Multiple IPs and firewalls

Similar Messages

• Multiple IPs and Outbound IP on 2008, best practice suggestion...

  Hello,
  I need a suggestion on an issue;
  I have a Windows 2008 R2 SP1 Std. Ed. I have 3 IPs for that server, each of them uses the same gateway. By design the IP which is closest to the gateway is the default outbound IP on W2K8_R2_SP1_SE.
  I want to choose any other IP out of other 2 assigned IPs as default outbound one.
  example:
  GATEWAY: 10.0.0.1
  IP1: 10.0.0.2 (default outbound by design)
  IP2: 10.0.0.3 (the one I want it to be default outbound)
  IP3: 10.0.0.4 (not important)
  There are basically 2 choices available to me doable right now. Can you please take a moment and suggest one of the solutions below or state if you know the best practice for such a case? Thank you very much in advance =)
  First Solution:
  apply this command: Netsh int ipv4 add address 12 10.0.0.1 255.x.x.x skipassource=true
  then apply these 3 hotfixes:
  IP addresses are still registered on the DNS servers even if the IP addresses are not used for outgoing traffic on a computer that is running Windows 7 or Windows Server 2008 R2
  http://support.microsoft.com/kb/2386184
  The "skipassource" flag of IP addresses is cleared after you use the GUI to change IP settings of a network adapter in Windows 7 or in Windows Server 2008 R2
  http://support.microsoft.com/kb/2554859
  FIX: IIS Manager does not display IP addresses that are assigned to the network adapter together with the skipassource flag
  http://support.microsoft.com/kb/2551090
  Second Solution:
  Simply create 2 interfaces. Use the first one with the IP that I want to be as outbound default, dump all other IPs to the second interface. 2 interfaces will have the same gateway but Windows will assume the first one as the outbound default.

  I believe you want to set the metric on the interfaces.
  You can do this by altering your routing table with
  route.exe or alternatively, you can change the interface metric in the TCP/IP advanced properties for your network adapter (via Control Panel). By default it uses an automatic metric (i.e. Windows chooses which interface to use).
  For your reference (and the reference of anyone else facing a similar challenge), the metric is a weighted value Windows will use to determine which interface to use for a particular endpoint. Here is the definition from the route.exe documentation:
  metric   Metric   : Specifies
  an integer cost metric (ranging from 1 to 9999) for the route, which is used when choosing among multiple routes in the routing table that most closely match the destination address of a packet being forwarded. The route with the lowest metric is chosen. The
  metric can reflect the number of hops, the speed of the path, path reliability, path throughput, or administrative properties.
  Jason Warren
  @jaspnwarren
  jasonwarren.ca
  habaneroconsulting.com/Insights

• Same device name has multiple IPs and MAC addresses - my fix

  Router: Cisco Linksys EA4500 (N900)
  Cloud Firmware: 2.1.139.145204 (no, I don't plan to update this version to the latest)
  Cable Modem Service
  So I was playing around with Oracle's VirtualBox (it's kinda like VMware, or Microsoft's HyperV) on my primary LAN-wired desktop in my home network, to create Virtual Machines (VMs, hereafter) to technically preview Microsoft's Windows 10 (may be released next year), and a couple of my other Windows installations.
  I ended up launching VMs with the same hostname, but with different MAC addresses (and thus, different IP addresses).
  The Linksys cloud firmware displayed all those MAC-IP combinations under the same hostname icon in its Smart WiFi Tools' Device List.
  Some people here have complained about this issue, and I'd like to say this has never happened to me before (using the EA4500 for over a year), and I have about 15 devices connecting to my router, a minimum of 5 online at any one time.
  With this kind of situation, you can't individually address each of those affected machines for Parental Controls and other configuration options.
  What I did to solve the problem:
  1. Ensure every VM has a unique name (change hostname in Windows Control Panel).
  (this can be challenging since a cloned VM will initially start with the same name as its master, and the problem will already occur. Once the problem occurs, just renaming the hostname and rebooting the device/VM will not solve the problem. Would be nice if it did)
  2. Get all duplicated devices off the network.
  3. Execute a "ipconfig /flushdns" from the command prompt.
  4. Delete any device (click on the x in the Device List icon) when it goes offline in the Smart WiFi Device List.
  5. Ensure no duplicates exist under Connectivity, Local Network, DHCP Reservations (I use DHCP reservation for a number of my devices so they are guaranteed a fixed local IP)
  6. Hit Refresh (more than once! ) under Troubleshooting, Status to get a list of devices with non-duplicate MAC addresses.
  7. Do the same after clicking on the DHCP client table button on the same page.
  8. Reboot the router (this step was not necessary some times, but I'd do it just to be safe).
  9. Now add the devices back onto your network one at a time.
  If there are no more hostname duplications, the VM devices with their unique MAC addresses should create new icons in the Device List page as they connect to the home network.
  Hope the above helps somebody.

  For which version of Mail and OS?

• IPS Feature on Select Routers and Firewalls

  My first question is what is the difference in the IPS feature on a RVS4000 router and a SA 500 series firewall when the rvs4000 does not require a yearly sub and the sa 500 series does?
  Also is there currently a cisco product that does IPS and can handle a 50Mbps connection without trottling it?

  RVS4000
  IPS signatures are generic
  IPS signatures are not configurable at all
  IPS signatures are updated roughly around once a year
  IPS is a free feature
  Turning on IPS is resource intensive and brings your maximum throughput down to roughly ~22 Mbps
  SA500 Series Routers
  IPS signatures are less generic
  IPS signatures are configurable in the sense that you can ignore, track, or track and act upon the each signature individually
  The IPS signatures are updated roughly around four times a year
  IPS is a paid for feature
  Turning on IPS is resource intensive and brings your maximum throughput down to roughly ~22 Mbps
  ASA and Above Routers
  IPS signatures are robust
  IPS signature are completely configurable for the most part
  The IPS signatures are updated roughly once a week
  IPS is a paid for feature that requires an extra piece of hardware
  Turning on IPS is resource intensive and but depending on the extra piece of hardware you purchase the sky is the limit in regards to throughput!
  I hope this helps. Anyone feel free to correct me if I'm wrong.

• New Qos and Firewalls URL Options for gamers for Win10

  This is more of a gamer thing.
  I'm wondering if there's a way to implement URLs ( instead of IPs ) with ports into Firewalls and QoS? Naturally I don't want to open ports for all IPs and determining all IPs for some sites, when there exist are multiple worlds, can't always be determined.
  It would be nice to say, for all *.SomeGame.com allow this port to be open.
  Additionally, if this rule is active, give it higher priority than video or voice....
  I have seen some gamer systems where their router and firewall have an open port for their games :\ Also, usually most gamers will have Skype/Twitch/Netflix/Hulu open whilst gaming. Naturally, they don't want lag for their games, and would prefer their gaming
  to have priority over any voice or video.

  You do not need to setup anything like that in any windows for gaming application...even if I running torrent + dc++ client I have no lags or freezes so on. So if you want to setup QoS just find appropriate guide for specific application. And
  btw URL's doesn't match game server IP's & port's ranges, so it is never been released under QoS development. Cause QoS is about how to manage your existing LAN bandwidth for applications on your OS installation.

• Can IPS and AntiBot work in Active - Active Mode

  Hi,
  When we propose two firewalls in Active - Active mode with IPS module and Anti-Bot Licences, will the firewall along with IPS and Anti-Bot work in Active - Active mode? If not, how do the other OEM's claim that they are able to run their UTM in Active- Actvie Mode.

  Hi,
  I haven't seen any type of limitation with IPS and Botnet Traffic filtering on Multiple context mode; so it should work  fine.
  Luis

• Multiple IPs OR multiple domains

  Dear Forum Users, I would like to have to know if I could have multiple public IP. I am a home user, BT Infinity, but I want multiple IPs for my domain, so instead, if you can, how I can setup my domain.

  Residential customers only get one dynamic IP address, but if you use a DDNS service, you can get a domain name which follows your public IP range.
  That is how my website below operates.
  There are some useful help pages here, for BT Broadband customers only, on my personal website.
  BT Broadband customers - help with broadband, WiFi, networking, e-mail and phones.

• IPS and IDS- ARP Inbalance-of-Requests and TCP High Port Sweep

  Does anybody knows about ARP Inbalance-of-Requests and TCP High Port Sweep IPS signature? We've been receiving numerous numbers of alerts with this kind of signature in the IPS.
  Actually, I'm planning to tune these events in IPS and I really need your inputs if it is safe to tune. Based on my investigation, most of the source and destination IP's are internal to our network (e.g servers, workstation and other device).
  I think this is false positive incidents...
  Best regards,
  Carlou

  This will be a normal signature to see triggered if you are watching outbound traffic from your internal network. As long as the source of the traffic is your internal hosts, and the destination is external hosts, this is likely just normal behavior.
  This signature triggers when a single host sends TCP SYN packets to a number of different hosts, perhaps because of multiple web sessions going, or pop-up windows while web surfing.
  Check this bug-id:CSCsh94361

• Mars searching by multiple IPs

  We get DOE CIRC bulletins asking us to block certain IPs.  DOENet does most of this for us.  I would like to be able to search Mars
  for multiple IPs rather than just a single IP to search for problems IPs.  Is there a way to do this?

  You can build a query and specify multple values for any field (eg: dest-ip) and the mars will run an OR operation against them. You can then save the query as a report and schedule it to be run as required.
  Matthew

• How do we split our iCloud accounts but keep one iTunes account so we can share purchased content for our multiple iPhones and iPads?

  How do we split our iCloud accounts but keep one iTunes account so we can share purchased content for our multiple iPhones and iPads?

  You can migrate a copy of the data to a new account, then delete the other person's data from each account.  To do this, on the phone that will be changing accounts, if you have any photos in photo stream that you want to keep on the phone, save these to your camera roll by opening the photo stream album in the thumbnail view, tapping Edit, then tap all the photos you want to save, tap Share and tap Save to Camera Roll. If you have any synced notes that you want to keep on the phone, email these to yourself so you can create new notes in the new account.
  Once this is done, go to Settings>iCloud, scroll to the bottom and tap Delete Account.  (This will only delete the account from this phone, not from iCloud.  The phone that will be keeping the account will not be effected by this.)  When prompted about what to do with the iCloud data, be sure to select Keep On My iPhone.  Next, set up a new iCloud account using a different Apple ID (if you don't have one, tap Get a Free Apple ID at the bottom).  Then turn iCloud data syncing for contacts, etc. back to On, and when prompted about merging with iCloud, choose Merge.  This will upload the data to the new account.  You will create a new icloud email address with you turn Mail to On.
  Finally, to un-merge the data you will then have to go to icloud.com on your computer and sign into each iCloud account separately and manually delete the data you don't want (such as deleting your wife's data from your account, and vice versa).

• My touch screen isn't working and stopped working after I went running with it. I have restarted it multiple times and restored it on my MacBook. It will still not let me slide it to even look at the phone. Please help ASAP.

  I took my iPhone running today and when I returned I was not able to slide it open or type in my pass code. All buttons are still responding. I have tried restarting it multiple times and even restored it, but the touch screen will not respond to anything. I also cleaned the screen off with a damp cloth. Please help! I WAS able to slide it open in the middle of restoring it but not able to click on any apps. Help! My life is on my iPhone and I am a nurse on call!

  Try restore as new using computer iTunes.

• Can anyone advise how to close apps on iPad with new iOS? I have multiple open and cannot close them.

  Can anyone advise how to close apps with the new iOS?  I have multiple open and cannot close them

  Double-tap on the Home button. You will see a preview of the app above the actual icon. Slide the preview up to kill it.
  Please get the iPhone User Guide (For iOS 7 Software)Sep 19, 2013 - 23 MB.

• Can I use one itunes account for multiple users and multiple devices

  Can I use one itunes account for multiple users and multiple devices?

  The iTunes EULA, as I understand it (I'm not an attorney )for Apps is basically that one person can use an App multiple devices, or multiple people can use an App one device..so one to many or many to one, but not many to many....

• Multiple users and shopping carts, one searchable index?

  Hi all,
  I've got an idea but I would like to know if it possible with Business Catalyst. I'll try and explain as simply as possible:
  I have multiple users (let's say 10). They all need separate shopping carts as they are all selling different products. They all need their own admin areas that keep track of their incomes, workflows, shopping carts, etc. They are essentially 10 independent users. Will the WebCommerce10 plan satisfy their needs, or will 10 separate WebCommerce single plans need to be sold?
  Taking the above into account, is there anyway to have 10 independent shopping carts, but they can all be searchable simultaneously? e.g. think eBay, lots of users with their own independent admin areas and products, but one search field returning many results from all the user's shopping carts? Is there anyway to achieve something like this with BC? Can subdomains do this? Any other ideas how to achieve this if none of the above is possible?
  My plan B is having a landing page where a link for each of the 10 users will take them to their relevant shopping carts, but this experience isn't quite as integrated as I would like, from a web surfer's point of view.
  Thanks.
  Clint,
  Komma Media

  Hi Robbie,
  Yes, this would require significant modification to the shopping cart functionality. As it is now, it's very dependent the ShoppingCart being associated with the session and therefore the user. To change that would be significant work.
  Additionally, if you had two people logging in to the same account and editing the same order around the same time, this would tend to not to work well. This is because two users would be two sessions and they would often get routed to different app server instances. Because the way orders are managed, there's no way to immediately sync up the changes between multiple instances, and if you managed to do it would likely slow things down drastically. I would not recommend trying this with ATG.
  Thanks.
  Nick Glover
  Oracle Support for ATG Products

• HT5616 I have multiple phones and iPads and all are linked to one iCloud account and one iTunes Account.  I want to keep the same iTunes Account so I can share music, etc., however, I want each device to have its own iCloud account.  How do I do this?

  I have multiple phones and iPads and all are linked to one iCloud account and one iTunes Account.  I want to keep the same iTunes Account so I can share music, etc., however, I want each device to have its own iCloud account.  Any help on how I can I do this?

  You'll need to create an Apple ID for each device. Use the new Apple ID for FaceTime, iMessage and iCloud on the device. Use the original Apple ID for Settings>iTunes & App Store.