MacMini Server + TimeCapsule + Box (ADSL modem)

Similar Messages

• How to set up TimeCapsule (4th) to create own private (wired) network behind Airport Express (5th) that is set up to join existing wifi-network of fritz adsl modem/router?

  I work in an office building with free Wifi to connect to the Internet. I want to be able to use this internetconnection, but at the same time I want to shield of my own wired network.
  I've made the following configuration:
  - fritz adsl modem / router
  - Airport Extreme (5th gen) set up to join existing wireless network (green light, works)
  - Lan-cable from lan-port AE to wan-port TC (4th gen)
  - Lan-cable from TC to Mac
  - Lan-cable from TC to Printer
  When I set my TC (network-settings) in bridge-mode everything works fine, but my Mac and Printer get an IP-address from the fritz modem / router and are visible to others.
  I tried to set TC in NAT/DHCP-mode, but then I get the error message that I should set a static IP-adress for TC. When I set TC in DHCP-mode, it looses connection to the AE. I'm not sure what to do now. Does anyone know how to set up my TC and create my own private network and still be able to get on the internet?

  Hajenius wrote:
  Is there a better alternative? I'd rather not want to reset my TC every day.
  You are using free internet.. so there is a price to pay.. that is convenience and non-ideal network setup.
  The better alternative is to pay for your own connection. Then you are completely free of the possibility of others in the bullding seeing your connection. (as long as you secure the wireless).
  But I think you are probably over worrying about public wifi.. if it is setup right.. ask the building admins.. it should be setup so each user cannot see another users connection. This is typical for most wifi setup and simply means you can see internet connection but nobody else on the connection. ie other wireless users.
  Having a router with NAT makes it then more secure again and allows clients on your own network to interact with each other. But you can setup wireless to the free wifi for every client.. (depending on how many IP you are allowed).. and run a secondary network without internet access. This is easy for desktop etc where you have a wireless and a wired connection but less convenient for mobile devices.. unless you use a cloud connection and each client can link and share via that.
  Have I made the explanation worse??
  Think of it this way.. if you had 3 laptops.. all 3 could connect to the internet from the building wifi.. but they cannot talk to each other or share resources in local office. You can put resources out in the cloud, that can be shared.. but that adds traffic and most free services are not fast.
  Now you can also plug all three into Time Capsule by ethernet.. and share local resources. Files, printers backup etc. This network is not connected to the internet at all. Each laptop has internet via free wifi and local connection.
  For devices like iphones that have no ethernet or other method.. you could use local wireless and public wireless.. but in turns.. still the only advantage is less issues with double NAT.. if that causes problems.. then this is an alternative.

• Problem connecting to the server Timecapsule

    I am working with a Motora Surfboard SBG6580 Cable Modem going to my 4th Gen Airport Extreme, then a wireless bridge to my 3rd Gen 2 Gig TimeCapsule to extend the network, then using ethernet cables to TV, DVD and MacMini.  When trying to run a backup with Time Machine, or just using it as a hardrive, I keep getting the error message "There was a problem connecting to the server "Timecapsule" - The server may not exist or is unavalable at this time.  Check the server name or IP address, check your network connection, and then try again."  I have seen a lot of posts on this problem, but I still don't understand what the issue or resolution is.
    I have tried resetting the TimeCapsule, connecting the TimeCapuse with an ethernet cable, turning off wireless functions, wiped the drive and zero'd all data, etc., but with the same results.  I may be wrong, but this all seems to have started when I ran MATCH while using the TimeCapsule as a storage device for all my iTunes media - it corrupted all my data and showed my disk as full, though pretty much everything on the disk was missing.  All was working fine until that point.
    Any help would be nice.  Help!!
       Thanks in advance

  If you have backed up to 77GB or something then a backup has indeed been made.. On the TC there will be a sparse bundle and backup which can be mounted.. You cannot check the disk.. you check the sparse bundle.. which can be mounted.
  Please do the following.
  Disconnect and remove the TC from the network.
  Plug it directly into the computer by ethernet. No other connection to the TC.. turn off wireless and every other connection to the computer..
  If you still have issues.. press reset and redo the setup of the TC again.
  Run Time Machine and see if it works. If it doesn't work now you have serious issues.. I would guess at a faulty disk somewhere.
  What OS is on the computer? From the first post you use SL still.
  I would also take the firmware of the TC back to 7.5.2 as I mentioned and do full factory reset this time.. ie hold in reset and then power on.. continue holding in reset until led flashes rapidly.

• Is a Happy Marriage Possible? New Airport Extreme & ADSL Modem/Router

  Is a Happy Marriage Possible? New Airport Extreme & ADSL Modem/Router
  1. I’m writing from a rural town in Southern Nepal, very close to India. I’m planning to create a new WI-FI network at a small monastery here.  Ideally, we will have two parallel wireless networks: the first network produced by an ADSL router/modem and a second network produced by another router in “repeater” mode.
  2. Earlier, someone suggested that, when I post a question, I should provide as many details as possible about the situation here.  Forgive me if there is “too much information”.  I have to make a trip to the US to buy new networking equipment, so I very much want to get this right.  Once I return here, I’ll be pretty much stuck with whatever I get in the US.
  3. The future routers will live next to each other in an office and could be linked by a cable (if this is the best route to go).  We do not wish to “expand” the network (in the sense of making a larger WI-FI network), but rather wish to simply have two networks, hence one ADSL router/modem and one router with the “repeater” function (out-of-the-box without any jerry rigging).  Both WI-FI signals need to travel approximately 100 (largely unobstructed) feet.
  4. If my dreams come true, the second router would be an Apple Airport Extreme (AX).  An Apple router would be ideal because my experience with Apple routers is happy: they are easy to set up, reliable, and secure. Moreover, we use Apple computers and iOS devices here (and the new AX has the “ac” thing which will be preferable as we replace old machines with new ones).
  5. Yet, from reading posts and having my prior questions answered on this website, it may be that with an ADSL modem/router, all the ease and happiness of the Apple ecosystem is lost: while Apple routers seem to connect with each other easily, problems appear to arise when users try to inter-marry our non-Apple products with Apples.
  6. Our current, super-crappy 2wire 2701hg-t (ADSL modem/router) covers the 100-foot distance without a problem when it is working and there is Ethernet flowing to us.  Frequently, our connection is very bad, and I may be unfairly judging the 2wire 2701hg-t.  But, based on user reviews on the America Amazon.com, the 2wire 2701hg-t is pretty terrible: first it is simply old and second, among other problems, it seems to have a poor quality power supply unit.  I do observe that it frequently seems to be recycling from scratch as if it had turned off and restarted.  In any case, we are replacing it since it may be about 4 or 5 years old.
  7. In previous posts on this forum, “LaPastenague” responded to some of my earlier questions about AX and ADSL.  Among other things, he pointed out that (1) line-attenuation may be contributing to our poor connection and (2) we must choose a modem/router that is suitable for “long lines.”  I’ve looked at our current modem/router statistics page; however, there are no statistics for line-attenuation or noise.  (As you will see below, my strategy is to get the “better” modem/router that is suitable for long lines.)
  8. Concerning our ADSL service, these are the facts I’ve gleaned from looking at the current router’s configuration pages:
  Connection Type: PPPoE
  Currently, the router is configured to use WPA-PSK security.
  Connection Speed: Incoming: 1024 kbps & Outgoing: 509 kbps
  (The following information may be unimportant at this time.)
  Broadband Link Diagnostics:
  DSL Synchronization: UP
  G.DMT Signal: UP
  PVC Connection: UP
  PPPoE Service: UP
  PPP Authentication: UP
  IP Connection: UP
  DNS Communication: UP
  9. The ISP (Nepal Telecom) doesn’t supply a modem/router; however, they do have a list of (at times ancient) hardware and hardware vendors:
  http://www.ntc.net.np/internet/adsl/adsl_vendersConf.php
  10. Concerning what equipment is available here, what I have observed is that generally the ADSL modem/routers for sale locally, and in the far-away capital Kathmandu, and in nearby India are often also available in the United States, but they are the cheaper, older models.  I will have to buy the new equipment in the US this year.  At a different institution nearby, they are using the TP-Link modem/router td-w89016 which they purchased locally, I believe.
  11. Based in part on LaPastenague’s earlier advice, I want to buy the TP-LINK TD-W8980 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router (2.4GHz 300Mbps+5Ghz 300Mbps, IPv6 Compatible). This appears to be the most popular ADSL device on Amazon now.
  Will this modem/router work EASILY with the Airport Extreme in the manner I’ve described?  That is, connecting the two with a cable and creating two WI-FI networks.
  12. Also, is it generally correct that the best way to connect them is with an Ethernet cable: https://discussions.apple.com/message/23759755#23759755 
  13. In fact, does connecting them with a cable help alleviate some of the problems that can occur between the Apple device and the ADSL modem/router?
  14. If this will work, what “mode” will the AX device be in (again, in order to have two separate networks with separate passwords)?  I have heard of the “repeater”, “roaming” , and “bridge” modes.
  15.  Are there two levels of passwords which need to be considered?  Of course, there is the network and network passwords which we create here and which will be different.  But, does the Apple also have to have the ISP password like the principle ADSL modem/router?
  16. To set this up, what information do I need from the ISP (e.g., passwords, IPs…)?
  I think there are a lot of good reasons to use an AX router. Of course, if it is just going to be very cumbersome then, we would be loosing one of the best parts of using Apple products.  So, whoever feels knowledgeable enough to reply to this post, please be sincere if you think it is better to avoid the Apple.   Apple can rest assured that I will buy other things from them!
  In that case, I’d likely buy a second TP-Link device to create a second network:
  TL-Wa801NP [AP Mode Multi-SSID Mode AP Client Mode Repeater Mode (WDS / Universal) AP+ Bridge mode (point-to-point / point to Multi-point)].
  Thank you in advance. Long live Apple!
  Message was edited by: Jess1911

  I am not sure if there are different interfaces but my 2wire does an excellent job with line info.
  I get into this from browser.. using main IP.. in my case 10.0.0.138/MDC
  In your case it should be whatever the IP of the 2wire is, followed by /mdc
  Give it a try.
  As you can see it shows vendor and loads of info about the line.
  I rate it the best domestic modem for line info.
  A good modem actually albeit a lousy router.
  MDC is the diagnostics and Management Console.
  3. The future routers will live next to each other in an office and could be linked by a cable (if this is the best route to go).  We do not wish to “expand” the network (in the sense of making a larger WI-FI network), but rather wish to simply have two networks, hence one ADSL router/modem and one router with the “repeater” function (out-of-the-box without any jerry rigging).  Both WI-FI signals need to travel approximately 100 (largely unobstructed) feet.
  You are not repeating.. you are simply setting up two routers which are interconnected, so one is dependent on the other.. ie one is your adsl modem router and that will take the main router function. Your second router is really not working as a router, but as wireless access point (and switch if you plug things in).
  That is perfectly fine. You are not roaming in this case since both routers are running different wireless names and networks.. but they are actually using same IP range.. all devices are on the one IP network with two different wireless access points.
  4. If my dreams come true, the second router would be an Apple Airport Extreme (AX). 
  Apple router is fine for this. Easy to configure out of the box.
  5. Yet, from reading posts and having my prior questions answered on this website, it may be that with an ADSL modem/router, all the ease and happiness of the Apple ecosystem is lost: while Apple routers seem to connect with each other easily, problems appear to arise when users try to inter-marry our non-Apple products with Apples.
  The problem arises when you try and interconnect using  wireless extend or repeater.. you are not using wireless to extend, you are using ethernet. Wired has no issues.
  11. Based in part on LaPastenague’s earlier advice, I want to buy the TP-LINK TD-W8980 N600 Wireless Dual Band Gigabit ADSL2+ Modem Router (2.4GHz 300Mbps+5Ghz 300Mbps, IPv6 Compatible). This appears to be the most popular ADSL device on Amazon now.
  Will this modem/router work EASILY with the Airport Extreme in the manner I’ve described?  That is, connecting the two with a cable and creating two WI-FI networks.
  It is a good choice.. It should be fine considering how poor your line is.. this modem is proving to have a couple of bugs.. it does not handle torrents well but I would suggest your system is not being used for that purpose. It has some port forwarding issues. Again you are probably not going to overload it. 
  12. Also, is it generally correct that the best way to connect them is with an Ethernet cable: https://discussions.apple.com/message/23759755#23759755
  Absolutely best.. only decent method. 
  14. If this will work, what “mode” will the AX device be in (again, in order to have two separate networks with separate passwords)?  I have heard of the “repeater”, “roaming” , and “bridge” modes.
  Bridge. Although if it gives issues there is another method, although rather complex to setup.. not something to worry about now.
  15.  Are there two levels of passwords which need to be considered?  Of course, there is the network and network passwords which we create here and which will be different.  But, does the Apple also have to have the ISP password like the principle ADSL modem/router?
  Only the adsl modem has the ISP authentication.. it is the box that does the link. The TC just piggy backs.
  The passwords on the TC are for its Admin, wireless and disk access.
  16. To set this up, what information do I need from the ISP (e.g., passwords, IPs…)?
  For ADSL you must have the PPPoE authentication username and password.
  So, whoever feels knowledgeable enough to reply to this post, please be sincere if you think it is better to avoid the Apple.
  hmmm.. I am biased because I see the issues not all the good stories..
  The latest airport and Time Capsule seem to have a few pretty severe bugs.. if they happen to hit you, they are extremely hard to fix if you are in the middle of Nepal. And Apple service centre is a long long way away.
  I cannot answer your question from the point of view of a person on the ground in remote area. If the economics of the purchase works for you, great. Go for it.
  In terms of wireless coverage.. the Asus AC models or Netgear R7000 kill the Apple. Sorry but it is just fact.
  See reviews here.
  http://www.smallnetbuilder.com/lanwan/router-charts/bar/113-5-ghz-dn-c
  That is average.. if you look at the apple router in the worst location by changing the filters, it comes out worse again.
  I cannot post the URL to our local forum here.. (apple doesn't allow it). But in testing with apple clients the asus still beat Apple router soundly.
  Pure wireless range is not the only consideration.. but in a mixed environment and since the wireless on the 8980N is not too bad.. then buy Apple router for apple client devices makes good sense.
  Maybe the older Gen5.. or two of them.. would do a better job.. with a bit more tested and known hardware.
  One thing you do need to check.
  Routers from every other brand allow you to select country. Any country from anywhere in the world. Apple routers do not.
  If you buy an airport in North America it is coded to North America and offers just a few countries.. USA, Canada I suppose.. what else is North America??
  You cannot change it to Nepal.
  To get the one for Nepal you must buy the model that covers, South Asia I guess.. I am not sure which it is.
  See what the license information is for wifi in Nepal as it might be very different to US and therefore illegal for you to run it in Nepal.
  If only the whole world would just bow to America.. we could all follow the FCC regs..
  http://en.wikipedia.org/wiki/List_of_WLAN_channels
  This only applies to the Apple.. the TP-Link etc allows you to choose Nepal or correct country regulations for wifi.
  Buying modems has one tricky bit.. that the actual adsl ATM channel is different in different parts of the world. No modem is usually impossible to setup but some can be difficult if it is pre-configured for US.. this is easy to overcome generally as you can download a firmware for another locality, so you can have local settings.

• I want to use a headless MacMini Server as a webhost for four sites.

  I am considering trying the MacMini server to use as a webhost. I have a comcast business account with 5 IP's. It's an extreme connection speed package.
  My sites would be:
  2 Joomla! CMS sites,
  1 WordpressMU Site,
  1 SugarCRM site.
  I am looking for something an idiot could install and manage. I'm using a hosting company right now, but would like more control of my OS.
  I don't like the fact that Apple doesn't include phpMyAdmin as a standard package with Snow leopard.
  I installed the above scripts on my macbook pro through MAMP and MAMP Pro, but all I can get is local access. The public cannot access my sites folder (regular snow leopard). So, I was told that I need snow leopard server to accomplish what I want to do. Can anyone help me figure out what I need, and how it's done?
  Walt

  It does sound like a simple port forwarding thing.
  Do take care with that Comcast account. If my experience is any indication you will not get the advertised speed. If you read the agreement it is only guaranteed for the first few kilobytes or so of any transmission and then backs down to normal speeds afterward.
  Comcast will also do you a "favor" and turn the firewall on by default in the supplied modem/router. You have to call them and have them turn it off if it interferes with anything.

• Multiple domains and multiple IPs in the same MacMini Server

  I am sure that this topic has been faced already but I cannot find enough information to really dig into a solution.
  I have a macmini server with two IPs let say x.x.x.12 and x.x.x.13 .
  The server is set up on the first IP. It has his primary zone, machine record, mail aslias and www alias.
  Lets call the server domain server.domain1.com
  Everything works fine I have a couple of local users and a couple of LDAP users. Just to test the machine setup.
  I can send and receive emails using any of the users as [email protected]
  Now I would like to have another domain, domain2.com in the same server .
  The final goal is to have users under different domains. They have their own email box, calendar, etc.
  It will be preferable that I can share the same username with different domains. But I can live without that option.
  My first test was to have the second domain called server.domain2.com using the second IP. x.x.x.13 .
  For that I created another Primary Zone with domain2.com as machine record of x.x.x.13 . To use the second IP I simply create another Ethernet interface on the macmini.
  In the Mail -> Advance settings I added the host aliases as well as virtual hosting domains for domains2.com.
  With this setting I can send emails as [email protected] or [email protected] but when I replay to their messages I get a "Relay access denied" error from server.domain1.com .
  I also tryed another domain pointing to x.x.x.12, the same as server.domain1.com . I did not create any extra Primary Zone but the local host aliases and the virtual hosting domains.
  Same issue. I can send but I get a "Relay access " error.
  As you might notice I am a novice on servers settings. I just try to recreate a similar environment common to Virtual Hosting providers for my own website playground but I cannot cut through this email configuration obstacle.
  Any significant meaning that can be leading me to learn how to do it will be very very appreciated . (beside lynda,com tutorials that I followed already but do not mention multiple domains for mails).
  Thanks

  the problem I try to solve is to manage multiple domains in one MacMini Server.
  Having two IPs is secondary.
  I would like that each domains has his own users with emails, iCals, Wiki and web sites.
  The main problem is having emails to work for any additional domain beside the default one on the machine IP.
  I also got an additional IP address to be used on the same server hoping that it make things easier but apparently is making things more difficult.

• MacBook Pro's wireless connectivity with ZTE 531 ADSL modem using BSNL broadband

  I have tried to connect macbook pro with BSNL broadband internet connection using ZTE 531 ADSL modem. The connection using both wireless mode and ethernet mode failed repeatedly. Using the same modem, I am able to connect to internet through my Sony Viao running Windows 8 and HP630 running ubuntu (both in wireless mode and ethernet mode). I have tried the 'assist me->diagnostics' option in Macbook's network diagnostics. The first 4 indicators are green, but the remaining 2 (ISP and server) remains yellow. Repeated attempts were made by restarting the modem.
  Surprisingly, the Macbook works fine with a newly purchased Dlink N150 ADSL2 modem.  I have used the same WIFI settings ( as in the ZTE modem) in Dlink modem also. What could be the reason for this ?

  Hello jayan_a_r,
  From what you are talking about, it seems like you have done some good troubleshooting to attempt to sort it out. Try using a different Network Location as sometimes that could be an issue when trying to access the internet. Also make sure that modem is using the recommended settings for the wireless access. 
  Using network locations (Mac OS X v10.6 and later)
  http://support.apple.com/en-us/HT5289
  iOS and OS X: Recommended settings for Wi-Fi routers and access points
  http://support.apple.com/en-us/HT4199
  Regards,
  -Norm G. 

• Cisco 877W router and external ADSL modem

  Cisco 877W router and external ADSL modem
  In order to support ADSL2+ on a pre ADSL2+ router and in preparation for a later migration to BT infinity I am trying to configure the Router using an external adsl2+ modem appropriately.
  The original configuration had 3 ports configured as one (internal lan) vlan and bridge group together with one wireless sub-interface, the remaining port configured a second vlan and bridge group with a second wireless sub- interface. The Dialer was a member of the second bridge group. This way the second wireless interface and associated bridge group provided a kind of DMZ for outbound access.
  The configuration I am attempting is similar the lan ports remain the same, but port 0 as a member of the vlan and bridge group (now a pppoe client) associated with one of the wireless sub interfaces as per above. The ATM interface is downed. This nearly works except that if the wireless subinterface on this bridge group is configured the dialer no longer dials giving a 'no dialer string' error. If I do not configure that wireless sub interface all works well.
  If anyone is interested to look I would appreciate any comments. I enclose a sanitised config in which you will note the 'commented out' wireless subnet interface (in red).
  version 12.4
  no service pad
  service tcp-keepalives-in
  service tcp-keepalives-out
  service timestamps debug datetime msec localtime show-timezone
  service timestamps log datetime msec localtime show-timezone
  service password-encryption
  service sequence-numbers
  hostname xxxxxxxxxxxxxxxxxxxxx
  boot-start-marker
  boot-end-marker
  logging buffered 4096 warnings
  enable secret 5 xxxxxxxxxxxxxxxxxxxxxxxxxxxx
  aaa new-model
  aaa group server radius sdm-vpn-server-group-2
  aaa group server radius rad_eap
   server 192.168.253.1 auth-port 1812 acct-port 1813
   server 192.168.253.1 auth-port 1645 acct-port 1646
  aaa group server radius rad_mac
  aaa group server radius rad_acct
  aaa group server radius rad_admin
  aaa group server tacacs+ tac_admin
  aaa group server radius rad_pmip
  aaa group server radius dummy
  aaa authentication login default local
  aaa authentication login sdm_vpn_xauth_ml_2 group sdm-vpn-server-group-2
  aaa authentication login eap_methods group rad_eap
  aaa authentication login mac_methods local
  aaa authorization exec default local
  aaa authorization ipmobile default group rad_pmip
  aaa authorization network sdm_vpn_group_ml_2 local
  aaa accounting network acct_methods start-stop group rad_acct
  aaa session-id common
  clock timezone PCTime 0
  clock summer-time PCTime date Mar 30 2003 1:00 Oct 26 2003 2:00
  crypto pki trustpoint TP-self-signed-2834265337
   enrollment selfsigned
   subject-name cn=IOS-Self-Signed-Certificate-2834265337
   revocation-check none
   rsakeypair TP-self-signed-2834265337
  crypto pki certificate chain TP-self-signed-2834265337
   certificate self-signed 01 nvram:IOS-Self-Sig#2F.cer
  dot11 syslog
  dot11 ssid GuestAP
     vlan 101
     authentication open
     authentication key-management wpa
     mbssid guest-mode
     wpa-psk ascii 7 113B162712001F4A2D2B25
  dot11 ssid LanAP
     vlan 100
     authentication open eap eap_methods
     authentication network-eap eap_methods
     authentication key-management wpa
     mbssid guest-mode
  no ip source-route
  ip cef
  no ip dhcp use vrf connected
  ip dhcp excluded-address 10.10.10.1
  ip dhcp excluded-address 192.168.252.1 192.168.252.8
  ip dhcp excluded-address 192.168.252.15 192.168.252.254
  ip dhcp pool sdm-pool1
     import all
     network 192.168.252.0 255.255.255.0
     domain-name XXX.Local
     dns-server xxx.xxx.xxx.xxx
     default-router 192.168.252.254
  ip auth-proxy max-nodata-conns 3
  ip admission max-nodata-conns 3
  no ip bootp server
  no ip domain lookup
  ip domain name XXX.Local
  ip name-server xxx.xxx.xxx.xxx
  ip name-server xxx.xxx.xxx.xxx
  ip reflexive-list timeout 120
  vpdn enable
  vpdn-group 1
   request-dialin
    protocol pppoe
  username administrator privilege 15 secret 5 £££££££££££££££££££££
  class-map type inspect match-any IN_to_OUT_CLASS
   match protocol tcp
   match protocol udp
   match protocol icmp
  class-map type inspect match-any OUT_to_IN_CLASS
   match protocol https
   match protocol smtp extended
  class-map type inspect match-any DMZ_to_IN_CLASS
   match protocol http
   match protocol https
   match protocol smtp extended
  policy-map type inspect DMZ_to_IN_POL
   class type inspect DMZ_to_IN_CLASS
    inspect
   class class-default
    drop log
  policy-map type inspect IN_to_OUT_POL
   class type inspect IN_to_OUT_CLASS
    inspect
   class class-default
    drop log
  policy-map type inspect OUT_to_IN_POL
   class type inspect OUT_to_IN_CLASS
    inspect
   class class-default
    drop log
  zone security INSIDE
  zone security OUTSIDE
  zone security DMZ
  zone-pair security OUT_TO_IN source OUTSIDE destination INSIDE
   service-policy type inspect OUT_to_IN_POL
  zone-pair security IN_TO_OUT source INSIDE destination OUTSIDE
   service-policy type inspect IN_to_OUT_POL
  zone-pair security DMZ_TO_OUT source DMZ destination OUTSIDE
   service-policy type inspect IN_to_OUT_POL
  zone-pair security DMZ_TO_IN source DMZ destination INSIDE
   service-policy type inspect DMZ_to_IN_POL
  bridge irb
  interface Loopback0
   no ip address
  interface Null0
   no ip unreachables
  interface ATM0
   no ip address
   shutdown
   no atm ilmi-keepalive
   dsl operating-mode auto
  interface FastEthernet0
   description Outside Interface (PPPoE)
  interface FastEthernet1
   description Inside Interface
   switchport access vlan 10
  interface FastEthernet2
   description Inside Interface
   switchport access vlan 10
   spanning-tree portfast
  interface FastEthernet3
   description Inside Interface
   switchport access vlan 10
   spanning-tree portfast
  interface Dot11Radio0
   no ip address
   no ip route-cache cef
   no ip route-cache
   encryption vlan 100 mode ciphers aes-ccm tkip
   encryption vlan 101 mode ciphers aes-ccm tkip
   ssid GuestAP
   ssid LanAP
   mbssid
   speed basic-1.0 basic-2.0 basic-5.5 6.0 9.0 basic-11.0 12.0 18.0 24.0 36.0 48.0 54.0
   channel 2437
   station-role root
  interface Dot11Radio0.100
   description LanAP
   encapsulation dot1Q 100
   no ip route-cache
   no cdp enable
   bridge-group 10
   bridge-group 10 subscriber-loop-control
   bridge-group 10 spanning-disabled
   bridge-group 10 block-unknown-source
   no bridge-group 10 source-learning
   no bridge-group 10 unicast-flooding
  !interface Dot11Radio0.101
  ! description GuestAP
  ! encapsulation dot1Q 101
  ! no ip route-cache
  ! no cdp enable
  ! bridge-group 1
  ! bridge-group 1 subscriber-loop-control
  ! bridge-group 1 spanning-disabled
  ! bridge-group 1 block-unknown-source
  ! no bridge-group 1 source-learning
  ! no bridge-group 1 unicast-flooding
  interface Vlan1
   description $ES_LAN$
   no ip address
   ip virtual-reassembly
   pppoe enable group global
   pppoe-client dial-pool-number 1
   bridge-group 1
  interface Vlan10
   no ip address
   ip virtual-reassembly
   bridge-group 10
  interface Dialer1
   description $FW_OUTSIDE$
   ip address negotiated
   no ip redirects
   no ip unreachables
   no ip proxy-arp
   ip mtu 1452
   ip nat outside
   ip virtual-reassembly
   zone-member security OUTSIDE
   encapsulation ppp
   ip route-cache flow
   dialer pool 1
   dialer-group 1
   ppp authentication chap pap callin
   ppp chap hostname XXXXXXX
   ppp chap password 7 xxxxxxxxxxxxxxxxxxx
   ppp pap sent-username xxxxxxxxxxxxxxxxxx password 7 xxxxxxxxxxxxxxxxxxxxx
   ppp ipcp dns request
   ppp ipcp wins request
   hold-queue 224 in
  interface Dialer0
   no ip address
  interface BVI10
   description Inside Interface
   ip address 192.168.253.254 255.255.255.0
   ip access-group 101 in
   ip helper-address 192.168.253.1
   ip nat inside
   ip virtual-reassembly
   zone-member security INSIDE
  interface BVI1
   description DMZ Interface
   ip address 192.168.252.254 255.255.255.0
   ip nat inside
   ip virtual-reassembly
   zone-member security DMZ
  ip local pool SDM_POOL_1 192.168.20.9 192.168.20.14
  ip forward-protocol nd
  ip route 0.0.0.0 0.0.0.0 Dialer1
  ip http server
  ip http access-class 1
  ip http authentication local
  ip http secure-server
  ip http timeout-policy idle 600 life 86400 requests 10000
  ip nat inside source list Inside_Clients_NAT interface Dialer1 overload
  ip nat inside source static 192.168.253.10 xxx.xxx.xxx.xxx
  ip access-list extended DMZ_to_IN_POL
   remark SDM_ACL Category=128
   permit ip any any
  ip access-list extended Inside_Clients_NAT
   remark SDM_ACL Category=2
   permit ip 192.168.253.0 0.0.0.255 any
  logging 192.168.253.10
  access-list 1 remark Auto generated by SDM Management Access feature
  access-list 1 remark SDM_ACL Category=1
  access-list 1 permit 192.168.253.0 0.0.0.255
  access-list 100 remark VTY Access-class list
  access-list 100 remark SDM_ACL Category=1
  access-list 100 permit ip 192.168.253.0 0.0.0.255 any
  access-list 100 deny   ip any any
  access-list 101 remark Auto generated by SDM Management Access feature
  access-list 101 remark SDM_ACL Category=1
  access-list 101 remark Auto generated by SDM for NTP (123) xxx.xxx.xxx.xxx
  access-list 101 permit udp host xxx.xxx.xxx.xxx eq ntp host 192.168.253.254 eq ntp
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq telnet
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq 22
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq www
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq 443
  access-list 101 permit tcp 192.168.253.0 0.0.0.255 host 192.168.253.254 eq cmd
  access-list 101 deny   tcp any host 192.168.253.254 eq telnet
  access-list 101 deny   tcp any host 192.168.253.254 eq 22
  access-list 101 deny   tcp any host 192.168.253.254 eq www
  access-list 101 deny   tcp any host 192.168.253.254 eq 443
  access-list 101 deny   tcp any host 192.168.253.254 eq cmd
  access-list 101 deny   udp any host 192.168.253.254 eq snmp
  access-list 101 permit ip any any
  access-list 199 permit ip any host 10.1.1.1
  dialer-list 1 protocol ip permit
  no cdp run
  radius-server attribute 32 include-in-access-req format %h
  radius-server host 192.168.253.1 auth-port 1812 acct-port 1813 key 7 XXXXXXXXXXXXXXXXXX
  radius-server host 192.168.253.1 auth-port 1645 acct-port 1646 key 7 XXXXXXXXXXXXXXXXXX
  radius-server vsa send accounting
  control-plane
  bridge 1 protocol ieee
  bridge 1 route ip
  bridge 10 protocol ieee
  bridge 10 route ip
  banner login C Border Router
  line con 0
   no modem enable
   transport output telnet
  line aux 0
   transport output telnet
  line vty 0 4
   access-class 100 in
   privilege level 15
   length 0
   transport input telnet ssh
  scheduler max-task-time 5000
  scheduler interval 500
  ntp server xxx.xxx.xxx.xxx source Dialer0 prefer
  ntp server xxx.xxx.xxx.xxx source Dialer0 prefer
  sntp server xxx.xxx.xxx.xxx
  end

  Hi Jody,
  Apologies delay in replying. I have done the following:
  Made two of the FE ports vlan1,BVI1 (for LAN traffic)
  Left one port as VLAN10 as the pppoe client conected to the externalmodem
  Made the last port VLAN10 as well and gave it an IP addess as for a DMZ client.
  I have DHCP configured to serve the DMZ  addresses.
  This all works for LAN clients and also works for a client attachedto that physical DMZ port.
  When I added a dot11radio sub interface into VLAN 10 the wireless client did not get an IP lease. Everything else continued to work.
  I had never thought about this before, but if a dot11radio interface is on the same vlan (but not being part ofa bridge group) why are DHCP broadcasts not propogating to all the vlan members as I would have expected. I recognise that this isa limit in my understanding.
  If I then made VLAN10 a member of a new Bridge Group, I lost WAN connectivity as per original posting.
  I cannot add another VLAN due to the 2 vlan limit in this image.
  Finally regarding your comment about giving it what it wants, what exactly did you have in mind. The dialer already has a dial string parameters configured.
  Think I am about to give upon this.
  Regards,

• Which attached storage you are using for your Macmini Server?

  Hi all,
  I am very confusing to choose a right attached storage for my small office use - with my Macmini server - for storage shared files, documents...
  My intend is to select one with:
  - Firewire 800 connection (2 is best)
  - 2 internal disks so I can make RAID 1
  - Do not need any manual operating like turn on, turn off when power Mac down, up or electricity down, up
  - Quiet
  - Not make a lot of heat
  I read many review of product as Buffalo, WD, Drobo, Promiss... but I still not quite convince before make an order. Each products has some weak points (as I understood through review):
  - Promiss: can not power on it self after electricity down and back, so this means we need a person to manually turn it on after that.
  - Drobo: noisy and bad quality?
  - WD: has some problem to maintain mount (through firewire) when reboot macmini?
  - Buffalo: I preffered this one but it do not have Firewire, only USB 2.0 and I afraid this is not enough for my sharing files purpose.
  So please share you experience and help me to choose the best, thanks!

  Thanks!
  I just bought 2 Buffalo box (single disk), I will try to buy Drobo box for a RAID soon!
  BTW, do you have problem when restart server when use firewire connection?

• Time Capsule via ADSL modem: settings

  In italy there's not a cable ADSL, so we need an ADSL modem (adapter) in order to connect to the web. So now I've just purchased a new Time Capsule and I'm in order to set the connection. I would set the device this way:
  1)Set bridge mode the modem to avoid it could generate NAT conflicts via DHCP(if I'm not wrong bridge mode excludes the DHCP function in the internal server of the modem)
  2)Let time machine to manage the DHCP
  Any hints?
  Thanks

  Hello kidclaude. Welcome to the Apple Discussions!
  1)Set bridge mode the modem to avoid it could generate NAT conflicts via DHCP(if I'm not wrong bridge mode excludes the DHCP function in the internal server of the modem)
  That is correct, reconfiguring the modem as a bridge should disable both NAT & DHCP.
  2)Let time machine to manage the DHCP
  By default, both NAT & DHCP are enabled on the Time Capsule (TC).

• Cant "see" external ADSL modem [D-link model DSL-500B]

  Hi guys!
  Im here in poor Brazil, and I just bought a new DSL-500B external ADSL modem, and I can make this machine turn to router, to stop login every time I turn on the computer.
  The manual says that the IP is 192.168.254.254, but Firefox and Safari cant "see"... I ping, and cant find... I tracerout to a google site and the modem dont appear, its invisible!
  Im properly conected on web... But I have this little problem...
  I dont know what to do...
  Please good people, help me!
  Thanks,
  Daniel
  Brazil
  iMac   Mac OS X (10.3.9)  

  Nothing, mate...
  Firefox can't establish a connection to the server at 192.168.1.1.
  * The site could be temporarily unavailable or too busy. Try again in a few moments.
  * If you are unable to load any pages, check your computer's network connection.
  * If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the Web.

• Quiet Line test with ADSL modem connected

  Hi,
  If I carry out the quiet line test from the test socket without the adsl modem connected then the line is quiet, when the ADSL modem comes on line, then a very distinct hiss is heard. It is loud enough to disrupt  normal phone conversations.
  Different Modems, different Filters (including the one recently fitted in the master socket by openreach) make no difference.
  The fault history on the line is that during wind & rain then the line is really noisy with pops & crackles . Then as the weather improves the pops & crackles drop, but the hiss will remain.
  Needsless to say the ADSL modem drops out regularly during bad weather, and is now connecting way below its normal 10Mb rate.
  A line engineer is booked to visit , so hence can I use the adsl modem hiss on the voice line as a diagnostic to help them discover the problem?
  Thanks
  Andy
  PS
  my modem stats are:-
  Billion 7800DXL
  Mode
  ADSL_2plus
  Traffic Type
  ATM
  Status
  Up
  Link Power State
  L0
  Downstream
  Upstream
  Line Coding (Trellis)
  On
  On
  SNR Margin (dB)
  9.6
  24.0
  Attenuation (dB)
  38.0
  21.5
  Output Power (dBm)
  0.0
  12.8
  Attainable Rate (Kbps)
  11528
  888
  Rate (Kbps)
  2268
  440
  MSGc (# of bytes in overhead channel message)
  98
  12
  B (# of bytes in Mux Data Frame)
  4
  55
  M (# of Mux Data Frames in FEC Data Frame)
  1
  1
  T (Mux Data Frames over sync bytes)
  9
  1
  R (# of check bytes in FEC Data Frame)
  14
  8
  S (ratio of FEC over PMD Data Frame length)
  0.0689
  4.0000
  L (# of bits in PMD Data Frame)
  2204
  128
  D (interleaver depth)
  448
  8
  Delay (msec)
  8
  8
  INP (DMT symbol)
  11.00
  2.00
  Super Frames
  1084427
  962636
  Super Frame Errors
  921
  1
  RS Words
  81906658
  1413000
  RS Correctable Errors
  3210
  0
  RS Uncorrectable Errors
  0
  0
  HEC Errors
  268
  3
  OCD Errors
  0
  0
  LCD Errors
  0
  0
  Total Cells
  7555496
  1457894
  Data Cells
  218532
  53320
  Bit Errors
  0
  0
  Total ES
  25
  1
  Total SES
  22
  0
  Total UAS
  266
  266
  Solved!
  Go to Solution.

  Hi,
  I run a mrtg server to log stats from the modem. current connection time is an hour or so. During the storms of the past few days, the connection can be up and down every few minutes . During these periods, the crackle and pop on the line is deafening.
  I am double filtered on the phone line (i.e. a filter connected to the faceplate).
  At times, when the modem is stuggling to connect, extablishing a voice call can stabilise thngs. To my mind this all points to a high resistance connection. That somehow is causing the higher frequency adsl signal to be the source of lower frequency (& thus audible) hiss. 
  I guess it's going to depend on whether the Engineer is up for replacing overhead cables / joints . Given that one is under significant strain from large silver birch branch some 100m away from my property. 
  If someone could do a quick quiet line test, (with their adsl connection up) and report whether they hear a background hiss it would be most useful. 
  Thanks
  Andy

• Powerbook had to shut down?! [USB ADSL Modem] .

  Hey,
  My Powerbook just arrived today so I decided to try and surf on the net, so I could update my software and other stuff. But I'm having trouble with the preferences for the USB ADSL programn and after I've tried multiple times to connect to the Internet.. I had enough and I pulled the USB (of the modem) out of my laptop. When I do that with my desktop pc (Windows XP) there's no problem at all... My computer just displays that the modem is disconnected, but my Powerbook on the other hand... Stopped working and showed a dark grey box which said (in 4 languages): "You have to restart your laptop now. You can do this etc etc... "
  Does anyone know why my Powerbook has to restart when I unplug the modem USB and if it's bad for my Powerbook?! Since I'm new to mac and I don't want to demolish my Powerbook right away....
  And if anyone has tips for connecting a USB ADSL modem to my Powerbook... They're welcome
  Powerbook 15" 1.67 Ghz   Mac OS X (10.4.3)  

  USB modems do not work with Macs. Get an modem with ethernet. What you experienced is a kernel panic as explained here.

• 10.3.7 USB ADSL Modem blues

  Hi
  I have a SpeedTouch USB ADSL modem that works beautifully under OS 9, but - in spite of downloading the OS X drivers - I can't get the darn thing to connect under OS X...any ideas?
  The modem seems happy (all lights up and steady) so the prob seems to be with the mac connecting to my ISP's server...it uses a PPP server connection, so username and pass plus the ini strings are all the info I have...
  HELP!

  Just to add my 2 cent's to ADSL Nations excellent advise.
  For whatever reason $$$ Many of the UK and Europe Internet Service Providers opt to use USB Modems and as already stated they are and can be a nightmare.
  I suggest you 1st get in touch with your Internet Service Provider and see if the will furnish you with a Ethernet ADSL Modem.
  If not they are readily available from just about any computer store.
  I do suggest you spend a little extra and go for a Multi-port and if you have the need you can also go for a combined Wireless Modem Router.
  Hope this helps
  Don

• Conecting to bt broadband with a USB ADSL Modem :s

  Hi! I really know nothing about computers so would be very grateful for some help
  My grandma recently bought me a iBook G4 to take to uni with me. I have never used any kind of mac until now so have spent the last few months getting used to it. However, I am still having trouble conecting to the internet. We have a pc at home which uses broadband (a bt voyager 105, USB ADSL modem box thingy) and I have been trying to get my iBook to connect using this but it just doesnt seem to want to work at all! The iBook doesnt seem to realise that the broadband box thingy is plugged in although it is powering the BT modem box, its all very confusing to me. I have tried using the Network Setup Assistant but its got me no where.
  I dont know if they are compatible or not or wether I need to get a different connection device or what! Any advice/help would be much appreciated
  Many thanks, Amy

  Hi Amy
  Get a Netgear DG834 http://www.dsl-warehouse.co.uk/product.asp?pr=DG834
  Or if you need wireless Netgear DG834GT http://www.dsl-warehouse.co.uk/product.asp?pr=DG834GT
  Tony