EA4500, setting 'HTTPs' admin access only, failure CCC upgrading

Got a new EA4500 yesterday, it came with traditional browser-based firmware.
Then I changed its Admin access to HTTPs only, disabled HTTP.
I downloaded CCC upgrading wizard, registered CCC account.
When I tried to upgrade to CCC firmware, it kept trying to detect and finally told 'can not detect a device to upgrade'.
When I enabled HTTP admin access and tried to upgrade CCC again, it worked.
Does somebody encounter similar issue?
If HTTP enabling is a necessary condition for CCC upgrading, shall such message be prompt at least, when the tool failed to detect applicable device?

Which group are you talking about?
I have a group for all direct access machines, You have to specify this group during the wizard.
The permission issue seems to be related to the script trying to modify group policy
I have tired with the default polices the wizard creates and also specifying 2 blank policies.

Similar Messages

  • I have admin access only at work

    My IT department did something to give us Admin access to our Mac (or updates, installing software, yoiu name it) WHILE AT WORK.  When I take my Mac home, I cannot update and install.  I continue to get the prompt for Administrator password.  I take it back to work, and I have Administrator access.  How'd they do that, and how do I undo that?
    I know how to wipe out an Admin password with an install disk.  That's not what I want to do.  I want Admin access at home as well as at work.  (It is kind of silly not to allow me to update at home, or on the road, especially since I am gone form work for a month.)
    Let me know,
    bkabat

    I would have a sit down with my IT department.

  • Mavericks 9.2 SSH is now admin access only

    I have tried every solution out there. Only admins can access my Xserver via SSH. Why are there even two places to enable SSH in Mavericks? It's so frustrating. I have tried turning both locations on/off. Tried setting via serveradmin. Adding users to the allowed list. Rebooting. Still, any non-admin user gets "connection closed" I have users demanding SFTP be working again. Any new solutions (apart from a clean install) please post. This happened immediately after the 9.2 update. When will these stupid bugs be fixed? Where is the prefs setting file for this?

    Found it. The login shell for the affected users in WGM was set to none. This was why adding users to the admin group didn't work. Making the login shell for the affected users bin/bash allowed Filezilla to connect. This was not an issue in 9.1, but for security, perhaps it should be. I don't really know why the deafult in WGM is "none" but that's the fix.

  • Is there a way to set firefox so it only allows access to only one website / (ip address).

    Is there a way to set firefox so it only allows access to only one website / (ip address) and block traffic from everything else (the entire web) other than the one site I want to allow? The site I want to allow is a corporate web application that will only work in firefox. We as a business run a windows server and all client desktops run Internet Explorer with security setting controlled by group policy. We have already locked down the security setting in firefox so users can’t bypass the proxy server settings.

    I have a proxy server set up (Symantec.cloud). Fire fox is “locked” so users would find it difficult to bypass it.
    I have a file: '''local-settings.js '''
    This is located in: C:\Program Files (x86)\Mozilla Firefox\defaults\pref
    The content of this file is:
    ''pref("general.config.obscure_value", 0); // only needed if you do not want to obscure the content with ROT-13
    pref("general.config.filename", "mozilla.cfg");''
    I also have the file: called: '''mozilla.cfg'''
    This is located: C:\Program Files (x86)\Mozilla Firefox
    The contents of this file is:
    lockPref("network.proxy.type", 5);
    All that is working fine, users can’t easily change the connection settings.
    So all that is good and works…
    What I would also like to do is set firefox so access is limited to 1 IP address and nothing else is allowed (the whole internet is blocked, except this one IP address).
    You suggest using a PAC file - I was unsure how I would use a PAC file, (I have never written one) and do not understand how I would implement one? Please help.

  • ASA 5510 - Setting up ACL to permit access only to the Nat'ed subnet

    Hi,
    I experiencing an issue in setting up an ACL on my ASA 5510 to permit access only to the Nat subnet from inside to the outside interface. This firewall is setup for the DR solution in the production network. I am applying following acl in the inbound direction on the inside interface.
    permit ip any "Nat_subnet"
    After appliying this acl to inside interface I observed that I can ping to the destinations in NAT'ed subnet but unable to ssh to the servers. Following is the summary of my configuration. I would appreciate if someone please advice to resolve this issue.
    Regards,
    Muds
    interface Ethernet0/0
    nameif outside
    security-level 0
    ip address 192.168.135.241 255.255.255.248 standby 192.168.135.242
    interface Ethernet0/1
    nameif inside
    security-level 100
    ip address 192.168.135.249 255.255.255.248 standby 192.168.135.250
    object-group network d1-dr-nat_nets
    network-object 192.168.128.0 255.255.248.0
    object network 10.210.14.0_Net
    nat (outside,inside) static 192.168.128.0_Net
    object network 10.210.16.0_Net
    nat (outside,inside) static 192.168.129.0_Net
    object network 10.210.80.0_Net
    nat (outside,inside) static 192.168.130.0_Net
    object network 10.210.84.0_Net
    nat (outside,inside) static 192.168.131.0_Net
    object network 10.210.86.0_Net
    nat (outside,inside) static 192.168.132.0_Net
    object network 10.210.88.0_Net
    nat (outside,inside) static 192.168.133.0_Net !
    object network 10.210.14.0_Net
    nat (outside,inside) static 192.168.128.0_Net
    object network 10.210.16.0_Net
    nat (outside,inside) static 192.168.129.0_Net
    object network 10.210.80.0_Net
    nat (outside,inside) static 192.168.130.0_Net
    object network 10.210.84.0_Net
    nat (outside,inside) static 192.168.131.0_Net
    object network 10.210.86.0_Net
    nat (outside,inside) static 192.168.132.0_Net
    object network 10.210.88.0_Net
    nat (outside,inside) static 192.168.133.0_Net
    access-list prod_lan-in extended permit ip any object-group d1-dr-nat_nets
    access-group prod_lan-in in interface inside

    Hi,
    As I mentioned even though you NAT the address from outside to inside you will have to use the REAL IP ADDRESSES in the access-list statements
    Your hosts on inside will still be connecting to the NAT IP address of the hosts on outside BUT the ASA needs the ACL statements with the NATed hosts original IP addresses
    Let me give an simple example
    object network STATIC
    host 10.10.10.10
    nat (outside,inside) static 192.168.10.10
    access-list INSIDE-IN permit ip any host 10.10.10.10
    or
    access-list INSIDE-IN permit ip any object STATIC
    - Jouni

  • Svr Admin accessing folders set to "No Access"

    I am trying to use Console to view the logs for my mail server program (Kerio Mailserver) but it writes the logs with the owner of System and the group as "serveradmin" (my server admin account) with a setting of "no access". This prevents me from viewing the logs in Console (I can see them in Kerio's program, but want to be able to view them in Console too).
    Is there some way I can attach an ACL to a folder in /usr/local/kerio/..... so that I can give my admin account read access?

    Found the terminal command for adding a ACL to a folder, and that solved the problem.

  • OS X Lion access only HTTPS sites

    Following latest (this past week) security update to OS X Lion, my browsers (both Safari and Firefox) will access only httpsaddresses, not http.   On my IPad, under IOS 7, and using the same network and service provider, I am able to access all Internet sites with no difficulty.  Is anyone else experiencing the same problem?
    Author: Steve Friedman Date: Oct 6, 2013 Location:
    iMac (Intel)
    Bookmarks: 0 Likes: 0 Latest activity: Oct 6, 2013

    Please do not start duplicate topics.
    I responded to you here >   Following latest security update to OS...: Apple Support Communities

  • How to set up full access and limited access wireless networks to laptops

    Dear Apple,
    I just received my Apple 1 TB Time Capsule. Can someone please help me with a network configuration I want to set up?
    I have a cable modem, and, three computers: a G4 iMAC (system 10.5.5), an Apple MacBook (system 10.5.5), and, a PC laptop.
    The Time Capsule is connect directly to the cable modem.
    Regarding the computers:
    (1) I want the G4 iMAC to connect directly, via an Ethernet cable, to the Time Capsule, WITH FULL ALLOWED ACCESS to the Time Capsule and to the back-up function of the Time Machine feature, and, with allowed access to my HP inkjet printer (class 6110);
    (2) I also want the MacBook laptop to wirelessly link to the Time Capsule via the Airport utility on the laptop, and, WITH FULL ALLOWED ACCESS to the Time Capsule and to the back-up function of the Time Machine feature (using WPA/WPA2 security, and, without the network name visible to third parties), and, WITH allowed access to my HP inkjet printer (class 6110);
    (3) I want the PC laptop to wirelessly link to the Time Capsule (using WEP security), but WITHOUT ACCESS to the Time Machine, WITHOUT access to the back-ups on the iMAC, WITHOUT access to the back-ups on the MacBook, and, WITHOUT access to the inkjet printer --- I only want the PC to use the Time Capsule as a WIRELESS ROUTER so that the PC laptop can access the internet.
    (4) And, finally, I want to specify (Time-Capsule/Time-Machine/server ) access ONLY to the iMAC and the MacBook, so that others cannot gain any access.
    I specifically need help to set up and configure the Time Capsule so that the PC laptop, as stated above, should have limited access to the Time Capsule --- namely, only to access the internet, and, not even be aware of stored data on the Time Capsule, not even be aware of the inkjet printer, and, not even see my WPA network name when the PC scans for wireless devices.
    I also want the iMAC and the MacBook to have access to each other’s data stored on the Time Capsule (like a common server).
    I have an old D-Link DI-624 wireless router that I used before buying the Time Capsule, which is available, if needed. Hopefully, I can configure the Time Capsule so that I would not need the old D-Link.
    Thank you in advance,
    David.

    The basic method for remote access is not changed.
    http://gigaom.com/apple/access-your-time-capsule-over-the-internet/
    You have a few issues.
    The really big one.. the school firewall should not let you connect to home.
    Check the IT admin at your school but if they allow anything but a few protocols like http and https through, they are not doing their job. You cannot afford in a large network to have every Tom Dick and Harry access any open device.. that can introduce viruses and trojans into the network behind the firewall.
    The general method for remote access on large networks is vpn and the TC offers no vpn connection.. just AFP.
    If you intend using 3G wireless stick or the like then you can get access.
    The next issue is static public IP or how to find the TC.. you need some way to find the IP if your ISP does not offer static ip, and the tc has no dyndns client. Since Apple shut down new users for mobileme and will close that service there is no method to find the TC IP without owning your own domain. You would be better placing the TC in bridge behind a router that does offer dyndns and port forward AFP (TCP 548) to it.

  • Help needed restricting users admin access to devices using ACS 4.2

    I have users that access the network via a VPN client to a PIX 515 which authenticates to the ACS (using the default group for unknown users) which uses an external Active Directory Database.
    The problem I have is that as the ACS authenticates these users, it now allows them admin access to the PIX. How do I restrict access? I have looked at NARs using the 'All AAA clients, *, *' approach but that just stops their VPN access. ( I have a separate group called 'PIX ACCESS' which will contained only defined users for admin access).
    Incidentally I have other devices on the network which are AAA clients, in particular Nortel switches. I can set the group settings for that RADIUS set up to 'Authenticate Only' (RADIUS Nortel option) and that works fine, I was expecting the ACS to have a similar setting for TACACS+.
    So how do I allow the unknown users to authenticate to their AD database but restrict them admin access to the AAA clients?

    Very common problem. I've solved it twice over the last 6 years with ACS. I'm sketchy on the details. But here goes. First option to explore is using RADIUS for VPN access, then TACACS on all the Cisco switches and PIX firewall. That would make it alot easier. I think that with TACACS, you can build a NAR based on TCP port number instead of IP address....
    http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_tech_note09186a0080858d3c.shtml
    So you'd have a group with 3-4 Administrators that can access PIX CLI, and another group of VPN users that can't access the PIX but can VPN in. So on the VPN group, put a NAR that restricts access to SSH/Telnet TCP ports?
    This comes up everytime I install an ACS server, (every 2-3 years), and it's always a trick.
    Please let me know if this works for you. And if it doesn't, let us know how you fixed it. I think I can get back into the ACS I last did this with and take a look, but I'd have to call up and make a special trip.

  • VISTA & WIRELESS : HOW TO SOLVE LOCAL ACCESS ONLY?

    Thank you for your reading and possible answer(s),
    UNABLE TO GET "LOCAL AND INTERNET ACCESS" UNDER VISTA, WHILE IT WAS POSSIBLE UNDER XP
    I used to get connected "home-like" with XP to a "secondary wireless router" (SSID: Wlancomtrend - no authentication needed, no work group, signal strength: Excellent), which gets the internet signal from a "main wireless router", plugged to the DSL line (SSID: Wireless - no authenticatin needed, no work group, signal strength: Good / Low).
    I am not the administrator of these routers. I used to get DNS automatically under TCPIP properties.
    VISTA DOESN'T LET ME ACCESS THE INTERNET, THOUGH I MANAGE TO CONNECT TO THE SAME ROUTER
    It says: "Access: local only"; and under Network and sharing center it says "unidentified network". I gess I'm a bit unfamiliar with this OS and do not master all its settings. I also marked off security essentials like Firewall under Windows security center, to prevent any possible internet access blocking. My laptop power plan is also set to "High performance".
    - I suspect my ID network is not well configured. Under System properties (right click on the "My computer icon") > Computer name > network ID > Join a Domain or Workgroup: I'm trying to keep the "This is a home computer" setting, but it goes back to "This computer is part of a business network" all the time, even after reboot. How to fix this, by the way?
    - Under Network and Sharing center > Customize the current connection > location type > i set it to "public".
    Other factors maybe irrelevant: / Sharing discovery > Network discovery: "On" / > file sharing: "On".
    I get DNS automatically under TCPIP properties (as with XP).
    A couple of days ago, VISTA managed to get internet with the "main wireless router" (SSID: Wireless - no authentication needed, signal strength: Good / Low). I just tried to set ID network to "This is a home computer" and rebooted. Under the network window, I also tried to tick a network location or workgroup. This may not be important, though.
    I STILL JUST GET LOCAL ACCESS ONLY WITH MY WIRELESS CONNECTION UNDER VISTA
    Any help? Molta mercé / Many thanks
    Also tried:
    - Automatically Detect Settings checked in internet options
    - Obtain an IP address automatically under TCPIP properties
    - Enable DHCP
    - Disable User Account Control in Security Center
    - Disable most of the Vista security stuff
    - Remove and set up all connections
    - IPv6 off
    - etc.
    Google Occitan www.google.com/intl/oc/ | http://www.eurominority.org/documents/cartes/occitania.gif

    Well, I have been thoroughly frustrated by this networking problem in Vista.  What is so INSIDIOUS about it, is that it can happen spontaneously/periodically.  When it first started happening, I could go for hours with
    no problems.  And then all of the sudden, it's "LOCAL ACCESS ONLY."   I'd even lose my Internet connection completely, but then it would come back momentarily.  Lately though, the problem got worse.  It would happen every 5-10 minutes.
    What really drove me nuts originally is that I had set up a new wireless router: a TP-Link TL-WR941N.  Very nice and powerful.  It can reach up 3 stories in a multi-story home.  I have my computer up on the 3rd floor.  My Internet
    connection was no problem... for MONTHS.  And then, all of the sudden, this "LOCAL ACCESS ONLY" problem started cropping up.  My network connection would change to this, then after a few moments, go back to "LOCAL AND INTERNET".
     I figured it was some kind of "momentary atmospheric problem".  But no.  It continued on, for days and days after it had started.  Why?  Why would this start happening when nothing else had changed?
    Ah, but that's where I was amiss.  You see, Vista gets updated frequently by the powers that be at Microsoft.  And who knows what things they really do?  You don't get a full report.  You just keep getting "important security updates".
     Well, I suspect that at some point, they introduced some changes which affect the networking capability of Vista.  And so, since that point, you'll have periodic problems as I have.
    Microsoft is so focused on Windows-7, that they really can't be bothered with Vista.  AND... I really wonder if they leave defects like this around to give incentive for people to upgrade to Windows-7.  I wouldn't put it past them.
    Well, the main thing is that each person's situation is different.  Some people have 3rd party software that is tripping it up (like Norton or McAfee).  I think a lot of the problem depends upon the type of wireless router you're connected with
    and the type of network (e.g. G vs. N).  So that's why some fixes proposed solve the problem while others do nothing.
    If you try any settings changes, I strongly recommend that you do them one at a time.  Also, keep note of what you've applied.  It is important to be able to roll back those changes if need be.
    So, this was the first friendly user tip that helped me:
    Over the course of several days, I made only one change at a time, then waited to see if the failure occurred again.  I'm an IT networking professional so I based my decisions on my familiarity with network protocols, impact, risk, ease of
    implementation and fallback positions.
    These are the steps I took:
    1.  Installed Teracopy, which takes over the file copying function of Windows.
    http://www.codesector.com/teracopy.php
    2. Disabled IPv6 (Control Panel -> Network Connections -> <your connection> -> Properties)
    3.  Disabled Link Layer Topology Discovery Mapper and Responder (Control Panel -> Network Connections -> <your connection> -> Properties)
    4. Set Power settings to high performance (Control Panel -> Power Options) and disabled the screensaver (Control Panel -> Personalization -> Screen Saver)
    5. Reduced my Linksys router's MTU to 1480 (although I doubt this was part of the solution)
    6. Enabled ECN with the following command "netsh interface tcp set global ecncapability=enabled" from command line (Start -> cmd)
    http://technet.microsoft.com/en-us/library/bb726965.aspx
    Possibly step 6 is all you really need to do.  Please post if this works for you.
    Well, I figured I'd give step #6 a shot.  Why not?  There are a few other command line settings recommended, but I decided to try it alone first:
              netsh interface tcp set global ecncapability=enabled
    At first, this seemed to be the only thing I needed to do.  My "LOCAL ACCESS ONLY" problem seemed to stop happening, observed over a 20 minute period.  It happened again for a moment, but then Internet Access returned right away.  I thought
    the problem was solved... But then "LOCAL ACCESS ONLY" came back and stayed.  I had to run these commands as well:
              netsh interface tcp set global autotuninglevel=disabled
              netsh interface tcp set global rss=disabled
    This WORKED!  I seem to sustain my Internet connection for much longer periods.  LOCAL ACCESS ONLY does pop up sometimes, but it is very brief.  I think it's something to do with my router going into "sleep mode" on the
    connection.  If I try to make a connection to a website, it comes back to life and I have Internet Access again.
    LASTLY...
    There is one other thing I want to mention, in case someone else reading this has the same problem.
    One day after a severe storm that caused a power outage, I started getting "LOCAL ACCESS ONLY."  The wireless router was there and I'd connect to it, but no Internet.  I connected directly to it, hardwired, and STILL had the same problem.  I
    rebooted the router, the cable modem, you name it.  Same problem.  Being directly connected to the cable modem was fine.  Did my router get fried from a power surge during the storm?  It seemed perfectly fine in all other respects.  I
    eventually contacted the TP-LINK customer support.  I learned something new...  the problem was with the IP ADDRESS of the router conflicting with the cable modem.
    By default, your wireless router will take IP address 192.168.1.1.  In some cases, this will be a problem if the cable modem is taking the same IP address
    and is finicky about the address of the wireless router.  It was fine for almost 6 months... why did it become a problem all of the sudden?  Bizarre.  Suspicion was that the ISP changed some things (they remotely reprogram
    the modems from time to time, you know).  The solution?  Give the wireless router a different address (e.g. 192.168.2.1).  It worked!  I was able to get Internet access after that.  Worked fine for several months,
    too...  until I started getting that periodic "LOCAL ACCESS ONLY" again.  But the solution above seems to have addressed it.
    Good luck to those having problems.  I sure wish Microsoft would be more dedicated to its customer base.  But thankfully we've got forums like this which bring people together to help solve each others problems.  :-)

  • 10.5.2 Kills Admin Access, No Fix.

    So after 10.5.2 made my Mac Mini cry (after I solved all the issues it caused on my MacBook) I did an archive and install over it to start over again. I heard the combo update had less issues associated with it, so I processed to update and then 10.5.2 kills admin access on my only account. Which wouldn't be a problem except it is set to auto login and the login screen is set to list.
    This would not be a problem still, except Apple had to foresight to not grant root admin access (Long name or short name). So now I have an enabled root account that I can't login to and about 7 wasted hours on this stupid update.
    Somebody please tell me there is something I can do.
    And yes before you treat me like an idiot I can connect to the screen share with the root account, so I am 100% positive I have the right password.

    http://docs.info.apple.com/article.html?artnum=306876
    which I found at:
    http://discussions.apple.com/thread.jspa?threadID=1385516&tstart=15
    I could not execute the last part of the directions since when I run
    Directory Utility.app in the edit menu it says "Enable Root User" not
    "Disable" I don't understand that. When you boot up now, at the
    login screen there is now a user called "Other." I don't know how
    to get rid of that either.

  • Cascading EA4500s and Guest Network access

    Hi, I hope esomone can help me here. I've got two EA4500 routers connected via ethernet. The primary router has DHCP enabled and the secondary has it disabled. IP address of primary is 192.168.1.1 and the secondary is 192.168.1.2.
    I have set up guest access on both routers however only the primary router allows users to connect. When out of range of the primary router but in range of the secondary router the network is visible but when you try to connect to it, it only gives limited or no connectivity message and can't connect to the internet.
    Is it possible for the guest network access to follow the same pattern as the secure network, i.e. the same network throughout the house?
    Regards
    Jon

    Cascading two routers should have correct parameters set. For instance, the Ethernet port of the secondary router should be connected to the ethernet port of the primary one, and the DHCP should be disabled on the second router. The ip address you've set are correct for the both routers. This thing shoud be done if the connection is LAN to LAN.
    By the way there are two types of cascading: Click here for info!
    For the Guest Network:
    Guest Network would only work if the the DHCP is enabled on your router. It means to say that on the type of setup you're doing which is LAN to LAN (DHCP disabled on the second router), Guest network would not work on the secondary router. If the connection is LAN to WAN, then both of the router should have Guest Network working.

  • How can i give multiple users admin access?

    I would like to give another user on my macbook pro admin access, so that they can install programs without having to ask me for the password each time. I do not want the password to be the same for my profile, because I don't want them getting into my account. So is it possible to have a separate password for admin use only? This might be a dumb question and I know their is probably a simple way to do this, but I'm new to macs so any help would be greatly appreciated. Thank you.

    Convert a standard user to an administrator
    Choose Apple menu > System Preferences, then click Users & Groups.
    Click the lock icon  to unlock it, then enter an administrator name and password.
    Select a standard user or managed user in the list of users, then select “Allow user to administer this computer.”
    http://support.apple.com/kb/PH18891

  • Can i set up an access password for the ipod on my ipad 2?

    I purchased an Ipad 2 for my son to use in his therapy for autism. He knows how to use it and knows that we have purchased shows and movies for him to watch in the car. Well now that is all he wants to do. I am wondering if there is a way that I can set up a password to access the ipod. If he cant get into the ipod to see shows and movies he will be fine with just playing the games we have for his therapy. I have looked online and have not had much luck finding an answer to this question. So again can someone please tell me if there is a way to set up an access password for the ipod on the ipad2??????

    Have you got Home Sharing set up (http://support.apple.com/kb/HT3819) ? i.e. he may be viewing the content from your computer, not on the actual iPad. If that is the case (which would explain to me him being able to access the videos via the iPod app), then the Restrictions settings that I've already mentioned should also work on that 'remote' content.
    Edit : your last reply appeared whilst I was typing/checking this. And no, the Videos/iPod apps can't be passcode protected, you will need to go back into Restrictions and remove the restriction, or if the films are only on your computer and not on the iPad itself you could turn off home sharing on the iPad whilst he's playing the games : Settings > iPod and tap on your account id and/or password on the right under Home Sharing and delete it/ them (re-enter them when you want to re-enable it).
    Message was edited by: King_Penguin

  • No admin access to NSS4000 anymore

    I can no longer access my NSS4000 through any means.  CISCO tech support said this is end of live and does no longer support.  So this community is my only option.
    The NSS4000 worked fine until a few weeks ago it was or is setup as a RAID1.
    ALL Leds on the front panel show everything is working fine.  Solid green power, solid green disk drives, blinking green Lan1 led.  I have used 3 different operating systems and twices as many different browers and versions trying to access the admin web interface but with no luck.  ALL browsers show CAN NOT DISPLAY PAGE.  I can ping the NSS4000,  The Cisco Discovery Tool finds the NSS4000, but the GUI button can not access the NSS4000 either.   Using the CISCO Discoverty Tool  to change the IP address does not work either.  It says the password is not correct, even the default password.   I have rebooted like a zillion times using the USB Boot Loader with no luck either.  I have reset the NSS4000 network configuration,  after the reset the CISCO Discovery Tool finds the NSS4000, I can ping it but that is it, still no admin access.
    HOW DO I GET BACK IN CONTROL OF MY NSS4000 and MY DATA?

    Hi,
    I don't know if this is still relevant (because the post is 1+ year old) but I had the same problem and I managed to solve it.
    The bottom line is that I had some policy that blocked all the traffic except from my old network IP range (I replaced my router and my network IP).
    I managed to find this information by connecting to the system with the following port : https://:8888 (Probably a backdoor to the system when you have something like this).
    From that point I was in the web interface and went to "Access" -> "Network" screen and I deleted all the "Drop Traffic" policy.
    Good Luck
    Oded

Maybe you are looking for