ESA Deployment

Similar Messages

• Cisco ESA Deployment Question

  Hello,
  I have a question about the ESA deployment, In case I have 1 ESA deployed in my network with MX record and the public IP is natted to the ESA IP located on the DMZ.
  If the ESA goes down for any reason like power failure, still I can recieve and send email or not? I mean in this case, can the device work in fail-open mode to relay the emals but without applying the policy?
  Or in this case, the mail system will be completly down, and I need to add 2nd MX record (High avaailbility) to ensure that the email system is UP?
  Thanks.
  Ahmad.

  This is very logical for me.
  I had a discussion with Cisco SE and he insists that ESA acts as a proxy not as email server, so the mail server would still deliver email but without any ESA policies applied to it.
  Here, if you point the exchange server to the ESA and the ESA is down, then the recieving and sending will be down, and only the internal emails will be working.
  Thanks.
  Ahmad.

• Cisco ESA Deployment

  Hello Everyone,
  I have seen deployment guides of Cisco ESA stating that the ESA is to be deployed in the DMZ network
  Can We deploy Cisco ESA and also the internal mail server in the same network ?

  You can, but you need to make sure that email (inbound and outbound) flows through the ESA and nothing is direct to your email server. Putting ESA on the edge does make the deployment and future troubleshooting easier.
  Hope it helps.

• ESA deployment in an ISP environment

  Hi All,
  I am to deloy an ESA in for an ISP and some questions came up since i mostly deploy in enterprises/offices with a firewall (DMZ) which is very straight forward. For an ISP however, i am having trouble understanding how mail flows from their clients to the ISP then to the internet and back. Can anyone explain how this would be done:
  1. the ISP want mail from their clients (who host their own MTAs) to be passed through spam filters (hosted by the ISP) before going out to the internet to avoid the client IPs being blacklisted all the time due to sending spam.
  2. ISP wants incoming mail for their clients to go through the ESA before being forwarded to the clients MTAs, which as i said before, are hosted in the clients LAN.
  Questions:
  1. Where in the ISP network will the ESA sit (is it in a LAN just behind the core router or in the ISP internal LAN behind a firewall?)
  2. Does the ISP have to do some kind of re-direction for SMTP traffic to pass through the Ironport ESA before going to the clients (for incoming mail)
  3. Does the client and/or ISP need to change their MX records.
  I would reaally appreciate a breakdown of how this deployment would be done.
  Thanks.

  Henry,
  I would also recommend that MX records be changed to allow inbound smtp traffic to pass through your boxes. In the absence of a hardware load balancer you can use two equally weighted MX records, one pointing to each box.
  On the inbound side you will end up with recipient validation issues. Spammers and others can and WILL send messages to a lot of bad addresses. If you can't validate them at the edge on the way in then you will get stuck with them on your appliances and they can clog up queues if not managed carefully.
  Your options for outbound are limited:
  1) Transparent proxy in "stealth" mode
  A transparent proxy that would capture SMTP to any address is not a function of an Ironport ESA but you could potentiallty set one up that forwarded everything to the Ironport appliances.
  A transparent proxy gets complicated in an ISP environment. Customers may not be so happy with "hidden" traffic manipulation. You would have to turn off Received headers which is not RFC-compliant for edge systems and eventually customers would figure out that the IP where other systems see the mail coming from is not correct. This would make troubleshooting rather complicated. Not to mention that it is a bit heavy-handed.
  2) Transparent proxy with headers getting added
  3) Block direct outbound so they will be forced to relay through you
  Many ISPs do this for residential customers but it tends to be less commonly applied to business customers running their own MTA.
  4) Make relaying optional
  If customers are going to be looking to you for help with blacklist and delivery issues then optional might not be the best method unless you SWIP networks to your customers (non-portable) so they become the contact of record.
  Be aware that MS Exchange can spit out a lot of cruft that will add to your load. Things like Out-Of-Office replies and bounces from email sent to bad addresses can be a measureable percentage of the total email traffic. You can even see things like bounces including a copy of original attachments (WHY?). Just watch your undelivered recipients so that it doesn't get too high.

• Cisco ASA5512-SSD120-K9

  Dear All,
  I would like to ask everyone based on below question:
  Is that this Cisco ASA model (ASA5512-SSD120-K9) have ESA (Email Security Appliance) function and feature? if not, please kindly recommend which Cisco ASA model have this feature or function.
  Thanks.
  Dara

  ESA functionality is not built into any ASA model.
  ESA deployment options include dedicated physical or virtual appliances and cloud-based options.

• Virtual ESA c100v on VMware cloud deployment

  Hello,
  I am testing a c100v virtual ESA appliance with the latest image from the Cisco site on a cloud VMWare virtual environment.  I have it configured with 2 vCPU's, 6GB RAM, 200GB HD, and 1 nic.
  I initially setup the image on my internal testing ESXi server.  This worked just fine.  I had 3 nics configured in VMware but only 1 configured in the VM.
  I shutdown the VM, removed the nics, exported the OVA and imported it into this cloud environment.  The cloud environment offers just a single nic to a VM.
  I logged onto the console access and changed the interface config for the management interface to have the new IP/Subnet/GW.
  Performing a netstat on all interfaces just shows:
  Name  MTU  Network  Address  Ipkts  Ierrs Idrop  Ibytes
  0pkts 0errs 0byts Coll Drop
  I attempted to start a packet capture on all interfaces.  It returned the following:
  "Failed to start packet capture:  Interface Error".
  This occurs no matter which interface I select.
  If I attempt to run a "version" it throws several errors and ends in:
  "ValueError: interface not found"
  Any thoughts on what to check next or how to check?
  Thanks,
  Eric

  Well, we finally figured it out.  (Thank you to a few people on #cisco on Freenode IRC for pointing me in the right direction)
  The cloud VM provider only creates vmnetx3 nics by default.  We had to request e1000 nics be assigned to the VM.  Once they changed the config and powered up the VM the c100v saw the network correctly and routes traffic correctly now too.  I was also able to test this on my test ESXi server.  The virtual ESA VM's only accept e1000 nics, not vmnetx3.
  kstieers1 - We are able to have the c100v work correctly with just a single nic.  As long as I don't attempt to configure the other 2 nics via the CLI or web then I should be just fine.  Yes, it is an unsupported config.  I'm thinking we'll go down to the c000v image later in testing as that has fewer nics.

• Deploying Cisco ESA without Internal Mail_Server

  Hello Experts,
  We have hosted our company email server  into an External Company (Mail Hosting Company),  and our internal Users are all connecting directly to that external company mail-server for accessing thier emails. we donot have anyother internal  Mail_Relay Server inside our company.
  My Question is can we put any Cisco Ironport Email_Security  in this environment so that we have security for our emails ? without having any internal email-relay server ?                

  I think the answer is yes but it depends.  If the mail hosting includes the Internet mail gateway (your MX records point to the hosting company) then there's not much you can do about inbound protection.  If it is just hosting groupware and your MX records can point to your inhouse IronPort then you can do all the normal inbound protection (anti-spam, anti-virus, content checking, etc) and then pass it to the hosted groupware using SMTP as normal.  You would want to use TLS as you are likely going over the Internet to the hosting company.  Similarly for outbound protection, TLS from the hosted groupware to your inhouse IronPort which can do the normal anti-virus, content checking, encryption, etc.  You would have to factor in the extra bandwidth as all your mail will be flowing to and from the hosted environment.  Basically it is just lke any other installation with IronPort talking to groupware e.g. Exchange over SMTP but in your case that connection would be remote not local so you need to take appropriate steps (such as TLS) to protect the traffic.  But as I said at the start it depends on the hosted environment, what is being hosted and how much control you have over the configuration. Hope this helps.

• First time deploy on new installation problem

  Hello all,
  I just installed Jdeveloper 11.1.2.3.0 on Windows Xp SP3 greek and created a Weblogic domain through the wizard consisting only the Basic Weblogic server domain. I completed all the steps
  I want to use it to deploy a simple ADF Fusion web application with business components.
  When I try to run my .jspx page this is what i see in the log window:
  *** Using HTTP port 7101 ***
  *** Using SSL port 7102 ***
  "C:\Documents and Settings\Νικος\Application Data\JDeveloper\system11.1.2.3.39.62.76.1\DefaultDomain\bin\startWebLogic.cmd"
  [waiting for the server to complete its initialization...]
  ’¦ ©η©«�£� ›�¤ �ε¤�  ©� �β©� ¤� �¤«¦§ε©�  «�¤ ΅��¦¨ ©£β¤� › �›¨¦£γ ›ε©΅¦¬.
  JAVA Memory arguments:
  WLS Start Mode=Development
  CLASSPATH=
  PATH=C:\DOCUME~1\D098~1\LOCALS~1\Temp\sfx3C.tmp\jre160_05\bin;C:\oraclexe\app\oracle\product\11.2.0\server\bin;;C:\Program Files\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
  * To start WebLogic Server, use a username and *
  * password assigned to an admin-level user. For *
  * server administration, use the WebLogic Server *
  * console at http:\\hostname:port\console *
  starting weblogic with Java version:
  java version "1.6.0_24"
  Java(TM) SE Runtime Environment (build 1.6.0_24-b50)
  Java HotSpot(TM) Client VM (build 19.1-b02, mixed mode)
  Starting WLS with line:
  C:\oraclexe\MIDDLE~1\JDK160~1\bin\java -Dweblogic.Name= -Djava.security.policy=\server\lib\weblogic.policy -Djavax.net.ssl.trustStore=C:\DOCUME~1\D098~1\LOCALS~1\Temp\trustStore5865185058458460709.jks -Doracle.jdeveloper.adrs=true -Dweblogic.nodemanager.ServiceEnabled=true
  Usage: java [-options] class [args...]
  (to execute a class)
  or java [-options] -jar jarfile [args...]
  (to execute a jar file)
  where options include:
  -client     to select the "client" VM
  -server     to select the "server" VM
  -hotspot     is a synonym for the "client" VM [deprecated]
  The default VM is client.
  -cp <class search path of directories and zip/jar files>
  -classpath <class search path of directories and zip/jar files>
  A ; separated list of directories, JAR archives,
  and ZIP archives to search for class files.
  -D<name>=<value>
  set a system property
  -verbose[:class|gc|jni]
  enable verbose output
  -version print product version and exit
  -version:<value>
  require the specified version to run
  -showversion print product version and continue
  -jre-restrict-search | -jre-no-restrict-search
  include/exclude user private JREs in the version search
  -? -help print this help message
  -X print help on non-standard options
  -ea[:<packagename>...|:<classname>]
  -enableassertions[:<packagename>...|:<classname>]
  enable assertions
  -da[:<packagename>...|:<classname>]
  -disableassertions[:<packagename>...|:<classname>]
  disable assertions
  -esa | -enablesystemassertions
  enable system assertions
  -dsa | -disablesystemassertions
  disable system assertions
  -agentlib:<libname>[=<options>]
  load native agent library <libname>, e.g. -agentlib:hprof
  see also, -agentlib:jdwp=help and -agentlib:hprof=help
  -agentpath:<pathname>[=<options>]
  load native agent library by full pathname
  -javaagent:<jarpath>[=<options>]
  load Java programming language agent, see java.lang.instrument
  -splash:<imagepath>
  show splash screen with specified image
  Process exited.
  of course nothing happens, so I would appreciate if someone could give me a helping word...
  Thank you,
  Nikos S

  Thank you for your answer Frederic,
  Here's the situation now...
  After lot's of installations-uninstallations between 11.1.2.3.0 and 11.1.2.2.0, here is the situation now:
  I created environment vars: FADEV_VERBOSE=true, JAVA_HOME, JDEV_HOME, JDEV_USER_DIR, MW_HOME and PATH.
  When I first install jDev (no matter which of two versions), and start IntegratedWeblogicServer, everything starts normal and well... BUT!
  Here's the weird... The second time it starts jDev and I start the IWLS again, I get this:
  *** Using HTTP port 7101 ***
  *** Using SSL port 7102 ***
  C:\oraclexe\jdev_user_dir\system11.1.2.3.39.62.76.1\DefaultDomain\bin\startWebLogic.cmd
  [waiting for the server to complete its initialization...]
  JAVA Memory arguments: -Xms256m -Xmx512m -XX:CompileThreshold=8000 -XX:PermSize=128m -XX:MaxPermSize=512m
  WLS Start Mode=Development
  CLASSPATH=C:\oraclexe\MIDDLE~1\ORACLE~1\modules\oracle.jdbc_11.1.1\ojdbc6dms.jar;C:\oraclexe\MIDDLE~1\patch_wls1035\profiles\default\sys_manifest_classpath\weblogic_patch.jar;C:\oraclexe\MIDDLE~1\patch_jdev1112\profiles\default\sys_manifest_classpath\weblogic_patch.jar;C:\oraclexe\MIDDLE~1\JDK160~1\lib\tools.jar;C:\oraclexe\MIDDLE~1\WLSERV~1.3\server\lib\weblogic_sp.jar;C:\oraclexe\MIDDLE~1\WLSERV~1.3\server\lib\weblogic.jar;C:\oraclexe\MIDDLE~1\modules\features\weblogic.server.modules_10.3.5.0.jar;C:\oraclexe\MIDDLE~1\WLSERV~1.3\server\lib\webservices.jar;C:\oraclexe\MIDDLE~1\modules\ORGAPA~1.1/lib/ant-all.jar;C:\oraclexe\MIDDLE~1\modules\NETSFA~1.0_1/lib/ant-contrib.jar;C:\oraclexe\MIDDLE~1\ORACLE~1\modules\oracle.jrf_11.1.1\jrf.jar;C:\oraclexe\MIDDLE~1\WLSERV~1.3\common\derby\lib\derbyclient.jar;C:\oraclexe\MIDDLE~1\WLSERV~1.3\server\lib\xqrl.jar
  PATH=C:\oraclexe\MIDDLE~1\patch_wls1035\profiles\default\native;C:\oraclexe\MIDDLE~1\patch_jdev1112\profiles\default\native;C:\oraclexe\MIDDLE~1\WLSERV~1.3\server\native\win\32;C:\oraclexe\MIDDLE~1\WLSERV~1.3\server\bin;C:\oraclexe\MIDDLE~1\modules\ORGAPA~1.1\bin;C:\oraclexe\MIDDLE~1\JDK160~1\jre\bin;C:\oraclexe\MIDDLE~1\JDK160~1\bin;C:\oraclexe\app\oracle\product\11.2.0\server\bin;;C:\Program Files\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;%JDK_HOME%\bin;C:\oraclexe\app\oracle\product\11.2.0\server\bin;;C:\Program Files\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\oraclexe\MIDDLE~1\WLSERV~1.3\server\native\win\32\oci920_8
  * To start WebLogic Server, use a username and *
  * password assigned to an admin-level user. For *
  * server administration, use the WebLogic Server *
  * console at http:\\hostname:port\console *
  starting weblogic with Java version:
  java version "1.6.0_24"
  Java(TM) SE Runtime Environment (build 1.6.0_24-b50)
  Java HotSpot(TM) Client VM (build 19.1-b02, mixed mode)
  Starting WLS with line:
  C:\oraclexe\MIDDLE~1\JDK160~1\bin\java -client -Xms256m -Xmx512m -XX:CompileThreshold=8000 -XX:PermSize=128m -XX:MaxPermSize=512m -Dweblogic.Name=DefaultServer -Djava.security.policy=C:\oraclexe\MIDDLE~1\WLSERV~1.3\server\lib\weblogic.policy -Djavax.net.ssl.trustStore=c:\temp\trustStore8858800480204789292.jks -Xms256m -Xmx512m -XX:CompileThreshold=8000 -XX:PermSize=48m -XX:MaxPermSize=128m -Dweblogic.Name=AdminServer -Djava.security.policy=C:\oraclexe\MIDDLE~1\WLSERV~1.3\server\lib\weblogic.policy -Xverify:none -Xverify:none -da -Dplatform.home=C:\oraclexe\MIDDLE~1\WLSERV~1.3 -Dwls.home=C:\oraclexe\MIDDLE~1\WLSERV~1.3\server -Dweblogic.home=C:\oraclexe\MIDDLE~1\WLSERV~1.3\server -Dweblogic.management.discover=true -Dwlw.iterat iveDev= -Dwlw.testConsole= -Dwlw.logErrorsToConsole= -Dweblogic.ext.dirs=C:\oraclexe\MIDDLE~1\patch_wls1035\profiles\default\sysext_manifest_classpath;C:\oraclexe\MIDDLE~1\patch_jdev1112\profiles\default\sysext_manifest_classpath weblogic.Server -Doracle.jdeveloper.adrs=true -Dweblogic.nodemanager.ServiceEnabled=true -Xverify:none -da -Dplatform.home=C:\oraclexe\MIDDLE~1\WLSERV~1.3 -Dwls.home=C:\oraclexe\MIDDLE~1\WLSERV~1.3\server -Dweblogic.home=C:\oraclexe\MIDDLE~1\WLSERV~1.3\server -Djps.app.credential.overwrite.allowed=true -Dcommon.components.home=C:\oraclexe\MIDDLE~1\ORACLE~1 -Djrf.version=11.1.1 -Dorg.apache.commons.logging.Log=org.apache.commons.logging.impl.Jdk14Logger -Ddomain.home=C:\oraclexe\JDEV_U~1\SYSTEM~1.1\DEFAUL~1 -Djrockit.optfile=C:\oraclexe\MIDDLE~1\ORACLE~1\modules\oracle.jrf_11.1.1\jrocket_optfile.txt -Doracle.server.config.dir=C:\oraclexe\JDEV_U~1\SYSTEM~1.1\DEFAUL~1\config\FMWCON~1\servers\DefaultServer -Doracle.domain.config.dir=C:\oraclexe\JDEV_U~1\SYSTEM~1.1\DEFAUL~1\config\FMWCON~1 -Digf.arisidbeans.carmlloc=C:\oraclexe\JDEV_U~1\SYSTEM~1.1\DEFAUL~1\config\FMWCON~1\carml -Digf.arisidstack.home=C:\oraclexe\JDEV_U~1\SYSTEM~1.1\DEFAUL~1\config\FMWCON~1\arisidprovider -Doracle.security.jps.config=C:\oraclexe\JDEV_U~1\SYSTEM~1.1\DEFAUL~1\config\fmwconfig\jps-config.xml -Doracle.deployed.app.dir=C:\oraclexe\JDEV_U~1\SYSTEM~1.1\DEFAUL~1\servers\DefaultServer\tmp\_WL_user -Doracle.deployed.app.ext=\- -Dweblogic.alternateTypesDirectory=C:\oraclexe\MIDDLE~1\ORACLE~1\modules\oracle.ossoiap_11.1.1,C:\oraclexe\MIDDLE~1\ORACLE~1\modules\oracle.oamprovider_11.1.1 -Djava.protocol.handler.pkgs=oracle.mds.net.protocol -Dweblogic.jdbc.remoteEnabled=false -Dwsm.repository.path=C:\oraclexe\JDEV_U~1\SYSTEM~1.1\DEFAUL~1\oracle\store\gmds -Dweblogic.management.discover=true -Dwlw.iterativeDev= -Dwlw.testConsole= -Dwlw.logErrorsToConsole= -Dweblogic.ext.dirs=C:\oraclexe\MIDDLE~1\patch_wls1035\profiles\default\sysext_manifest_classpath;C:\oraclexe\MIDDLE~1\patch_jdev1112\profiles\default\sysext_manifest_classpath weblogic.Server
  java.lang.NoClassDefFoundError: iveDev=
  Caused by: java.lang.ClassNotFoundException: iveDev=
       at java.net.URLClassLoader$1.run(URLClassLoader.java:202)
       at java.security.AccessController.doPrivileged(Native Method)
       at java.net.URLClassLoader.findClass(URLClassLoader.java:190)
       at java.lang.ClassLoader.loadClass(ClassLoader.java:305)
       at sun.misc.Launcher$AppClassLoader.loadClass(Launcher.java:301)
       at java.lang.ClassLoader.loadClass(ClassLoader.java:246)
  Could not find the main class: iveDev=. Program will exit.
  Exception in thread "main" Process exited.
  Somewhere in that starting line there is this strange -Dwlw.iterat iveDev= (with the space in between), that I cannot find in any Weblogic Server startup script and don't know what to do about it either...
  I would appreciate if any expert would shed some light in this...
  Thank you for your time and effords,
  Nikos S

• Step by step SOA deployment

  Hi friends,
  I am planning to deploy standard services provided by SAP (full environment in my landscape - not ES workplace) ,I need some guidance.
  1) Is procuring Service bundles and deploy it is the only option? (how is the charges for that) - from where I can get it.
  2) which content I need to download for ECC 6.0
      and which one for SAP PI. (is it ESA ECC SE004 ?)
  3) Where to deploy the services (on ECC server or seprate server is required)
  4) If I deploy it on ECC how to consume it?
  5) If I deploy it on seprate server how to make communication between service and my ECC system.

  Hi,
  Standard Web Services (enterpirse services) on ECC6 are included in ESA ECC SE004 (ECC-SE).
  You have to download and install them on your ECC6 system, they will not work on a separate server.
  You can also add more services with Enhancement packages.
  In the SAP World, you can consume them with Abap or Java.
  You can test them with the web service navigator, available only on SAP Java server (http://hostname:port/wsnavigator).
  Regards, Gilles.

• MX LB / HA / Cluster ESA 380

  We go to deploy our new ESA (2 devices) as per mentioned below plan,
  ESA01 is primary for company A and ESA02 is primary for company B.
  If ESA01 is down ESA02 will receive mail for company A using MX load balance. The same method for company B.
  We are very confused on cluster with MX load balance on above scenario.
  Like Two different ESA configurations devices can able include on single cluster. Since we have different policies for both companies and both companies have email server .
  We need some explanation on above.
  Please clarify on this

  "Cluster" in ESA just means the configuration gets replicated.
  So if you cluster them and want different policies for each company, you just go to Mail Polices/Incoming Mail Policies and create one for each company.
  Add each domain you receive mail for to Mail Polices/Recipient Access Table
  Add a route to each mail server for each domain under Network/SMTP routes
  If you want separate "Host Access Tables" you can create separate listeners for each company (under Network/Listeners), and you may want to put them on separate IP interfaces, but you don't have to do this... one HAT may work just fine...

• ESA in MySAP ERP

  Can anyone tell me where I can find the Enterprise Services provided in Mysap ERP 2004 and 2005.
  We are considering an upgrade and the provision of Enterprise service would help the buiness case. TIA

  You can use all function groups, remote functions, BAPI and XML messages about 10,000 to 20,000 as Web Services providers. There are wizards, which create Web Services in very short time.
  NW WSA has about 300-500 WS in MySAP and R/3. All documentation is at help.sap.com websites.
  You can prepare and structure your company for ESA pilot project and later to deploy ESA to all your company business areas and business processes by using SAP Solution Composer.
  In this way you can significantly improve your company result - may be 30% ?

• ESA: outbound messages

  Hello,
  We've deployed ESA in out customer network.
  All incomming connection comes to ESA, ESA queries LDAP (Route Query) and reroutes messages to specific servers (mailhost attribute).
  In our SMTP Routes no entries.
  Incomming messages works fine.
  But outgoing not. Problem is that we need t send all outgoing messages to specific relay. We cannot use DNS.
  So when i add smtp route (All Other Domains) i got situation when all incomming messages goes to the server specified in SMTP Route. However in message tracking i see that ESA got mailhost attribute from LDAP.
  Who can explain, please?      

  Hi Sergey,
  I think the two key points are highlighted/underlined below. I took this information from the Advance Guide.
  https://www.cisco.com/en/US/docs/security/esa/esa7.6/ESA_7.6_AdvancedGuide.pdf
  SMTP Routes Overview
  The SMTP Routes table is read from the top down for every email delivery.
  Otherwise, the system performs a regular MX lookup on the domain of the Envelope Recipient.
  Default SMTP Route
  You can also define a default SMTP route with the special keyword ALL. If a domain does not match a previous mapping in the SMTP Routes list, it defaults to being redirected to the MX host specified by the ALL entry
  HTH,
  Luis Silva
  "If you need PDI (Planning, Design, Implement) assistance feel free to reach us"
  http://www.cisco.com/web/partners/tools/pdihd.html

• Connection problems with ESA C160 and WSA S160

  currently I have deployed ESA C160 and WSA S160 devices in a network but I cannot remotely connect to the devices.
  I have installed Cisco 2811 Terminal server with octal cable connections and cannot seem to get terminal access.
  As well I have connected the Management Interface to a local switch and provisioned VLANs on subnet 192.168.42.X to allow for access but no connection seems to work to gain access to the devices.
  I am wondering if there is a specific cable configuration or connection which will allow me access to the applicances for configuration.
  Any help is appreciated!

  HI
  Are you attempting a remote connection to the serial ports via 2811? I may be missunderstanding your post.
  The serial ports are 9600 Baud 8N1.  Typically you will use a null modem cable for the connection.
  For the network you should be able to connect to the manamgement interface  SSH and HTTPS should be enabled by default. If you connect directly to this port using a crossover cable can you establish a connection?
  If the network connection is failing I would first start with the serial port so you can verify that the configuration is as you expect it to be, meaning the IP address and services enabled. If everything checks out in the configuration. I would next test using a crossover cable on the same subnet. If that works then I would connect the appliance to a switch and test from there. The biggest questions that come up are can you route to the appliance over the network and can you resolve the host over the network.
  Christopher C Smith
  CSE
  Cisco IronPort Customer Support

• Deployment problem/bug?

  Hi,
  I created a deployable proxy DC. In that I created proxy for some 9 ESA services using local wsdl file.
  After build/deploying to the J2EE enginer, only 5 of them are getting shown in the visual admin under web service security. is this any known bug.
  The JNDI lookup is working fine for the proxy that are not appearing, but execution of any method in the proxy is failing.
  thanks in advance.
  regards,
  SAurabh

  Thanks for sharing your experience.

• APLICACION EJECUTABLE CON MODULOS DEPLOY Y UNDEPLOY SIN LICENCIA RUNTIME

  Hola amigos soy programadora y utilizo Labview 8.5 ya k esa version utilizan en la empresa donde trabajo y el cliente esta pidiendo una aplicacion ejecutable sin los modulos DEPLOY Y UNDEPLOY sin la licencia de RUNTIME asi k tengo k investigar si esto es humanamente posoble por k tengo muy claro k el runtime es necesario para cualquier aplicacion aunk sea lo mas basica para k sea ejecutable AYUDA!!!!!!!!

  Que tal Yannl,
  Como funcionan las aplicaciones de Stand Alone o ejecutables, es indispensable tener el Run Time, sin embargo, dependendo de la aplicación puede o no ser gratuito, es decir, si estas haciendo una aplicación en LabVIEW sin módulos extras, el RT es gratuíto, pero si tienes aplicacioens de DSC o Visión por ejemplo, el Run Time requiere licencia, es decir, tiene costo.
  Dime exactamente que módulos utilizarás y te puedo decir si tienen o no costo. Pero el Run Time es indispensable, no puedes omitirlo.
  Saludos,
  Luis Fernando
  National Instruments Cono Sur
  Ingeniería de Campo y Consultoría
  http://chile.ni.com/