Local DB connect OK, remote ping OK. Remote DB connect KO
I have installed 11g XE on a VM.
I can connect to DB locally on the VM
I can ping VM from the main computer.
However, when I try to connect to the DB from the main computer, I get the following message in SQLDeveloper: "The Network Adapter could not establish the connection".
In SQLPlus, I have: ORA-12170: TNS:Connect timeout occurred
Main computer:
Windows 7 ultimate; Oracle VM VirtualBox manager
VM:
OracleLinux-R6-U1-Server-x86_64
linux.x64_11gR2_OracleXE
I am trying to connect to DB using VM's IP address
I think, I am missing something, but what?
Thank you
Igor
Oscar,
Thank you for the idea. I have added symbolic names in hosts file and don't use raw IP addresses anymore.
However, main problem is still unsolved. Not being a very Linux man, I work on this Linux VM through PuTTY (copy/paste command line) and WinSCP (file transfer for CodeWright edition, cause I don't like vi and the VM does not have GUI). So, the VM is perfectly atteignable , save for DB.
Similar Messages
-
Cannot ping AEBS remotely nor connect to USB disk
Hello,
I have an airport extreme and a MBP, and everything is working well within the network. I have a USB disk that is connected to the usb port, and I can connect to it over the local network fine (except in the cases when the disk decides to save energy and power itself down, in which case I have to unplug the disk and power it back on, but that is another story...). It seems like it is possible to connect to this disk over from outside the network, but there is practically no documentation on how to do this (it seems that Apple intended this to either work automagically or not at all).
In the process of trying to get this setup, I have come across some other problems as well. Most importantly, I cannot ping my AEBS from a remote computer (e.g., my linux account at my university, which I ssh into). I have a dyndns account, and ping does not work with this (although it resolves the name correctly), and it does not ping with the actual IP either.
With the airport utility, I have setup my MBP as the DNZ host (or default host in AEBS terms), so that all network traffic is directed to my laptop. Additionally, the MBP firewall has been disabled (I will re-enable and secure this once I get it to work with all the security down). I have also setup the apache webserver on the MBP, and cannot connect to this either remotely.
Finally, the real problem is that I cannot connect to the usb disk remotely. I have tried both with my mac and with windows. I don't think this will work if I cannot even get the ping to work first, but when I DO get it working, is it possible to connect to the drive with both windows and a mac? I can connect locally with windows via samba, and with osx via afp, but do these work remotely the same?
Thanks for taking the time to read this lengthy post .
AdamDoes the disk appear as a volume when you check using the Disk tab in AirPort Utillity? In the example below, a WD Drive is connected to the USB port of an AirPort Extreme.
If the drive does not appear here first, you will not be able to access it. Check to make sure that the drive is formatted in Mac OS Extended (Journaled). FAT32 will also work as well.
Some other formats like NTFS or exFAT might be able to be read when the drive is connected directly to a Mac.....but these formats are not supported with the USB port on the AirPort Extreme.
If the drive is formatted correctly, try using a powered USB hub. Connect the powered hub to the USB port on the Extreme, then connect the drive to the powered hub. -
Could not connect to SQL Server 2012 Remotely
Hello,
I have a situation as follows:
The Server
SQL Server 2012 Standard Edition installed on Windows Server 2012 Standard Edition
Active Directory is installed on the same server as well
Remote Access Role added and configured to connect VPN
DNS Role added
Windows Firewall is disabled
The Server is connected to the internet
SQL Server Service & SQL Browser both are running under domain accounts
SQL Server allows remote connections
The Router
The router that connects the server to the Internet is configured to:
Enable VPN Tunnels Protocols (PPTP, L2TP and IPSec)
Forwarding > Virtual Servers (all requests on TCP and UDP on all ports to the server local IP)
The Client
PC running Windows 7 SP1 with SQL Server 2012 Express
Joined AD on the server
Connected to the internet
VPN Connected to the Server
Can Remote Desktop the Server
Can ping the server host name
Can nslookup the server host name
The Problem
If Both the Server and the Client are connected in the same Local Area Network, Client can connect to the SQL Serve
Once the Client is placed in different location connected to the Interent, VPN connected as described above, I could not connect to the Server using:
Windows Authentication Domain Users or
SQL Server users
and the error message is:
Cannot connect to SERVER\SQLINSTANCE.
ADDITIONAL INFORMATION:
A network-related or instance-specific error occurred while establishing a connection to SQL Server. The server was not found or was not accessible. Verify that the instance name is correct and that SQL Server is configured to allow remote connections. (provider:
SQL Network Interfaces, error: 26 - Error Locating Server/Instance Specified) (Microsoft SQL Server, Error: -1)
For help, click: http://go.microsoft.com/fwlink?ProdName=Microsoft%20SQL%20Server&EvtSrc=MSSQLServer&EvtID=-1&LinkId=20476
Any thoughts
Thanks in advance
Hello Hilary,
I have been working on a small replication test.
On the Publisher, things went smooth and the Snapshot Agent was able to work and produce a snapshot written in a shared folder located on the Publisher
On the Subscriber, as I am testing from SQL Server Express, I had run the following command:
replmerg.exe -Publisher [SERVER\SQLInstance] -PublisherDB [dbRepl] -PublisherSecurityMode 0 -PublisherLogin rplMergeAgent -PublisherPassword p@ssw0rd -Publication [TEST Publication] -Distributor [SERVER\SQLInstance] -DistributorSecurityMode 0 -DistributorLogin
rplMergeAgent -DistributorPassword p@ssw0rd -Subscriber [SUBSCRIBER\SQLInstance] -SubscriberSecurityMode 0 -SubscriberLogin rplMergeAgent -SubscriberPassword p@ssw0rd -SubscriberDB [dbRepl] -SubscriptionType 1 -OutputVerboseLevel 2 -Output C:\TEMP\mergeagent.log
Where
SERVER
Publisher and Distributor
dbRepl
Database to replicate
Merge Agent
rplMergeAgent
Subscriber
SUBSCRIBER
dbRepl
Subscriber Database
Merge Agent
rplMergeAgent
Password
p@ssw0rd
rplMergeAgent
SQL Login defined in both Publisher and Subscriber with same password
Granted the following at Publisher:
Login to Publication Database (dbRepl)
Login to Distribution Database (distribution)
Member of PAL
Granted the following at Subscriber:
db_owner fixed database role in Subscription database (dbRepl)
I couldn't grant rplMergeAgent Read Permission on SnapshotFolder as it is only a SQL Login.
When I ran the above command line, I received the following error:
Message: The schema script 'Person_2.sch' could not be propagated to the subscriber.
I am pasting below the whole log file written by the above command:
2014-04-11 15:38:07.205 Microsoft SQL Server Merge Agent 11.0.2218.0
2014-04-11 15:38:07.342 Copyright (c) 2008 Microsoft Corporation
2014-04-11 15:38:07.389
2014-04-11 15:38:07.406 The timestamps prepended to the output lines are expressed in terms of UTC time.
2014-04-11 15:38:07.433 User-specified agent parameter values:
-Publisher SERVER\SQLInstance
-PublisherDB dbRepl
-PublisherSecurityMode 0
-PublisherLogin rplMergeAgent
-PublisherPassword **********
-Publication TEST Publication
-Distributor SERVER\SQLInstance
-DistributorSecurityMode 0
-DistributorLogin rplMergeAgent
-DistributorPassword **********
-Subscriber SUBSCRIBER\SQLInstance
-SubscriberSecurityMode 0
-SubscriberLogin rplMergeAgent
-SubscriberPassword **********
-SubscriberDB dbRepl
-SubscriptionType 1
-OutputVerboseLevel 2
-Output C:\TEMP\mergeagent.log
2014-04-11 15:38:07.497 Percent Complete: 0
2014-04-11 15:38:07.517 Connecting to Subscriber 'SUBSCRIBER\SQLInstance'
2014-04-11 15:38:07.518 Connecting to OLE DB Subscriber at datasource: 'SUBSCRIBER\SQLInstance', location: '', catalog: 'dbRepl', providerstring: '' using provider 'SQLNCLI11'
2014-04-11 15:38:07.608 OLE DB Subscriber: SUBSCRIBER\SQLInstance
DBMS: Microsoft SQL Server
Version: 10.50.4000
catalog name: dbRepl
user name: rplMergeAgent
API conformance: 0
SQL conformance: 0
transaction capable: 1
read only: F
identifier quote char: "
non_nullable_columns: 0
owner usage: 15
max table name len: 128
max column name len: 128
need long data len:
max columns in table: 1000
max columns in index: 16
max char literal len: 131072
max statement len: 131072
max row size: 131072
2014-04-11 15:38:07.613 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': select SERVERPROPERTY ('ProductVersion')
2014-04-11 15:38:07.617 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': set nocount on declare @dbname sysname select @dbname = db_name() declare @collation nvarchar(255) select @collation = convert(nvarchar(255), databasepropertyex(@dbname, N'COLLATION')) select
collationproperty(@collation, N'CODEPAGE') as 'CodePage', collationproperty(@collation, N'LCID') as 'LCID', collationproperty(@collation, N'COMPARISONSTYLE') as 'ComparisonStyle',cast(case when convert (int,databasepropertyex (@dbname,'comparisonstyle')) &
0x1 = 0x1 then 0 else 1 end as bit) as DB_CaseSensitive,cast(case when convert (int,serverproperty ('comparisonstyle')) & 0x1 = 0x1 then 0 else 1 end as bit) as Server_CaseSensitive set nocount off
2014-04-11 15:38:07.637 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': {?=call sp_helpsubscription_properties (N'SERVER\SQLInstance', N'dbRepl', N'TEST Publication')}
2014-04-11 15:38:07.681 Distributor security mode: 0, login name: rplMergeAgent, password: ********.
2014-04-11 15:38:07.682 Percent Complete: 0
2014-04-11 15:38:07.683 Connecting to Distributor 'SERVER\SQLInstance'
2014-04-11 15:38:07.684 Connecting to OLE DB Distributor at datasource: 'SERVER\SQLInstance', location: '', catalog: '', providerstring: '' using provider 'SQLNCLI11'
2014-04-11 15:38:25.062 OLE DB Distributor: SERVER\SQLInstance
DBMS: Microsoft SQL Server
Version: 11.00.2100
catalog name:
user name: guest
API conformance: 0
SQL conformance: 0
transaction capable: 1
read only: F
identifier quote char: "
non_nullable_columns: 0
owner usage: 15
max table name len: 128
max column name len: 128
need long data len:
max columns in table: 1000
max columns in index: 16
max char literal len: 131072
max statement len: 131072
max row size: 131072
2014-04-11 15:38:28.887 OLE DB Distributor 'SERVER\SQLInstance': select SERVERPROPERTY ('ProductVersion')
2014-04-11 15:38:29.842 OLE DB Distributor 'SERVER\SQLInstance': {call sp_helpdistpublisher (N'SERVER\SQLInstance') }
2014-04-11 15:38:32.198 OLE DB Distributor 'SERVER\SQLInstance': select datasource, srvid from master..sysservers where upper(srvname) = upper(N'SERVER\SQLInstance')
2014-04-11 15:38:33.199 OLE DB Distributor 'SERVER\SQLInstance': {call sp_MShelp_merge_agentid (0,N'dbRepl',N'TEST Publication',null,N'dbRepl',100,N'SUBSCRIBER\SQLInstance')}
2014-04-11 15:38:34.451 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:38:34.560 OLE DB Distributor 'SERVER\SQLInstance': {call sp_MShelp_profile (23, 4, N'')}
2014-04-11 15:38:36.189 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:38:36.499 OLE DB Distributor 'SERVER\SQLInstance': {call sys.sp_get_redirected_publisher(N'SERVER\SQLInstance',N'dbRepl',0)}
2014-04-11 15:38:37.396 Percent Complete: 0
2014-04-11 15:38:37.396 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:38:37.399 Initializing
2014-04-11 15:38:37.401 OLE DB Distributor 'SERVER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:38:37.403 Connecting to OLE DB Publisher at datasource: 'SERVER\SQLInstance', location: '', catalog: 'dbRepl', providerstring: '' using provider 'SQLNCLI11'
2014-04-11 15:38:38.427 Percent Complete: 0
2014-04-11 15:38:38.428 Validating publisher
2014-04-11 15:38:38.429 OLE DB Distributor 'SERVER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:38:39.455 Percent Complete: 0
2014-04-11 15:38:39.456 Connecting to Publisher 'SERVER\SQLInstance'
2014-04-11 15:38:39.457 OLE DB Distributor 'SERVER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:38:46.548 OLE DB Publisher: SERVER\SQLInstance
DBMS: Microsoft SQL Server
Version: 11.00.2100
catalog name: dbRepl
user name: rplMergeAgent
API conformance: 0
SQL conformance: 0
transaction capable: 1
read only: F
identifier quote char: "
non_nullable_columns: 0
owner usage: 15
max table name len: 128
max column name len: 128
need long data len:
max columns in table: 1000
max columns in index: 16
max char literal len: 131072
max statement len: 131072
max row size: 131072
2014-04-11 15:38:50.282 OLE DB Publisher 'SERVER\SQLInstance': set nocount on declare @dbname sysname select @dbname = db_name() declare @collation nvarchar(255) select @collation = convert(nvarchar(255), databasepropertyex(@dbname, N'COLLATION')) select collationproperty(@collation,
N'CODEPAGE') as 'CodePage', collationproperty(@collation, N'LCID') as 'LCID', collationproperty(@collation, N'COMPARISONSTYLE') as 'ComparisonStyle',cast(case when convert (int,databasepropertyex (@dbname,'comparisonstyle')) & 0x1 = 0x1 then 0 else 1 end
as bit) as DB_CaseSensitive,cast(case when convert (int,serverproperty ('comparisonstyle')) & 0x1 = 0x1 then 0 else 1 end as bit) as Server_CaseSensitive set nocount off
2014-04-11 15:38:57.393 OLE DB Publisher 'SERVER\SQLInstance': select SERVERPROPERTY ('ProductVersion')
2014-04-11 15:38:59.236 Connecting to OLE DB Publisher at datasource: 'SERVER\SQLInstance', location: '', catalog: 'dbRepl', providerstring: '' using provider 'SQLNCLI11'
2014-04-11 15:39:07.271 OLE DB Publisher: SERVER\SQLInstance
DBMS: Microsoft SQL Server
Version: 11.00.2100
catalog name: dbRepl
user name: rplMergeAgent
API conformance: 0
SQL conformance: 0
transaction capable: 1
read only: F
identifier quote char: "
non_nullable_columns: 0
owner usage: 15
max table name len: 128
max column name len: 128
need long data len:
max columns in table: 1000
max columns in index: 16
max char literal len: 131072
max statement len: 131072
max row size: 131072
2014-04-11 15:39:45.229 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:39:45.234 Percent Complete: 0
2014-04-11 15:39:45.235 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:39:45.236 Retrieving publication information
2014-04-11 15:39:45.238 OLE DB Distributor 'SERVER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:39:46.287 Percent Complete: 0
2014-04-11 15:39:46.288 Retrieving subscription information.
2014-04-11 15:39:46.290 OLE DB Distributor 'SERVER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:40:00.472 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:40:00.478 Percent Complete: 0
2014-04-11 15:40:00.479 Applying the snapshot to the Subscriber
2014-04-11 15:40:00.480 OLE DB Distributor 'SERVER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:40:02.535 OLE DB Distributor 'SERVER\SQLInstance': select datasource, srvid from master..sysservers where upper(srvname) = upper(N'SERVER\SQLInstance')
2014-04-11 15:40:03.559 OLE DB Distributor 'SERVER\SQLInstance': {call sys.sp_MSadd_mergesubentry_indistdb (0,N'SERVER\SQLInstance',N'dbRepl',N'TEST Publication',N'SUBSCRIBER\SQLInstance',N'dbRepl',1,1,0,N'',?,90)}
2014-04-11 15:40:04.600 Connecting to OLE DB Subscriber at datasource: 'SUBSCRIBER\SQLInstance', location: '', catalog: 'dbRepl', providerstring: '' using provider 'SQLNCLI11'
2014-04-11 15:40:04.609 OLE DB Subscriber: SUBSCRIBER\SQLInstance
DBMS: Microsoft SQL Server
Version: 10.50.4000
catalog name: dbRepl
user name: rplMergeAgent
API conformance: 0
SQL conformance: 0
transaction capable: 1
read only: F
identifier quote char: "
non_nullable_columns: 0
owner usage: 15
max table name len: 128
max column name len: 128
need long data len:
max columns in table: 1000
max columns in index: 16
max char literal len: 131072
max statement len: 131072
max row size: 131072
2014-04-11 15:40:04.611 OLE DB Subscriber: SUBSCRIBER\SQLInstance
DBMS: Microsoft SQL Server
Version: 10.50.4000
catalog name: dbRepl
user name: rplMergeAgent
API conformance: 0
SQL conformance: 0
transaction capable: 1
read only: F
identifier quote char: "
non_nullable_columns: 0
owner usage: 15
max table name len: 128
max column name len: 128
need long data len:
max columns in table: 1000
max columns in index: 16
max char literal len: 131072
max statement len: 131072
max row size: 131072
2014-04-11 15:40:07.454 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': sp_MSacquiresnapshotdeliverysessionlock
2014-04-11 15:40:07.526 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': sp_MStrypurgingoldsnapshotdeliveryprogress
2014-04-11 15:40:07.530 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': sp_MSissnapshotitemapplied @snapshot_session_token = N'\\SERVER\Snapshot\unc\SERVER$SQLInstance_DBREPL_TEST PUBLICATION\20140411082109\', @snapshot_progress_token = N'\\SERVER\Snapshot\unc\SERVER$SQLInstance_DBREPL_TEST
PUBLICATION\20140411082109\Person_2.sch'
2014-04-11 15:40:24.659 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': sp_MSreleasesnapshotdeliverysessionlock
2014-04-11 15:40:24.663 The schema script 'Person_2.sch' could not be propagated to the subscriber.
2014-04-11 15:40:24.665 OLE DB Subscriber 'SUBSCRIBER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:40:24.690 Percent Complete: 18
2014-04-11 15:40:24.692 The schema script 'Person_2.sch' could not be propagated to the subscriber.
2014-04-11 15:40:24.693 OLE DB Distributor 'SERVER\SQLInstance': {call sys.sp_MSadd_merge_history90 (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)}
2014-04-11 15:40:27.541 Percent Complete: 0
2014-04-11 15:40:27.542 Category:NULL
Source: Merge Replication Provider
Number: -2147201001
Message: The schema script 'Person_2.sch' could not be propagated to the subscriber.
2014-04-11 15:40:28.563 Percent Complete: 0
2014-04-11 15:40:28.565 Category:AGENT
Source: SUBSCRIBER\SQLInstance
Number: 0
Message: The process could not read file '\\SERVER\Snapshot\unc\SERVER$SQLInstance_DBREPL_TEST PUBLICATION\20140411082109\Person_2.sch' due to OS error 1326.
2014-04-11 15:40:28.566 Disconnecting from OLE DB Subscriber 'SUBSCRIBER\SQLInstance'
2014-04-11 15:40:28.568 Disconnecting from OLE DB Subscriber 'SUBSCRIBER\SQLInstance'
2014-04-11 15:40:28.569 Disconnecting from OLE DB Subscriber 'SUBSCRIBER\SQLInstance'
2014-04-11 15:40:28.570 Disconnecting from OLE DB Subscriber 'SUBSCRIBER\SQLInstance'
2014-04-11 15:40:28.571 Disconnecting from OLE DB Publisher 'SERVER\SQLInstance'
2014-04-11 15:40:28.573 Disconnecting from OLE DB Publisher 'SERVER\SQLInstance'
2014-04-11 15:40:28.575 Disconnecting from OLE DB Publisher 'SERVER\SQLInstance'
2014-04-11 15:40:28.577 Disconnecting from OLE DB Publisher 'SERVER\SQLInstance'
2014-04-11 15:40:28.578 Disconnecting from OLE DB Distributor 'SERVER\SQLInstance'
2014-04-11 15:40:28.579 Disconnecting from OLE DB Distributor 'SERVER\SQLInstance'
I can say it is about how can the rplMergeAgent read the Shared folder.
What do you think? -
Remote User not able to Connect Completely
Hi,
not able to connect a remote user to our network. All other remote users are able to connect so I know the tunnel is up. When this user tries to connect using the cisco vpn client, I see their traffic coming through with the sh crytpo ipsec sa peer peer address. I can see their peer address and I can see their dhcp local allocated address - allocated from the firewall, and I can ping their peer address but I can't ping the dhcp allocated address.
Any ideas?
Thanks, Pat.Email from user stating screen message:
tried to sign in again - VPN Client connects fine, but Fusion states "not connected to the network", even though VPN connected
Crypto map tag: OUTSIDE_dyn_map, seq num: 40, local addr: XX.XX.XX.XX
local ident (addr/mask/prot/port): (0.0.0.0/0.0.0.0/0/0)
remote ident (addr/mask/prot/port): (10.10.XX.XX/255.255.255.255/0/0)
current_peer: 74.47.XX.XX, username: XXXXXXX
dynamic allocated peer ip: 10.10.XX.XX
#pkts encaps: 548, #pkts encrypt: 548, #pkts digest: 548
#pkts decaps: 624, #pkts decrypt: 624, #pkts verify: 624
#pkts compressed: 0, #pkts decompressed: 0
#pkts not compressed: 548, #pkts comp failed: 0, #pkts decomp failed: 0
#pre-frag successes: 0, #pre-frag failures: 0, #fragments created: 0
#PMTUs sent: 0, #PMTUs rcvd: 0, #decapsulated frgs needing reassembly: 0
#pkts no sa (send): 0, #pkts invalid sa (rcv): 0
#pkts encaps failed (send): 0, #pkts decaps failed (rcv): 0
#pkts invalid prot (rcv): 0, #pkts verify failed: 0
#pkts invalid identity (rcv): 0, #pkts invalid len (rcv): 0
#pkts invalid pad (rcv): 0,
#pkts invalid ip version (rcv): 0,
#pkts replay rollover (send): 0, #pkts replay rollover (rcv): 0
#pkts replay failed (rcv): 0
#pkts min mtu frag failed (send): 0, #pkts bad frag offset (rcv): 0
#pkts internal err (send): 0, #pkts internal err (rcv): 0
local crypto endpt.: XX.XX.XX.XX, remote crypto endpt.: 74.47.XX.XX
path mtu 1500, ipsec overhead 58, media mtu 1500
current outbound spi: F9F18F20
current inbound spi : B27E9C25
inbound esp sas:
spi: 0xB27E9C25 (2994641957)
transform: esp-3des esp-sha-hmac no compression
in use settings ={RA, Tunnel, }
slot: 0, conn_id: 166191104, crypto-map: OUTSIDE_dyn_map
sa timing: remaining key lifetime (sec): 2902
IV size: 8 bytes
replay detection support: Y
Anti replay bitmap:
0x1FFFFFFF 0xFFFFFFFD
outbound esp sas:
spi: 0xF9F18F20 (4193357600)
transform: esp-3des esp-sha-hmac no compression
in use settings ={RA, Tunnel, }
slot: 0, conn_id: 166191104, crypto-map: OUTSIDE_dyn_map
sa timing: remaining key lifetime (sec): 2902
IV size: 8 bytes
replay detection support: Y
Anti replay bitmap:
0x00000000 0x00000001
Thanks, Pat. -
Connecting two remote LANs through a VPN connection
1)
I am trying to interconnect
two LANs as you see below.
2)
The scenario is to interconnecting two LANs with a
single domain “domain.local” in order to have
two domain controllers backing up each other. We already have a Domain Controller “SRVDC1.domain.local” in our local network “LAN1” and another Server which is going to be as both our
secondary domain controller and VPN Server “SRVDC3.domain.local” in our remote network “LAN2” where is the
Netelligent Network. I am trying to make these two servers (our two LANs)
visible to each other by a MikroTik Cloud Router Switch solution.
3)
I am using a
MikroTik Router as a PPTP Client to VPN to our
Remote Server SRVDC3 (87.75.45.66/29).
4)
All the computers in
LAN1, including Server SRVDC1, have a gateway set on “192.168.10.1” which is a
Asus WiFi Router as a core switch which is connected to our Fiber Optic Translator. <o:p></o:p>
5)
To prevent and minimize any down-time risk during the configuration, I have isolated one computer “table2pc5.domain.local” as sample of the
whole network; by changing its gateway set to 192.168.10.6 (the
Ether3-Slave-Lacal-interface on the MikroTikRouter).
I am going to replace the “Asus WiFi Router” shown in the map, by the
MikroTik Router later, after making sure that everything would work properly, so, everything is going to be naturalized after.
6)
My
solution simply can be explained as below:
a.
Providing
another interface in addition to “Netelligent Network” adapter.
b.
To
assign a LAN-based IP (in network range 192.168.10.0/24) to the added adapter (Microsoft Virtual Adapter)
c.
Configuring
SRVDC3 in Netelligent network “LAN2” as
a Remote Access Server (VPN Server).
d.
To provide a
MikroTik Router/Firewall on the Edge of the
LAN1 as VPN Client.
e.
Configure
MikroTik Router VPN PPTP connection to
SRVDC3 via the Internet.
f.
To have
two LANs connected through a permanent VPN connection.
7)
IP Addresses for the three EDGE-Devices (SRVDC1
ßàMikroTik
Router ßàSRVDC3)
are as below:
a.
SRVDC1:
Interface:
Local Area Connection
IP Address:
192.168.10.2/24
Gateway:
192.168.10.1/24
(Asus WiFi Router)
DHCP Server Pool:
192.168.10.1 – 192.168.10.254 (exclusions 10.1-10.50 , 10.50-10.99 , 10.200-10.254)
b.
MikroTikRouter:
Interface:
Local IP
IP Address: 192.168.88.1/24
Interface:
Ether1-gateway-master
IP Address: 192.168.0.1/24
Interface:
Ether2-master-local
IP Address: 192.168.88.1/24
Interface:
ether3-slave-local
IP Address: 192.168.10.6/24
DHCP Server Pool:
192.168.10.1 – 192.168.102.254
c.
SRVDC3:
Interface:
Netelligent Network
IP Address: 87.75.45.66/29
Gateway: 87.75.45.65/29
Interface:
Microsoft Network Adapter
IP Address: 192.168.10.50/24
Gateway: 192.168.11.1
Interface:
PPP Adapter RAS
IP Address: 192.168.11.1/24
gateway:
8)
The node “table7pc2.domain.local” is not able to see<o:p></o:p>
Now, I would ask you to help me to realise this solution by helping me to find the Bad-Routing problem, and letting me know how to fix it.
What NAT / Rout Paths or any configuration do I need to make this two LANs visible and recognizable to each other?
I would introduce you critical nodes which play important roles in this configuration. I have tried to colour-mark them in order to have a better recognition once you take a look at the “Ping Result” table.
The “Ping Result” table would give you an idea which nodes are able to see which others and where does problem hide itself?I got my own answer :D
1) I have to right-click on my "Routing and Remote Access" Server.
2) on IPv4 tab, I should define a static IP Pool. I had it done before; but since that I had chosen a wide range as 192.168.11.0/24, every time the router was taking a different IP address; so I should define a very small pool with two 2
nodes as 192.168.11.1 and 192.168.11.2. In this way, I'll have the local address (router) as 192.168.11.2 and the remote address (my remote server) as 192.168.11.1
3) After establishment of the PPTP connection successfully, I should add an static route to the "Netelligent Network" adapter. I had it done but in the RRAS routes, so that's why it didn't work. so:
C:\SRVDC3>_ route -p add 192.168.10.0 mask 255.255.255.0 192.168.11.2
[Enter]
Now, I would be able to ping all of the computers whose their gateways are set on 192.168.10 (router)
and If I wand to see all of the computers at the first LAN, I have to put my router at the edge of the network, instead of the ASUS WiFi Router, then change it's IP address to 192.168.10.1 or alternatively set all of the computers gateways on 192.168.10.6. -
Can not ping between remote vpn site ???
site A is l2l vpn, site B is network-extend vpn, both connect to same vpn device 5510 at central office and work well. I can ping from central office to both remote sites, But i can not ping between these two vpn sites ? Tried debug icmp, i can see the icmp from side A does reach central office but then disappeared! not sending to side B ?? Please help ...
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object-group network SITE-A
network-object 192.168.42.0 255.255.255.0
object-group network SITE-B
network-object 192.168.46.0 255.255.255.0
access-list OUTSIDE extended permit icmp any any
access-list HOLT-VPN-ACL extended permit ip object-group CBO-NET object-group SITE-A
nat (outside,outside) source static SITE-A SITE-A destination static SITE-B SITE-B
crypto map VPN-MAP 50 match address HOLT-VPN-ACL
crypto map VPN-MAP 50 set peer *.*.56.250
crypto map VPN-MAP 50 set ikev1 transform-set AES-256-SHA
crypto map VPN-MAP interface outside
group-policy REMOTE-NETEXTENSION internal
group-policy REMOTE-NETEXTENSION attributes
dns-server value *.*.*.*
vpn-idle-timeout none
vpn-tunnel-protocol ikev1
split-tunnel-policy tunnelspecified
split-tunnel-network-list value REMOTE-NET2
default-domain value *.org
nem enable
tunnel-group REMOTE-NETEXTENSION type remote-access
tunnel-group REMOTE-NETEXTENSION general-attributes
authentication-server-group (inside) LOCAL
default-group-policy REMOTE-NETEXTENSION
tunnel-group REMOTE-NETEXTENSION ipsec-attributes
ikev1 pre-shared-key *****
tunnel-group *.*.56.250 type ipsec-l2l
tunnel-group *.*.56.250 ipsec-attributes
ikev1 pre-shared-key *****
ASA-5510# show route | include 192.168.42
S 192.168.42.0 255.255.255.0 [1/0] via *.*.80.1, outside
ASA-5510# show route | include 192.168.46
S 192.168.46.0 255.255.255.0 [1/0] via *.*.80.1, outside
ASA-5510#
Username : layson-ne Index : 10
Assigned IP : 192.168.46.0 Public IP : *.*.65.201
Protocol : IKEv1 IPsecOverNatT
License : Other VPN
Encryption : 3DES Hashing : SHA1
Bytes Tx : 11667685 Bytes Rx : 1604235
Group Policy : REMOTE-NETEXTENSION Tunnel Group : REMOTE-NETEXTENSION
Login Time : 08:19:12 EST Thu Feb 12 2015
Duration : 6h:53m:29s
Inactivity : 0h:00m:00s
NAC Result : Unknown
VLAN Mapping : N/A VLAN : none
ASA-5510# show vpn-sessiondb l2l
Session Type: LAN-to-LAN
Connection : *.*.56.250
Index : 6 IP Addr : *.*.56.250
Protocol : IKEv1 IPsec
Encryption : 3DES AES256 Hashing : SHA1
Bytes Tx : 2931026707 Bytes Rx : 256715895
Login Time : 02:02:41 EST Thu Feb 12 2015
Duration : 13h:10m:03sHi Rico,
You need to dynamic-nat (to available IP address) for both side for each remote subset to access the other remote side subnet and so they can access each other subnet as if both originating the traffic from your central location.
example:
Lets say this IP (10.10.10.254) is unused IP at central office, permitted to access remote tunnel "A" and site "B".
object-group network SITE-A
network-object 192.168.42.0 255.255.255.0
object-group network SITE-B
network-object 192.168.46.0 255.255.255.0
nat (outside,outside) source dynamic SITE-A 10.10.10.254 destination
static SITE-B SITE-B
nat (outside,outside) source dynamic SITE-B 10.10.10.254 destination
static SITE-A SITE-A
Hope this helps
Thanks
Rizwan Rafeek -
RFC Error: A remote host refused an attempted connect operation
Hi I received strange kind of error..
Have anyone of you seen something like this before?
<SAP:AdditionalText>com.sap.engine.interfaces.messaging.api.exception.MessagingException: com.sap.aii.adapter.rfc.afcommunication.RfcAFWException: RfcAdapter: receiver channel has static errors: can not instantiate RfcPool caused by: com.sap.aii.adapter.rfc.RfcAdapterException: error initializing RfcClientPool:com.sap.aii.adapter.rfc.core.repository.RfcRepositoryException: can not connect to destination system due to: com.sap.mw.jco.JCO$Exception: (**) RFC_ERROR_COMMUNICATION: Connect to message server host failed Connect_PM TYPE=B MSHOST=logon*.*.com GROUP=SPACE R3NAME=2 MSSERV=sapms2 PCS=1 LOCATION CPIC (TCP/IP) on local host with Unicode ERROR partner '.*..*:sapms*8' not reached TIME Sat Feb 11 20:37:58 201 RELEASE 710 COMPONENT NI (network interface) VERSION 39 RC -10 MODULE nixxi.cpp LINE 3147 DETAIL NiPConnect2: *.*..*:*** SYSTEM CALL connect ERRNO 79 ERRNO TEXT A remote host refused an attempted connect operation. COUNTER 8</SAP:AdditionalText>
<SAP:Stack />Hi,
MSHOST=logon**.*.com is name server, but it can be recognized as in message is also part "on local host with Unicode ERROR partner '.*..**:" where *.*... is IP address..
That problem occurred after some patches were implemented.
@2.) I can't change it to ABAP proxy
M. -
Unable to connect to WMI (r) on remote machine "SCCMCLIENT03"
Hi!
I'm in the process of configuring the XP firewall to support the Client Push installation method that SCCM offers. At the moment I'm quite happy with the result. The SCCM client agents are installed properly on my reference machines.
To secure that the WMI functionality is up and running I have (prior to the client agent installation) run wbemtest with following parameter (from server to client, and vice versa):
\\host\root\cimv2
I successfully contacted that specific namespace on both ends. But when I trace the log I find the following error which still indicates that something is wrong:
CWmi::Connect(): ConnectServer(Namespace) failed. - 0x8004100e SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
---> Unable to connect to WMI (r) on remote machine "SCCMCLIENT03", error = 0x8004100e. SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
Why do I get this? What am I missing here? I got the feeling of WMI functioning the way it should.
Any hints on this one?
In an MSDN-article (http://msdn.microsoft.com/en-us/library/aa389286(VS.85).aspx) I read the following lines:
"If the user account that is on Computer A is not an administrator on Computer B, but the user account has Remote Enable permission on Computer B"
Those lines are part of an article which describes how to configure Remote administrations properly. For that to work, does the computer account of my Central Site Server has to be part of the local administrators group on every client?
Regards,
Fredrik
CCM.log
Submitted request successfully SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 2408 (0x0968)
Getting a new request from queue "Incoming" after 100 millisecond delay. SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 2408 (0x0968)
======>Begin Processing request: "TI11WDUE", machine name: "SCCMCLIENT03" SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 1704 (0x06A8)
---> Trying each entry in the SMS Client Remote Installation account list SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 1704 (0x06A8)
---> Attempting to connect to administrative share '\\SCCMCLIENT03.spost.nu\admin$' using account 'spost.nu\SA-SCCM_ClientPush' SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 1704 (0x06A8)
Received request: "HPS6133J" for machine name: "SCCMCLIENT02" on queue: "Incoming". SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 2408 (0x0968)
Stored request "HPS6133J", machine name "SCCMCLIENT02", in queue "Processing". SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 2408 (0x0968)
---> Connected to administrative share on machine SCCMCLIENT03.spost.nu using account 'spost.nu\SA-SCCM_ClientPush' SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 1704 (0x06A8)
---> Attempting to make IPC connection to share <\\SCCMCLIENT03.spost.nu\IPC$> SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 1704 (0x06A8)
---> Searching for SMSClientInstall.* under '\\SCCMCLIENT03.spost.nu\admin$\' SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:13 1704 (0x06A8)
---> System OS version string "5.1.2600" converted to 5,10 SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
---> Service Pack version from machine "SCCMCLIENT03" is 3 SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
CWmi::Connect(): ConnectServer(Namespace) failed. - 0x8004100e SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
---> Unable to connect to WMI (r) on remote machine "SCCMCLIENT03", error = 0x8004100e. SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
---> Creating \ VerifyingCopying exsistance of destination directory \\SCCMCLIENT03\admin$\system32\ccmsetup. SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
---> Copying client files to \\SCCMCLIENT03\admin$\system32\ccmsetup. SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
---> Copying file "d:\Program Files\Microsoft Configuration Manager\bin\I386\MobileClient.tcf" to "\\SCCMCLIENT03\admin$\system32\ccmsetup\MobileClient.tcf" SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
---> Copying file "d:\Program Files\Microsoft Configuration Manager\bin\I386\ccmsetup.exe" to "\\SCCMCLIENT03\admin$\system32\ccmsetup\ccmsetup.exe" SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:14 1704 (0x06A8)
---> Created service "ccmsetup" on machine "SCCMCLIENT03". SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 1704 (0x06A8)
----- Started a new CCR processing thread. Thread ID is 0xc6c. There are now 2 processing threads SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 2408 (0x0968)
Submitted request successfully SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 2408 (0x0968)
Getting a new request from queue "Incoming" after 100 millisecond delay. SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 2408 (0x0968)
Found CCR "yb2xbq0a.CCR" in queue "Incoming". SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 2408 (0x0968)
======>Begin Processing request: "HPS6133J", machine name: "SCCMCLIENT02" SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 3180 (0x0C6C)
---> Trying the 'best-shot' account which worked for previous CCRs (index = 0x0) SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 3180 (0x0C6C)
---> Attempting to connect to administrative share '\\SCCMCLIENT02.spost.nu\admin$' using account 'spost.nu\SA-SCCM_ClientPush' SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 3180 (0x0C6C)
Received request: "YB2XBQ0A" for machine name: "SCCMCLIENT01" on queue: "Incoming". SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 2408 (0x0968)
Stored request "YB2XBQ0A", machine name "SCCMCLIENT01", in queue "Processing". SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:15 2408 (0x0968)
---> Started service "ccmsetup" on machine "SCCMCLIENT03". SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:16 1704 (0x06A8)
---> Deleting SMS Client Install Lock File '\\SCCMCLIENT03.spost.nu\admin$\SMSClientInstall.S01' SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:16 1704 (0x06A8)
---> Completed request "TI11WDUE", machine name "SCCMCLIENT03". SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:16 1704 (0x06A8)
Deleted request "TI11WDUE", machine name "SCCMCLIENT03" SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:16 1704 (0x06A8)
<======End request: "TI11WDUE", machine name: "SCCMCLIENT03". SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:16 1704 (0x06A8)
======>Begin Processing request: "YB2XBQ0A", machine name: "SCCMCLIENT01" SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:16 1704 (0x06A8)
---> Trying the 'best-shot' account which worked for previous CCRs (index = 0x0) SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:16 1704 (0x06A8)
---> Attempting to connect to administrative share '\\SCCMCLIENT01.spost.nu\admin$' using account 'spost.nu\SA-SCCM_ClientPush' SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:16 1704 (0x06A8)
Submitted request successfully SMS_CLIENT_CONFIG_MANAGER 2009-03-10 11:12:17 2408 (0x0968)Here is what is in my ccmsetup.log
<![LOG[GetSSLCertificateContext failed with error 0x87d00280]LOG]!><time="16:19:22.341+240" date="04-04-2012" component="ccmsetup" context="" type="3" thread="984" file="ccmsetup.cpp:5356">
<![LOG[GetHttpRequestObjects failed for verb: 'GET', url: 'HTTPS://TEST-SCCM.copt.local/CCM_Client/ccmsetup.cab']LOG]!><time="16:19:22.341+240" date="04-04-2012" component="ccmsetup" context="" type="3" thread="984" file="httphelper.cpp:942">
<![LOG[DownloadFileByWinHTTP failed with error 0x87d00280]LOG]!><time="16:19:22.341+240" date="04-04-2012" component="ccmsetup" context="" type="3" thread="984" file="httphelper.cpp:1076">
<![LOG[CcmSetup failed with error code 0x87d00280]LOG]!><time="16:19:22.341+240" date="04-04-2012" component="ccmsetup" context="" type="1" thread="3496" file="ccmsetup.cpp:9454">
And in my ccm.log:
---> Attempting to connect to administrative share '\\SCCMCLIENTTEST1\admin$' using account 'corporate\sccmadmin'~ $$<SMS_CLIENT_CONFIG_MANAGER><04-04-2012 16:09:19.338+240><thread=2708 (0xA94)>
---> The 'best-shot' account has now succeeded 1 times and failed 0 times. $$<SMS_CLIENT_CONFIG_MANAGER><04-04-2012 16:09:19.400+240><thread=2708 (0xA94)>
---> Connected to administrative share on machine SCCMCLIENTTEST1 using account 'corporate\sccmadmin'~ $$<SMS_CLIENT_CONFIG_MANAGER><04-04-2012 16:09:19.400+240><thread=2708 (0xA94)>
---> Attempting to make IPC connection to share <\\SCCMCLIENTTEST1\IPC$> ~ $$<SMS_CLIENT_CONFIG_MANAGER><04-04-2012 16:09:19.400+240><thread=2708 (0xA94)>
---> Searching for SMSClientInstall.* under '\\SCCMCLIENTTEST1\admin$\'~ $$<SMS_CLIENT_CONFIG_MANAGER><04-04-2012 16:09:19.405+240><thread=2708 (0xA94)>
---> System OS version string "6.1.7601" converted to 6.10 $$<SMS_CLIENT_CONFIG_MANAGER><04-04-2012 16:09:19.778+240><thread=2708 (0xA94)>
CWmi::Connect(): ConnectServer(Namespace) failed. - 0x8004100e~ $$<SMS_CLIENT_CONFIG_MANAGER><04-04-2012 16:09:19.826+240><thread=2708 (0xA94)>
---> Unable to connect to WMI (root\ccm) on remote machine "SCCMCLIENTTEST1", error = 0x8004100e -
Transparent FW and pinging to remote device
Hi everyone,
I was reading about transparent FW it says
Unlike a transparent switch, however, the device will not flood frames out interfaces for an unknown MAC address destination. Instead the ASA will respond with an ARP request for a directly connected device. If the destination is remote, the ASA will attempt to ping the remote device.
Question
How ASA will ping the remote device will it ping by static route config on ASA ?
Say we have transparent FW between 2 switches and one side say switch1 has a server is connected to it.
How ASA will ping this server?
Now we can say this server as remote device if it is on different subnet then the ASA interface?
Seems ASA will have mac address of directly connected inetrfaces.
Thanks
MaheshHi,
I actually configured one of my ASA5505 as Transparent last night and tested it abit.
I had NO default route on the ASA5505 and the connections from the host behind the Transparent firewall worked just fine. Though I didnt use any management connection to the ASA other than console cable.
I guess for remote management connections and certain traffic originated by the ASA itself, the default route is needed BUT not for the actual host traffic through the ASA. The host already has a default gateway configured and it will ARP for its MAC address through the Transparent ASA and already knows where to forward the traffic to reach the remote host. ASA just has to determine where to forward the traffic.
I enabled several debugs on the ASA and it would indeed seem that when the ASA still has absoletely no knowledge of MAC address behind its "inside" or "outside" it will at the start use Traceroute.
I will post the debugs shortly.
EDIT: Debugs
L2-FIREWALL(config)# sh debug
debug l2-indication enabled at level 255
debug mac-address-table enabled at level 255
debug arp-inspection enabled at level 255
debug icmp trace enabled at level 255
debug arp enabled at level 1
I first issued a "clear mac-address-table" and after that I initiated ICMP Echo to a remote network.
My IP addresses were
192.168.103.1 Host default gateway - MACaca0.1679.6d1b
192.168.103.2 ASA5505 IP address
192.168.103.3 Host IP address - MAC 1cc1.debe.80c5
192.168.101.1 Remote Host
f1_tf_process_l2_learn:learn indication , cur_ifc inside, new_ifc inside
mac_address: 1cc1.debe.80c5
add_l2fwd_entry: Going to add MAC 1cc1.debe.80c5.
add_l2fwd_entry: Added MAC 1cc1.debe.80c5 into bridge table thru inside.
add_l2fwd_entry: Sending LU to add MAC 1cc1.debe.80c5.
f1_tf_process_l2_miss:MISS indication ip address 165a8c0, Vlan: 1,mac_address aca0.1679.6d1b
MISS IND: Skipping learning for same interface
f1_tf_process_l2_miss:IP address belongs to differentsubnet. Sending ICMP traceroute
icmp_mktracert: Block allocated
ICMP echo request from 192.168.103.2 to 192.168.101.1 ID=4388 seq=0 len=32
f1_tf_process_l2_learn:learn indication , cur_ifc outside, new_ifc outside
mac_address: aca0.1679.6d1b
add_l2fwd_entry: Going to add MAC aca0.1679.6d1b.
add_l2fwd_entry: Added MAC aca0.1679.6d1b into bridge table thru outside.
add_l2fwd_entry: Sending LU to add MAC aca0.1679.6d1b.
ICMP echo reply from 192.168.101.1 to 192.168.103.2 ID=4388 seq=0 len=32
ICMP echo request from inside:192.168.103.3 to outside:192.168.101.1 ID=1 seq=244 len=32
ICMP echo reply from outside:192.168.101.1 to inside:192.168.103.3 ID=1 seq=244 len=32
ICMP echo request from inside:192.168.103.3 to outside:192.168.101.1 ID=1 seq=245 len=32
ICMP echo reply from outside:192.168.101.1 to inside:192.168.103.3 ID=1 seq=245 len=32
ICMP echo request from inside:192.168.103.3 to outside:192.168.101.1 ID=1 seq=246 len=32
ICMP echo reply from outside:192.168.101.1 to inside:192.168.103.3 ID=1 seq=246 len=32
- Jouni -
Remote App on IPod Touch Connect to ITunes on Win7
Is anyone having a problem making the Remote APP on ipod touch connect to ITunes on Win7 over WiFi? Itunes sees it alright, asks for a Passcode which the ipod supplies, considers it and then says it is invalid. I'm open to suggestions.
Yes it is, I click on the "Remote" button, type the passcode into iTunes, it thinks for a while then comes back and says "invalid passcode". The two are communicating or iTunes wouldn't show the "Remote" button or display the passcode entry window.
-
Remote for my IPad says connecting to apple TV and it won't connect?
On the remote app on my iPad and iPhone it says connecting to apple tv and it never connects. This just started happening yesterday. How do I fix it. I restarted everything.
1: Connect the device to Your computer and open iTunes.
2: If the device appears in iTunes, select and click Restore on the Summary pane.
Restoring > http://support.apple.com/kb/HT1414
Make sure you have the Current Version of iTunes Installed on your computer
iTunes free download from www.itunes.com/download
3: If the device doesn't appear in iTunes, try using the Steps in this article to force the device into Recovery Mode.
Note on Recovery Mode.
You may need to try this More than Once... Be sure to Follow ALL the Steps...
After you have Recovered your Device...
Re-Sync your Content or Restore from the most Recent Backup...
Restore from Backup > http://support.apple.com/kb/ht1766 -
Recently I can't connect to my work computer remotely and I can't print things even when I am using my desktop which is directly connected to the printer. If I go to Internet Explorer or AOL I have no problems but since I mainly use Firefox this has become a major problem.
I encounter similar problem. My TC detects my OKI printer which is connected to the TC via USB but I can't print unless I connect my printer to the TC via Ethernet. Would anyone know how to solve it. Thanks.
-
How to connect a CVS server with remote Hosts(NWDS7.0)
Hi Frndz..
I installed CVSNT server in one machine n itz workiing fine with that NWDS in that machine , now i want make connect that CVS server from remote machines NWDS's to use that CVS server as a central repo'
Can anyone guide me how can i connect that server from remote machines thru NWDS.
Thnaks in Advance
Regards
Rajeshrajesh,
did u check this link
https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/d079e754-8c85-2b10-8b9a-b36db5262122
Thanks
Bala Duvvuri -
How to load date field from a remote Oracle DB with DB Connect
Hi,
Does any one have experience extracting Date field from a remote Oracle database through DB Connect to BW? I am experiencing data format issue. The extracted data shows '04-Oct-0' for '10/4/05'. It works fine if I create a view in Oracle database to preformat the data to '20051004'. But, I am not allowed to create view in Remote DB.
Any suggestion is very appreciated.
Regards,
FrankYou have to change it to a varchar2 field. YYYYMMDD. I do not know of any other option.
-
Anyone can help with the below issue please? Much appreciated.
We have about 2k+ messages in sys.transmission_queue
Telnet to the ports 4022 is working fine.
Network connectivity has been ruled out.
The firewalls are OFF.
We also explicitly provided the permissions to the service account on Server A and Server B to the Service broker end points.
GRANT
CONNECT ON
ENDPOINT <broker> <domain\serviceaccount>
Currently for troubleshooting purposes, the DR node is also out of the Availability Group, which means that we right now have only one replica the server is now a traditional cluster.
Important thing to note is when a SQL Server service is restarted, all the messages in the sys.transmission queue is cleared immediately. After about 30-40 minutes, the errors are continued to be seen with the below
The
connection was
closed by the
remote end,
or an
error occurred while
receiving data:
'64(The specified network name is no longer available.)'We were able to narrow down the issue to an irrelevant IP coming into play during the data transfer. We tried ssbdiagnose runtime and found this error:
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:\Windows\system32>SSBDIAGNOSE -E RUNTIME -ID 54F03D35-1A94-48D2-8144-5A9D24B24520 Connect to -S <SourceServer> -d <SourceDB> Connect To -S <DestinationServer> -d <DestinationDB>
Microsoft SQL Server 11.0.2100.60
Service Broker Diagnostic Utility
An internal exception occurred: Timeout expired. The timeout period elapsed prior to completion of the operation or the server is not responding.
P 29830 Could not find the connection to the SQL Server that
corresponds to the routing address tcp://XX.XXX.XXX.199:4022. Ensure the tool is connected to this server to allow investigation of runtime events
The IP that corresponds to routing address is no where configured within the SSB. We are yet unsure why this IP is being referred despite not being configured anywhere. We identified that this IP belongs to one of nodes other SQL Server cluster, which has
no direct relation to the source server. We failed over that irrelevant SQL Server cluster and made another node active and to our surprise, the data from sys.transmission_queue started flowing. Even today we are able to reproduce the issue, if we bring
back this node [XX.XXX.XXX.199] as active. Since, its a high business activity period, we are not investigating further until we get an approved downtime to find the root cause of it.
When we get a approved downtime, we will bring the node [XX.XXX.XXX.199] as active and we will be running Network Monitor, Process Monitor and the SSB Diagnose all in parallel to capture the process/program that is accessing the irrelevant IP.
Once, we are able to nail down the root cause, I will share more information. -
Hello!
I want to create bat script to create several VPN connection.
There is powershell command to create vpn connection:
add-vpnconnection -name "Test VPN" -serveraddress "vpn.example.com" -splittunneling -tunneltype "pptp"
And I need to create VPN connection without the option "Use default gateway on remote network" option on VPN connection"
Or modify this option on existent VPN connection with command.
Please help me to find command option or other command to disable "Use default gateway on remote network" option on VPN connection" feature.http://technet.microsoft.com/nl-nl/library/ee431701%28v=ws.10%29.aspx RouteIPv4TrafficOverRAS True – Add a default gateway on the VPN connection False – Do not add default gateway on the VPN connection
Maybe you are looking for
-
Is there a way to print presenter notes with multiple slides per page?
I know you used to be able to do this with earlier versions by selecting options in the print dialog box, but I'm now using Keynote 6.1 on Mavericks, and I can only figure out how to do one or the other, not both. There will probably be over 100 stud
-
Hi, I'm sure this is easy but not sure how to do it, or what is the best method. I have a submit button on a jsp that gets a servlet. The servlet deals withe logic then I want to go to another site after the logic has been processed. Now this needs t
-
Problem in using two separate 3D parametric plot windows
I one application I have two activeX windows for 3D parametric plots. Sometimes I notice a data leackage between the graphs (and usually just one point, like in the figure I inserted). But I have cheked the code, everithing seems to be ok. they are t
-
Error 69 tried everything, please help
Ok, I've never had problems with iTunes in the past. I purchased Sex and the City seasons 1-3 and have them on my iPod without any problems. I purchased seasons 4 & 5 and now can't get them on my ipod without that error message. I played the episodes
-
Access to someone else (!) events at my desktop / iCloud Calendar
I know. It sounds strange and unbelievable (but, judge yourself - attached JPEG proof below), but I can access someone else calendar via my both Calendars - desktop and iCloud based. And - glad you asked this - yes, I am loged by my own Apple/iCloud