Configure Wireshark on 3850 to capture bi-directional Wireless Client Traffic

Similar Messages

• Wireless 3850 and Web-Auth for Wireless clients

  Hi
  I can't get the web-auth feature to work properly on the Catalyst 3850 for wireless clients.
  Internet is all tested and there is full IP connectivity.
  Issue is when I enable the webauth feature on the SSID. Incidentally when I enable the SSID to use consent it works.
  I am using local authentication for the guest users.
  When user logs onto the wireless, they get to the landing page, and are able to enter the credentials then there is a 30 second pause. The client detail says WEBAUTH_PEND and then a pop up window comes back as seen below
  Config below
  interface Vlan302
  description **** Wireless Guest ****
  ip address 10.145.224.161 255.255.255.224
  ip helper-address 10.144.214.134
  ip helper-address 172.17.2.56
  ip http server
  ip http secure server
  ip dhcp snooping
  wlan XXXXX 2 XXXXXX
  aaa-override
  accounting-list default
  client vlan 302
  ip flow monitor wireless-avc-basic input
  ip flow monitor wireless-avc-basic output
  no security wpa
  no security wpa akm dot1x
  no security wpa wpa2
  no security wpa wpa2 ciphers aes
  security dot1x authentication-list WEB_AUTH
  security ft
  security web-auth
  security web-auth authentication-list WEB_AUTH
  security web-auth parameter-map vit_web
  no shutdown
  parameter-map type webauth vit_web
  type webauth
  security web-auth parameter-map vit_web
  user-name Guest1
  creation-time 1390837878
  privilege 15
  password 7 022D0156060F1B351D
  type network-user description Temp-Guest-User guest-user lifetime year 0 month 1 day 0 hour 0 minute 0 second 0
  user-name Guest2
  creation-time 1390838016
  privilege 15
  password 7 0724244143000D1145
  type network-user description Temp-Guest-User guest-user lifetime year 0 month 1 day 0 hour 0 minute 0 second 0
  aaa new-model
  aaa authentication login WEB_AUTH local
  aaa authorization network WEB_AUTH local

  Hey Greg,
  Did you also define the global webauth parameter? I think I had to do this to get my 5760 "working" or as working as these new controllers can be.
  parameter-map type webauth global
  type webauth
  virtual-ip ipv4 x.x.x.x wlc.whatever.org
  max-http-conns 50
  Also I had to enable http server in addition to secure server
  ip http server
  ip http secure-server
  Are you using a self signed cert?
  I saw windows clients take a long time to load the page when using a self signed cert.
  MAC clients dont seem to work if you use the IOS or OSX based logon. You'll need to disable the auto logon and launch a browser for the redirect. There was a bug ID around this MAC problem which was supposedly resolved in 3.3.1SE  but I still have the problem.
  -Kyle

• How can I capture video directly into FCP without recording to tape first?

  I hooked my Sony VX2000 to the computer via firewire and opened the Log and Capture dialog box. The video from my camera shows correctly in the preview window.
  I click the Capture Now button and the capture window opens but no video displayed. The message below the window says "Waiting for Timecode".
  I guess the camera doesn't send timecode when it's not recording so I press the record button. Now video shows up in the capture window. After 16 frames it freezes and an error box pops up that says "Capture Now has reached the end of the tape. All existing footage between the point where you started the capture and the end of the tape was captured successfully."
  Foiled again! This has been a problem from time to time when I want to capture video from a source that does not supply timecode.
  Is there any settings I can change to capture video directly from a camera using FCP without having to record it to tape in one step and then capture it in a second step?
  Thanks,
  Rob:-]
  FCP 5.1.2   Mac OS X (10.4.8)   Dual 1.8GHz Power PC G5, 3GB ram

  I thought I had tried that. Thanks, that was the answer.
  I am aware of the danger of not having tape backup. Having worked with the new Panasonic AG-HVX200 it is a chore to free up the P2 cards fast enough to keep from starving the camera crew. Copying the P2 contents to a single hard drive is the practice but leaves the whole shoot at the mercy of a single point of failure.
  As far as my capturing directly to HD, it isn't a problem for short podcasts that could be recreated quickly if lost. Also, I can still record to tape in the camera but avoid the second step of capture when I'm in my edit bay anyway.
  Peace,
  Rob:-]

• Capturing Video Direct to hard drive with FCS

  I am using a Canon HX A1 and I am wondering if there is any way of capturing video directly to a hard drive while shooting without using Adobe On Location. Does FC have any functionality in this area or is there any other MAC friendly apps that do this?

  You can capture a live feed with FCE, FCP, QT Pro and several other applications. Connect your camera via Firewire, in FCP, set Device Control to ":Non-Controllable Device" and use Capture Now.
  NOTE: whenever using a Canon device for capturing of any type, it would be best to make sure that the Canon device is on it's own Firewire bus. You can achieve this by adding a Firewire card (thereby creating a new FW bus) or by capturing only to an internal hard drive.
  -DH

• OIM 11g-configure SoD so that it works for direct provisioning of the roles

  Dear All,
  page 23-3 of Developer's Guide (OIM 11g) provides information regarding configuration of the SoD for Direct provisioning of the resources. How to configure SoD so that it works for direct provisioning of the roles?
  Thank you for your time
  Maria

  Rajiv,
  I did not find the documentation regarding this. But I hoped I will.
  In my project we assign roles directlly, not resources.
  I suspect the integration with Role Manager is required in this case. SoD module in OIA should be used then.
  Maria

• Can you capture images directly from a fuji camera - Fine Pix S2pro

  can you capture images directly from a fuji camera -- Fine Pix S2pro or Fine Pix S2pro to a imac running 10.6.5
  camera tethered to the imac

  Page 76. Thanks!!!
  You can quickly open Camera when the screen is locked by double-clicking the Home button, then tapping          .

• How do I capture video directly to my MacBook?

  I use Sony PD-150 and MacBook Pro with FCP5
  I tried to capture video directly to my MacBook Hard Drive
  without using a tape but it keeps waiting for timecode
  to be set and going nowhere.
  I am pretty sure that there is way to record
  directly to hard drive without going through
  recording to tape and from tape to hard drive
  but can't find the solution.
  Can you guys help me out on this issue?
  thanks in advance!

  I am pretty sure that there is way to record
  directly to hard drive without going through
  recording to tape and from tape to hard drive
  but can't find the solution.<
  Ian's answer is spot on.
  We see this post about once a week so you can scroll down or search the forum and find all of the reasons recording directly to your drive is not recommended.
  bogiesan

• Can ZAM capture local Administrators from client?

  Hi, my first time posting here. My organization uses Zenworks 11 SP1 (ZCM and ZAM). Can ZAM be configured to capture members of the local administrators group off of the client? Our client machines are Windows XP SP3, and local administrators can be found at My Computer-Manage-Local Users and Groups-Groups-Administrators on the client.
  Our client services guys know ZAM much better than I do and they have never been able to find how to do this. I'm writing a custom app that needs requires this data. We have a workaround process in place, but it's a little clunky and it would really be ideal if we had a way to just capture this directly into ZAM since the large majority of the other data I need is already coming from ZAM. Was just wondering if any Zenworks gurus out there could shed a little light. Thank you in advance for any replies.

  Chris,
  It appears that in the past few days you have not received a response to your
  posting. That concerns us, and has triggered this automated reply.
  Has your problem been resolved? If not, you might try one of the following options:
  - Visit http://support.novell.com and search the knowledgebase and/or check all
  the other self support options and support programs available.
  - You could also try posting your message again. Make sure it is posted in the
  correct newsgroup. (http://forums.novell.com)
  Be sure to read the forum FAQ about what to expect in the way of responses:
  http://forums.novell.com/faq.php
  If this is a reply to a duplicate posting, please ignore and accept our apologies
  and rest assured we will issue a stern reprimand to our posting bot.
  Good luck!
  Your Novell Product Support Forums Team
  http://forums.novell.com/

• How do I direct all internet traffic I on my firefox portable browser I use at school, through to my computer at home, so I can use my modem as a proxy?

  My school has a web filter that prevents me from accessing any website I want to at school, and I want to get past it.
  I know, from experience, that I can use a program called Ultrasurf to get around this, though it requires me to use IE, and is inconvenient.
  I want to know if it's possible to configure the proxy settings on Firefox (and some on my modem/router, and/or computer at home), in order to direct all my traffic through my router at home, similarly to how one would use a proxy.
  If so, how is this possible?
  (I'm relatively experienced with computers, but have very little programming, and other complex knowledge of the workings of these things)
  At home, my computer is running 64 bit Windows 7, has 4 GB of RAM, a 2.1GHz Intel Core 2 Duo processor, and can be turned on and online 24/7, such that if necessary, it can direct traffic sent to it.
  My router/modem at home is (I believe) a Westell 327W, I can get more information by looking at it later if necessary.
  At school, as of last year (and probably the same this year), the computers run Windows XP, and I am able to run programs installed on a flash drive on them, though cannot actually install programs on the computers themselves.
  I'll be using whatever the latest (not beta) version of Firefox Portable exists when I return to school in a week.

  My school has a web filter that prevents me from accessing any website I want to at school, and I want to get past it.
  I know, from experience, that I can use a program called Ultrasurf to get around this, though it requires me to use IE, and is inconvenient.
  I want to know if it's possible to configure the proxy settings on Firefox (and some on my modem/router, and/or computer at home), in order to direct all my traffic through my router at home, similarly to how one would use a proxy.
  If so, how is this possible?
  (I'm relatively experienced with computers, but have very little programming, and other complex knowledge of the workings of these things)
  At home, my computer is running 64 bit Windows 7, has 4 GB of RAM, a 2.1GHz Intel Core 2 Duo processor, and can be turned on and online 24/7, such that if necessary, it can direct traffic sent to it.
  My router/modem at home is (I believe) a Westell 327W, I can get more information by looking at it later if necessary.
  At school, as of last year (and probably the same this year), the computers run Windows XP, and I am able to run programs installed on a flash drive on them, though cannot actually install programs on the computers themselves.
  I'll be using whatever the latest (not beta) version of Firefox Portable exists when I return to school in a week.

• Cisco 3850 Mobility Agent unable to connect clients

  Hi
  We are trying to use Cisco 3850 as Mobility agents with 5760. We can't seem to get the clients to authenticate to the radius server. We don't even see them appear in the radius logs.
  We have defined the radius server and the profile
  wlan Wireless 2 WAP
  aaa-override
  accounting-list Radius
  client vlan wireless
  security dot1x authentication-list Radius
  session-timeout 1800
  no shutdown
  radius server Primary
  address ipv4 x.x.x.x auth-port 1812 acct-port 1813
  timeout 5
  retransmit 2
  key 7 ........
  radius server Primary
  address ipv4 x.x.x.x port 1812 acct-port 1813
  timeout 5
  retransmit 2
  key 7 .........
  The client appears to connect to the AP but can't authenticate so gets kicked off
  If we do a test aaa group username password then it says that it's sucessful.
  In the debug we get 802.1X required but then it never seems to get any further.

  Alright, so I finally figured out the issue with this. I had a Mobility Anchor set on the guest WLAN and once I removed that all started working again.
  What is Mobility Anchor?
  A. Mobility Anchor, also referred to as Guest tunneling or Auto Anchor Mobility, is a feature where all the client traffic that belongs to a WLAN (Specially Guest WLAN) is tunneled to a predefined WLC or set of controllers that are configured as Anchor for that specific WLAN. This feature helps to restrict clients to a specific subnet and have more control over the user traffic. Refer to the Configuring Auto-Anchor Mobility section of Cisco Wireless LAN Controller Configuration Guide, Release 7.0 for more information on this feature.

• Routing back to Direct Access Clients - is this possible?

  Hi,
  We have been using direct access for the past few months successfully, however the one problem we are still having is we can't use programs that require a route back to the Direct Access client (such as managing a Hyper-V machine on the local lan), using SourceOffsite
  or even using Remote Desktop to remote onto a direct access client or ping the direct access client.
  Our local LAN uses Ipv4 and we can route fine to the Direct Access clients from the Direct Access Server where the tunnel terminates but not from any other machine on the network. Do I need to change the direct access configuration to allow this or do I need
  to somehow create a route on my LAN for the direct access clients?
  Thanks in advance
  David

  I found out how to do this in this useful article and tested it and it is working fine - thanks.
  http://www.packtpub.com/article/configuring-manage-out-to-directaccess-clients

• WIndows 8.1 Direct Access Client Needs to approve external wifi use before it connects - proxy not responding

  Ok So I have windows 8.1 with Direct Access Client and it works fine when I am able to check and uncheck proxy settings - which is a bit of a pain and seems unnecessary (I hope). If I take the laptop to a Starbucks I get the error that the proxy server is
  not responding so it never redirects for me to "accept" the rules.
  If I uncheck my proxy settings it then redirects and connects to their internet wifi and off I go - DA connects and all is well.
  I am using a GPO to configure the proxy settings as shown (all options are greyed out for the users)

  Hi,
  Your problem is a classic one when using that kind of proxy settings, unfortunately.
  To solve this without the need of user interaction, there are two solutions that will sort this out for you. In your case, if you want to use your corporate connection for internet traffic even over da, I'd opt for alternative 1 or 2 depending on what you are
  trying to achieve.
  1. WPAD (Web Proxy Auto Discovery protocol http://en.wikipedia.org/wiki/Web_Proxy_Autodiscovery_Protocol) - it actually uses the Automatic browser configuration checkbox on your client and looks for the file wpad.dat on a specific web server that you Pointout
  with either dns-record called wpad or DHCP option 252.
  2. Auto configuration script (pac script http://en.wikipedia.org/wiki/Proxy_auto-config) - uses the same kind of file as above. The difference is that you get the possiblity, like you want in your scenario to target what users that should get the script.
  See this below article for more details on the options you have.
  http://technet.microsoft.com/en-us/library/dd361918.aspx
  http://techlib.barracuda.com/display/WSFLEXv41/How+to+Configure+Proxy+Settings+Using+Group+Policy+Management
  Let us know if you need further assistance!
  /Johan
  MCT | MCSE: Private Cloud/Server, Desktop Infrastructure

• Cisco WAP4410N - not configurable as Wireless Client with WRT610N?

  Hi!
  On several workstations I use multiple network to
  1 - access Internet and share Printers
  2 - communicate within the local area
  The second WLAN I need for several NDAS devices.
  Due to their own LPX-Protocol these NDAS devices don't work properly with MAC address cloning. In combination with several access points or clients from other manufacturers Wireless N transmission does not work.
  So in WLAN 2 I use the Cisco Linksys WRT 610N Router with 2.4 Ghz WLAN.
  I intended to use the Cisco WAP4410N in Client Mode to connect a workstation with this router and set up NDAS connection.
  Other workstations will directly connect to the router via Cisco Linksys WUSB-600N.
  The connection from WUSB-600N to WRT610N works perfectly.
  My problem is:
  The WAP4410N does not connect to a wireless Network in Client Mode.
  (It is not a problem of Channel configuration, Security or Signal strength - because if I connect my workstation via WUSB-600 this works instantly.)
  If setup as an access Point it will start up sending competing to my router.
  In Network Status it shows no received packages.
  In Wireless Client/Repeater Mode there is no connection either.
  My question is:
  Is the WAP4410N not designed to be used as a Wireless Client?
  An if it was - how is it to be set up as one?
  Thanks
  ando_user

  Hi!
  On several workstations I use multiple network to
  1 - access Internet and share Printers
  2 - communicate within the local area
  The second WLAN I need for several NDAS devices.
  Due to their own LPX-Protocol these NDAS devices don't work properly with MAC address cloning. In combination with several access points or clients from other manufacturers Wireless N transmission does not work.
  So in WLAN 2 I use the Cisco Linksys WRT 610N Router with 2.4 Ghz WLAN.
  I intended to use the Cisco WAP4410N in Client Mode to connect a workstation with this router and set up NDAS connection.
  Other workstations will directly connect to the router via Cisco Linksys WUSB-600N.
  The connection from WUSB-600N to WRT610N works perfectly.
  My problem is:
  The WAP4410N does not connect to a wireless Network in Client Mode.
  (It is not a problem of Channel configuration, Security or Signal strength - because if I connect my workstation via WUSB-600 this works instantly.)
  If setup as an access Point it will start up sending competing to my router.
  In Network Status it shows no received packages.
  In Wireless Client/Repeater Mode there is no connection either.
  My question is:
  Is the WAP4410N not designed to be used as a Wireless Client?
  An if it was - how is it to be set up as one?
  Thanks
  ando_user

• Windows Server 2012 - Direct Access clients and the Windows 8 firewall

  Hi,
  We're running a simple proof-of-concept for Server 2012 Direct Access, we have a single DA server behind a firewall using NAT. We have a number of client devices setup for DA and running Windows 8.
  Our issue is that we can only get the Windows 8 direct access clients to connect (when outside the corporate network) and work with the windows firewall disabled (public network profile). 
  With the windows firewall disabled everything works exactly as expected. When outside the corporate network the client detects the network state (public network profile), connects via DA and all internal resources can be accessed successfully...fantastic.
  Is there some specific guidance on manually configuring the windows 8 firewall for Direct Access ? We've tried the obvious TCP:443 with edge traversal enabled but without success.
  Much of the information we have found relates to UAG rather than Windows 2012 DA.
  Any assistance is appreciated.

  Hi,
  There isn’t any specific configuration on the firewall.
  Just confirm that port 443 can be forwarded to DirectAccess server.
  Of course, make sure you are using IPsec first.
  Check the links:
  STEP 6: Test DirectAccess Client Connectivity from Behind a NAT Device
  http://technet.microsoft.com/en-us/library/hh831524.aspx#TeredoCLIENT1
  DirectAccess for Windows Server 2012 Installation & Configuration Guide
  http://syscomlab.blog.com/2012/09/directaccess-for-windows-server-2012-guide/
  Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Report Print Directly to Client Printer in Linux

  Hi,
  I m doing migration of Forms and Reports from 6i to 10g.
  In this 6i form contain the Direct Report Print to Client Printer.
  But in 10g, How to achive this,
  I don't want to show the report in screen, i want directly report goes to Client Default Printer for Printing Purpose.
  Can any one tel me if you have any solution.
  Thanks
  Gany

  Thanks For you reply,
  I already tried this, But I don't Know ,how to create Java Bean.
  So Any Other Method is there.
  If Any one know any other Solution for Print Directly to Client Printer.
  Thanks,
  Gany