Help configuring 5510
I just upgraded an ASA-5510 from 7.0 to 8.4.4-1 and theres a lot of stuff in it I don't recognize that I never added, mostly because of new network objects, nat commands, and other migration stuff. Its been awhile since I've configured the ASA and I think I'd like to start from scratch and clean it up a bit because theres so many lines for so little that I really need. I just think its sort of a mess right now so I was hoping someone could help me with the commands to do the following tasks.
I have a 5510 assigned an IP address on the outside interface with 3 inside interfaces and below are the only requirements I need.
Network-A (192.168.1.0/24)
- incoming ssh port 2202 goes to node 192.168.1.2
- incoming ssh port 2203 goes to node 192.168.1.3
- handle incoming https (443) requests
- handle incoming www (80) requests
- cannot see Network-B or Network-C
Network-B (10.0.0.0/16)
- ssh to nodes on Network-A
- incoming ssh port 22 goes to node 10.0.0.20
Network-C (192.168.2.0/24)
- ssh to nodes on Network-A
- incoming ssh port 2210 goes to node 192.168.2.2
ASA-5510
- sends logging to syslog node 192.168.1.3 on Network-A
- there are DNS and NTP servers located outside
Any help much appreciated.
HI ,
this is a whole new installation with 8.4 . you will need to be aware of the folllowing :
-ASA 8.4 configuration guide ( it contains eveything from A to Z) .
http://www.cisco.com/en/US/docs/security/asa/asa84/configuration/guide/asa_84_cli_config.html
- ASA 8.3 and later configuration example :
https://supportforums.cisco.com/docs/DOC-9129
it contains the config for pre 8.3 images and the corrosponding one in 8.3 and later images ( very useful link ).
- Finally remember to use the private ip address in your access-lists ( real ip address and not the translated one ).
HTH .
Mohammad.
Similar Messages
-
Problem in Application Help Configuration in Solution Manager
Hi Experts,
Here I facing one problem during Application Help configuration..
When I am going through application help for Solman Configuration it's taking me to standard erp help..
Where as in SR13, under PlainHtmlHttp,
In path tab I had given <b>saphelp_sm40/helpdata</b> for solution manager document.
But for other standard t-code it's giving actual application help.
where for SMSY,SOLAR01 etc i am not getting the application help.
Looking for advices.
Thanks & Regards,
Sumanta ChatterjeeDear Sumanta,
This depends on how you want to (or how you can) use this http://help.
sap.com site.
At first you must be aware of the different areas on this site, these
areas have different URL structures, for example:
- http://help.sap.com/saphelp_erp2004 <<< for mySAP ERP
- http://help.sap.com/saphelp_47x200 <<< for R3 Enterprise
- http://help.sap.com/saphelp_nw04 <<< for SAP NetWeaver 04
- http://help.sap.com/saphelp_sm32 <<< for SAP Solution Manager 3.2
The main problem is that in the area "http://help.sap.com/saphelp_sm32"
there is only online documentation for the Solution Manager
functionality.
Can you please check the table SBAON_CCHK with transaction SE16.
The following record must exist:
MANDT COMPONENT NAME_EN
xxx ST Solar Help
If this record does not exist, please create this record manually.
This should help resolve the issue.
Regards
Amit -
Need Flash Help - configuring AIrtight Simple Viewer Pro
I need some help configuring the Airtight Interactive simple viewer pro, which requires flash. I am a complete beginner with flash, and I am reluctant to undertake the learning curve, though I am very tech saavy.
My ideal would be to locate someone who could do this FOR me, though resources are very limited for this project. Any suggestions of where I might connect with someone interested in doing this?
Alternately, I could undertake it myself, with someone qualified to coach me rather thouroughly through the whole process. That could be offline, or here where others could benefit from the thread. If someone offers this, I will post the precise details of what I need. The project is medium challenging, not extremely complex, but more than very basic.
Many Thanks.Hi:
When you create the simpleviewer slideshow with iPhoto's plugin there should be a folder created on your HD that contains the items seen in the screenshot below:
The folder was named simpleviewer because that's what I named it during the export from iPhoto. That's the same folder as I refer to as "Slideshow folder". It can be whatever you name it when exporting from iPhoto. Upload that folder to your iDisk/Web/Sites folder as shown below:
In the iFrame code use the following URL to the index.html file inside the simpleviewer folder:
http://web.me.com/YourMMe_AccountName/simplerviewer/index.html
That should do it. -
Need help configuring VPN on RV120W Router (WiTopia VPN)
Hello Cisco Community,
I need some help configuring a VPN from WiTopia on my RV120W router. I am trying to make it so that if any device connects to the router it can automatically connect to the VPN from WiTopia.
Please note that the VPN plan includes PPTP, L2TP, & IPSEC VPN types.
Is this possible? And if so, how?
Thanks in advance!Hello,
If WiTopia is providing only client to gateway VPN, where WiTopia is the gateway allowing connections to clients, than you will not be able to configure RV120 to connect to it. RV120 in its VPN configurations cannot be configured to be a client.
The only tunnel where can play the role of the connecting part is IPSec gateway to gateway, when in the IKE policy the Direction type is Initiator and the Exchange mode is Aggressive. And you will need to receive all additional configuration parameters from WiTopia -the Encryption, Authentication Algorithm, PFS, SA lifetime and so on. But this means that WiTopia have to provide gateway to gateway VPN connection.
Regards,
Kremena -
Need some Help configuring sip
Hi all ! ,
Im kind off new to sip calling and cisco telephony , but here goes ,: i have a 2821 router with CME installed
IOS : C2800NM-IPVOICEK9-M
Sofware version : 15.1(4)M4 / CME 8.6
Attached to GE0/0 is a CISCO 3750 switch
GEO - consisfts of 3 VLANS , the native
172.22.1.X
172.22.100.X VOICE
172.22.101.X DATA
my tftpserver = 172.22.1.150
i need some help configuring a sip trunk , i have 10 testing phonenumbers from vodafone , but i do not know where to start to get this working
i have tried
http://www.cisco.com/en/US/products/sw/voicesw/ps4625/products_configuration_example09186a00808f9666.shtml
but im getting stuck with what to fill in where .. is there anyone form NL whom has the same setup ? or similar ? or can give me some guidance on how to make the test callsok.. here goes
Building configuration...
Current configuration : 9721 bytes
! Last configuration change at 15:26:14 CET Thu Jan 2 2014
! NVRAM config last updated at 15:26:14 CET Thu Jan 2 2014
! NVRAM config last updated at 15:26:14 CET Thu Jan 2 2014
version 15.1
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname Router
boot-start-marker
boot-end-marker
no aaa new-model
clock timezone CET 1 0
network-clock-participate wic 0
network-clock-participate wic 1
network-clock-select 1 E1 0/0/0
network-clock-select 2 E1 0/0/1
dot11 syslog
ip source-route
ip cef
ip dhcp pool VOICE
network 172.22.100.0 255.255.255.0
option 150 ip 172.22.1.150
default-router 172.22.100.1
ip dhcp pool DATA
network 172.22.101.0 255.255.255.0
default-router 172.22.101.1
no ip domain lookup
no ipv6 cef
multilink bundle-name authenticated
isdn switch-type primary-net5
voice service voip
ip address trusted list
ipv4 172.22.1.50
ipv4 172.22.1.51
ipv4 172.22.100.1
ipv4 172.22.101.1
ipv4 62.140.159.225
callmonitor
allow-connections h323 to h323
allow-connections h323 to sip
allow-connections sip to h323
allow-connections sip to sip
no supplementary-service sip moved-temporarily
no supplementary-service sip refer
sip
registrar server expires max 3600 min 3600
voice class codec 1
codec preference 1 g711ulaw
codec preference 2 g711alaw
codec preference 3 g729r8
codec preference 4 g729br8
voice register global
voice translation-rule 1
rule 1 /5123781291/ /601/
rule 2 /5123781290/ /600/
voice translation-rule 2
rule 1 /^112$/ /112/
voice translation-rule 3
rule 1 /^.*/ /0262610290/
voice translation-rule 4
rule 2 /600/ /5123788000/
rule 3 /601/ /5123788001/
rule 4 /^2(..)$/ /51237812\1/
voice translation-profile CUE_Voicemail/AutoAttendant
translate called 1
voice translation-profile PSTN_CallForwarding
translate redirect-target 4
translate redirect-called 4
voice translation-profile PSTN_Outgoing
translate calling 3
translate called 2
translate redirect-target 4
translate redirect-called 4
voice-card 0
crypto pki token default removal timeout 0
controller E1 0/0/0
framing NO-CRC4
pri-group timeslots 1-31
controller E1 0/0/1
framing NO-CRC4
pri-group timeslots 1-31
ip ftp username cisco
ip ftp password cisco123
ip tftp source-interface GigabitEthernet0/0.1
interface GigabitEthernet0/0
no ip address
duplex auto
speed auto
no keepalive
interface GigabitEthernet0/0.1
encapsulation dot1Q 1 native
ip address 172.22.1.51 255.255.255.0
interface GigabitEthernet0/0.20
encapsulation dot1Q 20
ip address 172.22.101.1 255.255.255.0
interface GigabitEthernet0/0.100
encapsulation dot1Q 100
ip address 172.22.100.1 255.255.255.0
interface GigabitEthernet0/1
no ip address
shutdown
duplex full
speed 100
interface Serial0/0/0:15
no ip address
encapsulation hdlc
isdn switch-type primary-net5
isdn incoming-voice voice
no cdp enable
interface Serial0/0/1:15
no ip address
encapsulation hdlc
isdn switch-type primary-net5
isdn incoming-voice voice
no cdp enable
interface BRI0/1/0
no ip address
isdn switch-type basic-net3
isdn point-to-point-setup
interface BRI0/1/1
no ip address
isdn switch-type basic-net3
isdn point-to-point-setup
ip forward-protocol nd
ip http server
ip http authentication local
no ip http secure-server
ip http max-connections 16
ip http path flash:gui
ip route 0.0.0.0 0.0.0.0 172.22.1.50
tftp-server flash:7941/apps41.8-4-1-23.sbn alias apps41.8-4-1-23.sbn
tftp-server flash:7941/cnu41.8-4-1-23.sbn alias cnu41.8-4-1-23.sbn
tftp-server flash:7941/dsp41.8-4-1-23.sbn alias dsp41.8-4-1-23.sbn
tftp-server flash:7941/jar41sccp.8-4-1-23.sbn alias jar41sccp.8-4-1-23.sbn
tftp-server flash:7941/cvm41sccp.8-4-1-23.sbn alias cvm41sccp.8-4-1-23.sbn
tftp-server flash:7941/SCCP41.8-4-2S.loads alias SCCP41.8-4-2S.loads
tftp-server flash:7941/term41.default.loads alias term41.default.loads
tftp-server debug
control-plane
voice-port 0/0/0:15
voice-port 0/1/0
voice-port 0/1/1
voice-port 0/0/1:15
voice-port 2/0/0
voice-port 2/0/1
voice-port 2/0/2
voice-port 2/0/3
voice-port 2/0/4
voice-port 2/0/5
voice-port 2/0/6
voice-port 2/0/7
voice-port 2/0/8
voice-port 2/0/9
voice-port 2/0/10
voice-port 2/0/11
voice-port 2/0/12
voice-port 2/0/13
voice-port 2/0/14
voice-port 2/0/15
voice-port 2/0/16
voice-port 2/0/17
voice-port 2/0/18
voice-port 2/0/19
voice-port 2/0/20
voice-port 2/0/21
voice-port 2/0/22
voice-port 2/0/23
mgcp profile default
dial-peer voice 1 voip
description **Incomming Call from SIP Trunk**
translation-profile incoming CUE_Voicemail/AutoAttendant
session protocol sipv2
session target ipv4:172.22.1.50
incoming called-number .%
voice-class codec 1
voice-class sip dtmf-relay force rtp-nte
dtmf-relay rtp-nte
no vad
dial-peer voice 2 voip
description **Outgoing Call to SIP Trunk**
translation-profile outgoing PSTN_Outgoing
destination-pattern 9........
session protocol sipv2
session target ipv4:172.22.1.50
voice-class codec 1
voice-class sip dtmf-relay force rtp-nte
dtmf-relay rtp-nte
no vad
dial-peer voice 3 voip
description **Outgoing Call to SIP Trunk **
translation-profile outgoing PSTN_Outgoing
destination-pattern 9[2-9]..[2-9]......
session protocol sipv2
session target ipv4:172.22.1.50
voice-class codec 1
voice-class sip dtmf-relay force rtp-nte
dtmf-relay rtp-nte
no vad
dial-peer voice 4 voip
description **Outgoing Call to SIP Trunk**
translation-profile outgoing PSTN_Outgoing
destination-pattern 9[0-1][2-9]..[2-9]......
session protocol sipv2
session target ipv4:172.22.1.50
voice-class codec 1
voice-class sip dtmf-relay force rtp-nte
dtmf-relay rtp-nte
no vad
dial-peer voice 5 voip
description **911 Outgoing Call to SIP trunk**
translation-profile outgoing PSTN_Outgoing
destination-pattern 911
session protocol sipv2
session target ipv4:172.22.1.50
voice-class codec 1
voice-class sip dtmf-relay force rtp-nte
dtmf-relay rtp-nte
no vad
dial-peer voice 6 voip
description **Emergency Outgoing Call to SIP Trunk**
translation-profile outgoing PSTN_Outgoing
destination-pattern 9911
session protocol sipv2
session target ipv4:172.22.1.50
voice-class codec 1
voice-class sip dtmf-relay force rtp-nte
dtmf-relay rtp-nte
no vad
dial-peer voice 7 voip
description **911/411 Outgoing Call to SIP Trunk**
translation-profile outgoing PSTN_Outgoing
destination-pattern 9[2-9]11
session protocol sipv2
session target ipv4:172.22.1.50
voice-class codec 1
voice-class sip dtmf-relay force rtp-nte
dtmf-relay rtp-nte
no vad
dial-peer voice 8 voip
description **International Outgoing Call to SIP Trunk**
translation-profile outgoing PSTN_Outgoing
destination-pattern 9011T
session protocol sipv2
session target ipv4:172.22.1.50
voice-class codec 1
voice-class sip dtmf-relay force rtp-nte
dtmf-relay rtp-nte
no vad
dial-peer voice 9 voip
description **Star Code to SIP Trunk**
destination-pattern *..
session protocol sipv2
session target ipv4:172.22.1.50
voice-class codec 1
voice-class sip dtmf-relay force rtp-nte
dtmf-relay rtp-nte
no vad
dial-peer voice 10 voip
description **CUE Voicemail**
translation-profile outgoing PSTN_CallForwarding
destination-pattern 600
b2bua
session protocol sipv2
session target ipv4:172.22.1.155
dtmf-relay sip-notify
codec g711ulaw
no vad
dial-peer voice 11 voip
description **CUE Auto Attendant**
translation-profile outgoing PSTN_CallForwarding
destination-pattern 601
b2bua
session protocol sipv2
session target ipv4:172.22.1.155
dtmf-relay sip-notify
codec g711ulaw
no vad
sip-ua
authentication username 0262610290 password 7 15020A1F173D24362C realm 62.140.1
59.225
authentication username 0262610290 password 7 021605481811003348
no remote-party-id
retry invite 2
retry register 10
timers connect 100
registrar ipv4:62.140.159.225 expires 3600
sip-server ipv4:62.140.159.224
host-registrar
telephony-service
max-ephones 58
max-dn 192
ip source-address 172.22.100.1 port 2000
calling-number initiator
system message testing
cnf-file location TFTP tftp://172.22.1.150/
load 7960-7940 P00307020200.loads
load 7941 SCCP41.8-4-2S.loads
load 7941GE SCCP41.8-4-2S
time-format 24
dialplan-pattern 1 26261029.. extension-length 3 extension-pattern 9..
voicemail 600
max-conferences 12 gain -6
call-forward pattern 9.T
moh music-on-hold.au
web admin system name admin password password
dn-webedit
time-webedit
transfer-system full-consult
secondary-dialtone 9
directory entry 1 101 name 101
create cnf-files version-stamp 7960 Jan 02 2014 08:40:49
ephone-dn 1
number 290 secondary 0262610290
name Phone 1
hold-alert 30 originator
ephone-dn 2
number 291 secondary 0262610291
name phone 2
hold-alert 30 originator
ephone-dn 3
number 292 secondary 0262610292
name Phone 3
hold-alert 30 originator
ephone-dn 4
number 293 secondary 0262610293
name Phone 4
hold-alert 30 originator
ephone-dn 5
number 294 secondary 0262610294
label Phone 5
hold-alert 30 originator
ephone 1
mac-address 0019.E88F.3BDD
button 1:1
ephone 2
mac-address 001E.4A92.0A27
type 7961
button 1:2
ephone 3
mac-address 0012.43F5.03AF
button 1:3
ephone 4
mac-address 000F.F7AC.502A
button 1:4
ephone 5
mac-address 0019.E851.090A
button 1:5
line con 0
line aux 0
line vty 0 4
login
transport input all
scheduler allocate 20000 1000
ntp master
end -
Need help configuring Aiport Extreme A1034 to optimize network signal.
Greetings, I am a very loyal mac user from back in the days of the Quadra 650. I have torn apart and fixed most macs for the last 13, but I must say configuring this wireless network has got me stumped. Any help would be gladly appreciated.
I went from a ibook 1 Ghz with a plastic case to a aluminum powerbook g4 1.67 to find out that the metal case greatly diminished the computers ability to receive a wifi signal from my Rv park. I then decided to buy an Airport Extreme A1034 that has the antenna port and then bought a Hawking 15db directional antenna. My intention was to have the Airport Base station receive the 802.11b wifi signal sent out from the office of the RV park through the Hawking antenna, and then have the base station take that signal it received and send that high speed wifi signal to the airport card in my Powerbook G4. Sounds simple enough, I thought it would be. I have found that using Airport set up assistant doesn't give me that option. I then proceeded to get into the workings of the Airport Admin Utility. I have found myself ready to pull my hair out trying to configure the 6 different tabs being, Airport , Internet, Network, Port Mapping, Access control, and WDS.
I do know that everything in the Airport tab is correct. The big problem I think is between the Internet, Network and WDS tabs. It seems that the Airport base station was basically made to have a high speed connection plugged into it via ethernet and then the base station broadcasts to host computers such as my PowerBook G4. My initial thought was to connect via Airport WDS in the internet tab and then set my powerbook to connect directly to the base station through the airport card. I read up on this via Apples Designing Airport networks that came on the Airport installation CD. It talked in detail about setting up the WDS tab to do something like I want but it still involves a hard wired ethernet connection at the start of it. I have also played around extensively with the Network control panel and the sharing control panel , I thought about turning the airport card inside my powerbook into a software or virtual base station and then try some sort of WDS relay. Through all this I had the Airport extreme go none responsive on me and not letting me log in. That's another story of 10 hours of **** fixing it, but i did. Even the reset button stopped working for a while. As of now I can access everything everywhere. I also have ALL the IP addresses Hardware(MAC) address, subnet masks and router addresses for every location in this proposed wireless chain. I just need someone to end this stressful nightmare. They say you learn through trial and error, that is how I learned most of my computer skills over the decades, that and Applecare certified tech training many years ago, But it doesn't help anyone if I stick a large knife through my base station. I can provide a phone number if your willing to call. My email is [email protected] . If your in the San Diego area, I can get ya free passes to the nudist colony where I live, if your in for a new adventure in turn for setting up this network for me. Check out http://www.deanzasprings.com . its where I live.
Rich1. First, can someone confirm that the Extreme card be used as a WDS main base?
Sorry, but no you cannot use the AirPort Extreme card in a WDS as either a main, relay or remote base station. It does not support this function. -
Need help configuring Cisco/Linksys wireless router to extend wi-fi signal to living room
My U-verse wireless gateway is in the back of our house. We live in an old 1920's home with solid wood walls. For our macbooks, we get a pretty decent signal, but my wife's iPad 2 get's poor wi-fi speeds. I bought a Cisco/Linksys WRT160N wireless N broadband router. I have a wired connection in my living room (going to a 4 port switch) then connected to my DVR. I tried hooking up the new router but ended up getting no signal on the iPad. In fact, it caused other issues. I ended up disconnecting it and re-booting my gateway. All came back fine. This wireless router replaces a similar unit that went out in after a power failure, so I know this can be done, but I forget exactly how I confiured the old one. I would like it to "extend" my signal to the living room, but I am also willing to create a new network (different SSID). Do I need to turn of DHCP? Are there any web sites that can assist me in configuring the router? I wish I didn't have to deal with this. The signal from the RG is great when you are in the back room (20+ down). But my wife gets about 3 down on her iPad in the living room. Thanks in advance.
Hi ,
I was doing some research on how this can be done. It does not appear there is an option in the Cisco router to set it up as an access point, but there are several options you can do to extend your network.
The first thing you can do is just set it up as a router behind router setup, and you will just have two separate networks. Make sure the DHCP pool does not conflict with the U-verse's gateway of 192.168.1.x.
The second thing you can do is connect the Ethernet cable to one of the LAN ports on your Cisco router instead of using the internet port. This should make it work like a smart switch.
With both setups, you want to probably change the SSID, network key, and wireless security settings to the same thing for wireless roaming abilities. That way, anyone that configures their wireless connection will be connected to both networks. Just make sure the wireless channels are not the same, and I would suggest having them at least 5 apart.
Hope this helps.
-ATTU-verseCare -
DNS Help: Configure for local and extenal services using same domain name?
Hello all. I'm setting up a 10.5 server, have scoured these great forums and gotten close, but am still stuck. Any help would be greatly appreciated.
My network setup is as follows: Internet (2xT1) > modem > router/firewall/NAT device > XServe > switches > rest of network, clients, etc. Pretty standard, I believe.
I'd like to use this XServe on our local network/intranet/LAN only for OD, networked home directories, AFP, iCal, Time Machine, Print and Software Update.
My website is hosted on an external server.
My email is also hosted on a (different) external server.
Domain is school.edu
XServe name is xserve.school.edu
XServe is 10.0.0.25
I've gone through Apple's recommended DNS setup (supplemented by some great info found here on the forums....), and am able to connect to other Internet sites (with client's DNS server set as 10.0.0.25), but unable to connect to www.school.edu, or send/receive mail to/from mail.school.edu.
In short, connecting to external domains that are NOT related to my school are fine, but I'm unable to connect to any domain that IS related to my school.
If anyone out there can shoot me some notes on how to configure the DNS settings, zones, forwarding, etc. to accomplish this, I'd be VERY appreciative.
Thanks, in advance, to anyone who can help me out.
Cheers,
TimIn short, connecting to external domains that are NOT related to my school are fine, but I'm unable to connect to any domain that IS related to my school.
If your server thinks it's authoritative for 'school.edu' then you have to add records for every host in the school.edu zone.
For example, if you want to be able to resolve 'www.school.edu' then you have to have a 'www' record. If you want to send/receive mail you have to add an MX record, and so on.
It doesn't matter that you're not responsible for those servers, it's just that since this machine thinks it 'owns' school.edu it will only respond with records in its own zone and won't care about what any other name server says, even if that other name server is authoritative for the zone.
FWIW, that's often why people running stub servers like this choose a separate subdomain (like 'dept.school.edu') so they can leave the main school.edu records on the main server and have full control over a subdomain. -
Need help configuring Excel Services
I've configured both the Excel Serives and Secure Store Target applications and continually receive the following error message when trying to view the Simple Projects List sample report:
An error occurred while accessing application id ProjectServerApplication from Secure Store Service. The following connections failed to refresh:
Project Server - Simple Projects List
The Server Logs show the following errors:
Access Denied: Claims stored in the credentials did not match with the group claim for a group app.
The Microsoft Secure Store Services application Secure Store Service failed to retrieve credentials. The error returned was 'Access Denied.' ...
Access is denied. (Fault Detail is equal to Microsoft.Office.SecureStoreService.Server.SecureStoreServiceFault)
SSS has failed with the following exception: Access is denied.
Unable to esablish a connection using credentials retrieved from SSS. This could be because the Unattended Service Account is not configured or because the credentials retrieved from SSS are not valid.
I've repeated the steps to create these configurations a few times, and continue to get the same errors. Any help would be appreciated!
ThanksHello,
I need help setting up excel services.
Excel service is already running on sharepoint server.
I have one reporting file which is generated by DBA with database connection. i want to upload that file under document library and i want whenever user open it through document library, it gets updated through database connection
This is my first time, so pls guide me
Reporting file has authentication set to --> None
Do i require any specific settings for authentication? like unattended account ? which username should i use
Connection String -->
Provider=SQLOLEDB.1;Integrated Security=SSPI;Persist Security Info=True;User ID=ExcelServices;Initial Catalog=SurveyData;Data Source=jdb1;Use Procedure for Prepare=1;Auto Translate=True;Packet Size=4096;Workstation ID=RSTKW7W-06709;Use Encryption for Data=False;Tag
with column collation when possible=False
http://../training/sptestsite/Medication_Audit_Report
http://../training/sptestsite/Medication_Audit_Data_Connection_Library/
Trusted File Location - is this place do i need to upload that reporting file?
Trusted Data Connection Libraries - is this place do i need to save connection file .odc ?
If i am not wrong, should i put
Trusted File Location = http://../training/sptestsite/Medication_Audit_Report
Trusted Data Connection Libraries = http://../training/sptestsite/Medication_Audit_Data_Connection_Library/
http://../training/sptestsite/Medication_Audit_Report -- Here only reporting file will be uploaded right?
http://../training/sptestsite/Medication_Audit_Data_Connection_Library/ -- Here only database connection .odc file will be uploaded?
what other settings are required. please correct me
my email address - [email protected]
Harsh -
Need help configuring VPN - problems accessing the networks
Hi everyone, hope someone can help me out here.
I'm administering the network for our small company. We basically have two sets of machines - public ones with fixed net addresses (mail, web, dns servers, etc), and private ones behind a wireless router/nat.
Our main need here is to be able to VPN in to the public side, in particular, the mailserver, so that we can get around all the stupid things that get done to SMTP when we connect at the BedBug Inn ("Free wifi, administered by gibbons").
Secondarily, it would be nice to be able to connect to and browse some of the internal machines.
So here is what I did:
* Installed 10.4.10 Server on a machine with two ethernet interfaces, one that has a public IP address, the other connects into the private network. When I'm actually at that machine, things work fine - I can browse the private network shares, connect to the net, etc.
* Configured VPN. I have no problems getting a VPN connection, both sides are happy. The VPN assigns incoming clients IP addresses in the private network IP range, but outside those assigned by the wireless router's NAT.
* Added 192.168.2.1/255 (the private network) and 12.17.29.193/224 (the public network) to the Network Routing Definition box under VPN/Settings/Client Information.
However, here's where it all falls down. Once the VPN is established, I can't connect to any of the public machines, and the only private-side device that seems to respond is the Wireless/NAT box (A Belkin N1). So the only thing I can do is administer the Belkin remotely, which, while nice, is not exactly what I had in mind.
Doing a traceroute while VPN is active to my mailserver shows the first hop direct to the VPN machine, then off into * * * heaven (though I have no idea if traceroute works over VPN!).
One curious note: when I change the order of the Network Routing Definitions so that the public network comes first, and the private one second, I can't contact the Belkin box.
Any advice, oh wise and powerful masters of technology?
Various, but the server is running on a G4 Mac OS X (10.4.10)I said:
"let's assume I VPN to the wireless box"
You replied:
"That's not correct as it is not the device running the VPN endpoint - in this case. "
But wouldn't I have to (on the VPN client) specify the public IP of the wireless box in order connect (because the packets are forwarded) to the actual OS X box running the VPN? Otherwise, it can't see it.
Part of the problem I have is that I can't dedicate a whole machine to VPN. The OS X machine running VPN is also running DNS, and will eventually run our mailserver and perhaps FTP, web, etc, as I slowly migrate stuff to it.
So this machine has to have a public IP address. It cannot be hidden behind the wireless NAT. And it seems to me that this is the crux of the problem. What I think you are telling me is that if the VPN machine was entirely hidden behind the wireless NAT, and had no direct public (WAN) interface, then since all the packets destined for the outside world (including my public servers)would have to go through the NAT, and all would be OK.
If so, then it seems to me that the best solution is to use something like OpenVPN on another OS X (not OS X Server, since I only have one of those) machine in the private network. Since the incoming VPN traffic will be Mac only, it shouldn't be an issue, L2TP-only is fine.
"Otherwise you have to run NAT and the firewall in the VPN server too and use private IPs for VPN clients - or use "only" it (remove the other NAT box and put it on the LAN only). Using only one device for NAT/gw means less configuration."
It is entirely unclear to me, in my setup, what effect turning on NAT on the VPN box (or perhaps, just IP forwarding) would have -- and if I do turn on NAT, would I still have the VPN assign IP's to clients in the internal private network's range, or would I use a different range (ie: private is 192.168.237.xxx, VPN assigns 192.168.239.xxx) and expect the NAT to handle the conversion?
I'm a bit leery of just trying it and seeing what happens because it if mucks things up so badly that the server becomes unreachable (via server admin), I'll have to schlep down to the office to fix it.
"Other things to consider is "bottlenecks" between your LAN and WAN."
Not a real issue. We have a small office, and a relatively small pipe to the internet. Most of the traffic from that pipe is from the public machines anyway. The traffic that goes through the wireless router is basically websurfing and hitting the mailserver.
I could, of course, use the VPN OS X machine as the NAT/DHCP server, and hang the wireless router off the internal network as a simple access point. But would that resolve all the VPN issues?
Once again, thanks for your helpful and prompt replies. -
I need help configuring three products: WRVS4400N, WAG325N and WVC200
Hello,
I want your help in three linksys products as mentioned below:
WAG325N ADSL2+ Router
WVC200 PTZ CAMERA
WRVS4400N VPN Router
The computer connections and configuration of above linksys products which I am working with and which are connected with the above three linksys products at present are as follows:
1) I have one server and one laptop.
2) Laptop has two wireless adapters which I use to connect to the routers.
3) The server is connected to the WRVS4400N Router through one of the four ethernet ports mentioned on backside of the WRVS4400N Router. The DHCP of this router is disabled by me and the router's default IP 192.168.1.1 was changed to 192.168.1.12
4) The WRVS4400N router is connected to the Wag325N router for internet access to the server and server is connected to WRVS4400N Router as mentioned in point number 3 above.
5) The WAG325N router is setup as per the instructions mentioned that came with the CD of this router. The only change that I have modified is the router's default IP. I have changed the default IP of WAG325N from 192.168.1.1 to 192.168.1.13 and DHCP is enabled on this router.
The help that I want is step by step as follows:
1) I want to configure the both routers in such a way so that I can access them from anywhere across the world i.e. remotely using internet.
2) I have WVC200 Camera which I setup according to instructions mentioned in the CD and also configured the DDNS service. But when the " RJ45 Cable is connected " to my WAG325N router and Camera, then only the camera works properly. What I want is that after the setup is completed, I want to remove the RJ45 Cable connected from my camera to router and use the camera wirelessly from any location within the range of my above mentioned WAG325N router. I need flexibility to use my camera without cable connections from any location and any rooms of my house. I also configured the port forwarding and DDNS properly. The only problem is that if I remove the Cable after the setup of camera is finished, then the camera access is not working on LAN or internet(through DDNS). Whereas the same works on LAN and internet using the DDNS service, when the cable is physically connected to the WAG325N router. Also I want one more thing additionally other then this. I want to use this camera wirelessly by configuring the port forwarding options on both routers at a same time(i.e. simultaneously at once on WRVS4400N and WAG325N).
3) Now as two DHCP cannot work at a same time and as my routers are connected with each other, So I have disabled the DHCP on WRVS4400N. Here I need help so that DHCP can be enabled on both at a same time. Because if the DHCP is not enabled on WRVS4400N then I have to give IP to the server which is connected with server. If I enable the DHCP then there are two DHCP's at a same time on same network and thus problems occurs in internet access to the server. So, what should I do in such a way so that I do not have to give any IP to my server and set it to automatic.
4) This question is just for my knowledge so that I can use the above mentioned linksys purchases upto full extent possible in future. I want to know what is VPN and how is it usefull? What is the difference between VPN and VPN tunnel? How can VPN be used to access all my network resources connected with my server in the above situation where my server is connected to WRVS4400N which in turn is connected to WAG325N?
Thanks !
Sincerely
Kalpesh Sharma
+91-79-25351208
+919227435453
Ahmedabad, India.for question number 1:
you said that your main router is WAG325N, for you to remotely access the 2nd router is for you to forward the IP addr [192.168.1.12] on your first router and change its management port of your second router that is located on either the security tab or the administration tab on its User Interface
to access your first router open and Internet Explorer and enter
http://[public IP addr]:[management port]
the PUBLIC IP or INTERNET IP is located on the status page of your router
to access your second router just change the management port to
ex.
http://66.77.88.99:8080 first router
http://66.77.88.99:8081 second router
for question number 2:
make sure that you have configured all wireless settings on both your camera and your main router WAG235N, once done save settings and power down your camera and power it back up.
for question number 3:
for you to enable DHCP on both routers your connection can go like so...
from a regular port of your main router going to the INTERNET port of your second router [this way you can enable DHCP on both routers]. INTERNET is no problem, your cesond router will be able to get connection
for question number 4:
VPN - Virtual Private Network
VPN tunnel -is/are connections from router to router [gateway to gateway]
VPN is used to connect a diff network on a diff location for you to have access to the shared filed [it is like a file sharing through the internet]
for you to be able to use VPN tunnel you have to connect to a different VPN router on a diff location. In that way you can get access to the other network -
Need help configuring Attribute Change in WLS 6.1
Hi there,
I did all it said in the documentation, lacking any sight of an SNMP
trap. I want to receive a SNMP trap if the
InvalidLoginAttemptsTotalCount changes (MBean: ServerSecurityRuntime).
I use
Attribute MBean Type: ServerSecurityRuntime
Attribute MBean Name:
petstore:Location=petstoreServer,Name=petstoreServer,Type=ServerSecurityRuntime
Attribute Name: InvalidLoginAttemptsTotalCount
I enabled SNMP, configure my TrapHost and started my trapdaemon. But I
don't get any trap even though I increased the counter by doing some
logins with the wrong password. Parallel to my attribute change I also
configured a counter monitor on the same attribute, with the same
disappointing result =:-(
Can anyone help ?
Greetings,
AlexYou need to set a target for the pool. Without target
pool service won't start. Also you need to provide
initial and maximum size for the pool.
Regards,
Slava Imeshev
"Nadeem" <[email protected]> wrote in message
news:3d6d9268$[email protected]..
>
Hi Slava, thanks for the reply. Here is the connection pool definition asextracted
from config.xml. Do you see any errors in this which would cause theexception
mentioned below?
-Nadeem
************* Connection Pool element in config.xml ********
<JDBCConnectionPool DriverName="oracle.jdbc.driver.OracleDriver"
Name="MyJDBC Connection Pool"
Properties="user=system;password=manager" TestTableName="cabin"URL="192.168.0.11:1521:tacit"/>
"Slava Imeshev" <[email protected]> wrote:
Hi Nadeem,
Could you show us the connection pool definition?
It can be extracted from config.xml
Regards,
Slava Imeshev
"Nadeem" <[email protected]> wrote in message
news:[email protected]..
Hi,
I need to create a connection pool in WLS 7. Here are the specificsof my
environment:
1. RDBMS: Oracle 8i
2. Driver I want to use: Oracle thin 8.17 (provided with WLS 7)
3. IP address of machine on which database resides: 192.168.0.5
4. Port number: 1521
5. Name of database: MyDB
6. user: scott
7. password: tiger
Given the above,I do not know exactly what to fill out in the
following
fields
that appear in the Admin Console's connection pool creation form:
1. Name of connection pool (OK, this one I know!)
2. URL string (exactly what should it be, given above info?)
3. Driver Classname (I want to use Oracle thin 8.17, so what shouldI fill
here?)
4. Properties (exactly what should I fill here, given above info?)
5. ACL Name (completely stumped here! Documentation says ACLs havebeen
replaced
by policies in WLS 7 - so what to fill here?)
Could someone please help me correctly fill out these fields usingthe
information
I provided in the first paragraph.
BTW, I'm logged into WLS as Administrator.
Much obliged,
Nadeem -
Help configuring AVR to accept Apple TV
Help. Trying to get my Apple TV3 configured to play with my Harmon Kardon 354 AVR (HK 354 AVR).
TV is a Nuvision. HK 354AVR is connected to Nuvsion via HDMI. A BD player is connected to the HK 354 AVR on HDM1. TV and BD player audio output is connected to 7.1 speakers. Everthing works. BD player is connected to HDMI1 on the HK AVR354. BD and TV audio is output to 7.1 speakers. To get the BD to play I select DVD on the HK AVR and HDM1 on the TV, BD player works, audio is thru 7.1 speakers.
When I connect HDMI out from AppleTV directly to Nuvsion TV onto HMDI 2 port. Select HDM1 2 on TV and the Apple TV works fine.
Sound and video are fine. Sound is from TV speakers.
...But now I want the Apple TV sound connected/driven thru HK 354AVR.
When I connect the Apple TV HMDI out directly to the HK 354AVR using its HDMI 2 connection, nothing works when I select HDMI 2
Do I need to connect the Apple TV TOSL link to the HK AVR 354 port 2 to have audio driven thru HK? Can the TOSLink be 100' cable? (The TV and AVR are in seperate rooms)
How do I tell the HK AVR 354 that the Apple tv is on HDMI 2?a bad crash could have caused a hardreset of sorts
but you can just sync and get them back and if you only had them on
the atv then that was your first misstake as they then will be gon forever -
Would be grateful for help configuring my 7950gx2 for dual monitor
Hi guys,
I have two monitors - one widescreen TFT 20" DVI (max 1680x1050), and one 17" TFT Analog (max 1280x1024).
Currently I'm running just on my widescreen monitor, but would love to have both monitors enabled to facilitate my spare-time web design.
I have an nVidia 7950GX2 - the card is essentially two 7900GT(X)s SLI'd together. So it is a multi-GPU card, rather than me having two separate graphics cards in my system.
I've followed the Arch Wiki info regarding nVidia drivers, and have the drivers operating perfectly right now. But no matter what I do, even if I follow the Gentoo Wiki info on dual monitors, I can't get both monitors to operate; it's either one or neither.
Here's my current xorg.conf :
Section "ServerLayout"
Identifier "X.org Configured"
Screen 0 "Screen0" 0 0
InputDevice "Mouse0" "CorePointer"
InputDevice "Keyboard0" "CoreKeyboard"
EndSection
Section "Files"
RgbPath "/usr/share/X11/rgb"
ModulePath "/usr/lib/xorg/modules"
FontPath "/usr/share/fonts/misc"
FontPath "/usr/share/fonts/100dpi:unscaled"
FontPath "/usr/share/fonts/75dpi:unscaled"
FontPath "/usr/share/fonts/TTF"
FontPath "/usr/share/fonts/Type1"
EndSection
Section "Module"
Load "dbe"
Load "record"
Load "xtrap"
#Load "dri"
Load "glx"
Load "extmod"
Load "type1"
Load "freetype"
EndSection
Section "InputDevice"
Identifier "Keyboard0"
Driver "kbd"
Option "XkbRules" "xorg"
Option "XkbModel" "pc104"
Option "XkbLayout" "dvorak"
EndSection
Section "InputDevice"
Identifier "Mouse0"
Driver "mouse"
Option "Protocol" "auto"
Option "Device" "/dev/input/mice"
Option "ZAxisMapping" "4 5 6 7"
EndSection
Section "Monitor"
Identifier "Analog TFT"
VendorName "Blue Mountain"
ModelName "MT17XP"
EndSection
Section "Monitor"
Identifier "Widescreen DVI"
VendorName "LG"
ModelName "L204WT"
EndSection
Section "Device"
Identifier "Card0"
Driver "nvidia"
VendorName "nVidia Corporation"
BoardName "Unknown Board"
BusID "PCI:6:0:0"
Option "NoLogo" "True"
Option "MultiGPU" "AFR"
Option "sli" "off"
Option "RenderAccel" "true"
#other options I recommend:
Option "HWcursor"
Option "CursorShadow"
Option "CursorShadowAlpha" "32"
Option "CursorShadowXOffset" "3"
Option "CursorShadowYOffset" "3"
#if you want Composite and GLX (they don't cooperate):
Option "AllowGLXWithComposite"
#the TwinView stuff
Option "TwinView" "true"
Option "MetaModes" "DFP: 1680x1050, CRT: NULL"
Option "TwinViewOrientation" "DFP RightOf CRT"
Option "TwinViewXineramaInfoOrder" "DFP"
Option "HorizSync" "DFP: 30.0 - 83.0; CRT: 31.5 - 80"
Option "VertRefresh" "DFP: 56.0 - 75.0; CRT: 56.0 - 75.0"
EndSection
Section "Device"
Identifier "Card1"
Driver "nvidia"
VendorName "nVidia Corporation"
BoardName "Unknown Board"
BusID "PCI:5:0:0"
EndSection
Section "Screen"
Identifier "Screen0"
Device "Card0"
Monitor "Analog TFT"
EndSection
When I change
Option "MetaModes" "DFP: 1680x1050, CRT: NULL"
to
Option "MetaModes" "DFP: 1680x1050, CRT: 1280x1024"
I still only get my widescreen coming on.
When I change
Option "TwinViewXineramaInfoOrder" "DFP"
Option "TwinViewXineramaInfoOrder" "DFP, CRT"
then only my widescreen comes on again. Swapping the arguments means only my small TFT comes on.
I'd be very grateful for help fixing this; I'm happy to follow any instructions you want, so I'll just be patient and wait for orders
- KDI took the liberty to modify the relevant parts of the original xorg.conf file based on mine (I have a TwinView setup, but with identical monitors). Since bwalk has a similar setup to yours, you should try that first. If you still have problems for some reason, you can try the sections below.
I assume that the HorizSync and VertRefresh values are correct for your system, so I just used the original values as well (if you didn't set them, you might want to double check just to be sure). I commented out certain lines that seemed to be set by the program that created the config file, so if you need them, uncomment them...I just wanted to clean it up a bit. Again, understood that the CRT is on the left and the DFP is on the right, so that's how the MetaModes are declared. If it's the other way around, you will have to swap the value sets. I also assume that the DFP is your main monitor, so I set the CRT to NULL for any situation that requires it.
I'm not certain about the Screen section. Since so much info is declared above it, you might be able to eliminate the SubSection part, but I'm not sure. I hope you get it working.
Section "ServerLayout"
Identifier "Server0"
Screen 0 "Screen0"
InputDevice "Keyboard0" "CoreKeyboard"
InputDevice "Mouse0" "CorePointer"
EndSection
Section "Device"
Identifier "Card0"
VendorName "nVidia Corporation"
BoardName "Unknown Board"
BusID "PCI:6:0:0"
Driver "nvidia"
Option "NoLogo" "true"
Option "RenderAccel" "true"
Option "MultiGPU" "AFR"
Option "sli" "off"
Option "TwinView" "true"
Option "TwinViewOrientation" "RightOf"
Option "MetaModes" "1280x1024,1680x1050; NULL,1680x1050"
Option "ConnectedMonitor" "CRT-0, DFP-0"
Option "UseEdidFreqs" "false"
Option "HorizSync" "CRT-0: 31.5-80; DFP-0: 30-83"
Option "VertRefresh" "CRT-0: 56-75; DFP-0: 56-75"
# Option "HWcursor"
# Option "CursorShadow"
# Option "CursorShadowAlpha" "32"
# Option "CursorShadowXOffset" "3"
# Option "CursorShadowYOffset" "3"
# Option "AllowGLXWithComposite"
EndSection
Section "Device"
Identifier "Card1"
Driver "nvidia"
VendorName "nVidia Corporation"
BoardName "Unknown Board"
BusID "PCI:5:0:0"
EndSection
Section "Monitor"
Identifier "CRT-0"
VendorName "Blue Mountain"
ModelName "MT17XP"
HorizSync 31.50 - 80.00
VertRefresh 56.00 - 75.00
Option "DPMS"
EndSection
Section "Monitor"
Identifier "DFP-0"
VendorName "LG Electronics"
ModelName "L204WT"
HorizSync 30.00 - 83.00
VertRefresh 56.00 - 75.00
Option "DPMS"
EndSection
Section "Screen"
Identifier "Screen0"
Device "Card0"
Monitor "CRT-0"
DefaultDepth "24"
SubSection
Depth 24
Modes "1280x1024" "1680x1050"
Viewport 0 0
EndSubSection
EndSection -
WDA select-options value help configuration
Hello,
I would like to configure the value help in the select-options component in WebDynpro ABAP. I used the parameter I_VALUE_HELP_TYPE of the method ADD_SELECTION_FIELD, but I didn't know how to pass a correct value for this parameter. Could someone give me an example with coding? That would be great! Thanks in advance.
Regards,
GeorgFor those of you who, like me, get a screen full of OTR keys on the buttons and tabs, the answer is on the first tab, 6th button. Note that it is based on SPFLI, so the expected linkage between CARRID and CONNID does not happen.
The code is in MAIN_VIEW method ONACTIONON_CRS_FLD_F4_CASES.
The essence of it is:
wd_this->m_handler->add_selection_field(
i_id = CARRID
it_result = lt_range_table
i_value_help_structure = 'SFLIGHT'
i_value_help_structure_field = "CARRID ).
wd_this->m_handler->add_selection_field(
i_id = CONNID
it_result = lt_range_table
i_value_help_structure = 'SFLIGHT'
i_value_help_structure_field = "CONNID ).
The result is that you select the CARRID, and that restricts the CONNIDs.
I have used SFLIGHT because it will give linked search helps for CARRID and CONNID. It works with parameters too, but remember GET_PARAMETER_FIELD is not currently implemented (it exists, but contains no code, so your program will seem to work, but it won't) , so use GET_PARAMETER_FIELDS which does work.
Maybe you are looking for
-
Error while creating the HTTP client with destination GB_DPSRetrieve
Hi All, It is an interface R/3 -->XI --> HTTP ( proxy to HTTP ). Please find the error log below and throw some light why the HTTP adapter is getting error - <?xml version="1.0" encoding="UTF-8" standalone="yes" ?> - <!-- Call Adapter --> - <SOA
-
Plsql datatype -- URGENT HELP..
Is there a plsql datatype i can declare which can hold > 32k bytes value. please note that data value is not coming from database. rather i will be getting it from an OUT variable of an external program call from plsql stored procedure. THANKS.
-
Itunes doesn't want my ID to register my ipod
I have buy my ipod touch on apple store web, so i have ID and PW. But when i want to register my ipod with itunes (v10.2.2.12), i have this message: "To use this Apple ID, you must first login to the My InfoWeb page then provide additional security i
-
Apple TV, great idea, limited application.
I can't understand why I would want an Apple TV when I can accomplish everything it offers and more with my MacBook Pro. Were Apple to add recording capabilities and a DVD burner it would be more desirable. Can someone explain to me why they own one,
-
ACPI/IPCA and ATA133 problems
If I have IPCA enabled in the bios on my KT4V then when I try to install windows 2000 I get "The ACPI bios in this system is not fully compliant with the ACPI specification" bluescreen message... What gives? Also, why is no mass storage driver flop