"it's always DNS" - Need Help setting network/DNS settings for MacMini Serv
Well, I must admit defeat and ask for help. I've set up an Xsan or 2, but for the life of me cannot set up my mac mini server. My basic two problems seem to be these:
1) Service Order in System Preferences/Network
I want to run my private LAN through Ethernet, using a 10.1.17. IP range, and use my Airport Extreme Base Station (Technically a Time Capsule) for the Public ISP 192.168.1 DHCP service. Cannot get both to work. The only way I can get the server to work and to be able to login using Open Directory is to either set the Ethernet as Primary for both my client and server, in which case there is no internet service AT ALL for either. I have a sneaking suspicion it has something to do with either DNS or a few extra DNS entries in the ethernet or airport categories, but for the life of me I cannot find the right combination. Is there any way to have BOTH Ethernet LAN and Airport internet service?
2) Related to the first question, I think, is that my local FQDN (not registered, just meant for internal LAN use only right now) and DNS name only show up to my client computer in Server Admin, Directory Utility, Workgroup Manager if I DISABLE my airport card. Otherwise, they come up as <servername>.local and not the FQDN <servername>.editdog.com, and I cannot login using OD.
3) I'm not sure what happend to the Binding I used to have to do in OSX Server 10.5, but maybe that's the issue? I have the Peachpit OSX Server Essentials Book, and it's been less than helpful.
Any ideas out there?
bump
Similar Messages
-
I think I need help with driver (software) settings for D110a
I think I need help with driver (software) settings for D110a all-in-one
Product: D110a all-in-one
OS: Windows XP Professional
Error messages: None
Changes before problem appeared: None--new installation
The quality of photo images (mostly JPG files) in printouts is awful even though the files display beautifully on the PC screen. I am using
IrfanView software for displaying/printing. As far as I can tell, IrfanView is not the problem.
When I print the same images on a Deskjet 5150 attached to a different PC also running XP Pro and IrfanView, the quality of the printouts is at
least acceptable, Some would probably say good or very good.
It's dificult to explain in words the problem with the printouts. A picture of really pretty vegetables (squashes, tomatoes, watermelon, etc) comes
out much too red. Moreover, the red, which appears shaded on the screen, seems to be all one shade in the D110a printouts.
Something similar happens to a view of a huge tree in full leaf. On screen, there are subtle variations in the "greenness" of the leaves. In the
printout, all green is the same shade. In the same printout, the trunk of the tree is all a single shade of grey. It isn;t even obvious that the
trunk is a round, solid object.
I liken the effect to audio that disappears entirely when you lower the volume and gets clipped into square waves in even moderately loud passages.
I don't know whether the D110a driver software permits adjusting the parameters that appear to be set incorrectly, and if adjustments are possible,
how I would identify which parameters to adjust, how I would access them, or how I would adjust them. I'm hoping that someone can help. Thanks.
I forgot to mention that I have used the diagnostic application and it tells me that there are no problems.
e-mail me at [email protected]brazzmonkey wrote:
Hi everyone,
I noticed the following message when network starts on my gateway
Warning: This functionality is deprecated.
Please refer to /etc/rc.conf on how to define a single wired
connection, or use a utility such as netcfg.
Then I realized the way network settings should be written in rc.conf has changed. But I can't figure out how this should be done.
Currently, my set up is the following (old way):
INTERFACES=(eth0 eth1)
eth0="dhcp"
eth1="eth1 192.168.0.10 netmask 255.255.255.0 broadcast 192.168.0.255"
ROUTES=(!gateway)
eth0 is on DHCP because the IP is dynamically assigned my ISP.
eth1 has a fix IP because it's on the LAN side.
No problem to use DHCP on eth0 with the new settings.
But for eth1, I don't know what I am supposed to write for gateway.
Wiki isn't clear on that one either, and it looks like many articles still refer to the old way.
Any guidance appreciated, thanks.
brazzmonkey,
you can't define 2 interfaces the old way (even though I saw some tricky workaround somewhere in the forums).
Use, f.e., netcfg:
Comment your old lines.
In /etc/rc.conf insert:
NETWORKS=(Eth0-dhcp Eth1-static)
DAEMONS=(..... !network @net-profiles ....)
In /etc/network.d create 2 files:
First one is named Eth0-dhcp.
Contents:
CONNECTION="ethernet"
DESCRIPTION="Whatever text"
INTERFACE=eth0
HOSTNAME="your hostname"
IP="dhcp"
DHCP_TIMEOUT=15
Second one is named Eth1-static.
Contents:
CONNECTION='ethernet'
DESCRIPTION='whatver'
INTERFACE='eth1'
HOSTNAME='hname'
IP='static'
ADDR='192.168.0.10'
GATEWAY='192.168.0.1' # your gateway IP
DNS=('192.168.0.1') # your DNS server
The names Eth0-dhcp and Eth1-static are not magic. They just must be the same in rc.conf and in /etc/network.d.
Hope it helps.
mektub
PS: netcfg must be installed.
Last edited by Mektub (2011-07-20 14:07:05) -
Need help setting up a netboot/net restore server
I am looking for a link and or step by step instructions to set up a netboot net restore server in Mac OS X.4 server.
I am using a G5 1.6SP with Mac OS X.4 server
My goal is to put OS images on this server so i can quickly restore computers with a clean OS install via network
I have created the images already and currently use a fire wire drive to boot fromso i can restorethe computers with the images storedon the fire wire drive..the server would allow me to install via network.
So once again if someone can point me to a resource that provides step by step instructions i would appreciate.Tony has pointed you in the proper direction. One interpretation of what he's pointed you to:
Here's what has worked for me in the past.
When I do netinstalls, I do the following. Disclaimer - I know this is not the only way, but it works...
Set up one client exactly as I want it, apply all updates, run fsck, repair permissions, and test it out thoroughly.
I then boot the client in target mode, and attach it directly to the server with a firewire cable and use the image utility on the server to make an image. Follow the prompts to make it a netboot/netinstall image. From the clients, choose the network install image in StartupDisk (or hold the N key when you boot the client, or hold the option key for the bootmanager). You'll obviously need to enable netboot on the server, and it does rely on DNS to be running correctly on the server, just in case you weren't aware. This is not the only way to go, but it should work.
Jeff
Message was edited by: Jeff Kelleher -
Need help in web dispatcher settings for redirect
Hello All!
I need to redirect users from one URL (http://webdispatch:port1/abc/efg) to another (http://host2:port2/abc/efg) but URL in browser must stay unchanged (http://webdispatch:port1/abc/efg) after redirect. As I think server should get requested URL from browser, internally redirect to URL #2 and send response of URL #2 to browser.
I've set up Web Dispatcher for redirecting by using parameter icm/HTTP/redirect_0, but now URL in browser is changing with http://host2:port2/abc/efg
icm/HTTP/redirect_0 = PREFIX=/,FOR=webdispatch:,FROM=/sap/bc/webdynpro/sap/zwd_rep,HOST=host2,PORT=port2
How I can do it?
Helpful answers will be appreciated
Regards, LevThanks for your replies.
I've tried to comment wdisp/permission_table parameter but it had no effect. And it seems that I've made a mistake: I forgot to comment icm/HTTP/redirect_0 while tested work of icr file.
I have:
web dispatcher at webdisp_host:1090
host with ABAP+Java instance at inst_host
icm/HTTP/redirect_0 commented
use icr file:
>Version 1.0
>SYS
>J2EE crmdev.oao.sng 8010 DIA=2
At inst_host I has two apps:
/b2b_sng/ ( inst_host:50000/b2b_sng/ )
and /sap/bc/* ( inst_host:8010/sap/bc/webdynpro/* )
webdisp_host:1090/b2b_sng/ works fine.
webdisp_host:1090/sap/bc/webdynpro/* don't work:
500 Dispatching Error
Error: -26
Version: 7000
Component: HTTP_ROUTE
Date/Time: Mon Dec 01 17:41:24 2008
Module: http_route.c
Line: 3121
Server: crmdev_WDC_30
Error Tag:
Detail: no valid destination server available for '!ALL' rc=13
Slava,
> 8010 is probably an HTTP message server port.
I think no since inst_host:8010/sap/bc/webdynpro/* working fine.
Parameters
> rdisp/mshost = crmdev.oao.sng
> ms/http_port = 8010
has been already added into profile, but http_port = 8101 instead 8010 -
I need help: Canon HF S10 settings for Final Cut
Hello, i am a German guy, so i am sorry that my english is not very well.
I got the Canon HF S 10 from Japan, so its an NTSC one. For Cutting i am using Final Cut Pro. I want to produce online Videos in the best possible Quality.
My Problem is, that i dont know witch settings i should take for best Quality.I already tryed much. The Quality is good if i dont move the camera. If i move it the Video becames very bad Quality.
The Cam has these possibilitys:
Frame Rate: 60i (Standard), PF30, PF24.
24Mbps (MXP), 17Mbps (FXP), 12Mbps XP+,7Mbps (SP), 5Mbps (LP)
I dont know with import Settings i should use for Final Cut.
Could you please help me to find the right settings?
Thanks alotI tryed it, but there is no besser result. Could you maybe help me again? If i import from my hdd cam, i just need to put the Final Cut Settings for the Sequenz right? There i put ProRes 1920 x 1080i60.
I push import and it opens the window to import my files. There are also settings on the top:
P2 Plugin
P2 AVC-Intra - Nativ
AVCHD Pugin
AVCHD - Apple ProRes 422 (HQ)
AC - 3 Audio - Matrix Stereo
Is that all right? -
I need help setting Win7 Advanced attributes for the USB drive connected to my EA4500 router
I can drill down to the Permission Entry for [foldername] window for a folder on the USB drive. There I learn that user group Everyone does not have the Full Control permission box checked. When I check the box and then click Apply, I get an Error Applying Security window. If I click Continue there, I get a Windows Security window that says "Unable to save permission changes on [foldername]. Access is denied." with no way out but an OK button.
I have Administrative authority in Win7, but maybe I need to know some Unix voodoo to come to terms with my router-mounted drive. I put the drive on the router to make always available, and I'd like to get it to work. For example, I can't turn the archive bit off for any file or folder on that drive when it's mounted on the router. Not with ATTRIB -A and not with XCOPY /M.
Just to stuff it in my face, XCOPY /M returns a two-line error message for every sub-folder that exists in the target folder:
Access denied
Unable to create directory - foldername
Help! And thanks in advance.
:+)
Solved!
Go to Solution.Bill Dennes,
(Solutions/Work-Arounds below this paragraph, but sets up some useful information.)
As for the Security tab, I'm unsure of exactly why it doesn't appear on the tab itself for folders; however, clicking "Advanced -> Change Permissions -> Edit" will display the permissions; although, this doesn't appear to be a part of the problem in a sense. Additionally, “Everyone” always only has read & execute and is also not a part of the issue. To go further with this, the only users that have delete permission are “0” and “root” and since we can delete, we “should” be logged in as one of them and as such have “Full Control.”
As for the drive type, I'm unsure of why it "changes" it from FAT32 to NTFS (probably something to do with how it handles permissions); however, this is also not a part of the issue.
I have a flash drive formatted to FAT32, albeit only a 4GB and on an EA6500 with secure sharing enabled, that it does these both to and "xcopy testfolder Y:\ /e /m" works on it when all files and folders have the A attribute; however, disabling secure sharing makes it fail.
I’ve looked further into this and there are three ways I know of, as of right now, to make copying files with the bat file work for you:
The first way is to enable secure sharing and map the drives using it, once that is done you won’t need to enter the password again and your script will work as you currently have it coded. Given you have no need for the secure sharing, but it’s a simple solution. This is also the only way to be able to modify any attributes, although the only ones I know of that it will accept are R and A.
The second way is to instead use ROBOCOPY with the options /e, /m, and /copy:dt.
For example: "robocopy testfolder Y:\ /e /m /copy:dt"
/e = Copy subdirectories, including empty ones. (or use /S which will not copy empty folders)
/m = Copy only files with the Archive attribute and reset it.
/copy:dt = Copy data and timestamps, does not copy attributes, security, owner info, or auditing info.
The only important option to use is /copy:dt, the others can be replaced with whatever you need. Note that things like Song Author will still get copied as they are a part of the data section. I don’t believe XCOPY supports doing this, and in either case robocopy is a better solution that comes with Windows Vista and up, and can be gotten for those below Vista.
The third way is to add a section to the script to remove attributes from all folders before using xcopy to copy to the NAS, or modify the section that is causing the folders to have the A attribute as xcopy will gladly still copy them with /E or /S enabled.
The issue seems to be that when secure sharing is off, the server refuses attribute changing of folders, which is what is causing XCOPY to fail, as I suspect it attempts to change the attributes on the folders. Similarly, using robocopy without /copy:dt will also fail but gives you “Error 5 … changing file attributes [folder/path] Access is denied”. This is why I suspect that when XCOPY says “unable to create directory” that it is actually trying to change the attributes of the directory. Furthermore, it seems that the reason this works while secure sharing is on is that while it is on, the server pretends to accept the attributes but in reality ignores all attributes besides R. The server then adds the A attribute to all files put onto it, which you can only modify when secure sharing is enabled for some reason. The exception to this is that in either case, any file with the “H” (hidden) attribute, will not be copied, even if explicitly told to copy it. (This is true for both robocopy and xcopy; you also cannot manually add it afterwards.)
Is there an issue with the files on the NAS having the A attribute? If so the only way I currently know of to get rid of it is to enable secure sharing and have the script remove the attribute after copying. For example, when you look at the permissions, the user "0" and “root” have full control as I've previously stated. You can tell Windows to specifically use one of them when mapping the drive, which in turn should give you full control; however, the server still refuses modifying attributes without secure sharing on for some strange unknown reason. Although, I am no "UNIX gearhead," so there may in fact be another way that I do not know of. The only time they are not listed as “Full Control” on my end is when a file was previously marked Read-Only, in which case they all share the same limited control. When I said in the beginning that the permissions are not a part of the problem in a sense, it’s more of that for the general case of what you need to do, they aren’t the problem as long as you don't need the R attribute and having the A isn't an issue, as it seems to be more of the server is refusing attributes even though we should have permission; however, they do appear to be a bit weird and are possibly displaying incorrect when secure sharing is disabled.
I'd like to apologize in advance for any unclear, weirdly stated, or just plain odd things said in this post as I was pulled away to do a bunch of things and ended up editing, adding things, and finishing it late into the night and hope that one of the above is an acceptable resolution to your issue. -
I need Help setting up port forwarding for my foscam FI8910W.
I am currently on Mac OS X 10.7.5. My ISP is verizon FIOS and I have an Actiontec MI424WR router with the wireless turned off. I have an AirPort Extreme running from the actiontec router for my wireless network. First of all I need to know if I should plug the Foscam into the actiontec router or the Airport Extreme? Then I need to know if I should set up the port forwarding on the Actiontec or the Airport Extreme. Lastly I need detailed instructions on how to set up the port forwarding. Hopefully someone has a solution. Thanks
OK, and what sort of help do you need?
-
Need help with network user accounts on Mac server App on Yosemite, any tips?
I've been trying to set up a small network with the Server app on Yosemite. I don't want to do anything crazy with the server, I'd just like to know how I can set up network user accounts so that they can login from other Mac computers on the same network. I already have Open directory set up, the Macs that will be used on the network with the server have already been joined to the server under login options. I have created the network user account, I have also joined the user account to a group that I created. When I try to login to the network account from one of the Macs, it doesn't work. I'm pretty rookie with Mac server, can anyway give me any pointers of what I should be doing? Or if I am doing something wrong. Thanks guys.
The most important step, once you've got Open Directory and DNS set up, with Local Network Users set up in Server.app, is to make sure that all client Macs are using the server's IP address as the primary DNS server in System Preferences > Network, and that they have joined the Network server in System Preferences > Users and Groups > Login Options.
Having said all that, I have just spent hours setting this all up only to find out that Mail doesn't currently work with Network Homes in 10.10.3 / Server.app 4.1.
I will be hoping that Apple recognise the bug, and put out a fix soon. -
Need help setting up static NAT to internal server
One of my internal servers requires it to be available to the internet I am having a hard time allowing it to be NATed through my Ciscc 2801 router. It seems as though im missing something small. From what I can gather it seems as though its as issue with ACL, but im not sure. I have ran the following command: ip nat inside source static tcp 192.168.5.1 ***WAN IP Address*** 8443 extendable Then I tried to add it to the ACL
via this command: access-list 150 permit tcp any host ***WAN IP Address*** eq 8443
Here is a copy of my config. Please advise. Thanks.
IP 172.19.3.x
sub 255.255.255.128
GW 172.19.3.129
Ciscso 2801 Router
Current configuration : 11858 bytes
version 12.4
service timestamps debug datetime localtime
service timestamps log datetime localtime show-timezone
service password-encryption
hostname router-2801
boot-start-marker
boot-end-marker
logging message-counter syslog
logging buffered 4096
aaa new-model
aaa authentication login userauthen group radius local
aaa authorization network groupauthor local
aaa session-id common
clock timezone est -5
clock summer-time zone recurring last Sun Mar 2:00 1 Sun Nov 2:00
dot11 syslog
ip source-route
ip dhcp excluded-address 172.19.3.129 172.19.3.149
ip dhcp excluded-address 172.19.10.1 172.19.10.253
ip dhcp excluded-address 172.19.3.140
ip dhcp ping timeout 900
ip dhcp pool DHCP
network 172.19.3.128 255.255.255.128
default-router 172.19.3.129
domain-name domain.local
netbios-name-server 172.19.3.7
option 66 ascii 172.19.3.225
dns-server 172.19.3.140 208.67.220.220 208.67.222.222
ip dhcp pool VoiceDHCP
network 172.19.10.0 255.255.255.0
default-router 172.19.10.1
dns-server 208.67.220.220 8.8.8.8
option 66 ascii 172.19.10.2
lease 2
ip cef
ip inspect name SDM_LOW cuseeme
ip inspect name SDM_LOW dns
ip inspect name SDM_LOW ftp
ip inspect name SDM_LOW h323
ip inspect name SDM_LOW https
ip inspect name SDM_LOW icmp
ip inspect name SDM_LOW imap
ip inspect name SDM_LOW pop3
ip inspect name SDM_LOW netshow
ip inspect name SDM_LOW rcmd
ip inspect name SDM_LOW realaudio
ip inspect name SDM_LOW rtsp
ip inspect name SDM_LOW esmtp
ip inspect name SDM_LOW sqlnet
ip inspect name SDM_LOW streamworks
ip inspect name SDM_LOW tftp
ip inspect name SDM_LOW tcp
ip inspect name SDM_LOW udp
ip inspect name SDM_LOW vdolive
no ip domain lookup
ip domain name domain.local
multilink bundle-name authenticated
key chain key1
key 1
key-string 7 06040033484B1B484557
crypto pki trustpoint TP-self-signed-3448656681
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3448bb6681
revocation-check none
rsakeypair TP-self-signed-344bbb56681
crypto pki certificate chain TP-self-signed-3448656681
certificate self-signed 01
3082024F
quit
username admin privilege 15 password 7 F55
archive
log config
hidekeys
crypto isakmp policy 10
encr 3des
hash md5
authentication pre-share
group 2
crypto isakmp key XXXXX address 209.118.0.1
crypto isakmp key xxxxx address SITE B Public IP
crypto isakmp keepalive 40 5
crypto isakmp nat keepalive 20
crypto isakmp client configuration group IISVPN
key 1nsur3m3
dns 172.19.3.140
wins 172.19.3.140
domain domain.local
pool VPN_Pool
acl 198
crypto isakmp profile IISVPNClient
description VPN clients profile
match identity group IISVPN
client authentication list userauthen
isakmp authorization list groupauthor
client configuration address respond
crypto ipsec transform-set myset esp-3des esp-md5-hmac
crypto dynamic-map Dynamic 5
set transform-set myset
set isakmp-profile IISVPNClient
qos pre-classify
crypto map VPN 10 ipsec-isakmp
set peer 209.118.0.1
set peer SITE B Public IP
set transform-set myset
match address 101
qos pre-classify
crypto map VPN 65535 ipsec-isakmp dynamic Dynamic
track 123 ip sla 1 reachability
delay down 15 up 10
class-map match-any VoiceTraffic
match protocol rtp audio
match protocol h323
match protocol rtcp
match access-group name VOIP
match protocol sip
class-map match-any RDP
match access-group 199
policy-map QOS
class VoiceTraffic
bandwidth 512
class RDP
bandwidth 768
policy-map MainQOS
class class-default
shape average 1500000
service-policy QOS
interface FastEthernet0/0
description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-FE 0$$FW_INSIDE$
ip address 172.19.3.129 255.255.255.128
ip access-group 100 in
ip inspect SDM_LOW in
ip nat inside
ip virtual-reassembly
duplex auto
speed auto
interface FastEthernet0/0.10
description $ETH-VoiceVLAN$$
encapsulation dot1Q 10
ip address 172.19.10.1 255.255.255.0
ip inspect SDM_LOW in
ip nat inside
ip virtual-reassembly
interface FastEthernet0/1
description "Comcast"
ip address PUB IP 255.255.255.248
ip access-group 102 in
ip inspect SDM_LOW out
ip nat outside
ip virtual-reassembly
duplex auto
speed auto
crypto map VPN
interface Serial0/1/0
description "Verizon LEC Circuit ID: w0w13908 Site ID: U276420-1"
bandwidth 1536
no ip address
encapsulation frame-relay IETF
frame-relay lmi-type ansi
interface Serial0/1/0.1 point-to-point
bandwidth 1536
ip address 152.000.000.18 255.255.255.252
ip access-group 102 in
ip verify unicast reverse-path
ip inspect SDM_LOW out
ip nat outside
ip virtual-reassembly
frame-relay interface-dlci 500 IETF
crypto map VPN
service-policy output MainQOS
interface Serial0/2/0
description "PAETEC 46.HCGS.788446.CV (Verizon ID) / 46.HCGS.3 (PAETEC ID)"
ip address 123.252.123.102 255.255.255.252
ip access-group 102 in
ip inspect SDM_LOW out
ip nat outside
ip virtual-reassembly
encapsulation ppp
crypto map VPN
service-policy output MainQOS
ip local pool VPN_Pool 172.20.3.130 172.20.3.254
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 50.00.000.110 track 123
ip route 0.0.0.0 0.0.0.0 111.252.237.000 254
ip route 122.112.197.20 255.255.255.255 209.252.237.101
ip route 208.67.220.220 255.255.255.255 50.78.233.110
no ip http server
no ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip flow-top-talkers
top 20
sort-by bytes
ip nat inside source route-map COMCAST interface FastEthernet0/1 overload
ip nat inside source route-map PAETEC interface Serial0/2/0 overload
ip nat inside source route-map VERIZON interface Serial0/1/0.1 overload
ip nat inside source static tcp 172.19.3.140 21 PUB IP 21 extendable
ip access-list extended VOIP
permit ip 172.20.3.0 0.0.0.127 host 172.19.3.190
permit ip host 172.19.3.190 172.20.3.0 0.0.0.127
ip radius source-interface FastEthernet0/0
ip sla 1
icmp-echo 000.67.220.220 source-interface FastEthernet0/1
timeout 10000
frequency 15
ip sla schedule 1 life forever start-time now
access-list 23 permit 172.19.3.0 0.0.0.127
access-list 23 permit 172.19.3.128 0.0.0.127
access-list 23 permit 173.189.251.192 0.0.0.63
access-list 23 permit 107.0.197.0 0.0.0.63
access-list 23 permit 173.163.157.32 0.0.0.15
access-list 23 permit 72.55.33.0 0.0.0.255
access-list 23 permit 172.19.5.0 0.0.0.63
access-list 100 remark "Outgoing Traffic"
access-list 100 deny ip 67.128.87.156 0.0.0.3 any
access-list 100 deny ip host 255.255.255.255 any
access-list 100 deny ip 127.0.0.0 0.255.255.255 any
access-list 100 permit tcp host 172.19.3.190 any eq smtp
access-list 100 permit tcp host 172.19.3.137 any eq smtp
access-list 100 permit tcp any host 66.251.35.131 eq smtp
access-list 100 permit tcp any host 173.201.193.101 eq smtp
access-list 100 permit ip any any
access-list 100 permit tcp any any eq ftp
access-list 101 remark "Interesting VPN Traffic"
access-list 101 permit ip 172.19.3.128 0.0.0.127 172.19.3.0 0.0.0.127
access-list 101 permit ip 172.20.3.128 0.0.0.127 172.19.3.0 0.0.0.127
access-list 101 permit ip 172.19.3.128 0.0.0.127 host 172.19.250.10
access-list 101 permit ip 172.19.3.128 0.0.0.127 host 172.19.250.11
access-list 101 permit tcp any any eq ftp
access-list 101 permit tcp any any eq ftp-data
access-list 102 remark "Inbound Access"
access-list 102 permit udp any host 152.179.53.18 eq non500-isakmp
access-list 102 permit udp any host 152.179.53.18 eq isakmp
access-list 102 permit esp any host 152.179.53.18
access-list 102 permit ahp any host 152.179.53.18
access-list 102 permit udp any host 209.000.000.102 eq non500-isakmp
access-list 102 permit udp any host 209.000.000.102 eq isakmp
access-list 102 permit esp any host 209.000.000.102
access-list 102 permit ahp any host 209.000.000.102
access-list 102 permit udp any host PUB IP eq non500-isakmp
access-list 102 permit udp any host PUB IP eq isakmp
access-list 102 permit esp any host PUB IP
access-list 102 permit ahp any host PUB IP
access-list 102 permit ip 72.55.33.0 0.0.0.255 any
access-list 102 permit ip 107.0.197.0 0.0.0.63 any
access-list 102 deny ip 172.19.3.128 0.0.0.127 any
access-list 102 permit icmp any any echo-reply
access-list 102 permit icmp any any time-exceeded
access-list 102 permit icmp any any unreachable
access-list 102 permit icmp any any
access-list 102 deny ip any any log
access-list 102 permit tcp any host 172.19.3.140 eq ftp
access-list 102 permit tcp any host 172.19.3.140 eq ftp-data established
access-list 102 permit udp any host SITE B Public IP eq non500-isakmp
access-list 102 permit udp any host SITE B Public IP eq isakmp
access-list 102 permit esp any host SITE B Public IP
access-list 102 permit ahp any host SITE B Public IP
access-list 102 permit tcp any host public ip eq 8443
access-list 110 remark "Outbound NAT Rule"
access-list 110 remark "Deny VPN Traffic NAT"
access-list 110 deny ip 172.19.3.128 0.0.0.127 172.19.3.0 0.0.0.127
access-list 110 deny ip 172.19.3.128 0.0.0.127 172.19.10.0 0.0.0.255
access-list 110 deny ip 172.19.10.0 0.0.0.255 172.19.3.128 0.0.0.127
access-list 110 deny ip 172.20.3.128 0.0.0.127 172.19.3.0 0.0.0.127
access-list 110 deny ip 172.19.3.128 0.0.0.127 172.20.3.128 0.0.0.127
access-list 110 deny ip 172.19.3.128 0.0.0.127 host 172.19.250.11
access-list 110 deny ip 172.19.3.128 0.0.0.127 host 172.19.250.10
access-list 110 permit ip 172.19.3.128 0.0.0.127 any
access-list 110 permit ip 172.19.10.0 0.0.0.255 any
access-list 198 remark "Networks for IISVPN Client"
access-list 198 permit ip 172.19.3.0 0.0.0.127 172.20.3.128 0.0.0.127
access-list 198 permit ip 172.19.3.128 0.0.0.127 172.20.3.128 0.0.0.127
access-list 199 permit tcp any any eq 3389
route-map PAETEC permit 10
match ip address 110
match interface Serial0/2/0
route-map COMCAST permit 10
match ip address 110
match interface FastEthernet0/1
route-map VERIZON permit 10
match ip address 110
match interface Serial0/1/0.1
snmp-server community 123 RO
radius-server host 172.19.3.7 auth-port 1645 acct-port 1646 key 7 000000000000000
control-plane
line con 0
line aux 0
line vty 0 4
access-class 23 in
privilege level 15
transport input telnet ssh
line vty 5 15
access-class 23 in
privilege level 15
transport input telnet ssh
scheduler allocate 20000 1000
ntp server 128.118.25.3
ntp server 217.150.242.8
endIf you are planning to use the fa0/1 interface IP itself then the configuration would be:
ip nat inside source static tcp 172.19.3.133 8443 interface fa0/1 8443 extendable
Assuming that you would like to port forward TCP/8443.
Then the ACL should be written:
ip access-list extended 102
2 permit tcp any host eq 8443 -
Need help setting up BI Mobility for an iPad
I'm brand new to everything BusinessObjects, as we have just purchased and installed BOE Platform 4.0. I'm trying to get report mobility up and running on an iPad. I have tried to follow the steps in the 403 Guide, but got stuck on the step "Creating an SAP BI URL."
It says to create a URL that lets users have this pre-populated parameters for a connection, it needs to be in this format:
sapbi://addconnection?name=<ConnectionName>&server_url=<ServerName/IP:Port>&cms=
<ServerName/IP:Port>&authType=<AuthenticationType>&default=<yes/no>&user=<User
Name>&password=<UserPassword>&save_password=<yes/no>
My questions are:
1. Where do I even type in the above config string to generate the pre-configured connection?
2. One of the parameters in the config statement is "server_url". What is that, and how do I generate/locate the server_url for my system.
Sorry if these questions are overly basic, but I've got to start somewhere! Thanks for any help you can provide!
DustinHi Dustin ,
I guess your query is already answered in the page you viewed your URL.
The URL needs to be put in the browser window on your ipad.
Also, the serverurl simply means the servername or ip address of your BO machine with port number as 8080(tomcat default) while for cms= servername and cms port (6400)
Select the authentication type default (enterprise)
Regards,
Atul -
Searching and can't find the needed plugin. Lightroom support is kinda sketchy.
Thanks. The update helped, however it's still very buggy. Only hitting about a 20% success rate of LR loading the capture image and lots of "busy" messages in the camera. I'm doing some maintenance on the laptop, clearing some memory, etc. and hopefully that will help.
-
Need help setting up VPN with OS X Server 2.2
I just bought OS X Server in the hopes that it would be a simpler way to set up VPN for use with my iPhone. I've tried a couple third party VPN configuration tools before with older versions of OSX but was never able to get it working. Now I'm running 10.8.2 and Server 2.2. I've made some progress, but I'm not quite there yet.
Here's what I have set up in the VPN window:
And the user I created:
The User services show that VPN is selected:
I let the Server app configure my Airport Extreme, and it looks like it set up the port mapping:
Here are my iPhone settings
-Server is set to my iMac's public IP address assigned by my ISP
-Password is the password I gave the user account
When I turn the VPN on in the iPhone I get:
"Connecting..."
"Starting..."
"Authenticating..."
then an error:
"VPN Connection
Authentification failed."
What am I missing?
Thanks,
SeanHi,
1701
UDP
L2TP
l2f
Mac OS X Server VPN service
1723
TCP
PPTP
pptp
Mac OS X Server VPN service
Try L2TP -
Need help setting up an Oracle BPA Local Server
I would like to make my computer the server and enable other users to connect to my Oracle BPA database. Is there an easy way to setup my computer? I tried having another user add my IP address as the server location using the "Add Server" option in the menu but that did not work. Do I need to change any settings?
Thanks!
Edited by: user10990394 on Apr 21, 2009 1:35 PMHi,
The Business erver / Repository Server is not the part of Oracle BPA offering as of now
Oracle calls Business Server as Repository Server. And its different product and need a different licenses
And the bad news is it isnt avaliable any where else for download.
the products in Oracle BPA package are originally part of IDS Scheer's ARIS product range.
And IDS does not gives any evaluation copies (atleast in india), thanks to Oracle that they have made BPA suite avaliable for evaluation.
So if you wish to experiment with Repository Server you have two ways either buy it from IDS or wait for Oracle to offer the evaluation version, i wont suggest buying something that you havnt tried :)
Gaurav Sharma :) -
Need help setting up 0404 PCIe for SPDIF in/out
Hello,
I had previously been using an M-Audio card but have moved to the Emu 0404 b/c M-Audio doesn't support PCIe yet only PCI.
Anyway, I am trying to make simple connnections and find the Patchmix very confusing. I don't want to use any of the DSP effects since I have excellent plugins in my DAW software.
All I want to do is have SPDIF L/R going from my Mytek Stereo 96 AD into my DAW and SPDIF L/R going out to my JBL monitors which have built in DA conversion.
So far I have not been able to get any sound at all from my Reaper projects, just trying to play them back at this point not even trying to record anything new yet.
Any suggestions? I've tried putting sends on the tracks etc but still can't get any sound to my monitors and the SPDIF outputs don't show up in my DAW software routing matrix...
ThanksWell it looks like I've got more troubles. Reading the 0404 users manual last night there is a sentence there that says "The SPDIF inputs and outputs are usable at 44.1, 48 and 96khz." This is pretty much a dealbreaker for me since everything I've recorded for the past 2 years is at 24/88.2 and it's my preferred sample rate going forward.
Does anyone know of a PCIe interface with SPDIF in/out that supports the 88.2khz sampling rate? -
Help setting up static ip for minecraft server with TC and PC
Hey guys,
I have a dell xps laptop and a son that is hooked on minecraft. I have promised him that I would let him set up a server so he and his buddies can play together. I would really appreciate some assistance on doing this on my time capsual. I have been searching for the solution but could only find references to doing this with a Mac, not a PC.
Could anyone point in the right direction? I afraid I am in a little over my head. Thanks in advance!!
Zippy>Does that mean that the range on the IPV4 local network page should be modified to exclude the IP address that I want to use for the static IP....
e.g. change the range from 1-255 to 1-200 and then use an IP of XXX.XXX.X.201 for instance
That's right.
You want to reserve static IP addresses in a range that does not overlap with the range that is allocated for generic DHCP clients. For example, you can define the DHCP pool to be 50~149, and reserved IP addresses to be 2~49 (for servers).
Maybe you are looking for
-
Data Service System In Visual Composer 7.1
Hello,Experts: Recently ,i am focusing on the mirgration function of SAP NetWeaver,and visual composer is among them . In netweaver 2004s enterpise portal ,i have done the system connection between Enterpise Portal and ECC and BW ,and the system alia
-
Page Numbering for the aging report
Hi, Does any one know how I can achieve the following: For the customer ageing report we need to print all customer statements at once. On our print layout we currently use the following CurrentPage()/TotalPages() formula fields to dispaly the page n
-
Theme colors - Change the color of buttons
Hi I went through the tuttorial, "Adding Styles to Components" I were able to change different properties of buttons by creating a Style Class with the same name as that of the theme but with different style attributes. This had the desired effect ex
-
How to display different FBSPLASH theme on different console?
Is it possible to do this? Use different theme on different console/vc/tty ? Sorry that I didn't make myself clear. I was asking about fbsplash themes. Last edited by phabulosa (2008-03-20 04:43:39)
-
JDBC-ODBC Bridge Driver Suitable?
I'm implementing a web site for a small company, so will be using MS Access for the database. Will a JDBC-ODBC Bridge driver be suitable? I ask this as I have heard that JDBC-ODBC Bridge drivers are only suitable for testing purposes - not commercial