Loyalty system
Hi gurus,
Our organization wants to implement a loyalty/rewards system for both the customers and the Call Agents with the ff. guidelines:
A. Instant gratification for the customer for upselling
1. Minimum order should be half case of beer
2. Free goods for a customer that will upgrade from half case to 1 case
3. Free goods for a customer that will accumulate 10 cases of beer
4. Reward points or free goods for Agent
B. Instant gratification for the customer for referrals
1. Free beer for a customer if his/her referral eventually makes an order
I gathered that CRM doesn't have a true rewards system so I'm wondering if these requirements are feasible. As an interim solution, we're planning to just customize reports for each requirement but there's still the concern of system performance since the Agent will have to generate a particular report whenever a customer calls. Another option is to display the quantity of the free goods/reward points on the transaction screen everytime a customer calls. The question is if it's a practical and an efficient monitoring method and how to go about it. Hope you can enlighten us. Thanks.
Thessa
Hi Damaris,
Most likely the Number Range entry for Point Account Set has not been maintained correctly . Due to this the creation of a Point Account Set ( which isa child of Membership and created automatically during save of the Membership ) fails .
When the creation of Point Account Set Fails , the Save of Membership also fails .
In order to fix the problem , fix the entry in the transaction SNRO for the Number Range Object LOY_PTACCT .
Rgds, Gervase
Similar Messages
-
Cisco ASA 5505 Site to Site VPN
Hello All,
First time posting to the forums. I've been working with Cisco ASA 5505 for a number of months and recently I purchased a 2nd ASA with the goal of setting up Site to Site VPN tunnel. It look so simple from the number of videos that I have watched on the internet. But when I have done it suprise suprise it didn't work for me ... I have deleted the tunnels a number of times and attempted to recreate them. I am using the VPN wizard in the ADM to create the tunnel. Both the asa are 5505 and have the same same firmware etc.
I would appreciate any help that can be directed towards this issue please. Slowly losing my mind
Please see details below:
Both ADM are 7.1
IOS
ASA 1
aved
ASA Version 9.0(1)
hostname PAYBACK
enable password HSMurh79NVmatjY0 encrypted
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
passwd 2KFQnbNIdI.2KYOU encrypted
names
ip local pool VPN1 192.168.50.1-192.168.50.254 mask 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
speed 100
duplex full
interface Ethernet0/1
description Trunk link to SW1
switchport trunk allowed vlan 1,10,20,30,40
switchport trunk native vlan 1
switchport mode trunk
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan1
no nameif
no security-level
no ip address
interface Vlan2
nameif outside
security-level 0
ip address 92.51.193.158 255.255.255.252
interface Vlan10
nameif inside
security-level 100
ip address 192.168.10.1 255.255.255.0
interface Vlan20
nameif servers
security-level 100
ip address 192.168.20.1 255.255.255.0
interface Vlan30
nameif printers
security-level 100
ip address 192.168.30.1 255.255.255.0
interface Vlan40
nameif wireless
security-level 100
ip address 192.168.40.1 255.255.255.0
banner login line Welcome to Payback Loyalty Systems
boot system disk0:/asa901-k8.bin
ftp mode passive
clock summer-time GMT/IDT recurring last Sun Mar 1:00 last Sun Oct 2:00
dns domain-lookup outside
dns domain-lookup inside
dns domain-lookup servers
dns domain-lookup printers
dns domain-lookup wireless
dns server-group DefaultDNS
name-server 83.147.160.2
name-server 83.147.160.130
same-security-traffic permit inter-interface
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network ftp_server
object network Internal_Report_Server
host 192.168.20.21
description Automated Report Server Internal Address
object network Report_Server
host 89.234.126.9
description Automated Report Server
object service RDP
service tcp destination eq 3389
description RDP to Server
object network Host_QA_Server
host 89.234.126.10
description QA Host External Address
object network Internal_Host_QA
host 192.168.20.22
description Host of VM machine for QA
object network Internal_QA_Web_Server
host 192.168.20.23
description Web Server in QA environment
object network Web_Server_QA_VM
host 89.234.126.11
description Web server in QA environment
object service SQL_Server
service tcp destination eq 1433
object network Demo_Server
host 89.234.126.12
description Server set up to Demo Product
object network Internal_Demo_Server
host 192.168.20.24
description Internal IP Address of Demo Server
object network NETWORK_OBJ_192.168.20.0_24
subnet 192.168.20.0 255.255.255.0
object network NETWORK_OBJ_192.168.50.0_26
subnet 192.168.50.0 255.255.255.192
object network NETWORK_OBJ_192.168.0.0_16
subnet 192.168.0.0 255.255.0.0
object service MSSQL
service tcp destination eq 1434
description MSSQL port
object network VPN-network
subnet 192.168.50.0 255.255.255.0
object network NETWORK_OBJ_192.168.50.0_24
subnet 192.168.50.0 255.255.255.0
object service TS
service tcp destination eq 4400
object service TS_Return
service tcp source eq 4400
object network External_QA_3
host 89.234.126.13
object network Internal_QA_3
host 192.168.20.25
object network Dev_WebServer
host 192.168.20.27
object network External_Dev_Web
host 89.234.126.14
object network CIX_Subnet
subnet 192.168.100.0 255.255.255.0
object network NETWORK_OBJ_192.168.10.0_24
subnet 192.168.10.0 255.255.255.0
object network NETWORK_OBJ_84.39.233.50
host 84.39.233.50
object network NETWORK_OBJ_92.51.193.158
host 92.51.193.158
object network NETWORK_OBJ_192.168.100.0_24
subnet 192.168.100.0 255.255.255.0
object network NETWORK_OBJ_192.168.1.0_24
subnet 192.168.1.0 255.255.255.0
object-group service DM_INLINE_SERVICE_1
service-object tcp destination eq ftp
service-object tcp destination eq netbios-ssn
service-object tcp destination eq smtp
service-object object TS
object-group network Payback_Internal
network-object 192.168.10.0 255.255.255.0
network-object 192.168.20.0 255.255.255.0
network-object 192.168.40.0 255.255.255.0
object-group service DM_INLINE_SERVICE_3
service-object tcp destination eq www
service-object tcp destination eq https
service-object object TS
service-object object TS_Return
object-group service DM_INLINE_SERVICE_4
service-object object RDP
service-object tcp destination eq www
service-object tcp destination eq https
object-group service DM_INLINE_SERVICE_5
service-object object MSSQL
service-object object RDP
service-object object TS
object-group protocol TCPUDP
protocol-object udp
protocol-object tcp
object-group service DM_INLINE_SERVICE_6
service-object object TS
service-object object TS_Return
service-object tcp destination eq www
service-object tcp destination eq https
access-list outside_access_in remark This rule is allowing from internet to interal server.
access-list outside_access_in remark Allowed:
access-list outside_access_in remark FTP
access-list outside_access_in remark RDP
access-list outside_access_in remark SMTP
access-list outside_access_in remark Net Bios
access-list outside_access_in remark SQL
access-list outside_access_in remark TS - 4400
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_1 any4 object Internal_Report_Server
access-list outside_access_in remark Access rule to internal host QA
access-list outside_access_in remark Allowed:
access-list outside_access_in remark HTTP
access-list outside_access_in remark RDP
access-list outside_access_in extended permit tcp any4 object Internal_Host_QA eq www
access-list outside_access_in remark Access to INternal Web Server:
access-list outside_access_in remark Allowed:
access-list outside_access_in remark HTTP
access-list outside_access_in remark RDP
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_3 any4 object Internal_QA_Web_Server
access-list outside_access_in remark Rule for allowing access to Demo server
access-list outside_access_in remark Allowed:
access-list outside_access_in remark RDP
access-list outside_access_in remark MSSQL
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_4 any4 object Internal_Demo_Server
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_5 any object Internal_QA_3
access-list outside_access_in remark Access for Development WebServer
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_6 any object Dev_WebServer
access-list AnyConnect_Client_Local_Print extended deny ip any4 any4
access-list AnyConnect_Client_Local_Print extended permit tcp any4 any4 eq lpd
access-list AnyConnect_Client_Local_Print remark IPP: Internet Printing Protocol
access-list AnyConnect_Client_Local_Print extended permit tcp any4 any4 eq 631
access-list AnyConnect_Client_Local_Print remark Windows' printing port
access-list AnyConnect_Client_Local_Print extended permit tcp any4 any4 eq 9100
access-list AnyConnect_Client_Local_Print remark mDNS: multicast DNS protocol
access-list AnyConnect_Client_Local_Print extended permit udp any4 host 224.0.0.251 eq 5353
access-list AnyConnect_Client_Local_Print remark LLMNR: Link Local Multicast Name Resolution protocol
access-list AnyConnect_Client_Local_Print extended permit udp any4 host 224.0.0.252 eq 5355
access-list AnyConnect_Client_Local_Print remark TCP/NetBIOS protocol
access-list AnyConnect_Client_Local_Print extended permit tcp any4 any4 eq 137
access-list AnyConnect_Client_Local_Print extended permit udp any4 any4 eq netbios-ns
access-list Payback_VPN_splitTunnelAcl standard permit 192.168.20.0 255.255.255.0
access-list outside_cryptomap extended permit ip 192.168.10.0 255.255.255.0 192.168.100.0 255.255.255.0
pager lines 24
logging enable
logging console informational
logging asdm informational
logging from-address
[email protected]
logging recipient-address
[email protected]
level alerts
mtu outside 1500
mtu inside 1500
mtu servers 1500
mtu printers 1500
mtu wireless 1500
no failover
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-711-52.bin
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
nat (inside,outside) source dynamic any interface
nat (wireless,outside) source dynamic any interface
nat (servers,outside) source dynamic any interface
nat (servers,outside) source static Internal_Report_Server Report_Server
nat (servers,outside) source static Internal_Host_QA Host_QA_Server
nat (servers,outside) source static Internal_QA_Web_Server Web_Server_QA_VM
nat (servers,outside) source static Internal_Demo_Server Demo_Server
nat (servers,outside) source static NETWORK_OBJ_192.168.20.0_24 NETWORK_OBJ_192.168.20.0_24 destination static NETWORK_OBJ_192.168.50.0_24 NETWORK_OBJ_192.168.50.0_24 no-proxy-arp route-lookup
nat (servers,outside) source static Internal_QA_3 External_QA_3
nat (servers,outside) source static Dev_WebServer External_Dev_Web
nat (inside,outside) source static NETWORK_OBJ_192.168.10.0_24 NETWORK_OBJ_192.168.10.0_24 destination static NETWORK_OBJ_192.168.1.0_24 NETWORK_OBJ_192.168.1.0_24 no-proxy-arp route-lookup
nat (inside,outside) source static NETWORK_OBJ_192.168.10.0_24 NETWORK_OBJ_192.168.10.0_24 destination static NETWORK_OBJ_192.168.100.0_24 NETWORK_OBJ_192.168.100.0_24 no-proxy-arp route-lookup
access-group outside_access_in in interface outside
route outside 0.0.0.0 0.0.0.0 92.51.193.157 1
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
user-identity default-domain LOCAL
aaa authentication ssh console LOCAL
http server enable
http 192.168.10.0 255.255.255.0 inside
http 192.168.40.0 255.255.255.0 wireless
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS esp-aes esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS esp-aes esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS esp-aes-192 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS esp-aes-192 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS esp-aes-256 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS esp-aes-256 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS esp-3des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS esp-3des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS esp-des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS esp-des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS mode transport
crypto ipsec ikev2 ipsec-proposal AES256
protocol esp encryption aes-256
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES192
protocol esp encryption aes-192
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES
protocol esp encryption aes
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal 3DES
protocol esp encryption 3des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal DES
protocol esp encryption des
protocol esp integrity sha-1 md5
crypto ipsec security-association pmtu-aging infinite
crypto map outside_map 1 match address outside_cryptomap
crypto map outside_map 1 set pfs
crypto map outside_map 1 set peer 84.39.233.50
crypto map outside_map 1 set ikev1 transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
crypto map outside_map 1 set ikev2 ipsec-proposal AES256 AES192 AES 3DES DES
crypto map outside_map interface outside
crypto ca trustpool policy
crypto ikev2 policy 1
encryption aes-256
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 policy 10
encryption aes-192
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 policy 20
encryption aes
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 policy 30
encryption 3des
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 policy 40
encryption des
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 enable outside client-services port 443
crypto ikev1 enable outside
crypto ikev1 policy 10
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
telnet timeout 5
ssh 77.75.100.208 255.255.255.240 outside
ssh 192.168.10.0 255.255.255.0 inside
ssh 192.168.40.0 255.255.255.0 wireless
ssh timeout 5
console timeout 0
dhcpd dns 192.168.0.1
dhcpd auto_config outside
dhcpd address 192.168.10.21-192.168.10.240 inside
dhcpd dns 192.168.20.21 83.147.160.2 interface inside
dhcpd option 15 ascii paybackloyalty.com interface inside
dhcpd enable inside
dhcpd address 192.168.40.21-192.168.40.240 wireless
dhcpd dns 192.168.20.21 83.147.160.2 interface wireless
dhcpd update dns interface wireless
dhcpd option 15 ascii paybackloyalty.com interface wireless
dhcpd enable wireless
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
group-policy Payback_VPN internal
group-policy Payback_VPN attributes
vpn-simultaneous-logins 10
vpn-tunnel-protocol ikev1
split-tunnel-policy tunnelspecified
split-tunnel-network-list value Payback_VPN_splitTunnelAcl
group-policy DfltGrpPolicy attributes
dns-server value 83.147.160.2 83.147.160.130
vpn-tunnel-protocol ikev1 ikev2 ssl-clientless
group-policy GroupPolicy_84.39.233.50 internal
group-policy GroupPolicy_84.39.233.50 attributes
vpn-tunnel-protocol ikev1 ikev2
username Noelle password XB/IpvYaATP.2QYm encrypted
username Noelle attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Eanna password vXILR9ZZQIsd1Naw encrypted privilege 0
username Eanna attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Michael password qpbleUqUEchRrgQX encrypted
username Michael attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Danny password .7fEXdzESUk6S/cC encrypted privilege 0
username Danny attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Aileen password tytrelqvV5VRX2pz encrypted privilege 0
username Aileen attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Aidan password aDu6YH0V5XaxpEPg encrypted privilege 0
username Aidan attributes
vpn-group-policy Payback_VPN
service-type remote-access
username gordon password 6e6Djaz3W/XH59zX encrypted privilege 15
username shane.c password iqGMoWOnfO6YKXbw encrypted
username shane.c attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Shane password uYePLcrFadO9pBZx encrypted
username Shane attributes
vpn-group-policy Payback_VPN
service-type remote-access
username James password TdYPv1pvld/hPM0d encrypted
username James attributes
vpn-group-policy Payback_VPN
service-type remote-access
username mark password yruxpddqfyNb.qFn encrypted
username mark attributes
service-type admin
username Mary password XND5FTEiyu1L1zFD encrypted
username Mary attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Massimo password vs65MMo4rM0l4rVu encrypted privilege 0
username Massimo attributes
vpn-group-policy Payback_VPN
service-type remote-access
tunnel-group Payback_VPN type remote-access
tunnel-group Payback_VPN general-attributes
address-pool VPN1
default-group-policy Payback_VPN
tunnel-group Payback_VPN ipsec-attributes
ikev1 pre-shared-key *****
tunnel-group 84.39.233.50 type ipsec-l2l
tunnel-group 84.39.233.50 general-attributes
default-group-policy GroupPolicy_84.39.233.50
tunnel-group 84.39.233.50 ipsec-attributes
ikev1 pre-shared-key *****
ikev2 remote-authentication pre-shared-key *****
ikev2 local-authentication pre-shared-key *****
class-map global-class
match default-inspection-traffic
policy-map global-policy
class global-class
inspect dns
inspect ftp
inspect h323 h225
inspect h323 ras
inspect ip-options
inspect netbios
inspect pptp
inspect rsh
inspect rtsp
inspect sip
inspect snmp
inspect sqlnet
inspect sunrpc
inspect tftp
inspect xdmcp
inspect icmp error
inspect icmp
service-policy global-policy global
smtp-server 192.168.20.21
prompt hostname context
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
Cryptochecksum:d06974501eb0327a5ed229c8445f4fe1
ASA 2
ASA Version 9.0(1)
hostname Payback-CIX
enable password HSMurh79NVmatjY0 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
interface Ethernet0/0
switchport access vlan 2
speed 100
duplex full
interface Ethernet0/1
description This port connects to VLAN 100
switchport access vlan 100
interface Ethernet0/2
interface Ethernet0/3
switchport access vlan 100
interface Ethernet0/4
switchport access vlan 100
interface Ethernet0/5
switchport access vlan 100
interface Ethernet0/6
switchport access vlan 100
interface Ethernet0/7
switchport access vlan 100
interface Vlan2
nameif outside
security-level 0
ip address 84.39.233.50 255.255.255.240
interface Vlan100
nameif inside
security-level 100
ip address 192.168.100.1 255.255.255.0
banner login line Welcome to Payback Loyalty - CIX
ftp mode passive
clock summer-time gmt/idt recurring last Sun Mar 1:00 last Sun Oct 2:00
dns domain-lookup outside
dns domain-lookup inside
dns server-group defaultDNS
name-server 8.8.8.8
name-server 8.8.4.4
same-security-traffic permit inter-interface
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network CIX-Host-1
host 192.168.100.2
description This is the host machine of the VM servers
object network External_CIX-Host-1
host 84.39.233.51
description This is the external IP address of the host server for the VM server
object service RDP
service tcp source range 1 65535 destination eq 3389
object network Payback_Office
host 92.51.193.158
object service MSQL
service tcp destination eq 1433
object network Development_OLTP
host 192.168.100.10
description VM for Eiresoft
object network External_Development_OLTP
host 84.39.233.52
description This is the external IP address for the VM for Eiresoft
object network Eiresoft
host 146.66.160.70
description DBA Contractor
object network External_TMC_Web
host 84.39.233.53
description Public Address of TMC Webserver
object network TMC_Webserver
host 192.168.100.19
description Internal Address of TMC Webserver
object network External_TMC_OLTP
host 84.39.233.54
description Targets OLTP external IP
object network TMC_OLTP
host 192.168.100.18
description Targets interal IP address
object network External_OLTP_Failover
host 84.39.233.55
description Public IP of OLTP Failover
object network OLTP_Failover
host 192.168.100.60
description Server for OLTP failover
object network Servers
subnet 192.168.20.0 255.255.255.0
object network Wired
subnet 192.168.10.0 255.255.255.0
object network Wireless
subnet 192.168.40.0 255.255.255.0
object network NETWORK_OBJ_192.168.100.0_24
subnet 192.168.100.0 255.255.255.0
object network NETWORK_OBJ_192.168.10.0_24
subnet 192.168.10.0 255.255.255.0
object network Eiresoft_2nd
host 137.117.217.29
description Eiresoft 2nd IP
object network Dev_Test_Webserver
host 192.168.100.12
description Dev Test Webserver Internal Address
object network External_Dev_Test_Webserver
host 84.39.233.56
description This is the PB Dev Test Webserver
object network NETWORK_OBJ_192.168.1.0_24
subnet 192.168.1.0 255.255.255.0
object-group service DM_INLINE_SERVICE_1
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_2
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_3
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_4
service-object object MSQL
service-object object RDP
service-object tcp destination eq ftp
object-group service DM_INLINE_SERVICE_5
service-object object MSQL
service-object object RDP
service-object tcp destination eq ftp
object-group service DM_INLINE_SERVICE_6
service-object object MSQL
service-object object RDP
object-group network Payback_Intrernal
network-object object Servers
network-object object Wired
network-object object Wireless
object-group service DM_INLINE_SERVICE_7
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_8
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_9
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_10
service-object object MSQL
service-object object RDP
service-object tcp destination eq ftp
object-group service DM_INLINE_SERVICE_11
service-object object RDP
service-object tcp destination eq ftp
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_1 object Payback_Office object CIX-Host-1
access-list outside_access_in remark Development OLTP from Payback Office
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_2 object Payback_Office object Development_OLTP
access-list outside_access_in remark Access for Eiresoft
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_3 object Eiresoft object Development_OLTP
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_4 object Payback_Office object TMC_Webserver
access-list outside_access_in remark Access to OLTP for target from Payback Office
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_5 object Payback_Office object TMC_OLTP
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_6 object Payback_Office object OLTP_Failover
access-list outside_access_in remark This is allowing access from Eiresoft to the OLTP Failover server
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_7 object Eiresoft object OLTP_Failover
access-list outside_access_in remark Access for the 2nd IP from Eiresoft
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_8 object Eiresoft_2nd object Development_OLTP
access-list outside_access_in remark Access from the 2nd Eiresoft IP
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_9 object Eiresoft_2nd object OLTP_Failover
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_10 object Payback_Office object Dev_Test_Webserver
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_11 object Payback_Office object External_TMC_OLTP
access-list outside_cryptomap extended permit ip 192.168.100.0 255.255.255.0 192.168.10.0 255.255.255.0
pager lines 24
logging enable
logging asdm informational
mtu outside 1500
mtu inside 1500
icmp unreachable rate-limit 1 burst-size 1
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
nat (inside,outside) source dynamic any interface
nat (inside,outside) source static CIX-Host-1 External_CIX-Host-1
nat (inside,outside) source static Development_OLTP External_Development_OLTP
nat (inside,outside) source static TMC_Webserver External_TMC_Web
nat (inside,outside) source static TMC_OLTP External_TMC_OLTP
nat (inside,outside) source static OLTP_Failover External_OLTP_Failover
nat (inside,outside) source static Dev_Test_Webserver External_Dev_Test_Webserver
nat (inside,outside) source static NETWORK_OBJ_192.168.100.0_24 NETWORK_OBJ_192.168.100.0_24 destination static NETWORK_OBJ_192.168.10.0_24 NETWORK_OBJ_192.168.10.0_24 no-proxy-arp route-lookup
nat (inside,outside) source static NETWORK_OBJ_192.168.100.0_24 NETWORK_OBJ_192.168.100.0_24 destination static NETWORK_OBJ_192.168.1.0_24 NETWORK_OBJ_192.168.1.0_24 no-proxy-arp route-lookup
access-group outside_access_in in interface outside
route outside 0.0.0.0 0.0.0.0 84.39.233.49 1
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
user-identity default-domain LOCAL
aaa authentication ssh console LOCAL
http server enable
http 92.51.193.156 255.255.255.252 outside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart warmstart
crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS esp-aes esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS esp-aes esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS esp-aes-192 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS esp-aes-192 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS esp-aes-256 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS esp-aes-256 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS esp-3des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS esp-3des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS esp-des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS esp-des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS mode transport
crypto ipsec ikev2 ipsec-proposal DES
protocol esp encryption des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal 3DES
protocol esp encryption 3des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES
protocol esp encryption aes
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES192
protocol esp encryption aes-192
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES256
protocol esp encryption aes-256
protocol esp integrity sha-1 md5
crypto ipsec security-association pmtu-aging infinite
crypto map outside_map 1 match address outside_cryptomap
crypto map outside_map 1 set pfs
crypto map outside_map 1 set peer 92.51.193.158
crypto map outside_map 1 set ikev1 transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
crypto map outside_map 1 set ikev2 ipsec-proposal DES 3DES AES AES192 AES256
crypto map outside_map interface outside
crypto ca trustpool policy
crypto ikev2 policy 1
encryption aes-256
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 10
encryption aes-192
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 20
encryption aes
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 30
encryption 3des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 40
encryption des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 enable outside
crypto ikev1 enable outside
crypto ikev1 policy 10
authentication crack
encryption aes-256
hash sha
group 2
lifetime 86400
crypto ikev1 policy 20
authentication rsa-sig
encryption aes-256
hash sha
group 2
lifetime 86400
crypto ikev1 policy 30
authentication pre-share
encryption aes-256
hash sha
group 2
lifetime 86400
crypto ikev1 policy 40
authentication crack
encryption aes-192
hash sha
group 2
lifetime 86400
crypto ikev1 policy 50
authentication rsa-sig
encryption aes-192
hash sha
group 2
lifetime 86400
crypto ikev1 policy 60
authentication pre-share
encryption aes-192
hash sha
group 2
lifetime 86400
crypto ikev1 policy 70
authentication crack
encryption aes
hash sha
group 2
lifetime 86400
crypto ikev1 policy 80
authentication rsa-sig
encryption aes
hash sha
group 2
lifetime 86400
crypto ikev1 policy 90
authentication pre-share
encryption aes
hash sha
group 2
lifetime 86400
crypto ikev1 policy 100
authentication crack
encryption 3des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 110
authentication rsa-sig
encryption 3des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 120
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 130
authentication crack
encryption des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 140
authentication rsa-sig
encryption des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 150
authentication pre-share
encryption des
hash sha
group 2
lifetime 86400
telnet timeout 5
ssh 77.75.100.208 255.255.255.240 outside
ssh 92.51.193.156 255.255.255.252 outside
ssh timeout 5
console timeout 0
dhcpd auto_config outside
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
group-policy GroupPolicy_92.51.193.158 internal
group-policy GroupPolicy_92.51.193.158 attributes
vpn-tunnel-protocol ikev1 ikev2
username gordon password 6e6Djaz3W/XH59zX encrypted privilege 15
tunnel-group 92.51.193.158 type ipsec-l2l
tunnel-group 92.51.193.158 general-attributes
default-group-policy GroupPolicy_92.51.193.158
tunnel-group 92.51.193.158 ipsec-attributes
ikev1 pre-shared-key *****
ikev2 remote-authentication pre-shared-key *****
ikev2 local-authentication pre-shared-key *****
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
inspect icmp
service-policy global_policy global
prompt hostname context
no call-home reporting anonymous
Cryptochecksum:83b2069fa311e6037163ae74f9b2bec2
: endHi,
Thanks for the help to date
I now have the Site to Site working but there is one little issue I have. If I try to RD to a server through the tunnel it will not allow connection on the first attempt however if I ping that host and then attempt to RD it will allow the connection. It looks like the host is asleep until it receives traffic through the tunnel. Is this thje correct behaviour.
See below the details:
ASA1:
hostname PAYBACK
enable password HSMurh79NVmatjY0 encrypted
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
passwd 2KFQnbNIdI.2KYOU encrypted
names
ip local pool VPN1 192.168.50.1-192.168.50.254 mask 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
speed 100
duplex full
interface Ethernet0/1
description Trunk link to SW1
switchport trunk allowed vlan 1,10,20,30,40
switchport trunk native vlan 1
switchport mode trunk
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan1
no nameif
no security-level
no ip address
interface Vlan2
nameif outside
security-level 0
ip address XX.XX.XX.XX 255.255.255.252
interface Vlan10
nameif inside
security-level 100
ip address 192.168.10.1 255.255.255.0
interface Vlan20
nameif servers
security-level 100
ip address 192.168.20.1 255.255.255.0
interface Vlan30
nameif printers
security-level 100
ip address 192.168.30.1 255.255.255.0
interface Vlan40
nameif wireless
security-level 100
ip address 192.168.40.1 255.255.255.0
banner login line Welcome to Payback Loyalty Systems
boot system disk0:/asa901-k8.bin
ftp mode passive
clock summer-time GMT/IDT recurring last Sun Mar 1:00 last Sun Oct 2:00
dns domain-lookup outside
dns domain-lookup inside
dns domain-lookup servers
dns domain-lookup printers
dns domain-lookup wireless
dns server-group DefaultDNS
name-server 83.147.160.2
name-server 83.147.160.130
same-security-traffic permit inter-interface
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network ftp_server
object network Internal_Report_Server
host 192.168.20.21
description Automated Report Server Internal Address
object network Report_Server
host 89.234.126.9
description Automated Report Server
object service RDP
service tcp destination eq 3389
description RDP to Server
object network Host_QA_Server
host 89.234.126.10
description QA Host External Address
object network Internal_Host_QA
host 192.168.20.22
description Host of VM machine for QA
object network Internal_QA_Web_Server
host 192.168.20.23
description Web Server in QA environment
object network Web_Server_QA_VM
host 89.234.126.11
description Web server in QA environment
object service SQL_Server
service tcp destination eq 1433
object network Demo_Server
host 89.234.126.12
description Server set up to Demo Product
object network Internal_Demo_Server
host 192.168.20.24
description Internal IP Address of Demo Server
object network NETWORK_OBJ_192.168.20.0_24
subnet 192.168.20.0 255.255.255.0
object network NETWORK_OBJ_192.168.50.0_26
subnet 192.168.50.0 255.255.255.192
object network NETWORK_OBJ_192.168.0.0_16
subnet 192.168.0.0 255.255.0.0
object service MSSQL
service tcp destination eq 1434
description MSSQL port
object network VPN-network
subnet 192.168.50.0 255.255.255.0
object network NETWORK_OBJ_192.168.50.0_24
subnet 192.168.50.0 255.255.255.0
object service TS
service tcp destination eq 4400
object service TS_Return
service tcp source eq 4400
object network External_QA_3
host 89.234.126.13
object network Internal_QA_3
host 192.168.20.25
object network Dev_WebServer
host 192.168.20.27
object network External_Dev_Web
host 89.234.126.14
object network NETWORK_OBJ_192.168.100.0_24
subnet 192.168.100.0 255.255.255.0
object network Wireless
subnet 192.168.40.0 255.255.255.0
description Wireless network
object network Servers
subnet 192.168.20.0 255.255.255.0
object-group service DM_INLINE_SERVICE_1
service-object tcp destination eq ftp
service-object tcp destination eq netbios-ssn
service-object tcp destination eq smtp
service-object object TS
service-object object SQL_Server
object-group service DM_INLINE_SERVICE_3
service-object tcp destination eq www
service-object tcp destination eq https
service-object object TS
service-object object TS_Return
object-group service DM_INLINE_SERVICE_4
service-object object RDP
service-object tcp destination eq www
service-object tcp destination eq https
object-group service DM_INLINE_SERVICE_5
service-object object MSSQL
service-object object RDP
service-object object TS
object-group protocol TCPUDP
protocol-object udp
protocol-object tcp
object-group service DM_INLINE_SERVICE_6
service-object object TS
service-object object TS_Return
service-object tcp destination eq www
service-object tcp destination eq https
object-group network DM_INLINE_NETWORK_1
network-object 192.168.10.0 255.255.255.0
network-object 192.168.20.0 255.255.255.0
network-object 192.168.40.0 255.255.255.0
object-group network Payback_Internal
network-object 192.168.10.0 255.255.255.0
network-object 192.168.20.0 255.255.255.0
network-object 192.168.40.0 255.255.255.0
access-list outside_access_in remark This rule is allowing from internet to interal server.
access-list outside_access_in remark Allowed:
access-list outside_access_in remark FTP
access-list outside_access_in remark RDP
access-list outside_access_in remark SMTP
access-list outside_access_in remark Net Bios
access-list outside_access_in remark SQL
access-list outside_access_in remark TS - 4400
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_1 any4 object Internal_Report_Server
access-list outside_access_in remark Access rule to internal host QA
access-list outside_access_in remark Allowed:
access-list outside_access_in remark HTTP
access-list outside_access_in remark RDP
access-list outside_access_in extended permit tcp any4 object Internal_Host_QA eq www
access-list outside_access_in remark Access to INternal Web Server:
access-list outside_access_in remark Allowed:
access-list outside_access_in remark HTTP
access-list outside_access_in remark RDP
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_3 any4 object Internal_QA_Web_Server
access-list outside_access_in remark Rule for allowing access to Demo server
access-list outside_access_in remark Allowed:
access-list outside_access_in remark RDP
access-list outside_access_in remark MSSQL
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_4 any4 object Internal_Demo_Server
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_5 any object Internal_QA_3
access-list outside_access_in remark Access for Development WebServer
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_6 any object Dev_WebServer
access-list AnyConnect_Client_Local_Print extended deny ip any4 any4
access-list AnyConnect_Client_Local_Print extended permit tcp any4 any4 eq lpd
access-list AnyConnect_Client_Local_Print remark IPP: Internet Printing Protocol
access-list AnyConnect_Client_Local_Print extended permit tcp any4 any4 eq 631
access-list AnyConnect_Client_Local_Print remark Windows' printing port
access-list AnyConnect_Client_Local_Print extended permit tcp any4 any4 eq 9100
access-list AnyConnect_Client_Local_Print remark mDNS: multicast DNS protocol
access-list AnyConnect_Client_Local_Print extended permit udp any4 host 224.0.0.251 eq 5353
access-list AnyConnect_Client_Local_Print remark LLMNR: Link Local Multicast Name Resolution protocol
access-list AnyConnect_Client_Local_Print extended permit udp any4 host 224.0.0.252 eq 5355
access-list AnyConnect_Client_Local_Print remark TCP/NetBIOS protocol
access-list AnyConnect_Client_Local_Print extended permit tcp any4 any4 eq 137
access-list AnyConnect_Client_Local_Print extended permit udp any4 any4 eq netbios-ns
access-list Payback_VPN_splitTunnelAcl standard permit 192.168.20.0 255.255.255.0
access-list outside_cryptomap extended permit ip object-group DM_INLINE_NETWORK_1 192.168.100.0 255.255.255.0
pager lines 24
logging enable
logging console informational
logging asdm informational
logging from-address [email protected]
logging recipient-address [email protected] level alerts
mtu outside 1500
mtu inside 1500
mtu servers 1500
mtu printers 1500
mtu wireless 1500
no failover
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-711-52.bin
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
nat (inside,outside) source static DM_INLINE_NETWORK_1 DM_INLINE_NETWORK_1 destination static NETWORK_OBJ_192.168.100.0_24 NETWORK_OBJ_192.168.100.0_24 no-proxy-arp route-lookup
nat (wireless,outside) source static Wireless Wireless destination static NETWORK_OBJ_192.168.100.0_24 NETWORK_OBJ_192.168.100.0_24 no-proxy-arp route-lookup
nat (servers,outside) source static Servers Servers destination static NETWORK_OBJ_192.168.100.0_24 NETWORK_OBJ_192.168.100.0_24 no-proxy-arp route-lookup
nat (inside,outside) source dynamic any interface
nat (wireless,outside) source dynamic any interface
nat (servers,outside) source dynamic any interface
nat (servers,outside) source static Internal_Report_Server Report_Server
nat (servers,outside) source static Internal_Host_QA Host_QA_Server
nat (servers,outside) source static Internal_QA_Web_Server Web_Server_QA_VM
nat (servers,outside) source static Internal_Demo_Server Demo_Server
nat (servers,outside) source static NETWORK_OBJ_192.168.20.0_24 NETWORK_OBJ_192.168.20.0_24 destination static NETWORK_OBJ_192.168.50.0_24 NETWORK_OBJ_192.168.50.0_24 no-proxy-arp route-lookup
nat (servers,outside) source static Internal_QA_3 External_QA_3
nat (servers,outside) source static Dev_WebServer External_Dev_Web
access-group outside_access_in in interface outside
route outside 0.0.0.0 0.0.0.0 92.51.193.157 1
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
user-identity default-domain LOCAL
aaa authentication ssh console LOCAL
http server enable
http 192.168.10.0 255.255.255.0 inside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS esp-aes esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS esp-aes esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS esp-aes-192 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS esp-aes-192 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS esp-aes-256 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS esp-aes-256 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS esp-3des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS esp-3des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS esp-des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS esp-des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS mode transport
crypto ipsec ikev2 ipsec-proposal DES
protocol esp encryption des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal 3DES
protocol esp encryption 3des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES
protocol esp encryption aes
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES192
protocol esp encryption aes-192
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES256
protocol esp encryption aes-256
protocol esp integrity sha-1 md5
crypto ipsec security-association pmtu-aging infinite
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev1 transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev2 ipsec-proposal AES256 AES192 AES 3DES DES
crypto map outside_map 1 match address outside_cryptomap
crypto map outside_map 1 set pfs
crypto map outside_map 1 set peer XX.XX.XX.XX
crypto map outside_map 1 set ikev1 transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
crypto map outside_map 1 set ikev2 ipsec-proposal DES 3DES AES AES192 AES256
crypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map outside_map interface outside
crypto map inside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map inside_map interface inside
crypto map servers_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map servers_map interface servers
crypto ca trustpool policy
crypto ikev2 policy 1
encryption aes-256
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 policy 10
encryption aes-192
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 policy 20
encryption aes
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 policy 30
encryption 3des
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 policy 40
encryption des
integrity sha
group 5
prf sha
lifetime seconds 86400
crypto ikev2 enable outside client-services port 443
crypto ikev2 enable inside client-services port 443
crypto ikev1 enable outside
crypto ikev1 enable inside
crypto ikev1 enable servers
crypto ikev1 policy 10
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
telnet timeout 5
ssh 192.168.10.0 255.255.255.0 inside
ssh timeout 5
console timeout 0
dhcpd dns 192.168.0.1
dhcpd auto_config outside
dhcpd address 192.168.10.21-192.168.10.240 inside
dhcpd dns 192.168.20.21 83.147.160.2 interface inside
dhcpd option 15 ascii paybackloyalty.com interface inside
dhcpd enable inside
dhcpd address 192.168.40.21-192.168.40.240 wireless
dhcpd dns 192.168.20.21 83.147.160.2 interface wireless
dhcpd update dns interface wireless
dhcpd option 15 ascii paybackloyalty.com interface wireless
dhcpd enable wireless
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
group-policy Payback_VPN internal
group-policy Payback_VPN attributes
vpn-simultaneous-logins 10
vpn-tunnel-protocol ikev1
split-tunnel-policy tunnelspecified
split-tunnel-network-list value Payback_VPN_splitTunnelAcl
group-policy DfltGrpPolicy attributes
dns-server value 83.147.160.2 83.147.160.130
vpn-tunnel-protocol ikev1 ikev2 ssl-clientless
group-policy GroupPolicy_84.39.233.50 internal
group-policy GroupPolicy_84.39.233.50 attributes
vpn-tunnel-protocol ikev1 ikev2
username Noelle password XB/IpvYaATP.2QYm encrypted
username Noelle attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Eanna password vXILR9ZZQIsd1Naw encrypted privilege 0
username Eanna attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Michael password qpbleUqUEchRrgQX encrypted
username Michael attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Danny password .7fEXdzESUk6S/cC encrypted privilege 0
username Danny attributes
vpn-group-policy Payback_VPN
service-type remote-access
username niamh password MlFlIlEiy8vismE0 encrypted
username niamh attributes
service-type admin
username Aileen password tytrelqvV5VRX2pz encrypted privilege 0
username Aileen attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Aidan password aDu6YH0V5XaxpEPg encrypted privilege 0
username Aidan attributes
vpn-group-policy Payback_VPN
service-type remote-access
username gordon password 6e6Djaz3W/XH59zX encrypted privilege 15
username shane.c password iqGMoWOnfO6YKXbw encrypted
username shane.c attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Shane password yQeVtvLLKqapoUje encrypted privilege 0
username Shane attributes
vpn-group-policy Payback_VPN
service-type remote-access
username James password TdYPv1pvld/hPM0d encrypted
username James attributes
vpn-group-policy Payback_VPN
service-type remote-access
username mark password yruxpddqfyNb.qFn encrypted
username mark attributes
service-type admin
username Mary password XND5FTEiyu1L1zFD encrypted
username Mary attributes
vpn-group-policy Payback_VPN
service-type remote-access
username Massimo password vs65MMo4rM0l4rVu encrypted privilege 0
username Massimo attributes
vpn-group-policy Payback_VPN
service-type remote-access
tunnel-group Payback_VPN type remote-access
tunnel-group Payback_VPN general-attributes
address-pool VPN1
default-group-policy Payback_VPN
tunnel-group Payback_VPN ipsec-attributes
ikev1 pre-shared-key *****
tunnel-group 84.39.233.50 type ipsec-l2l
tunnel-group 84.39.233.50 general-attributes
default-group-policy GroupPolicy_84.39.233.50
tunnel-group 84.39.233.50 ipsec-attributes
ikev1 pre-shared-key *****
ikev2 remote-authentication pre-shared-key *****
ikev2 local-authentication pre-shared-key *****
class-map global-class
match default-inspection-traffic
policy-map global-policy
class global-class
inspect dns
inspect ftp
inspect h323 h225
inspect h323 ras
inspect ip-options
inspect netbios
inspect pptp
inspect rsh
inspect rtsp
inspect sip
inspect snmp
inspect sqlnet
inspect sunrpc
inspect tftp
inspect xdmcp
inspect icmp error
inspect icmp
service-policy global-policy global
smtp-server 192.168.20.21
prompt hostname context
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
Cryptochecksum:83fa7ce1d93375645205f6e79b526381
ASA2:
ASA Version 9.0(1)
hostname Payback-CIX
enable password HSMurh79NVmatjY0 encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
interface Ethernet0/0
switchport access vlan 2
speed 100
duplex full
interface Ethernet0/1
description This port connects to VLAN 100
switchport access vlan 100
interface Ethernet0/2
interface Ethernet0/3
switchport access vlan 100
interface Ethernet0/4
switchport access vlan 100
interface Ethernet0/5
switchport access vlan 100
interface Ethernet0/6
switchport access vlan 100
interface Ethernet0/7
switchport access vlan 100
interface Vlan2
nameif outside
security-level 0
ip address X.X.X.X 255.255.255.240
interface Vlan100
nameif inside
security-level 100
ip address 192.168.100.1 255.255.255.0
banner login line Welcome to Payback Loyalty - CIX
ftp mode passive
clock timezone GMT 0
clock summer-time gmt/idt recurring last Sun Mar 1:00 last Sun Oct 2:00
dns domain-lookup outside
dns domain-lookup inside
dns server-group defaultDNS
name-server 8.8.8.8
name-server 8.8.4.4
same-security-traffic permit inter-interface
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network CIX-Host-1
host 192.168.100.2
description This is the host machine of the VM servers
object network External_CIX-Host-1
host 84.39.233.51
description This is the external IP address of the host server for the VM server
object service RDP
service tcp source range 1 65535 destination eq 3389
object network Payback_Office
host 92.51.193.158
object service MSQL
service tcp destination eq 1433
object network Development_OLTP
host 192.168.100.10
description VM for Eiresoft
object network External_Development_OLTP
host 84.39.233.52
description This is the external IP address for the VM for Eiresoft
object network External_TMC_Web
host 84.39.233.53
description Public Address of TMC Webserver
object network TMC_Webserver
host 192.168.100.19
description Internal Address of TMC Webserver
object network External_TMC_OLTP
host 84.39.233.54
description Targets OLTP external IP
object network TMC_OLTP
host 192.168.100.18
description Targets interal IP address
object network External_OLTP_Failover
host 84.39.233.55
description Public IP of OLTP Failover
object network OLTP_Failover
host 192.168.100.60
description Server for OLTP failover
object network Servers
subnet 192.168.20.0 255.255.255.0
object network Wired
subnet 192.168.10.0 255.255.255.0
object network Wireless
subnet 192.168.40.0 255.255.255.0
object network NETWORK_OBJ_192.168.100.0_24
subnet 192.168.100.0 255.255.255.0
object network NETWORK_OBJ_192.168.10.0_24
subnet 192.168.10.0 255.255.255.0
object network Eiresoft_2nd
host 137.117.217.29
description Eiresoft 2nd IP
object network Dev_Test_Webserver
host 192.168.100.12
description Dev Test Webserver Internal Address
object network External_Dev_Test_Webserver
host 84.39.233.56
description This is the PB Dev Test Webserver
object network NETWORK_OBJ_192.168.1.0_24
subnet 192.168.1.0 255.255.255.0
object network LAN
subnet 192.168.100.0 255.255.255.0
object network REMOTE-LAN
subnet 192.168.10.0 255.255.255.0
object network TargetMC
host 83.71.194.145
description This is Target Location that will be accessing the Webserver
object network Rackspace_OLTP
host 162.13.34.56
description This is the IP address of production OLTP
object service DB
service tcp destination eq 5022
object network Topaz_Target_VM
host 82.198.151.168
description This is Topaz IP that will be accessing Targets VM
object service DB_2
service tcp destination eq 5023
object network EireSoft_NEW_IP
host 146.66.161.3
description Eiresoft latest IP form ISP DHCP
object-group service DM_INLINE_SERVICE_1
service-object object MSQL
service-object object RDP
service-object icmp echo
service-object icmp echo-reply
object-group service DM_INLINE_SERVICE_2
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_4
service-object object MSQL
service-object object RDP
service-object tcp destination eq ftp
service-object tcp destination eq www
object-group service DM_INLINE_SERVICE_5
service-object object MSQL
service-object object RDP
service-object tcp destination eq ftp
object-group service DM_INLINE_SERVICE_6
service-object object MSQL
service-object object RDP
object-group network Payback_Intrernal
network-object object Servers
network-object object Wired
network-object object Wireless
object-group service DM_INLINE_SERVICE_8
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_9
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_10
service-object object MSQL
service-object object RDP
service-object tcp destination eq ftp
service-object icmp echo
service-object icmp echo-reply
service-object object DB
object-group service DM_INLINE_SERVICE_11
service-object object RDP
service-object tcp destination eq ftp
object-group service DM_INLINE_SERVICE_12
service-object object MSQL
service-object icmp echo
service-object icmp echo-reply
service-object object DB
service-object object DB_2
object-group service DM_INLINE_SERVICE_13
service-object object MSQL
service-object object RDP
object-group service DM_INLINE_SERVICE_14
service-object object MSQL
service-object object RDP
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_1 object Payback_Office object CIX-Host-1
access-list outside_access_in remark Development OLTP from Payback Office
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_2 object Payback_Office object Development_OLTP
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_4 object Payback_Office object TMC_Webserver
access-list outside_access_in remark Access to OLTP for target from Payback Office
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_5 object Payback_Office object TMC_OLTP
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_6 object Payback_Office object OLTP_Failover
access-list outside_access_in remark Access for the 2nd IP from Eiresoft
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_8 object Eiresoft_2nd object Development_OLTP
access-list outside_access_in remark Access from the 2nd Eiresoft IP
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_9 object Eiresoft_2nd object OLTP_Failover
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_10 object Payback_Office object Dev_Test_Webserver
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_11 object Payback_Office object External_TMC_OLTP
access-list outside_access_in remark Access rules from Traget to CIX for testing
access-list outside_access_in extended permit tcp object TargetMC object TMC_Webserver eq www
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_12 object Rackspace_OLTP object OLTP_Failover
access-list outside_access_in remark Topaz access to Target VM
access-list outside_access_in extended permit tcp object Topaz_Target_VM object TMC_Webserver eq www
access-list outside_access_in remark Opened up for Target for the weekend. Closing on Monday 20th
access-list outside_access_in extended permit tcp any object TMC_Webserver eq www
access-list outside_access_in remark Access for Eiresoft after their ISP changed their IP Address
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_13 object EireSoft_NEW_IP object Development_OLTP
access-list outside_access_in remark Eiresoft Access after ISP changed their IP Address
access-list outside_access_in extended permit object-group DM_INLINE_SERVICE_14 object EireSoft_NEW_IP object OLTP_Failover
access-list outside_cryptomap extended permit ip 192.168.100.0 255.255.255.0 object-group Payback_Intrernal
pager lines 24
logging enable
logging console debugging
logging asdm informational
mtu outside 1500
mtu inside 1500
icmp unreachable rate-limit 1 burst-size 1
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
nat (inside,outside) source static NETWORK_OBJ_192.168.100.0_24 NETWORK_OBJ_192.168.100.0_24 destination static Payback_Intrernal Payback_Intrernal no-proxy-arp route-lookup
nat (inside,outside) source static CIX-Host-1 External_CIX-Host-1
nat (inside,outside) source static Development_OLTP External_Development_OLTP
nat (inside,outside) source static TMC_Webserver External_TMC_Web
nat (inside,outside) source static TMC_OLTP External_TMC_OLTP
nat (inside,outside) source static OLTP_Failover External_OLTP_Failover
nat (inside,outside) source static Dev_Test_Webserver External_Dev_Test_Webserver
nat (inside,outside) source dynamic LAN interface
access-group outside_access_in in interface outside
route outside 0.0.0.0 0.0.0.0 84.39.233.49 1
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
user-identity default-domain LOCAL
aaa authentication ssh console LOCAL
http server enable
http X.X.X.X 255.255.255.252 outside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart warmstart
crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS esp-aes esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS esp-aes esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS esp-aes-192 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS esp-aes-192 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS esp-aes-256 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS esp-aes-256 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS esp-3des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-3DES-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS esp-3des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-MD5-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS esp-des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-DES-SHA-TRANS mode transport
crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS esp-des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-DES-MD5-TRANS mode transport
crypto ipsec ikev2 ipsec-proposal AES256
protocol esp encryption aes-256
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES192
protocol esp encryption aes-192
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES
protocol esp encryption aes
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal 3DES
protocol esp encryption 3des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal DES
protocol esp encryption des
protocol esp integrity sha-1 md5
crypto ipsec security-association pmtu-aging infinite
crypto map outside_map 1 match address outside_cryptomap
crypto map outside_map 1 set pfs
crypto map outside_map 1 set peer X.X.X.X
crypto map outside_map 1 set ikev1 transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
crypto map outside_map 1 set ikev2 ipsec-proposal DES 3DES AES AES192 AES256
crypto map outside_map interface outside
crypto ca trustpool policy
crypto ikev2 policy 1
encryption aes-256
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 10
encryption aes-192
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 20
encryption aes
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 30
encryption 3des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 40
encryption des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 enable outside
crypto ikev1 enable outside
crypto ikev1 policy 10
authentication crack
encryption aes-256
hash sha
group 2
lifetime 86400
crypto ikev1 policy 20
authentication rsa-sig
encryption aes-256
hash sha
group 2
lifetime 86400
crypto ikev1 policy 30
authentication pre-share
encryption aes-256
hash sha
group 2
lifetime 86400
crypto ikev1 policy 40
authentication crack
encryption aes-192
hash sha
group 2
lifetime 86400
crypto ikev1 policy 50
authentication rsa-sig
encryption aes-192
hash sha
group 2
lifetime 86400
crypto ikev1 policy 60
authentication pre-share
encryption aes-192
hash sha
group 2
lifetime 86400
crypto ikev1 policy 70
authentication crack
encryption aes
hash sha
group 2
lifetime 86400
crypto ikev1 policy 80
authentication rsa-sig
encryption aes
hash sha
group 2
lifetime 86400
crypto ikev1 policy 90
authentication pre-share
encryption aes
hash sha
group 2
lifetime 86400
crypto ikev1 policy 100
authentication crack
encryption 3des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 110
authentication rsa-sig
encryption 3des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 120
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 130
authentication crack
encryption des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 140
authentication rsa-sig
encryption des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 150
authentication pre-share
encryption des
hash sha
group 2
lifetime 86400
telnet timeout 5
ssh X.X.X.X 255.255.255.240 outside
ssh X.X.X.X 255.255.255.252 outside
ssh 192.168.40.0 255.255.255.0 outside
ssh timeout 5
console timeout 0
dhcpd auto_config outside
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
group-policy GroupPolicy_92.51.193.158 internal
group-policy GroupPolicy_92.51.193.158 attributes
vpn-tunnel-protocol ikev1 ikev2
username gordon password 6e6Djaz3W/XH59zX encrypted privilege 15
tunnel-group 92.51.193.158 type ipsec-l2l
tunnel-group 92.51.193.158 general-attributes
default-group-policy GroupPolicy_92.51.193.158
tunnel-group 92.51.193.158 ipsec-attributes
ikev1 pre-shared-key *****
ikev2 remote-authentication pre-shared-key *****
ikev2 local-authentication pre-shared-key *****
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
inspect icmp
service-policy global_policy global
prompt hostname context
no call-home reporting anonymous
Cryptochecksum:78a7b9ccec2fa048306092eb29a2b769 -
Hi gurus,
Our organization wants to implement a loyalty/rewards system for both the customers and the Call Agents with the ff. guidelines:
A. Instant prize for the customer upon order
1. Free cap for a customer that will order no less than 1 case which he/she can claim immediately or later on
2. Free cooler for a customer that will accumulate 10 cases if he/she didn't avail of the free caps
B. Instant prize for the customer / Call Agent for referrals
1. Free item for the customer or Agent if the person/s he/she referred eventually made an order
I gathered that CRM 4.0 doesn't have a true rewards system so I'm wondering if these requirements are feasible. As an interim solution, we're planning to just customize reports for each requirement but there's still the concern of system performance since the Agent will have to generate a particular report whenever a customer calls. Another option is to display the quantity of the free items/reward points on the transaction screen (CIC) everytime a customer calls. The question is if it's a practical and an efficient monitoring method and how to go about it. Hope you can enlighten us on this matter.
Thanks in advance,
ThessaThere is no obligation on anyone's part to "keep up". That is a personal choice, not a requirement. Apple's upgrade schedule for all hardware is pretty well known now and has been for some time. Apple has released a new iPhone model every 12 months since the original iPhone was released. In the cell phone business, the cell phone carrier is the one that provides a discount on a selected cell phone with a two year contract required for the discount they provide. The more you spend on a monthly basis with the cell phone carrier, the quicker you qualify for upgrade or subsidized pricing with a new phone - at least with AT&T. Some AT&T subscribers qualify for upgrade or subsidized pricing with a new phone every 12 months which can coincide when a new iPhone is released or shortly thereafter. Most other subscribers qualify for upgrade or subsidized pricing with a new phone every 18 months or so. If someone that qualifies for upgrade or subsidized pricing with a new phone every 18 months must "keep up" and have the new iPhone model when released which is not required, they will pay more for it. It is expensive to "keep up".
Ask the same question about EVERY computer manufacturer and cell phone manufacturer. No other computer manufacturer or cell phone manufacturer does this so why would anyone think Apple would or should be any different in this regard? -
How can we get Apple to go back to the great look of their OS systems?
I was forced to upgrade my iPad to OS7.1.1 from the final OS6 upgrade. I am so disappointed withe the new look. I find it ugly and uninspiring with all the grey and flatness. It seems they are copying the look of lesser products from other companies. They have lost the focus of productivity combined with esthetics that was the Jobs vision.
I have been with Apple since their first portable computer and have stayed with Apple, watching the innovation with an eye for beauty and Apple has clearly departed from that growth. So far I haven't seen any big change in the system that makes me say wow to make up for the drab, flat look. What made Apple stand out from the pack is gone. I will not upgrade my phone for the ability to use my fingerprint to lock the phone, a feature I have yet to see on my iPad.
Can we petition Apple to go pack to the look we have had all through their products in the past? Does anyone else feel the loss of the beauty of previous OSs? Is there an area where I can add my voice on this disappointing look? Without the WOW factor I see myself shifting to price as a bigger factor in future purchases. Other companies are matching many of the ease of use features of Apple so if their isn't any wow in looks I see my loyalty fading with the drab grey I am looking at as I type this post.
Why ever would Apple take out the look that put them ahead of the pack?
<Edited By Host>apple.com/feedback.
-
R182 System Update - scheduled to go live December 4th, 2012
We are announcing a new Business Catalyst release, scheduled to go live on Tuesday, December 4th, between 1AM - 6AM PST.
Please see the blog post for an overview of all major changes.
Minor enhancements
Programmatically creating thumbnails from full size images now accepts a single dimension (width or height) and it always does proportional resize based on the dimension provided. (docs to be updated soon)
Bounce management updates - with this release, we are going to automatically unsubscribe and opt-out customers whose email addresses have hard bounced. Additionally, we have renamed the Invalid Email Addresses report into Hard Bounces and merged it with the Bounce report.
Import progress indicator - the import has been updated so that it now shows the import progress
Partner Portal updates: invoice list and comissions are now ordered descendent by date; additionally, the Billing tab now shows the Site ID next to each customer name
All charts are now rendered using a different library, leading to slightly different looks. There are no changes in chart data or functionality.
Issues fixed
Bug #
Description
2873659
Change customer's Secure Zone Subscriptions date interval from 1920-2020 to 2000-2100
3078126
{module_title} displays the title ID instead of the customer's title e.g. Mr, Mrs, etc
Note: this bug fix was reverted, and addressed in a future release
3156116
when using the import loyalty campaign template the customer anniversary dates are pre-filled with 1-1-9999 date instead of empty
3176084
Total order amount wrong calculation for Netherlands, Espanol and Deutsch
3282902
Wholesaler price with volume discount: The quantity threshold value will be updated with '.00' decimals after the first save and after a second save, an error will be triggered
3323767
Company name is not displayed when a customer has more than one relationship to a company, and one of the relationships has been deleted
3330266
Using a discount code for free shipping with a minimum total condition ignores it and recomputes the total based on item prices only
3338670
The home address fields associated to a customer are lost when clicking Enter in the CRM contact detail panel
3341625
If you are using custom templates to render a product the default "list" template will appear after pressing the Add to cart button
3348888
CRM entries are created when comments are set to "Must be logged in" in order to post, and one comments as Anonymous
3348939
When creating a campaign where the list of customers is over 2000, at the last step "Preview and Send", the number of recipients remains on "Calculating..."
3349824
BR tags are commented from menu items tooltip on Save
3350859
Sites with old no longer offered site plans cannot access FTP
3352094
Wholesale price always saved as zero
3355847
Viewing/editing a campaign, contentHolder or template file through the File Manager logs the siteID as if it's the userID in the audit log
3353726
Large literature items over 10 Mb cannot be uploaded. It should work for files up to 100mb
3354064
Cannot forward a non-WWW domain to a domain using the DNS tool once the domain is already added in the admin panel
3354541
Backup layout is not displayed when the web app items are inserted through the new toolbox
3359256
Disabled sites are not enabled if upgraded via Consolidated Billing invoice on account
3359585
Cannot re-add a non-WWW domain if the DNS zone is created and you have removed it from your site
3362275
Product template restored to default when using product grouping functionality in site frontend e.g. module_product,CatID,ProdID template="" - functionality broken
3362972
Cannot create subdomains with more than one level after the first domain.
2599509
{tag_capacitydescription} rendering "Full" even though there is 1 seat available in the booking
2638884
Secure zone 'Frequency of Membership Renewal' option failing when selecting 'once' with non recurring Payment gateway
2732950
Change the Norwegian word “laurdag†into “lørdagâ€
2814482
Sorting literature items doesn't work properly in Admin when filtering by one letter
3000564
Unclassified web app items are imported as classified with previous item classification
3090411
Campaigns are sent even though the site has been marked as deleted
3110319
Pressing the Back button to return to the checkout form will load the default engilsh version of the checkout form
3189476
Campaign emails do not respect the standard for the Message-Id field
2567870
Moving dynamic menu items using the ‘right click > Move up/down’ seems to intermittently skip a few places
2758568
The tax is not recorded against the order if the initial payment fails and the second payment is successful
2832245
Exporting to PDF bounced reports for email campaign throws system error
2842411
The webapp import hangs when having a large amount of custom fields
2841512
[Reports] If you create a Customer and Order and use both "Product Purchased with Details" and "Products Purchased" options you will get the "An error occurred" message
2952394
Checkout form on the Cadac template is unusable
3225813
Newly created sites from templates, scratch or replicated sites shouldn't have a sitemap.xml file, even if the original site has it
3301285
SEO friendly URL column when importing a catalog is marked in admin panel as optional, but this information is mandatory
3311966
Static file cache invalidation fails occasionally, causing old file version to be served even though it has been modifiedThanks for this Jackson. Looks like my client was hit by [2758568]. Please could you clarify if "Issues fixed" mean the fix is currenly live on the system or if it will be fixed on the 4 December roll out.
-
I'm getting charged for a glitch in the Verizon system, how do I fix this?
To Whom It May Concern:
We have been a longtime and loyal Verizon Wireless customer and advocate. Up until yesterday, we could not imagine ever using any other company beside Verizon Wireless. However, we received our bill yesterday and were shocked to see it was over $800. After talking to several customer service representatives throughout the day, we were directed here.
In the past we have regularly received warnings via text and email warning us that our minutes could go over (that we understand are a courtesy) up until last month when we did not, and went way over on our minutes. We have come to rely on these courtesy texts. When they were taken away we got hit really hard. Customer service representatives have said there is a good chance that this was just a glitch... that is costing me $600 on top of our bill.
If this were our fault, we would have no problem paying the extra cost but because it is a glitch and we found text message warnings as recently as March 27th (the month before our problem). This means that the one month we did not receive warnings, we went way over. We really do feel this isn't fair.
We have been on autopay for years simply because we have trusted Verizon Wireless to take care of us and our money. This trust has kept us from going to other companies and has also helped encourage friends and family to come to Verizon. We now feel like that trust has been betrayed and a big company just doesn't care. We run a small business and understand the importance of brand loyalty. The problem is, brand loyalty doesn't work when the brand isn't loyal to their customers. If we treated our customers in this manner, we would go out of business.
Every customer service rep we have talked to has been absolutely incredible. However, this system seems incredibly unfair. We are getting punished because of a courtesy that was regularly extended and then withheld... what kind of a courtesy is that? If it is a courtesy only when it benefits Verizon and not long time and loyal customers, it really isn't a help or a courtesy. We would love to continue to be loyal customers for many years to come but at this point, we really do have to re-think things.
This is particularly hard to swallow because every person we talked to yesterday said we are paying these fines due to a technicality in the policy (the text messages are technically a courtesy) that covers the fact that there was a glitch in Verizon's system so we didn't receive this tool that we have come to rely on. Basically, we have to pay for Verizon's glitch. We do not understand how this is good customer service to stick it to loyal customers who have loved your company for years.
Yesterday we did some cursory research and another company assured us that this kind of thing would never happen with their service. They are also less expensive. We have always had zero problems with Verizon's cost because of the quality service we have received. We also have believed that the business model and leadership of Verizon is solid and other companies have cut corners to give customers lower costs. When higher costs aren't met with higher standards, it makes it harder to spend more on a company. Yesterday, in order to avoid another glitch we had to sign up for a plan that is $20 more per month. Once again, everyone we spoke to yesterday was incredibly kind and were doing their best to help. They did as much as they could and said their hands were tied by the system. But, they could not fix our problem.
The question is, who do we talk to about getting this matter resolved? We spent hours on the phone yesterday and the reps basically said we should write a letter and post here.
Please help me as we'd like to continue with Verizon and restore our trust in this company.
Thank you for your time.
Sincerely,
Robert & LaurenWow!
This similar scenario happen to me yesterday, my billing cycle began with 54minutes of peak/land line used. I immediately checked my call log and there were No calls of such made at start of cycle. Called Verizion and got a nice rep, but she was New cause she kept putting me on hold to inquire with a manager. first she stated that those minutes could've been from two months or so and are just now hitting your bill usage. Are you fricken kidding me? With technology as advanced as it is, your saying it takes that long to log a call? ** I'm not buying. So she transferred me to a Tech. Support person who was very knowledgable and assesses the problem right away as a"Glitch" in Verizon's System. He assured me someone would call to confirm the correction and reverse any charges.
What if I had not checked online my usage? Which I never do. I just happen to log in to view a new phone for upgrade. i do know if this glitch is not fixed after 15years with Verizon in 7days they will be retired from my use. It's sad to know how many other customers are being charged in this manner without knowing. If Verizon is not working effortlessly to fix or correct this problem, then it looks like a greed for profit situation. -
Please read, Unlimited loyalty gone.
We have been a Verizon customer for many many years now. Since they bought out Bellsouth Mobility back I don't know when, probably 20+ years ago. We have had our ups and downs over the years and have recommended and praised them to hundreds if not thousands of people during that time. But over the last few years it seems they just dont care about there customers anymore, just how many new ones we can get. When someone asks me about Verizon now all I can say is they have service here and I don't feel like I could recommend them over anyone else. It used to be just the opposite, I would say "There's no one better than Verizon" but not anymore. Over the last few days they have once again fallen another notch.
It started with this Share Everything Plan that everyone is so upset over. So back on June the 14th I ordered me a new Galaxy S3 so I could keep my Unlimited Data Plan. And no I'm not one of these people the abuse the system as I only use about 2GB a month, and that is with three smartphones and two basic phones on our account. That's right a total of five lines. Anyway I called Verizon to check the status of my order on Monday July 9th and they told me that my order had been cancelled. Why? i asked and they could not tell me.
What transpired during the initial order was the person on the phone that placed the order tried to save me some money. They first ordered it on a different line the was upgradable (instead of mine) because she thought she could save me an additional $50 but it didn't work. So then she cancelled that order and reordered it on my line and everything seemed fine. Went throught the terms of service at the end of the call and the whole thing. Then they sent me a TXT the next day and said if I want the order to complete I needed to log into my account and confirm once again which I did.
Back to Monday when they said my order had been cancelled. They attempted to recover the order but were unable to find it. They could see the order had been cancelled and saw my confirmations of the same order but could not retrieve it. So here's the problem, my line shows that I have a phone on order so they can't reorder me a new phone. But the order they show active has been cancelled so I won't receive a new phone. Either way I cannot get a new phone. I have been on the phone with Verizon for approximately one hour a day for the last three days trying to get this resolved. In the middle of all of this they said if they did order my new phone that I most likely would not be able to have my unlimited data anymore because the order was not placed before the new plan took affect. So grudgingly I agreed to go to the new Share Everything Plan, changed everything over, and low and behold I still can't order a new phone. Why? because I already have one on order that has been cancelled.
Now I figured over the last 20+ years that I have been a verizon customer that we have donated or payed through bills and new phones a sum of around $50,000! That's right and this is not an exaggeration. Now we"re not rich by any stretch of the imagination. Were just your average family who lives paycheck to paycheck and shares an account on verizon because it saves us some much needed money. But we have a good family that shares in the expense. When we upgrade at the reduced price it still is hard to do. But I do anyway because I like to have a new phone sometimes. This last experience sure took the fun out of that.
So I said to the nice girl this morning, who swears I'll be able to buy a phone tomorrow, because they go onsale everywhere, how about when I order it tomorrow you give me free overnight shipping. Her response was "we"ll see what we can do". Really? Not "yes sir we can do that". Come on were talking $20 bucks in stead of $15, whatever they pay were only talking a few bucks. Wow, Really? we'll see?
We have three smartphones that I would like to upgrade but how can I do that when they still can't do the first one. And after three days and three hours on the phone you would think someone would take notice and say "Hey we to get this resolved".
Verizon really has no benefits or rewards for customer loyalty which is sad, because we are the ones that pay the bills when they sell a phone to someone who defaults or otherwise rips them of on their service. Were the stability in the company and we get treated like every bad customer that comes and goes. Verizon, you need someone who can step back from the rat race and say "hey we to to have a little more loyalty towards our customers" then maybe you will see a little more growth in your customer base that has been eluding you. I for one am someone who has lost his loyalty.
P.S. my number ends in 0737 if by chance someone would like to call from verizon. Administrator-Please forward this to someone in verizon who can help other than customer service.I have to disagree with you in part here. I completely agree with the statement about Verizon being run by humans and humans make mistakes (why we call it being human when it does happen). I also agree that the benefits are good overall network coverage and lots of equipment choices, yet I disagree with the subsidized phone pricing being a benefit. The reason I disagree with this is, Verizon gets paid money from all of the App companies that have an app forced into the OS. This is to supposedly keep the cost of the phones down for the end users, and it does not go down. As a matter of fact it is just the opposite. If you buy a phone at full retail, Verizon still gets paid for the subsidy on your phone because all of the bloatware is still on your phone.
Secondly, a portion of your monthly bill goes to pay that subsidy back to Verizon and if you go past your contract (your contract ends and you do not upgrade, you go back to the month to month on it) that portion of the bill that goes to pay back the subsidy, keeps getting paid to Verizon as pure profit
The really big difference I think though is (back to the human part) since we all know mistakes are made, the measure of service now shifts from the mistake itself to how the mistake was rectified. If it is rectified by the company (any company not just Verizon) as We are so sorry let us fix this right away for you and I will monitor the account and make sure this does not happen again, then the company has built a loyal customer (with me Verizon hits this mark about 80% of the time). If however, the company shifts the blame to a third party, or gives the Verizon Company Line of "this is the first I am hearing about any issues with XXXX phone", and the issue is clearly outlined in not only these forums, but also documentation that Verizon Keeps of Known issues, then you end up losing a Loyal customer who will only stay with a company for a reason that benefits the user.
Example, I got much better Customer service with AT&T and if the service and usability of the network, and the equipment was the same as Verizons, we would not be having this conversation as I would still be with AT&T. unfortunately for AT&T their network is substandard, has a lot of outages etc... so it is in my benefit to go to another company for my service. A company that will give me some benefit of using the service like reliability, or usability, or selection of equipment will catch my attention a lot faster then price. Again Verizon meets this portion 97% of the time (with me) so not only do I have the service, reliability, selection of equipment on board, they are usually easier to deal with and they can usually understand the problem and try to help. That is what built me to a loyal customer of Verizon, and even through ups and downs like we are currently going through, I am still loyal. -
R184 System Update - Scheduled to go live March 26th, 2013
We are announcing a new Business Catalyst release, scheduled to go live on Tuesday, March 26th, between 1AM - 6AM PST.
Please refer to our blog post for an overview of all major changes.
Minor enhancements and cosmetic improvements
When disabling the web app item detail page a web app, the system will now hide the web app item URL, web app item preview, web app detail templates
Fixed some Internet Explorer 10 issues, impacting the WYSIWYG editor and the lists from the admin interface
Email campaigns wizard will now display the time zone to offer a better indication on when the campaign is scheduled to be sent
Page redirect protection will be enabled for all sites; if you plan to redirect users to external sites using PageID parameter, than you should whitelist the URL through the Secure Domain Redirect interface
New InContext editing interface
We're working on a new and improved replacement for our existing InContext Editing feature (ie. "Edit" mode), and are opening it up for public beta testing on your sites.
The new editing experience no longer relies on Flash/Flex and is written purely in HTML5/JavaScript. You can enable the new editing experience under Site Settings > Beta Features.
Issues fixed by May release
Issue #
Description
2792792
Products export will now save CSV files to allow HTML content being correctly read by Excel when opening the export file on Mac computers
2876636
Customers can now create Customer Reports on CRM Forms that include a + sign in the list of available values
2892073
Updated "Visits by source" report to exclude the site domain
2978194
Updated the ADORA template to remove an absolute link from the registration page
3078126
Updated {module_title} to add the "output" parameter which control what information will the module display: ID or Value;Available options for the parameters are: id and value; default value is id for backwards compatibility;
3318286
Fixed an issue in the Payment Gateway user interface that was blocking users from deselecting an Offline Payment method and use PayPal standard instead
3329461
Updated {module_productresults} to add the "Hide Secure Items" parameter that will allow users to hide products in secured catalogs. The parameter supports two values True and False; By default the module is set to false so that it preserves backwards compatibility.
3329489
Fixed an issue causing blog comment notifications to be sent to the wrong role
3055119
Fixed an issue causing the webapp role responsible to receive the comment notifications instead of the comment role selected
3334627
We've made the /ModulesTemplates folder available in webBasics and webBasics+ plan types so that partner can update the social media module layouts
3349030
Fixed an issue causing the Close button from CRM > Type Manager panel to not work on Internet Explorer 9
3316248
Fixed an issue that was causing invoice to be printed as a screenshot on Internet Explorer 9
3347303
Updated currency for South Georgia & South Sandwich Islands
3352869
Fixed an issue causing the delivery date to be moved to the next day when editing an email campaign
3359498
Removed references to Business Catalyst from the Java_DynMenusSelectedCSS.js script file for better white label support
3489941
Removed site plan and details link for webBasics and webBasics+ sites that are under consolidated billing
3506753
Getting started videos have been removed from Partner Portal
3513631
Fixed a bug in the new email editor that was removing spaces between words when creating links
3491721
Updated the Image Picker in the new email campaign editor to display image preview for images that contain spaces in their names
3514304
Fixed an issue that was blocking users from replicating a site for with product variations enabled
2591940
Improved performance on the old file manager so that it will compute and display dimensions for a larger number of images.
2736799
Fixed a bug that caused incorrect add to cart link to be generated by {tag_relatedproducts}
3101268
Updated the Tribecca template to make the My Cart link relative instead of absolute
3045069
Removed "Show more feeds" link from Weekly reports emails
3044175
Updated {module_pageaddress} so that it outputs the SEO friendly URL
3367788
Fixed an issue causing secure zone subscriptions to expire 1 day too early under certain cases
3488788
Fixed an issue causing secure pages to be listed multiple times in Pages list user interface
3487829
Fixed an issue that was generating an error in the Overall Summary chart for loyalty email campaigns
3363891
Fixed an issue that was causing the web app name to not be displayed in the Site Manager > Secure Zones > Secure Content when securing web app items
3489830
Updated SEO migration tool so that it will also migrate pages that only have SEO description defined
3502202
Updated database index to fix an incorrect attribute options ordering when outputted by {tag_attributes}
3107736
Updated email campaigns to prevent emails from being sent twice to the same email address, when the address was used simultaneously by a contact and a company
3433145
SEO - updated the web apps rendering so that it will display the web app item title, if defined in the page or detailed layout instead of the web app name
2968068
Fixed an issue on CRM > Orders interface that was causing the Print button to not be displayed right after creating a new order from admin
3475527
Updated the online editor to also display styles defined using IDs in the Apply CSS drop-down
Note: This bug fix was reverted
3487847
Fixed an issue preventing the WYSIWYG editor from inheriting CSS styles from templates
3434250
Fixed an issue where affilitate commisions were not recorded properly when using PayPal Standard as payment gateway
Message was edited by: Florin Carlig on April 29th, 2013Hi Jack,
Let me help explain what tags we have presently that provides details about webapp A and B. It seems you might be slightly confused on the purpose of some of these tags and what they intend to output.
Here's a screen cast of an example located on my test site: http://test0101.testsuite.biz/test/test1
This is pretty much how it'll work based on the tags that we have available at this stage. If you are looking to set something up a bit differently let us know so we can possibly help you further.
In the meanwhile, many of these tags where just recently introduced in our March release. More details under "web app improvements".
- http://www.businesscatalyst.com/_blog/BC_Blog/post/Announcing_our_March_2013_system_update /
Let me know if you have any further questions or concerns.
Thanks,
-Sidney -
Awful shopping experience and potential massive system flaw on Preorder Consoles
Hello, I wanted to take the time to write a lengthy post as it seems BB Corporate is active here and tends to take the feedback given here seriously to document my terrible shopping experience recently at BB store #293 in Rockville, MD.
To give some background about myself, I am an ITPro that has very fond memories of buying some of my favorite tech toys through the years from BB when I first started getting paychecks in High School and I'm now in my mid-30s with considerably more spending power. Even with the rise of online competitors like Amazon and Newegg, I still had a soft spot for BB and their big box presentation while local competitors like CompUSA and CC fell by the wayside. I was happy to see BB make a comeback in recent years and their RewardsZone (MyBB) rewards system has been a mostly trouble-free experience since its inception.
Over the last few years, I tended to make a lot of my big ticket purchases at BB due to the flexibility of their no interest financing, or the option to get 5-10% rewards on purchases paid in full, enough to qualify me for various levels of Elite membership ($2500-3000 spent per year). I was on track again for similar spending this year with the purchase of a Surface Pro 3 for my girlfriend, which I paid in full to receive the 10% in rewards for ~$90 in Reward Certs.
We decided to check out the new consoles as well, and she favored the white edition PS4 so we went ahead and pre-ordered the white PS4 Destiny bundle on Aug. 29 2014 on a whim. I took the option to pay it in full to get the benefit of the 10% rewards and was assured by the sales rep Jesse that the 10% rewards wouldn't be a problem when I picked the console up after the promotion ended, because I had already paid in full.
So we came back on Destiny launch day, 9/9 and it was perfect, great in-store experience that you simply cannot get buying online. Walked in, Jesse was there again and had the console under the counter and even the local Sony rep was there, talking up the game and console. Best part was they started throwing SWAG on us, PS4 lanyard, Destiny Bundle T-shirt and apparently there was even a free Gamers Club Unlocked membership I didn't even know about (I do a lot of research on my buys but again, this was bought on a whim) that was active, so I really felt great about my purchase with a fantastic in-store experience. We went ahead and picked up Last of Us Remastered too, since we loved it on PS3 and we got 20% off with our new Gamers Club membership!
But that's when things started to go downhill. Apparently there was a new employee working that day that Jesse was training, I am not sure if that was where things were missed, or what, but Jesse has provided me great service in the past so I don't really fault him here. We also wanted to apply the $95 in certs to the transaction that would have totaled around $463, so with the original prepaid amount of $450 minus the $95 in certs, we should have been owed ~$80 back to the card.. Instead, I was asked for my BB Credit Card again and it was swiped thinking that was to get the ~$80 back on the card, but apparently it charged the card again for the balance of $463 minus $95 in certs. I thought the transaction was a bit off, but figured they would just reverse the original $450 prepaid amount to charge the new transaction.
Fast forward a month, on 10/11, I checked my BB Credit Card statement to pay off the PS4 and was shocked to see an interest charge. In 3-4 years of having this card, I have never been charged interest once. It was a non-trivial amount of $13 and I traced it back to the 8/29 pre-order for $450 that I thought was reversed in-store. I was then even more shocked to see the 2nd $364 transaction on the card, so I had essentially PAID FOR TWO Playstation 4 consoles!
So I immediately gathered up all my documentation (CC statements, RZ print outs, pre-order and in-store pick up receipts) and headed back to Best Buy. It was a Saturday so things were busy, but the initial CS reps were responsive and tried to help with the situation. The problem is, no one knew how to fix it. Apparently, there is/was a *MASSIVE* glitch in BestBuy's point of sale system where you cannot apply both a preorder AND a RW Cert to a single transaction. The system applies/attaches the preorder to the transaction but does not reduce the balance by that amount, because it is overwritten by the Reward Zone cert transaction. It took at least 1 hour for 2 knowledgeable and extremely helpful tech managers (Alan and a woman I believe named Sheila) who almost immediately identified and acknowledged they had seen this problem before. They also said the sales reps should have known this.
The problem was they kept insisting they could not simply return/void out the in-store 9/9 transaction of ~$363 because it was over 1 month and closed. They also said they could not simply refund the $450 prepaid amount because the system was showing it was already applied to the in-store pickup transaction, even though the receipts, my CC statement all clearly show the in-store transaction was NOT reduced by the $450 prepaid amount.
Now here's where things get ugly, one manager, Nucleo, was called over and simply did not have any intent to help. One of the employees I would prefer not to name said they believed he just didn't know how to fix the problem and they would prefer to just go to their General Manager, Dave. Dave was busy on Saturday, I am sure, so it took him some time to come over, but he genuinely seemed interested in fixing the problem. Together with Sheila, they came up with the solution of voiding out the in-store transaction manually, and then scanning a return for a $15 accessory item to make me whole on the interest I was charged. They also said the prorated portion of the Reward Zone Certs of ~$87 would be refunded to my BB account within a few days.
I thought that would be the end of it....until I checked my BB account a few days later and was shocked to see I had a NEGATIVE balance in RZ points. Voiding the in-store transaction of $363 without refunding the $87 in RZ certs left me in a negative balance! Again, I made my way to the Rockville BB store with all documentation in hand and this time, I packed up the PS4, which I had seldom-used at this point because I simply did not feel the transaction was completed. I fully intended to just return the system and either wash my hands of this transaction, or return it and try to complete the transaction from scratch.
This time, unfortunately, the GM Dave was not on duty, it was only Nucleo. Sad to say, he actually provided better customer service when he tried to ignore the problem. This time, he tried to indicate it was MY FAULT that I allowed myself to be charged twice, asking "what I want to know is, if you paid for it why did you let us charge your card again?". I replied that it was a FLAW IN BB's SYSTEM and that I assumed HIS employees knew what they were doing because I simply do NOT PREORDER consoles on a weekly, monthly or even yearly cycle. At this point, both of our voices and tempers were escalated, it was one of my most unpleasant in-store experiences especially knowing I was being wronged and this person Nucleo had no intention of trying to fix the problem caused by BB's system. In all of this transaction, this dealing with Nucleo is the only reason I am writing this post now, I feel everyone else did their best to try and fix the problem, but this guy is just in the wrong business because his customer service skills are awful. Ultimately the visit ended with no resolution, the employees that had been helpful throughout (Alan, Amber, and one other tall younger man) insisted the certs of $87 would get credited back in a few days and the credits for the original $450 prepaid would also come but may take longer after they spoke with MyBB reps on the phone.
So I waited patiently for another 2-3 weeks and the points from both the prorated $87 rewards (original $95) and the estimated 2250 points ($45) from the 10% $450 prepaid amount had still not yet arrived. When they didn't, I took a different tack and contacted MyBB Elite. The rep was responsive and understanding, and it took a good 10 minutes for her to get her bearings while I explained the situation. I also provided all of my documentation and she was able to verify and document it in her notes. She immediately re-issued or pushed through the $87 in Reward Zone certs from the refunded in-store transaction while I was on the phone, and said the remainder $450 was also in process and should come through in 5-8 business days.
I had to call 2 more times, both times the reps insisted the $450 prepaid was still in process and approved, but it was most likely the same glitch that prevented the prepaid from being applied properly, it simply could not get points attached to it because it was counted as part of another transaction. The 3rd time I spoke with a supervisor/escalation rep and they said the transaction would be funded.
Finally, I called up again a few weeks ago and was at my wit's end because I still did not see a resolution. Somehow, this rep was able to push the amount through which was $45. It was unattached to the original transaction as just Customer Satisfaction. Throughout this experience, I do feel everyone was interested in trying to get this resolved for me except for Nucleo, who really tried to make me feel like this entire ordeal was MY FAULT. The BB rep on the phone apologized and said she hoped this had not impacted my willingness to shop at BB in the future, but I answered frankly, that it has impacted my willingness negatively, as there was numerous deals on various tech toys and gifts in the last few months that I simply did not feel good about making at BB due to this experience.
I wanted to post this so that you can use this feedback as it shows how quickly someone's opinion and preferences can change on a single bad shopping experience. And while I am not one who is going to take a faux-stand and say I will never shop at BB again, I will certainly look at more alternatives rather than going to BB for certain buying habits in the future. Oh, and someone should speak with Nucleo, he is absolutely in the wrong line of business.
Thanks for reading! I will be happy to provide any documentation or member # via PM for your verification if you are interested. Some of the dollar amounts are rough/estimated as this transaction is now so old it no longer appears on my recent 3 month history.
Regards,
JerryDear Jerry,
Thank you for coming to us on the forums and sharing your recent tribulations around this purchase. I can fully empathize with your disappointment in the treatment you spoke of in your post as I have experienced this with other retailers in the past as well. Any frustration this lengthy experience may have caused you is completely understandable. For something that seems like it should be so simple from a customer standpoint like correcting rewards points, can sometimes not be so cut and dry on the other side of things.
I had the pleasure of being a manager in our stores for a couple years before I came to work at the corporate level. There were interactions that challenged my knowledge level and my patience in that time, but I was always working to educate the customer and leave them feeling heard and appreciated. This should be the goal of all of our managers to express through their words and actions with our customers. My apologies if you didn’t witness this in your exchanges with Nucleo. I can fully empathize with your disappointment with the treatment you spoke of in your post as I have experienced this with other retailers in the past as well. Using your email address you supplied here on the forums, I was able to verify your interactions with our phone support and that your points issue appears to have been corrected. This process should not have taken as much effort and follow up on your part as it did.
The information regarding the preorder points issue you described has been documented here for review by the appropriate business teams. Your feedback has also been passed along to the General Manager at the Rockville, MD (store 293) location to be used for coaching and training with his team. Please don’t hesitate to reach out to us with any other questions or concerns. I am genuinely sorry that this occurrence has damaged your inclination to come to Best Buy for your technology needs, and I hope you will continue to visit our stores in the future. Your loyalty is much appreciated.
Warmest regards,
JD|Social Media Specialist | Best Buy® Corporate
Private Message -
Verizon Complaint - Harassment, Lack of Customer Service, No Loyalty
After searching long and hard, it appears that there is no place to lodge a formal complaint against Verizon. I saw where an individual was told by a Verizon rep the place to file such complaints is right here in the forums. This seems to be an ineffective place to make such statements. With that said, I write this post with little expectation of satisfaction in remedying the complaint. In fact, I believe that the lack of a formal complaint channel points to the company's unwillingness to address key business points, such as customer satisfaction. Consider this post an indication of one such dissatisfied customer.
As background, I have been a steady Verizon customer for about 12 years (give or take a year). In that time, I have re-signed my contract several times, purchased numerous phones, and have been timely in my payments. I seem to recall even being given a Verizon VIP status which gave me a discount on phone accessories. The fact that most people reading this will have never heard of the Verizon VIP status points to how long I've been with Verizon. My first Verizon phone was the Motorola V60i - top of the line at the time.
Recently the credit card I have on file for auto payment expired. I knew it was going to expire and updated the account with a new card as soon as it came in. Apparently this update did not stick. About two weeks ago, my wife began getting phone calls from Verizon. Each time they called it would be from a different out of region phone number. Each time an automated voice would leave a message about "changes to the account". The calls increased to about 5 per day with several text messages throughout. The first red flag is that her line is a secondary number, whereas mine is the primary. If there was a legitimate change to the account the assumption is that Verizon would call the primary account holder. They did not.
This continued for about a week. The calls and the texts would come during working hours and into the night. I called one of the numbers back. After pressing # to do this and # to do that, I was given a choice. Press 1 to make a payment to the account or press 2 if you have already paid this bill or are planning to pay this bill immediately. Since I had already paid the bill, I pressed 2. The next automated message I received said that they would be expecting my payment within 7 days and the system would be updated to reflect I had made this agreement. Failure to pay the bill would cause an interruption in my service.
My problems-
1. Verizon should not call a secondary number to discuss the bill. Luckily the secondary number was my wife's. What if it had been a teenaged child?
2. Verizon should not engage in such harassing techniques. I have been a loyal customer for over a decade. A simple phone call from a human and I would have happily explained I did update the card, and then paid immediately. It went too far for no reason.
3. As a customer, I should have quick access to a customer rep or another avenue, such as a dissatisfaction form in My Verizon, to outline this in a more conducive manner than simply throwing it into a pile of other forum posts with no sense of direction or expectation of satisfaction.
It is for all these reasons that I am dissatisfied with Verizon currently. I am not currently under contract and I am shopping for another provider. While I'm sure many of my complaints will be found in the other provider, at least I have the satisfaction of taking my dollars to a company that will treat me like a number on a page instead of the misconception that customer loyalty still meant anything. Again, I am not expecting any followup from Verizon, but you have my phone number if you would like to discuss this. After all, a simple call from a human in the first place would have corrected this.
My question to the rest of the forum is, "Am I the only one in this boat?"JonathanK_VZW,
First, thank you for taking the time to respond to my statement. I appreciate that you took the time to do so.
However, I don't think that your response addresses my concerns. I thought I had paid the bill as explained above. Your financial department acted in a harassing manner by contacting a secondary phone number on my account. Not once did anyone or any automated communication contact my number, the primary account holder. The calls were as many as 5 in a day with several text messages. The voice messages, when one was left, and the text messages simply stated there had been changes made to the account - hardly helpful information. In fact, the limited statement was so cryptic that they were originally dismissed as being spam - a reasonable conclusion considering the amount of spam messages Verizon customers receive concerning "changes to the account".
Luckily, the secondary number your financial department decided to contact was my wife's number. Had it been a child's phone this complaint would have a completely different tone. However, any number of other customers may not be so fortunate. You stated " financial services may try to reach you on an alternate line or a contact number we have on file" as an explanation of this practice. That answer only makes sense if you attempted the primary account holder first. You did not. Not one instance.
You mentioned that the volume of your customers prevents you from giving each one personalized service. I realize Verizon must have an enormous customer base and the sheer volume creates complications that I have not yet considered. May I suggest you make a special effort to show personal customer support to long term customers with an established track record of timely payments and patronage - such as myself. The silver lining for Verizon is that your current solution to your customer load crisis - harassing phone calls, ineffective automated services, etc. - may self-correct your problem. More and more folks will take their wallets elsewhere and you may find that managing effective customer service becomes a simpler task.
Again, JonathanK_VZW, I do want to thank you for taking the time to respond. That is sincere. I did not expect Verizon to respond. I would like my concerns to be passed to your supervisors and then to their supervisors. I believe my points are valid criticisms of Verizon's current customer services. I realize that customer service is traditionally a difficult role as it is the department the angry, screaming, crazies contact to vent. I hope the simple measure by which I've responded shows that is not the case here - that the criticisms point to terrible service and any industry that values its customers would want to at least address the key points therein.
To the supervisors:
Any productive organization has to develop strategies that manage the work load while maintaining quality. Those strategies must be reevaluated from time to time to measure effectiveness and quality. This message points to one of those times. Effectiveness and quality are lacking. It is time to develop a new strategy - a working strategy. Your customers would appreciate it. -
Migration of Business Partner data, from a legacy system, does not work
Hi All,
We use a non-SAP application where our customers sign a loyalty program. The database created is replicated to CRM 7.0. However, when we create the Target Group in the Web Client UI, the number of Business Partner in CRM is different from the number of BP registered in the legacy system.
Any comment can be helpfull.!
Regards
MaríMaria,
Please explain the way the data has been replicated,,, ( Errors in few records - answer to the mystery)
Is there any segmentation basis used while creating the target group? ( Segmentation Basis - answer to the mystery)
What are the data sources used for segmentation? ( Different query settings - answer to the mystery)
Regards,
Piyush -
R183 System Update - Scheduled to go live January 22nd, 2013
We are announcing a new Business Catalyst release, scheduled to go live on January 22nd, 2013.
Please refer to our official blog post for feature highlights and other major improvements slated for this release.
Minor enhancements and cosmetic improvements
Grid state persistence - with this release, most of the item lists displayed in the new admin user interface will remember the page and the sorting applied on a list when returning from a detail page
Edit page properties in the new file manager - when editing a page in the new File Manager, users can now edit the page properties like SEO metadata, workflows, or page visibility
Updated Email Marketing wizard - we have simplified the email campaign wizard and merged the Type and Details step into a single one, updated the controls for setting up one-off and loyalty campaigns and moved the Email Campaign subject into the content tab
Secure domain redirects - starting with this release, all sites will have this feature turned on; if you redirect users to external websites, you should add those into the Secure Domain Redirect list
SPAM improvements - comment workflow emails are no longer sent when a comment is marked as SPAM
Limit the comment size - Starting with this release we will be limiting the number of characters per comment to 4000
URL Redirects have been moved from Page Details into Site Settings menu
Display how many subscribers are into a Secure zone in the secure zone list view
Renamed Advanced View tab from pages screen into List View and made it default for new sites
After sending a Campaign, don't show an error when redirected to the Stats tab
Site Manager > Pages - Advanced view buttons don't have the same height. Might be reproducible in other screens as well.
Updated styling for Find a Customer link found in some CRM screens
Updated styling for date picker in filters
Fixed icons alignment in the left menu + redesign some icons to be more relevant to the menu entry
Fixed footer spacing in some screens (it's not always the same)
Page status (draft/live) was sometimes shown in grey
Table list headers font-size is not the size in specs (all over the UI)
Consistency improvements for links color (we had 5 different tones of blue, now we have just one as in specs)
Site Manager > Page Details - Breadcrumb has the correct caption Pages instead of Web Pages
Web Forms field categories wrap on the second line when the window is resized although the screen is optimized for low resolutions screens.
Wizard tabs have different colors depending on the screen.
Issues fixed by January release
Issue #
Description
3157574
Updated catalog import to fix an issue causing the import to generate incorrect URLs when more than one sub catalogs were created
3164429
Enforced shipping tax validation to prevent site customers from bypassing the shipping tax payment
3343967
Updated the Site Setting > File Manager to prevent users from creating folders that contain # in their name
3365127
Fixed an issue on list views that was causing an incorrect datetime sort (was sorting alphabetically by date instead of actual date)
3373342
Fixed an issue that intermittently generated an error when when accessing the BC Toolbox panel, via the admin console
3377475
Updated secure zone login to prevent an "Secure Zone Access Expired" error being displayed when trying to log in a secure zone in some cases
3430574
Fixed an issue causing muCommander to corrupt files on upload using SFTP
3430529
Fixed a file system issue that was not preventing SFTP clients from retrieving missing or corrupt files on the remote storage and overwrite the client local files
3428565
Fixed an issue preventing users from connecting to sites on SFTP, using FireFTP
3430571
Fixed some issues causing CuteFTP and muCommander for Mac to corrupt files on upload
2908470
Updated {tag_recipientfirstname} so that it will render an empty string instead of "Recipient" if first name is empty
2567870
Updated the Dynamic Menu sorting functionality to fix an issue that was causing menu items to intermittently skip a few places
2567955
Fixed an issue causing state tax to not be covered by the gift voucher payments on some occasions
2567515
Fixed an issue causing the Web App Edit Layout to not populate checkboxes that have the ampersand & in the name
2753571
Creating a new Free Shipping Type Option hides all other pre-configured shipping options in front-end for all the sub-domains of a website
3227500
Fixed "Add RSS channels to a WebPage" and "Get RSS HTML code" links from the "Actions" dropdown list in the new admin user interface
3344567
Fixed an issue preventing the get RSS HTML code link from working on the new admin user interface
3220522
Returning URL for DIBS payment gateway blank
3217223
Fixed an issue causing incorrect data to be displayed when using affiliate program tags: {tag_referralslastmonth} and {tag_referralslastweek}
3343296
Fixed a an issue causing the line item descriptions displayed on a packaing slip layout to be mis-aligned
2801224
Updated tag_productlist sorting. The sortBy parameter can now accept "releasedate" and "expirydate" parameters. We also added the ability to sort ascending or descending for any sort type. Example: in order to sort by release date ascending, use "releasedate asc". In order to order by expiry date descending use "expirydate desc" or simply "expirydate" which will work as before (dates are descending by default).
Deprecated functionality
{tag_tellafriend} and {tag_tellafriendurl} will no longer be available for use in email campaigns. Existing campaigns will continue to work as designed.Issues:
1. The ecommerce Stock attribute beta is live with the bugs reported in beta. Including the main one where if you have products with stock attributes, despite them rendering in the export file you can never import products back into the system because of stock sku features. Deleting all products allows you to upload with all sku information as a work around but on some uploads stocks are reset to 0.
2. Intermintant permission issues creating folders that have same name as web apps.
3. Can not make folders in BC editor (under develop) that are existing web apps
4. If you move a pre existing page via FTP into a new created web app folder and rename it to index.html It will not work. In the admin it has no file extension so you have to add it there.
5. Just had it confirmed by live chat support who replicated it on a demo site. Securezone update details form with custom CRM fields.
CRM fields will render current data but will not update the custom CRM fields in the crm on submission of the form. -
How to create business partner with Role : "Loyalty Partner"
Hello,
During the creation of Loyalty Program, we can add loyalty partners which are Business Partners created with Role --> "Loyalty Partner". In standard package I could not see the the Role "Loyalty Partner"
For this role to be available during the creation of Business Partner, does any business functionality needs to be activated or should we create new role "Loyalty Partner" through BDT
Thanks
RamHi Vishal
Thanks for your explanation but I think it has not answered my question fully.
Yes, I do agree that only Loyalty Partners can be added in a Loyalty Program and those are Business Partners.
If you read through my question, I have asked how the system differentiates between Business Partners for example a sold to party and Loyalty Partner. In other words, which part of data in the Business Partner is the one which actually differentiates a Loyal Partner with other Business Partners. I think, just creating a Business Partner with Role --> Loyaly Partner will not serve our purpose.
The BP view is the same and the BP Role category does not contain my customization to differentiate this
Hope you understand what I am trying to say. Please let me know if you have any questions !!
Regards
Ram -
Loyalty application error when creating records.
I am new in Siebel world and we have just installed Siebel loyalty and the Siebel Customer eLoyalty Portal on a sandbox to learn the product features.
The database has no data yet so I would like to create records.
So I start Siebel Loyalty 8.2.1 client, connect to the server, go to Loyalty Program Administration and click new to create a new program. I put a entry for the Name field and I have nothing to select from the Program owner pick channel window because I did not create a partner yet. So I start the Siebel Partner manager ENU application 8.2.1, connect to the server. I go in the partner tab and try to create a new partner entering a partner name.
Then I get this error when I press enter:
An error has occurred writing to a record.
Please continue or ask your systems administrator to check your application configuration if the problem persists. (SQL-DBC-00111) ORA-01400 cannot insert NULL into ("SIEBEL"."S_ACCNT_POSTN"."POSITION_ID")
I have Siebel admiinistrator access.
What I am missing here to be able to enter data. The only field mandatory is the Partner name...
Thank you for your helpYou probably want to create an account, link a partner to the account and then create the program.
- Hashim -
Loyalty Management - Redemption Process
Dear Experts,
I'm a bit confused with the Loyalty Management redemption process with Partnership. Would appreciate if you could clear my thoughts.
We have this process where currently, when a customer buys a product from a retail partner, the customer earns point and the points are deducted from the partner point account. However, when the customer redeems points (eg: using points to purchase a product from the partner), does the points actually being return back to the retail partner? Because at the moment i do not see how this works. My assumptions are one of the following options below:
1) When customer redeems point, a membership activity is created. At the same time, a partner activity is also created. Points are deducted from the member's account, but at the same time, points are added into the partner's membership account. This would mean we have to create a Membership for a Partner. Does this makes sense?
2) At the end of the month, a report will be pulled out to see the number and total amount of redemptions by customer for that particular retailer/partner. We will then create a credit memo request seperately to settle the amount with the partner
3) Or for every customer redemption, eg: customer redeems a packet of drink for 100 points, then credit that 100 points back into the Partner Point Transaction. But how is this being done? Currently the system only auto deduct the partner point transaction for customer's point earningHi Pradeep,
Please refer to the help file for more information.
http://help.sap.com/saphelp_crm70/helpdata/en/2e/26c437e5dc412db8adc99135fe3484/content.htm
http://help.sap.com/saphelp_crm70/helpdata/en/d9/407fbbba274c8c9df0248f56cc73e9/content.htm
http://help.sap.com/saphelp_crm70/helpdata/en/67/42ed4bf8f5460591bd302469f3b12d/content.htm
Hope this helps.
Regards,
Rashmi
Maybe you are looking for
-
Condition type not determine in sales order
I have condition record maintained for the condition type as per the order reason. When I create the sales order system is not reading the condition record so no condition type is getting determined. Pricing date from the sales order is within the va
-
Is it possible to use IQS1 for purchase orders without material master?
Hello, We are currently trying to come up with a way to send a notification on purchase orders which have GR's posted against them so that the purchasing team/requestor know that products have been shipped. We have an office in Qatar where we would
-
Bonjour, mon Imac est sous OSX 10.5.8 et je n'arrive pas à synchroniser mon nouveau Iphone 5 faute d'avoir un Itunes 7. Comment faire ? Quelle mise à niveau est nécessaire et recommandée afin que tout fonctionne ? Merci. Hello, my Imac is under OSX 1
-
Why is my user id/pw not accepted by ICloud on my iPad but it is accepted by iCloud on my computer? I am using the same password for both.
-
Button to save attachments in Mountain Lion Mail?
In Lion there wase a button that saves all attachments to predefined location. In Mountain Lion i can't find it. Is it gone? Is there a way to get it back?