Hosting a blog on BC, connected to an outside website?
I am designing a website in muse that that I am hosting through ixwebhosting using their ftp service.
I am wanting to add a blog but the only option through muse is to use BC.
Am i able to build a blog on BC that is connected directly to (both in design, and structure to my main site?)
Using a BC blog means you have to create site in BC and use the blog module, so in any case you will have to host a site on BC.
By saying that , you can create blogs in BC and render that in your site using iframe (but again that is not so good for SEO)
So the suggestion would be to create the site in BC itself , use blog modules in pages. Else in case of external hosting , use a third party blog service.
http://musewidgets.com/collections/all/blog
Thanks,
Sanjit
Similar Messages
-
Displaying Host details for active Proxy Connections
It is possible via JMX to display the number of active connections associated with Proxy services.
For problem resolution it would be very useful to determine the hosts that are connected. I already have a mechanism of capturing new connection requests (for logical connection throttling) so I can log the host details when a new connection is used - but my preference would be to view this in realtime e.g. via JMX. (Similar in concept to viewing all JMS clients that are connected to a JMS server).
Q1. Is there a way the above can be achieved and/or is there any intention to move this feature in to the core product?
Q2. If my client VM that has an open connection dies unexpectedly how quickly will the Proxy service recycle the connection and decrement the active connection count?
Thanks,
SimonQ1: It is our policy to not comment on contents/dates of future releases in the forum. However, Oracle is always looking to improve the usability and manageability of Coherence. To help me advocate this feature, could you elaborate on the information being collected, the usage models and the value proposition.
To help with the short term issue, The information you currently logging can be exposed through JMX by creating a custom MBean. The custom MBean is a combination of an Interface and an Implementation.
To create a custom MBean "ConnectionCounter":
Define the interface:
Interface ConnectionCounterMBean
public int getConnectionCount();
public class ConnectionCounter
implements ConnectionCounterMBean
public int getConnectionCount()
// return the connection count.
Register the custom MBean:
http://wiki.tangosol.com/display/COH33UG/Manage+Custom+MBeans+within+the+Coherence+Cluster
Q2: A Coherence*Extend service has several mechanisms for detecting dropped connections. Some mechanisms are inherent to the underlying protocol (i.e. a javax.jms.ExceptionListener in Extend-JMS and TCP/IP in Extend-TCP), whereas others are implemented by the service itself. The latter mechanisms are configured via the <outgoing-message-handler> configuration element.
The primary configurable mechanism used by a Coherence*Extend client service to detect dropped connections is a request timeout. When the service sends a request to the remote cluster and does not receive a response within the request timeout interval (see <request-timeout>), the service assumes that the connection has been dropped. The Coherence*Extend client and clustered services can also be configured to send a periodic heartbeat over the connection (see <heartbeat-interval> and <heartbeat-timeout>). If the service does not receive a response within the configured heartbeat timeout interval, the service assumes that the connection has been dropped.
For more information:
http://wiki.tangosol.com/display/COH33UG/Configuring+and+Using+Coherence*Extend
Hope this helps,
Everett Williams
Coherence development team -
Veeam Off-Host Proxy creating redundant iSCSI connections
Not sure this is a Veeam issue, just that it's occurring with Veeam backup process.
We have a server configured as an Off-Host Proxy with Veeam; it connects to the SAN storage via iSCSI same as the other hosts but accesses the storage as read only.
Randomly we will get alerts from the SAN as below:
iSCSI login to target '172.16.0.50:3260, iqn.2001-05.com.equallogic:8-661fc6-e612eedc6-32600005c9254a75-arcvmstore1-2015-01-03-14:13:37.2774.1' from initiator '172.16.0.44:64108, iqn.1991-05.com.microsoft:arcbackproxy.domain.local' failed for the following reason:
Requested target not found.
On inspection of the Off-Host Proxy's iSCSI configuration additional iSCSI connections are present as inactive, with an existing connections name amended with the date at the end. For instance (and in the example error above) there will be:
iqn.2001-05.com.equallogic:8-661fc6-e612eedc6-32600005c9254a75-arcvmstore1
and
iqn.2001-05.com.equallogic:8-661fc6-e612eedc6-32600005c9254a75-arcvmstore1-2015-01-03-14:13:37.2774.1
Not really causing an issue, the backups are running OK, or any issues we have aren't related. But getting annoying getting the alerts from the SAN of the Off-Host Proxy trying to connect to an incorrect iSCSI target.
Any ideas why this is occurring?
Obvious is we delete the extra connection, which stops the alert, but the issue will reoccur within a day or two usually.Hi,
Is there any error message in the Event Log? Please try to use the Windows Server Backup to check if you can run a backup.
Best Regards,
Mandy
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected] -
ASA 5505 unable to connect inside or outside
Hello,
I'm extremely new to router configurations, and am attempting to configure a backup ASA 5505 to use as a temporary access point in the event that our main ASA becomes unavailable. What I have done is loaded the running config from our main ASA onto the backup, and have made changes to necessary routes, IPs, etc. I can connect to it from a remote computer without problem, but I cannot access any of our servers, nor can I access the internet. I have also tried modifying the access list and NAT rules every which way from Sunday, but I still cannot get this thing to allow any information through. I keep getting "failed to locate egress interface for UDP from outside" errors.
We are using Cisco AnyConnect to connect , and mind you, since the config for this backup ASA was taken from our main, it still has the original certificate info and profiles. I was told that this wouldn't matter, but I thought I should mention in case I need to remove any of it from the config.
Here is part of the config file. I took out some information, but tried to keep it understandable. If anyone could point me in the right direction, it would be greatly appreciated!
ciscoasa# show running-config
: Saved
: Serial Number: xxxxxxxxxxx
: Hardware: ASA5505, 512 MB RAM, CPU Geode 500 MHz
ASA Version 9.2(2)
hostname ciscoasa
domain-name domain
enable password encrypted
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
passwd encrypted
names
ip local pool pool1 x.x.9.22-x.x.9.254 mask 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan1
nameif inside
security-level 100
ip address x.x.8.10 255.255.255.0
interface Vlan2
nameif outside
security-level 0
ip address x.x.x.237 255.255.255.248
boot system disk0:/asa922-k8.bin
boot config disk0:/startup-config
ftp mode passive
clock timezone EST -5
clock summer-time EDT recurring
dns domain-lookup inside
dns domain-lookup outside
dns server-group Default
name-server x.x.8.100
domain-name domain
same-security-traffic permit intra-interface
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network pool1
subnet x.x.9.0 255.255.255.0
object network outside-network
host x.x.x.237
object network Remote-Network
subnet x.x.8.0 255.255.255.0
object network local
object network obj-x.x.9.24
host x.x.9.24
object-group network Outside-Network-Group
description Outside Network Group
network-object x.x.x.232 255.255.255.248
object-group network Inside-Network-Group
description Inside Network Group
network-object x.x.8.0 255.255.255.0
access-list inside_access_in extended permit icmp any any
access-list inside_access_in extended permit ip any any
access-list NONAT extended permit ip x.x.8.0 255.255.255.0 x.x.9.0 255.255.255.0
pager lines 24
logging enable
logging buffer-size 30000
logging buffered debugging
logging asdm informational
no logging message 106015
no logging message 313001
no logging message 313008
no logging message 106023
no logging message 710003
no logging message 106100
no logging message 302015
no logging message 302014
no logging message 302013
no logging message 302018
no logging message 302017
no logging message 302016
no logging message 302021
no logging message 302020
flow-export destination inside x.x.8.132 2055
flow-export template timeout-rate 1
flow-export delay flow-create 50
mtu inside 1500
mtu outside 1500
icmp unreachable rate-limit 1 burst-size 1
icmp permit any outside
asdm image disk0:/asdm-722.bin
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
nat (inside,outside) source static any any destination static pool1 pool1 no-proxy-arp route-lookup
nat (inside,outside) source static any any destination static Remote-Network Remote-Network no-proxy-arp route-lookup
nat (outside,outside) source dynamic pool1 interface
object network obj_any
nat (inside,outside) dynamic interface
access-group inside_access_in in interface inside
route outside 0.0.0.0 0.0.0.0 x.x.x.232 1
route inside x.x.11.0 255.255.255.0 x.x.11.1 1
If you have any questions, or need any other information, please let me know.
Thanks!Am I posting this in the wrong section? Anyone?
-
Hello,
I have a RD farm using 3 Win 2012 servers (1 broker and 2 session host), for internal use only, have not
configured gateway for internet access.
Users are able to connect to RD farm website and remote into terminal server, within office
but can only connect to RD farm website and cannot remote into terminal server , when connected via VPN
Its takes long time at securing connection and fails.
ThanksHi,
Thank you for your posting in Windows Server Forum.
First of all I would suggest you to configure RD gateway role on your server and pass all the connection through it because it’s a best practice to use RD Gateway in RDS Farm.
Apart from this, if you are not using RD Gateway then you must check that you have successfully forwarded port 3389 for RDS to access via VPN. Also check that you have made configuration under IIS Manager to enable Forms Authentication. Please check
this link.
In addition, please refer beneath article for additional details.
1. How to Access Windows Remote Desktop Over the Internet
2. Remote Desktop Services in Windows 2008 R2 – Part 3 – RD Web Access & RemoteApp
(For reference)
Hope it helps!
Thanks,
Dharmesh -
How to upload to ftp host in adobe muse so it overwrites an existing website
I'm trying to upload to ftp host in adobe muse to publish my muse website live for the first time so that it overwrites a website I have from iweb. I have a domain and hosting service from Ventra IP, I put these details in the 'upload to ftp host' box that appears, it publishes, however my old website that I created in iweb still shows up.
Hi Brianna276. Without knowing your skill level, I will first start out with the easiest fix and ask if you have hit control-F5 to refresh your screen in case your computer is holding a cached version of your site. If that's not it, then I will say that I once had a similar issue and had to go into the files on my site and delete an old index file that was on the remote server. Once I deleted the old one, I was able to see the Muse site (and new index.html file) I uploaded.
-
A Thread manages a connection from the outside--help me to finish it
**RUN THIS CODE AND HELP ME--- THANKS A LOT**
EchoClient is thread which manage a connection from the outside.
import java.io.BufferedReader;
import java.io.InputStreamReader;
import java.io.PrintWriter;
import java.net.ServerSocket;
import java.net.Socket;
import java.util.Random;
public class EchoClient extends Thread {
private ServerSocket listenSocket = null;
private Socket manageSocket = null;
private int[] port = new int[9999];
private BufferedReader in;
private PrintWriter out;
private int line;
private int count;
// No needed to mention
//private ClientNode[] clientArray = new ClientNode[9999];
private ManageClient[] manageClient;
private final int CONNECTED = 1;
private final int CONNECTING = 11;
private final int DISCONECTED = 2;
public void run() {
try {
manageClient = new ManageClient[9999];
listenSocket = new ServerSocket(903);
manageSocket = listenSocket.accept();
while (true) {
in = new BufferedReader(new InputStreamReader(manageSocket
.getInputStream()));
out = new PrintWriter(manageSocket.getOutputStream());
line = in.read();
// if Client send a variable(CONNECTING)
// Server will send to Client a variable(CONNECTED) and port
//to open a ChatFrame with that port
if (line == CONNECTING) {
System.out.print("have recieved");
out.print(CONNECTED);
//randomize a port to send to client
port[count] = (int) Math.ceil(Math.random() * 9999)
//creat a manageClient(Thread) to manage a seperate
// connection with a seperate Client
manageClient[count] = new ManageClient(port[count]);
manageClient[count].start();
out.print(port[count]);
count++;
} catch (Exception e) {
e.printStackTrace();
public static void main(String[] args) {
EchoClient e = new EchoClient();
e.start();
}And a Login Frame which will send to server a varialble (CONNECTING) which requires to connect and keep waiting for a variable to Open a ChatFrame with a new port
import java.awt.FlowLayout;
import java.awt.event.ActionEvent;
import java.awt.event.ActionListener;
import java.io.BufferedReader;
import java.io.InputStreamReader;
import java.io.PrintWriter;
import java.net.Socket;
import javax.swing.JButton;
import javax.swing.JFrame;
import javax.swing.JPanel;
import javax.swing.JTextArea;
public class Login extends JFrame {
public ChatFrame chatFrame;
private final int CONNECTED = 1;
private final int CONNECTING = 11;
* @param args
public Login() {
// TODO Auto-generated method stub
setSize(50, 150);
JButton loginButton = new JButton("Login");
JPanel p = new JPanel();
p.setLayout(new FlowLayout());
p.add(loginButton);
add(p);
loginButton.addActionListener(new ActionListener() {
@Override
public void actionPerformed(ActionEvent e) {
loginServer();
public void loginServer() {
try {
Socket connectSocket = new Socket("127.0.0.1", 903);
while (true) {
BufferedReader in = new BufferedReader(new InputStreamReader(
connectSocket.getInputStream()));
PrintWriter out = new PrintWriter(connectSocket
.getOutputStream());
out.print(CONNECTING);
System.out.println("At here");
//(***position***)
int line = in.read();
System.out.println("At here1");
if (line == CONNECTED) {
int port = in.read();
chatFrame = new ChatFrame(port);
chatFrame.setDefaultCloseOperation(JFrame.EXIT_ON_CLOSE);
chatFrame.show();
connectSocket.close();
} catch (Exception exp) {
exp.printStackTrace();
public static void main(String[] args) {
Login login = new Login();
login.show();
login.setDefaultCloseOperation(JFrame.EXIT_ON_CLOSE);
}and this is ManageClient Thread...
import java.io.BufferedReader;
import java.io.InputStreamReader;
import java.io.PrintWriter;
import java.net.ServerSocket;
import java.net.Socket;
public class ManageClient extends Thread {
private ServerSocket ssClient;
private Socket sClient;
private int port;
public ManageClient(int port) {
this.port = port;
public int getPort() {
return port;
public void run() {
try {
ssClient = new ServerSocket(getPort());
sClient = ssClient.accept();
while (true) {
BufferedReader in = new BufferedReader(new InputStreamReader(
sClient.getInputStream()));
PrintWriter out = new PrintWriter(sClient.getOutputStream());
String s = in.readLine();
if (s != null)
out.print("have recieved");
} catch (Exception e) {
e.printStackTrace();
}my problem...
At firts EchoClient will run.. and then Login but when I click to the Login button it has just only did before int line = in.readLine();(*** postion ***)
I don't know why it doesn't continue. It stops here and the login button is still visible(cause code has not finish)..
That's my problem...
Somebody help me
Edited by: rockfanskid on Oct 17, 2007 4:25 AMSomebody helps me to finish this project...
thanks for racing this thread -
Prior to ver 5 was able to connect to my bank website not getting invalid url
Since update when I try to connect to my bank website I now get this message
Invalid URL
The requested URL "/corporate/default.asp", is invalid.
Reference #9.15951160.1309454346.73627b7
site opens fine in Internet explorer 9Do a malware check with some malware scanning programs on the Windows computer.<br />
You need to scan with all programs because each program detects different malware.<br />
Make sure that you update each program to get the latest version of their databases before doing a scan.
*http://www.malwarebytes.org/mbam.php - Malwarebytes' Anti-Malware
*http://www.superantispyware.com/ - SuperAntispyware
*http://www.microsoft.com/security/scanner/en-us/default.aspx - Microsoft Safety Scanner
*http://www.microsoft.com/windows/products/winfamily/defender/default.mspx - Windows Defender: Home Page
*http://www.safer-networking.org/en/index.html - Spybot Search & Destroy
You can also do a check for a rootkit infection with TDSSKiller.
*http://support.kaspersky.com/viruses/solutions?qid=208280684
See also:
*"Spyware on Windows": http://kb.mozillazine.org/Popups_not_blocked -
Firefox will not connect to certain major `websites" Why? I can go to Google and access
In the last 4 days Firefox will not connect/find certain major websites. Basically says that server not found.
What's the deal here? I use windows 7 and have the most current
firefox update.A possible cause is security software (firewall) that blocks or restricts Firefox or the plugin-container process without informing you, possibly after detecting changes (update) to the Firefox program.
Remove all rules for Firefox from the permissions list in the firewall and let your firewall ask again for permission to get full unrestricted access to internet for Firefox and the plugin-container process and the updater process.
See:
*https://support.mozilla.com/kb/Server+not+found
*https://support.mozilla.com/kb/Firewalls
*http://kb.mozillazine.org/Error_loading_websites
*https://support.mozilla.com/kb/Error+loading+web+sites -
Can't connect to a specific website
I have exhausted all other issues, but cannot connect to a specific website on my Verizon FIOS network. I am able to connect to it when I'm at work, and others are having no problems. I just can't connect through my home account. Please advise.
I check the settings on your router to be sure you are not blocking any sites or specific catergory of sites using parental controls.
It is possible that the public IP given to you by Verizon is being blocked by the WEB site because of something a previous holder of this IP did or didn't do. Unplug the power to your Verizon for at least 30 minutes. After plug it back in you should have a new Public IP. Confirm this by checking the status page on your router both before you unplug the router and then after you power it back up. -
Firefox 26.0 . The website is running on tomcat 7 server . Using java key store .java version "1.6.0_29"
Can test the site with openssl s_client and response seem ok.
SSL handshake has read 2335 bytes and written 303 bytes
New, TLSv1/SSLv3, Cipher is EDH-RSA-DES-CBC3-SHA
Server public key is 4096 bit
Secure Renegotiation IS supported
SSL-Session:
Protocol : TLSv1
Cipher : EDH-RSA-DES-CBC3-SHA
Session-ID: 52B896D8E3B7D0B1A03C5D2E5FF8B594D6AA74E94CB193E24685A041C5BEBF3A
Session-ID-ctx:
Master-Key: 1063AB71B3389D139FD7DD490FE3DF2188FA24B5E090390D2A899B32E2895B1D7A093590BE8D6FCDEFD22ACF10D94544
Key-Arg : None
Start Time: 1387828953
Timeout : 300 (sec)
Verify return code: 18 (self signed certificate)
closedHello,
Can you please confirm what the issue is? Are you not able to setup a SSL connection to the internal website running on Tomcat. If so, have you tried installing the root CA certificate into Firefox? You can do that by going to Firefox -> Preferences -> Advanced -> View Certificates -> Certificate Authorities and then importing the root CA certificate.
Please check this and let us know if this helps in resolving the connectivity issue. Though, I am a bit surprised that the connection is not getting established. Typically, Firefox would warn you if you would like to continue with the connection. Are you not seeing this warning?
Thank you -
I am trying to connect oim from outside webapplication
hi,
i am trying to connect oim from outside webapplication . I am getting following error.
Thor.API.Exceptions.tcAPIException
at Thor.API.tcUtilityFactory.getPropertyValue(Unknown Source)
at Thor.API.tcUtilityFactory.<init>(Unknown Source)
at oimconnection.main(oimconnection.java:33)
can any one help me.
Thanks.hi,
This should work:
try {
System.out.println("Login ====");
System.setProperty("XL.HomeDir", "D:\\CustomClient"); // change as per your env
System.setProperty("java.security.policy",
"D:\\CustomClient\\config\\xl.policy");
System.setProperty("java.security.auth.login.config",
"D:\\CustomClient\\config\\authwl.conf");
System.setProperty("java.naming.provider.url", "t3://OIM_HOST:OIM_PORT");
ConfigurationClient.ComplexSetting configClient = ConfigurationClient
.getComplexSettingByPath("Discovery.CoreServer");
final Hashtable env = configClient.getAllSettings();
ioUtilityFactory = new tcUtilityFactory(env, "xelsysadm",
"thepwd");
System.out.println("Authenticated -- :):)");
} catch (Exception e) {
e.printStackTrace();
} -
Dw cs5 with existing wordpress site hosted on yahoo need help connecting to existing remote database
I am having trouble establishing a database connection. I can connect with test databases but am having trouble using dreamweaver wtih my existing wordpress website. Am I able to use dreamweaver to edit and live view my changes before uploading the changed files to my live site? Am I able to access my existing wordpress database with dreaweaver? I have imported it to my testing server/database but still seem to be having trouble establishing a connection with it (think maybe my folder hierarchy might be off).
macintosh HD/Applications/MAMP/htdocs/nwm/wp/index.php
"nwm" is the name of the folder that I have copied all of my site files to and the folder I have dreamweaver pointing to. "wp" is what I have all of the wordpress files in (the ones I copied from my yahoo server - including all my current theme files etc.)
I am trying to put the info into the mysql connection dialog box:
Connection Name: Testing (i am assuming this name is for my benefit only and doesn't actually matter)
MySQL Server: mysql
User Name: *****
Password: *****
Database: wp
and am getting this message
MySQL Error#: 2013
Lost connection to MySQL server at 'reading initial communication packet', system error 61
did some google seaches of the error. Tried turning off the firewall, and the advance tab allow mysql incoming (there were 2 one was allow one was not allow. I changed both to allow)
Cant really find anything on yahoo to help me out. Looked in phpmyadmin database named wp: wp_users to get the username and password (which due to previous look for help - I think the password was encrypted cuz it looked like a bunch of mumbo jumbo and am fairly certain I know the correct password).
Any help would be greatly appreciated!! I spent $50 on live chat last night trying to resolve the issue only to find out at the end that the guy really didn't understand my problem and doesn't have dreamweaver. I have also watched countless videos on Lynda.com and have been thru forum after forum. While this problem is only a couple weeks old since I just got CS5. I have been having trouble making any headway learning php since I cant seem to make it past the set up parts. I have done the php / mysql essential training on lynda.com with relative success except that I really dont want to work with any more exercise files so I didn't go on to the beyond the basics. I recently went thru most of the Dreamweaver CS5 and Wordpress 3. Also did the first 4 chapters of Dreamweaver CS5 with PHP and MySQL. I need to start integrating things into my live sites. I am also trying to work my way thru the learning php, mysql, javascript book by o'reily media by robin nixon (as fun as reading a math text book) can't get thru it since I can't relate any of it to my current sites/needs
I am on MacBookPro OSX 10.6.6
Installed MAMP to specification on all 20 tutorials I have tried including lynda.com
Tested the testing server and is working
Just installed dreamweaver cs5
have been using wordpress online to create and edit posts (recently upgraded to 3.? whatever the latest update was online which I believe update the files on my yahoo server?)
Have also installed wordpress on my computer (several times thru each tutorial trying to get this right.)
Am I expecting the impossible?If wordpress controls it's own connection why am I unable to use the live view. I have synced the remote site to my local computer so all the files should be just as they are online with the exception of the DB which contains most of the content.
I have done all of those steps. I have even exported the database from inside internet phpmyadmin and imported into computer phpmyadmin. When I hit live view I get one of couple of errors.
1. "One is that the dynamic related files could not be displayed due to an internal server error"
At some point I was able to view some sample files inside dreamweaver. But I would like to be able to view my real site files. I was able to "connect" to the local databases (not the copy of my real one - I think that maybe that was because it is somehow nested inside another db an am going try to reimport to new location). And then I changed the host/username/password trying to deal with the internal server error. Now instead I get the cannot connect to the database Error 2016 or whatever from the origianl post. Also, I am using yahoo if that matters and all I can find about what their server name is: mysql - is that correct?
I have been thru this so many times with so many different tutorials I am losing track of what is what.
2. Can I access my remote database within dreamweaver? I do not want to create dummy files (seems to be a waste of time). And while if it had worked exporting/importing a duplicate on to my computer would have satisfied me for a little while it also seems some what counter productive. Since every post and page is different if I were doing a daily updates etc how would I be able to change the formating or design of them if I can't access the remote files. Would I re- import everytime I want to work on it to get current database?
I am trying to be clear. I listed all the specs I could think as listed in your "how to get help fast post" (yes I read that at least twice too) of all of the steps and possible reasons for my problems. I also thought that the forum was on a seperate site so I didn't think it would count as a duplicate. I am frustrated to tears and am feeling incredibly stupid that after all this time and all these tutorials yes you are right I obviously am not understanding what is going on which is why I am on this forum. -
VPN Client can't reach router or hosts, but can reach other connected sites.
We have a VPN client configuration on a 2901 router. The client passes authentication and connects fine. When connected, cannot reach the 2901 or any devices directly behind it, BUT can reach routers and hosts that are connected to the same 2901 through site to site connections.
Few notes:
I have added some lines excluding NAT in a few different ways, but does not resolve.
I have switched the RAP rool from 10.96.20.x to 172.21.20.x and can then connect to the local host. Appears to be a routing issue to the 10.x network, but I can't seem to find the solution.
Any help would be greatly appreciated. Here is the config:
boot-start-marker
boot system flash
boot system flash:c2900-universalk9-mz.SPA.153-2.T.bin
no ip domain lookup
ip inspect log drop-pkt
ip inspect name FIREWALL tcp
ip inspect name FIREWALL udp
ip inspect name FIREWALL ftp
ip inspect name FIREWALL fragment maximum 256 timeout 1
ip inspect name FIREWALL ntp
ip inspect name FIREWALL pptp
ip inspect name FIREWALL dns
ip inspect name FIREWALL l2tp
ip inspect name FIREWALL pop3
ip inspect name FIREWALL icmp router-traffic
no ipv6 cef
crypto isakmp policy 1
encr aes
authentication pre-share
group 2
crypto isakmp policy 5
encr 3des
authentication pre-share
group 2
crypto isakmp policy 10
encr 3des
hash md5
authentication pre-share
group 2
crypto isakmp policy 95
authentication pre-share
group 2
crypto isakmp policy 99
hash md5
authentication pre-share
group 2
crypto isakmp policy 110
hash md5
authentication pre-share
crypto isakmp client configuration group VPN-RAS
key *********
dns 10.96.17.2 10.1.200.50
wins 10.96.17.2 10.1.200.50
domain mine.com
pool RAPOOL
acl SPLIT
save-password
split-dns mind.com
netmask 255.255.255.0
crypto isakmp profile USERS
match identity group VPN-RAS
client authentication list DOMAIN
isakmp authorization list VPN-RAS
client configuration address respond
keepalive 300 retry 5
crypto ipsec transform-set AES128 esp-aes esp-sha-hmac
mode tunnel
crypto ipsec transform-set 3DES esp-3des esp-sha-hmac
mode tunnel
crypto ipsec transform-set DES esp-des esp-md5-hmac
mode tunnel
crypto ipsec transform-set 3DES-MD5 esp-3des esp-md5-hmac
mode tunnel
crypto ipsec transform-set DES-SHA esp-des esp-sha-hmac
mode tunnel
crypto ipsec transform-set myset esp-3des esp-sha-hmac
mode tunnel
crypto dynamic-map dynmap 1
set transform-set AES128
set isakmp-profile USERS
crypto map COMPANY_VPN 10 ipsec-isakmp
set peer *******
set transform-set 3DES-MD5
match address PA-VPN
qos pre-classify
crypto map COMPANY_VPN 50 ipsec-isakmp
set peer ******
set transform-set AES128
match address VPN
qos pre-classify
crypto map COMPANY_VPN 999 ipsec-isakmp dynamic dynmap
interface Embedded-Service-Engine0/0
no ip address
shutdown
interface GigabitEthernet0/0
ip address 37.222.111.224 255.255.255.248
ip access-group INBOUND in
no ip redirects
no ip unreachables
no ip proxy-arp
ip verify unicast reverse-path
ip flow ingress
ip flow egress
ip nat outside
ip inspect FIREWALL out
ip virtual-reassembly in
duplex auto
speed auto
no cdp enable
no mop enabled
crypto map COMPANY_VPN
interface GigabitEthernet0/1
no ip address
ip flow ingress
duplex auto
speed auto
interface GigabitEthernet0/1.17
description LAN
encapsulation dot1Q 17
ip address 10.96.17.253 255.255.255.0
ip access-group OUTBOUND in
ip flow ingress
ip flow egress
ip nat inside
ip virtual-reassembly in
standby 0 ip 10.96.17.254
standby 0 priority 110
standby 0 preempt
standby 0 track 1 decrement 20
interface GigabitEthernet0/1.27
description VOICE
encapsulation dot1Q 27
ip address 192.168.17.254 255.255.255.0
ip access-group OUTBOUND in
ip helper-address 10.96.17.2
ip flow ingress
ip nat inside
ip virtual-reassembly in
h323-gateway voip bind srcaddr 192.168.17.254
ip local pool RAPOOL 10.96.20.50 10.96.20.150
ip forward-protocol nd
ip nat inside source route-map NAT-POOL interface GigabitEthernet0/0 overload
ip route 0.0.0.0 0.0.0.0 37.222.111.223
ip route 10.96.16.0 255.255.255.0 10.96.17.250
ip route 172.22.1.0 255.255.255.0 10.96.17.250
ip route 172.22.2.0 255.255.255.0 10.96.17.250
ip route 172.22.3.0 255.255.255.0 10.96.17.250
ip route 192.168.16.0 255.255.255.0 10.96.17.250
ip access-list extended DMZ
deny ip any 10.0.0.0 0.255.255.255
deny ip any 192.168.0.0 0.0.255.255
permit ip any any
ip access-list extended GUEST
deny ip any 10.0.0.0 0.255.255.255
deny ip any 192.168.0.0 0.0.255.255
permit ip any any
ip access-list extended INBOUND
deny ip 80.25.124.0 0.0.0.255 any
deny ip 10.0.0.0 0.255.255.255 any
deny ip 172.16.0.0 0.15.255.255 any
permit udp host 173.239.147.114 any eq isakmp
permit esp host 173.239.147.114 any
deny ip 192.168.0.0 0.0.255.255 any
permit udp any host 37.222.111.224 eq isakmp
permit udp any host 37.222.111.224 eq non500-isakmp
permit esp any host 37.222.111.224
ip access-list extended NAT
deny ip 10.96.20.0 0.0.0.255 any
deny ip any 10.96.20.0 0.0.0.255
permit ip 192.168.0.0 0.0.255.255 any
permit ip 10.0.0.0 0.255.255.255 any
ip access-list extended NONAT
permit ip any 192.168.0.0 0.0.255.255
permit ip any 10.0.0.0 0.255.255.255
ip access-list extended OUTBOUND
deny udp any host 22.55.77.106 eq isakmp
deny udp any host 22.55.77.106 eq non500-isakmp
deny esp any host 22.55.77.106
permit ip any any
ip access-list extended PA-VPN
permit ip 10.0.0.0 0.255.255.255 10.96.18.0 0.0.0.255
permit ip 10.0.0.0 0.255.255.255 192.168.18.0 0.0.0.255
permit ip 192.168.0.0 0.0.255.255 10.96.18.0 0.0.0.255
permit ip 192.168.0.0 0.0.255.255 192.168.18.0 0.0.0.255
ip access-list extended SPLIT
permit ip 10.0.0.0 0.255.255.255 any
permit ip 192.168.0.0 0.0.255.255 any
ip access-list extended VPN
permit ip 10.96.16.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 10.96.17.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 10.96.18.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 10.96.0.0 0.0.255.255 192.168.0.0 0.0.255.255
permit ip 10.96.0.0 0.0.255.255 10.0.0.0 0.255.255.255
permit ip 192.168.16.0 0.0.0.255 192.168.0.0 0.0.255.255
permit ip 192.168.17.0 0.0.0.255 192.168.0.0 0.0.255.255
permit ip 192.168.18.0 0.0.0.255 192.168.0.0 0.0.255.255
permit ip 192.168.17.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 192.168.18.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 172.22.0.0 0.0.255.255 10.0.0.0 0.255.255.255
permit ip 172.22.0.0 0.0.255.255 192.168.0.0 0.0.255.255
route-map NAT-POOL deny 5
match ip address NONAT
route-map NAT-POOL permit 10
match ip address NATWe have a VPN client configuration on a 2901 router. The client passes authentication and connects fine. When connected, cannot reach the 2901 or any devices directly behind it, BUT can reach routers and hosts that are connected to the same 2901 through site to site connections.
Few notes:
I have added some lines excluding NAT in a few different ways, but does not resolve.
I have switched the RAP rool from 10.96.20.x to 172.21.20.x and can then connect to the local host. Appears to be a routing issue to the 10.x network, but I can't seem to find the solution.
Any help would be greatly appreciated. Here is the config:
boot-start-marker
boot system flash
boot system flash:c2900-universalk9-mz.SPA.153-2.T.bin
no ip domain lookup
ip inspect log drop-pkt
ip inspect name FIREWALL tcp
ip inspect name FIREWALL udp
ip inspect name FIREWALL ftp
ip inspect name FIREWALL fragment maximum 256 timeout 1
ip inspect name FIREWALL ntp
ip inspect name FIREWALL pptp
ip inspect name FIREWALL dns
ip inspect name FIREWALL l2tp
ip inspect name FIREWALL pop3
ip inspect name FIREWALL icmp router-traffic
no ipv6 cef
crypto isakmp policy 1
encr aes
authentication pre-share
group 2
crypto isakmp policy 5
encr 3des
authentication pre-share
group 2
crypto isakmp policy 10
encr 3des
hash md5
authentication pre-share
group 2
crypto isakmp policy 95
authentication pre-share
group 2
crypto isakmp policy 99
hash md5
authentication pre-share
group 2
crypto isakmp policy 110
hash md5
authentication pre-share
crypto isakmp client configuration group VPN-RAS
key *********
dns 10.96.17.2 10.1.200.50
wins 10.96.17.2 10.1.200.50
domain mine.com
pool RAPOOL
acl SPLIT
save-password
split-dns mind.com
netmask 255.255.255.0
crypto isakmp profile USERS
match identity group VPN-RAS
client authentication list DOMAIN
isakmp authorization list VPN-RAS
client configuration address respond
keepalive 300 retry 5
crypto ipsec transform-set AES128 esp-aes esp-sha-hmac
mode tunnel
crypto ipsec transform-set 3DES esp-3des esp-sha-hmac
mode tunnel
crypto ipsec transform-set DES esp-des esp-md5-hmac
mode tunnel
crypto ipsec transform-set 3DES-MD5 esp-3des esp-md5-hmac
mode tunnel
crypto ipsec transform-set DES-SHA esp-des esp-sha-hmac
mode tunnel
crypto ipsec transform-set myset esp-3des esp-sha-hmac
mode tunnel
crypto dynamic-map dynmap 1
set transform-set AES128
set isakmp-profile USERS
crypto map COMPANY_VPN 10 ipsec-isakmp
set peer *******
set transform-set 3DES-MD5
match address PA-VPN
qos pre-classify
crypto map COMPANY_VPN 50 ipsec-isakmp
set peer ******
set transform-set AES128
match address VPN
qos pre-classify
crypto map COMPANY_VPN 999 ipsec-isakmp dynamic dynmap
interface Embedded-Service-Engine0/0
no ip address
shutdown
interface GigabitEthernet0/0
ip address 37.222.111.224 255.255.255.248
ip access-group INBOUND in
no ip redirects
no ip unreachables
no ip proxy-arp
ip verify unicast reverse-path
ip flow ingress
ip flow egress
ip nat outside
ip inspect FIREWALL out
ip virtual-reassembly in
duplex auto
speed auto
no cdp enable
no mop enabled
crypto map COMPANY_VPN
interface GigabitEthernet0/1
no ip address
ip flow ingress
duplex auto
speed auto
interface GigabitEthernet0/1.17
description LAN
encapsulation dot1Q 17
ip address 10.96.17.253 255.255.255.0
ip access-group OUTBOUND in
ip flow ingress
ip flow egress
ip nat inside
ip virtual-reassembly in
standby 0 ip 10.96.17.254
standby 0 priority 110
standby 0 preempt
standby 0 track 1 decrement 20
interface GigabitEthernet0/1.27
description VOICE
encapsulation dot1Q 27
ip address 192.168.17.254 255.255.255.0
ip access-group OUTBOUND in
ip helper-address 10.96.17.2
ip flow ingress
ip nat inside
ip virtual-reassembly in
h323-gateway voip bind srcaddr 192.168.17.254
ip local pool RAPOOL 10.96.20.50 10.96.20.150
ip forward-protocol nd
ip nat inside source route-map NAT-POOL interface GigabitEthernet0/0 overload
ip route 0.0.0.0 0.0.0.0 37.222.111.223
ip route 10.96.16.0 255.255.255.0 10.96.17.250
ip route 172.22.1.0 255.255.255.0 10.96.17.250
ip route 172.22.2.0 255.255.255.0 10.96.17.250
ip route 172.22.3.0 255.255.255.0 10.96.17.250
ip route 192.168.16.0 255.255.255.0 10.96.17.250
ip access-list extended DMZ
deny ip any 10.0.0.0 0.255.255.255
deny ip any 192.168.0.0 0.0.255.255
permit ip any any
ip access-list extended GUEST
deny ip any 10.0.0.0 0.255.255.255
deny ip any 192.168.0.0 0.0.255.255
permit ip any any
ip access-list extended INBOUND
deny ip 80.25.124.0 0.0.0.255 any
deny ip 10.0.0.0 0.255.255.255 any
deny ip 172.16.0.0 0.15.255.255 any
permit udp host 173.239.147.114 any eq isakmp
permit esp host 173.239.147.114 any
deny ip 192.168.0.0 0.0.255.255 any
permit udp any host 37.222.111.224 eq isakmp
permit udp any host 37.222.111.224 eq non500-isakmp
permit esp any host 37.222.111.224
ip access-list extended NAT
deny ip 10.96.20.0 0.0.0.255 any
deny ip any 10.96.20.0 0.0.0.255
permit ip 192.168.0.0 0.0.255.255 any
permit ip 10.0.0.0 0.255.255.255 any
ip access-list extended NONAT
permit ip any 192.168.0.0 0.0.255.255
permit ip any 10.0.0.0 0.255.255.255
ip access-list extended OUTBOUND
deny udp any host 22.55.77.106 eq isakmp
deny udp any host 22.55.77.106 eq non500-isakmp
deny esp any host 22.55.77.106
permit ip any any
ip access-list extended PA-VPN
permit ip 10.0.0.0 0.255.255.255 10.96.18.0 0.0.0.255
permit ip 10.0.0.0 0.255.255.255 192.168.18.0 0.0.0.255
permit ip 192.168.0.0 0.0.255.255 10.96.18.0 0.0.0.255
permit ip 192.168.0.0 0.0.255.255 192.168.18.0 0.0.0.255
ip access-list extended SPLIT
permit ip 10.0.0.0 0.255.255.255 any
permit ip 192.168.0.0 0.0.255.255 any
ip access-list extended VPN
permit ip 10.96.16.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 10.96.17.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 10.96.18.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 10.96.0.0 0.0.255.255 192.168.0.0 0.0.255.255
permit ip 10.96.0.0 0.0.255.255 10.0.0.0 0.255.255.255
permit ip 192.168.16.0 0.0.0.255 192.168.0.0 0.0.255.255
permit ip 192.168.17.0 0.0.0.255 192.168.0.0 0.0.255.255
permit ip 192.168.18.0 0.0.0.255 192.168.0.0 0.0.255.255
permit ip 192.168.17.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 192.168.18.0 0.0.0.255 10.0.0.0 0.255.255.255
permit ip 172.22.0.0 0.0.255.255 10.0.0.0 0.255.255.255
permit ip 172.22.0.0 0.0.255.255 192.168.0.0 0.0.255.255
route-map NAT-POOL deny 5
match ip address NONAT
route-map NAT-POOL permit 10
match ip address NAT -
No Route to Host Exception when trying to connect to OpenMQ?
Hi,
I'm trying to connect to an OpenMQ server running on another machine with code like the following:
com.sun.messaging.ConnectionFactory f = new com.sun.messaging.ConnectionFactory();
String host = "192.168.181.181";
int timeOut = 10 * 1000;
boolean reachable = InetAddress.getByName(host).isReachable(timeOut);
System.out.println("reachable=" + reachable);
f.setProperty(ConnectionConfiguration.imqAddressList, host );
f.setProperty(ConnectionConfiguration.imqAddressListBehavior, "RANDOM");
f.setProperty(ConnectionConfiguration.imqConsumerFlowLimit, "10");
f.setProperty(ConnectionConfiguration.imqReconnectEnabled, "true");
Connection myConnection = f.createConnection();This tells me that the machine is not reachable (via my print) and throws a NoRouteToHostException. My problem is that the machine is reachable. It responds to pings and I can use telnet to see the OpenMQ server is running:
curt@ccox-u1:~$ telnet 192.168.181.181 7676
Trying 192.168.181.181...
Connected to 192.168.181.181.
Escape character is '^]'.
101 DEV_MQ_Cluster 4.2
portmapper tcp PORTMAPPER 7676 [imqvarhome=/var/opt/sun/mq,brokerid=bossnode1,imqhome=/opt/sun/mq,sessionid=8595155628813678592]
cluster_discovery tcp CLUSTER_DISCOVERY 32811
jmxrmi rmi JMX 0 [url=service:jmx:rmi://foo.com/stub/rO0ABXNyAC5qYXZheC5tYW5hZ2VtZW50LnJlbW90ZS5ybWkuUk1JU2VydmVySW1wbF9TdHViAAAAAAAAAAICAAB4cgAaamF2YS5ybWkuc2VydmVyLlJlbW90ZVN0dWLp/tzJi+FlGgIAAHhyABxqYXZhLnJtaS5zZXJ2ZXIuUmVtb3RlT2JqZWN002G0kQxhMx4DAAB4cHc6AAtVbmljYXN0UmVmMgAADzE5Mi4xNjguMTgxLjE4MQAAgCwTQLe4tsgNM+WcbkQAAAEggVyr4oABAHg=]
admin tcp ADMIN 32814
jms tcp NORMAL 32813
cluster tcp CLUSTER 32815
Connection closed by foreign host.Can anyone tell me why this fails or give me some troubleshooting hints?
Thanks,
Curt
PS -- Here's what I'm running:
curt@ccox-u1:~$ java -version
java version "1.6.0_10"
Java(TM) SE Runtime Environment (build 1.6.0_10-b33)
Java HotSpot(TM) Server VM (build 11.0-b15, mixed mode)
curt@ccox-u1:~$ cat /proc/version
Linux version 2.6.27-11-generic (buildd@vernadsky) (gcc version 4.3.2 (Ubuntu 4.3.2-1ubuntu11) ) #1 SMP Wed Apr 1 20:57:48 UTC 2009There are two problems here. The first is a firewall problem. Although the Open MQ port mapper running on port 7676 wasn't being blocked, the port that mq tcp port was. I was able to solve this by creating an ssh tunnel and specifying a mqtcp connection.
"Table 182 Message Broker Addressing Schemes"
http://docs.sun.com/app/docs/doc/820-4916/6ngbm6hp4?a=view#gbnnt
f.setProperty(ConnectionConfiguration.imqAddressList,"mqtcp://" + host + ":32782/jms");This solution is less than ideal, since the mq tcp port can change. In fact, if you reference the original post, you can see it has already changed on me. I could write code to determine what the port is and create my own tunnel, but that doesn't seem worth the effort just yet.
The second problem is the lack of helpful error message. It's the sort of problem where you can't really blame any one party too much. Open MQ and Java are both just reporting the error message that they are given by the operating system. They should do a bit more than that.
Maybe you are looking for
-
guys i have created an apple id using i tunes store on my windows pc and it is validated but when i am trying to signin on the i cloud on my windows pc it shows that your apple id is valid but you can't sign in using this apple id .i don't know what
-
Flat file as targets in a mapping.
Hi All, While reading on-line documentation in topic Define Mappings of oracle9i warehouse builder i came across following statement. "A mapping can contain up to 50 flat files as targets, and it can also contain mix of flat files, relational objects
-
Can I control the "open with" options in apps on the ipad?
I have a school loop app that allows access to files stored in a remote folder, similar to dropbox. I can see the files and when I select one I have an option to choose which app to used to open a document (it might be a word doc, a pdf, a ppt, etc.)
-
Hi I have an issue where I believ there is a disconnect between my dates and the xmii server. I am running the followign query against a UDS source Select time as OutputDate, value as OutputValue From picomp Where tag = '50210-LI-QVY-2
-
Export MenuBuilder file to .exe format
Hello, I am fairly new to Captivate and I tried MenuBuilder for the first time this week. I have 2 elements in the menu + 2 clickable zones over logos in the menu page. 2 links go to Captivate project A and 2 links go to Captivate project B. I am abl