Can not access ASAs inside interface via VPN tunnels

Similar Messages

• Can not access the advanced settings via IP address WRT310N

  Hello all,
  I'm having trouble accessing my routers advance settings.  The Easy Link Advisor works but as soon as I attempt to enter the router via the advanced setting explorer pops up with a "can not connect" and internet trouble shooting suggestions.
  I'm trying http://192.168.0.1 which is where the advisor attempts to connect and 192.168.1.1 which was my default for my wrt54g.
  Nothing seems to work - I have tries a hard reset of the router as well.
  Any tips, suggestions? 
  Greatly appreciated.

  I am also having this problum "with a few extras"
  In the easylink adviser i click on the WRT310N and choose advanced settings it opens up a a brouser window going to 192.168.1.1 and then takes me to a blank page.
  i checked ipconfig and
  IP Address ...............:192.168.1.100
  Subnet Mask ............:255.255.255.0
  Default Gateway........:192.168.1.1
  the other 2 issues i get are clicking on change router password i get the error message
  "Exception has been thrown by the target of an invocation"
  also when i click on wireless protection i get the same error message
  "Exception has been thrown by the target of an invocation"

• Can not access audio books itunes via Mycloud

  I have no problem in Mac itunes selecting the MyCloud and everyone sharing the music.  However, I can not get the audio books to work.  I was able to use the MyClould as an external drive to offload large iTunes Libraries for users on the network. That work's. However, when I put the audio books into the Public Music file, or a folder with the aubiobooks into the Public Music Folder when I select MyCloud from the iTunes application and select audiobooks it says no audio books to select. How come this is not working? How do I get the audiobooks to share on the network as the music files do? Thanks

  It is generally not recommended to put media files in the "Public" folder even though the WD My Cloud User Manual recommend it. The reasons for not using the "Public" folder are discussed in the [FAQ] Twonky DLNA Media Server Setup & Use thread. It is advisable to read that thread to understand some of the quirks of the Twonky DLNA media server. Ensure your audiobooks are in a format that Twonky supports. This link has a general list of supported Twonky media file formats. Ensure your audiobooks are properly tagged (metadata). If they are not Twonky may not display them properly. If one is using MP3 formatted files they can use a free metadata tag editor like MP3Tag to edit the metadata for their audio files. Lastly if you have moved a large amount of media files to the WD My Cloud, it will take the device quite a bit of time, sometimes as long as 24 or more hours, to scan the media and update or build the Twonky media server database and the iTunes server database. If one continues to have trouble with the media files not being found, try rebuilding the media databases by selecting "Rebuild" under Settings -> Media -> DLNA Media Server -> DLNA Database and selecting "Rescan" under Settings -> Media -> iTunes-> iTunes Database. Rebuilding the database(s) may take a considerable amount of time.

• I can not access a shared album via my iPhone.

  I created  and shared a photo album from my iMac.  I shared the album with myself and several family members.  Some can access the album and for some it says "This album is no longer shared".   I did a test and sent myself the album invitation.  I am able to open the album through the email on my iMac.  However, when I click on subscribe via my iPhone, it says the album is no longer available.  The album is available - so that's not the issue.    Any ideas?
  Thanks in advance!

  Hi Julie2020, 
  Thanks for contributing to the Apple Support Communities. 
  It sounds like the invitation link for your shared album sometimes does not let you or others view the album. I am sure your family wants to see your photos, and I can offer some troubleshooting steps. 
  If you've already accepted the invitation on your Mac, first check the Photos app on your iPhone to see if the album automatically appears in the "Shared" section, as mentioned in the iCloud Photo Sharing overview.
  If so, next make sure that the album is shared with your family members' Apple IDs, and try re-sending an invitation to the ones who can't view the album: 
  In the Photos app, tap Shared at the bottom of the screen, then tap Sharing at the top of the screen.
  Tap the shared album that has the people you want to invite again, then tap People.
  Tap the person you want to invite again, then tap Resend Invitation.
  You can also complete these steps on your iMac by following the steps at this link:
  Manage subscribers - iPhoto Help
  Best Regards,
  Jeremy 

• VPN ASA inside Interface and ip pool are one same Subnet

  Hi Everyone,
  I have configured RA VPN full tunnel.
  Inside interface of ASA is
  Vlan1                    inside                 10.0.0.1        255.255.255.0   CONFIG
  ip local pool 10-pool 10.0.0.51-10.0.0.100 mask 255.255.255.0
  Need to know is it good design to have both on same subnet?
  When i access the Switch  connecting to VPN ASA  inside interface via--https://10.0.0.2
  which has IP 10.0.0.2  while using Remote VPN connection to ASA it does not work gives error
  message as below
  Jan 19 2014 19:42:46: %ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows; Connection for tcp src outside:10.0.0.51/51077(LOCAL\ipsec-user) dst inside:10.0.0.2/443 denied due to NAT reverse path failure.
  Jan 19 2014 19:42:57: %ASA-5-305013: Asymmetric NAT rules matched for forward and reverse flows; Connection for tcp src outside:10.0.0.51/51078(LOCAL\ipsec-user) dst inside:10.0.0.2/443 denied due to NAT reverse path failure
  Jan 19 2014 19:42:59: %ASA-6-302014: Teardown TCP connection 22418 for outside:10.0.0.51/51069(LOCAL\ipsec-user) to identity:10.0.0.1/443 duration 0:01:08 bytes 1035 TCP Reset-O (ipsec-user)
  Jan 19 2014 19:42:59: %ASA-6-106015: Deny TCP (no connection) from 10.0.0.51/51069 to 10.0.0.1/443 flags FIN ACK  on interface outside
  Current NAT config is
  nat (inside,outside) source dynamic any interface
  Regards
  MAhesh
  Message was edited by: mahesh parmar

  Hi Mahesh,
  It should work but I generally would not suggest having the same network on the LAN and also configured partially as a VPN Pool network.
  Your problem at the moment is simply lacking the NAT0 configuration for the traffic between LAN and VPN Pool.
  I would suggest changing the VPN Pool first and then configuring this
  object network LAN
  subnet 10.0.0.0 255.255.255.0
  object network VPN-POOL
  subnet
  nat (inside,outside) 1 source static LAN LAN destination static VPN-POOL VPN-POOL
  We have to use the line number "1" in the above command so that it gets moved to the top since your current Dynamic PAT would otherwise override it.
  In the future it would be best if you changed your current Dynamic PAT configuration to this
  nat (inside,outside) after-auto source dynamic any interface
  We simply add the "after-auto" to this Dynamic PAT configuration so that it gets moved down in priority. The "after-auto" refers to the fact that this NAT will be inserted after Auto NAT (after Section 2). Your current rule is Manual NAT (Sectiom 1). The new rule will be Manual NAT (Section 3)
  - Jouni

• Can not access DVR or program DVR to record via web or apps

  I can not access my DVR remotely via a PC or via the apps.  I get a message that says cannot connect to your DVR right now, try again later.  It has been like this for weeks.  I called tech and they reset all the boxes, the ONT, I removed the COAX etc. rebooted and cleared router.  The box can be seen online though just not the DVR.  Also, on screen caller id does not work and the fix application does not fix it either.

  It seems like I lose web access to the DVR every week.
  I either have to unplug the DVR or have Verizon send a reboot signal. Even that doesn't work every time. It is a really annoying and inconvenient problem.

• Can't SSH to inside interface on ASA

  Hi there
  I have generated the key and can ssh to outside interface. I have allowed access on inside interface. I can telnet but not ssh. I captured packets and can see incoming only. Any ideas?
  TIA
  Sent from Cisco Technical Support iPhone App

  Hi there,
  Here it is -
  asa01(config)# sh cap capin
  4 packets captured
     1: 21:59:03.583343 802.1Q vlan#240 P0 192.168.1.2.56686 > 192.168.1.1.22: S 2251599477:2251599477(0) win 4128
     2: 21:59:05.586990 802.1Q vlan#240 P0 192.168.1.2.56686 > 192.168.1.1.22: S 2251599477:2251599477(0) win 4128
     3: 21:59:09.588577 802.1Q vlan#240 P0 192.168.1.2.56686 > 192.168.1.1.22: S 2251599477:2251599477(0) win 4128
     4: 21:59:17.591659 802.1Q vlan#240 P0 192.168.1.2.56686 > 192.168.1.1.22: S 2251599477:2251599477(0) win 4128
  4 packets shown
  asa01(config)#
  asa01(config)# sh cap asp
  0 packet captured
  0 packet shown
  asa01(config)#
  Can you ping the Switch interface from the ASA?          - Yes
  Can you ping the ASA from the switch? - Yes

• Access to DFS root via VPN not working - error 0x80070035 keeps popping up

  Dear all,
  when trying to access the DFS root via VPN from a Windows 7 non-domain member computer I always receive an error stating "Windows cannot access \\eggs.local\dfs", Error Code: 0x80070035, The Network Path was not found.
  I searched the internet as well as these forums in order to get to grips with this error message but didn't find anything to solve my problem.
  I made sure, that NetBIOS over TCP/IP is enabled, that I have access to the VPN adapter's DNS as well as WINS servers, that DNS name resolution is working properly, DNS split tunneling is enabled, Windows Firewall is disabled, and so forth. Still no luck.
  Any ideas?
  Thanks Alex
  Alexander Ollischer Diplom-Wirtschaftsinformatiker (FH) Citrix & Microsoft Certified Engineer (CCEA, CCEE, MCSA, MCSE, MCDBA, MCTS) Afontis IT+Services GmbH Baierbrunner Straße 15 81379 München Deutschland Telefon (089) 74 34 55-0 Fax (089) 74 34 55-55
  mailto:[email protected] http://www.afontis.de http://www.itganzeinfach.de Amtsgericht München, HRB 109 005 Geschäftsführer: Thomas Klimmer

  Hi,
  Though you mentioned DNS is working properly, please check if DNS forwarder is set as set correctly. 
  And incase it is caused by authentication, please try to force Kerberos to use TCP - by default it using UDP and on a slow VPN connection, UDP packets may be dropped. 
  How to force Kerberos to use TCP instead of UDP in Windows
  http://support.microsoft.com/kb/244474
  Also check NTFS and Sharing permission on top of the DFS Namespace. At least give users a Read permission. 
  If you have any feedback on our support, please send to [email protected]

• Can not access home network via ipod touch, password entered  not accepted

  Can not access home network via ipod touch, password entered not accepted
  Trying to help my son set up his ipod touch to connect to the network and the password I entered is not accepted.
  1. Which password is required? I entered the password I use for logging into my router
  2. The home network is recognized, when selected it requires a password to be entered, but I am just not sure what password it is looking for to connect.
  I have not been able to find any information on this subject

  jersey0904, Welcome to the discussion area!
  You need to enter the wireless encryption password... not the administrative password for the router.

• Can I access my Time Capsule via web, even if it´s not connected to a mac??

  Can I access my Time Capsule via web, even if it´s not connected to a mac??

  Yes, but the issue is the IP address. If you have a static IP from your ISP it is easy.. Or if you use another router with dyndns it is easy.. but Apple make it exclusive to their network so you can have loads of issues without a computer to function as a client for dns.
  Look up remote Time Capsule access .. there is plenty of info out there.

• HT4906 I have upgraded my OS to Mountain Lion and updated Iphoto to latest, however, I still can not access photos sent to me via photo stream. what else do I need to do? I'm $30 into this effort, and no results!

  I have upgraded my OS to Mountain Lion and updated Iphoto to latest, however, I still can not access photos sent to me via photo stream. what else do I need to do? I'm $30 into this effort, and no results!

  Log out of iCloud in the System/iCloud preference pane and disable Photo Stream in iPhoto's Photo Share preference pane.  Then log back in and re-enable, respectively.  That should jump start Photo Stream.
  OT

• Can not Access disk drive attached to WRT350N via an FTP client

  Background
   I have a WRT350N v1 running the most current firmware. I have a static IP address for the WRT350N and I can ping it over the internet.  I have a disk drive attached to the 350N with a FAT32 partition that has been set up for shared access for a selected group and user. I have worked with cicso/linksys support to verify the linksys350N is set up correctly (?).
  Problem
  I can not access the disk drive attached to the WRT350N via an FTP client. I have tried the following FTP Clients: Transmit and Filezilla.  I get a "Connection established, waiting for welcome message...' message on the FTP client. Then it says Connect timeout, Can not connect to server. I CAN connect to other FTP sites so its not the FTP client software.
  What I have done so far
  1. deleted the old  and added a new FTP group and user
  2.  unplugged and reconnected my WRT350N and my cable modem
  3. Contacted Cisco/linksys support on-line and they verified my setup and can ping my 350N but thats as far as they are willing to help
  I haven' a clue as to what to do next. Any and all help is greatly appreciated. 

  Access your router set-up and make sure you have :
  1. Enabled FTP Server and Internet Access under the FTP Server subtab under Storage...
  2. Reduced the MTU size to 1300 under SetUp...
  3. Unchecked Filter Anonymous Internet Requests...
  If you have done all this and nothing works, then, you need to upgrade your router's firmware and re-configure your router and then enter the settings...
  Download Firmware 3.23 MB...
  Follow these steps to upgrade the firmware on the device : -
  Open an Internet Explorer browser page on a computer hard wired to the router...
  In the address bar type - 192.168.1.1...Leave the username blank & in password use admin in lower case...
  Click on the 'Administration' tab- Then click on the 'Firmware Upgrade' sub tab- Here click on 'Browse' and browse the .bin firmware file and click on "Upgrade"...
  Wait for few seconds until it shows that "Upgrade is successful"  After the firmware upgrade, click on "Reboot" and you will be returned back to the same page OR it will say "Page cannot be displayed".
  Now reset your router :
  Press and hold the reset button for 30 seconds...Release the reset button...Unplug the power cable from your router, wait for 30 seconds and re-connect the power cable...Now re-configure your router...
  1. Enable FTP Server and Internet Access under the FTP Server subtab under Storage...
  2. Reduce the MTU size to 1300 under SetUp...3. Uncheck Filter Anonymous Internet Requests...See if this works for you...

• Can not access internet via wired connection, wireless working OK

  Background information,Came home from vacation turned on PC to access email.Emails started downloading then stoped,started getting messages that firefox stopped working and Thunderbird quit working and others.My desktop is attached to a verizon router.all my other devices are wireless and are working fine through the same router.I connected my laptop to the lan connection, turned off wifi and accessed the internet via lan connection.Using device manager, checked drivers, says up to date, also says that it is working properly.I have gone to the command line and can ping google.com.I can ping the loop around. ping127.0.0.1I have done the ipconfig/release,ipconfig/renew, and ipconfig/flushdnsipconfig/all indcates that it is there and enabledMy Lan connection is part of the mother board.can not access internet via wiredconnection.Not sure what to do next.Help Please   

  Reply: I spent about an hour last night doing all the things that you suggested including moving the lan cable from my desktop to my laptop which worked fine. When I hoover over the connection it says;  Network3                                                                                        Internet Access   no error messages.When I unplug the cable at the router a red x covers that connection icon.Plug it back in red x goes away.It is seeing the router, just does not appear to be providing selected web page info.Computer thinks it is working fine.

• Security photo - does not show any apps that have requested access. I can not access photos via apps. How to fix it?

  Apps can not access photos.
  Apps never asked if they could access photos.
  Security>Photos  - there are no apps on the list.
  I have restarted.
  Backed up, restored.
  No improvement.
  Thanks.
  ps my iphone allows access, so I know 'how' to do it usually.

  Found the answer:
  Go to settings/general/restrictions/photos and allow the apps to have access to photos

• Can not access web interface: Linux: permission denied

  When starting my oracle-xe on centos5 it works but i can not open the web interface. During install i have configured it on port 81 and this is the error i get when starting the db:
  30-MAY-2010 19:17:54 * (CONNECT_DATA=(CID=(PROGRAM=)(HOST=localhost.localdomain)(USER=oracle))(COMMAND=status)(ARGUMENTS=64)(SERVICE=LISTENER)(VERSION=169869568)) * status * 0
  Error listening on: (Description=(Address=(Protocol=tcp)(Port=81)(Host=localhost))(Presentation=HTTP)(Session=RAW))
  30-MAY-2010 19:17:57 * service_update * XE * 12546
  TNS-12546: TNS:permission denied
  TNS-12560: TNS:protocol adapter error
    TNS-00516: Permission denied
     Linux Error: 13: Permission deniedFirewall and seLinux are disbled.
  I have installed oracle-xe as root and added root to the dba-group
  What could be the issue for this?
  Edited by: Yannick.O on May 30, 2010 10:35 AM

  You have to use some port higher then 1024. Ports below 1024 are reserved for root user only.