Ezvpn client on router to windows vpn server

Similar Messages

• RV042 with Windows VPN Server

  Hi!,
  how do I connect the RV042 with an Windows VPN Server,
  so that the PC's behind the RV042 get the external IP of the VPN and join the VPN-Server's Network.
  I did configure the Windows Server with this tutorial:
  http://blog.lan-tech.ca/2012/01/28/sbs-2011-essentials-configuring-vpn-access/
  I can connect from any device just fine, so the server is running properly. I just need to know how to connect the RV042 to this VPN.
  Kind Regards
  penpenpen

  Dear Customer,
  Thank you for reaching the Small Business Support Community.
  Please refer to the below document, I think it is what you are looking for;
  http://sbkb.cisco.com/CiscoSB/Loginr.aspx?login=1&pid=2&app=search&vw=1&articleid=2957
  Please do not  hesitate to reach me back if there is any further assistance I may help you with.
  Kind regards,
  Jeffrey Rodriguez S. .:|:.:|:.
  Cisco Customer Support Engineer
  *Please rate the Post so other will know when an answer has been found.

• VPN client connect to CISCO 887 VPN Server bat they stop at router!!

  Hi
  my scenario is as follows
  SERVER1 on lan (192.168.5.2/24)
  |
  |
  CISCO-887 (192.168.5.4) with VPN server
  |
  |
  INTERNET
  |
  |
  VPN Cisco client on xp machine
  My connection have public ip address assegned by ISP, after ppp login.
  I've just configured (with Cisco Configuration Professional) the ADSL connection and VPN Server (Easy VPN).
  All the PC on LAN surf internet and remote PC connect to VPN Cisco server via cisco VPN client.
  But all remote PC after connection to Cisco VPN server don't ping SERVER1 in lan and therefore don't see SERVER1 and every other resource in LAN.
  They can ping only router!!!
  They are configured with Cisco VPN client (V5.0.007) with "Enabled Trasparent Tunnelling" and "IPSec over UDP NAT/PAT".
  What is wrong in my attached configuration? (I've alspo tried to bind Virtual-Template1 both to unnambered Dialer0 and to Loopback0 but without luck)
  Peraps ACL problem?
  Building configuration...
  Current configuration : 5019 bytes
  ! Last configuration change at 05:20:37 UTC Tue Apr 24 2012 by adm
  version 15.2
  no service pad
  service timestamps debug datetime msec
  service timestamps log datetime msec
  no service password-encryption
  hostname gate
  boot-start-marker
  boot-end-marker
  no logging buffered
  aaa new-model
  aaa authentication login default local
  aaa authentication login ciscocp_vpn_xauth_ml_1 local
  aaa authentication login ciscocp_vpn_xauth_ml_2 local
  aaa authorization exec default local
  aaa authorization network ciscocp_vpn_group_ml_1 local
  aaa authorization network ciscocp_vpn_group_ml_2 local
  aaa session-id common
  memory-size iomem 10
  crypto pki token default removal timeout 0
  crypto pki trustpoint TP-self-signed-453216506
  enrollment selfsigned
  subject-name cn=IOS-Self-Signed-Certificate-453216506
  revocation-check none
  rsakeypair TP-self-signed-453216506
  crypto pki certificate chain TP-self-signed-453216506
  certificate self-signed 01
          quit
  ip name-server 212.216.112.222
  ip cef
  no ipv6 cef
  password encryption aes
  license udi pid CISCO887VA-K9 sn ********
  username adm privilege 15 secret 5 *****************
  username user1 secret 5 ******************
  controller VDSL 0
  crypto isakmp policy 1
  encr 3des
  authentication pre-share
  group 2
  crypto isakmp client configuration group EXTERNALS
  key 6 *********\*******
  dns 192.168.5.2
  wins 192.168.5.2
  domain domain.local
  pool SDM_POOL_1
  save-password
  crypto isakmp profile ciscocp-ike-profile-1
     match identity group EXTERNALS
     client authentication list ciscocp_vpn_xauth_ml_2
     isakmp authorization list ciscocp_vpn_group_ml_2
     client configuration address respond
     virtual-template 1
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec transform-set ESP-3DES-SHA1 esp-3des esp-sha-hmac
  crypto ipsec profile CiscoCP_Profile1
  set transform-set ESP-3DES-SHA1
  set isakmp-profile ciscocp-ike-profile-1
  interface Loopback0
  ip address 10.10.10.10 255.255.255.0
  interface Ethernet0
  no ip address
  shutdown
  interface ATM0
  no ip address
  no atm ilmi-keepalive
  interface ATM0.1 point-to-point
  pvc 8/35
    encapsulation aal5snap
    protocol ppp dialer
    dialer pool-member 1
  interface FastEthernet0
  no ip address
  interface FastEthernet1
  no ip address
  interface FastEthernet2
  no ip address
  interface FastEthernet3
  no ip address
  interface Virtual-Template1 type tunnel
  ip unnumbered Dialer0
  tunnel mode ipsec ipv4
  tunnel protection ipsec profile CiscoCP_Profile1
  interface Vlan1
  ip address 192.168.5.4 255.255.255.0
  no ip redirects
  no ip unreachables
  no ip proxy-arp
  ip nat inside
  ip virtual-reassembly in
  interface Dialer0
  ip address negotiated
  ip nat outside
  ip virtual-reassembly in
  encapsulation ppp
  dialer pool 1
  dialer-group 1
  ppp authentication chap pap callin
  ppp chap hostname ******@*******.****
  ppp chap password 0 alicenewag
  ppp pap sent-username ******@*******.**** password 0 *********
  ip local pool SDM_POOL_1 192.168.5.20 192.168.5.50
  ip forward-protocol nd
  ip http server
  ip http authentication local
  ip http secure-server
  ip http timeout-policy idle 600 life 86400 requests 10000
  ip nat inside source list 1 interface Dialer0 overload
  ip route 0.0.0.0 0.0.0.0 Dialer0
  access-list 1 remark INSIDE_IF=Vlan1
  access-list 1 remark CCP_ACL Category=2
  access-list 1 permit 192.168.5.0 0.0.0.255
  access-list 100 remark CCP_ACL Category=4
  access-list 100 permit ip 192.168.5.0 0.0.0.255 any
  dialer-list 1 protocol ip permit
  line con 0
  line aux 0
  line vty 0 4
  transport input all
  end

  Hello,
  Your pool of VPN addresses is overlapping with the interface vlan1.
  Since proxy-arp is disabled on that interface, it will never work
  2 solutions
  1- Pool uses a different network than 192.168.5
  2- Enable ip proxy-arp on interface vlan1
  Cheers,
  Olivier

• VPN client using CLI on windows 2003 server

  Hello, first time poster here. Have an interesting issue I'm hoping to find help with.
  I'm using the VPN client (I have version 4.8.01.0300) in CLI mode (called from a script) to connect to a remote site. Got the connection setup and all working fine except for one small detail. Hopefully I can explain this well...
  I want this connection to run fully unattended as it will run numerous times per day, every day. The issue is the little pop-up message saying "VPN has disconnected".
  When I first setup the connection, it was on windows XP and everything was golden. I could issue the command : vpnclient connect <name> user <userid> pwd <passwd> sd, <other stuff>, vpnclient disconnect and all worked as expected.
  Then I installed same stuff on Windows 2003 server. Issuing same connect command gives error: "user authentication failed". Then I discovered that if I first launched the vpn client GUI then the CLI command, it would connect without error - but then the "disconnected" pop-up window came along.
  So - can I either:
  - Run vpn client in CLI mode without the GUI running.
  - Suppress the pop-up.
  Thanks in advance.
  Scott

  Hi,
  Thank you for the post.
  Please try register MSI installer or clean boot your system to install FEP client.
  Registered MSI Installer following the steps below:
  1.Run "cmd"--Browse to the "%systemroot%\system32" directory and execute: "msiexec /regserver" 
  2.Change directories to "%systemroot%\SysWow64" and execute: "msiexec /regserver" 
  3.Reboot the server
  http://technet.microsoft.com/en-us/library/ff823833.aspx
  If there are more inquiries on this issue, please feel free to let us know.
  Regards
  Rick Tan
  TechNet Community Support

• VPN client connect to CISCO 887 VPN Server but I can't ping Local LAN

  Hi
  my scenario is as follows
  SERVER1 on lan (192.168.1.4)
  |
  |
  CISCO-887 (192.168.1.254)
  |
  |
  INTERNET
  |
  |
  VPN Cisco client on windows 7 machine
  My connection have public ip address assegned by ISP, after ppp login.
  I've just configured (with Cisco Configuration Professional) the ADSL connection and VPN Server (Easy VPN).
  All the PC on LAN surf internet and remote PC connect to VPN Cisco server via cisco VPN client.
  But all remote PC after connection to Cisco VPN server don't ping SERVER1 in lan and therefore don't see SERVER1 and every other resource in LAN. I can't even ping the gateway 192.168.1.254
  I'm using Cisco VPN client (V5.0.07) with "IPSec over UDP NAT/PAT".
  What is wrong in my attached configuration? (I've alspo tried to bind Virtual-Template1 both to unnambered Dialer0 and to Loopback0 but without luck)
  Perhaps ACL problem?
  Building configuration...
  Current configuration : 4921 bytes
  ! Last configuration change at 14:33:06 UTC Sun Jan 26 2014 by NetasTest
  version 15.2
  no service pad
  service timestamps debug datetime msec
  service timestamps log datetime msec
  no service password-encryption
  hostname TestLab
  boot-start-marker
  boot-end-marker
  enable secret 4 5ioUNqNjoCPaFZIVNAyYuHFA2e9v8Ivuc7a7UlyQ3Zw
  aaa new-model
  aaa authentication login default local
  aaa authentication login ciscocp_vpn_xauth_ml_1 local
  aaa authentication login ciscocp_vpn_xauth_ml_2 local
  aaa authorization exec default local
  aaa authorization network ciscocp_vpn_group_ml_1 local
  aaa authorization network ciscocp_vpn_group_ml_2 local
  aaa session-id common
  memory-size iomem 10
  crypto pki trustpoint TP-self-signed-3013130599
  enrollment selfsigned
  subject-name cn=IOS-Self-Signed-Certificate-3013130599
  revocation-check none
  rsakeypair TP-self-signed-3013130599
  crypto pki certificate chain TP-self-signed-3013130599
  certificate self-signed 01
  3082022B 30820194 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
  31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
  69666963 6174652D 33303133 31333035 3939301E 170D3134 30313236 31333333
  35305A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
  4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 30313331
  33303539 3930819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
  8100A873 940DE7B9 112D7C1E CEF53553 ED09B479 24721449 DBD6F559 1B9702B7
  9087E94B 50CBB29F 6FE9C3EC A244357F 287E932F 4AB30518 08C2EAC1 1DF0C521
  8D0931F7 6E7F7511 7A66FBF1 A355BB2A 26DAD318 5A5A7B0D A261EE22 1FB70FD1
  C20F1073 BF055A86 D621F905 E96BD966 A4E87C95 8222F1EE C3627B9A B5963DCE
  AE7F0203 010001A3 53305130 0F060355 1D130101 FF040530 030101FF 301F0603
  551D2304 18301680 14E37481 4AAFF252 197AC35C A6C1E8E1 E9DF5B35 27301D06
  03551D0E 04160414 E374814A AFF25219 7AC35CA6 C1E8E1E9 DF5B3527 300D0609
  2A864886 F70D0101 05050003 81810082 FEE61317 43C08637 F840D6F8 E8FA11D5
  AA5E49D4 BA720ECB 534D1D6B 1A912547 59FED1B1 2B68296C A28F1CD7 FB697048
  B7BF52B8 08827BC6 20B7EA59 E029D785 2E9E11DB 8EAF8FB4 D821C7F5 1AB39B0D
  B599ECC1 F38B733A 5E46FFA8 F0920CD8 DBD0984F 2A05B7A0 478A1FC5 952B0DCC
  CBB28E7A E91A090D 53DAD1A0 3F66A3
  quit
  no ip domain lookup
  ip cef
  no ipv6 cef
  license udi pid CISCO887VA-K9 sn ***********
  username ******* secret 4 5ioUNqNjoCPaFZIVNAyYuHFA2e9v8Ivuc7a7UlyQ3Zw
  username ******* secret 4 Qf/16YMe96arcCpYI46YRa.3.7HcUGTBeJB3ZyRxMtE
  controller VDSL 0
  crypto isakmp policy 1
  encr 3des
  authentication pre-share
  group 2
  crypto isakmp client configuration group EXTERNALS
  key NetasTest
  dns 8.8.4.4
  pool VPN-Pool
  acl 120
  crypto isakmp profile ciscocp-ike-profile-1
  match identity group EXTERNALS
  client authentication list ciscocp_vpn_xauth_ml_2
  isakmp authorization list ciscocp_vpn_group_ml_2
  client configuration address respond
  virtual-template 1
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  mode tunnel
  crypto ipsec transform-set ESP-3DES-SHA1 esp-3des esp-sha-hmac
  mode tunnel
  crypto ipsec profile CiscoCP_Profile1
  set transform-set ESP-3DES-SHA1
  set isakmp-profile ciscocp-ike-profile-1
  interface Ethernet0
  no ip address
  shutdown
  interface ATM0
  no ip address
  no atm ilmi-keepalive
  hold-queue 224 in
  pvc 8/35
  pppoe-client dial-pool-number 1
  interface FastEthernet0
  no ip address
  interface FastEthernet1
  no ip address
  interface FastEthernet2
  no ip address
  interface FastEthernet3
  no ip address
  interface Virtual-Template1 type tunnel
  ip address 192.168.2.1 255.255.255.0
  tunnel mode ipsec ipv4
  tunnel protection ipsec profile CiscoCP_Profile1
  interface Vlan1
  ip address 192.168.1.254 255.255.255.0
  ip nat inside
  ip virtual-reassembly in
  ip tcp adjust-mss 1452
  interface Dialer0
  ip address negotiated
  ip mtu 1452
  ip nat outside
  ip virtual-reassembly in
  encapsulation ppp
  dialer pool 1
  dialer-group 1
  ppp authentication chap pap callin
  ppp chap hostname ****
  ppp chap password 0 *********
  ppp pap sent-username ****** password 0 *******
  no cdp enable
  ip local pool VPN-Pool 192.168.2.210 192.168.2.215
  ip forward-protocol nd
  ip http server
  ip http authentication local
  ip http secure-server
  ip http timeout-policy idle 600 life 86400 requests 10000
  ip nat inside source list 100 interface Dialer0 overload
  ip route 0.0.0.0 0.0.0.0 Dialer0
  access-list 100 remark
  access-list 100 deny ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255
  access-list 100 remark
  access-list 100 permit ip 192.168.1.0 0.0.0.255 any
  access-list 120 remark
  access-list 120 permit ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255
  line con 0
  exec-timeout 5 30
  password ******
  no modem enable
  line aux 0
  line vty 0 4
  password ******
  transport input all
  end
  Best Regards,

  I've updated ios to c870-advipservicesk9-mz.124-24.T8.bin  and tried to ping from rv320 to 871 and vice versa. Ping stil not working.
  router#sh crypto session detail 
  Crypto session current status
  Code: C - IKE Configuration mode, D - Dead Peer Detection     
  K - Keepalives, N - NAT-traversal, T - cTCP encapsulation     
  X - IKE Extended Authentication, F - IKE Fragmentation
  Interface: Dialer0
  Uptime: 00:40:37
  Session status: UP-ACTIVE     
  Peer: 93.190.178.205 port 500 fvrf: (none) ivrf: (none)
        Phase1_id: 192.168.1.100
        Desc: (none)
    IKE SA: local 93.190.177.103/500 remote 93.190.178.205/500 Active 
            Capabilities:(none) connid:2001 lifetime:07:19:22
    IPSEC FLOW: permit ip 10.1.1.0/255.255.255.0 10.1.2.0/255.255.255.0 
          Active SAs: 4, origin: dynamic crypto map
          Inbound:  #pkts dec'ed 0 drop 30 life (KB/Sec) 4500544/1162
          Outbound: #pkts enc'ed 5 drop 0 life (KB/Sec) 4500549/1162

• Ubuntu client flakey connection to  windows 7 server

  Hi.
  This is very strange, but:
  1) server is windows server, and I can connect to it via java app from another windows machine
  2) from ubuntu machine running client app, I can occassionally connect to the Windows Server.
  3) ubuntu server: Linux 2.6.24-24-server , running java version "1.6.0_24"
  4) windows server: Windows 2008 Server 64bit running Oracle 11g Release 11.2.0.1.0
  Both machines are on Subnet 10.* network and firewalls are down on subnet.
  I can ping each machine just fine.
  When I attempt to connect from ubuntu machine the connection DOES (always) show up in v$session on server, but client not is returned a connection (Yet occasionally does).
  I tried to turn on TNS tracing on server but couldn't see any tracing being done (tried setting in sqlnet.ora and listener.ora)
  trace_level_server = 10
  trace_file_server = server.trc
  trace_directory_server = <path_to_trace_dir>
  I also tried client side logging with using ojdbc6_g.jar and starting up the java prog like:
  java -Doracle.jdbc.Trace=true -Djava.util.logging.config.file=jdbc.properties
  jdbc.properties :
  .level=SEVERE
  oracle.jdbc.level=FINER
  oracle.jdbc.handlers=java.util.logging.FileHandler
  java.util.logging.FileHandler.level=FINER
  java.util.logging.FileHandler.pattern=jdbc.log
  java.util.logging.FileHandler.count=1
  java.util.logging.FileHandler.formatter=java.util.logging.SimpleFormatter
  But didn't get any tell-tale signs...
  Can anyone give me some suggestions to check on for A) the java program connectivity and/or B) the tracing problem on server?
  Thanks,
  Joel
  Edited by: rhinosi on Oct 26, 2011 8:39 PM

  This forum is dealing with connections from Oracle to foreign database using the gateway.
  For me it looks like you're having a JDBC connection issue which is better handled in this forum:
  https://forums.oracle.com/forums/category.jspa?categoryID=288
  If my understanding is correct, please close this thread and repost it in the JDBC forum.
  Thanks.

• How to setup SMBX client for work with Windows 2003 server's shared folders?

  Dear community,
  Some folders within shared folder on Windows 2003 Server is not visible for MacOS 10.8 client.
  How should I set up SMBX? Is there manual?
  I know, there is simple solution to type exact pathname (with those invisible folders) in connection dialog, but it is not usefull for me.
  Thank you  in advance

  Hi,
  Please remove the 3 non-exists DC from environment using the metadata clean-up process using script from below article. then manually delete the records from DNS management console as given below.
  https://gallery.technet.microsoft.com/scriptcenter/d31f091f-2642-4ede-9f97-0e1cc4d577f3
  Manual steps to clear the records.
  Dnsmgmt.msc [Dns Management]
  A.Expand the forward lookup zones\_msdcs folder
  i. Make sure only the actual domain controllers are listed, delete wrong Alias recordsremove wrong name server records
  ii. Select the container [forward lookup zones\_msdcs.domain.com\dc\_sites_\sitename\_tcp] > delete incorrect _ldap and _kerberos records are listed.
  iii. Select the container [forward lookup zones\_msdcs.domain.com\dc\_tcp] and delete incorrect _ldap and _kerberos records
  iv. Expand the [forward lookup zones\_msdcs.domain.com\domains\guid\_tcp] and delete incorrect _ldap entries
  v. Select [forward lookup zones\_msdcs.domain.com\gc] – delete incorrect HostA records
  vi. Expand the [forward lookup zones\_msdcs.domain.com\gc\_sites\sitename\_tcp] – delete incorrect _ldap entries
  vii.Select the [forward lookup zones\_msdcs.domain.com\gc\_tcp] – delete incorrect _ldap entries
  viii. Select the [forward lookup zones\_msdcs.domain.com\pdc\_tcp] – delete incorrect _ldap entries
  B.Expand the forward lookup zones\domain.com folder
  i.Delete Host(A) records of dc’s which are non-existant.
  ii.Correct the NameServer (NS) records
  iii. Follow steps similar to ’ A ii ‘ >> ‘ A viii’
  · Dssite.msc [Sites and Services]
  A.Expand the [Sites\Sitename\Servers] – delete incorrect server’s
  B.Delete incorrect subnet configurations [Sites\Subnets]
  C.Delete incorrect site links [Sites\IP]
  · Make sure the domain controllers are pointing to the correct dns servers in tcp\ip settings.
  · Force replication – ‘repadmin /syncall’

• How setup SPA525 vpn client?How configuration Cisco VPN server?

  Hi all,
  How setup SPA525 vpn?
  How configuration Cisco VPN server for SPA525?
  Regards
  John

  Hi John,
  Do you want to setup the SPA525 on the UC300?  If so the UC300 does not support any VPN or remote users.  If you need configuration help with the UC5XX just let me know.
  Thank you,
  Jason Nickle

• Can't connect to Easy VPN Server using Windows 7 inbuilt VPN client

  Hi Everyone,
  I would like your help to resolve a vpn issue I am having with my Windows 7 inbuilt vpn client. I am trying to connect to an Easy vpn server on a Cisco 2951 ISR G2. Well, I can connect using Cisco vpn client v5.07 but I can't connect using Windows 7 inbuilt vpn client. Is there any configuration that I am missing so that I can connect using Windows 7 inbuilt vpn client to connect to the vpn server?
  Thank you.

  Hi MindaugasKa,
  Base on your description, your case must is the NPS client can’t pass the NPS policy.
  The NPS client can’t connect the network may have many reason, such as the Network Access Protection Agent service not started successful, the certificate not issued properly,
  please offer us information when your Windows 7 client denied, such as event id, original error information, screenshot.
  More information:
  Extensible Authentication Protocol (EAP) Settings for Network Access
  http://technet.microsoft.com/en-us/library/hh945104.aspx
  Network Access Protection in NPS
  http://msdn.microsoft.com/en-us/library/cc754378.aspx
  Appendix A: NAP Requirements
  http://technet.microsoft.com/en-us/library/dd125301(v=ws.10).aspx
  802.1X Authenticated Wireless Access Overview
  http://technet.microsoft.com/en-us/library/hh994700.aspx
  Connecting to Wireless Networks with Windows 7
  http://technet.microsoft.com/library/ff802404.aspx
  The related thread:
  NPS 2012 rejects windows 7 clients after upgrade from 2008 R2. Requested EAP methods not available
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/44af171f-6155-4f2e-b6c7-f89a2d755908/nps-2012-rejects-windows-7-clients-after-upgrade-from-2008-r2-requested-eap-methods-not-available?forum=winserverNAP
  I’m glad to be of help to you!
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Does ASA ezVPN support reactive primary vpn server feature

  hi,
  i am going to configure asa5505 as the azvpn client . and configre primay and secondary vpn server in the list.
  i find some feature that is support by ios ROUTER  ezvpn, not sure it will be support on ASA ezVPN???
  Question? will the ezvpn   fall back to the primary vpn server , if primary back on line,  on ASA ?
  Reactivate Primary Peer
  The Reactivate Primary Peer feature allows a default primary peer to be defined. The default primary peer (a server) is one that is considered better than other peers for reasons such as lower cost, shorter distance, or more bandwidth. With this feature configured, if Easy VPN fails over during Phase 1 SA negotiations from the primary peer to the next peer in its backup list, and if the primary peer is again available, the connections with the backup peer are torn down and the connection is again made with the primary peer.

  No, the Primary peer won't be tried again until the phase 1 tunnel is torn down and reactivated. Re-keys do not count. Hope this helps.

• OS X client connecting to Windows 2003 Server SMB

  My OS X 10.6.7 clients are connecting to Windows 2003 Server SMB share. They open files and edit them. Strange thing is that in Windows 2003 Server Open Files the files opened are listed like this:
  filename.tiff:AFP_Resource
  and the user is unable to save the file to the same location.
  Anyone else experienced the same problem?

  My OS X 10.6.7 clients are connecting to Windows 2003 Server SMB share. They open files and edit them. Strange thing is that in Windows 2003 Server Open Files the files opened are listed like this:
  filename.tiff:AFP_Resource
  and the user is unable to save the file to the same location.
  Anyone else experienced the same problem?

• Cannot connect to VPN Server

  Upgraded to Yosemite last night and now my iMac can't connect to my companies VPN server.
  My error is  “The PPTP-VPN server did not respond.”
  The error log at my company's VPN server is...
  Log Name: System
  Source: RasMan
  Date: 10/17/2014 3:46:05 AM
  Event ID: 20209
  Task Category: None
  Level: Warning
  Keywords: Classic
  User: N/A
  Computer: TEXAS.private.4d.com
  Description:
  A connection between the VPN server and the VPN client 69.132.54.71 has been established, but the VPN connection cannot be completed. The most common cause for this is that a firewall or router between the VPN server and the VPN client is not configured to allow Generic Routing Encapsulation (GRE) packets (protocol 47).
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
    <Provider Name="RasMan" />
    <EventID Qualifiers="0">20209</EventID>
    <Level>3</Level>
    <Task>0</Task>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2014-10-17T10:46:05.000000000Z" />
    <EventRecordID>46547</EventRecordID>
    <Channel>System</Channel>
    <Computer>TEXAS.private.4d.com</Computer>
    <Security />
    </System>
    <EventData>
    <Data>69.132.54.71</Data>
    </EventData>
  </Event>
  Hope there is a solution to this problem. My MacBook Pro on the same network running 10.9.5 connect just fine.

  I had the same problem. Tried different vpn protocols via the OS X native interface but to no avail.
  I solved the problem by installing Tunnelblick: https://code.google.com/p/tunnelblick/
  Best regards
  Jan

• VPN Server behind Time Capsule

  I have a mixed environment at home, with several Macs, two Ubuntu servers and 3 Vista laptops the family uses. Recently I had the need to setup a VPN server on one of the Windows machines with standard PPTP/L2TP, nothing out of the ordinary. All my internal clients can connect to the VPN server just fine, however, I find no specific VPN passthrough option nor a port forwarding option for GRE in Time Capsule, thus, any external connection attempts have been in vain. Yes, I have tried this by dropping all firewalls, etc for a short period of time, but to no avail.
  The time capsule is hooked up directly with my ADSL2+ modem, where RFC bridging is setup on the modem to allow Time Capsule to be my sole NAT devices.
  Any insight into this, or has anyone else had success with this?

  I did extensive testing with this last night but still managed to get nowhere (did fix another NAT-PMP on IPv6 issue I had though by enabling Tunneling on the Time Capsule -- another story but my time wasn't completely wasted ).
  I'm just trying to get L2TP working personally... I think this uses ESP rather than GRE but the same principle applies. I disabled all 'Back to my Mac' services too, I felt these may be interfering with IKE/NAT traversal ports (I know it's a requirement to kill these for CISCO VPN client to work).
  Which ISP are you with btw? I'm on BT.. You don't think they are the root cause in my case do you? Clutching at straws now i know.
  Wonder id my AEBS functions any differently....

• Windows 2008 Server crashed - How to find location of remote shared files that they used to access on remote web app?

  We have a client that was running windows 2008 server.  A previous IT person had setup their system, so we were walking into a situation where there were many unknowns.  Server was mainly handling emails only, and we were able to get their exchange
  database off and export PSTs to hosted exchange via microsoft.
  Everything went fine with that, however one user said that he used to access files on the server via the remote web app as he described.  He would go to the following url:
  https://mail.theirdomain.com/remote/menu.aspx#
  and he would use his login and then he would see several links to folders.  He could then click on those and see his desired files.  
  We were able to get the server booted again, however we could not find any of the files he described on it at all, leaving me to suspect that perhaps this remote link was accessing another PC.  
  We have the old server up and running, however the link above is no longer active because we have pointed the domain to the new hosted exchange server.  As I am still learning and my boss wanted me to research this on my own and figure out how to find
  out where these files are located.  Any advice would be greatly appreciated.  
  Just as a note I did try access mail.localhost.com/remote/menu.aspx# on the server but this did not work.  Is there any way in the IIS 7 management console to figure out where this was pointing to?  

  I figured it out - The server was using sharepoint to host these files.  I browsed localhost:987 and opened the sharepoint site locally on the server.  They had several documents to be exported, however when clicking on Open in Explorer it was
  giving an error that local client was not configured.  I installed Desktop Experience and after that was able to open it in Windows Explorer and copy all files off.  

• Running Windows 2003 Server on Xserve Intel with BootCamp?

  Well...
  This sounds like awfully bad idea, but one of our clients needs to run Windows 2003 Server for a certain project in their organisation. Fundings for the new hardware is available. Windows-compatible hardware!
  The idea here is to get fundings for a new Xserve, run it with Windows 2003 Server in the project and then keep the delicious hardware for free when the project ends. A PC-server would be thrown out of a window in this 100% Mac-centric department.
  Windows 2003 Server runs smoothly on a MacPro with Boot Camp and Parallels Desktop. What about the XServe Intel?

  Schuckert-
  Greetings.
  Are you in a position to test the configuration for a while? If so then I vote do it. If not, you could buy a copy of OSX Server and install it on a Mac Pro and try running your software on the XServe platform.
  However, depending on your relationship with this client, I would have them sign a release based upon the beta-ness of the software.
  A lot of us here are not in a position to give such things a try-just yet. Too busy trying to make things transition smoothly on the accepted configurations.
  Although I will say that I suppose a client will eventually pose the question to me (:>)
  Luck-
  -DaddyPaycheck