Last reset from power-on
  1 FastEthernet interface
  2 802.11 Radio(s)
  32K bytes of flash-simulated non-volatile configuration memory.
  Base ethernet MAC Address: 00:16:46:F2:B3:A4
  Part Number : 73-8962-09
  PCA Assembly Number : 800-24818-08
  PCA Revision Number : A0
  PCB Serial Number : FOC09501JTE
  Top Assembly Part Number : 800-25544-06
  Top Assembly Serial Number : FHK1001C02E
  Top Revision Number : A0
  Product/Model Number : AIR-AP1131AG-A-K9
  Configuration register is 0xF

• Trouble with Kerberos and SSH

  I'm working in a test environment to configure Solaris 10 hosts to authenticate against an Active Directory environment using LDAP and Kerberos. I have all of the hard parts done - I can login locally, ssh, telnet, ftp, etc to the Solaris 10 device using a username/password within the Active Directory.
  I am having trouble, however, getting SSH to forward Kerberos tickets for passwordless authentication. I can login locally to a Solaris box, run a klist to verify that I have a Kerberos ticket, and the ssh to another Solaris 10/Kerberos box, but I am still prompted for my password. Below is a snippet of SSH debug traffic:
  debug1: GSS-API error while calling GSS_Init_sec_context(): An invalid name was supplied
  service not available
  debug1: Skipping GSS-API mechanism kerberos_v5 (An invalid name was supplied
  service not available
  No amount of googling has been able to help me thus far. Perhaps you can.

  Apparantly my initial problem was related to hostname resolution; I initially was accessing everything by IP address because it was easier than setting up a DNS server in my testing environment. I have resolved those issues within my testing environment, but I still can't seem to get SSH to pass the Kerberos ticket along, or maybe SSHD isn't accepting it. This is what I see now, after getting a Kerberos ticket with kinit and attempting to ssh to another host:
  debug1: Next authentication method: gssapi-with-mic
  debug1: ssh_gssapi_init_ctx(<xxxxxxxxxxxxxxxxxxxx>)
  debug3: ssh_gssapi_import_name: snprintf() returned 41, expected 42
  debug2: we sent a gssapi-with-mic packet, wait for reply
  But it moves on to the next method, never receiving a reply. What's up?

• Trouble with VRF traffic on ASR9000

  Hi We have a trouble to established  neighbord and pass tables from Cisco 7600 to ASR9000 when configure a vrf between both devices.
  the configuration on cisco 7600 is:
  router bgp 2006
  bgp router-id 172.16.110.97
  bgp log-neighbor-changes
  bgp graceful-restart restart-time 120
  bgp graceful-restart stalepath-time 360
  bgp graceful-restart
  neighbor 172.16.14.6 remote-as 64512
  address-family ipv4
    no synchronization
    redistribute connected
    neighbor 172.16.14.6 activate
    no auto-summary
  exit-address-family
  the configuration on Cisco ASR9000 (A) is:
  hostname ED_MEX_1
  logging console informational
  telnet vrf GW ipv4 server max-servers 15
  telnet vrf default ipv4 server max-servers 5
  cdp
  vrf GW
  description "CONEXION-GW"
  address-family ipv4 unicast
    import route-target
     64512:2006
    export route-target
     64512:2006
  vrf CAMPUS
  address-family ipv4 unicast
    import route-target
     64512:64513
    export route-target
     64512:64513
  interface GigabitEthernet0/2/0/19
  vrf GW
  ipv4 address 172.16.14.6 255.255.255.252
  interface Bundle-Ether202
  vrf CAMPUS
  ipv4 address 172.16.19.6 255.255.255.252
  router bgp 64512
  address-family vpnv4 unicast
  neighbor 172.16.14.5
    remote-as 2006
    address-family vpnv4 unicast
  neighbor 172.16.19.5
    remote-as 64513
    address-family vpnv4 unicast
  vrf GW
    rd 64512:2006
    address-family ipv4 unicast
     redistribute connected
     redistribute static
     route-policy pass-all in
     route-policy pass-all out
  vrf CAMPUS
    rd 64512:64513
    address-family ipv4 unicast
     redistribute connected
     redistribute static
     route-policy pass-all in
     route-policy pass-all out
  when we try to look the routing tables on ASR9000 only have the local connected network L and C on table
  RP/0/RSP1/CPU0:ED_MEX_1#sho route vrf all
  Wed May 15 11:07:29.268 UTC
  VRF: GW
  Codes: C - connected, S - static, R - RIP, B - BGP
         D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
         N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
         E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
         i - ISIS, L1 - IS-IS level-1, L2 - IS-IS level-2
         ia - IS-IS inter area, su - IS-IS summary null, * - candidate default
         U - per-user static route, o - ODR, L - local, G  - DAGR
         A - access/subscriber, - FRR Backup path
  Gateway of last resort is not set
  C    172.16.14.4/30 is directly connected, 01:25:10, GigabitEthernet0/2/0/19
  L    172.16.14.6/32 is directly connected, 01:25:10, GigabitEthernet0/2/0/19
  VRF: CAMPUS
  Codes: C - connected, S - static, R - RIP, B - BGP
         D - EIGRP, EX - EIGRP external, O - OSPF, IA - OSPF inter area
         N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2
         E1 - OSPF external type 1, E2 - OSPF external type 2, E - EGP
         i - ISIS, L1 - IS-IS level-1, L2 - IS-IS level-2
         ia - IS-IS inter area, su - IS-IS summary null, * - candidate default
         U - per-user static route, o - ODR, L - local, G  - DAGR
         A - access/subscriber, - FRR Backup path
  Gateway of last resort is not set
  C    172.16.19.4/30 is directly connected, 00:22:05, Bundle-Ether202
  L    172.16.19.6/32 is directly connected, 00:22:05, Bundle-Ether202
  the diagram is this:
  thanks for your comments
  Best Regards

  Hi
  thanks for you cooperation the final configuration on devices that working is this:
  vrf GAT
  address-family ipv4 unicast
    import route-policy pass-all
    import route-target
     64512:2006
    export route-policy pass-all
    export route-target
     64512:2006
  interface GigabitEthernet0/2/0/19
  vrf GAT
  ipv4 address 172.16.14.6 255.255.255.252
  route-policy pass-all
    pass
  end-policy
  router bgp 64512
  bgp router-id 172.16.161.1
  address-family ipv4 unicast
  address-family vpnv4 unicast
  vrf GAT
    rd 64512:2006
    address-family ipv4 unicast
     redistribute connected
     redistribute static
    neighbor 172.16.14.5
     remote-as 2006
     address-family ipv4 unicast
      route-policy pass-all in
      route-policy pass-all out
  Regards

• Trouble with Ip redirect

  I am having a bit of trouble with ip redirects on an airnet 1042N
  Here is what happens, I turn off ip redirect, everything works fine, turn it on, everything works fine.  The problem is when I apply an ACL to it.
  If I apply an ACL, I can ping web sites, but I can not browse websites or telnet to port 80.  This is simply a test configuration before I move it into production.  10.0.0.0/22 is our subnet.  I want the guest ssid to allow access to the internet, but not the the internal network (with the exception of the gateway (10.0.1.254) , dhcp, and dns servers (same server 10.0.1.221)
  Running config
  Current configuration : 2475 bytes
  version 12.4
  no service pad
  service timestamps debug datetime msec
  service timestamps log datetime msec
  service password-encryption
  hostname testap
  logging rate-limit console 9
  enable secret 5 $1$PBvp$dH8HqNdXBTP7eCzYanRRo.
  no aaa new-model
  dot11 syslog
  dot11 ssid main
     authentication open
     authentication key-management wpa version 2
     wpa-psk ascii 7 1234567890abcdefghi
     ip redirection host 10.0.1.254 access-group 102 in
  dot11 ssid secondary
     authentication open
     authentication key-management wpa version 2
     guest-mode
     wpa-psk ascii 7 075E731F1A5C4F524F4B5B0D06292F212E343D2B
     ip redirection host 10.0.1.254 access-group 103 in
  username Cisco password 7 01300F175804
  bridge irb
  interface Dot11Radio0
  no ip address
  no ip route-cache
  encryption mode ciphers aes-ccm
  ssid main
  ssid secondary
  antenna gain 0
  station-role root
  bridge-group 1
  bridge-group 1 subscriber-loop-control
  bridge-group 1 block-unknown-source
  no bridge-group 1 source-learning
  no bridge-group 1 unicast-flooding
  bridge-group 1 spanning-disabled
  interface Dot11Radio1
  no ip address
  no ip route-cache
  shutdown
  antenna gain 0
  dfs band 3 block
  channel dfs
  station-role root
  bridge-group 1
  bridge-group 1 subscriber-loop-control
  bridge-group 1 block-unknown-source
  no bridge-group 1 source-learning
  no bridge-group 1 unicast-flooding
  bridge-group 1 spanning-disabled
  interface GigabitEthernet0
  ip address 10.0.2.150 255.255.252.0
  no ip route-cache
  duplex auto
  speed auto
  no keepalive
  bridge-group 1
  no bridge-group 1 source-learning
  bridge-group 1 spanning-disabled
  interface BVI1
  ip address 10.0.2.150 255.255.252.0
  no ip route-cache
  ip http server
  no ip http secure-server
  ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
  access-list 101 permit ip any host 10.0.1.254
  access-list 101 permit ip any host 10.0.1.221
  access-list 101 deny   ip 10.0.0.0 0.0.3.255 10.0.0.0 0.0.3.255
  access-list 101 permit ip any any
  access-list 102 permit ip any 10.0.0.0 0.0.3.255
  access-list 103 permit 80 any any
  access-list 103 permit ip any host 10.0.1.254
  access-list 103 permit ip any host 10.0.1.221
  access-list 103 deny   ip 10.0.0.0 0.0.3.255 10.0.0.0 0.0.3.255
  access-list 103 permit ip any any
  access-list 120 permit ip host 10.0.3.41 any
  access-list 120 permit ip any host 10.0.3.41
  bridge 1 route ip
  line con 0
  logging synchronous
  line vty 0 4
  login local
  end

  James:
  Welcome to the forum.
  To enable both encrypted and unencrypted traffic on same radio you need to use VLANs. If you are using only the native VLAN then you are abide by only one encryption method for all SSIDs.
  Check this for multiple SSIDs and multiple VLANs:
  https://supportforums.cisco.com/docs/DOC-14496
  For your network above, you should review the ACL and make sure it allows the needed traffic. Make sure both ports 80 and 23 are opened. Make sure to choose correct ports (udp, tcp) on the ACL.
  You can also try configuring ip redirect from GUI. give a look to the ip redirect doc: http://tiny.cc/gdsekw.
  HTH
  Amjad
  Rating useful replies is more useful than saying "Thank you"

• LAN DNS and telnet newbi help

  hi
  i am following the steps at [http://blog.ronnyegner-consulting.de/2009/10/15/configuring-a-small-dns-server-for-scan/|http://blog.ronnyegner-consulting.de/2009/10/15/configuring-a-small-dns-server-for-scan/]
  /etc/resolv.conf
  search sayantan.chakraborty
  nameserver 192.168.1.2
  nameserver 192.168.1.3
  nameserver 192.168.1.1dig
  [root@rac-1 ~]# dig @192.168.1.3 rac-1.sayantan.chakraborty
  ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5 <<>> @192.168.1.3 rac-1.sayantan.chakraborty
  ; (1 server found)
  ;; global options:  printcmd
  ;; Got answer:
  ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25058
  ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
  ;; QUESTION SECTION:
  ;rac-1.sayantan.chakraborty.    IN      A
  ;; AUTHORITY SECTION:
  .                       5151    IN      SOA     A.ROOT-SERVERS.NET. NSTLD.VERISIGN-GRS.COM. 2009122301 1800 900 604800 86400
  ;; Query time: 26 msec
  ;; SERVER: 192.168.1.3#53(192.168.1.3)
  ;; WHEN: Thu Dec 24 12:34:39 2009
  ;; MSG SIZE  rcvd: 119
  [root@rac-1 ~]# dig @192.168.1.3 rac-scan.sayantan.chakraborty
  ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5 <<>> @192.168.1.3 rac-scan.sayantan.chakraborty
  ; (1 server found)
  ;; global options:  printcmd
  ;; Got answer:
  ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 41264
  ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
  ;; QUESTION SECTION:
  ;rac-scan.sayantan.chakraborty. IN      A
  ;; Query time: 25 msec
  ;; SERVER: 192.168.1.3#53(192.168.1.3)
  ;; WHEN: Thu Dec 24 12:35:26 2009
  ;; MSG SIZE  rcvd: 47
  [root@rac-1 ~]# dig @192.168.1.3 rac-scan.sayantan.chakraborty
  ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5 <<>> @192.168.1.3 rac-scan.sayantan.chakraborty
  ; (1 server found)
  ;; global options:  printcmd
  ;; Got answer:
  ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 37327
  ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
  ;; QUESTION SECTION:
  ;rac-scan.sayantan.chakraborty. IN      A
  ;; Query time: 9 msec
  ;; SERVER: 192.168.1.3#53(192.168.1.3)
  ;; WHEN: Thu Dec 24 12:35:58 2009
  ;; MSG SIZE  rcvd: 47
  [root@rac-1 ~]# dig @192.168.1.2 rac-2.sayantan.chakraborty
  ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5 <<>> @192.168.1.2 rac-2.sayantan.chakraborty
  ; (1 server found)
  ;; global options:  printcmd
  ;; Got answer:
  ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58273
  ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
  ;; QUESTION SECTION:
  ;rac-2.sayantan.chakraborty.    IN      A
  ;; AUTHORITY SECTION:
  .                       9612    IN      SOA     a.root-servers.net. nstld.verisign-grs.com. 2009122301 1800 900 604800 86400
  ;; Query time: 0 msec
  ;; SERVER: 192.168.1.2#53(192.168.1.2)
  ;; WHEN: Thu Dec 24 12:36:29 2009
  ;; MSG SIZE  rcvd: 119
  [root@rac-1 ~]# dig @192.168.1.2 rac-1.sayantan.chakraborty
  ; <<>> DiG 9.3.6-P1-RedHat-9.3.6-4.P1.el5 <<>> @192.168.1.2 rac-1.sayantan.chakraborty
  ; (1 server found)
  ;; global options:  printcmd
  ;; Got answer:
  ;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22905
  ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
  ;; QUESTION SECTION:
  ;rac-1.sayantan.chakraborty.    IN      A
  ;; AUTHORITY SECTION:
  .                       9591    IN      SOA     A.ROOT-SERVERS.NET. NSTLD.VERISIGN-GRS.COM. 2009122301 1800 900 604800 86400
  ;; Query time: 0 msec
  ;; SERVER: 192.168.1.2#53(192.168.1.2)
  ;; WHEN: Thu Dec 24 12:37:09 2009
  ;; MSG SIZE  rcvd: 119packages
  [root@rac-1 ~]# rpm -qa|grep bind
  bind-9.3.6-4.P1.el5
  system-config-bind-4.0.3-4.0.1.el5
  bind-utils-9.3.6-4.P1.el5
  ypbind-1.19-12.el5
  bind-chroot-9.3.6-4.P1.el5
  bind-libs-9.3.6-4.P1.el5
  kdebindings-3.5.4-6.el5
  [root@rac-1 ~]# named status
  [root@rac-1 ~]# service named status
  number of zones: 6
  debug level: 0
  xfers running: 0
  xfers deferred: 0
  soa queries in progress: 0
  query logging is OFF
  recursive clients: 0/1000
  tcp clients: 0/100
  server is up and running
  named (pid  16550) is running...
  [root@rac-1 ~]# 0)am i on wrong path?
  1)what i am missing to make my dns and telnet to talk?
  2) /var/named/named_querylog this file is empty ---what to do then for trouble shooting ?
  regards

  /etc/named.conf
  options {
  # The directory statement defines the name server's working directory
  directory "/var/named";
  # Write dump and statistics file to the log subdirectory.  The
  # pathenames are relative to the chroot jail.
  dump-file "/var/log/named_dump.db";
  statistics-file "/var/log/named.stats";
  # The forwarders record contains a list of servers to which queries
  # should be forwarded.  Enable this line and modify the IP address to
  # your provider's name server.  Up to three servers may be listed.
  #forwarders { 192.0.2.1; 192.0.2.2; };
  # Enable the next entry to prefer usage of the name server declared in
  # the forwarders section.
  #forward first;
  # The listen-on record contains a list of local network interfaces to
  # listen on.  Optionally the port can be specified.  Default is to
  # listen on all interfaces found on your system.  The default port is
  # 53.
  #listen-on port 53 { 127.0.0.1; };
  # The listen-on-v6 record enables or disables listening on IPv6
  # interfaces.  Allowed values are 'any' and 'none' or a list of
  # addresses.
  listen-on-v6 { none; };
  # The next three statements may be needed if a firewall stands between
  # the local server and the internet.
  #query-source address * port 53;
  #transfer-source * port 53;
  #notify-source * port 53;
  # The allow-query record contains a list of networks or IP addresses
  # to accept and deny queries from. The default is to allow queries
  # from all hosts.
  #allow-query { 127.0.0.1; };
  # If notify notify ">is set to yes (default), notify messages are sent to other
  # name servers when the the zone data is changed.  Instead of setting
  # a global 'notify' statement in the 'options' section, a separate
  # 'notify' can be added to each zone definition.
  notify no;
  logging {
  # Log queries to a file limited to a size of 100 MB.
  channel query_logging {
  file "/var/named/named_querylog"
  versions 3 size 100M;
  print-time yes;                 // timestamp log entries
  category queries {
  query_logging;
  # Or log this kind alternatively to syslog.
  channel syslog_queries {
  syslog user;
  severity info;
  category queries { syslog_queries; };
  # Log general name server errors to syslog.
  channel syslog_errors {
  syslog user;
  severity error;
  category default { syslog_errors;  };
  # Don't log lame server messages.
  category lame-servers { null; };
  acl acl_transf { 192.168.1.3; };
  # The following zone definitions don't need any modification.  The first one
  # is the definition of the root name servers.  The second one defines
  # localhost while the third defines the reverse lookup for localhost.
  #zone "." in {
  # type hint;
  # file "root.hint";
  zone "localhost" in {
  type master;
  file "localhost.zone";
  zone "0.0.127.in-addr.arpa" in {
  type master;
  file "127.0.0.zone";
  zone "sayantan.chakraborty" in {
  type master;
  file "db.sayantan.chakraborty";
  allow-transfer { acl_transf; };
  };

• Can only authenticate with telnet on ASA

  Hello,
  On an ASA5520 v7.2 I can only seem to authenticate to the console when using telnet and not ssh. I can connect using both methods, but just have trouble authenticating with ssh. Here are relevent lines related to the issue:
  username user1 password ***** encrypted privilege 15
  username user2 password ***** encrypted privilege 15
  aaa authentication telnet console LOCAL
  aaa authentication ssh console LOCAL
  telnet <my subnet> 255.255.255.0 Inside
  ssh <my subnet> 255.255.255.0 Inside
  Any suggestions are much appreciated!
  Thank you,

  Authentication is performed not for application (telnet/ssh), but for service (shell). You can restrict access to desired port, but you can't authenticate only selected ports.

• RPC over HTTP trouble Exchange 2013/2007 coexistence, 2013 RPCProxy cannot ping GC.

  I currently have an Exchange 2013/2007 coexistence scenario which gives me trouble with the RPC over HTTP part with users with a 2007 mailbox. the MS RCA website performs 2 tests with the MAPI address book endpoints, once against a 2007 mailbox server and
  once a against a GC/DC, the last one fails. The logs are from our test domain, but the exact same happens in the production domain. running CU8 (recently upgraded, but problem was exactly the same with CU7)
  Testing the MAPI Address Book endpoint on the Exchange server.
  The address book endpoint was tested successfully.
  Additional Details
  Elapsed Time: 7872 ms.
  Test Steps
  Attempting to ping the MAPI Address Book endpoint with identity: exmb11.domain.test:6004.
  The endpoint was pinged successfully.
  Additional Details
  The endpoint responded in 156 ms.
  Elapsed Time: 4153 ms.
  Testing the MAPI Address Book endpoint on the Exchange server.
  An error occurred while testing the address book endpoint.
  Additional Details
  Elapsed Time: 3079 ms.
  Test Steps
  Attempting to ping the MAPI Address Book endpoint with identity: tdc01421.domain.test:6004.
  The attempt to ping the endpoint failed.
   <label for="testSelectWizard_ctl12_ctl06_ctl02_ctl09_ctl00_tmmArrow">Tell
  me more about this issue and how to resolve it</label>
  Additional Details
  The RPC_S_SERVER_UNAVAILABLE error (0x6ba) was thrown by the RPC Runtime process.
  Elapsed Time: 3079 ms.
  texmb11 = ex2007 mailbox
  texfr11 = ex2007 CAS
  tdc01421 = DC/GC
  texch31 = 2013 multirole
  other symptoms :
  Browser test
  https://texch31.domain.test/rpc/rpcproxy.dll?texmb11:6004
  --> 503 (which is correct)
  https://texch31.domain.test/rpc/rpcproxy.dll?tdc01421:6004
  --> 404.0 Not Found
  RPCPing
  rpcping -t ncacn_http -s texmb11 -o RpcProxy=texch31.domain.test -P "user,dom,*" -I "user,dom,*" -H 2 -u 9 -a connect -F 3 -v 3 -e 6004
  Success
  rpcping -t ncacn_http -s tdc01421 -o RpcProxy=texch31.domain.test -P "user,dom,*" -I "user,dom,*" -H 2 -u 9 -a connect -F 3 -v 3 -e 6004
  Fails!
  so the Ex2013 RPCProxy doesn't proxy to the DC/GC, but the RPCProxy to an ex2007 mailbox server works fine, so the authentication methods configured are correct i'd say..
  the same tests using the ex2007CAS server as RPC proxy all succeed!:
  MS RCA is all green
  https://texfr11.domain.test/rpc/rpcproxy.dll?texmb11:6004 
  --> 503
  https://texfr11.domain.test/rpc/rpcproxy.dll?tdc01421:6004 
  --> 503 
  rpcping -t ncacn_http -s texmb11 -o RpcProxy=texfr11.domain.test -P "user,dom,*" -I "user,dom,*" -H 2 -u 9 -a connect -F 3 -v 3 -e 6004
  Success
  rpcping -t ncacn_http -s tdc01421 -o RpcProxy=texfr11.domain.test -P "user,dom,*" -I "user,dom,*" -H 2 -u 9 -a connect -F 3 -v 3 -e 6004
  Success!!
  Logs
  all tries against the 2013 CAS server generate '404' log entries in several logs int the Logging directory, the most explicit being the one in Program Files\Microsoft\Exchange Server\V15\Logging\HttpProxy\RpcHttp : HttpProxy_xxxxxx.LOG
  2015-04-30T19:58:00.153Z,895cdf07-f2eb-4beb-b787-da02ba11b0c2,15,0,1076,0,,RpcHttp,webmail.domain.test,/rpc/rpcproxy.dll,,Basic,true,DOM\user,,,MSRPC,10.10.142.132,TEXCH31,404,,MailboxGuidWithDomainNotFound,RPC_IN_DATA,,,,,,,,,4,,,,1,,,0,,0,,0,0,,0,2,0,,,,,,,,,1,1,0,,1,,2,2,,?TDC01422.domain.test:6004,,BeginRequest=2015-04-30T19:58:00.153Z;CorrelationID=<empty>;ProxyState-Run=None;ProxyState-Complete=CalculateBackEnd;EndRequest=2015-04-30T19:58:00.153Z;,HttpProxyException=Microsoft.Exchange.HttpProxy.HttpProxyException:
  RPC server name passed in by client could not be resolved: TDC01422.domain.test    at Microsoft.Exchange.HttpProxy.RpcHttpProxyRequestHandler.ResolveToDefaultAnchorMailbox(String originalRpcServerName  String reason)    at
  Microsoft.Exchange.HttpProxy.RpcHttpProxyRequestHandler.ResolveAnchorMailbox()    at Microsoft.Exchange.HttpProxy.ProxyRequestHandler.InternalBeginCalculateTargetBackEnd(AnchorMailbox& anchorMailbox)    at Microsoft.Exchange.HttpProxy.ProxyRequestHandler.<BeginCalculateTargetBackEnd>b__3b();
  the error suggests the name could not be resolved. but nslookup works fine. i can ping the tdc01421 correctly form texch31, it returns me the ipv4 address. i can telnet to port 6004 from texch31 server to tdc01421 giving me the correct 'ncacn_http' answer..
  i look at the 'ValidPorts' and ValidPorts_Autoconfig_Exchange reg keys and filled them with the same i have on the 2007cas servers (all ex servers, all dc/gc's, all of them with netbios & fqdn ports 6001,6002 & 6004..) but also no success.
  im out of ideas by now..

  Hello togehter, 
  if anyone is using the Interim Update (Hotfix) "Exchange2013-KB2997209_2997847-x64-en.msp" please be aware of the following bug in this hotfix: 
  NOTE: Another issue that we have seen only from some E2013 On-Premises customers who installed
  fixes for any of the above E2013 CU6 related issues is that “Using OWA, users cannot create new messages or reply to existing messages” – These are mostly installer issues where OWA files are not copying correctly in the new version directory. Ideally the
  content of these two folders, i.e. “V15\ClientAccess\Owa\prem\15.0.995.31” and “V15\ClientAccess\Owa\prem\15.0.995.29” should be identical, now if for any reason, they are not then it can break the OWA experience like described above. Take these steps if you
  run into related issues:
  -Backup the contents of “15.0.995.31” folder to a different folder/directory
  -Copy the files and folders from “15.0.995.29” to “15.0.995.31” folder – this should fix the issue …
  Best, 
  Martin

• Telnet implementation in java

  Hello!
  I am a student and I'm writting my graduate work on the implementation of Telnet protocol in java.
  Can anyone please tell me where can I find open source implementation of Telnet server, it was easy to find Telnet client but I have trouble finding the server.
  Thank you!

  Link to cross-post: [http://forums.sun.com/thread.jspa?threadID=5414310&messageID=10854090]

• Sporadic SSL connection trouble

  I happened to run across https://discussions.apple.com/message/5546820, which describes a problem very similar to one I've had troubles with since Mac OS X 10.5 Server and still happens with 10.6.7; I did not experience this with Tiger.
  I have a web service written in PHP (v5.3.4) that makes another web service call to a third party web service.  The call TO my web service and the call my web service MAKES are both SSL encrypted; neither are going through a proxy.  Occasionally, my web service will get a SoapFault raised with the error "Could not connect to host" when instantiating a SoapClient object to connect to the third party web service.  We use this web service an average of nearly 1,000 times a day, and of those, only a handful each day gets this exception.  I have gone so far as to add code that will make a second attempt to instantiate the SoapClient class when the first fails.  Sometimes the second attempt works, but sometimes even it fails.
  At one point I moved this process back to 10.4.11 Server (w/PHP v5.2.4), and experienced no errors.  I've also ran the same code on a Windows machine with PHP 5.3 installed and it did not experience the problem either.  So I don't believe it has anything to do with upgrading PHP from 5.2 to 5.3.  I have performed tests from other Macs connecting to one of Amazon's web services over HTTPS, and they too experienced random failures beginning with Leopard.  So I don't think it has anything to do with the specific machine on which the process is running.  I also tried consuming the Amazon web service over HTTP, and didn't experience the problem.
  We have another process (on a different server running 10.5.8) that uses CURL to establish a SSL encrypted connection to a partner's system, and it's randomly failing on curl_exec() with "SSL read: error:00000000:lib(0):func(0):reason(0), errno 54".  According to http://curl.haxx.se/libcurl/c/libcurl-errors.html, error 54 means "Failed setting the selected SSL crypto engine as default!".
  CURL details:
  10.5.8 machine:
  curl 7.16.4 (i386-apple-darwin9.0) libcurl/7.16.4 OpenSSL/0.9.7l zlib/1.2.3
  Protocols: tftp ftp telnet dict ldap http file https ftps
  Features: GSS-Negotiate IPv6 Largefile NTLM SSL libz
  10.6.7 machine:
  curl 7.19.7 (universal-apple-darwin10.0) libcurl/7.19.7 OpenSSL/0.9.8l zlib/1.2.3
  Protocols: tftp ftp telnet dict ldap http file https ftps
  Features: GSS-Negotiate IPv6 Largefile NTLM SSL libz
  Neither error can be reproduced at will, but they do happen daily (no particular time of day; it's completely random).  It just really sounds like something is wrong with some low level code in the OS dealing with SSL that began with Leopard.  Anyone else having similar trouble?

  i got the connection to work, and the problem was that the regional settings of the client was set to "Turkish". after changing it to EN, it worked.
  (questions 2), 3) and 4) are "answered" herewith).
  is there a workaround for the language problem ? (the reg. settings have to be Turkish)
  (when set to "Turkish", the JRE parses the cacerts file erroneous (because of the Turkish 'i' character). running the program with "-javax.net.debug=all" parameter prints the trace)
  now, i've another question :
  when creating a user how do we specify which group the user belongs to ?
  a solution for this is to find the group and add the user to the group. is there an attribute of the user which can be set directly at creation time ?
  last question :
  why does it take so long to get a context with ssl connection ? does anybody know how to make it faster ?
  thanks

• Telnet Server in java

  Hello!
  I am a student and I'm writting my graduate work on the implementation of Telnet protocol in java.
  Can anyone please tell me where can I find open source implementation of Telnet server in java, it was easy to find Telnet client but I have trouble finding the server.
  Thank you!

  Maybe worth checking out (I do not know whether the server side is supported):
  http://commons.apache.org/net/
  * Jakarta Commons Net* implements the client side of many basic Internet protocols. The purpose of the library is to provide fundamental protocol access, not higher-level abstractions. Therefore, some of the design violates object-oriented design principles. Our philosophy is to make the global functionality of a protocol accessible (e.g., TFTP send file and receive file) when possible, but also provide access to the fundamental protocols where applicable so that the programmer may construct his own custom implementations (e.g, the TFTP packet classes and the TFTP packet send and receive methods are exposed).
  Features
  Supported protocols are:
  FTP/FTPS
  NNTP
  SMTP
  POP3
  * Telnet *
  TFTP
  Finger
  Whois
  rexec/rcmd/rlogin
  Time (rdate) and Daytime
  Echo
  Discard
  NTP/SNTP

• UC 520 initial setup trouble

  Hi -
  I've got a UC 520 and am having trouble accessing the device to configure the initial setup.
  I can connect using the console port, but I can't access the device thru CCA.
  I do not get an IP address using DHCP when connected.
  I can no ping the default port(s) 10.1.1.1 or 192.168.10.1 when using a static IP address on the same subnet.
  I followed the steps on uc500.com to update the sfotware to 8.0.1 and to using the factory-default configuration.
  I still can not access the device using CCA. The device also does not give out IP addresses to an IP phone when connected.
  ANY tips/suggestions would be GREATLY appreciated.
  Thanks in advance!

  Press F2 while in CCA to view console logs while CCA does it's voodoo.
  In my experience enabling telnet helps ALOT, because in the logs CCA is constantly trying to telnet, but can't if it's disabled and falls back to HTTP.
  line vty 0 4
  transport input all
  Also make sure your interfaces are not shutdown. Assuming vlan 10 is your UC520 switch vlan:
  conf t
  int fa 0/1/0 - 8
  no shut
  int vlan 10
  no shut