Is it possible to force some urls through the vpn using split tunneling?

Similar Messages

• [svn] 3048: Always map urls through the rootURL property, even for the non-proxy case.

  Revision: 3048
  Author: [email protected]
  Date: 2008-08-29 15:40:17 -0700 (Fri, 29 Aug 2008)
  Log Message:
  Always map urls through the rootURL property, even for the non-proxy case. This might
  change the behavior slightly if you set rootURL on HTTPService for the non-proxy case
  as that would have been ignored in the current code path but it seem less consistent.
  If rootURL is not set, it defaults to the swf's URL which should give the same relative
  URL semantics we get today by default when rootURL is not set.
  blazeDS checkintests pass
  Modified Paths:
  flex/sdk/trunk/frameworks/projects/rpc/src/mx/rpc/http/AbstractOperation.as

  Of the second and third scripts, the latter could perhaps be deemed the "most secure"; however, it might block more than you want. If you really want to use one of those, then I'd suggest using the second script. Otherwise, I'd recommend that you take a look here. (I only slightly examined the first script.... I do not understand the language of the comments, and I'm no iptables whiz. )
  Also, note that you don't have to use an actual script to set up the rules; rather, you can save the rules you want to a file that will be read by iptables automatically (/etc/iptables/iptables.rules). Here's a modified version of mine:
  # /etc/iptables/iptables.rules
  # These rules (and the commented instructions) derived from:
  # http://ubuntuforums.org/showthread.php?t=159661
  *nat
  :PREROUTING ACCEPT [163:50538]
  :POSTROUTING ACCEPT [40:2451]
  :OUTPUT ACCEPT [40:2451]
  COMMIT
  *filter
  :INPUT ACCEPT [0:0]
  :FORWARD ACCEPT [0:0]
  :OUTPUT ACCEPT [0:0]
  :FIREWALL - [0:0]
  :TRUSTED - [0:0]
  -A INPUT -j FIREWALL
  -A FORWARD -j DROP
  -A FIREWALL -m state --state RELATED,ESTABLISHED -j ACCEPT
  -A FIREWALL -i lo -j ACCEPT
  -A FIREWALL -j TRUSTED
  -A FIREWALL -j DROP
  # put your own exceptions here, like so (replacing <tcp/udp> with either "tcp" or
  # "udp" -- minus the quotes -- and <port number> with the port you'd like to open):
  # -A TRUSTED -p <tcp/udp> -m <tcp/udp> --dport <port number> -j ACCEPT
  COMMIT
  Of course, there are benefits to keeping the rules in a script. For instance, you could then easily set the default iptables rules, allow all traffic, etc. Plus, some firewall-related things (such as the various echo commands in the scripts you provided) cannot (to my knowledge) be done by iptables alone.
  If you already have a script that sets up the rules you would like to use, you can save yourself the hassle of creating a rules file by following the directions outlined here.
  Last edited by ssjlegendx (2008-08-06 20:17:00)

• Forced to go through the exit  EXIT_SAPLMEREQ_005

  Hi All,
  I modified the program of the standard SAPLMEGUI. I added a field Z into a dynpro and if change its content at a certain moment I want to force to pass through the exit EXIT_SAPLMEREQ_005, but as a field is not standard is not going through this exit when it changed.
  Do you know any way to pass for this exit ?
  Thanks.

  Hello
  Fair enough .  Sounds llike the program is checking for changed data before callin the exit. 
  One thing I would try( if you haven't already done so) would be to set a breakpoint in the exit.  Make  a change to the field you know triggers the exit and then look at the call stack to see if you can find where the program is checking for changed data.  Not much fun I know but you should eventually find it .
  Hope this helps a bit.
  Regards
  Greg Kern

• How do I use GarageBand as a amp/speaker to listen to my Electronic Drum set? I have a MIDI-USB cord already but I can't figure out how to listen to my set through the software using my computer speakers?

  How do I use GarageBand as a amp/speaker to listen to my Electronic Drum set? I have a MIDI-USB cord already but I can't figure out how to listen to my set through the software using my computer speakers?

  If you want to listen to the sounds of your drum set, you should use an audio cable and connect it to the computer's line-in, then create a real instrument track.
  If you use a Midi/USB interface, you'll have to create a software instrument track and select one of GB's drumsets as the instrument. Hopefully your drumset's midi notes are mapped to the right sounds in GB.

• Can i connect my cintiq 12wx to my Macbook pro 2011 through the thunderbolt using the mini display port to vga adaptor?

  I just bought my cintiq 12wx and was wonderding if i can connect it to my macbook pro 2011 through the thurderbolt using a mini displayport to vga adaptor? Please help!

  Yes, it should work with a mini-displayport to VGA adapter.  Since a 12wx also can take DVI you could use a mini-displayport to DVI adapter instead.  Why go analog when you can keep it in digital!
  I guess the usb is for the pen.

• HT201322 I downladed a game then i bought some gold on the game using a credit card. Now when I try to retrieve the gold it says I have to verify then download it. It will not let me. Any suggestions?

  I downladed a game then i bought some gold on the game using a credit card. Now when I try to retrieve the gold it says I have to verify then download it. It will not let me. Any suggestions?

  I was receiving the same error message yesterday, which said There was a problem downloading "The Song Name / Album / Artist". The file seems to be corrupted. To redownload the file, choose "Check for Available Downloads" from the Store menu. The file tries to download five times before this error message appears.
  I too, tried to find the file and delete it, but it was no where to be found.
  So I gave up for that moment and tried again today and I was able to successfully download the file. Amazing how that works!!!

• Is it possible to pull burndown charts through the API?

  I'm trying to pull information relating to sprints and I would ideally like to be able to pull burndown charts, either as an image or a hyperlink. Is this possible? 

  Hi Mike,
  The ability to delete BPAddresses through the DI API was added in 2007 A PL43; there is now a delete method on this object.
  Several objects had delete methods exposed to them in this patch level:
  Delete Method for Lines: The Delete method was added to the following objects:
  BPAddresses (Delete method)
  BPBankAccounts (Delete method)
  BPPaymentDates (Delete method)
  ContactEmployees (Delete method)
  ItemWarehouseInfo (Delete method)
  ProductionOrders_Lines (Delete method)
  ProductTrees_Lines (Delete method)
  ServiceCallActivities (Delete method)
  ServiceCallInventoryExpenses (Delete method)
  ServiceCallSolutions (Delete method)
  ValidValuesMD (Delete method)
  There is more information in the help file released with that patch - as far as I'm aware, this functionality is not detailed in a note.
  Regards,
  Niall

• Is there a way to force audio out through the Thunderbolt port?

  I am trying to connect a 15" MacBook Pro to an InFocus 3916 using a Mini DisplayPort to HDMI adapter.
  I know that the computer, adapters, and cables I am using support audio over HDMI.
       I have tested 4 separate adapters, 2 cables, and 2 computers, all of them work when hooked up to a Samsung HD TV.
  I know the Projector supports audio over HDMI, because I plugged a Apple TV into the projector using the same cable, and it worked fine.
  When I am using the Samsung HD TV: System Preferences->Sound->Output shows "Samsung" in the choices of outputs.
  When I try using any of the three Infocus Projectors, it only shows the internal audio.
  I have tried resetting the PRAM, and SMC. I have tried plugging in an audio cable to my computer to force a refresh of the Sound Preference Pane... I have tried turning on and off the projector.
  At this point I am trying to find a way to force Mac OS X to recognize the Projector as an audio output... Or at least to force the computer to think there is something there, so that it will push sound out the thunderbolt port.
  MBP Hardware Configuration:
  15" MacBook Pro, Late 2011
  2.2 GHz Intel Core i7
  AMD Radeon HD 6750M 512 MB
  OS X Lion 10.7.2
  Latest updates except Apple Remote Desktop 3.5.1

  mjs1138 wrote:
  endasil, Thanks for the reply. I'm currenlty running the program from within the NetBeans IDE. It is the output displayed by in NetBeans "output" that I'm looking at.
  --- MikeI don't use Netbeans, but I would guess that it too pipes Standard Out and Standard Error to the same console. You didn't address my comment. Are you printing to System.err as well? This happens implicitly if you use Exception.printStackTrace(), for example.

• Is it possible to run IC WINclient through the ITS?

  Hello.
  I try to launch Interaction Center WIN Client through ITS and get DNS-error when using Search BP page of IC WinClient: all links have domain "sapevent:"
  Of course this domain doesn't exists in our network.
  I know about IC WEB Client and we use it.
  My question about IC WIN Client and ITS is of more rhetorical then practical menaing.

  Well, I'm looking for a means to activate a script through the active corners, I'm not asking any questions about the script itself, so I did not think it should be posted in the AppleScript categoriy, but sure, I'll give it a go.
  (New thread in AppleScript: http://discussions.apple.com/thread.jspa?threadID=2534773&tstart=0)
  Message was edited by: Max Ocklind

• Is it possible to add some offset on the Y-Scale of a graph when autoscale mode is enabled.

  Hi All,
  I am plotting  on a waveform graph with autoscale mode enabled. I want to have some offset on the upper and lower side of the Y-Scale. Is there any way of implementing this.
  Thanks in advance,
  Cooldude 
  Solved!
  Go to Solution.

  The only way that came to my mind is to do the autoscale by your own:
  -Find the min and max (ready vi for that) 
  -Add a percentage of the range to min and max
  -Optional coerce the new min,max accordingly to a round number (depending on log(range) ) 
  -Set Scale with properties
  Another way:
  Add a plot with same data (or only the min and max point) with tranparent colour and multiply that data with 1.xx (xx percentage additional range)
  Message Edited by Henrik Volkers on 09-18-2009 12:40 PM
  Greetings from Germany
  Henrik
  LV since v3.1
  “ground” is a convenient fantasy
  '˙˙˙˙uıɐƃɐ lɐıp puɐ °06 ǝuoɥd ɹnoʎ uɹnʇ ǝsɐǝld 'ʎɹɐuıƃɐɯı sı pǝlɐıp ǝʌɐɥ noʎ ɹǝqɯnu ǝɥʇ'

• Is it Possible to Preview Sound While Scrubbing the Timeline Using Hotkeys?

  If I have a sound in my timeline, I can scrub through the timeline by dragging the red box and it will preview the sound that plays on every frame. However, I have hotkeys set to scrub through my timeline (, & .), and when I use them, the sound does not in fact preview. Is there a way to set up my hotkeys so the sound will in fact preview?

  Hello,
  I don't believe there is a way to view images in the files
  panel.
  However, there's a quick way to see them if you're using
  Windows.
  Select your image folder in the Files Panel.
  Right click and choose "Explore".
  It opens a window where you can see all the images in that
  folder.
  It's much faster than scrolling through the assets, clicking
  the file names
  and reading the paths to know where they are.
  This is very handy whether you have image folders in
  different directories
  (for organization and cleaner img src paths in the pages
  within the
  directory) or if you just dump them all in a folder in the
  root.
  On my wishlist: Hover over the image name in the files panel
  and a small
  box, like a tool tip, displays the image.
  Maybe someday.
  Take care,
  Tim
  "dexter manika" <[email protected]> wrote in
  message
  news:go4to8$k1m$[email protected]..
  > sorry in advance for what probably is a dumb question
  with a simple
  > solution.
  >
  > i realize i can view images in the assets panel-- but is
  it possible to
  > view
  > image files while in the files panel instead?
  >
  > i have a lot of images organized within folders in the
  files panel-- so
  > it's
  > easier there to locate and visulalize an image-- than
  scrolling down the
  > long
  > list in the assets panel.
  >
  > thanks.
  >

• SYN timeout connecting to a server through the VPN

  Hello,
  I have a very odd problem. When connected to the VPN, I can connect to all my servers without problem on any services. On a single server, when I try to connect to Windows shares, it doesn't work. My event log shows nothing on the client or on the server but I get this from the ASA:
  10-20-2008 20:54:45 Local4.Info 192.168.1.1 %ASA-6-302014: Teardown TCP connection 288013 for outside:192.168.2.1/1566 to inside:192.168.1.9/445 duration 0:00:30 bytes 0 SYN Timeout (user)
  At home I'm on 192.168.50.xx, the lan at work is 192.168.1.xx and the VPN range is 192.168.2.xx.
  Any ideas?
  ER

  Hello ER,
  Thanks for the confirmation. If everything is configured correctly and the issue is only across the VPN Tunnel, your symptoms closely match Bug ID CSCsf23145.
  Please refer the release notes for details:
  http://www.cisco.com/en/US/docs/security/asa/asa72/release/notes/asarn722.html
  CSCsf23145
  Unable to complete large uploads through VPN if packet loss occurs
  Please use the below URL to look up the bug id and the version that has the fix.
  http://tools.cisco.com/Support/BugToolKit/action.do?hdnAction=searchBugs
  let me know if it helps.
  Regards,
  Arul
  ** Please rate all helpful posts **

• Unable to print from HQ to Branch through the VPN tunnel between ASAs

  We have site to site VPN configured between ASAs. The VPN tunnel is up and running as desired except for one printer in the subnet. the users in the Hq cannot print in the branch office printer. I have allowed the ip protocols for the printer subnet but still it is not working. When I do a packet trac the traffic for the printer is allwed through the tunnel.
  Can anyone suggest what can be preventing from printing?

  When other printers in the same subnet can be reached, I would first control the IP-settings of the printer. In my experience it's most likely a wrong subnet-mask or gateway.

• Which packets go through the VPN tunnel

  Guys,
  I've just added a external server ip address to go through our vpn tunnel and then out the remote site internet connection.
  How can I check that this is the path the packet is taking?
  If I do a tracert then I can't see the path?
  Thanks

  Well, you could either monitor your logs on your VPN device (whatever that may be - not specified), as long as you have the appropriate logging level. 
  For a traceroute, assuming there's a routing device on the other end of the tunnel you would traverse, you should be able to see the last hop on your end being your VPN device, and then the router or the destination host, as the next hop (and that would indicate you're 'in' the tunnel).
  A third option, and more challenging, is having a packet sniffer that knows the PSK, or has the ability to decrypt the session, and analyze the traffic from Wireshark or another packet analysis tool.
  HTH!
  -Chris

• Is it possible to play an Xbox through the iMac 21. If so what do you need to get to do it., Is it possible to play an Xbox through the iMac 21. If so what do you need to get to do it.

  Is it possible to play Xbox through a iMac 21 if so what do u need to do it?

  Is there a way to configure Snow Leopard to allow for internet but not network access?
  Well, 'internet' is 'network access' so at one level your question makes no sense.
  If, on the other hand, what you want to do is segregate your Mac from the other machines then that's a different issue. There are numerous ways of doing that, but most would involve some level of interaction with the network administrators. Given their ana^H^H^H attitude towards Macs that may be an issue.
  The best way would be to setup a separate VLAN for the Mac. This will create a separate logical network within the company network with only this Mac and the network router in it. No PC would see the Mac, and the Mac wouldn't be scarred by seeing all those PCs. This cannot be done without buy-in from the network admins, though.
  A step down from that would be to use one PC in the network as a gateway to the rest of the network. The Mac would talk to this PC, and the PC would pass the data out to the rest of the network. This would require admin rights on the PC, though, which you may or may not have (I've seen a lot of corporate networks… :: shudder ::)
  The last option would be to setup an entirely separate internet connection for the Mac but there are logistical issues there, too.
  My advice: Buy a dozen Krispy Kremes for the network guys and sweet talk them into building you a VLAN.