Copy url's from access rules
I have bm 3.8 sp5 running and I need to copy the urls that are typed into one of my access rules. I would like to be able to copy and paste them into wordpad or something else. I can't seem to find anyway do to this, does anyone know how.
Thanks
gnickle wrote:
> I have bm 3.8 sp5 running and I need to copy the urls that are typed
> into one of my access rules. I would like to be able to copy and paste
> them into wordpad or something else. I can't seem to find anyway do to
> this, does anyone know how.
> Thanks
>
>
you can export them to a file directly with acldump.nlm
tid10086642
Similar Messages
-
Copy Access Rules from 3.8 to 3.9 system
I'm creating a new BM 3.9 server and want to import my current Access
Rule from my 3.8 system into the new 3.9 system. Is it possible? How???Craig Johnson wrote:
> Did you apply BM 3.9 sp1?
>
> If so, did you (or did you need to) reinstall the SP1 plugins for
> iManager?
>
> Craig Johnson
> Novell Support Connection SysOp
> *** For a current patch list, tips, handy files and books on
> BorderManager, go to http://www.craigjconsulting.com ***
No I didn't reinstall the BM 3.9 SP1 plugins. I'll try that tomorrow. -
Copy a file from URL to local HDD
Hi,
I've got 2 problems:
1. I'm an absolute beginner and an german-speaking user of this forum
2. I want to copy a file from within a signed applet (with full access permissions) from a URL on the server to a local directory on the client. It works with .txt or .ini files, but not with .dll or .exe. The .exe file has only 1KB instead of the 5MB and contains only something like "-1". Help!!
Here's what i made:
URL updateurl = new URL(getCodeBase() + "testfile.exe");
InputStream in = updateurl.openStream();
FileOutputStream out = new FileOutputStream("C:\\temp\\testfile.exe");
byte[] buf = new byte[4096];
int len;
while ((len = in.read(buf)) > 0)
out.write(buf, 0, len);
out.close();
in.close();
Thanks for any help!
cmon42From looking at the code I can't see any blatant errors.
The only thing I can think of, is: is your code wrapped by a try/catch block which you are ignoring?
The reason I ask, is that maybe you are not downloading the file you intended in the first place. The reason I think this is because of the line:
URL updateurl = new URL(getCodeBase() + "testfile.exe");Shoudn't there be a separator between getCodeBase() and testfile.exe? Only a guess, since getCodeBase may already return the separator.
HTH,
Manuel Amago. -
How to access a url only from APEX
Hi all.
We have a system that is accesible from internet, We are trying to secure the access to this system via login from APEX in order to deny the access to the URL if the request is not from our APEX app.
We configured the corresponding hostname in our APEX server and some firewall rules, but when a client clicks the link the hostname is looked in the client's computer, so is never found.
Is there any way to make this hostname resolution in the server's side?
Thanks in advance, regards.sKC,
You may need to explain yourself in more detail
"How do I access a URL only from APEX?"
If you are trying to limit access to "mynormal.server.com" by seeing if the end user clicked on a link from "myapex.server.com", the answer is:
You don't.
Trying to limit access to a web page based on how you got there is a really really bad form of security due to the false sense of security it implies.
It is so bad that it is better to not even try.
reason:
All URL requests can be easily manipulated by the client computer that is making the request. (ie the request is easily faked.)
The Unix utility wget can be used to fake the 'referrer' information.
MK -
suspicious Maleware / Trojan.
== This happened ==
Every time Firefox opened
== I tried to access a websiteHello "Morbus",
Thank you for your quick and informative reply. First I would like to provide more information on this attempted Malware/Trojan. I have copied the full addresses for you and/or anyone who may have interest. It follows below.
28.06.2010 07:38:00 Network Shield: blocked access to malicious site 楴祣湯椮⽮瑮⽥畫硥e [ C:\program files\Mozilla Firefox\Firefox.exe ( 5436 ) ]
28.06.2010 08:14:44 Network Shield: blocked access to malicious site 楴祣湯椮⽮瑮⽥畫硥e [ C:\Program Files\Mozilla Firefox\Firefox.exe ( 4476 ) ]
28.06.2010 13:32:53 Network Shield: blocked access to malicious site 楴祣湯椮⽮瑮⽥畫硥e [ C:\Program Files\Mozilla Firefox\Firefox.exe ( 1988 ) ]
28.06.2010 17:51:53 Network Shield: blocked access to malicious site 楴祣湯椮⽮瑮⽥畫硥e [ C:\Program Files\Mozilla Firefox\Firefox.exe ( 5400 ) ]
29.06.2010 13:31:03 Network Shield: blocked access to malicious site ticyon.in/nte/kuz.exe [ C:\Program Files\Mozilla Firefox\Firefox.exe ( 2444 ) ]
29.06.2010 23:15:14 Network Shield: blocked access to malicious site ticyon.in/nte/kuz.exe [ C:\Program Files\Mozilla Firefox\Firefox.exe ( 480 ) ]
30.06.2010 09:36:22 Network Shield: blocked access to malicious site ticyon.in/nte/kuz.exe/wHd0e51a5bV03006f36002Ra38dbe4f108T9ccfa9f8Q000002fe901801F0035010aJ14000601L656e2d55530000000000 [ C:\Program Files\Mozilla Firefox\Firefox.exe ( 5164 ) ]
30.06.2010 22:31:52 Network Shield: blocked access to malicious site ticyon.in/nte/kuz.exe/wHd0e51a5bV03006f36002Ra38dbe4f108T9ccfa9f8Q000002fe901801F0035010aJ14000601L656e2d55530000000000 [ C:\Program Files\Mozilla Firefox\Firefox.exe ( 3600 ) ]
I had failed to mention in my previous comments that each time the attempted attacks took place, a blank Adobe PDF page appeared. As you suggested, I disabled the Adobe add-on and have had no further attacks. I am extremely dilligent in keeping my SuperAntiSpyware Pro, AvastAntiVirus 5.0, ThreatFire, Vista Firewall Control, Malewarebytes and Windows Defender up to date. However, after any attack I always run these in safe mode just as a precaution. I had suspected the Adobe drop-in may have been the culprit because of the page that appeared and your suggested fix has in fact fixed it!
Thank you again for your unselfish time in coming to my rescue. "Deaf Dave"
From: [email protected]
Date: 7/1/2010 12:53:40 PM
To: [email protected]
Subject: Reply notification: when clicking websites my Avast 5.0 antivirus notifies me that a malicious URL is trying to access my system or that a Trojan has been prevented from access. The attempted Malware/Trojan is always from the same address:[ticon.in/nte/kuz/.exe/xhdoe515bvo38d
"Morbus" has posted a reply to a thread you're watching.
You can view the thread and reply at the following URL:
https://support.mozilla.com/en-US/forum/1/714170#threadId714337
Message:
Hello Deaf Dave.
It's possible that you are having a problem with some Firefox add-on that is hindering your Firefox's normal behavior. Have you tried disabling all add-ons (just to check), to see if Firefox goes back to normal?
Whenever you have a problem with Firefox, whatever it is, you should make sure it's not caused by one (or more than one) of your installed add-ons, be it an extension, a theme or a plugin. To do that easily and cleanly, run Firefox in [http://support.mozilla.com/en-US/kb/Safe+Mode safe mode] (don't forget to select ''Disable all add-ons'' when you start safe mode). If the problem disappears, you know it's from an add-on. Disable them all in normal mode, and enable them one at a time until you find the source of the problem. See [http://support.mozilla.com/en-US/kb/Troubleshooting+extensions+and+themes this article] for information about troubleshooting extensions and theme and [https://support.mozilla.com/en-US/kb/Troubleshooting+plugins this one] for plugins.
If you need support for one of your add-ons, you'll have to contact its author.
Also, it's possible that your system is infected with malware. To scan for malware, install, update and run these programs ''in this order''. They are all free for personal use, but some have limited functionality in their "free mode", but the features you'll miss are not really needed to find and remove the problem you have. Remember that ''not all programs detect the same malware''!
Malwarebytes' Anti-Malware - [http://www.malwarebytes.org/mbam.php malwarebytes.org/mbam.php]
SuperAntispyware - [http://www.superantispyware.com/ superantispyware.com]
AdAware - [http://www.lavasoftusa.com/software/adaware/ lavasoftusa.com/software/adaware]
Spybot Search & Destroy - [http://www.safer-networking.org/en/index.html safer-networking.org/en/index.html]
Windows Defender - [http://www.microsoft.com/windows/products/winfamily/defender/default.mspx microsoft.com/windows/products/winfamily/defender/default.mspx]
Dr. Web Cureit - [http://www.freedrweb.com/cureit/ freedrweb.com/cureit]
If these don't find it or can't clear it, please tell me and I'll provide you with further assistance.
Did this response solve your problem with Firefox?
Yes, this solved my problem (click here):
https://support.mozilla.com/tiki-feedback.php?id=714170&hash=6d5f163b3092b464aa15d04188b5cca2&type=forum_topic&feedback=Firefox%20Support%20Forum&commentId=714337
No, this did not solve my problem (click here):
https://support.mozilla.com/en-US/forum/1/714170?hash=6d5f163b3092b464aa15d04188b5cca2#form
If you no longer wish to receive notifications for this thread,
visit the following URL to cancel your subscription:
https://support.mozilla.com/tiki-cancel_watch.php?section=forum&hash=6d5f163b3092b464aa15d04188b5cca2 -
How can I block a url from accessing my browser?
I want to block a url from accessing my browser. The url in question, djbsaqja.co.cc, flashed a pop-up saying that my computer was infected with a dangerous virus and that "Windows Security" required that I download a program to fix it.
I maintain realtime virus protection, but ran a manual scan anyway, which proved that I was clean.
The url listed above would not let me out of an unending chain of popups, demanding that I download their tool.
Instead, I opened a new Firefox session (it was the only way I could re-enter Firefox without this rogue url taking control), then cleared out my history, cache and cookies.
I'm clean...and now I'm back in control with, I believe, no damage. But since I wrote down the url, is there a way that I can block from accessing my browser again?
Thanks for the help.You can add it to your hosts file - http://allthingsmarked.com/2006/08/28/howto-block-websites-using-the-hosts-file
Sites like that pop up on a regular basis, but will often get taken down quite quickly. I have just checked and the site appears to have been taken down. -
I have a user name on my computer that was tied in with the domain name of the server at my workplace. I would access Firefox under this user name. I have now changed jobs, and for good and obvious reasons can no longer utilize my previous company associated username.
I have set up a new username on the same computer. When I access Firefox, all of my old bookmarks are gone, because Firefox does not recognize me under the new username as the same person. In the meantime, I have established new bookmarks under the new username.
I have copied my profile from Firefox under my old username. Can I have two profiles under my new username and pick which one I want to use at that time when accessing Firefox?
I am running Windows 7 Professional, with 4 gig ram, Intel i3 CPU, 2.13 GHz, 64 bit operating system, Firefox 7.0.1
Thank youYou can not merge accounts.
Apps are tied to the Apple ID used to download them, you can not transfer them. -
Can we open a URL link from an RFC and access the data in the link.?
Can we open a URL link from an RFC and access the data in the link.
I have the following scenario.
I have a URL link and it opens a KM folder in the Portal server and I need to put a PDF file in that KM folder
Can we do that with the help of an RFC, can we deal with Links in RFC, is there any such FM??
Regards>
SAP LEARNER wrote:
> Can we open a URL link from an RFC and access the data in the link.
>
> I have the following scenario.
>
> I have a URL link and it opens a KM folder in the Portal server and I need to put a PDF file in that KM folder
>
> Can we do that with the help of an RFC, can we deal with Links in RFC, is there any such FM??
>
> Regards
I guess you are trying to connect from the R3/ECC to the Portal Server.
Are these two systems in the same network? Do you have usernames (valid and fully authorized) in both systems? What is the OS on which these two systems are housed?
Please provide these details to proceed further.
Regards
Sabu -
Can't copy a song from library into playlist. Screen message says "song can't be found." I know it's there, how do I access it?.
I fixed this issue (with help from tech support) and it involved several things.
After adding a song to iTunes, right-click on the song in iTunes and select "Update iTunes Match."
OR go to the iTunes menu-->Store-->Update iTunes Match.
Maybe that's the reason, it just hadn't updated to the cloud.
OR maybe it's not a high-enough bitrate file. This happens to me because most of my tunes are home-recorded.
Sometimes converting to .mp3 or Create AAC version might work. (You do this with a right-click in iTunes, and then you will want to remove the original file from iTunes.)
There is an iTunes Preferences setting, under General Preferences called Import Settings. Try setting it to AAC Encoder and iTunes Plus. That (I think) causes imports to be slightly better quality.
Good luck! The tech support person at Apple is requesting that a knowlege-base article be written about this. -
How to pull all Access Rules details from CSM
Currently we having around 10 Firewalls managed by CSM, and we looking for solution to pull all Firewalls Access Rules into one file by automatically, so giving possibility to compare what rules have changed on every week and make it document to excel file ... is that possible?
Hi,
You can create procedure to move file from application server to oracle server.
Code for list all files in directory
ops$tkyte@8i> GRANT JAVAUSERPRIV to ops$tkyte
2 /
Grant succeeded.
That grant must be given to the owner of the procedure.. Allows them to read
directories.
ops$tkyte@8i> create global temporary table DIR_LIST
2 ( filename varchar2(255) )
3 on commit delete rows
4 /
Table created.
ops$tkyte@8i> create or replace
2 and compile java source named "DirList"
3 as
4 import java.io.*;
5 import java.sql.*;
6
7 public class DirList
8 {
9 public static void getList(String directory)
10 throws SQLException
11 {
12 File path = new File( directory );
13 String[] list = path.list();
14 String element;
15
16 for(int i = 0; i < list.length; i++)
17 {
18 element = list;
19 #sql { INSERT INTO DIR_LIST (FILENAME)
20 VALUES (:element) };
21 }
22 }
23
24 }
25 /
Java created.
ops$tkyte@8i>
ops$tkyte@8i> create or replace
2 procedure get_dir_list( p_directory in varchar2 )
3 as language java
4 name 'DirList.getList( java.lang.String )';
5 /
Procedure created.
ops$tkyte@8i>
ops$tkyte@8i> exec get_dir_list( '/tmp' );
PL/SQL procedure successfully completed.
ops$tkyte@8i> select * from dir_list where rownum < 5;
FILENAME
data.dat
.rpc_door
.pcmcia
ps_data
http://asktom.oracle.com/pls/asktom/f?p=100:11:3597961203953876::::P11_QUESTION_ID:439619916584 -
Hi:
I had a system crash and I cannot start windows (Vista)on it.I have a new drive running Win 7.How do I copy the files from the old drive's files to the new?The Bookmark files that is.
Thanks.Any help is appreciated.
ShaunThis could help.
http://support.mozilla.com/en-US/kb/Backing+up+your+information
Basically, you have to copy your profile from the old hdd to the new one. -
GRC AC 10:How to generate Access Rule? No output from User or Risk Analysis
Hello Gurus,
We have done configuration of GRC AC 10, and uploaded files via
SoD rules -->Upload Rules
After that we generated SoD rules for Risk Id : B001 and B002
Now when we go to NWBC --> Reports & Analytics >Access Dashboards>Access Rule Library
The report shows (for Group Rule level : Action)
Number of Active rules : 0
Number of Disabled Rules : 0
Number of Functions : 151
Where as for Group Rule level : Action Risk
The report shows
Number of Active Risk : 42
Disabled risk : 161
Nmr. of functions : 151 .
When we perform Risk Analysis at User Level or Role Level, the output is empty !!!
Note: All the background jobs have run successfully.
Also the SoD files also have been uploaded successfully.
Will you please guide how can i activate the "rules" for the uploaded risk ??
regards,
VictorHello Victor/ Inder,
For Risk ID B001functions are BS02 and BS11 if you open any one of them you can see system maintained as SAP BASIS which is SAP_BAS_LG (logical connector group).
Post installation you can check in SPRO>Governance, Risk and Compliance-> common Component---> integration framework-> maintain connector and connector types->select SAP and click Define connector Group.
BUSINESS Business Roles SAP
SAP_BAS_LG SAP Basis SAP
SAP_CRM_LG SAP CRM SAP
SAP_ECC_LG SAP ECCS SAP
SAP_HR_LG SAP HR SAP
SAP_NHR_LG SAP R3 - NON HR Basis Logical Group SAP
SAP_R3_LG SAP R3 SAP
SAP_SRM_LG SAP SRM SAP
(If not present then manually you can create the same)
Select SAP_BAS_LG and put connector type as SAP, select SAP_BAS_LG and click Assign Connector group to group types as AM & LG, then click on Assign Connector to connector group and maintain you connector.
Post this activity re generate SOD for B001 and then check for user level and role level analysis.
Hope it will resolve your issue.
Regards,
Sudesh -
BM39SP1 Blank Access Rules Page
Hi,
Upgraded from BM38SP5 to BM39 and then applied SP1, when I click on the access rules tab in Imanager, nothing happens. If you switch to the logger screen on the server is says: LaunchService.......103 java.lang.NullPointerException
Any idea whats wrong?
Thanks
Simonhigh
okay. done this, also with english language.
here the hole info from the logger screen.
Filename sys:\tomcat\5.0\webapps\nps\portal\modules/bmpxy/conf/sc-web.conf
Email Priority was null
Email Priority was null
PageContext Navigation level is 1
PageContext Navigation level Str is null
In do Start tag of Use Device
Use info is true
Start static construct
Start construct
end construct
Get device infonull
Info Attribute Name BRDSRVS: PROXY Info DeviceXML
of Object JLE3.Resourcen.JLE
Got device infocom.volera.vcdn.application.sc.core.DeviceInfo @2c01b6
Get Document Name BRDSRVS: PROXY Info DeviceXML
Appname Info attribute ID BRDSRVS: PROXY Info DeviceXML
Appname Attribute is null
Appname Info attribute ID BRDSRVS: PROXY Info DeviceXML attr
com.volera.vcdn.app
lication.sc.core.InfoAttribute@1247bd2
reading strings
Use info is complete
Use config is true
Getting the device configuration
Get working config for PROXY
Get Object
Creating the NBM proxy device
Device Created with name JLE3
Creating the device configuration
attribute back up
Get the attribute components
reading strings
Got device working
configcom.volera.vcdn.application.sc.core.AGDevice Config@3d2e
1e
Setting the device configuration
device config is not null
Use config is complete
in The End tag of Use device
Context path is /nps
bundleid null, use panel
Email Priority was null
PageContext Navigation level is -1
In do Start tag of Use Device
Use info is true
Use info is complete
Use config is true
Getting the device configuration
Return the device config
device config is not null
Use config is complete
in The End tag of Use device
bundleid null, use panel
Appname after middle is JLE3.Resourcen.JLE
bundleid null, use panel
Appname in checkLocked JLE3.Resourcen.JLE
Appname check locked com.volera.vcdn.application.sc.core.DeviceInfo@2c0 1b6
Appname In is config locked
Appname after is config locked
Appname check complete
bundleid null, use panel
bundleid null, use panel
Appname is body JLE3.Resourcen.JLE
Data = <form name="form1" id="form1" method="POST"
action="/nps/servlet/webacc
?NPService=fw.LaunchService&NPAction=Delegate&dele gate=sdk.BasicTask&launche
r=fw
..HomePage&lifecycle=Recreate&appname=JLE3.Resourc en.JLE" >
<input type="hidden" name="basexpath" id="basexpath" value="">
<input type="hidden" name="lastmodxpaths" id="lastmodxpaths" value="">
<input type="hidden" name="command" id="command" value="">
<input type="hidden" name="addelementmap" id="addelementmap" value="">
<input type="hidden" name="removemap" id="removemap" value="">
<input type="hidden" name="removelist" id="removelist" value="">
<input type="hidden" name="setvaluemap" id="setvaluemap" value="">
<input type="hidden" name="setldapvaluemap" id="setldapvaluemap" value="">
<input type="hidden" name="showdialogmap" id="showdialogmap" value="">
<input type="hidden" name="invokemethodmap" id="invokemethodmap" value="">
<input type="hidden" name="cancelxpaths" id="cancelxpaths" value="">
<input type="hidden" name="forward" id="forward" value="">
<input type="hidden" name="path" id="path" value="">
<input type="hidden" name="submit_handler" id="submithandler"
value="handler">
Appname is formJLE3.Resourcen.JLE
Info is not null
Appname is start check access JLE3.Resourcen.JLE
Appname In is config locked
Appname after is config locked
Appname is end check access JLE3.Resourcen.JLE
Appname is after check access JLE3.Resourcen.JLE
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
Email Priority was null
Appname before page config navigate
PageContext Navigation level is -1
Appname after page config navigate
In do Start tag of Use Device
Use config is true
Getting the device configuration
Return the device config
device config is not null
Use config is complete
in The End tag of Use device
Appname after use device navigate
In breadcrumbs
Navigation is
Navigation History
Level-01, Entry = Panel = sc.config.ag.configmanager, URL =
/servlet/web
acc?&objectName=JLE3.Resourcen.JLE&launcher=fw.Hom ePage&taskId=sdk.BasicTask
le=configmanager.device.title&NPAction=Delegate&NP Service=fw.LaunchService&d
eleg
ate=sdk.BasicTask&appname=JLE3.Resourcen.JLE&devna me=JLE3.Resourcen.JLE&next
Stat
e=initialState&lifecycle=Recreate&chooseDevice=1&p anelType=device&loadJsp=bm
pxy%
2Fag%2FActivityView.jsp
Navigation current level 1
bundleid null, use panel
Email Priority was null
Appname before page config navigate
PageContext Navigation level is -1
Appname after page config navigate
Appname before use device navigate
In do Start tag of Use Device
Use info is true
Use info is complete
Use config is true
Getting the device configuration
Return the device config
device config is not null
Use config is complete
in The End tag of Use device
Appname after use device navigate
Appname after navigation
bundleid null, use panel
bundleid null, use panel
bundleid null, use panel
Appname before form
Data = <form name="buttonform" id="buttonform" method="POST"
target="_paren
t">
<input type="hidden" name="basexpath" id="basexpath"
value="/AccessGatewayConfig
uration">
<input type="hidden" name="lastmodxpaths" id="lastmodxpaths" value="/.">
<input type="hidden" name="command" id="command" value="">
<input type="hidden" name="addelementmap" id="addelementmap" value="">
<input type="hidden" name="removemap" id="removemap" value="">
<input type="hidden" name="removelist" id="removelist" value="">
<input type="hidden" name="setvaluemap" id="setvaluemap" value="">
<input type="hidden" name="setldapvaluemap" id="setldapvaluemap" value="">
<input type="hidden" name="showdialogmap" id="showdialogmap" value="">
<input type="hidden" name="invokemethodmap" id="invokemethodmap" value="">
<input type="hidden" name="cancelxpaths" id="cancelxpaths" value="">
<input type="hidden" name="forward" id="forward" value="">
<input type="hidden" name="path" id="path" value="">
<input type="hidden" name="submit_handler" id="submithandler"
value="handler">
Appname before config check
Appname In is config locked
Appname after is config locked
Appname after config locked
Appname after config pending check
Appname after config check
Appname bundleId null message Žnderungen bernehmen
Appname bundleId null desc Žnderungen bernehmen
Appname message Žnderungen bernehmen
Appname target target='Content'
Appname implementor ./button.jsp
Appname bundleId null message Sicherung
Appname bundleId null desc Sicherung
Appname message Sicherung
Appname target
Appname implementor ./button.jsp
Appname bundleId null message Schlieáen
Appname bundleId null desc Schlieáen
Appname message Schlieáen
Appname target target='Content'
Appname implementor ./button.jsp
LaunchService.......103 java.lang.NullPointerException
hope that helps.
Sascha
>>> mysterious<[email protected]> schrieb am 08.04.2008 um 09:33 in Nachricht
<[email protected]>:
> Sascha Oetiker wrote:
>> high
>>
>> the same with firefox 2.0.0.13
>>
>> which logger output do you mean ? is there a log-file ?
>>
>> Thanks
>>
>> Sascha
>>
>>>>> mysterious<[email protected]> schrieb am 04.04.2008 um 12:02 in Nachricht
>> <[email protected]>:
>>> Sascha Oetiker wrote:
>>>> high
>>>>
>>>> 1. i have IE7 on Windows XPSP2 english and IE6.0sp2 on german XP.
>>> try firefox
>>>
>>>> 2. server is english, NW6.5SP7
>>>> 3. Imanager also english or german
>>>> 4. logger says: "Launch Service.....103
java.lang.NullPointerException"
>>> Paste all the logger output
>
> 1. Verify that your browsers have javascript enable
> 2. When you click on the imanager menu, some info will be written to the
>
> logger screen. Copy and paste the whole info on the logger, not only one
>
> line, to see the whole message
> 3. Set you imanager and browser to use only english language and try it
> again -
Open firewall Ports despite DENY- ALL access rule
Hi,
See below my firewall rules.
Despite the deny all, runnning nmap from outside still reveals open ports.
name 202.1.53.41 fw1.outside.irc.com
interface GigabitEthernet0/0
nameif inside
security-level 0
ip address fw1.inside.irc.com 255.255.252.0 standby 172.16.86.219
interface GigabitEthernet0/1
nameif SSN-DMZ
security-level 0
ip address 10.20.2.1 255.255.255.0 standby 10.20.2.2
interface GigabitEthernet0/2
nameif Outside
security-level 0
ip address fw1.outside.irc.com 255.255.255.248 standby NAT-202.1.53.45
interface GigabitEthernet0/3
description Internet Access for Wireless clients on the guest network
nameif GuestInternet
security-level 0
ip address 192.168.154.2 255.255.254.0
interface Management0/0
nameif management
security-level 10
ip address 10.10.200.14 255.255.255.0 standby 10.10.200.15
access-list inside_access_in extended permit object-group DM_INLINE_SERVICE_2 any host WWW.IRC.COM-PRIV
access-list inside_access_in remark Deny POP3, SSH, TELNET to Deny-Host-Group 172.16.86.246/249
access-list inside_access_in extended deny object-group DENY-HOST-GROUP object-group DENY-HOST-GROUP-1 any
access-list inside_access_in remark Allow SMTP external access to Mail Servers group
access-list inside_access_in extended permit tcp object-group MAIL-GW-GROUP any eq smtp
access-list inside_access_in remark Deny Any other Users from sending mails via smtp
access-list inside_access_in extended deny tcp any any eq smtp
access-list inside_access_in extended deny ip object-group Botnet_Blacklist any
access-list inside_access_in extended deny ip any SPAM_MACHINE 255.255.255.0
access-list inside_access_in extended deny ip any host SPAMIP
access-list inside_access_in extended permit ip object-group Socialsites_Allowed object-group Facebook
access-list inside_access_in extended deny object-group DM_INLINE_SERVICE_8 any object-group Facebook
access-list inside_access_in remark Rule to block Internal users from accessing youtube
access-list inside_access_in extended deny object-group DM_INLINE_SERVICE_9 any object-group YoutubeIPs
access-list inside_access_in remark Suspected Virus Ports
access-list inside_access_in extended deny tcp any any object-group DM_INLINE_TCP_17
access-list inside_access_in remark Ports Commonly used by Botnet and Malwares
access-list inside_access_in extended deny tcp any any object-group IRC
access-list inside_access_in remark Allow Access to External DNS to ALL
access-list inside_access_in extended permit object-group DNS-GROUP object-group DNS-SERVERS object-group External_DNS_Servers
access-list inside_access_in remark Allow Any to Any on Custom TCP/UDP services
access-list inside_access_in extended permit tcp any any object-group DM_INLINE_TCP_12
access-list inside_access_in remark Allow Any to Any VPN Protocols group
access-list inside_access_in extended permit object-group VPN-GROUP any any
access-list inside_access_in extended permit ip any host pomttdbsvr
access-list inside_access_in remark Allow Access to DMZ from Inside
access-list inside_access_in extended permit tcp any any object-group DM_INLINE_TCP_10
access-list inside_access_in extended permit object-group DM_INLINE_SERVICE_5 any 10.20.2.0 255.255.255.0
access-list inside_access_in extended permit tcp any any eq pop3
access-list inside_access_in extended permit object-group Web-Access-Group any any
access-list inside_access_in remark DNS RATING SERVICE FOR BLUECOAT SG510 PROXY
access-list inside_access_in extended permit tcp object-group DM_INLINE_NETWORK_11 object-group DM_INLINE_NETWORK_4 eq www inactive
access-list inside_access_in extended permit tcp any host 202.165.193.134 object-group DM_INLINE_TCP_3
access-list inside_access_in remark Yahoo Messenger Test
access-list inside_access_in extended permit tcp any any object-group YahooMessenger
access-list inside_access_in extended permit ip host AVIRUSMAN 192.168.254.0 255.255.255.0
access-list inside_access_in extended permit tcp any any object-group smile
access-list inside_access_in extended permit udp any host smile.telinet.com.pg object-group smile-udp
access-list inside_access_in remark testing access for mobile phones behind wireless router
access-list inside_access_in extended permit ip host Wireless-Router any inactive
access-list inside_access_in extended permit tcp any any object-group FTP-Service-Group inactive
access-list inside_access_in extended permit ip host mailgate.irc.com any
access-list inside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 object-group DM_INLINE_NETWORK_2 any object-group NTP
access-list inside_access_in extended permit tcp any any object-group web-email-services
access-list inside_access_in remark Murray PC
access-list inside_access_in extended permit ip host 10.100.20.36 any
access-list inside_access_in extended permit tcp any any object-group Itec-Citrix
access-list inside_access_in extended permit ip host EP200 any
access-list inside_access_in extended permit tcp any any object-group TCP-SMTP
access-list inside_access_in extended permit tcp any host 202.165.193.134 eq 3391
access-list inside_access_in extended permit ip object-group IT-Servers any
access-list inside_access_in extended permit tcp any any object-group DM_INLINE_TCP_1
access-list inside_access_in extended permit ip object-group DM_INLINE_NETWORK_14 any inactive
access-list inside_access_in extended permit ip host 10.100.20.23 any
access-list inside_access_in extended permit tcp host NOC-NMS-CDMA host 202.165.193.134 object-group DM_INLINE_TCP_4
access-list inside_access_in extended permit tcp object-group DM_INLINE_NETWORK_12 object-group Bluecoat-DNS-Rating eq www
access-list inside_access_in extended permit ip object-group DM_INLINE_NETWORK_13 any
access-list inside_access_in extended permit udp host solarwinds-server any eq snmp
access-list inside_access_in extended permit tcp host kaikai any object-group test-u inactive
access-list inside_access_in extended permit tcp any host fw1.outside.irc.com object-group TCP-88
access-list inside_access_in extended permit udp host solarwinds-server any object-group DM_INLINE_UDP_1
access-list inside_access_in extended permit ip host IN-WEB-APP-SERVER any
access-list inside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 host KMS-Server any object-group KMS
access-list inside_access_in extended permit tcp any any object-group TeamVIewer-TCP
access-list inside_access_in extended permit icmp any any traceroute
access-list inside_access_in extended permit ip host KMS-Server any
access-list inside_access_in extended deny ip any host 87.255.51.229
access-list inside_access_in extended deny ip any host 82.165.47.44
access-list inside_access_in extended permit ip host InterConnect-BillingBox any
access-list inside_access_in extended permit icmp any host fw1.outside.irc.com
access-list inside_access_in extended permit icmp any any
access-list inside_access_in remark For ACCESS MPLS team
access-list inside_access_in extended permit tcp any host 202.165.193.134 object-group RDP-MPLS-Huawei
access-list inside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 host mailgate.irc.com any eq domain
access-list inside_access_in extended permit tcp any host 66.147.244.58 object-group SMTP-26
access-list inside_access_in extended deny object-group DM_INLINE_PROTOCOL_1 any any object-group Airfiji-SW
access-list inside_access_in extended permit tcp host chief.bula.irc.com any
access-list inside_access_in extended permit ip host Avabill86.181 any
access-list inside_access_in extended permit ip any object-group AVG
access-list inside_access_in extended permit ip host solarwinds-server any
access-list inside_access_in extended permit tcp host 172.16.87.219 any object-group TCP-4948
access-list inside_access_in extended permit object-group DM_INLINE_SERVICE_10 any host Avabill_Consultant_IP_Sri-Lanka
access-list inside_access_in extended permit tcp any host 69.164.201.123 eq smtp inactive
access-list inside_access_in extended permit tcp any any object-group GMAIL inactive
access-list inside_access_in extended permit tcp any any object-group NOC1
access-list inside_access_in extended permit ip host solarwinds-server 10.10.200.0 255.255.255.0
access-list inside_access_in extended permit tcp any host smile.telinet.com.fj object-group tcp-20080-30080
access-list inside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 any any object-group SIP-5060-5062
access-list inside_access_in extended permit ip host LYNC-2013-SERVER any
access-list inside_access_in extended permit object-group DM_INLINE_SERVICE_7 object-group Lync_Servers any
access-list inside_access_in extended permit object-group VPN-GROUP host 10.100.20.94 any inactive
access-list inside_access_in remark Pocket Solutions -TEMP
access-list inside_access_in extended permit ip host 10.100.20.121 any
access-list inside_access_in extended permit tcp host John_sibunakau any object-group JohnTESTPort inactive
access-list inside_access_in extended permit ip host CiscoRadiusTestPC any
access-list inside_access_in extended permit ip any host HungaryServer inactive
access-list Outside_access_in extended permit tcp any host fw1.outside.irc.com eq ssh
access-list Outside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 any host fw1.outside.irc.com object-group itec-support-tcp-udp
access-list Outside_access_in remark Allow All to NAT Address on SSL/SSH/SFTP(2222)
access-list Outside_access_in extended permit tcp any host NAT-202.1.53.43 object-group DM_INLINE_TCP_9
access-list Outside_access_in remark Allow All to Outside On Fujitsu and 777-7778 ports
access-list Outside_access_in extended permit tcp any host fw1.outside.irc.com object-group DM_INLINE_TCP_8
access-list Outside_access_in remark Allow all to Outside on Custom ports
access-list Outside_access_in extended permit tcp any host fw1.outside.irc.com object-group DM_INLINE_TCP_7
access-list Outside_access_in remark Allow Inbound HTTP to WWW.IRC.COM
access-list Outside_access_in extended permit tcp any host fw1.outside.irc.com eq www
access-list Outside_access_in extended permit icmp any host fw1.outside.irc.com
access-list Outside_access_in extended permit object-group TCPUDP any host fw1.outside.irc.com object-group BrouardsGroup
access-list Outside_access_in remark Allow ALL to RealVNC ports
access-list Outside_access_in extended permit tcp any host fw1.outside.irc.com object-group RealVNC-TCP5900
access-list Outside_access_in remark Allow ALL access to 202.1.53.43 on RealVNC ports
access-list Outside_access_in extended permit tcp any host NAT-202.1.53.43 object-group RealVNC-TCP5900
access-list Outside_access_in remark Allow DNS queries from Internet to DNS server
access-list Outside_access_in extended permit object-group TCPUDP object-group ITEC-Group-Inbound host fw1.outside.irc.com object-group itec-sftp
access-list Outside_access_in extended permit tcp any host NAT-202.1.53.43 object-group DM_INLINE_TCP_14
access-list Outside_access_in extended permit object-group DM_INLINE_SERVICE_1 host SkyTel host fw1.outside.irc.com
access-list Outside_access_in remark Telinet/Inomial temp access to test machine M.Orshansky
access-list Outside_access_in extended permit tcp host 203.92.29.151 host fw1.outside.irc.com eq 3390
access-list Outside_access_in extended permit tcp any host NAT-202.58.130.43 object-group RDP
access-list Outside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 object-group ITEC-Group-Inbound host fw1.outside.telikompng.com.pg object-group INTEC-Service
access-list Outside_access_in extended permit tcp host 220.233.157.98 host fw1.outside.irc.com eq ssh inactive
access-list Outside_access_in extended permit ip any host fw1.outside.telikompng.com.pg
access-list Outside_access_in extended permit tcp any host fw1.outside.telikompng.com.pg object-group CRM
access-list Outside_access_in extended permit tcp any host fw1.outside.telikompng.com.pg object-group HTTP-8010-CRM
access-list Outside_access_in extended permit tcp any host fw1.outside.telikompng.com.pg object-group HTTP-8005-CRM
access-list Outside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 any any object-group NTP
access-list Outside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 any host fw1.outside.irc.com object-group DNS
access-list Outside_access_in remark Ultra VNC connection to 172.16.84.34@nadi Exchange
access-list Outside_access_in extended permit tcp any host fw1.outside.irc.com object-group UVNC
access-list Outside_access_in extended permit tcp any host fw1.outside.irc.com object-group UVNC-HTTP
access-list Outside_access_in extended permit tcp any host fw1.outside.irc.com object-group POP3-SSL
access-list Outside_access_in extended permit object-group EMAIL-SMARTPHONES any host fw1.outside.irc.com
access-list Outside_access_in extended permit tcp any host fw1.outside.telikompng.com.pg object-group exchange-RPC
access-list Outside_access_in extended permit tcp any host NAT-202.1.53.43 object-group exchange-RPC
access-list Outside_access_in extended permit icmp any host NAT-202.1.53.43
access-list Outside_access_in remark Access to Solarwinds Management box
access-list Outside_access_in extended permit tcp any host NAT-202.1.53.43 object-group Solarwinds
access-list SSN-DMZ_access_in remark Permit DNS Quiries out of DMZ
access-list SSN-DMZ_access_in extended permit object-group TCPUDP any any eq domain
access-list SSN-DMZ_access_in remark Allow SQL ports out of DMZ to Host 172.16.86.70
access-list SSN-DMZ_access_in extended permit tcp any host HOST-172.16.86.70 object-group SQL-Group
access-list SSN-DMZ_access_in remark Allow Custom protocols out of DMZ to host 172.16.86.27
access-list SSN-DMZ_access_in extended permit tcp any host HOST-172.16.86.27 object-group DM_INLINE_TCP_2
access-list SSN-DMZ_access_in extended permit tcp host suva-vdc-int2.suva.irc.com host WWW.IRC.COM=PRIV eq 3389
access-list SSN-DMZ_access_in extended permit object-group Web-Access-Group host WWW.IRC.COM-PRIV any
access-list SSN-DMZ_access_in extended permit tcp any host WWW.IRC.COM.-PRIV object-group DMZ-WebAccess
access-list SSN-DMZ_access_in extended permit ip host pomlynedsvr01_access any
access-list SSN-DMZ_access_in extended permit ip host pomlynedsvr01_webcon any
access-list SSN-DMZ_access_in extended permit ip host pomlynedsvr01_AV any
access-list inside_nat0_outbound extended permit ip any 192.168.254.0 255.255.255.0
access-list inside_nat0_outbound extended permit ip object-group DM_INLINE_NETWORK_6 host 10.10.200.1
access-list inside_nat0_outbound extended permit ip any host WWW.IRC.COM-PRIV
access-list inside_nat0_outbound extended permit ip host ns.irc.com any
access-list inside_nat0_outbound extended permit ip any 10.200.200.0 255.255.255.0
access-list Outside_nat0_outbound extended permit ip 192.168.254.0 255.255.255.0 any
access-list Outside_nat0_outbound extended permit ip mcr_Management 255.255.255.0 any
access-list alcatel-my remark Allow Alcatel-my access to TIRC(1)
access-list alcatel-my standard permit 172.16.24.0 255.255.252.0
access-list alcatel-my remark Allow Alcatel-my access to TIRC(2)
access-list alcatel-my standard permit 172.16.84.0 255.255.252.0
access-list 131 extended permit ip host MICHAEL any
access-list management_access_in extended permit ip 10.10.200.0 255.255.255.0 mcr_Management 255.255.255.0
access-list management_access_in extended permit ip host 10.10.200.1 object-group DM_INLINE_NETWORK_5
access-list management_access_in extended permit object-group Web-Access-Group host 10.10.200.1 any
access-list management_access_in extended permit ip host 10.10.200.1 host 172.16.87.47
access-list management_access_in extended permit ip host 10.10.200.1 host IN-WSC
access-list management_access_in extended permit ip host 10.10.200.1 object-group DM_INLINE_NETWORK_8
access-list management_access_in extended permit tcp host 10.10.200.1 object-group DM_INLINE_NETWORK_3 eq 3389
access-list management_access_in remark To BlueCaot Appliances
access-list management_access_in extended permit ip host 10.10.200.1 object-group DM_INLINE_NETWORK_1
access-list management_access_in extended permit ip host 10.10.200.1 object-group DM_INLINE_NETWORK_7
access-list management_access_in extended permit tcp 10.10.200.0 255.255.255.0 object-group Management_Hosts object-group RDP
access-list management_access_in extended permit icmp host 10.10.200.1 any traceroute
access-list management_access_in extended permit ip host 10.10.200.1 host NOC-NMS-CDMA
access-list management_access_in extended permit object-group DM_INLINE_SERVICE_3 host 10.10.200.1 any
access-list management_access_in extended permit tcp host 10.10.200.1 any eq ftp
access-list management_access_in extended permit tcp host bula host 10.10.200.1 object-group RDP inactive
access-list management_access_in extended permit tcp host 10.100.20.23 host 10.10.200.1 object-group RDP
access-list management_access_in extended permit ip host 10.10.200.1 any
access-list management_access_in extended permit ip host solarwinds-server 10.10.200.0 255.255.255.0
access-list management_access_in extended permit ip 10.10.200.0 255.255.255.0 host solarwinds-server
access-list management_access_in extended permit ip any any
access-list management_access_in extended permit ip host 10.10.200.1 host bula inactive
access-list management_access_in extended permit ip any host solarwinds-server
access-list management_access_in extended permit ip host solarwinds-server any
access-list management_access_in extended permit ip object-group PacketFence-Servers 10.10.200.0 255.255.255.0
access-list management_access_in extended permit ip 10.10.200.0 255.255.255.0 object-group PacketFence-Servers
access-list management_access_in extended permit ip object-group 3750-Switches host solarwinds-server
access-list management_access_in extended permit ip 10.10.200.0 255.255.255.0 host 10.10.200.1
access-list management_access_in extended permit ip host 10.10.200.1 10.10.200.0 255.255.255.0
access-list Outside_access_in_1 extended permit ip any any
access-list management_access_in_1 extended permit ip mcr_Management 255.255.255.0 any
access-list inside-networks remark internal tpng corporate subnetwork
access-list inside-networks standard permit 172.16.84.0 255.255.252.0
access-list inside-networks remark dms10
access-list inside-networks standard permit host 10.10.0.0
access-list 84-subnet remark 84 subnet
access-list 84-subnet standard permit 172.16.84.0 255.255.252.0
access-list 84-subnet remark 4 subnet
access-list 84-subnet standard permit inside-network-extra-subnet 255.255.252.0
access-list split-tunnel remark 84 subnet
access-list split-tunnel standard permit 172.16.84.0 255.255.252.0
access-list split-tunnel remark 4 subnet
access-list split-tunnel standard permit inside-network-extra-subnet 255.255.252.0
access-list split-tunnel remark Access to internal POP3 server
access-list split-tunnel standard permit host neptune.waigani.telikompng.com.pg
access-list split-tunnel remark Access to internal SMTP server
access-list split-tunnel standard permit host minerva.suva.irc.com
access-list split-tunnel remark Allow access to the 24 subnet
access-list split-tunnel standard permit 172.16.24.0 255.255.252.0
access-list split-tunnel standard permit Cisco-VLans 255.255.0.0
access-list inside_authentication extended permit tcp any object-group DM_INLINE_TCP_11 any object-group DM_INLINE_TCP_13 time-range WorkingHours inactive
access-list itsupport standard permit NOC 255.255.252.0
access-list itsupport standard permit 172.16.96.0 255.255.252.0
access-list itsupport standard permit 10.20.2.0 255.255.255.0
access-list itsupport standard permit 10.10.200.0 255.255.255.0
access-list itsupport standard permit 172.16.84.0 255.255.252.0
access-list itsupport standard permit inside-network-extra-subnet 255.255.252.0
access-list itsupport standard permit 10.2.1.0 255.255.255.0
access-list itsupport standard permit 172.16.88.0 255.255.252.0
access-list itsupport standard permit Cisco-VLans 255.255.0.0
access-list itsupport remark Access to IT-LAN-UPGRADE Network
access-list itsupport standard permit IT-NETWORK-NEW 255.255.0.0
access-list itsupport remark KWU Exchange subnet
access-list itsupport standard permit 172.16.188.0 255.255.252.0
access-list itsupport standard permit ATM-Network 255.255.0.0
access-list global_mpc extended permit ip any any
access-list management_nat0_outbound extended permit ip any inside-network-extra-subnet 255.255.252.0 inactive
access-list management_nat0_outbound extended permit ip mcr_Management 255.255.255.0 any
access-list management_nat0_outbound extended permit ip any object-group DM_INLINE_NETWORK_9
access-list management_nat0_outbound extended permit ip host 10.10.200.1 object-group Management_Hosts
access-list management_nat0_outbound extended permit ip any 172.16.84.0 255.255.252.0
access-list management_nat0_outbound extended permit ip any MCR_POM 255.255.255.0
access-list management_nat0_outbound extended permit ip host 10.10.200.1 object-group DM_INLINE_NETWORK_10
access-list management_nat0_outbound extended permit ip any Cisco-VLans 255.255.0.0
access-list management_nat0_outbound extended permit ip 10.10.200.0 255.255.255.0 host solarwinds-server
access-list management_nat0_outbound extended permit ip 10.10.200.0 255.255.255.0 object-group DM_INLINE_NETWORK_15
access-list Capture extended permit ip any host 192.118.82.140
access-list Capture extended permit ip host 192.118.82.140 any
access-list Capture extended permit ip host 192.118.82.160 any
access-list Capture extended permit ip any host 192.118.82.160
a
access-list inside-network-access-only remark Allow Maggie Talig access to the 84 subnet only
access-list inside-network-access-only standard permit 172.16.84.0 255.255.252.0
access-list inside-network-access-only remark Allow Maggie Talig access to the 4 subnet only
access-list inside-network-access-only standard permit inside-network-extra-subnet 255.255.252.0
access-list SSN-DMZ_nat0_outbound extended permit ip host WWW.IRC.COM-PRIV object-group Internal-Networks
access-list inside_nat0_outbound_1 extended permit ip host AVIRUSMAN 192.168.254.0 255.255.255.0
access-list NETFLOW extended permit tcp any any
access-list NETFLOW extended permit object-group DNS-GROUP any host fw1.outside.irc.com
access-list NETFLOW extended permit object-group DM_INLINE_SERVICE_6 any host fw1.outside.irc.com
access-list NETFLOW extended permit udp any host fw1.outside.irc.com
access-list NETFLOW extended permit tcp any host fw1.outside.irc.com eq smtp
access-list NETFLOW extended permit tcp any host fw1.outside.irc.com object-group DM_INLINE_TCP_5
access-list NETFLOW extended permit tcp any host fw1.outside.irc.com object-group TCP-8080
access-list NETFLOW extended permit object-group DM_INLINE_SERVICE_4 any host NAT-202.58.130.43
access-list NETFLOW remark Reverse Proxy Inbound Rules from Internet- Lync 2013 Project - Lync Simple URLs
access-list NETFLOW extended permit tcp any host 202.58.130.69 object-group DM_INLINE_TCP_6
access-list NETFLOW remark Lync Edge Access Inbound Rule - Restricting Inbound
access-list NETFLOW extended permit object-group pomlynedsvr01_access_Outside_to_DMZ any host 202.58.130.66
access-list NETFLOW remark Lync Edge Outside to Inside for AV Interface
access-list NETFLOW extended permit object-group pomlynedsvr01_webcon_outside_to_DMZ any host 202.58.130.67
access-list NETFLOW extended permit object-group pomlynedsvr01_AV_Outside_to_DMZ any host 202.58.130.68
access-list NETFLOW extended permit object-group DM_INLINE_SERVICE_11 any host NAT-fijiircdata
access-list NETFLOW extended deny ip host SPAMIP any
access-list NETFLOW extended deny ip SPAM_MACHINE 255.255.255.0 any
access-list NETFLOW extended deny ip host 220.233.157.99 any log debugging
access-list Huawei-Access-Networks remark HUawei-Network-Elements
access-list Huawei-Access-Networks standard permit 192.168.200.0 255.255.255.0
access-list Huawei-Access-Networks remark Access to Ela Beach MPLS network
access-list Huawei-Access-Networks standard permit 10.100.70.0 255.255.255.0
access-list Huawei-Access-Networks remark Huawei Network elements
access-list Huawei-Access-Networks standard permit 192.168.210.0 255.255.255.0
access-list Huawei-Access-Networks remark Huawei network elements
access-list Huawei-Access-Networks standard permit 192.168.213.0 255.255.255.0
access-list management_nat0_outbound_1 extended permit ip host solarwinds-server 10.10.200.0 255.255.255.0
access-list Alcatel-NMS-ACL remark Access allowed to Alcatel NMS devices in NOC
access-list Alcatel-NMS-ACL standard permit 10.2.1.0 255.255.255.0
access-list Business-Systems-Access remark Mail Server 1
access-list Business-Systems-Access standard permit host neptune.waigani.telikompng.com.pg
access-list Business-Systems-Access remark Mail Server 2
access-list Business-Systems-Access standard permit host minerva.waigani.telikompng.com.pg
access-list Business-Systems-Access remark SAP PROD
access-list Business-Systems-Access standard permit host SAP-SAPPROD
access-list Business-Systems-Access remark Avabill Application Server
access-list Business-Systems-Access standard permit host Avabill86.177
access-list Business-Systems-Access remark Backup Avabill Application Server
access-list Business-Systems-Access standard permit host Avabill84.170
access-list Business-Systems-Access remark HRSelfcare
access-list Business-Systems-Access standard permit host HOST-172.16.86.248
access-list Business-Systems-Access remark Intranet Server
access-list Business-Systems-Access standard permit host 172.16.85.32
access-list IT-Systems-Support remark Access to inside network
access-list IT-Systems-Support standard permit 172.16.84.0 255.255.252.0
access-list IT-Systems-Support remark Access to IN netwwork
access-list IT-Systems-Support standard permit 172.16.88.0 255.255.252.0
access-list IT-Systems-Support standard permit Cisco-VLans 255.255.0.0
access-list Systems-XS remark Access to 84 subnet
access-list Systems-XS standard permit 172.16.84.0 255.255.252.0
access-list Systems-XS remark Access to .4 subnet
access-list Systems-XS standard permit inside-network-extra-subnet 255.255.252.0
access-list Systems-XS remark Access to 10.100.x.x/24
access-list Systems-XS standard permit Cisco-VLans 255.255.0.0
access-list Huawei-NOC standard permit 172.16.84.0 255.255.252.0
access-list Huawei-NOC standard permit Cisco-VLans 255.255.0.0
access-list Huawei-NOC standard permit HASUT 255.255.255.0
access-list Huawei-NOC standard permit IT-NETWORK-NEW 255.255.0.0
access-list efdata remark Allow efdata access to above device as per request by chris mkao
access-list efdata standard permit 172.16.92.0 255.255.252.0
access-list test standard permit 172.16.92.0 255.255.252.0
access-list Ghu_ES_LAN remark Allow efdata access to fij ES LAN
access-list Ghu_ES_LAN extended permit ip any 172.16.92.0 255.255.252.0
access-list GuestInternet_access_in extended permit ip any any
global (inside) 1 interface
global (SSN-DMZ) 1 interface
global (Outside) 1 interface
global (management) 1 interface
nat (inside) 0 access-list inside_nat0_outbound
nat (inside) 0 access-list inside_nat0_outbound_1 outside
nat (inside) 1 0.0.0.0 0.0.0.0
nat (SSN-DMZ) 0 access-list SSN-DMZ_nat0_outbound
nat (SSN-DMZ) 1 WWW.IRC.COM-PRIV 255.255.255.255
nat (Outside) 0 access-list Outside_nat0_outbound
nat (GuestInternet) 1 0.0.0.0 0.0.0.0
nat (management) 0 access-list management_nat0_outbound
nat (management) 0 access-list management_nat0_outbound_1 outside
nat (management) 1 10.10.200.1 255.255.255.255
static (inside,Outside) tcp interface 10103 mailgate.irc.com 10103 netmask 255.255.255.255
static (SSN-DMZ,Outside) tcp interface www WWW.IRC.COM-PRIV www netmask 255.255.255.255
static (inside,Outside) tcp interface smtp mailgate.irc.com smtp netmask 255.255.255.255
static (inside,Outside) tcp interface telnet HOST-172.16.84.144 telnet netmask 255.255.255.255
static (inside,Outside) tcp interface pcanywhere-data HOST-192.168.1.14 pcanywhere-data netmask 255.255.255.255
static (inside,Outside) udp interface pcanywhere-status HOST-192.168.1.14 pcanywhere-status netmask 255.255.255.255
static (inside,Outside) tcp interface ssh InterConnect-BillingBox ssh netmask 255.255.255.255
static (inside,Outside) udp interface ntp confusious.suva.irc.com ntp netmask 255.255.255.255
static (inside,Outside) tcp interface 10002 HOST-172.16.200.121 10002 netmask 255.255.255.255
static (inside,Outside) tcp interface 10003 HOST-172.16.200.122 10003 netmask 255.255.255.255
static (inside,Outside) tcp interface 10004 HOST-172.16.41.26 10004 netmask 255.255.255.255
static (inside,Outside) tcp interface 10005 HOST-172.16.41.27 10005 netmask 255.255.255.255
static (inside,Outside) tcp interface https Avabill86.181 https netmask 255.255.255.255
static (inside,Outside) tcp interface 7778 Avabill86.181 7778 netmask 255.255.255.255
static (inside,Outside) tcp interface 8080 Avabill86.181 8080 netmask 255.255.255.255
static (inside,Outside) tcp interface 7777 Avabill86.181 7777 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.45 https Avabill86.177 https netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 2222 daywalker.suva.irc.com 2222 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 ftp waigani-pdc-int2.suva.irc.com ftp netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 www neptune.suva.irc.com www netmask 255.255.255.255
static (inside,Outside) tcp interface 5900 Primary1352CM 5900 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 5900 Backup1352CM 5900 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 https neptune.suva.irc.com https netmask 255.255.255.255
static (inside,Outside) tcp interface 24 HOST-172.16.86.87 24 netmask 255.255.255.255
static (inside,Outside) udp interface domain ns.irc.com domain netmask 255.255.255.255
static (inside,Outside) tcp interface pop3 neptune.suva.irc.com pop3 netmask 255.255.255.255
static (inside,Outside) tcp interface 7780 Apache-WebServer 7780 netmask 255.255.255.255
static (inside,Outside) tcp interface 8000 CRM-SERVER2 8000 netmask 255.255.255.255
static (inside,Outside) tcp interface 8010 CRM-SERVER4 8010 netmask 255.255.255.255
static (inside,Outside) tcp interface 8005 CRM-SERVER3 8005 netmask 255.255.255.255
static (inside,Outside) tcp interface 123 confusious.suva.irc.com 123 netmask 255.255.255.255
static (inside,Outside) tcp interface imap4 neptune.suva.irc.com imap4 netmask 255.255.255.255
static (inside,Outside) tcp interface domain ns.irc.com domain netmask 255.255.255.255
static (inside,Outside) tcp interface ftp telitgate.irc.com ftp netmask 255.255.255.255
static (inside,Outside) tcp interface 5901 uvnc-server 5901 netmask 255.255.255.255
static (inside,Outside) tcp interface 5801 uvnc-server 5801 netmask 255.255.255.255
static (inside,Outside) tcp interface 5902 172.16.84.200 5902 netmask 255.255.255.255
static (inside,Outside) tcp interface 5802 172.16.84.200 5802 netmask 255.255.255.255
static (inside,Outside) tcp interface 995 neptune.suva.irc.com 995 netmask 255.255.255.255
static (inside,Outside) tcp interface 993 neptune.suva.irc.com 993 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 6001 neptune.suva.irc.com 6001 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 6002 neptune.suva.irc.com 6002 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 6004 neptune.suva.irc.com 6004 netmask 255.255.255.255
static (inside,Outside) tcp interface 6001 minerva.suva.irc.com 6001 netmask 255.255.255.255
static (inside,Outside) tcp interface 6002 minerva.suva.irc.com 6002 netmask 255.255.255.255
static (inside,Outside) tcp interface 6004 minerva.suva.irc.com 6004 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 8720 solarwinds-server 8720 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 9000 solarwinds-server 9000 netmask 255.255.255.255
static (inside,Outside) tcp interface 2055 solarwinds-server 2055 netmask 255.255.255.255
static (inside,Outside) tcp interface 88 A-10.100.20.250 88 netmask 255.255.255.255
static (inside,Outside) tcp interface 10000 ns.irc.com 10000 netmask 255.255.255.255
static (inside,Outside) udp Ext-R2-Outside-Interface 2055 solarwinds-server 2055 netmask 255.255.255.255
static (inside,Outside) udp Ext-R2-Outside-Interface snmp solarwinds-server snmp netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 135 neptune.suva.irc.com 135 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 3389 BT-DesktopPC 3389 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.65 www IN-WSC www netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.65 https IN-WSC https netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 ssh Avabill86.176 ssh netmask 255.255.255.255
static (Outside,inside) tcp 10.100.20.36 5432 smile.telinet.com.pg 5432 netmask 255.255.255.255
static (inside,Outside) tcp interface 222 chief.suva.irc.com ssh netmask 255.255.255.255
static (inside,Outside) tcp interface 5061 LYNC-2013-SERVER 5061 netmask 255.255.255.255
static (inside,Outside) tcp interface 5432 10.100.20.36 5432 netmask 255.255.255.255
static (inside,Outside) tcp NAT-202.58.130.43 182 dadbsvr www netmask 255.255.255.255
static (SSN-DMZ,Outside) 202.58.130.69 pomlynrprx01 netmask 255.255.255.255
static (SSN-DMZ,Outside) 202.58.130.66 pomlynedsvr01_access netmask 255.255.255.255
static (SSN-DMZ,Outside) 202.58.130.67 pomlynedsvr01_webcon netmask 255.255.255.255
static (SSN-DMZ,Outside) 202.58.130.68 pomlynedsvr01_AV netmask 255.255.255.255
access-group inside_access_in in interface inside
access-group SSN-DMZ_access_in in interface SSN-DMZ
access-group Outside_access_in_1 in interface Outside control-plane
access-group NETFLOW in interface Outside
access-group GuestInternet_access_in in interface GuestInternet
access-group management_access_in_1 in interface management control-plane
access-group management_access_in in interface management
route Outside 0.0.0.0 0.0.0.0 Ext-R1-Inside-Interface 1
route inside 10.2.1.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 10.8.0.0 255.255.255.0 VPNGATE 1
route inside 10.9.254.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 10.10.1.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 10.10.2.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 10.10.3.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 10.10.4.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 10.10.5.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 10.10.10.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 10.15.100.0 255.255.255.0 fw1.outside.irc.com 1
route inside Cisco-VLans 255.255.0.0 Cisco7200 1
route inside VLan20-2F 255.255.255.0 Cisco7200 1
route inside 10.100.67.0 255.255.255.0 IPVPN-Router 1
route inside 10.100.74.0 255.255.255.0 172.16.86.0 1
route inside 10.100.75.0 255.255.255.0 172.16.86.0 1
route inside 10.100.76.0 255.255.255.0 172.16.86.0 1
route inside LAE 255.255.255.0 172.16.86.0 1
route inside 10.100.91.0 255.255.255.0 172.16.86.0 1
route inside 10.100.110.0 255.255.255.0 172.16.86.0 1
route inside 10.100.111.0 255.255.255.0 172.16.86.0 1
route inside 10.100.114.0 255.255.255.0 172.16.86.0 1
route inside 10.200.200.0 255.255.255.0 Cisco7200 1
route inside A-10.250.0.0 255.255.0.0 Cisco7200 1
route inside 10.254.2.0 255.255.255.252 IPVPN-Router 1
route inside 11.11.3.0 255.255.255.0 172.16.86.0 1
route inside 11.11.4.0 255.255.255.0 172.16.86.0 1
route inside 11.11.8.0 255.255.255.0 172.16.86.0 1
route inside 11.11.9.0 255.255.255.0 172.16.86.0 1
route inside 20.200.200.0 255.255.255.0 172.16.86.17 1
route inside inside-network-extra-subnet 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.8.0 255.255.252.0 Cisco7200 1
route inside 172.16.12.0 255.255.252.0 172.16.86.197 1
route inside 172.16.24.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside NOC 255.255.252.0 172.16.87.187 1
route inside 172.16.48.0 255.255.252.0 172.16.84.41 1
route inside 172.16.52.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.56.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.60.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.64.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.68.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.72.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.76.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.80.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.84.185 255.255.255.255 172.16.86.217 1
route inside CRM-SERVER1 255.255.255.255 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.88.0 255.255.252.0 Cisco7200 1
route inside 172.16.92.0 255.255.252.0 Cisco7200 1
route inside 172.16.96.0 255.255.252.0 172.16.87.172 1
route inside 172.16.104.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.108.0 255.255.252.0 IPVPN-Router 1
route inside 172.16.112.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.120.0 255.255.252.0 TFIJIG-CORE-INT-ROUTER 1
route inside 172.16.124.0 255.255.252.0 IPVPN-Router 1
route inside 172.16.128.0 255.255.252.0 172.16.86.185 1
route inside 172.16.132.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.136.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.140.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.144.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.148.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.152.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.156.0 255.255.252.0 IPVPN-Router 1
route inside 172.16.160.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.164.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.168.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.172.0 255.255.252.0 172.16.87.172 1
route inside 172.16.180.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.184.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.188.0 255.255.252.0 172.16.86.85 1
route inside 172.16.188.0 255.255.252.0 Cisco7200 1
route inside 172.16.192.0 255.255.252.0 172.16.86.194 1
route inside 172.16.200.0 255.255.252.0 172.16.87.11 1
route inside 172.16.204.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.208.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.212.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.220.0 255.255.252.0 IPVPN-Router 1
route inside 172.16.224.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.236.0 255.255.252.0 172.16.87.254 1
route inside 172.16.240.0 255.255.252.0 TFIJI-CORE-INT-ROUTER 1
route inside 172.16.248.0 255.255.252.0 IPVPN-Router 1
route inside 172.17.84.0 255.255.255.224 IPVPN-Router 1
route inside 172.18.252.0 255.255.252.0 172.16.84.15 1
route inside 172.20.0.0 255.255.252.0 172.16.87.11 1
route management 172.20.1.32 255.255.255.240 10.10.200.18 1
route inside 192.167.5.0 255.255.255.0 172.16.86.42 1
route inside 192.168.1.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 192.168.1.0 255.255.255.0 HOST-172.16.84.144 1
route inside 192.168.1.96 255.255.255.224 TFIJI-CORE-INT-ROUTER 1
route inside 192.168.1.128 255.255.255.224 TFIJI-CORE-INT-ROUTER 1
route inside 192.168.2.0 255.255.255.0 172.16.87.192 1
route inside 192.168.5.0 255.255.255.0 HOST-172.16.84.144 1
route inside 192.168.11.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 192.168.150.0 255.255.255.0 IPVPN-Router 1
route inside 192.168.200.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 192.168.201.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 192.168.202.0 255.255.255.0 TFIJI-CORE-INT-ROUTER 1
route inside 192.168.210.0 255.255.255.0 Cisco7200 1
route inside 192.168.213.0 255.255.255.0 Cisco7200 1
route inside 192.168.254.0 255.255.255.0 fw1.outside.irc.com 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
class-map inspection_default
match default-inspection-traffic
class-map flow_export_class
match access-list global_mpc
policy-map global_policy
class inspection_default
inspect dns
inspect esmtp
inspect h323 h225
inspect h323 ras
inspect icmp error
inspect ipsec-pass-thru
inspect mgcp
inspect rsh
inspect sip
inspect skinny
inspect snmp
inspect tftp
inspect ftp strict
inspect icmp
class flow_export_class
flow-export event-type all destination solarwinds-server
policy-map type inspect dns migrated_dns_map_1
parameters
message-length maximum 512
service-policy global_policy global
smtp-server 172.16.86.16
prompt hostname context
Cryptochecksum:24270eebd6c941fb7b302b034e32bba1
: endHi,
NMAP gives the report for the first firewall interface it hits. In your case you have allowed tcp any any where it allows all the ports. I have mentioned only one example.... There are many in your case....
Also NMAP results will be effective once when you directly connect to outside interface or directly on to the outside LAN.
Regards
Karthik -
Hyperlinks Truncating on Export from Access 2007
I have a report in Access 2007 that includes a memo field in RTF format. Quite often part of the text in this field will include one or more hyperlinks. The hyperlinks work fine in Access.
I export this report to .pdf using the following line of VBA code, attached to a button on a form:
DoCmd.OutputTo acOutputReport, stDocName, acFormatPDF, vrtSelectedItem & "\" & title & ".pdf"
This code works fine, and the report is exported to the selected location properly. And if the hyperlink text all fits on one line in the .pdf file, then the link works correctly there, too.
The problem is when the hyperlink text ends up being wrapped around to a 2nd line or more. The entire link still LOOKS like a link in the .pdf file (it's still blue/underlined), but only the first line is actually a hyperlink.
For example, if the link text were:
http://forums.adobe.com/community/
acrobat/post!input.jspa?containterType=14
...then the only part that would actually be a hyperlink in the .pdf document would be "http://forums.adobe.com/community/" and the 2nd line of the link is lost.
We have thousands of these hyperlinks all throughout our data, and many of them are more than one line long. It is not feasible for us to shorten all of them using bit.ly. Nor is it feasible for us to make our users copy and paste the broken links from the .pdf's into their browsers.
So, does anyone know how to fix this so that the hyperlinks we pass to .pdf from Access remain complete hyperlinks, even if they are more than one line long?Finally figured out the solution myself, after 2 days. It's surprisingly simple.
If the URL is surrounded by double quotes in the data, then it works as a complete link when exported to .pdf, even if the link wraps to a 2nd line or more. The quotes show up in the .pdf, too, but that's a small price to pay to have working links.
Maybe you are looking for
-
SAP DMS - How to do an external DMS configuration for the existing system ?
Hi All. Greetings. Request help and understanding. Am new to the world of SAP. And request SOME clarity for understanding of DMS. We are wanting to put an external DMS server and wish to configure for the same. So that the load on the production SAP
-
Hi there. I have a mac pro 2009 quad-core intel xeon and since i've updated to 10.7.3 i've started to have problems with audio. Sometimes when i turn on the mac, the audio doesn't work (the audio icon in the menu bar is shown grey, and if i try to ri
-
Hi all, I added new fields by using 'EEWB' for BP. i have assiged fields to sections also. but my problem in every BP type showing 'Custom fields TAB' i want to remove this Tab. i know Bupt also where i want to do i don't know pls tell me where i
-
Hi, If I want to know that for a particular GL account what are the different doc types effecting it .... how can I do that ?? which tables needs to be searched ?? Thank You, SB.
-
When I reboot my airport express, all my game systems connect fine, after a few days, they all randomly can't connect anymore. This includes nintendo, xbox, sony, etc. The computers don't have this problem. I have an extreme base and express extender