Forwarding through IPv6 Firewall partial solution

Similar Messages

• Problem with IPV6 Firewall since firmware 7.6.1

  I have problem with IPV6 Firewall (port forwarding using a HE tunnel) since firmware 7.6.1 upgrade,  IPV6 oubound is working, but ports are not forwarding to my local IPV6 adress, have used IPV6 Firewall, and it worked before
  Ant sugesttions, solutions?

  Go back one firmware version into release 7.6
  I had similar problems with an IPv6 tunnel not working anymore after the 7.6.1 upgrade.
  When I 'rolled' back to 7.6, my IPv6 tunnel came back working.
  I also use the old Airport Express application on my OS/X, the new one with the globe on the black screen is missing IPv6 tabs in the application..

• Portal access through a firewall

  Hi there!
  Having the default installtion of R2 on a single W2K box, what's the minimal procedure to make this configuration available through a firewall?
  I've opened ports 7777-7778 but fail when trying to logon via SSO (host.domain.com:7777/pls/orasso)
  Have I missed out to open another port or am I forced to follow the steps of setting up a reversing proxy to have portal-access outside the firewall?
  Cheers
  /Staffan

  If they are on different servers, then both are listening on the 7777 port, and you will have to change one of them to use another port (assuming your firewall can only port forward a port to only one host).
  If you are running both instances on the same server, then your SSO is accessible via 7777 and your midtier would be on 7778, so your setup as described should be enough (I do the same thing).
  If they are running on the one machine, can you access the SSO/INF server directly? http://inf.domain.com:7777 and then http://inf.domain.com:7777/pls/orasso ?

• Creating IPv6 firewall exceptions for several machines

  Hi,
  I've just set up my Airport Extreme (802.11n) with my new IPv6 tunnel (SixXS). I have a /48 prefix, all my home computers are individually pingable, all have forward and reverse DNS, my name appears on WHOIS for both the domain and IP address range.
  I'm very happy. My 20 years of masquerading are over!
  Now, when configuring the IPv6 firewall on the AE, I'd like to setup an exception, say SSH, for all machines on my network.
  When I enter an exception such as this (anonymized, RFC 3849):
  IPv6 address: 2001:db8:1234:0:260d:cd3f:fc81:2a0f
  TCP port(s): 22
  UDP port(s):
  This works fine. But, it would be logical that the following would also work:
  IPv6 address: 2001:db8:1234::/64
  TCP port(s): 22
  UDP port(s):
  Meaning that connections to TCP port 22 would be allowed to any address in that subnet. However, it doesn't.
  Now, is this a feature which is not present in the current firmware of the AE?
  Or am I doing it the wrong way?
  Really, I hope it's the second alternative. Or else, I will have to add an exception to every single host. Now, it's not that I have a lot of machines. There are six nodes on my network. FreeBSD, Linux and a couple of macs.
  But if you multiply that by the number of services that each machine will support, say 3-6, you get 18 to 36 exceptions on the firewall.
  Now, it's doable, of course. I can enter say 24 individual exceptions.
  However, a list of 24 is a lot harder to manage and to look at in the small box of the airport utility's interface, than a list of 6 exceptions would be.
  I would feel safer maintaining a small list.
  The AE allows an exception for ALL ports of a single machine. And that would be an option I would rather not use.
  Anyone?

  This appears to have been fixed in firmware 7.4

• IPv6 Firewall ICMPv6 quirk

  Model : RV110W      Firmware : 1.2.0.9
  Hi, I'm studying the RV110W IPv6 Firewall in the context of a long IPv6 study / Blog post ( 30+ posts yet ).
  I've found a strange quirk in the RV110W IPv6 Firewall that I can't understand.
  I've remade all the tests, and this appears :
  Creating an ICMP service using Service Management ( Protocol : ICMP )
  and using this service in an Access Rule, using any of these settings :
  Default Outbound Policy : Allow or Deny
  Action : allways allow or allways block
  Service : ICMP
  Connection type : Inbound or Outbound
  gets the Inbound TCP IPv6 Firewall fully open, TCP packets freely flowing in and out.
  As an exemple, my LAN server got all its services ( Web Server, Mail Server, ... ) useable from the outside.
  Is this a bug ?
  Can anybody confirm this ?
  ( Screenshot of two bug triggering config attached. As stated, it seems to happen whatever the rule settings )

  Dear Customer,
  Thank you for reaching the Small Business Support Community.
  Even though the firmware version 1.2.0.9 addresses some IPv6 issues, I think this is something new.  I see on the ICMPb and c gif files that both access rules actions are "always allow" but you also say to try both actions, allow and deny, with no difference.  In my opinion it is a bug and I suggest you, in order to confirm and provide a solution, to contact the Small Business Support Center directly to have one of our TAC engineers figure this out;
  https://www.cisco.com/en/US/support/tsd_cisco_small_business_support_center_contacts.html
  Please do not hesitate to reach me back if there is any further assistance I may assist you with in the meantime.
  Kind regards,
  Jeffrey Rodriguez S. .:|:.:|:.
  Cisco Customer Support Engineer
  *Please rate the Post so other will know when an answer has been found.

• Endpoint on DMZ interface (through the firewall)

  Hi
  I have an ASA which connects to a BT Inifinty router. The address on the outside interface is dynamic. BT provide us with 5 static addresses (No NAT 5) which are routed to the outside interface but are a different subnet.
  I would like to terminate the site to site  VPN using one of the static IP addresses rather than the outside dynamic address.
  Can I NAT the public static address to the DMZ interface (or any interface for that matter) and terminate the VPN on that interface i.e. the firewall is terminated through the firewall?
  Thanks
  Stuart
  Update: A few people have looked but no answer. Is there some detail I need to add?

  Matheus.Omega.Mendes wrote:
  Well one solution that they found was implements one hollow interface called InterfaceWeb, just to mark the classes that works on web and desktop, although our system isn't perfectly object oriented, this solution was the worst that I ever seen. At least I think this way and I'd like to know if someone agree, disagree or have some explication for this choose.Hard to say without actually seeing it. Probably not a good idea.
  Presumably the design was driven by time to market and cost rather than just because the developers didn't want to refactor.
  As per the other suggestion, normally besides breaking the layers out you could share common functionality with a layer of its own (or several)

• Airport Extreme IPv6 firewall bug

  I've been experimenting with IPv6 support in the Airport Extreme, and I think I found a bug.
  If a host on the WAN side has a smaller MTU, as might be the case if it is being tunneled, then attempting to run a bunch of data through a TCP connection will naturally result in the remote host returning an ICMPv6 packet too big notification. Those don't seem to be making it through the IPv6 firewall in the AEBS back to the originating host. This locks up the TCP connection. Reducing the MTU of the local host's interface is a workaround, but it's annoying.

  This magically fixed itself some time ago.

• Mid-2012 MacBook Air WiFi Reconnect-Partial Solution

  The MacBook Air seems to have some significant WiFi issues for a lot of users. My issue is as follows: the MacBook will connect to any compatible WiFi hot-spot with no problems, and it will maintain the connection almost always. The problems come when I try to reconnect to the internet over the same WiFi hot-spot after waking up the MacBook. Even more frustratingly, the problem is not consistent. Sometimes it works, and sometimes it doesn't. After some investigation, I have come to the conclusion that reconnection problems happen when:
  You wake the computer up from computer sleep (not display sleep or Power Nap)
  You are using a specific cable modem (the one I tested on was a Motorola SURFboard SBG6580 DOCSIS 3.0)
  You have not restarted your cable modem while your MacBook was asleep
  The MacBook Air will connect to the WiFi network (i.e., it can access other devices in the wireless LAN) when woken from computer sleep; it just will not connect to the internet
  The only way to get the connection back is to restart the cable modem. Restarting the MacBook, restarting your WiFi base station (in my case a brand new AirPort Time Capsule tower), having the MacBook forget the WiFi network and then reconnect--all do not work. But if I just restart the cable modem, the MacBook connects with no problems. This is a problem specific to the MacBook Air because none of my other devices ever have a problem connecting to the network after waking up from sleep (including a Lenovo ThinkPad E530c). As has been proposed in some of the many discussions about MacBook Air WiFi issues, I think it has to do with the bleeding-edge power saving modes that the MacBook Air enters in to when it goes to sleep. Apparently, the computer sleep mode will cause it to not be able to reconnect to the internet, so it seems to be some sort of incompatibility or bug between the MacBook Air and the cable modem--in my case, the Motorola SURFboard.
  So that's the problem, but I do have a partial solution while the engineers figure out a fix. Set the System Prefs > Energy Saver setting on the MacBook to never go into computer sleep (I set it only for Power Adapter, not Battery). In my case, this is a workable solution because I have my MacBook Air plugged in at home almost all the time. I have lived with these settings for a couple of days now and whenever I wake up my computer, it still has the internet connection and works as expected. And if for some reason I don't plug it in and it goes into computer sleep, I don't waste time troubleshooting. I just restart the cable modem and after a minute or so, the internet connection is re-established. I'd be curious to know how many cable modems this happens with, and if anyone has a fix having to do with cable modem settings (the Motorola SURFboard, to my knowledge, doesn't have a web app interface to tweak settings, perhaps because my cable company doesn't want me tweaking things, but I frankly have not spent any time researching that end of things).
  Hopefully this will help some MacBook Air owners (is this an issue with MacBook Pros?) that have this problem.
  Good luck!

  Have the same problem. Was OK for nearly two years then started two days ago.
  MacBook Air 10.6.8 13 in 1.86Ghz intel core 2 duo 2GB RAM

• IPod touch suddenly fast forwarding through songs and videos + voice control screen cutting in

  Hi
  In the last couple of days, it has started fast forwarding through songs and videos randomly. The voice control screen is also cutting in randomly. It happens as soon as I turn it on and play my first track or video. The only other problem I have noticed is that the volume controls on my headphones are no longer working. The headphones would be less than 6 months old and are genuine Apple ones. I don't think the problem is related because if I unplug them the fast forwarding still happens. I've tried powering it off and then re-starting it and I have been keeping the software up to date on it so I'm not sure what else I can try.
  In saying that, this morning it seems to be working properly but I'm worried the problem will return. I still can't adjust the volume via the headphones though.
  If anyone has any ideas about what I can do to resolve the fast forwarding problem, I would appreciate the feedback. The headphones I don't really care about because I can replace them.
  I've had my iPod touch for a few years and use it pretty heavily so part of me is wondering whether it is just getting to the end of its life. I'm not sure what sort of lifespan I can expect from my iPod touch.
  Thanks

  Try:
  - Try a regular pair of headphones
  - Reset the iOS device. Nothing will be lost
  Reset iOS device: Hold down the On/Off button and the Home button at the same time for at
  least ten seconds, until the Apple logo appears.
  - Reset all settings
  Go to Settings > General > Reset and tap Reset All Settings.
  All your preferences and settings are reset. Information (such as contacts and calendars) and media (such as songs and videos) aren’t affected.
  - Restore from backup. See:                                 
  iOS: How to back up           
  - Restore to factory settings/new iOS device.
  If still problem, make an appointment at the Genius Bar of an Apple store since it appears you have a hardware problem.
  Apple Retail Store - Genius Bar          

• Is there a way to fast forward through audio files?  Like a lecture class I am taking?  thanks!

  Is there any way to fast forward through audio files in I-Tunes?  I have some lecture recordings that I need to review....  If you cannot do it in I-Tunes, is there a program you could recommend?
  Thanks!

  Buzzsaw252 wrote:
  This will help - what I was really looking to do was to "speed up" the audio (smoothly) so I could listen while it was playing to search for a particular part I needed.....
  You need QuickTime 7.
  You can get it here -> http://support.apple.com/kb/HT3678?viewlocale=en_US&locale=en_US
  Then see this -> http://apple.stackexchange.com/questions/48265/how-do-i-make-itunes-play-slower- or-faster

• Solaris 10 ssh through a firewall

  I have Solaris 10 up and running on an HP Vectra. Everything is fine until I attempt to ssh through my firewall from the outside world.
  I can ssh from my linux systems on the lan. But when I attempt to ssh from outside using either putty or ssh on another solaris 10 system the connection times out.
  Anyone else experience a similar problem? Many thanks in advance.
  John Wright
  Asst Professor
  CIT
  Bellevue University

  It's hard to tell what's going on without some more information. Here're a few things you can try:
  Run "ssh localhost" from the Solaris box and make sure that works.
  ssh to the Solaris box from another box on the same network segment.
  From the site that doesn't work, do "ssh -v solaris_box" and see if that gives you any clues.
  After trying to ssh from outside, do a "netstat -an |grep -i '*.22' and see the state of the TCP connection
  (or if the first packet never even makes it).
  Run sshd on the Solaris box with with the "-d" debug option.

• Workstation Clients through a Firewall

  Does anyone out there know if there are any issues with workstation clients going
  through a firewall?
  Thanks!
  mervin

  We have done it successfully from NT to a Unix server over afirewall. Its a case
  of getting the WSNADDR set up correctly.
  use the -H option in the WSL entry in ubb config shows to set it up.
  eg
  CLOPT="-A -- -d /dev/tcp -n 0x0002nnnnxxxxxxxx -H 0x0002MMMMyyyyyyyy"
  Where nnnn is a port number
  xxxxxxxx is the true hex IP address of the server
  yyyyyyyy is the firewall hex address of the server
  MMMM is fixed.
  WSNADDR on the PC is set to port number and firewall address.
  I know the hex notation is a bit out of date these date but it works fine for
  us.
  Hope it helps
  Sue
  "Mervin Calverley" <[email protected]> wrote:
  >
  Does anyone out there know if there are any issues with workstation clients
  going
  through a firewall?
  Thanks!
  mervin

• Whenever I try to open up Firefox, it says that it's unable to connect, however, my internet connection is fine and I can still open up Internet Explorer. I already allowed Firefox through my firewall.

  My internet connection is fine, I already allowed Firefox through my firewall. This is the first time it had ever happened and it happened suddenly, out of nowhere.

  Try "Firefox connection settings" in [[Server not found]]
  You can find the connection settings in Tools > Options > Advanced : Network : Connection<br />
  If you do not need to use a proxy to connect to internet then select No Proxy
  You can also try to remove all rules for Firefox from the permissions list in the firewall and let your firewall ask again for permission to get full unrestricted access to internet for Firefox and the plugin-container process.
  See:
  * [[Server not found]]
  * [[Firewalls]]

• Move back and forward through Quiz questions...

  Hello,
  I need to be able to let individuals move back and forward through quiz questions after they have answered them without the need to re-answer the question.
  Does anyone have any suggestions on how I could do this in Captivate 6.
  Thanks,

  Thanks for the reply!
  I should have been a bit more specific and provided an example...
  Question 1 and 2  are answered correctly and feedback box is shown each time - they then get stuck on question 3 so need to use the back button to go back through past the answered questions to the main information screens to find the answer and then need to use the forward navigation button to move back to the third question this will result in them moving through question 1 and 2 however we do not want them to answer these again.
  The individual must answer every question correctly to pass the course.
  Thanks,

• Is there a way to move "back" and "forward" through the Library?

  Is there a way to move "back" and "forward" through the Library?
  For example, I'm editing Symbol_1, then I move to Symbol_22. Now to get back to Symbol_1 I need to find it again in the Library and double-click on it. Is there a shortcut for that?

  No, but you can always use the library search option to widdle down the number of items displayed. It'd be a good feature request as I find myself hopping between specific movieclip depths on common clips often. Sort of like a clip/depth bookmark.