Guide to setting up VoIP prioritization on ASA

I have a home business that's using Cisco ASA. One user is having talker echo, and the rest are just having issues with the calls breaking up.
What's the easiest way to setup QoS on this firewall?

the 5Ghz network is ideal for media streaming. if you're using your PC for typical internet connection reasons, i suggest you connect to the 2.4Ghz network.
For wireless-N dual band routers, it is best to use 20 MHz when in a 2.4 GHz or 5 GHz populated area to avoid wireless interference. For less crowded networks, you can use 40 MHz on a 5 GHz. If you're unsure, you may leave channel width at Auto. This will automatically adjust the settings to 20 or 40 MHz, depending on which best fits your network.

Similar Messages

Optus ADSL2+ and WRT610n Quick Guide to setting up.

Hi all fellow Optus (australian isp) ADSL2+ and Linksys users,
I have a quick guide to setting up your new WRT610n with the optus supplied ADSL2+ Speedstream 4200 modem. This should solve most users problems with no internet connections, firewall rules not appearing to work properly etc.
It took me several hours of stuffing around and online researching untill I got these two to work together and have full firewall funtionality!
First up.... DON'T USE the LELA to setup the router! For some unknown reason, the laptop I used to setup the router, was configured by LELA to be a proxy and gateway, and unless that laptop was on.... the router wasn't passing info through it and back out to the internet! A full Reset of the Router was needed to clear this setting!
Now Lets get started.
BEFORE inserting the router into the network and connecting everything up, we need to reconfigure the Speedstream modem to FULL BRIDGE mode. NOTE! this will infuture disable the Web interface to the DSL modem, so changing to FULL BRIDGE mode should be the last thing you do to the modem before logging out. A full hard reset (little button) will restore the web functionality again should you need to put it back to normal.
1) Setting Speedstream 4200 to Full Bridge mode - This is necessary for the Modem to fully pass on ALL of the ISP settings. Such as correct gateway info, DNS info, "REAL" online IP address (not the generic psuedo 10.x.x.x number) etc.
- To do this, open your web client, Internet Explorer or similar. And enter the IP address 10.1.1.1
- Feel free to look around the settings of the modem but don't change anything just yet. Wouldn't be a bad idea to take screenshots of all the settings pages now like I did should I need to return it to original settings.
- The Webpage of the modem will open up and click on PPP - Take note (as in write this down!) of your "PPPoE 8/35" type which you'll select in the router later, and your Username for optus logon and password (you should know that or go looking for that paperwork that has your username and password that came with your optus Modem installer CD). You will enter all this login info in the router later as the router will do the logging in and take over from the modem!
- Next, click on Mode - You will see 3 options. For most, it will currently be on Optus Bridge. This mode enables a router inside the modem and is now to be replaced by the new Linksys you just bought. By Changing this to FULL BRIDGE mode, you essentially disable the modems internal router and turn it into a dumb modem (like the good old days of dumb dial up modems yey!)
- When you've changed to FULL BRIDGE mode, it will tell you the Web interface is now disabled. Close the window. And lets get to configuring the router.
2) Plugging everything in time!
- The Speedstream 4200 ADSL2+ Modem stays plugged into the wall as normal, but the LAN cable which used to go to your computer now plugs into the WAN port of the router.
- Plug the PC into one of the LAN ports of the Router also.... or if like me, you have a Switch that all the PC's use, plug that into the router.
3) Setting up the WRT610n (or similar linksys router)
- Open Internet Explorer/Firefox and enter the IP Address of the Router (Fresh install IP is 192.168.1.1)
- Username is "admin" and password is "admin" (you'll want to change this later I'm sure)
- OK now your in! We need to setup the internet account settings.
- Setup-Basic Setup page:- Internet Connection Type will be what you saw in the modem PPP page (you did write that down didn't you?). For me, I select PPPoE.
- The enter my optus username info and password
- click on Keep Alive (30 Secs).
- Then click Save Settings at the very bottom of the webpage.
It will likely ask to reboot.... let it do so
Now at this point:
- Your modem should have always been in Sync
- Your LAN IP from the WRT610n should be in the 192.168.1.100+ range? (I changed this later to put my IPs back in the 192.168.0.100+ range so I didn't have to reconfigure static PC's or printers around my network)
- Your Router should have reset about now and hopefully logged onto the internet through the modem.
To check all is working fine. Open the Routers webpage again and click on Status. Under the Internet Connection area, Click connect if it hasn't already connected for ya. This page should auto-refresh.
Check that the connection says Connected and that the IP addresses given in all the fields appear to be internet addresses (ie not 10.x.x.x or 192.168.x.x etc). If not, check that the status lights on the modem are all correct (you know how it should look when it's ok).
Open IE or firefox and check that you have internet!
It's important to make sure that the Internet IP Address in the Status page matches the one you get from http://www.whatismyip.com/. Because if it doesn't, then the Router isn't truely at the front of the Internet-Lan boundary. If this is the case, you may still have internet working ok, but the firewall portforwards may not work as seen in other forum posts around the net.
If it's OK, then Grab a Beer and Celebrate, you've just saved yourself 6 hours of hair pulling frustration!
SUCCESS!
Now, if your so inclined.... I would highly recommend changing Admin passwords, adding security to your Wireless connections, changing your DHCP to something your comfortable with or just leave them alone if everyone is server assigned IP's. I find it's a good idea to use the DHCP Mac reservation in the basic setup so I know each PC will get the same IP each time it logs into the router and thus makes Portforwarding SOOoooo much easier knowing the IPs don't change on you when the IP lease time expires if the PC has been offline too long.
Please feel free to comment on this, I'm pretty sure 99% apart from grammar is correct! Hope it helps many new and old users.
Have a brilliant day! and may the force be with you!
Ramjet

It's not clear to me exactly what problem you're having, but does this post help?
http://discussions.apple.com/message.jspa?messageID=1806715#1806715

Problems setting up VOIP calls on Nokia E71

can anyone help on how to set up VOIP calls correctly on E71? what should I put in for Public user name? and then username and password??
please help

Hi David,
Why not apply a access list to filter incoming traffic into the SG300 switch such as, via command line or GUI.
Here is an example below, by no means complete, just an example
Just remember, we are using reverse masking in the ACE;
config
ip access-list extended restrictGuest
deny ip 192.168.30.0 0.0.0.255 192.168.20.0 0.0.0.255
deny tcp 192.168.30.0 0.0.0.255 any 192.168.30.1 0.0.0.0 www
deny tcp 192.168.30.0 0.0.0.255 any 192.168.30.1 0.0.0.0 telnet
deny ip 192.168.30.0 0.0.0.255 192.168.10.0 0.0.0.255
permit ip any any
exit
interface gigabitethernet1
service-acl input restrictGuest
exit
Don't forget to save the configuration with the following command and respond to the prompt.
write
or do it via the GUI method
Step 1. Create a ACL name
step 2, Add the port based ACE which is the filter list,.
step 3. Apply or bind the list to a port so that the port can look at and filter pattern matches for traffic ingressing into the switch. I have given you an example of a ACE list above, you can be more creative in what you deny.
step 4. Now add or copy the entry to other switch ports.
Remember to save your configuration change.
Hope this helps.
regards Dave

How to set switch 2900, c3550 or ASA to send traps to monitoring server

how to set switch 2900, c3550 or ASA to send traps to BB monitoring server?
is it just snmp-server enable etc?

You're on the right track.
Please refer to the following Cisco document for a detailed explanation:
Cisco IOS SNMP Traps Supported and How to Configure Them

HT4053 how do acess the user guide to set up my ipad

how do i access my user guide to set up my new ipad

iPad User Guide:
http://manuals.info.apple.com/en/ipad_user_guide.pdf

Guide to set Security zone?

hi all,
Hhow to set the security zone of a portal object? Could anyone please provide me with a step by step guide to set up the security zone.
Thanks for your help
regards
Priya

Hi Priya,
Start with SMP, under the NetWeaver 04 Documentation site:
<a href="https://websmp107.sap-ag.de/nw04doc">NW 04 Documentation</a>
On the left, click on How-To Guides:
On the right, click on Portal, Knowledge Management and Collaboration.
Scoll down to "How to Use Security Zones in NW04 SPS09"...
I hope that this helps,
Judson

HELP: Need clear, simple guide to setting up two WAC120

I need a clear, simple guide to setting up two WAC120 Access Points.
I have purchased two WAC120 units.
I live in a 4 story home. I have put the...

I want to boost the WiFi signal in my house. I have a WN203 AP. I have found the manual on line but, can't seem to make sense out of it. Does anyone...

Guide to setting up WebDAV for Windows XP clients

I've recently set up an XServe as a Windows domain controller, and was looking to WebDAV as an easy way of setting up remote access to certain shared files. However, it was not as straightforward as it seems - Windows is somewhat fickle about WebDAV and the Mac OS X manual states that "Microsoft platforms use an authentication mechanism that may make it difficult or impossible to mount WebDAV volumes from Mac OS X" (Web Technologies PDF manual, p. 45). After a great deal of scouting on the internet, I managed to get it working and thought I'd better share my method, since it's not all that straightforward. It's been mentioned on the Apple Forums before, but I don't think it was resolved. Much of this information comes from Mac OS X Hints but is updated in accordance with my experiences. (Some line breaks may be inserted by accident - make sure that lines are correct or you could have syntax errors). By default, Windows XP uses NTLM authentication for WebDAV access - you know this when it keeps popping back up with a password box, with the username in the form domain\username. This circumvents that, although I'm a little sketchy on the details - this is a compiled guide, based on my admittedly humble understanding of the authentication protocols.
1. Enable mod_encoding and mod_headers in the Modules panel of the Web service in 'Server Admin'.
2. Make a backup copy of your httpd.conf file (the main Apache configuration file):
% cd /private/etc/httpd
% sudo cp httpd.conf httpd.conf.backup
Uncomment the following two lines in httpd.conf:
AddModule mod_headers.c
AddModule mod_encoding.c
3. (The following from benoitc's macosxhints.com article.) Paste the following in at the end of /private/etc/httpd/httpd.conf:
# Set DAVLockDB for webdav support
DAVLockDB /private/var/run/davlocks/DAVLockDB
# Fix header for webdav
BrowserMatch "^WebDAVFS/1.[012]" redirect-carefully
BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully
BrowserMatch "Microsoft-WebDAV-MiniRedir/5.1.2600" redirect-carefully
BrowserMatch "^WebDrive" redirect-carefully
BrowserMatch "^WebDAVFS" redirect-carefully
<IfModule mod_headers.c>
Header add MS-Author-Via "DAV"
</IfModule>
<IfModule mod_encoding.c>
EncodingEngine on
NormalizeUsername on
</IfModule>
4. Create the folder you want to share with WebDAV:
% sudo mkdir /Library/WebServer/Documents/dav
% sudo chmod -R 775 /Library/WebServer/Documents/dav
Open httpd.conf again and zoom down to the end of the file and add this text (make sure you're consistent if you change the folder name to something else):
Alias /dav /Library/WebServer/Documents/dav
<Location /dav>
DAV On
AuthType Basic
AuthName "WebDAV Restricted"
AuthUserFile /private/etc/httpd/passwords/webdav.access
require valid-user
Order allow,deny
Allow from all
</Location>
5. Create the password file and the user:
% sudo mkdir /private/etc/httpd/passwords
% sudo htpasswd -c /private/etc/httpd/passwords/webdav.access davuser
Provide a password when prompted.
6. Restart apache:
% sudo apachectl graceful
This is all you need to do on the OS X box. However, I found that this alone didn't work - I was trying to use 'basic' authentication (I tend to start easy, get that working, then add complexity/security later), which has been turned off by default in Windows XP Service Pack 2. XP also does not seem to support SSL encryption for WebDAV access.
7. To get the above to work with Windows XP Service Pack 2, back up the Windows registry and add the following DWORD key with regedit.exe:
HKEYLOCALMACHINE\SYSTEM \CurrentControlSet\Services \WebClient\Parameters\UseBasicAuth
Set the value to "1", close regedit.exe and reboot your PC.
8. Open Internet Explorer, select Open... from the File menu, enter http://ip.address.of.server/dav and tick the 'Open as Web Folder' option.Press OK and enter the username and password you set up with in step 5.
All improvements/comments are welcome - good luck!
XServe Mac OS X (10.4.4)

Well it says "System Requirements: Windows XP or later"
So I assume that means that it would be installed on the Windows partition.
It also says "If you do not have any Boot Camp drivers installed, it will install version 2.1 drivers onto your already installed Windows OS." So doesn't that mean I could use the download instead of the disk to install the drivers? Or is there more to it?

How to set up Split Tunneling on ASA 5505

Good Morning,
I have an ASA 5505 with security plus licensing. I need to set up split tunneling on the ASA and not sure how. I am very new to Cisco but am learning quickly. What I want to accomplish, if possible is to send all traffic to our corporate web site (static ip address) straight out to the internet and all other traffic to go though the tunnel as normal. Basically we have a remote office that is using a local ISP to provide internet service. IF our connection at the main office goes down, we want the branch office to still be able to get to our corporate website without having to unplug cables and connect their computer directly to the local ISP modem. Any help with be greatly appriciated. Thanks in advance. Below is a copy of our current config.
ASA Version 7.2(4)
hostname TESTvpn
enable password rBtWtkaB8W1R3ub8 encrypted
passwd rBtWtkaB8W1R3ub8 encrypted
names
name 10.0.0.0 Corp_LAN
name 192.168.64.0 Corp_Voice
name 172.31.155.0 TESTvpn
interface Vlan1
nameif inside
security-level 100
ip address 192.168.1.1 255.255.255.0
interface Vlan2
nameif outside
security-level 0
ip address dhcp setroute
interface Vlan3
nameif Corp_Voice
security-level 100
ip address 172.30.155.1 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
switchport access vlan 3
ftp mode passive
object-group network SunVoyager
network-object host 64.70.8.160
network-object host 64.70.8.242
object-group network Corp_Networks
network-object Corp_LAN 255.0.0.0
network-object Corp_Voice 255.255.255.0
access-list outside_access_in extended permit icmp any any unreachable
access-list outside_access_in extended permit icmp any any echo-reply
access-list outside_access_in extended permit icmp any any time-exceeded
access-list inside_access_in extended permit ip TESTvpn 255.255.255.0 any
access-list inside_access_in extended permit icmp TESTvpn 255.255.255.0 any
access-list Corp_Voice_access_in extended permit ip 172.30.155.0 255.255.255.0 any
access-list Corp_Voice_access_in extended permit icmp 172.30.155.0 255.255.255.0 any
access-list VPN extended deny ip TESTvpn 255.255.255.0 object-group SunVoyager
access-list VPN extended permit ip TESTvpn 255.255.255.0 any
access-list VPN extended permit ip 172.30.155.0 255.255.255.0 any
access-list data-vpn extended permit ip TESTvpn 255.255.255.0 any
access-list voice-vpn extended permit ip 172.30.155.0 255.255.255.0 any
access-list all-vpn extended permit ip TESTvpn 255.255.255.0 any
access-list all-vpn extended permit ip 172.30.155.0 255.255.255.0 any
pager lines 24
logging enable
logging buffer-size 10000
logging monitor debugging
logging buffered informational
logging asdm informational
mtu inside 1500
mtu outside 1500
mtu Corp_Voice 1500
no failover
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-524.bin
no asdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 0 access-list data-vpn
nat (inside) 1 TESTvpn 255.255.255.0
nat (inside) 1 0.0.0.0 0.0.0.0
nat (Corp_Voice) 0 access-list voice-vpn
access-group inside_access_in in interface inside
access-group outside_access_in in interface outside
access-group Corp_Voice_access_in in interface Corp_Voice
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
http server enable
http 192.168.1.0 255.255.255.0 inside
http TESTvpn 255.255.255.0 inside
http Corp_LAN 255.0.0.0 inside
http 65.170.136.64 255.255.255.224 outside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec transform-set VPN esp-3des esp-md5-hmac
crypto map outside_map 1 match address VPN
crypto map outside_map 1 set peer 66.170.136.65
crypto map outside_map 1 set transform-set VPN
crypto map outside_map interface outside
crypto isakmp identity address
crypto isakmp enable outside
crypto isakmp policy 1
authentication pre-share
encryption 3des
hash md5
group 2
lifetime 28800
telnet timeout 5
ssh Corp_LAN 255.0.0.0 inside
ssh TESTvpn 255.255.255.0 inside
ssh 65.170.136.64 255.255.255.224 outside
ssh timeout 20
console timeout 0
management-access inside
dhcpd auto_config outside
dhcpd option 150 ip 192.168.64.4 192.168.64.3
dhcpd address 192.168.1.2-192.168.1.33 inside
dhcpd dns 10.10.10.7 10.10.10.44 interface inside
dhcpd domain sun.ins interface inside
dhcpd enable inside
dhcpd address 172.30.155.10-172.30.155.30 Corp_Voice
dhcpd dns 10.10.10.7 10.10.10.44 interface Corp_Voice
dhcpd domain sun.ins interface Corp_Voice
dhcpd enable Corp_Voice
username admin password kM12Q.ZBqkvh2p03 encrypted privilege 15
tunnel-group 66.170.136.65 type ipsec-l2l
tunnel-group 66.170.136.65 ipsec-attributes
pre-shared-key *
prompt hostname context
Cryptochecksum:953e50e9cbc02e1b264830dab4a3f2bd
: end

So I tried to use the exclude way that you suggested. Here is my new config. It is still not working. The address I put in for the excluded list was 4.2.2.2 and when I do a trace route to it from the computer, it still goes though the vpn to the main office and out the switch at the main office and not from the local isp. Any other suggestions?
hostname TESTvpn
domain-name default.domain.invalid
enable password rBtWtkaB8W1R3ub8 encrypted
passwd rBtWtkaB8W1R3ub8 encrypted
names
name 10.0.0.0 Corp_LAN
name 192.168.64.0 Corp_Voice
name 172.31.155.0 TESTvpn
interface Vlan1
nameif inside
security-level 100
ip address 172.31.155.1 255.255.255.0
interface Vlan2
nameif outside
security-level 0
ip address dhcp setroute
interface Vlan3
nameif Corp_Voice
security-level 100
ip address 172.30.155.1 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
switchport access vlan 3
ftp mode passive
dns server-group DefaultDNS
domain-name default.domain.invalid
object-group network SunVoyager
network-object host 64.70.8.160
network-object host 64.70.8.242
object-group network Corp_Networks
network-object Corp_LAN 255.0.0.0
network-object Corp_Voice 255.255.255.0
access-list outside_access_in extended permit icmp any any unreachable
access-list outside_access_in extended permit icmp any any echo-reply
access-list outside_access_in extended permit icmp any any time-exceeded
access-list inside_access_in extended permit ip TESTvpn 255.255.255.0 any
access-list inside_access_in extended permit icmp TESTvpn 255.255.255.0 any
access-list Corp_Voice_access_in extended permit ip 172.30.155.0 255.255.255.0 a
ny
access-list Corp_Voice_access_in extended permit icmp 172.30.155.0 255.255.255.0
any
access-list VPN extended deny ip TESTvpn 255.255.255.0 object-group SunVoyager
access-list VPN extended permit ip TESTvpn 255.255.255.0 any
access-list VPN extended permit ip 172.30.155.0 255.255.255.0 any
access-list data-vpn extended permit ip TESTvpn 255.255.255.0 any
access-list voice-vpn extended permit ip 172.30.155.0 255.255.255.0 any
access-list all-vpn extended permit ip TESTvpn 255.255.255.0 any
access-list all-vpn extended permit ip 172.30.155.0 255.255.255.0 any
access-list TEST standard permit host 4.2.2.2
pager lines 24
logging enable
logging buffer-size 10000
logging monitor debugging
logging buffered informational
logging asdm informational
mtu inside 1500
mtu outside 1500
mtu Corp_Voice 1500
no failover
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-524.bin
no asdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 0 access-list data-vpn
nat (inside) 1 TESTvpn 255.255.255.0
nat (Corp_Voice) 0 access-list voice-vpn
access-group inside_access_in in interface inside
access-group outside_access_in in interface outside
access-group Corp_Voice_access_in in interface Corp_Voice
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
http server enable
http TESTvpn 255.255.255.0 inside
http Corp_LAN 255.0.0.0 inside
http 65.170.136.64 255.255.255.224 outside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec transform-set VPN esp-3des esp-md5-hmac
crypto map outside_map 1 match address VPN
crypto map outside_map 1 set peer 66.170.136.65
crypto map outside_map 1 set transform-set VPN
crypto map outside_map interface outside
crypto isakmp identity address
crypto isakmp enable outside
crypto isakmp policy 1
authentication pre-share
encryption 3des
hash md5
group 2
lifetime 28800
crypto isakmp policy 65535
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
telnet timeout 5
ssh Corp_LAN 255.0.0.0 inside
ssh TESTvpn 255.255.255.0 inside
ssh 65.170.136.64 255.255.255.224 outside
ssh timeout 20
console timeout 0
management-access inside
dhcpd auto_config outside
dhcpd option 150 ip 192.168.64.4 192.168.64.3
dhcpd address 172.31.155.10-172.31.155.30 inside
dhcpd dns 10.10.10.7 10.10.10.44 interface inside
dhcpd domain sun.ins interface inside
dhcpd enable inside
dhcpd address 172.30.155.10-172.30.155.30 Corp_Voice
dhcpd dns 10.10.10.7 10.10.10.44 interface Corp_Voice
dhcpd domain sun.ins interface Corp_Voice
dhcpd enable Corp_Voice
group-policy DfltGrpPolicy attributes
banner none
wins-server none
dns-server none
dhcp-network-scope none
vpn-access-hours none
vpn-simultaneous-logins 3
vpn-idle-timeout 30
vpn-session-timeout none
vpn-filter none
vpn-tunnel-protocol IPSec l2tp-ipsec webvpn
password-storage disable
ip-comp disable
re-xauth disable
group-lock none
pfs disable
ipsec-udp disable
ipsec-udp-port 10000
split-tunnel-policy excludespecified
split-tunnel-network-list value TEST
default-domain none
split-dns none
intercept-dhcp 255.255.255.255 disable
secure-unit-authentication disable
user-authentication disable
user-authentication-idle-timeout 30
ip-phone-bypass disable
leap-bypass disable
nem disable
backup-servers keep-client-config
msie-proxy server none
msie-proxy method no-modify
msie-proxy except-list none
msie-proxy local-bypass disable
nac disable
nac-sq-period 300
nac-reval-period 36000
nac-default-acl none
address-pools none
smartcard-removal-disconnect enable
client-firewall none
client-access-rule none
webvpn
functions url-entry
html-content-filter none
homepage none
keep-alive-ignore 4
http-comp gzip
filter none
url-list none
customization value DfltCustomization
port-forward none
port-forward-name value Application Access
sso-server none
deny-message value Login was successful, but because certain criteria have not
been met or due to some specific group policy, you do not have permission to us
e any of the VPN features. Contact your IT administrator for more information
svc none
svc keep-installer installed
svc keepalive none
svc rekey time none
svc rekey method none
svc dpd-interval client none
svc dpd-interval gateway none
svc compression deflate
username admin password kM12Q.ZBqkvh2p03 encrypted privilege 15
tunnel-group 66.170.136.65 type ipsec-l2l
tunnel-group 66.170.136.65 ipsec-attributes
pre-shared-key *
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect netbios
inspect rsh
inspect rtsp
inspect skinny
inspect esmtp
inspect sqlnet
inspect sunrpc
inspect tftp
inspect sip
inspect xdmcp
service-policy global_policy global
prompt hostname context
Cryptochecksum:8b3caaecf2a0dec7334633888081c367
: end

Guid not set for a step

Hi,
I am facing a probleme where in a step of workflow is not getting executed properly. If i check the container for that step, the import parameter for it 'Guid' shows as '<not set>'. I am new to workflows, so I may not be aware of the basics or details and might have missed out. Please guide what could be the possible reasons for it.
Thanks and Regards,
Radhika

My WF's previous step is getting executed properly which is also using the
Object id. Gor guid,
i am using Structure:SYSUUID Field: C.
As you stated that the previous step is also using the same guid, so just open the workflow in change mode and copy the binding entry from the previous step and paste it in the step where the guid is not getting set, make sure the target container has the same element name as it is in the previous step target container.

Help on setting up VOIP on my E70

Can anyone please advise how I set VOIP up on my new E70? Also can I access the same SKYPE account as I have on my laptop or do I have to use the another provider? thanks dt7

Trying visiting www.fring.com
Good software which includes Skype, MSN Messenger. Best of all, it is free. You can use the same Skype account as long as you are not logged into the account on your PC.

HT202612 Guided Access - set default settings?

I want to set my default Guided Access settings so that every time I turn it on, my volume and sleep/wake buttons are enabled. Is there a way to do this? Right now, I have to RE-set those specific settings every day for my next group of students.

Posix permissions have three entities that permissions are granted for, owner, group, and others.
On those three entities, you can have read, write, and execute permissions. The Mac OS X GUI calls others everyone. Take a look at [this article|http://support.apple.com/kb/ht2963]
Staff is the default group a user is placed into.
Others can read your home folder so that they can read the Sites folder and the Public folder. All the other folders should only have read privileges for the owner (you). When you create a file/folder, it inherits the permissions of the enclosing folder. So, if you create a new folder inside your home folder, it will automatically have read permissions for others. If you create a folder inside one of the default folders in home, it will only be readable by you.
You can change the permissions on those folders you create right inside the home folder so that others cannot read them.

Can guides be set precisely/numerically?

For example, I'd like to set guides at 20 cm, 35.2 cm, and 45.5 cm.
Can I do this numerically? It's not feeling too precise when just zooming/dragging, even with snapping... numeric positioning would make life a lot easier!
I'm in CS3.
Thanks,
Andrew

And one more thing -- if you want to set a guide at one of the indicated ruler divisions (for example, at 1/8, 1/4, etc. for inches), just double click the ruler at that point. It creates the guide for you. If you need a guide between two existing measurements, zoom in until another tick appears on the ruler between the two existing ticks and then doubleclick the new tick.

Can someone please point me to a guide to set up XP Home / Leopard network?

Hello!
I’d be grateful for advice on setting up a home network.
I’m a total newbie to MAC OS Leopard, so please excuse my lack of knowledge!
Background:
Livebox (residential internet gateway)
XP Home OS Desktop pc (has wired connection to Livebox)
MAC OS Leopard (latest) Apple Mac Mini (has wireless connection to Livebox)
Mac Mini also has a Windows partition with XP Home OS (has Boot Camp and Fusion installed).
I want to set up a network between the desktop pc and the Mac Mini so I can back up the two hard drives on a shared area, share files, and share the printer.
Can someone please point me to a step by step guide on how to do this?
Thank you.
albyliontk

if you are going to use Apple Extreme N routers then www.apple.com/support and type in Airport Extreme networks so something similar. There's an excellent pdf 60 page file for your perusal.
x-box360 with its wireless device Mine: airport Extreme N router with Airport Express wired to the N router. The Express is set up to create its own network and wireless WEP security. x-box360 can find that Express. http://www.nullriver.com/ download Connect360 live system preferences pane lets wireless Mac stream photo, music and movies to x-box360.

Guided Procedures - set mail smtp host

Hi,
I want to set the smtp host to use email notifications in a Guided Procedures process. So I go in the portal to:
Guided Procedures -> Administration -> GP Configuration Tool -> Interactive Forms -> SMTP Server
When I click on the Save button I get
   java.lang.NullPointerException
    at com.sap.caf.eu.gp.ui.conf.iforms.CInteractiveForms.validate(CInteractiveForms.java:382)
I tried it on another CE installation with the same result. This seems like a bug. Is there another way to set the smtp host in GP? Below the stack trace..
Regards, Kevin
java.lang.NullPointerException
     at com.sap.caf.eu.gp.ui.conf.iforms.CInteractiveForms.validate(CInteractiveForms.java:382)
     at com.sap.caf.eu.gp.ui.conf.iforms.CInteractiveForms.save(CInteractiveForms.java:442)
     at com.sap.caf.eu.gp.ui.conf.iforms.wdp.InternalCInteractiveForms.save(InternalCInteractiveForms.java:215)
     at com.sap.caf.eu.gp.ui.conf.iforms.CInteractiveFormsInterface.save(CInteractiveFormsInterface.java:186)
     at com.sap.caf.eu.gp.ui.conf.iforms.wdp.InternalCInteractiveFormsInterface.wdInvokeMethod(InternalCInteractiveFormsInterface.java:196)
     at com.sap.tc.webdynpro.progmodel.generation.ExternalControllerPI$ExternalInterface.invoke(ExternalControllerPI.java:291)
     at $Proxy483_10002.save(Unknown Source)
     at com.sap.caf.eu.gp.ui.gpconf.app.CConfigApp.saveWizard(CConfigApp.java:317)
     at com.sap.caf.eu.gp.ui.gpconf.app.wdp.InternalCConfigApp.saveWizard(InternalCConfigApp.java:158)
     at com.sap.caf.eu.gp.ui.gpconf.app.VConfigApp.onActionSave(VConfigApp.java:430)
     at com.sap.caf.eu.gp.ui.gpconf.app.wdp.InternalVConfigApp.wdInvokeEventHandler(InternalVConfigApp.java:247)
     at com.sap.tc.webdynpro.progmodel.generation.DelegatingView.invokeEventHandler(DelegatingView.java:131)
     at com.sap.tc.webdynpro.progmodel.controller.Action.fire(Action.java:72)
     at com.sap.tc.webdynpro.clientserver.phases.ProcessingEventPhase.doHandleActionEvent(ProcessingEventPhase.java:156)
     at com.sap.tc.webdynpro.clientserver.phases.ProcessingEventPhase.execute(ProcessingEventPhase.java:91)
     at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.processRequestPartly(WindowPhaseModel.java:161)
     at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.doProcessRequest(WindowPhaseModel.java:109)
     at com.sap.tc.webdynpro.clientserver.window.WindowPhaseModel.processRequest(WindowPhaseModel.java:96)
     at com.sap.tc.webdynpro.clientserver.window.WebDynproWindow.processRequest(WebDynproWindow.java:469)
     at com.sap.tc.webdynpro.clientserver.cal.AbstractClient.executeTasks(AbstractClient.java:52)
     at com.sap.tc.webdynpro.clientserver.cal.ClientApplication.doExecute(ClientApplication.java:1388)
     at com.sap.tc.webdynpro.clientserver.cal.ClientApplication.doProcessing(ClientApplication.java:1208)
     at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.delegateToApplicationDoProcessing(AbstractExecutionContextDispatcher.java:145)
     at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.DispatchHandlerForAppProcessing.doService(DispatchHandlerForAppProcessing.java:35)
     at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.AbstractDispatchHandler.service(AbstractDispatchHandler.java:116)
     at com.sap.engine.services.servlets_jsp.server.deploy.impl.module.IRequestDispatcherImpl.dispatch(IRequestDispatcherImpl.java:93)
     at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.ExecutionContextDispatcher.dispatchToApplicationDoProcessing(ExecutionContextDispatcher.java:114)
     at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.dispatch(AbstractExecutionContextDispatcher.java:80)
     at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.dispatch(ApplicationSession.java:506)
     at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.dispatch(ApplicationSession.java:526)
     at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doApplicationProcessingStandalone(ApplicationSession.java:457)
     at com.sap.tc.webdynpro.clientserver.session.ApplicationSession.doProcessing(ApplicationSession.java:248)
     at com.sap.tc.webdynpro.clientserver.session.ClientSession.doApplicationProcessing(ClientSession.java:698)
     at com.sap.tc.webdynpro.clientserver.session.ClientSession.doProcessing(ClientSession.java:230)
     at com.sap.tc.webdynpro.clientserver.session.RequestManager.doProcessing(RequestManager.java:228)
     at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.delegateToRequestManager(AbstractExecutionContextDispatcher.java:192)
     at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.DispatchHandlerForRequestManager.doService(DispatchHandlerForRequestManager.java:38)
     at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.AbstractDispatchHandler.service(AbstractDispatchHandler.java:116)
     at com.sap.engine.services.servlets_jsp.server.deploy.impl.module.IRequestDispatcherImpl.dispatch(IRequestDispatcherImpl.java:93)
     at com.sap.tc.webdynpro.serverimpl.wdc.sessionctx.ExecutionContextDispatcher.dispatchToRequestManager(ExecutionContextDispatcher.java:140)
     at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.dispatch(AbstractExecutionContextDispatcher.java:92)
     at com.sap.tc.webdynpro.serverimpl.core.sessionctx.AbstractExecutionContextDispatcher.dispatch(AbstractExecutionContextDispatcher.java:104)
     at com.sap.tc.webdynpro.serverimpl.core.AbstractDispatcherServlet.doContent(AbstractDispatcherServlet.java:87)
     at com.sap.tc.webdynpro.serverimpl.core.AbstractDispatcherServlet.doPost(AbstractDispatcherServlet.java:61)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
     at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
     at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:66)
     at com.sap.engine.services.servlets_jsp.server.Invokable.invoke(Invokable.java:32)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.runServlet(HttpHandlerImpl.java:431)
     at com.sap.engine.services.servlets_jsp.server.HttpHandlerImpl.handleRequest(HttpHandlerImpl.java:289)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:387)
     at com.sap.engine.services.httpserver.server.RequestAnalizer.startServlet(RequestAnalizer.java:376)
     at com.sap.engine.services.servlets_jsp.filters.ServletSelector.process(ServletSelector.java:85)
     at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
     at com.sap.engine.services.servlets_jsp.filters.ApplicationSelector.process(ApplicationSelector.java:160)
     at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
     at com.sap.engine.services.httpserver.filters.WebContainerInvoker.process(WebContainerInvoker.java:67)
     at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9)
     at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
     at com.sap.engine.services.httpserver.filters.ResponseLogWriter.process(ResponseLogWriter.java:60)
     at com.sap.engine.services.httpserver.chain.HostFilter.process(HostFilter.java:9)
     at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
     at com.sap.engine.services.httpserver.filters.DefineHostFilter.process(DefineHostFilter.java:27)
     at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
     at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
     at com.sap.engine.services.httpserver.filters.MonitoringFilter.process(MonitoringFilter.java:29)
     at com.sap.engine.services.httpserver.chain.ServerFilter.process(ServerFilter.java:12)
     at com.sap.engine.services.httpserver.chain.AbstractChain.process(AbstractChain.java:71)
     at com.sap.engine.services.httpserver.server.Processor.chainedRequest(Processor.java:309)
     at com.sap.engine.services.httpserver.server.Processor$FCAProcessorThread.run(Processor.java:222)
     at com.sap.engine.core.thread.impl3.ActionObject.run(ActionObject.java:37)
     at java.security.AccessController.doPrivileged(Native Method)
     at com.sap.engine.core.thread.impl3.SingleThread.execute(SingleThread.java:152)
     at com.sap.engine.core.thread.impl3.SingleThread.run(SingleThread.java:247)

Hi Kevin,
I didn't get which release of CE you are using, so I am giving you the procedure for SP3. You set the smtp through the Mail Sending tab page. Here's the procedure:
1. Go to Guided procedure ->
Administration-> Administer BMF->Clients
->select iForms Processor -> press Settings button
-> Mail Sending tab.
2. Set your smtp server in SMTP Server field.
3. Press Save button.
You can test mail sending by pressing Test button
but first you should
configure the mail of the administrator of BMF and
the mail of the administrator of the client
(iForms Processor). Please follow instruction below
BMF Administrator's mail:
1.Go to Guided procedure ->
Administration-> Administer BMF->Settings.
2.Input the mail in Administrator Mail files.
3.Press Save button.
iForms client Administrator's mail:
1. Go to Guided procedure ->
Administration-> Administer BMF->Clients
->select iForms Processor
2. Press Edit button.
3. Input the mail in Administrator Mail files.
4. Press Save button.
Hope this works out
Greets,
Petra

Guide to setting up VoIP prioritization on ASA

Similar Messages

Maybe you are looking for