Enrollment Upgrade Period

Similar Messages

• Verizon cust service can no longer upgrade a device early???

  I have been a loyal member of Verizon wireless for 10 plus years and the last 5 I have had multiple lines. Verizon isn't the most economical I have seen, but coverage and service are the best imo. Last sept, I dropped my phone in a glass of water. I went through my insurance provider and was charged 100 for the same phone which was a refurb, btw. Of course that phone would not connect to a wireless connection causing a return and an inconvenience to me. Phone number two was also a refurb. Shooting forward to today. My REFURBED phone that could be God knows how old, holds a charge for 3 hours max (with little/no talking). I called today and begged Verizon to understand and take mercy upon me being my next scheduled upgrade period was in 4 months. Of course this multi million dollar making company said they no longer could move an upgrade date up. Seriously? Verizon has access to how many million iPhones? Amazing the new customer can get a top notch, new model iphone for signing up. It is a shame once they get you contracted, they no longer care about customer service. They certainly care about me keeping my end of the bargain which is payment monthly. I will be marching over to sprint by the end of this week. I'm thrilled I have a VM from Verizon just now asking how the customer service is and was
  Signed,
  A former happy Verizon customer

  I pretty much agree with the other replies on this subject.  I don't like all of Verizon's policies either, but if they have a rule, then they need to follow that rule for all customers.  The larger an entity gets, the more they need to rely on policies, rules and procedures.  Can you imagine the chaos that would occur with Verizon's current number of customers if their sales people and customer reps. applied the rules willy-nilly and treated customer's according to their mood that day, or how much the customer whined or cried over the phone or what kind of **** story they came up with?  You know we would all share our story if we got an early upgrade.  That kind of information would spread like wild fire, especially on this community forum, and everybody would want special consideration.  I can just imagine the yelling that could go on in Verizon's local stores when somebody comes in wanting the same break their brother got the other day on an early upgrade!  Where do you draw the line?  Enough said about that, I'm sure you get my point.
  Related to these contracts:  I have been wanting to get away from Verizon for at least a year.  I checked Consumer's Reports and they had an article on the top 5 cell phone/wireless companies.  Verizon, AT&T, Sprint and T-Mobile did not make the top 5.  But, Verizon was the Best of the Worst.  I chose one of the top companies, Ting.  But, I only switched my daughter's phone.  Since she broke her phone again and had already exceeded the "2 maximum replacements" for 12 months (Azurion's Total Equipment Coverage), I knew this was a good time to test the waters with one phone, rather than transferring everything over at once.  Bought her a cheap, refurbished i-Phone 4S from Ting (a lesser phone than what she had, but I wasn't willing to spend more, which by the way was less than the $169 deductible that Azurion charges for an i-Phone 5 replacement).  Activation and porting over her old phone number worked seamlessly.  I am now saving almost $100 a month.  But, Verizon charged me $135 early termination fee, because the 2 year contract on her phone wasn't up until 7/9/15.  I have been a "loyal" customer of Verizon's for at least 20 years, but I did not expect anybody to waive my early termination fee.   It was a calculated decision I made with a lot of research over time.  I knew the monthly savings would cover the early termination fee in no time.  When the contract is up on my phone in June, if I agree with Consumer Reports's ratings, I will be switching it over too.  And, it will be bye-bye Verizon!

• Tiger 10.4.3 Upgrade installation ends with "Error Occurred"

  Nothing like ambiguity to help troubleshoot a software installation. (I've installed Mac OS's since 1986, so before those of you who like to flame people with problems with your favorite platform get out your flame-throwers, stop in your tracks. Comment only if you actually have something constructive to say. I'm a bigger mac-head than you.)
  I have a PMG5 1.8ghz single processor rig running 10.3.9 that I got back in April (right before the free Tiger upgrade period). This weekend I bought a copy of Tiger from MacMall, along with a new iMac CoreDuo for the wife. I got it today and attempted to install it. It ran all sorts of checks, and began the installation. It seemed to progress well, albeit slowly. I got tired of waiting and took a nap before I had to go to work. I got up later to find that it ended with "Error Occurred".
  Well, I thought it may be a situation of just needing another pass at it. So, I instigated the upgrade again, and asked my family to check after it. They just called to say that "Error Occurred" again.
  A few things that might be of use to someone who has gone down my path and has an answer:
  - I left all my peripherals attached before the installation, including an external USB 2.0 drive.
  -The RAM in the computer consists of 256 mb installed by Apple, and 1gb from Crucial installed by me.
  -I have installed all the firmware updates that I could find, including the one that came out specifically for my model of PMG5.
  -I had 25 gb's of free space on the drive being upgraded.
  -The drive being upgraded was the one that came with the computer, which was bought from the Apple Store (no third-party junk).
  Anyone have any suggestions for me? I would greatly appreciate anything you could suggest. I certainly hope that a simple OS upgrade with an installer disk that should be mature by now hasn't hosed my Mac.
  PowerMac G5 1.8ghz   Mac OS X (10.3.9)  

  I have a PMG5 1.8ghz single processor rig running
  10.3.9 that I got back in April (right before the
  free Tiger upgrade period).
  This weekend I bought a
  copy of Tiger from MacMall,
  along with a new iMac
  CoreDuo for the wife. I got it today and attempted to
  install it.
  - I left all my peripherals attached before the
  installation, including an external USB 2.0 drive.
  Hi Glen, Welcome back to Apple's Users Help Users Forums.
  No Flames, I promise.
  Is the CoreDuo the new Intel version? (Pardon MY ignorance.)
  Some 10.4.5 Disks are machine specific. Do you have the right ones?
  Try reinstall w peripherals disconnected. That seems to be standard upgrade advice round here.
  Beyond that, hope the REAL Gurus / Maestros find your thread. I'm in quarter vast mode right now. [see below.]

• Missed RH8 upgrade

  We purchased RoboHelp 7 on May 7, 2008, with order #
  AD001542272, less than a year ago. We bought RoboHelp because we
  wanted an easy to use HTML editor that:
  • Imports from Word
  • Creates .pdf files
  We found out the hard way that RoboHelp does not import from
  Word cleanly and smoothly without some preparation. We never, even
  with considerable assistance from the RoboHelp Forum and your
  Technical Support, generated an Adobe .pdf from our classic HTML
  (chm) Help files. We spend weeks generating a Word document and
  editing the .pdf in InDesign!
  We use the RoboHelp Forum for HTML Help. Peter Grainge and
  Colm McCollum are incredibly responsive and informative resources.
  In fact, we suggested that RoboHelp add customize keyboard
  shortcuts and toolbars to improve productivity and ease of use. We
  also look forward to no more Kadov tags which means cleaner, more
  readable HTML code and the ability to be able to create a .pdf
  file!
  Today we find out online that you have a new RoboHelp version
  (8). You have my email address on your order confirmation. Yet, we
  did not receive any notice of a new version or a free upgrade
  period! Landon at your Live Chat says “Customers who purchase
  an Adobe branded or Macromedia branded product during a limited
  time after Adobe announces a new product version are eligible for a
  free upgrade to the current version.” But Landon also said
  that we do not qualify for the free upgrade.
  How can we upgrade, if we don't receive notice of the new
  version?

  LOL, I'm not sure I'd ever expect a free upgrade if I
  purchased the product nearly a year ago unless somewhere it was
  explicitly stated that I got all future updates at no charge.
  Generally that applies to small applications. But heck, even
  TechSmith SnagIt costs money to upgrade when a new version comes
  out.
  Surely Adobe has some sort of reduced upgrade pricing
  available to someone that purchased version 7. (And by that I mean
  Adobe RoboHelp 7, not eHelp version 7.
  As I said earlier, if you are trying to make a point to Adobe
  about no notification of the new version, you are in the wrong
  place to voice that because this is largely user-to-user support.
  Just as an FYI, if you watch these forums you will typically
  see an announcement that a new version is available or a beta is
  beginning or other things like that. You may also wish to configure
  a Google Alert for things like this.
  Cheers... Rick

• No password prompt from ASA 5500 for certificate enrollment

  Greetings,
  I work in a lab testing interoperability between Avaya and Cisco VoIP products.
  I am setting up an environment to test Avaya 96x1 phones with VPN using SCEP
  going thru an ASA 5510 to a backend IP PBX. 
  Environment:  Windows Server 2008 R2, Enterprise Edition, AD with DNS, NDES
                       Cisco ASA 5510 running 9.0(1)
  I would like to setup certificate enrollment between a Windows Server 2008 R2 and a
  Cisco ASA 5510.  Here are the commands that I use for the Cisco ASA 5510:
       crypto key generate rsa modulus 2048
       crypto ca trustpoint ASA5510-trust
           enrollment url http://10.129.112.20/certsrv/mscep/mscep.dll
           enrollment retry period 5
           enrollment retry count 3
           password Interop123
           exit
       crypto ca authenticate ASA5510-trust
       crypto ca enroll ASA5510-trust
  Everything works as expected until I try to enroll. There is no prompt for the
  enrollment password and the certificate request is denied.
  ciscoasa(config)# crypto ca enroll ASA5510-trust
  % Start certificate enrollment ..
  % The fully-qualified domain name in the certificate will be: ciscoasa.avayasil.avaya.com
  % Include the device serial number in the subject name? [yes/no]: No
  Request certificate from CA? [yes/no]: yes
  % Certificate request sent to Certificate Authority
  ciscoasa(config)# The certificate enrollment request was denied by CA!
  Why isn't there a prompt for the enrollment password?
  BTW, If I set "enforcepassword" to "0" in the Windows registry, then it works.
  Thanks,

  Richard,
  In the trustpoint config you have the challange defined.
  http://www.cisco.com/en/US/docs/security/asa/asa90/command/reference/p1.html#wp1961480
  If this command is enabled, you will not be prompted for a password during certificate enrollment.
  Did you try removing it? If you're still not being asked after removing it. It's most likely a bug.
  M.

• Upgrading from Photoshop CS5 to Photoshop CC

  I'm an amateur photographer and home user of Photoshop CS5. The last full version of Photoshop I purchased was CS2; since then I've upgraded periodically, and I'm now using CS5. At the same time, I've replaced my PC several times, and managed to install Photoshop each time. The copy currently installed on my PC is the CS5 upgrade.
  When I purchased this current PC about a year ago, I had some difficulty installing and registering the program, and I wound up calling Adobe tech support. (The difficulty involved the fact that the only full version I had was the old CS2). They led me through a process that eventually enabled me to use CS5 on this PC.
  Now I'm strongly considering moving up to Photoshop CC which, unless I misread something, includes Lightroom for desktop and mobile, plus Photoshop CC. My questions are as follows:
  Is there any upgrade path from CS5 to CC? I figure it can't hurt to ask, in case I can save some money on the upgrade.
  What is the preferred procedure for installing CC on a computer with CS5 installed? Should I uninstall CS5 before installing CC to guarantee a "clean" installation? I don't have a whole lot of preferences or saved settings to be concerned about, so that's not an issue.
  --Larry

  There is no reason to uninstall CS5 unless you have no reason to keep it.  Below is a link to a page that shows the various subscription plans available.  There is one that is a special rate for Photoshop and Lightroom.  I do not think CS5 qualifies you for a further discount on that package, but there is a special rate for another package if you are a CS owner.
  Creative Cloud Plans
  https://creative.adobe.com/#plans

• Vista upgrade order doesn't seem to be correct

  Hi there!
  The instructions in the PDF on the Toshiba Vista Upgrade site (http://uk.computers.toshiba-europe.com/cgi-bin/ToshibaCSG/generic_content.jsp?service=UK&ID=2006-10-Vista-Express-Upgrade-UK) don't seem to be correct. I've bought a Portege M400 on the 2nd of November, therefore after the start of the upgrade program. I also have a Vista capable logo on the laptop and the model number is the one listed in the Vista eligible list and therefore suitable for an upgrade.
  But the problem starts when I go to the website, which is listed in the upgrade instruction (it just says go http://upgradeweb.moduslink.com/Vista/ and follow the instructions).
  OK, so let's go:
  A) I go to http://upgradeweb.moduslink.com/Vista/
  B) I make sure everything is set to English and United Kingdom.
  C) It asks me if I have an Upgrade Redemption Form - which I do not have - so I choose "No" (as far as I know, these forms are mainly for retail versions eligible for an upgrade).
  D) I click on Vista
  E) An information page comes up, I click next
  F) Now it asks me to choose the reseller - which is weird as there are only some manufacturers as Lenovo listed (Toshiba is not). So I click on the button "My computer reseller is not listed".
  G) A message appears: "If your Computer Reseller is not listed, your OEM may have a direct offer for Windows Vista Upgrade Products. Please contact your OEM directly for further details."
  That's it. So what am I supposed to do now? The OEM is Toshiba and Toshiba is not listed as the reseller (and actually, it asks for the reseller not the manufacturer) and according to the instruction on the Toshiba Vista Upgrade page, I just have to follow the instructions on moduslink.com - which ends in the result that I have to ask my OEM (Toshiba) for an upgrade. So it is kind of a circle - Toshiba sends me to moduslink and moduslink back to Toshiba.
  And by the way, Toshiba only lists in the upgrade instructions the need to have a receipt that falls in the upgrade period, the document doesn't ask for anything else - so I doubt that I am missing anything.
  So what am I supposed to do and how can I order my Vista upgrade?
  Thanks!
  Alex

  I got mine from a small store in Edinburgh, so not even Dixons. But anyway, Toshiba is offering the upgrade program to all customers who bought their computer after the 26th. It doesn't say that it must be bought from the Toshiba online store or from any other specific shop - it just says you must have a receipt showing that you bought the laptop after the 26th. Therefore, we both should be eligible for an upgrade. And even if we would have bought the computer directly from Toshiba, the problem would still be the same as Toshiba is not listed there. I doubt that e.g. Lenovo is selling Toshiba laptops ;)
  So please, could somebody from Toshiba check this?
  Regards
  Alexander

• 9300 Can't connect for email after upgrade

  I am going to try to make this as simple and short as possible. I have a 9300 and it was due for upgrade from A T & T spouse has Iphone wanted new one not in upgrade period. Used my number to do upgrade now email doesn't work on 9300. AT & T Tech tried to help but it was a no go. They stated that Rim might have disabled something but not sure any assistance is wonderful. (even a link to fix it is fine also if it has been posted befor)
  Thanks,

  I hve a feeling the carrier took away your blackberry data plan.  Call the carrier and confirm that your blackberry has the correct data plan attached.  I have a feeling since you used your number to upgrade another phone, the required data plan for the blackberry has been removed.  I don't think RIM disabled anything, but the carrier did.
  Please click the Thumbs Up icon if this comment has helped you!
  If your issue is resolved, please click the solution button on the resolution!
  Every BlackBerry should have BlackBerry Protect, get it now! | Follow me on Twitter | Bring Back BBM Music!

• Bit of an odd upgrade question (not iPhone related I swear!).

  Alright, so here is the situation. I will be the first to say I suck at figuring out the hows and whys of these things. I am hoping some of you are Verizon gurus and can explain this all to me.
  Right now I am rocking an HTC Touch Pro 2, nifty phone, for its time it was a beast, lost its edge to the Droid behemoth these days though. Anyways I am looking to upgrade. I was mulling around the idea of an iPhone but have decided against it. I did however go to the page and plugged in the information to buy an iPhone, despite my new every two/upgrade period still being six months away it said my line was eligible for an upgrade and was going to give me the promo price of $199/299 to get locked into another two year contract. I also recall recieving a text a while back saying I could do the same thing for the Droid X.
  My question is, is this promotion limited to certain phones? I really have my eye set on the Thunderbolt and I am wondering if when that phone hits it will let me lock myself into a new 2 year contract for the promo price of that phone like it would have the Droid X and iPhone.
  Thanks in advance for your help!

  Sounds like you ARE eligible for your annual upgrade (are you the primary, or only line on the account? IS you base plan $49.99 or more per month?)
  You can get the 2 yr promo pricing on a new phone, you lose any additional $30 or $50 credit you may be eligible for, and there is a $20 upgrade fee. For some, it's worth that to get the early upgrade at 12 months rather than 20 months on a 2 year contract.

• Can I Upgrade a Mac PC.

  I have a Mac running off of OS 8.6, and I know it is an old computer. Is there a way I can upgrade to a newer and better edition?
  <Post Relocated by Moderator>

  At this point and time... to take good money and throw it way in upgrading a machine depends on several things.
  1. Are you wanting to challenge yourself and learn about computers?
  2. To what extent are you wanting to upgrade?
  3. What are your expectations from your efforts and upgrades?
  4. What specifically are you wanting to upgrade? — because if you're coming from 8.6, there is a TON of upgrading (assuming your machine is old and bone-stock).
  5. Are you up for the challenge?
  Yes, you can. You "could" upgrade everything from your ROM DIMM, to your processor... and EVERYTHING in between, at a great expense with noticable improvements rock-solid performance.
  The PowerMac Beige G3 was build and designed to be upgraded — period.
  I have (2) Beige G3s, one of which is fully upgraded and rock solid. The second is a back up and a spare parts machine. It runs great, but I use the "built" one. It is super nice to have a reference machine.
  I have (2) G4s, both Dual Processors. One is my "dream machine" (Quicksilver) and the other, a back up that sits on the closet floor.
  I have (3) other PowerMacs 6100/66, 8500/120, and an iMac G3/400 — all unplugged.
  Suggestion:
  Add up the costs of the upgrades wanted, and weigh them against the cost of simply buying a newer machine.
  I've learned soooo much from upgrading, mostly all archaic.
  Do as you wish and enjoy.
  1. Upgrade your ROM DIMM up to Rev. 3
  2. Upgrade/replace your VRM (Voltage Regulator Module) if made by "Royal Tech"
  3. PC100 CL2 SDRAM RAM modules: 768MB total
  4. Overclock your logicboard from 66.83MHz up to 83.32
  5. Upgrade and/or overclock your ZIF processor
  6. Upgrade your PCI Graphics Card
  7. Upgrade to a USB/FireWire Card
  8. Upgrade your OS to 9.2.2
  9. Upgrade your CD to a DVD-R/W
  10. Upgrade your Hard Drive(s)
  11. Upgrade with some speakers
  12. Upgrade your monitor
  Or, buy a newer computer at a great low price (used) that would simply outperform the Beige G3.
  Note:
  You have to know that the Logicboard bus speed of the G3 can be no faster than 83.32MHz, the PCI bus speed at 33.33MHz, and the maximum (overclocked) processor speed of 666MHz @ 8x (J16=P3, P4)
  *The B&W G3 bus speed was 100MHz
  *The G4 bus speed(s) were 100MHz, 133MHz, 167MHz
  (*) Maximum clocking multiple of 10x
  It's all in the math and how you calculate it. It's fun. It's educational. It's computer experience. It's time consuming. It's expensive. It's a computer. But it is after all... a Mac!
  Good luck.
  "Happy Mac-ing!" — Jon Lamont

• Complimentary Upgrade FB to 4.7

  I bought a CS6 Master Collection 2012. Lately, I realize I really need to upgrade FB 4.6 to 4.7.
  And I found it's Complimentary Upgrade last month.
  But today, when I try to download it, I can't find any page to get Complimentary Upgrade.
  Please help me. Thank you. 

  A student of mine contacted Adobe about this and apparently the complimentary upgrade period has expired.  And... there is no upgrade to 4.7 from CS6 version of 4.6 - you have to buy the whole 4.7 at $500 or whatever.  4.7 is in Creative Cloud and that seems to be the way they are pushing.  It's not right but whatever.

• CS4: Upgrades

  I purchased CS3.3 Web Premium in October last year (within the week that CS4 was released). On the phone I was told by an Adobe representative I would be able to upgrade to CS4 free or charge.
  Having just enquired about my free upgrade with "Customer services" over the phone, I was extremely disappointed to be told that I was "too late" and the upgrade period was "over". This was in no way communicated to me when I purchased 3.3 and was offered the upgrade. Especially considering I could have opted for CS4 at the time of purchase.
  So now it appears I need to shell out another £525 just to upgrade to CS4?
  Also, can someone advise if I can upgrade from CS3 Design Windows to CS4 Design Mac?

  You have to check the order page. I just ordered CS4 Master collection from CS3  Only to avoied $300. They told me to call back on April 30th to ask for your free upgrade to Master collection CS5.

• HP Pavillion vist to windows upgrade software needed

  I purchased an hp pavilion for m wife in 2009 and at that time vista was the operating system that was installed.  Microsoft offered a free upgrade to Windows 7 but at the time my wife was going through chemo therapy and that was the last thing we were concerned about.
  However now the pc is giving us grief and we would like to upgrade to Windows 7 but do not have the disk to perform this.  Can anyone help me with this problem?
  Thanks

  Hi,
  Please post the HP product number for your PC. How to Find the HP Model Number and the HP Product Number or let HP automatically find your PC model number and HP network attached printers. This will allow others to review your issue, make suggestions and review your responses. This is usually the best way to get assistance.
  The free upgrade period for VISTA to Windows 7 has expired.  I suggest that you consider Windows 8 rather than Windows 7. Run the below analyzers so you can determine if your PC is ready for Windows 7 or Windows 8.
  Microsoft Windows 7 Upgrade Advisor. 
  Microsoft Windows 8 upgrade assistant
  HP DV9700, t9300, Nvidia 8600, 4GB, Crucial C300 128GB SSD
  HP Photosmart Premium C309G, HP Photosmart 6520
  HP Touchpad, HP Chromebook 11
  Custom i7-4770k,Z-87, 8GB, Vertex 3 SSD, Samsung EVO SSD, Corsair HX650,GTX 760
  Custom i7-4790k,Z-97, 16GB, Vertex 3 SSD, Plextor M.2 SSD, Samsung EVO SSD, Corsair HX650, GTX 660TI
  Windows 7/8 UEFI/Legacy mode, MBR/GPT

• Problem with traffic over Remote Access VPN (Cisco ASA5505)

  Hi
  I've changed the VPN IP pool on a previously functioning VPN setup on a Cisco ASA5505, I've updated IP addresses everywhere it seemed appropriate, but now the VPN is no longer working. I am testing with a Cisco IPSec client, but the same happens with the AnyConnect client. Clients connect, but cannot access resources on the LAN. Split tunneling also doesn't work, internet is not accessible once VPN is connected.
  I found a NAT exempt rule to not be correctly specified, but after fixing this, the problem still persists.
  : Saved:ASA Version 8.2(1) !hostname ciscoasadomain-name our-domain.comenable password xxxxxxxx encryptedpasswd xxxxxxxx encryptednamesname 172.17.1.0 remote-vpn!interface Vlan1 nameif inside security-level 100 ip address 10.1.1.2 255.0.0.0 !interface Vlan2 nameif outside security-level 0 pppoe client vpdn group adslrealm ip address pppoe setroute !interface Ethernet0/0 switchport access vlan 2!interface Ethernet0/1!interface Ethernet0/2!interface Ethernet0/3!interface Ethernet0/4!interface Ethernet0/5!interface Ethernet0/6!interface Ethernet0/7!ftp mode passiveclock timezone SAST 2dns domain-lookup insidedns domain-lookup outsidedns server-group DefaultDNS name-server 10.1.1.138 name-server 10.1.1.54 domain-name our-domain.comsame-security-traffic permit inter-interfacesame-security-traffic permit intra-interfaceobject-group network utobject-group protocol TCPUDP protocol-object udp protocol-object tcpaccess-list no_nat extended permit ip 10.0.0.0 255.0.0.0 remote-vpn 255.255.255.0 access-list split-tunnel standard permit 10.0.0.0 255.0.0.0 access-list outside_access_in extended permit tcp any interface outside eq https access-list outside_access_in extended permit tcp any interface outside eq 5061 access-list outside_access_in extended permit tcp any interface outside eq 51413 access-list outside_access_in extended permit udp any interface outside eq 51413 access-list outside_access_in extended permit tcp any interface outside eq 2121 access-list outside_access_in extended permit udp any interface outside eq 2121 access-list inside_access_out extended deny ip any 64.34.106.0 255.255.255.0 access-list inside_access_out extended deny ip any 69.25.20.0 255.255.255.0 access-list inside_access_out extended deny ip any 69.25.21.0 255.255.255.0 access-list inside_access_out extended deny ip any 72.5.76.0 255.255.255.0 access-list inside_access_out extended deny ip any 72.5.77.0 255.255.255.0 access-list inside_access_out extended deny ip any 216.52.0.0 255.255.0.0 access-list inside_access_out extended deny ip any 74.201.0.0 255.255.0.0 access-list inside_access_out extended deny ip any 64.94.0.0 255.255.0.0 access-list inside_access_out extended deny ip any 69.25.0.0 255.255.0.0 access-list inside_access_out extended deny tcp any any eq 12975 access-list inside_access_out extended deny tcp any any eq 32976 access-list inside_access_out extended deny tcp any any eq 17771 access-list inside_access_out extended deny udp any any eq 17771 access-list inside_access_out extended permit ip any any pager lines 24logging enablelogging asdm informationalmtu inside 1500mtu outside 1500ip local pool VPNPool 172.17.1.1-172.17.1.254icmp unreachable rate-limit 1 burst-size 1no asdm history enablearp timeout 14400global (outside) 1 interfacenat (inside) 0 access-list no_natnat (inside) 1 10.0.0.0 255.0.0.0static (inside,outside) tcp interface 5061 10.1.1.157 5061 netmask 255.255.255.255 static (inside,outside) tcp interface https 10.1.1.157 4443 netmask 255.255.255.255 static (inside,outside) tcp interface 51413 10.1.1.25 51413 netmask 255.255.255.255 static (inside,outside) udp interface 51413 10.1.1.25 51413 netmask 255.255.255.255 static (inside,outside) tcp interface 2121 10.1.1.25 2121 netmask 255.255.255.255 static (inside,outside) udp interface 2121 10.1.1.25 2121 netmask 255.255.255.255 access-group outside_access_in in interface outsidetimeout xlate 3:00:00timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolutetimeout tcp-proxy-reassembly 0:01:00dynamic-access-policy-record DfltAccessPolicyaaa-server AD protocol ldapaaa-server AD (inside) host 10.1.1.138 ldap-base-dn dc=our-domain,dc=com ldap-scope subtree ldap-naming-attribute sAMAccountName ldap-login-password * ldap-login-dn cn=ciscoasa,cn=Users,dc=ourdomain,dc=com server-type auto-detectaaa authentication ssh console AD LOCALaaa authentication telnet console LOCAL http server enable 4343http 0.0.0.0 0.0.0.0 outsidehttp 10.0.0.0 255.0.0.0 insidehttp remote-vpn 255.255.255.0 insidesnmp-server host inside 10.1.1.190 community oursnmpsnmp-server host inside 10.1.1.44 community oursnmpno snmp-server locationno snmp-server contactsnmp-server community *****snmp-server enable traps snmp authentication linkup linkdown coldstartcrypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac crypto ipsec transform-set FirstSet esp-3des esp-md5-hmac crypto ipsec security-association lifetime seconds 28800crypto ipsec security-association lifetime kilobytes 4608000crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5crypto dynamic-map dyn1 1 set transform-set FirstSetcrypto dynamic-map dyn1 1 set reverse-routecrypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAPcrypto map mymap 1 ipsec-isakmp dynamic dyn1crypto map mymap interface outsidecrypto ca trustpoint ASDM_TrustPoint0 enrollment self subject-name CN=ciscoasa crl configurecrypto ca trustpoint CA1 revocation-check crl none enrollment retry period 5 enrollment terminal fqdn ciscoasa.our-domain.com subject-name CN=ciscoasa.our-domain.com, OU=Department, O=Company, C=US, St=New York, L=New York keypair ciscoasa.key crl configurecrypto ca certificate chain ASDM_TrustPoint0 certificate xxxxxxx    ...  quitcrypto ca certificate chain CA1 certificate xxxxxxxxxxxxxx    ...  quit certificate ca xxxxxxxxxxxxx    ...  quitcrypto isakmp enable outsidecrypto isakmp policy 1 authentication rsa-sig encryption 3des hash md5 group 2 lifetime 86400crypto isakmp policy 5 authentication pre-share encryption 3des hash sha group 2 lifetime 86400crypto isakmp policy 10 authentication pre-share encryption des hash sha group 2 lifetime 86400ssh 10.0.0.0 255.0.0.0 insidessh timeout 5console timeout 0vpdn group adslrealm request dialout pppoevpdn group adslrealm localname username6@adslrealmvpdn group adslrealm ppp authentication papvpdn username username6@adslrealm password ********* store-localvpdn username username@adsl-u password ********* store-localvpdn username username2@adslrealm password ********* dhcpd auto_config outside!threat-detection basic-threatthreat-detection scanning-threatthreat-detection statistics access-listno threat-detection statistics tcp-interceptntp server x.x.x.x source outsidessl trust-point ASDM_TrustPoint0 outsidewebvpn port 4343 enable outside svc image disk0:/anyconnect-win-2.5.2014-k9.pkg 1 svc image disk0:/anyconnect-macosx-i386-2.5.2014-k9.pkg 2 svc image disk0:/anyconnect-linux-2.5.2014-k9.pkg 3 svc enablegroup-policy defaultgroup internalgroup-policy defaultgroup attributes dns-server value 10.1.1.138 10.1.1.54 split-tunnel-policy tunnelspecified split-tunnel-network-list value split-tunnel default-domain value our-domain.comgroup-policy DfltGrpPolicy attributes dns-server value 10.1.1.138 10.1.1.54 vpn-tunnel-protocol IPSec l2tp-ipsec svc split-tunnel-policy tunnelspecified split-tunnel-network-list value split-tunnel address-pools value VPNPool webvpn  svc ask none default svcusername person1 password xxxxxxx encryptedusername admin password xxxxxxxx encrypted privilege 15username person2 password xxxxxxxxx encryptedusername person3 password xxxxxxxxxx encryptedtunnel-group DefaultRAGroup general-attributes address-pool VPNPool default-group-policy defaultgrouptunnel-group DefaultRAGroup ipsec-attributes trust-point CA1tunnel-group OurCompany type remote-accesstunnel-group OurCompany general-attributes address-pool VPNPooltunnel-group OurCompany webvpn-attributes group-alias OurCompany enable group-url https://x.x.x.x/OurCompany enabletunnel-group OurIPSEC type remote-accesstunnel-group OurIPSEC general-attributes address-pool VPNPool default-group-policy defaultgrouptunnel-group OurIPSEC ipsec-attributes pre-shared-key * trust-point CA1!class-map inspection_default match default-inspection-traffic!!policy-map type inspect dns preset_dns_map parameters  message-length maximum 512policy-map type inspect sip sip-map parameters  max-forwards-validation action drop log  state-checking action drop log  rtp-conformance policy-map global_policy class inspection_default  inspect dns preset_dns_map   inspect ftp   inspect h323 h225   inspect h323 ras   inspect rsh   inspect rtsp   inspect esmtp   inspect sqlnet   inspect skinny    inspect sunrpc   inspect xdmcp   inspect netbios   inspect tftp   inspect icmp   inspect pptp   inspect sip sip-map !             service-policy global_policy globalprompt hostname context Cryptochecksum:xxxxxxxxxxxxxxxxx: end
  I've checked all the debug logs I could think of and tried various troubleshooting steps. Any ideas?
  Regards
  Lionel

  Hi
  The bulk of the devices are not even routing through the ASA, internal devices such as IP phones, printers, etc. There is also large wastage of IP addresses which needs to be sorted out at some stage.
  Outside IP address is 196.215.40.160. The DSL modem is configured as an LLC bridge.
  Here are the debug logs when connecting if this helps at all. Nothing is logged when a connection is attempted though.
  Regards
  Lionel
  Oct 15 17:08:51 [IKEv1]: IP = 197.79.9.227, IKE_DECODE RECEIVED Message (msgid=0) with payloads : HDR + SA (1) + KE (4) + NONCE (10) + ID (5) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + NONE (0) total length : 765Oct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing SA payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing ke payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing ISA_KE payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing nonce payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing ID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, Received Fragmentation VIDOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, IKE Peer included IKE fragmentation capability flags:  Main Mode:        True  Aggressive Mode:  FalseOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, Received NAT-Traversal RFC VIDOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, Received NAT-Traversal ver 03 VIDOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, Received NAT-Traversal ver 02 VIDOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, Received xauth V6 VIDOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, Received Cisco Unity client VIDOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, processing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: IP = 197.79.9.227, Received DPD VIDOct 15 17:08:51 [IKEv1]: IP = 197.79.9.227, Connection landed on tunnel_group OurIPSECOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, processing IKE SA payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, IKE SA Proposal # 1, Transform # 5 acceptable  Matches global IKE entry # 2Oct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing ISAKMP SA payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing ke payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing nonce payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, Generating keys for Responder...Oct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing ID payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing hash payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, Computing hash for ISAKMPOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing Cisco Unity VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing xauth V6 VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing dpd vid payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing NAT-Traversal VID ver 02 payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing NAT-Discovery payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, computing NAT Discovery hashOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing NAT-Discovery payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, computing NAT Discovery hashOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing Fragmentation VID + extended capabilities payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing VID payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, Send Altiga/Cisco VPN3000/Cisco ASA GW VIDOct 15 17:08:51 [IKEv1]: IP = 197.79.9.227, IKE_DECODE SENDING Message (msgid=0) with payloads : HDR + SA (1) + KE (4) + NONCE (10) + ID (5) + HASH (8) + VENDOR (13) + VENDOR (13) + VENDOR (13) + VENDOR (13) + NAT-D (130) + NAT-D (130) + VENDOR (13) + VENDOR (13) + NONE (0) total length : 436Oct 15 17:08:51 [IKEv1]: IP = 197.79.9.227, IKE_DECODE RECEIVED Message (msgid=0) with payloads : HDR + HASH (8) + NAT-D (130) + NAT-D (130) + NOTIFY (11) + NONE (0) total length : 128Oct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, processing hash payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, Computing hash for ISAKMPOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, processing NAT-Discovery payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, computing NAT Discovery hashOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, processing NAT-Discovery payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, computing NAT Discovery hashOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, processing notify payloadOct 15 17:08:51 [IKEv1]: Group = OurIPSEC, IP = 197.79.9.227, Automatic NAT Detection Status:     Remote end   IS   behind a NAT device     This   end   IS   behind a NAT deviceOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing blank hash payloadOct 15 17:08:51 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, constructing qm hash payloadOct 15 17:08:51 [IKEv1]: IP = 197.79.9.227, IKE_DECODE SENDING Message (msgid=b8b02705) with payloads : HDR + HASH (8) + ATTR (14) + NONE (0) total length : 72Oct 15 17:09:02 [IKEv1]: IP = 197.79.9.227, IKE_DECODE RECEIVED Message (msgid=b8b02705) with payloads : HDR + HASH (8) + ATTR (14) + NONE (0) total length : 88Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, process_attr(): Enter!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, IP = 197.79.9.227, Processing MODE_CFG Reply attributes.Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: primary DNS = 10.1.1.138Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: secondary DNS = 10.1.1.54Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: primary WINS = clearedOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: secondary WINS = clearedOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: split tunneling list = split-tunnelOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: default domain = our-domain.comOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: IP Compression = disabledOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: Split Tunneling Policy = Split NetworkOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: Browser Proxy Setting = no-modifyOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKEGetUserAttributes: Browser Proxy Bypass Local = disableOct 15 17:09:02 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, User (person2) authenticated.Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, constructing blank hash payloadOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, constructing qm hash payloadOct 15 17:09:02 [IKEv1]: IP = 197.79.9.227, IKE_DECODE SENDING Message (msgid=a2171c19) with payloads : HDR + HASH (8) + ATTR (14) + NONE (0) total length : 64Oct 15 17:09:02 [IKEv1]: IP = 197.79.9.227, IKE_DECODE RECEIVED Message (msgid=a2171c19) with payloads : HDR + HASH (8) + ATTR (14) + NONE (0) total length : 64Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, process_attr(): Enter!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Processing cfg ACK attributesOct 15 17:09:02 [IKEv1]: IP = 197.79.9.227, IKE_DECODE RECEIVED Message (msgid=3257625f) with payloads : HDR + HASH (8) + ATTR (14) + NONE (0) total length : 164Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, process_attr(): Enter!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Processing cfg Request attributesOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for IPV4 address!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for IPV4 net mask!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for DNS server address!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for WINS server address!Oct 15 17:09:02 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Received unsupported transaction mode attribute: 5Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for Application Version!Oct 15 17:09:02 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Client Type: iPhone OS  Client Application Version: 7.0.2Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for Banner!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for Default Domain Name!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for Split DNS!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for Split Tunnel List!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for Local LAN Include!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for PFS setting!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for Save PW setting!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for FWTYPE!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for backup ip-sec peer list!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, MODE_CFG: Received request for Client Browser Proxy Setting!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Obtained IP addr (172.17.1.1) prior to initiating Mode Cfg (XAuth enabled)Oct 15 17:09:02 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Assigned private IP address 172.17.1.1 to remote userOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, constructing blank hash payloadOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, construct_cfg_set: default domain = our-domain.comOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Send Client Browser Proxy Attributes!Oct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Browser Proxy set to No-Modify. Browser Proxy data will NOT be included in the mode-cfg replyOct 15 17:09:02 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, constructing qm hash payloadOct 15 17:09:02 [IKEv1]: IP = 197.79.9.227, IKE_DECODE SENDING Message (msgid=3257625f) with payloads : HDR + HASH (8) + ATTR (14) + NONE (0) total length : 210Oct 15 17:09:03 [IKEv1 DECODE]: IP = 197.79.9.227, IKE Responder starting QM: msg id = c9359d2eOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Delay Quick Mode processing, Cert/Trans Exch/RM DSID in progressOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Resume Quick Mode processing, Cert/Trans Exch/RM DSID completedOct 15 17:09:03 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, PHASE 1 COMPLETEDOct 15 17:09:03 [IKEv1]: IP = 197.79.9.227, Keep-alive type for this connection: DPDOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Starting P1 rekey timer: 3420 seconds.Oct 15 17:09:03 [IKEv1]: IP = 197.79.9.227, IKE_DECODE RECEIVED Message (msgid=c9359d2e) with payloads : HDR + HASH (8) + SA (1) + NONCE (10) + ID (5) + ID (5) + NONE (0) total length : 284Oct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, processing hash payloadOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, processing SA payloadOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, processing nonce payloadOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, processing ID payloadOct 15 17:09:03 [IKEv1 DECODE]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, ID_IPV4_ADDR ID received172.17.1.1Oct 15 17:09:03 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Received remote Proxy Host data in ID Payload:  Address 172.17.1.1, Protocol 0, Port 0Oct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, processing ID payloadOct 15 17:09:03 [IKEv1 DECODE]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, ID_IPV4_ADDR_SUBNET ID received--10.0.0.0--255.0.0.0Oct 15 17:09:03 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Received local IP Proxy Subnet data in ID Payload:   Address 10.0.0.0, Mask 255.0.0.0, Protocol 0, Port 0Oct 15 17:09:03 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, QM IsRekeyed old sa not found by addrOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Selecting only UDP-Encapsulated-Tunnel and  UDP-Encapsulated-Transport modes defined by NAT-TraversalOct 15 17:09:03 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKE Remote Peer configured for crypto map: dyn1Oct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, processing IPSec SA payloadOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IPSec SA Proposal # 1, Transform # 6 acceptable  Matches global IPSec SA entry # 1Oct 15 17:09:03 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKE: requesting SPI!IPSEC: New embryonic SA created @ 0xCB809F40,     SCB: 0xC9613DB0,     Direction: inbound    SPI      : 0x96A6C295    Session ID: 0x0001D000    VPIF num  : 0x00000002    Tunnel type: ra    Protocol   : esp    Lifetime   : 240 secondsOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKE got SPI from key engine: SPI = 0x96a6c295Oct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, oakley constucting quick modeOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, constructing blank hash payloadOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, constructing IPSec SA payloadOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, constructing IPSec nonce payloadOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, constructing proxy IDOct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Transmitting Proxy Id:  Remote host: 172.17.1.1  Protocol 0  Port 0  Local subnet:  10.0.0.0  mask 255.0.0.0 Protocol 0  Port 0Oct 15 17:09:03 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, constructing qm hash payloadOct 15 17:09:03 [IKEv1 DECODE]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKE Responder sending 2nd QM pkt: msg id = c9359d2eOct 15 17:09:03 [IKEv1]: IP = 197.79.9.227, IKE_DECODE SENDING Message (msgid=c9359d2e) with payloads : HDR + HASH (8) + SA (1) + NONCE (10) + ID (5) + ID (5) + NONE (0) total length : 152Oct 15 17:09:06 [IKEv1]: IP = 197.79.9.227, IKE_DECODE RECEIVED Message (msgid=c9359d2e) with payloads : HDR + HASH (8) + NONE (0) total length : 52Oct 15 17:09:06 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, processing hash payloadOct 15 17:09:06 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, loading all IPSEC SAsOct 15 17:09:06 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Generating Quick Mode Key!Oct 15 17:09:06 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, NP encrypt rule look up for crypto map dyn1 1 matching ACL Unknown: returned cs_id=c9f22e78; rule=00000000Oct 15 17:09:06 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Generating Quick Mode Key!Oct 15 17:09:06 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, NP encrypt rule look up for crypto map dyn1 1 matching ACL Unknown: returned cs_id=c9f22e78; rule=00000000Oct 15 17:09:06 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Security negotiation complete for User (person2)  Responder, Inbound SPI = 0x96a6c295, Outbound SPI = 0x09e97594IPSEC: New embryonic SA created @ 0xCB8F7418,     SCB: 0xC9F6DD30,     Direction: outbound    SPI      : 0x09E97594    Session ID: 0x0001D000    VPIF num  : 0x00000002    Tunnel type: ra    Protocol   : esp    Lifetime   : 240 secondsIPSEC: Completed host OBSA update, SPI 0x09E97594IPSEC: Creating outbound VPN context, SPI 0x09E97594    Flags: 0x00000025    SA   : 0xCB8F7418    SPI  : 0x09E97594    MTU  : 1492 bytes    VCID : 0x00000000    Peer : 0x00000000    SCB  : 0x99890723    Channel: 0xC6691360IPSEC: Completed outbound VPN context, SPI 0x09E97594    VPN handle: 0x001E7FCCIPSEC: New outbound encrypt rule, SPI 0x09E97594    Src addr: 10.0.0.0    Src mask: 255.0.0.0    Dst addr: 172.17.1.1    Dst mask: 255.255.255.255    Src ports      Upper: 0      Lower: 0      Op   : ignore    Dst ports      Upper: 0      Lower: 0      Op   : ignore    Protocol: 0    Use protocol: false    SPI: 0x00000000    Use SPI: falseIPSEC: Completed outbound encrypt rule, SPI 0x09E97594    Rule ID: 0xCB5483E8IPSEC: New outbound permit rule, SPI 0x09E97594    Src addr: 196.215.40.160    Src mask: 255.255.255.255    Dst addr: 197.79.9.227    Dst mask: 255.255.255.255    Src ports      Upper: 4500      Lower: 4500      Op   : equal    Dst ports      Upper: 41593      Lower: 41593      Op   : equal    Protocol: 17    Use protocol: true    SPI: 0x00000000    Use SPI: falseIPSEC: Completed outbound permit rule, SPI 0x09E97594    Rule ID: 0xC9242228Oct 15 17:09:06 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, IKE got a KEY_ADD msg for SA: SPI = 0x09e97594IPSEC: Completed host IBSA update, SPI 0x96A6C295IPSEC: Creating inbound VPN context, SPI 0x96A6C295    Flags: 0x00000026    SA   : 0xCB809F40    SPI  : 0x96A6C295    MTU  : 0 bytes    VCID : 0x00000000    Peer : 0x001E7FCC    SCB  : 0x985C5DA5    Channel: 0xC6691360IPSEC: Completed inbound VPN context, SPI 0x96A6C295    VPN handle: 0x0020190CIPSEC: Updating outbound VPN context 0x001E7FCC, SPI 0x09E97594    Flags: 0x00000025    SA   : 0xCB8F7418    SPI  : 0x09E97594    MTU  : 1492 bytes    VCID : 0x00000000    Peer : 0x0020190C    SCB  : 0x99890723    Channel: 0xC6691360IPSEC: Completed outbound VPN context, SPI 0x09E97594    VPN handle: 0x001E7FCCIPSEC: Completed outbound inner rule, SPI 0x09E97594    Rule ID: 0xCB5483E8IPSEC: Completed outbound outer SPD rule, SPI 0x09E97594    Rule ID: 0xC9242228IPSEC: New inbound tunnel flow rule, SPI 0x96A6C295    Src addr: 172.17.1.1    Src mask: 255.255.255.255    Dst addr: 10.0.0.0    Dst mask: 255.0.0.0    Src ports      Upper: 0      Lower: 0      Op   : ignore    Dst ports      Upper: 0      Lower: 0      Op   : ignore    Protocol: 0    Use protocol: false    SPI: 0x00000000    Use SPI: falseIPSEC: Completed inbound tunnel flow rule, SPI 0x96A6C295    Rule ID: 0xCB7CFCC8IPSEC: New inbound decrypt rule, SPI 0x96A6C295    Src addr: 197.79.9.227    Src mask: 255.255.255.255    Dst addr: 196.215.40.160    Dst mask: 255.255.255.255    Src ports      Upper: 41593      Lower: 41593      Op   : equal    Dst ports      Upper: 4500      Lower: 4500      Op   : equal    Protocol: 17    Use protocol: true    SPI: 0x00000000    Use SPI: falseIPSEC: Completed inbound decrypt rule, SPI 0x96A6C295    Rule ID: 0xCB9BF828IPSEC: New inbound permit rule, SPI 0x96A6C295    Src addr: 197.79.9.227    Src mask: 255.255.255.255    Dst addr: 196.215.40.160    Dst mask: 255.255.255.255    Src ports      Upper: 41593      Lower: 41593      Op   : equal    Dst ports      Upper: 4500      Lower: 4500      Op   : equal    Protocol: 17    Use protocol: true    SPI: 0x00000000    Use SPI: falseIPSEC: Completed inbound permit rule, SPI 0x96A6C295    Rule ID: 0xCBA7C740Oct 15 17:09:06 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Pitcher: received KEY_UPDATE, spi 0x96a6c295Oct 15 17:09:06 [IKEv1 DEBUG]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Starting P2 rekey timer: 3417 seconds.Oct 15 17:09:06 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, Adding static route for client address: 172.17.1.1 Oct 15 17:09:06 [IKEv1]: Group = OurIPSEC, Username = person2, IP = 197.79.9.227, PHASE 2 COMPLETED (msgid=c9359d2e)

• I just bought a Nikon D610  light room 4.4 will not open images from my camera help!

  i am getting frustrated as i have downloaded dng update 8.7.1 and still dose not recognize the raw images and will not convert to dng.any one know what i can do to solve this besides update to lightroom 5 as i want to wait for 6

  In a market economy people get paid for their work via companies who charge for their products.  Adobe employs people who are working all the time, and therefore chooses to require pay-for upgrades periodically to generate more revenue.  The reason they switched to the cloud was to even out their revenue stream even more.  You can pay US$10/month and get the current versions of LR and PS as long as you keep paying.
  Just because many people are upset when they realize they'll have to spend more money for software because they got a new camera doesn't make the producer of the software bad or mean that the feelings are justified and it's someone else's fault.
  What should happen differently: that society be communist and all software be produced by and doled out from the government so political decisions govern what is available and who gets it, or a more socialist society where retired workers get more things for free or at reduced cost due to they're not working anymore, or what is your specific idea for what should be changed?
  As far as your crumbs and loaf analogy, Adobe is a publically-traded, for-profit company.  If people are getting rich from gouging seniors then you should have purchased stock a long time ago and get a piece of those supposedly extraordinary profits as dividends for yourself and you can vote in the shareholder meetings to give more software to whatever groups you deem more worthy.  And if you're across a border and things are much more expensive due to government policies or taxes and if you're a citizen of that society and organize and get people to vote differently and change the system.
  If you're coming here for solutions about how work with new camera raws in older software keep your question to that.  If you're wanting people to agree that you're justified in being upset by complaining that Adobe is bad then you've probably come to the wrong place.