Collecting traffic through my modem
HI,
I am new to java . i wanted to know how i could collect packets passing through my modem.
cheers
spradigy
"Signal" is in dBm, or dB referenced to 1 milliwatt. The numbers are negative, so smaller (toward positive) is stronger. I'm getting passable service back here in my office with -80 dBm, but my computer in the living room, right next to the airport, is running -55, much stronger. You can use this number to help decide where to place your airport and your computer.
Noise is also dBm, and smaller (more negative) is better. This number suggests when your computer or your airport might be near a source of noise, like a motor, flourescent lamp or another radio device.
A number you can calculate real easily is signal-to-noise ratio, or SNR. Because dBms are logarithms of power you can subtract them to get their ratio of power, in dB (not dBm; the m's cancel). You do have to be careful with the signs because you are subtracting negative numbers, but it's still easier than dividing. With a signal of -80 dBm and noise of -90 dBm, my SNR will be (-80) - (-90) = (-80) + 90 = +10 dB, which is plenty strong.
Rate looks like it might be packets per minute, averaged over several minutes. This is the one I was looking for.
We run a public Wi-Fi service here at the house, no password required. We don't mind people in the neighborhood hookin' up to the internet on our service. Lord knows I've been grateful to have had a free link now and then, and it don't take nothin' from nobody. It's like offerin' a free drink of water.
But then, there's always the chance of things gettin' out of hand. Every now and then when our service here in the house seems a little slow, I've wondered whether it could be because a bunch of folks parked in the street were all playing World of Warcraft at the same time. Now, with this tool, I can look and see.
I might point out that DHCP clients persist for several hours. So, if you see an IP address or a MAC address you don't recognize, you still have to look under "Wireless Clients" to see whether he might not have driven off a while ago.
--Gil
Similar Messages
-
How to delete values from extension collection field through importer?
Hi Experts,
We have created one extension collection field in Master Agreement.
We are able to add values to that collection field using Extension collection template CSV file through importer.
Now we have a requirement to delete values from the Extension collection field through importer using CSV file.
If anyone have template or idea please share with us.
Thanks in advance!!
Regards,
Lava.Hi Agrawal,
Thanks for you helpful information.
Regards,
Lava. -
Forcing traffic through load balancer rather than zone to zone
I have several T5140s with 2 LDOMs. Within each LDOM I have multiple zones which contain 2 environments. Each environment comprises the following, an apache instance behind a BigIP load balancer, a JBoss instance, and several misc. The jboss zone has three IP address assigned for multiple applications. Each server is configured identically as far as zone and LDOM layout. We use mod_cluster to cluster our apache and Jboss environment. What I'm trying to accomplish is forcing the apache zone's traffic through the BigIP rather than zone to zone.
Referring to the information below, server2ldom1jboss is one jboss node which needs to connect to both server2ldom1japache and server1ldom1apache. server2ldom1jboss connects to server2ldom1apache via its DNS name which is a NAT address. So webserver2 resolves to 10.10.2.5 which NATs to 10.10.1.5 behind the BigIP. webserver2 responds directly to the jboss zone rather than through the BigIP. Not good. server1ldom1apache works correctly as it's not a local zone.
Referring to this document, https://blogs.oracle.com/solarium/resource/solaris-container-guide-en-v3.1.pdf
section 5.2.7.8
"Connection of zones via external routers using the shared IP instance"
I've created the following routes
route add 10.10.2.5 10.10.1.5
route add 10.10.0.34 10.10.1.5 -interface -reject
route add 10.10.0.35 10.10.1.5 -interface -reject
route add 10.10.0.87 10.10.1.5 -interface -reject
route add 10.10.1.5 10.10.0.87 -interface -reject
route add 10.10.1.5 10.10.0.34 -interface -reject
route add 10.10.1.5 10.10.0.35 -interface -reject
This does prevent the zone to zone traffic, but it also preventing any response. I've tried other options as well, but have not been successful yet. What concerns me is this "These interfaces must not be used elsewhere in the global zone." The 5140 has 4 ethernet ports, which are configured into two port channels. vnet0 and vnet1. The apache instances use vnet1. The remaining zones use vnet0, including the global zone (server2ldom1 10.10.0.21). I think this may be the issue, but do not see an easy resolution without breaking my port channels and losing redundancy and fail-over.
If there is anything I'm missing or a better/different way to do this, I would greatly appreciate any input on this matter.
Thank you.
webserver2 10.10.2.5 NATs to 10.10.1.5
jboss apps 10.10.0.34, 10.10.0.35, 10.10.0.87
10.10.0.0/24 is the lan
10.10.1.0/24 is the network behind the BigIP
10.10.2.0/24 is the webserver network (in front of the BigIP)
[1658]root@server2:~# ldm list-bindings
NAME STATE FLAGS CONS VCPU MEMORY UTIL UPTIME
primary active -n-cv- SP 4 2G 1.1% 138d 5h
MAC
00:14:4f:ec:20:ff
HOSTID
0x84ec20b8
VCPU
VID PID UTIL STRAND
0 0 2.0% 100%
1 1 1.4% 100%
2 2 0.7% 100%
3 3 2.1% 100%
MAU
ID CPUSET
0 (0, 1, 2, 3, 4, 5, 6, 7)
MEMORY
RA PA SIZE
0x8000000 0x8000000 2G
VARIABLES
boot-device=/pci@0/pci@0/pci@2/scsi@0/disk@0,0:a disk net
keyboard-layout=US-English
nvramrc=devalias rootdisk /pci@0/pci@0/pci@2/scsi@0/disk@0,0:a devalias rootmirror /pci@0/pci@0/pci@2/scsi@0/disk@1,0:a
security-mode=none
security-password=
use-nvramrc?=true
IO
DEVICE PSEUDONYM OPTIONS
pci@0 pci
niu@80 niu
VCC
NAME PORT-RANGE
primary-vcc0 5000-5010
CLIENT PORT
group1@primary-vcc0 5000
group1@primary-vcc0 5000
VSW
NAME MAC NET-DEV DEVICE DEFAULT-VLAN-ID PVID VID MODE
primary-vsw0 00:14:4f:f9:ff:ff aggr1 switch@0 1 1
PEER MAC PVID VID
vnet0@ldom2 00:14:4f:fb:7b:ff 1
vnet0@ldom1 00:14:4f:fb:1a:ff 1
NAME MAC NET-DEV DEVICE DEFAULT-VLAN-ID PVID VID MODE
primary-vsw1 00:14:4f:fb:8e:ff aggr2 switch@1 1 1
PEER MAC PVID VID
vnet1@ldom1 00:14:4f:f8:17:ff 1
vnet1@ldom2 00:14:4f:f8:c2:ff 1
VDS
NAME VOLUME OPTIONS MPGROUP DEVICE
primary-vds0 ldom2_swap /ldoms/swap/server2ldom2
ldom2_root /dev/dsk/c4t600601601CE1210018F9E37BD2AADD11d0s2
ldom1_swap /ldoms/swap/server2ldom1
ldom1_root /dev/dsk/c4t600601601CE121007E02166CD2AADD11d0s2
CLIENT VOLUME
ldom2_swap@ldom2 ldom2_swap
ldom2_root@ldom2 ldom2_root
ldom1_swap@ldom1 ldom1_swap
ldom1_root@ldom1 ldom1_root
VCONS
NAME SERVICE PORT
SP
NAME STATE FLAGS CONS VCPU MEMORY UTIL UPTIME
ldom1 active -n---- 5000 30 15G 3.7% 192d 6h
MAC
00:14:4f:f8:a5:ff
HOSTID
0x84f8a5f5
VCPU
VID PID UTIL STRAND
0 4 0.4% 100%
1 5 0.3% 100%
2 6 0.1% 100%
3 7 4.4% 100%
4 8 0.2% 100%
5 9 0.2% 100%
6 10 14% 100%
7 11 0.1% 100%
8 12 8.1% 100%
9 13 0.1% 100%
10 14 0.1% 100%
11 15 0.1% 100%
12 16 0.3% 100%
13 17 0.1% 100%
14 18 0.1% 100%
15 19 0.1% 100%
16 20 0.3% 100%
17 21 0.6% 100%
18 22 0.3% 100%
19 23 0.1% 100%
20 54 1.0% 100%
21 55 0.5% 100%
22 56 1.2% 100%
23 57 0.2% 100%
24 58 4.5% 100%
25 59 0.9% 100%
26 60 0.0% 100%
27 61 0.1% 100%
28 62 0.1% 100%
29 63 0.3% 100%
MAU
ID CPUSET
1 (8, 9, 10, 11, 12, 13, 14, 15)
2 (16, 17, 18, 19, 20, 21, 22, 23)
6 (48, 49, 50, 51, 52, 53, 54, 55)
7 (56, 57, 58, 59, 60, 61, 62, 63)
MEMORY
RA PA SIZE
0x8000000 0x88000000 10G
0x401800000 0x6b1800000 5G
VARIABLES
auto-boot?=true
boot-device=ldom1_root:b
NETWORK
NAME SERVICE DEVICE MAC MODE PVID VID
vnet0 primary-vsw0@primary network@0 00:14:4f:fb:1a:ff 1
PEER MAC MODE PVID VID
primary-vsw0@primary 00:14:4f:f9:ff:ff 1
vnet0@ldom2 00:14:4f:fb:7b:ff 1
NAME SERVICE DEVICE MAC MODE PVID VID
vnet1 primary-vsw1@primary network@1 00:14:4f:f8:17:ff 1
PEER MAC MODE PVID VID
primary-vsw1@primary 00:14:4f:fb:8e:ff 1
vnet1@ldom2 00:14:4f:f8:c2:ff 1
DISK
NAME VOLUME TOUT DEVICE SERVER MPGROUP
ldom1_swap ldom1_swap@primary-vds0 disk@0 primary
ldom1_root ldom1_root@primary-vds0 disk@1 primary
VCONS
NAME SERVICE PORT
group1 primary-vcc0@primary 5000
NAME STATE FLAGS CONS VCPU MEMORY UTIL UPTIME
ldom2 active -n---- 5000 30 15000M 0.8% 192d 6h
MAC
00:14:4f:fa:e8:ff
HOSTID
0x84fae839
VCPU
VID PID UTIL STRAND
0 24 1.0% 100%
1 25 1.0% 100%
2 26 0.0% 100%
3 27 0.0% 100%
4 28 0.1% 100%
5 29 0.3% 100%
6 30 0.0% 100%
7 31 0.0% 100%
8 32 0.0% 100%
9 33 0.1% 100%
10 34 1.3% 100%
11 35 0.0% 100%
12 36 0.1% 100%
13 37 1.0% 100%
14 38 1.9% 100%
15 39 0.0% 100%
16 40 0.0% 100%
17 41 0.0% 100%
18 42 0.1% 100%
19 43 0.5% 100%
20 44 0.2% 100%
21 45 0.0% 100%
22 46 0.2% 100%
23 47 0.4% 100%
24 48 0.2% 100%
25 49 0.0% 100%
26 50 0.0% 100%
27 51 0.0% 100%
28 52 0.0% 100%
29 53 0.0% 100%
MAU
ID CPUSET
3 (24, 25, 26, 27, 28, 29, 30, 31)
4 (32, 33, 34, 35, 36, 37, 38, 39)
5 (40, 41, 42, 43, 44, 45, 46, 47)
MEMORY
RA PA SIZE
0x8000000 0x308000000 15000M
VARIABLES
auto-boot?=true
boot-device=/virtual-devices@100/channel-devices@200/disk@1:b ldom2_root
keyboard-layout=US-English
NETWORK
NAME SERVICE DEVICE MAC MODE PVID VID
vnet0 primary-vsw0@primary network@0 00:14:4f:fb:7b:ff 1
PEER MAC MODE PVID VID
primary-vsw0@primary 00:14:4f:f9:ff:ff 1
vnet0@ldom1 00:14:4f:fb:1a:ff 1
NAME SERVICE DEVICE MAC MODE PVID VID
vnet1 primary-vsw1@primary network@1 00:14:4f:f8:c2:ff 1
PEER MAC MODE PVID VID
primary-vsw1@primary 00:14:4f:fb:8e:ff 1
vnet1@ldom1 00:14:4f:f8:17:ff 1
DISK
NAME VOLUME TOUT DEVICE SERVER MPGROUP
ldom2_swap ldom2_swap@primary-vds0 disk@0 primary
ldom2_root ldom2_root@primary-vds0 disk@1 primary
VCONS
NAME SERVICE PORT
group1 primary-vcc0@primary 5000
[1657]root@server2ldom1:~# ifconfig -a
lo0: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
inet 127.0.0.1 netmask ff000000
lo0:1: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
zone server2ldom1z3
inet 127.0.0.1 netmask ff000000
lo0:2: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
zone server2ldom1z2
inet 127.0.0.1 netmask ff000000
lo0:3: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
zone server2ldom1z6
inet 127.0.0.1 netmask ff000000
lo0:4: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
zone server2ldom1jboss
inet 127.0.0.1 netmask ff000000
lo0:5: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
zone server2ldom1apache
inet 127.0.0.1 netmask ff000000
lo0:6: flags=2001000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4,VIRTUAL> mtu 8232 index 1
zone server2ldom1z1
inet 127.0.0.1 netmask ff000000
vnet0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
inet 10.10.0.21 netmask ffffff00 broadcast 10.10.0.255
ether 0:14:4f:fb:1a:ff
vnet0:1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
zone server2ldom1z2
inet 10.10.0.33 netmask ffffff00 broadcast 10.10.0.255
vnet0:2: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
zone server2ldom1z6
inet 10.10.0.36 netmask ffffff00 broadcast 10.10.0.255
vnet0:3: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
zone server2ldom1jboss
inet 10.10.0.34 netmask ffffff00 broadcast 10.10.0.255
vnet0:4: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
zone server2ldom1jboss
inet 10.10.0.35 netmask ffffff00 broadcast 10.10.0.255
vnet0:5: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
zone server2ldom1z1
inet 10.10.0.32 netmask ffffff00 broadcast 10.10.0.255
vnet0:6: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
zone server2ldom1z1
inet 10.10.0.74 netmask ffffff00 broadcast 10.10.0.255
vnet0:7: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
zone server2ldom1jboss
inet 10.10.0.87 netmask ffffff00 broadcast 10.10.0.255
vnet1: flags=1000842<BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 3
inet 0.0.0.0 netmask 0
ether 0:14:4f:f8:17:ff
vnet1:1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 3
zone server2ldom1z3
inet 10.10.1.101 netmask fffffc00 broadcast 10.10.47.255
vnet1:2: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 3
zone server2ldom1apache
inet 10.10.1.5 netmask fffffc00 broadcast 10.10.47.255
[1701]root@server2ldom1:~# zonecfg -z server2ldom1jboss info
zonename: server2ldom1jboss
zonepath: /zones/server2ldom1jboss
brand: native
autoboot: true
bootargs:
pool:
limitpriv:
scheduling-class:
ip-type: shared
inherit-pkg-dir:
dir: /lib
inherit-pkg-dir:
dir: /platform
inherit-pkg-dir:
dir: /sbin
inherit-pkg-dir:
dir: /usr
inherit-pkg-dir:
dir: /opt/sfw
inherit-pkg-dir:
dir: /opt/
net:
address: 10.10.0.34
physical: vnet0
defrouter: 10.10.0.1
net:
address: 10.10.0.35
physical: vnet0
defrouter: 10.10.0.1
net:
address: 10.10.0.87
physical: vnet0
defrouter: 10.10.0.1
attr:
name: comment
type: string
value: server2ldom1jboss
[1702]root@server2ldom1:~# zonecfg -z server2ldom1apache info
zonename: server2ldom1apache
zonepath: /zones/server2ldom1apache
brand: native
autoboot: true
bootargs:
pool:
limitpriv:
scheduling-class:
ip-type: shared
inherit-pkg-dir:
dir: /lib
inherit-pkg-dir:
dir: /platform
inherit-pkg-dir:
dir: /sbin
inherit-pkg-dir:
dir: /usr
inherit-pkg-dir:
dir: /opt/sfw
inherit-pkg-dir:
dir: /opt/
net:
address: 10.10.1.5/22
physical: vnet1
defrouter not specified
attr:
name: comment
type: string
value: server2ldom1apache
Edited by: coreyva on Feb 18, 2012 11:36 AMAfter further research, I think the best course of action will be to create a VLAN for the zone behind the BigIP and then create the corresponding interface in the vlan and zone. Using this links as my references in case anyone is interested. I'll post what I come up with.
https://blogs.oracle.com/stw/entry/using_ip_instances_with_vlans
https://blogs.oracle.com/stw/entry/solaris_zones_and_networking_common
http://docs.oracle.com/cd/E19253-01/816-4554/816-4554.pdf # AdministeringVirtualLocalAreaNetworks
http://docs.oracle.com/cd/E19053-01/ldoms.mgr11/820-4913-10/820-4913-10.pdf # Assign VLANs to a Virtual Switch and Virtual
Network Device -
Policy based routing on VRF interfaces to route traffic through TE Tunnel
Hi All,
Is there a method to do policy based routing on VRF interfaces and route data traffic through one TE tunnel and non-data traffic through another TE tunnel.
The tunnel is already build up with these below config
interface Tunnel25
ip unnumbered Loopback0
tunnel destination 10.250.16.250
tunnel mode mpls traffic-eng
tunnel mpls traffic-eng path-option 10 explicit name test
ip explicit-path name test enable
next-address x.x.x.x
next-address y.y.y.y
router ospf 1
mpls traffic-eng router-id Loopback0
mpls traffic-eng area 0
mpls traffic-eng tunnels
nterface GigabitEthernet5/2
mpls traffic-eng tunnels
mpls ip
Is there additional config needed to work ,also in the destination end for the return traffic,we want to use the normal PATH --I mean non TE tunnel.
We tested with the above scenario,but couldn't able to reach the destination.Meantime we had a question,when the packet uses the policy map while ingress,it may not know the associatuion with VRF(Is that right? --If so ,how to make it happen)
Any help would be really appreciated
Thanks
Regards
Anantha Subramanian Natarajanhi Anantha!
I might not be the right person to comment on your first question. I have not configured MVPNs yet and not very confertable with the topic.
But I am sure that if you read through the CBTS doc thoroughly, you might be able to derive the answer yourself. One thing I notice is that " a Tunnel will be selected regularly according to the routing process (even isf it is cbts enabled). From the tunnels selected using the regular best path selection, the traffic is mapped to a perticular tunnel in the group if specific class is mapped to that tunnel.
So a master tunnel can be the only tunnel between the 2 devices over which the routing (bgp next hops) are exchanged and all other tunnels can be members of this tunnel. So your RPF might not fail.
You might have to explore on this a bit more and read about the co-existance of multicast and TE. This will be the same as that.
For your second question, the answer would be easy :
If you want a specific eompls cust to take a particular tunnel/path, just create a seperate pair of loopbacks on the PEs. Make the loopback learnt on the remote PE through the tunnel/path that you want the eompls to take. Then establish the xconnect with this loopback. I am assuming that your question is that a particular eompls session should take a particular path.
If you meant that certain traffic from the same eompls session take a different path/tunnel, then CBTS will work.
Regards,
Niranjan -
hi
can any1 over here help me out in how to establish connection between 2 RF modem's for data transfer , between client & server USing LABVIEW?
I want to establish a connection between 2 PC's through RF modem on client & server side & to set up PPP communication for data transfer.
(I have tried data transfer through RS-232 using TCP/IP whn the 2 PC's are connected over ethernet... which is working.
I also tried connecting loopback cable between 2 PC's COM port & geting data transfer using VIsa configure serial port & other visa functions ... which is working)
can u guide me how to establish connection between 2 RF modem's using LABview?
& how does the data transfer take place between 2 RF modems through RS-232?
is it using TCP/IP?
If you got any links to go abt this issue do send me related links .. or any examples .....
I am currently using Labview version 8.
Waiting in anticipation.. reply ASAP..
thanking you
Regards
Yogan..Howdy yogan,
Maybe you could clarify a few things for me, and we'll see how we can help ya. TCP/IP protocol occurs through an ethernet connection; RS-232 communication occurs through an RS-232 serial connection, typically through a cable that has a DB9 connector on both ends. Do you mean that the RF modems in question have the option to communicate via RS-232 and/or via TCP/IP ethernet? Specific information like the manufacturer of your RF modems, the model number of your RF modems, and how you connect the modems to the PC would enable us to give you more efficient support.
You can check our Instrument Driver Network (IDNet) to see if a plug-and-play/IVI driver already exists for your RF modem. (You'll need to know its manufacturer and model number.) In the case that you do find an IDNet driver for your modem, you can use this KnowledgeBase article for instructions on how to use the driver.
Another excellent resource to consider is the NI Example Finder. You can access this within LabVIEW by navigating to Help»Find Examples and then searching for serial or TCP/IP examples.
Message Edited by pBerg on 03-10-2008 04:35 PM
Warm regards,
pBerg -
Collective confirmation through COGI-reg
Hi
When I do collective confirmation through COHV for production orders, Final issue indicator is set automatically and system does not allow any good issue posting for that orders. can you tell me whether any setting to be done in customising.
Regards
KarthikeyanCheck in OPK1 and OPK0 in the defaults is there a check box ticked for - clear oper reservations?
If so then the reservation against the ordfer wikll be closed as it will be defaulted during confirmation -
RVL200 IPSEC: Channel all or some data traffic through tunnel, possible?
Is it at all possible to channel all/some data traffic through an established ipsec tunneled connection using the RVL200?
I have successfully established an ipsec connection through RVL200 and RV042 routers and are able to connect to servers/computers behind it.
Now I want to channel all or some traffic through the ipsec-tunnel for computers that reside on 192.168.1.0 subnet of RVL200 network.
Main office - RV042 router - 10.200.62.1
Remote office - RVL200 router - 192.168.1.1
I am trying to use the Advanced Routing option to add static routes but I am not 100% sure if I am configuring the routes correctly.
To give an example of routing DNS requests for HOTMAIL.COM [65.55.72.183]:
Destination IP - 65.55.0.0
SM - 255.255.0.0
GW - 10.200.62.1
Hop - 1
Interface - LAN
For some reason this does not appear to work. I have also tried using the interface setting of WAN and tested - this also does not work.
Can this be done? If anyone has tried doing this I would be very interested in finding out how to configure this.
Cheers.
MPFor some reason the DNS IP settings does not seem to work.
I started looking at the option of using the Quick VPN client which appears to have a setting for enabling Remote DNS.
I have setup a test user on both the RV042 and RVL200 to test if I can overcome the Split DNS limitation. But for some reason I can't connect to either of the two routers. I have installed the client on a 64bit Windows 7 client machine which has the Windows Firewall service enabled.
I keep getting the below error, there is no conflict with the IP address scheme and the password is correct.
Could it be this new client does not support the older Linksys badged RV0xx routers? Because Split DNS is only supported on v3 hardware. The firmware on my RVL200 is v1.1.12 .1.
What should I check to enable connectivity using this client? Or is because it does not support 64bit WIndows 7? I have even exported the certificates for both Admin and User into the C:\Program Files (x86)\Cisco Small Business\QuickVPN Client folder. -
Tunnelling web traffic through ssh
for tunnelling web traffic through ssh, it says here
http://wiki.freaks-unidos.net/weblog...fox-ssh-tunnel
that i have to set only the SOCKS Host text field in the edit>preferences>advanced>network>connection>settings
to localhost and the port i used for ssh but what about the other fields like http,ftp,gopher,and ssl proxy, shouldn't i need to set those too? if not why and what are those fields for anyway?
btw, is it possible to view streaming video like youtube.com while using a proxy? if so, then how would i go about it?jordi wrote:
ssh -D 4444 (or any other port number) youruser@yourserver
see the manual:
-D [bind_address:] port
Specifies a local ''dynamic'' application-level port forwarding. This works by
allocating a socket to listen to port on the local side, optionally bound to
the specified bind_address. Whenever a connection is made to this port, the
connection is forwarded over the secure channel, and the application protocol
is then used to determine where to connect to from the remote machine. Cur‐
rently the SOCKS4 and SOCKS5 protocols are supported, and ssh will act as a
SOCKS server. Only root can forward privileged ports. Dynamic port forward‐
ings can also be specified in the configuration file.
streaming videos like youtube.com will be possible... surfing the web will be the same as without socks proxy...
I suggest to use a addon like FoxyProxy if you use socks proxy's a lot.
1) I already know the ssh part, im talking about the configuration in firefox, sorry if i didn't make this clear.
for tunnelling web traffic through ssh, it says here
http://wiki.freaks-unidos.net/weblog...fox-ssh-tunnel
that i have to set only the SOCKS Host text field in the edit>preferences>advanced>network>connection>settings
to localhost and the port i used for ssh but what about the other fields like http,ftp,gopher,and ssl proxy, shouldn't i need to set those too? if not why and what are those fields for anyway?
2) and another thing about streaming videos, why is it that some proxies i have used before don't allow streaming traffic through?
ok it says here for vpn
http://searchsecurity.techtarget.com/sDefi...213324,00.html#
An additional level of security involves encrypting not only the data, but also the originating and receiving network addresses.
3) so how would the routers know where to route the data if its encrypted? and how would i go about implementing that?
4) btw, is ssh tunnelling an implementation of vpn?
5) another question i have would be that for ssh tunnelling, it works at the transport layer onwards so only applications which are designed to use the port would go through the tunnel and be encrypted right, other apps would not go through the tunnel. On the contrary, IPsec works on the network layer so all information above the network layer whether they use UDP or TCP or whatever ports for TCP would go through the tunnel and be encrypted. Are the above statements correct?
Last edited by unregistered (2008-05-11 08:39:19) -
Recording and Sending voice through a modem
hello there,
i am using JavaTM Communication API to send and receive voice though my serial modem. Firstly, it easily receives voice but i couldnot record it. Secondly, i cannot tranmit my voice to a telephone through my modem.
Can anybody help me.
thanks in advance
Sarad ThapaWell, what have you tried?
Exactly what problem are you having recording voices? Do you have any working code? Is it returning an error message or throwing an exception? Are you certain that it's receiving the right input?
Exactly what problem are you having sending your voice? Is the phone ringing at their end? Do they hear beeps, whistles, or just plain silence when they pick up the phone? Or alternatively, are you certain that your code is sending your voice to the right modem device? Is it throwing an error message?
What you are doing right now is going to a car mechanic and saying "my car doesn't work" but you can't specify what kind of car or what's not working. Very fustrating to the mechanic. -
Hi Guys,
This is a little bit of an odd request however I need to allow a sync routing due to some legacy routing to pass through my ASA.
I have allowed IP any any between the particular hosts involved to allow for high ports etc..
However the ASA is tearing down the session as it never see's the ACK.
Hence is there a way to turn off the ip inspection or some other way to get this traffic through the firewall.
Thanks
ScottOn an iPad I don't believe that you can. If you made the iPad tunnel through your laptop or desktop computer is may be possible to specify what traffic you want sent through the VPN or otherwise. But I have a feeling that would be very complicated to setup and keep working well.
-
I have a PC with a internet connection through a modem and ever since i have had it i have had no connection to the itunes store. And even if I try to update anything it says that i need to check my connection, but my connection is fine. What should I do?
This almost always indicates your firewall or anti-virus utilities are preventing iTunes from contacting the iTunes Store. Here is an exerpt from "Can't connect to the iTunes Store": http://support.apple.com/kb/TS1368
Troubleshooting on Windows
If you haven't been able to connect to the iTunes Store for more than a day —and other customers on our discussion boards aren't experiencing similar issues— a software or internet service provider (ISP) configuration issue may be blocking your access to the iTunes Store. Click here to find out which ports and servers need to be allowed for iTunes Store access.
Update iTunes to the latest version.
If you have not done so already, try the steps in iTunes for Windows: iTunes Store connection troubleshootingto troubleshoot iTunes Store connectivity in Windows.
Firewall issues:
Windows XP: If you've upgraded to Windows XP Service Pack 2: By default, Windows Firewall is enabled. As with all firewalls not manufactured by Apple, you will need to configure Windows Firewall to allow iTunes to access the iTunes Store. To do so, see How to enable iTunes in the Windows XP Firewall.
Windows Vista and 7: As with all firewalls not manufactured by Apple, you will need to configure Windows Firewall to allow iTunes to access the iTunes Store. To do so see, the "Blocked by software firewall" section in this article.
Proxies can cause issues and should be avoided whenever possible. To disable the proxy built-in to Windows see, iTunes for Windows Can't access the Internet if proxy settings are incorrect.
If you are receiving a specific error message you may want to see, the "Specific Conditions and Alert Messages" section in this article as needed.
If the issue still persists, contact your internet service provider and confirm that the ports and servers in this article are enabled over your network.
The "hosts" file may be blocking the iTunes Store
Microsoft's article How do I reset the hosts file back to the default? has instructions and a "FixIt" to have Windows try to reset the hosts defaults for you.
Note: Some workplaces may put internal resources in the hosts file but may also use it to block iTunes Store.
To create a copy of your hosts file and replace it with an empty hosts file, follow the instructions for your operating system below. -
Slowness problem sending traffic through CX module
People in the remote site access a SharePoint site via HTTP with Internet Explorer and open Microsoft documents. When I configure the ASA to send HTTP traffic through the CX module it slows opening documents to a crawl (Over 5 minutes to open) but everything else works fine. When I don’t send traffic through the CX module the documents open quickly (seconds) with no issue. So what I need to do is HTTP traffic going to and from the remote site needs to bypass the CX module or set it up so only HTTP traffic coming from the main site and site A going only to the internet goes through the CX module. How can I set this up to accomplish this?
I have attached a topology diagram.That is what I needed help with but here is what I was thinking.
! Create needed groups
object-group network CX-BYPASS-SITE2SITE
net 192.168.170.0 255.255.255.0
! from CX-BYPASS-SITE2SITE to ANY via HTTP - bypass
access-list CX_BYPASS deny tcp object-group CX-BYPASS-SITE2SITE any eq 80
! from any to CX-BYPASS-SITE2SITE via HTTP - bypass
access-list CX_BYPASS deny tcp any object-group CX-BYPASS-SITE2SITE eq 80
! CX inspects everything else
access-list CX_BYPASS permit ip any any
! Config traffic through the CX
class-map CX_REDIRECT
no match any
match access-list CX_BYPASS
policy-map global_policy
class CX_REDIRECT
cxsc fail-open
But I really only want to send HTTP traffic through the CX from the Main site and Site A to the internet, but this...
! CX inspects everything else
access-list CX_BYPASS permit ip any any
would send everything. How can I change that to just send HTTP traffic?
! CX inspects just HTTP traffic
access-list CX_BYPASS permit tcp any any eq 80
Would that would?
Mike -
Direct all traffic through a socks proxy
is this possible to direct all tcp/ip traffic through a socks proxy. how about just one application. can i socksify an application? tia
You want to utilize an upstream SOCKS proxy? I doubt it, you'd be better off setting up a VPN and routing your outbound traffic through that.
-
CSS: Allow non loadbalanced traffic through; Bridge mode
Hi,
Can the CSS, on bridge mode (Client VLAN10, Server VLAN10) just allow traffic through without load balancing.
(I did this in ACE by defining access rules. I'm not sure about CSS.)
Please point to a document where I can read about this too.
Kind regards
SS
Thank youThis forum is dedicated for Cisco MARS (Security product) dicussion.
Please ask your CSS-related queries here:
http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Data%20Center&topic=Application%20Networking&CommCmd=MB%3Fcmd%3Ddisplay_messages%26mode%3Dnew%26location%3D.ee7814f
Regards
Farrukh -
ASA CX - allows traffic through but web page cannot be loaded
Hello there,
I am having this strange issue with the HTTP traffic passing through the firewall. There is no any policies configured on the CX module for web or application filtering however when I reload the CX module or simply put in in "monitor-only" , the traffic is being allowed through the firewall. Also reading the CX events it looks like the traffic is passing through fine. Attaching the screenshot.
The ASA5512-X is runing 9.1.3 software and I am running the tests with the IPSec VPN client as I am not on client's site (all the traffic goes through the FW, no split-tunnel). Once on VPN and accesing a website which initially runs on HTTPS and opens fine, then there are some URLs inside this website and look like they redirect to HTTP and come back to HTTPS (strangly designed portal but needed for production), on the PC I get a security warning of the information not being encrypted. When trying to open one of those URLs and after accpeting the security warning the website looks like keeps loading and loading but nothing happens, and when I disconnect from the VPN this URL opens instaltnly.
On the Wireshark I find this starnge error: [Reassembly error, protocol TCP: New fragment overlaps old data (retransmission?)] and this is sent from my PC IP address, not the server. Attached the conversation betwwen my PC and the web server from Wireshark.
What do you think it maybe happening? I need some guidance on analysis of the packet capture and figure out what config on the FW could be blocking those HTTP requests. I desperate to fix this issues and already having few days trying to resolve it.
Thanks very much in advance.
RemiStart Firefox in <u>[[Safe Mode]]</u> to check if one of the extensions or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox/Tools > Add-ons > Appearance/Themes).
*Don't make any changes on the Safe mode start window.
*https://support.mozilla.org/kb/Safe+Mode
*https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes
Maybe you are looking for
-
Help! Did IOS5 upgrade on my iPod Touch and my music no longer plays...
It's visible, though it's only visible in a faded grey text now. Can view all my albums correctly, but the songs are greyed out. I've resynced repeatedly, and this does not resolve my problem. Any help would be greatly appreciated.
-
How to link Sales Order and WIP job for non-ATO items
Hello All, My client's requirement is to link an Sales Order with a WIP Job as soon as it is booked. It is for FG and for a non-ATO item. The process should be to have SO booked and then it should raise a WIP job based on it if there ar no inventory
-
Is it too early to start with JavaFX Mobile Development ?
There are no developer compnents except "TextBox" The only samples i can see are "showing Photos in grid like structure & similar kinds of app" :( it doesn't even support Swing What developer wants "Data Entry Form" which user will submit data to Ser
-
Ok, I'm trying to adapt to Photoshop after having used Photostudio for ages. The electronic help manual is really awful and isn't answering my question about the cloning tool at all (I just want to copy some cloud onto an empty space of background).
-
Hi SuperSAs, I have one issue with SFTP, one of our user complaint me that whenever he create a directory by using his SFTP id the permission set to 750. He requested me to set his permission to 770. i checked his profile and found that umask is alre