Configuring DW for sites

Hi -
I've just installed a trial version of CS5.5 having been using CS3 for the last few years. It's very different and I was wondering if there were helpful tutorials/procedures specifically for configuring after installation.
In particular at the moment:
It takes around 5 minutes to load DW with my main site as the default site (it's a very large site), and this seems to mainly be taken up by 'loading site cache'. Should I expect it to take this much time, and are there options that I could change that would reduce this? When it is loaded, there is a general lag between clicking and typing and anything happening. Should I expect this as it is now linking several documents together (css/js/etc) or is this a configuration setting. My PC is new and pretty well specified.
I can't seem to work out the 'dynamic sites' function, which is new to this version (as far as I'm aware). Any setup documentation/tutorials that are useful here would be good.
CSS - the design view is pretty much useless at the moment - would this be helped if I had the dynamic sites function working properly.
And any other suggestions for getting set up and trying out this version without going back to scratch would be gratefully received!
Regards, Steve.

Steve,
It sounds like you are working directly on a remote webserver. That isn't the normal way to work in DW. Normally you will set up a testing server on your local computer. If you are using PHP/MySQL, then you will also need to set up a webserver locally. I use the free ZEND Server community edition. Many people use XAMPP. You will also connect to a local copy of the database.
When using a testing server you upload files to the remove server only when you have finished working on them. DW has a "Maintain synchronization information" option in the site setup (advanced), but I prefer to maintain synchronization manually because often I work on one script for days whereas other scripts need to be updated right away.
Regarding Design View. Many users are disappointed by it. I have no use for it anyway, so it doesn't bother me.
I also don't use the dynamic sites function because I write my own code, so someone else may offer you suggestions there.

Similar Messages

  • Configuring 1142 to use for site survey.

    Just got in a bunch of the 1142 N-A-K9 APs. I need to set them up to do a site survey with.
    Don't seem to be able to find anything on the site.
    Has anyone used yet for site surveys? The radios are off by default.

    You can survey with 1142. You can do two ways in lightweight mode. One would be to use it with 2106. This could be cumbersome as you have to carry around UPS so you can power the 2106 and use PoE on 2106 to power 1142. This way you can adjust channels and power levels on the AP as you see fit from cell to cell. Second method would be to configure the AP for HREAP mode on the controller and assign your custom power levels and channels. Then you can just use that AP without the controller to survey and power it up thru a PoE battery pack. The custom power levels stay on both 2.4 and 5 GHZ radios but channel only stays on 2.4GHz. Due to FCC and DFSS the 5GHz channel will most likely change each time you boot the AP. If you keep the AP on the battery pack for the duration of the survey it will stay on the same channels. So the negative to the HREAP mode survey is that you can't adjust channels and power levels as you move from cell to cell easily as you would have to connect it back up to the controller. Surveying with 1142 is helpful as from my experience they have a better footprint than 1131s. Hope this helps.

  • How can I Create a Client Configuration File for RemoteApp and Desktop Connection with Server 2012?

    I have a working RDS RemoteApp site and looking to test out the feature in Windows 7 Control Panel\All Control Panel Items\RemoteApp and Desktop Connections
    I came across this link: Create a Client Configuration File for RemoteApp and Desktop Connection and I believe this is what I need to do first, but these instructions are for
    Server 2008, and I'm running 2012.
    Any suggestions or tips on how I can begin testing this with Server 2012?

    Hi,
    You can manually enter the path to the 2012 feed and it will connect and download the RemoteApps and Desktop connections.
    If you need a sample .wcx file I have posted one here a couple of times.  If you want I will look for it and post a link.
    -TP
    I tried adding my URL's below, these are sample links that work for me right now for when I log into the web page, but neither of these work.  And I'm not sure what I would need to do with or how to create a .wcx file.
    When I type in my URL of: https://connect.mydomain.org/RDWeb, I get redirected to: 
    https://connect.mydomain.org/RDWeb/Pages/en-US/login.aspx?ReturnUrl=/RDWeb/Pages/en-US/Default.aspx

  • Failed to create machine self-signed certificate for site role [SMS_SQL_SERVER]

    SCCM 2012 has been successfully installed on the server:
    SRVSCCM.
    The database is on SQL Server 2008 R2 SP1 CU6 Failover Cluster (CLS-SQL4\MSSQLSERVER04)
    Cluster nodes: SQL01 and SQL01. On all nodes made necessary the Security Setup of SCCM. No errors and warning on SCCM Monitoring.
    The cluster service is running on the account: sqlclusteruser
    The account has the appropriate SPN are registered:
    setspn -L domain\sqlclusteruser
    Registered ServicePrincipalNames for CN=SQL Cluster,OU=SQL,OU=Users special,OU=MAIN,DC=domain,DC=local:
    MSSQLSvc/CLS-SQL4
    MSSQLSvc/CLS-SQL4.domain.local
    MSSQLSvc/CLS-SQL4:11434
    MSSQLSvc/CLS-SQL4.domain.local:11434
    After some time on the cluster hosts every day started appearing new folders with files inside:
    srvboot.exe
    srvboot.ini
    srvboot.log
    srvboot.log contains the following information:
    SMS_SERVER_BOOTSTRAP_SRVSCCM.domain.local_SMS_SQL_SERVER started.
    Microsoft System Center 2012 Configuration Manager v5.00 (Build 7711)
    Copyright (C) 2011 Microsoft Corp.
    Command line: "SMS_SERVER_BOOTSTRAP_SRVSCCM.domain.local_SMS_SQL_SERVER CAS K:\SMS_SRVSCCM.domain.local_SMS_SQL_SERVER8 /importcertificate SOFTWARE\MicrosoftCertBootStrap\ SMS_SQL_SERVER".
    Set current directory to K:\SMS_SRVSCCM.domain.local_SMS_SQL_SERVER8.
    Site server: SRVSCCM.domain.local_SMS_SQL_SERVER.
    Importing machine self-signed certificate for site role [SMS_SQL_SERVER] on Server [SQL01]...
    Failed to retrieve SQL Server service account.
    Bootstrap operation failed: Failed to create machine self-signed certificate for site role [SMS_SQL_SERVER].
    Disconnecting from Site Server.
    SMS_SERVER_BOOTSTRAP_SRVSCCM.domain.local_SMS_SQL_SERVER stopped.

    The site server is trying to install the sms_backup agent on the SQL Server Cluster nodes.
    Without successfull bootstrap the siteserver backup is not able to run successfully.
    Try grant everyone the read permisson on
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SMS on the SQL server nodes.
    This worked for me.
    After that a Folder named "SMS_<SITESERVER-FQDN>" appeared on C: on the SQL Cluster nodes, and a "SMS_SITE_SQL_BACKUP_FQDN" Service should be installed.
    After the new Folder is created and the new Service is installed, you can safely remove the bootstrap Service by opening a command prompt and enter:
    sc delete "SMS_SERVER_BOOTSTRAP_FQDN-of-SiteServer_SMS_SQL_SERVER"

  • ColdFusion 11 wsconfig.exe -- Error while configuring connector for IIS.

    I ran into a problem with my ColdFusion 11 64-bit installation/migration on a Windows Server 2012 R2/IIS 8.5.  I was following the ColdFusion 11 Lockdown Guide - Pete Freitag (very helpful) and I ran into problems on page 35 "Run the ColdFusion Web Server Configuration Tool".  When I attempted to do this for ALL IIS websites I encountered a Windows error [APPCRASH - Exception Code:c0000005].  Also, note my Administrator-Command Prompt window provided this error message "Error while configuring connector for IIS. Make sure you have administrator privileges".  However, I did not experience this error with all of the migrated sites.  I traced my steps backward to discover the problem.  I used the Microsoft Web Deployment tool (good tool) to migrate the old IIS websites to the new IIS.  I utilized Metabase Explorer the IIS 6.0 Resource Tools to discover that some of the migrated sites that were crashing did not have the key/value ID:6006 | Name: DefaultDoc.  Once I added this key and redeployed the site the ColdFusion 11 connector (wsconfig.exe) worked fine.  In addition, I added this key/value to some of the larger previously migrated sites in IIS 8.5 ("Default Document") and it worked with the connector as well. 
    Knowing how IIS encapsulates information the DefaultDoc key/value should have passed from the website setting.  Why would this make wsconfig.exe crash?
    Thanks in advance and I hope this saves someone from hours of research and frustration.

    DiscoDelight,
    Have you forwarded this information directly to the ColdFusion product team?  If not, I'll try to draw their attention to it.  Only a few of them are active on these forums, so this issue might be overlooked.
    -Carl V.
    EDIT: I just pinged them on Twitter to take a look at this post.
    EDIT #2: They just pinged me back that they are looking into it.

  • Need help in configuring Client to Site IPSec VPN with Hairpinning on Cisco ASA5510 8.2(1)

    Need urgent help in configuring Client to Site IPSec VPN with Hairpinning on Cisco ASA5510 - 8.2(1).
    The following is the Layout:
    There are two Leased Lines for Internet access - 1.1.1.1 & 2.2.2.2, the latter being the Standard Default route, the former one is for backup.
    I have been able to configure  Client to Site IPSec VPN
    1) With access from Outside to only the Internal Network (172.16.0.0/24) behind the asa
    2) With Split tunnel with simultaneous assess to internal LAN and Outside Internet.
    But I have not been able to make tradiotional Hairpinng model work in this scenario.
    I followed every possible sugestions made in this regard in many Discussion Topics but still no luck. Can someone please help me out here???
    Following is the Running-Conf with Normal Client to Site IPSec VPN configured with No internat Access:
    LIMITATION: Can't Boot into any other ios image for some unavoidable reason, must use 8.2(1)
    running-conf  --- Working  normal Client to Site VPN without internet access/split tunnel
    ASA Version 8.2(1)
    hostname ciscoasa
    domain-name cisco.campus.com
    enable password xxxxxxxxxxxxxx encrypted
    passwd xxxxxxxxxxxxxx encrypted
    names
    interface GigabitEthernet0/0
    nameif internet1-outside
    security-level 0
    ip address 1.1.1.1 255.255.255.240
    interface GigabitEthernet0/1
    nameif internet2-outside
    security-level 0
    ip address 2.2.2.2 255.255.255.224
    interface GigabitEthernet0/2
    nameif dmz-interface
    security-level 0
    ip address 10.0.1.1 255.255.255.0
    interface GigabitEthernet0/3
    nameif campus-lan
    security-level 0
    ip address 172.16.0.1 255.255.0.0
    interface Management0/0
    nameif CSC-MGMT
    security-level 100
    ip address 10.0.0.4 255.255.255.0
    boot system disk0:/asa821-k8.bin
    boot system disk0:/asa843-k8.bin
    ftp mode passive
    dns server-group DefaultDNS
    domain-name cisco.campus.com
    same-security-traffic permit inter-interface
    same-security-traffic permit intra-interface
    object-group network cmps-lan
    object-group network csc-ip
    object-group network www-inside
    object-group network www-outside
    object-group service tcp-80
    object-group service udp-53
    object-group service https
    object-group service pop3
    object-group service smtp
    object-group service tcp80
    object-group service http-s
    object-group service pop3-110
    object-group service smtp25
    object-group service udp53
    object-group service ssh
    object-group service tcp-port
    object-group service udp-port
    object-group service ftp
    object-group service ftp-data
    object-group network csc1-ip
    object-group service all-tcp-udp
    access-list INTERNET1-IN extended permit ip host 1.2.2.2 host 2.2.2.3
    access-list CSC-OUT extended permit ip host 10.0.0.5 any
    access-list CAMPUS-LAN extended permit tcp 172.16.0.0 255.255.0.0 any eq www
    access-list CAMPUS-LAN extended permit tcp 172.16.0.0 255.255.0.0 any eq https
    access-list CAMPUS-LAN extended permit tcp 172.16.0.0 255.255.0.0 any eq ssh
    access-list CAMPUS-LAN extended permit tcp 172.16.0.0 255.255.0.0 any eq ftp
    access-list CAMPUS-LAN extended permit udp 172.16.0.0 255.255.0.0 any eq domain
    access-list CAMPUS-LAN extended permit tcp 172.16.0.0 255.255.0.0 any eq smtp
    access-list CAMPUS-LAN extended permit tcp 172.16.0.0 255.255.0.0 any eq pop3
    access-list CAMPUS-LAN extended permit ip any any
    access-list csc-acl remark scan web and mail traffic
    access-list csc-acl extended permit tcp any any eq smtp
    access-list csc-acl extended permit tcp any any eq pop3
    access-list csc-acl remark scan web and mail traffic
    access-list INTERNET2-IN extended permit tcp any host 1.1.1.2 eq 993
    access-list INTERNET2-IN extended permit tcp any host 1.1.1.2 eq imap4
    access-list INTERNET2-IN extended permit tcp any host 1.1.1.2 eq 465
    access-list INTERNET2-IN extended permit tcp any host 1.1.1.2 eq www
    access-list INTERNET2-IN extended permit tcp any host 1.1.1.2 eq https
    access-list INTERNET2-IN extended permit tcp any host 1.1.1.2 eq smtp
    access-list INTERNET2-IN extended permit tcp any host 1.1.1.2 eq pop3
    access-list INTERNET2-IN extended permit ip any host 1.1.1.2
    access-list nonat extended permit ip 172.16.0.0 255.255.0.0 172.16.0.0 255.255.0.0
    access-list DNS-inspect extended permit tcp any any eq domain
    access-list DNS-inspect extended permit udp any any eq domain
    access-list capin extended permit ip host 172.16.1.234 any
    access-list capin extended permit ip host 172.16.1.52 any
    access-list capin extended permit ip any host 172.16.1.52
    access-list capin extended permit ip host 172.16.0.82 host 172.16.0.61
    access-list capin extended permit ip host 172.16.0.61 host 172.16.0.82
    access-list capout extended permit ip host 2.2.2.2 any
    access-list capout extended permit ip any host 2.2.2.2
    access-list campus-lan_nat0_outbound extended permit ip 172.16.0.0 255.255.0.0 192.168.150.0 255.255.255.0
    pager lines 24
    logging enable
    logging buffered debugging
    logging asdm informational
    mtu internet1-outside 1500
    mtu internet2-outside 1500
    mtu dmz-interface 1500
    mtu campus-lan 1500
    mtu CSC-MGMT 1500
    ip local pool vpnpool1 192.168.150.2-192.168.150.250 mask 255.255.255.0
    ip verify reverse-path interface internet2-outside
    ip verify reverse-path interface dmz-interface
    ip verify reverse-path interface campus-lan
    ip verify reverse-path interface CSC-MGMT
    no failover
    icmp unreachable rate-limit 1 burst-size 1
    asdm image disk0:/asdm-621.bin
    no asdm history enable
    arp timeout 14400
    global (internet1-outside) 1 interface
    global (internet2-outside) 1 interface
    nat (campus-lan) 0 access-list campus-lan_nat0_outbound
    nat (campus-lan) 1 0.0.0.0 0.0.0.0
    nat (CSC-MGMT) 1 10.0.0.5 255.255.255.255
    static (CSC-MGMT,internet2-outside) 2.2.2.3 10.0.0.5 netmask 255.255.255.255
    access-group INTERNET2-IN in interface internet1-outside
    access-group INTERNET1-IN in interface internet2-outside
    access-group CAMPUS-LAN in interface campus-lan
    access-group CSC-OUT in interface CSC-MGMT
    route internet2-outside 0.0.0.0 0.0.0.0 2.2.2.5 1
    route internet1-outside 0.0.0.0 0.0.0.0 1.1.1.5 2
    timeout xlate 3:00:00
    timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
    timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
    timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
    timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
    timeout tcp-proxy-reassembly 0:01:00
    dynamic-access-policy-record DfltAccessPolicy
    aaa authentication ssh console LOCAL
    aaa authentication enable console LOCAL
    http server enable
    http 10.0.0.2 255.255.255.255 CSC-MGMT
    http 10.0.0.8 255.255.255.255 CSC-MGMT
    http 1.2.2.2 255.255.255.255 internet2-outside
    http 1.2.2.2 255.255.255.255 internet1-outside
    no snmp-server location
    no snmp-server contact
    snmp-server enable traps snmp authentication linkup linkdown coldstart
    crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
    crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
    crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
    crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
    crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
    crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
    crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
    crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
    crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
    crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
    crypto ipsec security-association lifetime seconds 28800
    crypto ipsec security-association lifetime kilobytes 4608000
    crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group5
    crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
    crypto map internet2-outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
    crypto map internet2-outside_map interface internet2-outside
    crypto ca trustpoint _SmartCallHome_ServerCA
    crl configure
    crypto ca certificate chain _SmartCallHome_ServerCA
    certificate ca xyzxyzxyzyxzxyzxyzxyzxxyzyxzyxzy
            a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as a67a897as
        a67a897as a67a897as a67a897as a67a897as a67a897as
      quit
    crypto isakmp enable internet2-outside
    crypto isakmp policy 10
    authentication pre-share
    encryption aes
    hash md5
    group 2
    lifetime 86400
    telnet 10.0.0.2 255.255.255.255 CSC-MGMT
    telnet 10.0.0.8 255.255.255.255 CSC-MGMT
    telnet timeout 5
    ssh 1.2.3.3 255.255.255.240 internet1-outside
    ssh 1.2.2.2 255.255.255.255 internet1-outside
    ssh 1.2.2.2 255.255.255.255 internet2-outside
    ssh timeout 5
    console timeout 0
    threat-detection basic-threat
    threat-detection statistics access-list
    no threat-detection statistics tcp-intercept
    webvpn
    group-policy VPN_TG_1 internal
    group-policy VPN_TG_1 attributes
    vpn-tunnel-protocol IPSec
    username ssochelpdesk password xxxxxxxxxxxxxx encrypted privilege 15
    username administrator password xxxxxxxxxxxxxx encrypted privilege 15
    username vpnuser1 password xxxxxxxxxxxxxx encrypted privilege 0
    username vpnuser1 attributes
    vpn-group-policy VPN_TG_1
    tunnel-group VPN_TG_1 type remote-access
    tunnel-group VPN_TG_1 general-attributes
    address-pool vpnpool1
    default-group-policy VPN_TG_1
    tunnel-group VPN_TG_1 ipsec-attributes
    pre-shared-key *
    class-map cmap-DNS
    match access-list DNS-inspect
    class-map csc-class
    match access-list csc-acl
    policy-map type inspect dns preset_dns_map
    parameters
      message-length maximum 512
    policy-map global_policy
    class csc-class
      csc fail-open
    class cmap-DNS
      inspect dns preset_dns_map
    service-policy global_policy global
    prompt hostname context
    Cryptochecksum: y0y0y0y0y0y0y0y0y0y0y0y0y0y
    : end
    Neither Adding dynamic NAT for 192.168.150.0/24 on outside interface works, nor does the sysopt connection permit-vpn works
    Please tell what needs to be done here, to hairpin all the traffic to internet comming from VPN Clients.
    That is I need clients conected via VPN tunnel, when connected to internet, should have their IP's NAT'ted  against the internet2-outside interface address 2.2.2.2, as it happens for the Campus Clients (172.16.0.0/16)
    I'm not much conversant with everything involved in here, therefore please be elaborative in your replies. Please let me know if you need any more information regarding this setup to answer my query.
    Thanks & Regards
    maxs

    Hi Jouni,
    Thanks again for your help, got it working. Actually the problem was ASA needed some time after configuring to work properly ( ?????? ). I configured and tested several times within a short period, during the day and was not working initially, GUI packet tracer was showing some problems (IPSEC Spoof detected) and also there was this left out dns. Its working fine now.
    But my problem is not solved fully here.
    Does hairpinning model allow access to the campus LAN behind ASA also?. Coz the setup is working now as i needed, and I can access Internet with the NAT'ed ip address (outside-interface). So far so good. But now I cannot access the Campus LAN behind the asa.
    Here the packet tracer output for the traffic:
    packet-tracer output
    asa# packet-tracer input internet2-outside tcp 192.168.150.1 56482 172.16.1.249 22
    Phase: 1
    Type: ACCESS-LIST
    Subtype:
    Result: ALLOW
    Config:
    Implicit Rule
    Additional Information:
    MAC Access list
    Phase: 2
    Type: FLOW-LOOKUP
    Subtype:
    Result: ALLOW
    Config:
    Additional Information:
    Found no matching flow, creating a new flow
    Phase: 3
    Type: ROUTE-LOOKUP
    Subtype: input
    Result: ALLOW
    Config:
    Additional Information:
    in   172.16.0.0      255.255.0.0     campus-lan
    Phase: 4
    Type: ROUTE-LOOKUP
    Subtype: input
    Result: ALLOW
    Config:
    Additional Information:
    in   192.168.150.1   255.255.255.255 internet2-outside
    Phase: 5
    Type: ACCESS-LIST
    Subtype: log
    Result: ALLOW
    Config:
    access-group internnet1-in in interface internet2-outside
    access-list internnet1-in extended permit ip 192.168.150.0 255.255.255.0 any
    Additional Information:
    Phase: 6
    Type: IP-OPTIONS
    Subtype:
    Result: ALLOW
    Config:
    Additional Information:
    Phase: 7
    Type: CP-PUNT
    Subtype:
    Result: ALLOW
    Config:
    Additional Information:
    Phase: 8
    Type: VPN
    Subtype: ipsec-tunnel-flow
    Result: ALLOW
    Config:
    Additional Information:
    Phase: 9
    Type: NAT-EXEMPT
    Subtype: rpf-check
    Result: ALLOW
    Config:
    Additional Information:
    Phase: 10
    Type: NAT
    Subtype:     
    Result: DROP
    Config:
    nat (internet2-outside) 1 192.168.150.0 255.255.255.0
      match ip internet2-outside 192.168.150.0 255.255.255.0 campus-lan any
        dynamic translation to pool 1 (No matching global)
        translate_hits = 14, untranslate_hits = 0
    Additional Information:
    Result:
    input-interface: internet2-outside
    input-status: up
    input-line-status: up
    output-interface: internet2-outside
    output-status: up
    output-line-status: up
    Action: drop
    Drop-reason: (acl-drop) Flow is denied by configured rule
    The problem here as you can see is the Rule for dynamic nat that I added to make hairpin work at first place
    dynamic nat
    asa(config)#nat (internet2-outside) 1 192.168.150.0 255.255.255.0
    Is it possible to access both
    1)LAN behind ASA
    2)INTERNET via HAIRPINNING  
    simultaneously via a single tunnel-group?
    If it can be done, how do I do it. What changes do I need to make here to get simultaneous access to my LAN also?
    Thanks & Regards
    Abhijit

  • How do I configure a VPN Site and Subnets in Lync when clients have /32 Addresses?

    Hello,
    I've found a few people asking this question out in the "interwebs" but no one seems to quite answer their question (Those poor souls).
    In most occasions that I've seen, my customers have configured their VPN networks with a /24 (255.255.255.0) ip address.  However, when those clients connect to the VPN they are actually getting a /32 (255.255.255.255) address. 
    This seems to pose an issue for Lync reporting when it comes to configuring a VPN site and VPN subnets.
    (NOTE:You might ask why these customers are not going about best practice and using split-tunneling?  In this case, they absolutely CANNOT institute split-tunneling so all traffic MUST flow through the VPN tunnel.)
    For example sake, here is how I would imagine to setup a VPN site with subnets in Lync Network Configuration:
    VPN (Site)
        -172.16.33.0  /24 (Subnet)
        -172.16.34.0  /24 (Subnet)
        -172.16.35.0  /24 (Subnet)
    The problem is that when I run a Location Report in Lync to look at call data to/from the VPN site, it's not there. Reason being, the VPN client was given a /32 address which doesn't match up to the /24 I configured in Lync. 
    So, in my mind my options are:
    Create a /32 subnet for each single address corresponding to a VPN client and attach them to the VPN site (What a mess).
    Change the subnet mask for the 3 subnets I've defined to /32 instead of /24 and see what happens even though putting an IP address of 172.16.33.0 /32 doesn't make much sense.
    Remove the subnets and site from Lync because CAC and Bandwidth control are actually useless over VPN.
    Any thoughts on this?
    John K. Boslooper | Lync Technical Specialist | Project Leadership Associates
    Phone: 312.448.2269 | www.projectleadership.net

    Jin,
    /32 addresses are a valid subnet mask, however that means that a host with a IP Address of 192.168.23.4 and a subnet mask of 255.255.255.255 (/32) is the ONLY host on that subnet.
    The VPN configuration is correct.  The /32 mask is common with a Juniper VPN  (which is what they are using) and the DHCP server that is handing out the addresses is the Juniper VPN appliance. 
    They have already started working out a plan to use a different internal DHCP relay which should hand out the addresses correctly. 
    There has to be someone else out there with this issue or that can point out that i'm overlooking one key principal with VPN subnets.
    Anyone? 
    John K. Boslooper | Lync Technical Specialist | Project Leadership Associates Phone: 312.448.2269 | www.projectleadership.net

  • Receiver Determination - Configuration Overview for Receiver Determination

    Hi All,
    I was trying on some tutorial for Calling RFC(sender) and creating a File at Receiver site.
    I've configured all the required setting at the Design: Integration Builder.
    As for Configuration: Integration Builder. Until the Step where I required to setup the Receiver Determination, there is this part "Configuration Overview for Receiver Determination". where i have to maintain the "Receiver Service", else i will hit this error "Enter the receiver service".
    The steps which i followed was :
    1. Create 2 Communication Channel for Sender/Receiver in the Business System.
    2. Create a Sender agreement.
    3. Create a Receiver agreement.
    4. Create a Interface determination.
    5. Lastly "Configure the Overview for Receiver Determination"  for   Receiver Determination
    The problem which I'm facing now is I have nothing in the "Configure the Overview for Receiver Determination" at all even i have created the sender/receiver agreement and interface determination.
    While some troubleshooting, under the If No Receiver Is Found, Proceed as Follows: I tried choosing the "Continue Message Processing with the Following Receiver" radio button and choose the Receiver for the Service then hit the save button.
    The error "Enter the receiver service". pop up but now, the Receiver service was shown under the "Configure the Overview for Receiver Determination". When i try choosing back the "Terminate Message Processing with Error (Restart Possible) and hit the Save button. The Receiver service goes missing again.
    Any Idea what happen ? or anything i missed out ? thanks in advance.

    Hello
    Check if you have the issue in the kba #1538009 Error When Executing Open - Object not found.
    Also see note #1466011 Usability Improvements in Directory:
    o Don't show deleted objects in navigation tree
    When you delete an object in Directory the link to this object is not
    automatically deleted from Configuration Scenario. You need to manually
    open every scenario and remove such 'broken' link. In scenario editor
    broken links are displayed in grey font and therefore can be easily
    identified. Unfortunately the navigation tree in 7.1 (in contrast to
    XI3.0) doesn't make difference between existing and broken links and
    shows them as they all leads to existing objects.
    Regards
    Mark

  • Any idea, Eventid for Subnet creation\deletion in AD? Eventid for Site creation\deletion in AD?

    Any idea, Eventid for Subnet created\deleted in AD? Eventid for Site created\deleted in AD?

    If you just want to know when those sites and subnets have been created, you can just look at their whenCreated attributes. If you want to track subnet and site creation in real time, you need to enable the audit.
    Enabling the audit consists of two steps:
    Enabling the audit of the category of your choice. If you are using the
    old way to performing auditing, it is the category Audit directory service access. If you are using the
    advanced auditing (available since Windows Server 2008 and higher versions, more granular) you have two options. The category DS Access/Audit Directory Service Access and/or DS
    Access/Audit Directory Changes. The first one generate the same eventid for creation and deletion: 4662. The second one have an eventid for the creation: 5137 and one for the deletion: 5141
    These audit settings need to be applied on the domain controllers therefore you can do that through a group policy link at the appropriate level.
    You need to configure the
    SACL of the resources you want to audit. And tell you want to catch child object creation and child object deletion. I believe this is already configured by default for the CN=Sites on the configuration partition, so just make sure and you should be good
    to go
    I would recommended to go for the advanced auditing, make sure you follow the steps mentioned on the links I provided. If there is already a policy in place, make sure you are not breaking anything :)

  • Failed to load the configuration file for the workflow

    Hi experts, yesterday I created and publish custom workflow using SPD from client pc using site administrator account but today its shows error message. I tried creating new test workflows, edit and publish to think it will push a fresh SPD settings
    in working condition and it works pretty right.
    But the thing I noticed after closing SPD Im not able to re-open workflows and it gives the same error message Failed to load the configuration file for the workflow. This issue only happen today since day one  I used SPD and all the time
    Im using the same pc.
    Any ideas will be appreciated.
    Cheers, R2C3 ----------------------------------- starting sharepoint :)

    HI
    Maybe you have permission problem or there is invalid xoml murkup.
    To verify this from SharePoint Designer use the following steps.
    In Office SharePoint Designer, in the folder list, select the plus sign next to Workflows library to expand it
    1.Next select the plus sign of the workflow in question to expand it
    2.Double-click the configuration file (Workflow_name.xoml.wfconfig.xml) to open it
    3.Right-click on the page, and then select Verify well-formed XML
    4.Correct any errors and save the file
    5.Reopen the workflow to test
    Also double check that you are using SPD with the same credentials you created workflow
    Hope this will help.
    Regards,
    Marcin

  • Failed to load configuration file for the workflow

    There are two of us who have full control on our Sharepoint 2013 site. I'm able to create workflows and publish them fine. The other user is able to create workflows, but he gets an error when trying to run them. I  tried opening his workflow and got
    the error "Failed to load configuration file for the workflow."
    Any ideas?

    Hi Carltonw1,
    Based on your description, I recommend to verify the things below:
    Clear the SharePoint Designer cache and then open the workflow.
    Ask the user to open the workflow in SharePoint Designer and check if the workflow contains error.
    Ask the user to create the same workflow and associated with another list to see how it works.
    Check the ULS log for more detailed error message.
    To reproduce this issue, could you please provide the detailed steps in the workflow for further research?
    Thanks,
    Victoria
    Forum Support
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
    [email protected]
    Victoria Xia
    TechNet Community Support

  • Approval Setup for SIT

    Hi,
    I want to setup AME for SIT in employee self service.
    Can any one let me know the step by step process.
    Regards,
    Vamsee Krishna

    360515.1, which gives a functional and technical view of how Self-Service Human Resources (SSHR) uses AME for approvals.
    Page 8-6 in the Oracle Self–Service Human Resources implementation guide gives Configuring SSHR Approval Levels in AME. You can download the guide from Metalink Note 211557.1
    http://apps2fusion.com/apps-training/apps-functional-documents/ame-sshr
    hope thats helps you
    Regz,
    ApPsSMAsTi
    SharIN IS CAriNG

  • Configure nwds update site

    Hi All ,
    Is there a way to configure nwds update site on sap netweaver 7.1 server that is not CE , for example on PI 7.1 server .
    I have deployed the to SCAs of tupdate site to Pi 7.1 , but I can't synchronize my  updates ,
    Regards ,
    Oren

    Hi Oren,
    I don't think that specifying the update site of the Developer Studio depends on the server. If I understand correctly your question, you have to go to Help -> Manage Update Sites to configure the URL of the update site. Was this your question?
    Best regards,
    Ekaterina

  • I tried to update itunes to the latest version yet it wont update. Im currently getting a error message,from  Window Installer, configuration dat for this product is corru

    I'm trying to update itunes but not very successful and im not making much progress.  Im currently getting a message on the screen from Window Installer quoting configuration data for this product is corrupt while trying

    The path 'C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Apple\Apple Software Update\iTunes.msi' cannot be found.  Verify that you have access to this location and try again, or try to find the installation package 'iTunes.msi' in a folder from which you can install the product iTunes.
    Unfortunately, this sort of trouble has gotten more complicated to deal with ever since Microsoft pulled the Windows Installer CleanUp utility from their Download Center on June 25. First we have to find a copy of the utility.
    Let's try Googling. (Best not to use Bing, I think.) Look for a working download site for at least version 3.0 of the Windows Installer CleanUp utility. After downloading the utility installer file (msicuu2.exe), scan the file for malware, just in case. (I use the free version of Malwarebytes AntiMalware to do single-file scans for that.)
    If the file is clean, to install the utility, doubleclick the msicuu2.exe file you've downloaded.
    Now run the utility ("Start > All Programs > Windows Install Clean Up"). In the list of programs that appears in CleanUp, select any iTunes entries and click "Remove".
    Quit out of CleanUp, restart the PC and try installing iTunes again. Does the install go through properly now?
    (If you do find a clean download site for the correct version of CleanUp, please don't tell me where it is. Without wishing to sound paranoid (although I grant it does sound paranoid), there is a non-zero chance that posting links to download locations for the utility here at Discussions leads to that download location being shut down.)

  • Secure Configuration Guide for Lion?

    Is Apple going to release a secure configuration guide for Apple, as it has for its past OS X operating systems?  It doesn't yet exist on the Secure Configuration Guide page on Apple's site.

    i'm also interested in reading this document.
    i posted the same question before reading your post.
    https://discussions.apple.com/message/19256352#19256352

Maybe you are looking for

  • BEX 3.5 , enter to role, which authorization object?

    Hi all, I want to give user an authorization in BW 3.5 in BEX to enter a query into role, but i can not find authorization object that is used for this. Regards,

  • Good bye skype

    This is just to share my dissapointment. After years using Skype I could not use it anymore. I cannot make plain login on one PC while I could login on SmartPhone. I can klogin on SmartPhonem but I cannot install the app. I see many bells and whistle

  • What's the proper way to remove CS3 after CS4 install without screwing up Acrobat?

    During CS4 installation, I had some serial number issues with Acrobat. It turns out that even though Acrobat is part of the creative suite, the licensing for it is different. I've got all of that sorted out now and CS4 is successfully installed. Now

  • Muse download did not install

    I have successfully downloaded a few Creative Cloud software products without any issue using the Application Manager. I have now downloaded Adobe Muse and it has said that is is installed, yet is nowhere to be found on my Mac system. Not in Applicat

  • Activation Error 3001

    Hi! Can you please help me? I just bought my playbook yesterday and have not activated it till now. Everytime I try it, I keep getting the Activation Error 3001.  I've tried this solution http://anditto.com/post/22113845395/blackberry-playbook-error-