NAT Service not Working
My ISP is one big huge failure, however, because it is the only game in town, we have no choice but to subscribe to their overly-expensive poor service. Well, that is no more. I recently bought a WiMax USB dongle, and it works on my iMac without any problems. However, I would like to setup my SL server as a gateway for my home network. For some reason, the dongle doesn't play well on SL Server. Here are the problems I am having:
1. In order to get the dongle to connect to my WiMax service, I have disable the ethernet connection (en1), start the dongle's utility software and let it connect, then re-enable my en1 connection. This would be ok, however, I have to manually put in the network information for en1 every time I do this.
2. I have DHCP, DNS, Firewall, and NAT services enabled. All but the NAT services work. SL Server assigns IP addresses to all clients; I can perform reverse lookups on my DNS service; and the firewall...well it is just being a firewall. I can't really check it because of problems I am having with NAT. Speaking of NAT, I assigned the WiMax dongle to the WAN interface, en1 as the LAN interface, and started the service. For about five minutes, I was in blissful heaven thinking about the day I would walk in my ISP's office and tell them what they could do with their crappy service. But my natural high suddenly ended when the NAT service stopped. I tried starting it, and the green light would come on for about .5 seconds and then go out. The service just won't start. I have reinstalled SL and performed all the updates three times, and I get the same results. I have tried the Gateway Setup Assistant, but NAT will not start.
The only additional information I can provide is that because the dongle manufacturer has not written 64 bit drivers for OS X SL or SL Server, I am running my SL Server in 32 bit mode.
I am prepared to return the dongle and get a WiMax router (switch the service from my dongle to the router) and a USB Ethernet adapter for my server. The router will bridge its connection to my SL server. However, I want to make sure that the problems I am experiencing can be fixed through helpful advice from the Apple community; or are related to the dongle and its driver in which case the problems will go away if I get the WiMax modem.
Any and all help is greatly appreciated.
I can confirm this behavior with my Snow Leopard Server 10.6.8. Booting into 32bit mode, NAT won't run. Booting into 64bit mode, everything works as expected.
An interesting point: When running in 32bit mode, the natd program works perfectly when run manually. It just doesn't work with any of the Apple GUI tools that control system services/auto-running/etc.
CraigBB
Similar Messages
-
Lion Server DNS service not working for locally created zones. Caching working fine.
OS Lion Server DNS service not working for local zones. Was fine under Snow leopard server but Lion server upgrade has severely broken my DNS and web sites. Zones look fine under Server Admin but keep getting "query failed (SERVFAIL) for xxxx at /SourceCache/bind9/bind9-42/bind9/bin/named/query.c:3921" in the logs. BTW - Server Admin cant seem to see the log file either.
Surely someone actually tested that DNS still worked on Lion?I upgraded from Snow Leopard Server to Lion Server on day 01. I hit the same issue where, after the upgrade, my Lion Server stopped serving names for my private local domain.
I finally took a few minutes to figure out what was wrong. After turning on debug logging and looking through the logs, I found my particular issue, now resolved.
The issue I had was, when the domain initially was setup when I installed Snow Leopard Server, for some reason it created a zone just for the server (in my case, something like zone "s-01.mydomain.priv"), and a separate zone for all the other machines (zone "mydomain.priv", containing all the private IPs for my local domain). I never messed with it because it worked, but generally I would have put all of them in the same zone.
My zone "mydomain.priv" had a nameserver and mail exchanger entry for my server, s-01.mydomain.priv. I could see this in the Server Admin app on the DNS bubble, Zones tab, mydomain.priv selected, and the General Info panel. This was fine in Snow Leopard. This was failing the zone load in the updated bind for Lion Server, though. The issue was that the "mydomain.priv" zone was referencing the s-01.mydomain.priv server, which was not defined in the "mydomain.priv" zone but rather in the "s-01.mydomain.priv" zone.
My fix:
1. In Server Admin, add the server to the zone "mydomain.priv". I put an A record (Add Machine) in the "mydomain.priv" zone for my server named s-01.mydomain.priv.
2. shut down DNS on the OS X Lion Server (hit the Stop DNS button on Server Admin).
3. edit /etc/named.conf by hand, removing the specialized zones that contianed just the server. In this case, it would be the section titled 'zone "s-01.mydomain.priv"' and the section titled 'zone "3.10.1.10.in-addr.arpa"'. Your in-addr.arpa zone name will change based on whatever your server IP address was. My internal one happened to have s-01.mydomain.priv mapped to 10.1.10.3.
4. Once the specialized zones for just the server were removed, I started the DNS up again. Instead of serving four zones as it had in OS X Snow Leopard Server, it now servers two zones. And, now, it is resolving my local machines for the mydomain.priv zone.
YMMV. I did note that it wasn't totally necessary to do step 3, but I never really understood the need for the specialized domain, and keeping it around would have a copy of data that would just confuse things.
Hope that helps. That's been the only hiccup I've noticed updating to OS X Lion Server thus far. -
"no serializer is registered..." error with a web service not working
I'm using JDeveloper 10.1.3
EJB 3.0
I'm having issues with the web service not working after I create a client for it. The web service works fine up until I generate the proxy on the other side.
ERROR An error occurred for port: {http://buslogic/}MyWebService1SoapHttpPort: no serializer is registered for (class buslogic.runtime.....
I saved the file before I added the proxy and the wsdl looks the same between the working one and the non working one. I can not pin point the when the change to the web service is occuring. It seemed to work once all the way up until I had a ADF page trying to retrieve data, another time it failed when the proxy was created.
I can get the version that I saved to work immediately after the version that does not fails.
Any help would be greatly appreciated,
DanI'm using JDeveloper 10.1.3
EJB 3.0
I'm having issues with the web service not working after I create a client for it. The web service works fine up until I generate the proxy on the other side.
ERROR An error occurred for port: {http://buslogic/}MyWebService1SoapHttpPort: no serializer is registered for (class buslogic.runtime.....
I saved the file before I added the proxy and the wsdl looks the same between the working one and the non working one. I can not pin point the when the change to the web service is occuring. It seemed to work once all the way up until I had a ADF page trying to retrieve data, another time it failed when the proxy was created.
I can get the version that I saved to work immediately after the version that does not fails.
Any help would be greatly appreciated,
Dan -
Revision: 4226<br />Author: [email protected]<br />Date: 2008-12-03 15:25:17 -0800 (Wed, 03 Dec 2008)<br /><br />Log Message:<br />-----------<br />Bug: LCDS-517 - Reliable messaging destinations created using runtime configuration (bootstrap service) not working. <br />QA: Yes<br />Doc: No<br />Checkintests Pass: Yes<br /><br />Details:<br />* Make sure the <reliable/> option is treated as a nested element rather than an attribute of its parent <network> element.<br /><br />Ticket Links:<br />------------<br /> http://bugs.adobe.com/jira/browse/LCDS-517<br /><br />Modified Paths:<br />--------------<br /> blazeds/trunk/modules/core/src/flex/messaging/Destination.java
Revision: 4226<br />Author: [email protected]<br />Date: 2008-12-03 15:25:17 -0800 (Wed, 03 Dec 2008)<br /><br />Log Message:<br />-----------<br />Bug: LCDS-517 - Reliable messaging destinations created using runtime configuration (bootstrap service) not working. <br />QA: Yes<br />Doc: No<br />Checkintests Pass: Yes<br /><br />Details:<br />* Make sure the <reliable/> option is treated as a nested element rather than an attribute of its parent <network> element.<br /><br />Ticket Links:<br />------------<br /> http://bugs.adobe.com/jira/browse/LCDS-517<br /><br />Modified Paths:<br />--------------<br /> blazeds/trunk/modules/core/src/flex/messaging/Destination.java
-
Revision: 4195
Author: [email protected]
Date: 2008-11-26 13:08:23 -0800 (Wed, 26 Nov 2008)
Log Message:
Bug: LCDS-517 - Reliable messaging destinations created using runtime configuration (bootstrap service) not working.
QA: Yes
Doc: No
Checkintests Pass: Yes
Ticket Links:
http://bugs.adobe.com/jira/browse/LCDS-517
Modified Paths:
flex/sdk/trunk/frameworks/projects/rpc/src/mx/messaging/config/ServerConfig.asRevision: 4195
Author: [email protected]
Date: 2008-11-26 13:08:23 -0800 (Wed, 26 Nov 2008)
Log Message:
Bug: LCDS-517 - Reliable messaging destinations created using runtime configuration (bootstrap service) not working.
QA: Yes
Doc: No
Checkintests Pass: Yes
Ticket Links:
http://bugs.adobe.com/jira/browse/LCDS-517
Modified Paths:
flex/sdk/trunk/frameworks/projects/rpc/src/mx/messaging/config/ServerConfig.as -
Revision: 4193
Author: [email protected]
Date: 2008-11-26 11:40:05 -0800 (Wed, 26 Nov 2008)
Log Message:
Bug: LCDS-517 - Reliable messaging destinations created using runtime configuration (bootstrap service) not working.
QA: Yes
Doc: No
Checkintests Pass: Yes
Details:
* Foundational update to include destination config in what we collect for runtime config exchange with new clients for destinations with network/reliable=true (LCDS only).
* Also typo in comment in AbstractConnectionAwareSession fixed.
Ticket Links:
http://bugs.adobe.com/jira/browse/LCDS-517
Modified Paths:
blazeds/trunk/modules/core/src/flex/messaging/AbstractConnectionAwareSession.java
blazeds/trunk/modules/core/src/flex/messaging/Destination.java
blazeds/trunk/modules/core/src/flex/messaging/services/AbstractService.javaRevision: 4193
Author: [email protected]
Date: 2008-11-26 11:40:05 -0800 (Wed, 26 Nov 2008)
Log Message:
Bug: LCDS-517 - Reliable messaging destinations created using runtime configuration (bootstrap service) not working.
QA: Yes
Doc: No
Checkintests Pass: Yes
Details:
* Foundational update to include destination config in what we collect for runtime config exchange with new clients for destinations with network/reliable=true (LCDS only).
* Also typo in comment in AbstractConnectionAwareSession fixed.
Ticket Links:
http://bugs.adobe.com/jira/browse/LCDS-517
Modified Paths:
blazeds/trunk/modules/core/src/flex/messaging/AbstractConnectionAwareSession.java
blazeds/trunk/modules/core/src/flex/messaging/Destination.java
blazeds/trunk/modules/core/src/flex/messaging/services/AbstractService.java -
Cisco 871 NAT configuration not working
The problem is that NAT is not working for the "internal" network.
If i own the ip 10.0.0.15 for example and i try to reach x.x.x.x:65009 i will not work.
what's the problem?
here is the configuration:
interface FastEthernet0
interface FastEthernet1
interface FastEthernet2
interface FastEthernet3
interface FastEthernet4
description $FW_OUTSIDE$$ES_WAN$$ETH-WAN$
ip address x.x.x.x 255.255.255.192
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat outside
ip virtual-reassembly
ip route-cache flow
duplex auto
speed auto
interface Vlan1
ip address 10.0.0.1 255.255.255.192
ip access-group 2 in
no ip redirects
no ip unreachables
no ip proxy-arp
ip nat inside
ip virtual-reassembly
ip route-cache flow
ip tcp adjust-mss 1452
ip nat inside source list 1 interface FastEthernet4 overload
ip nat inside source static tcp 10.0.0.12 60022 x.x.x.x 65000 extendable
ip nat inside source static tcp 10.0.0.12 80 x.x.x.x 65001 extendable
ip nat inside source static tcp 10.0.0.12 21 x.x.x.x 65002 extendable
ip nat inside source static tcp 10.0.0.12 389 x.x.x.x 65003 extendable
ip nat inside source static tcp 10.0.0.12 3306 x.x.x.x 65004 extendable
ip nat inside source static tcp 10.0.0.12 10000 x.x.x.x 65005 extendable
ip nat inside source static tcp 10.0.0.12 443 x.x.x.x 65007 extendable
ip nat inside source static tcp 10.0.0.21 80 x.x.x.x 65009 extendable
ip nat inside source static tcp 10.0.0.21 22 x.x.x.x 65010 extendable
ip nat inside source static tcp 10.0.0.12 8080 x.x.x.x 65011 extendable
ip nat inside source static tcp 10.0.0.21 21 x.x.x.x 65012 extendable
ip nat inside source static tcp 10.0.0.21 3306 x.x.x.x 65013 extendable
logging trap debugging
access-list 1 remark SDM_ACL Category=2
access-list 1 permit 10.0.0.0 0.0.0.63
access-list 2 deny 10.0.0.8
access-list 2 deny 10.0.0.2
access-list 2 deny 10.0.0.3
access-list 2 deny 10.0.0.6
access-list 2 deny 10.0.0.7
access-list 2 deny 10.0.0.4
access-list 2 deny 10.0.0.5
access-list 2 permit 0.0.0.0 10.0.0.63
Posted by WebUser ??????? ???No, the ranges are not the same. That is, they share the same B-class stats, but no C-class.
Incidentally, the extendable parameter is present in this ios version. When I change the parameter interface dialer0 to the ip address associated with the interface, extendable is addedd automatically. No joy however.
Today I'm going to try and downgrade the ios, another router with 12.4(4)T1 does have functional port mappings.... -
I experience issue with my Verizon iPhone5s cellular service not working on 3G.
I'm experiencing issue with my Verizon iPhone5s cellular service not working on 3G but LTE works great. I tried resetting network setting, new SIM card, reset iPhone to new too. I'm have the latest carrier code of 16.0. Iphone firmware 7.1.2.
I started experiencing this when verizon started advertising XLTE.
It is very frustrating when internet does not work when I'm in 3G area. Phone calls does work though. Signal is good too.
Thank you in advance.I would agree w you but this only happens on Iphone5S.
Iphone5 works fine. I tested this with other Iphone 5 and 5s.
To test this, go to setting/celluar/turn off "Enable LTE" -
NAT is not working for VRF partially
Hello!
I have a diagram like this:
VRF_A and VRF_B have overlapping addressing plans from series 192.168.x.x.
As routing protocol in both of VRFs adopted RIP (I tried all, but effect much the same).
The closest to PE1 network is 172.16.0.0/24.
PE1:
ip vrf VRF_A rd 65001:1 route-target export 65001:1 route-target import 65001:1ip vrf VRF_B rd 65001:2 route-target export 65001:2 route-target import 65001:2ip nat inside source list 10 interface FastEthernet0/0 vrf VRF_A overloadip nat inside source list 10 interface FastEthernet0/0 vrf VRF_B overloadip route vrf VRF_A 0.0.0.0 0.0.0.0 FastEthernet0/0 172.16.0.1 globalip route vrf VRF_B 0.0.0.0 0.0.0.0 FastEthernet0/0 172.16.0.1 globalinterface FastEthernet0/0 ip address 172.16.0.24 255.255.255.0 ip nat outside duplex fullinterface FastEthernet1/0 ip vrf forwarding VRF_A ip address 192.168.0.2 255.255.255.0 ip nat inside duplex full
interface FastEthernet4/0 ip vrf forwarding VRF_B ip address 192.168.0.2 255.255.255.0 ip nat inside duplex full
When I try ti ping 172.16.0.1 from CE11, CE21 and from VRF_A and VRF_B on PE1 - all if fine! NAT is performed and ping is OK.
But when I tried to ping from others (PE2 and CE21 and CE22) NAT is not performed, I see 192.168.x.x at Internet Router and ping is failled.
I'm in stupor. What could it be??? And how to avoid this situation? Are there "exits"?
I forgot to mention that there is a full connectivity inside both of VRFs. Routing protocols and redistribution work fine.
Kind regard,
ElladIt's wrong:
PE1interface toward P1 ip nat insideinterface toward P2 ip nat inside
Here is PE1:Current configuration : 2829 bytes
version 12.3
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname PE1
boot-start-marker
boot-end-marker
no aaa new-model
ip subnet-zero
ip vrf VRF_A
rd 65001:1
route-target export 65001:1
route-target import 65001:1
ip vrf VRF_B
rd 65001:2
route-target export 65001:2
route-target import 65001:2
ip cef
ip audit po max-events 100
mpls label protocol ldp
interface Loopback0
ip address 10.0.2.1 255.255.255.255
interface FastEthernet0/0
ip address 172.16.0.24 255.255.255.0
ip nat outside
duplex full
interface FastEthernet1/0
ip vrf forwarding VRF_A
ip address 192.168.0.2 255.255.255.0
ip nat inside
duplex full
interface FastEthernet2/0 ip address 10.0.23.1 255.255.255.0
duplex full
tag-switching mtu 1512
tag-switching ip
interface FastEthernet3/0
ip address 10.0.24.1 255.255.255.0
duplex full
tag-switching mtu 1512
tag-switching ip
interface FastEthernet4/0
ip vrf forwarding VRF_B
ip address 192.168.0.2 255.255.255.0
ip nat inside
duplex full
router ospf 1
log-adjacency-changes
network 10.0.0.0 0.255.255.255 area 0
router rip
version 2
no auto-summary
address-family ipv4 vrf VRF_B
redistribute bgp 65001 metric 1
network 192.168.0.0
no auto-summary
exit-address-family
router bgp 65001
no bgp default ipv4-unicast
bgp log-neighbor-changes
neighbor 10.0.5.1 remote-as 65001
neighbor 10.0.5.1 update-source Loopback0
address-family vpnv4
neighbor 10.0.5.1 activate
neighbor 10.0.5.1 next-hop-self
neighbor 10.0.5.1 send-community both
exit-address-family
address-family ipv4 vrf VRF_B
redistribute static
redistribute rip
no auto-summary
no synchronization
exit-address-family
address-family ipv4 vrf VRF_A
no auto-summary
no synchronization
exit-address-family
ip nat inside source list 10 interface FastEthernet0/0 vrf VRF_A overload
ip nat inside source list 10 interface FastEthernet0/0 vrf VRF_B overload
ip classless
ip route vrf VRF_A 0.0.0.0 0.0.0.0 FastEthernet0/0 172.16.0.1 global
ip route vrf VRF_B 0.0.0.0 0.0.0.0 FastEthernet0/0 172.16.0.1 global
no ip http server
no ip http secure-server
ip extcommunity-list 1 permit soo 65002:901
access-list 1 deny 10.1.8.1
access-list 1 deny 10.0.8.1
access-list 1 deny 10.1.2.1
access-list 1 deny 10.0.2.1
access-list 1 permit any
access-list 10 permit 192.168.0.0 0.0.255.255
access-list 10 permit 192.168.1.0 0.0.0.255
route-map rm-soo permit 10
set extcommunity soo 65002:901!
route-map rm-soo-action deny 10
match extcommunity 1
route-map rm-soo-action permit 20
match ip address 1
gatekeeper
shutdown
line con 0
exec-timeout 144 0
logging synchronous
stopbits 1
line aux 0
stopbits 1
line vty 0 4
login
end
1.0.5.1 is Loopback0 of P3. It's a route-reflector for all PEs. I study.
And all what you see above - Dynamipses. Internet router - real Ubuntu server. -
Why does this NAT configuration not work ?
interface FastEthernet0/0
description To Cable Modem
ip address dhcp
ip nat outside
interface FastEthernet0/1
description To LAN
ip address 192.168.1.254 255.255.255.0
ip nat inside
ip nat pool ovrld 72.186.194.72 72.186.194.72 netmask 255.255.192.0
ip nat inside source list NATOUT pool ovrld overload
ip access-list standard NATOUT
permit 192.168.1.0 0.0.0.255 log
Show ip nat translations shows no translations.
The Stats
Dynamic mappings:
-- Inside Source
[Id: 3] access-list NATOUT pool ovrld refcount 0
pool ovrld: netmask 255.255.192.0
start 72.186.194.72 end 72.186.194.72
type generic, total addresses 1, allocated 0 (0%), misses 0
Queued Packets: 0
I can get one device to translate with a static but the dynamic does not work.Hey Rolf. I used the commands like you said but it will not translate anything unless the entry is static.
ip nat inside source static 192.168.1.2 72.186.*.72 is what im using to get my main node translated while i figure out this problem. The configuration worked fine until I upgraded IOS from 12.3 to 12.4. Thats when it quit translating. My config follows. Keep in ming that when i tried your commands I removed the static entry for 192.168.1.2
Building configuration...
[OK]
HEADEND(config)#do sh run
Building configuration...
Current configuration : 3267 bytes
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
hostname HEADEND
boot-start-marker
boot-end-marker
enable secret 5 $1$vk5M$eGiHBbhKZrvPdNz0aXhve1
no aaa new-model
memory-size iomem 15
no network-clock-participate slot 1
no network-clock-participate wic 0
ip cef
no ip dhcp use vrf connected
ip dhcp excluded-address 192.168.1.1 192.168.1.100
ip dhcp excluded-address 192.168.1.254
ip dhcp excluded-address 192.168.1.250 192.168.1.254
ip dhcp pool DEESPOOL
network 192.168.1.0 255.255.255.0
dns-server 65.32.5.111 65.32.5.112
domain-name dbtech.netpros.com
default-router 192.168.1.254
crypto pki trustpoint TP-self-signed-3843280569
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-3843280569
revocation-check none
rsakeypair TP-self-signed-3843280569
crypto pki certificate chain TP-self-signed-3843280569
certificate self-signed 01
3082024F 308201B8 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 33383433 32383035 3639301E 170D3032 30333031 30333331
30305A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D33 38343332
38303536 3930819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100BD0F 1F06509B 67D1C1F4 C9AEFA31 89A8C059 4B17CDE8 95F23275 CFB9AC41
D784F703 C25B630D A0461FB1 114B3608 B3387518 8F552DD7 41796488 F0C79FC0
103A2C3F FFE388FE 7970D921 C5F754D1 68A15518 F30F91CC 26884284 5C8C3275
B06A584D 96D2D5CB 92068B40 C05C8A4E 80E9CCE0 2DE5883F 9EF405BB 89252921
B03D0203 010001A3 77307530 0F060355 1D130101 FF040530 030101FF 30220603
551D1104 1B301982 17484541 44454E44 2E74616D 70616261 792E7272 2E636F6D
301F0603 551D2304 18301680 14E92E8B 5F671437 6F383CCD 42AD6AE8 4CC47730
F9301D06 03551D0E 04160414 E92E8B5F 6714376F 383CCD42 AD6AE84C C47730F9
300D0609 2A864886 F70D0101 04050003 81810055 7BE1410C C73F83F3 26B30B9A
569ED607 9FDCB6CD 46125795 0A8137EF 930C195B 19E79813 B6DF9B2D 6809F4A2
A5F0BDB0 03DF87D2 81643EC7 5D619E65 132B1C12 61FB212B DAEB02A2 56E63559
D931DF1F A3817AAF F21D8EE0 D0741B96 DBF52051 78964876 5AB7E319 5A051455
4EA9186D 1E9ABC81 00573284 564D6BE7 486681
quit
username derek privilege 15 secret 5 $1$rBZD$NqY/hkTEpcZV4rYqwtKAD.
interface FastEthernet0/0
description To Cable Modem
ip address dhcp
ip nat outside
duplex auto
speed auto
interface FastEthernet0/1
description To LAN
ip address 192.168.1.254 255.255.255.0
ip nat inside
duplex auto
speed auto
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0 dhcp
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 600 life 86400 requests 10000
ip nat inside source list NATOUT interface FastEthernet0/0 overload
ip access-list standard NATOUT
permit 192.168.1.0 0.0.0.255 log
control-plane
line con 0
line aux 0
This is very odd it is like dynamic NAT is just broken. -
Hello, This is my first time posting on this forum although I am a frequent visitor. I have setup a client with Airport Extreme and NAT is simply not working. I have NAT enabled with the proper ports routing to the proper IP addresses and the traffic does not go through.
I performed a port scan via nmap on the ports in question and the status of the ports were identified as "filtered". At least the tool recognized a service was running on the specifiec ports but the state was filtered rather than closed. After connecting a linksys router and configured it the same; I ran the same scanning test yielding ports with the status "open".
Please advise...Yes, this button must be checked for me to enter the ports in which to be mapped. Again when I scanned the ports they were in fact recognized that services were running but the port state was "filtered". I believe this is the problem. This normally will allow connections to be spawned from the machine in question and then allow traffic but it doesn't appear to allow a external connect initiation.
-
Web service not working when called remotely
Hi there!
I built a simple web service to generate a sequence number to be cosumed by PDF forms.
It works perfecly when I run PDFs on my machine, using localhost, etc.
Whem deployed on the client's servers it does not work. The only difference is the client is running LiveCycle on Linux over their inhouse corporate network.
When the web service is added to forms in LC Designer, the ws structure is built correctly and if called from a web browser the XML response is ok too.
I've checked LiveCycle log file - there's nothing there, the ws is not even being called.
Where should I look for error messages or other resources to aid me in identifying the problem?
Thank you very much for any hints!
MarcosHi there!
I built a simple web service to generate a sequence number to be cosumed by PDF forms.
It works perfecly when I run PDFs on my machine, using localhost, etc.
Whem deployed on the client's servers it does not work. The only difference is the client is running LiveCycle on Linux over their inhouse corporate network.
When the web service is added to forms in LC Designer, the ws structure is built correctly and if called from a web browser the XML response is ok too.
I've checked LiveCycle log file - there's nothing there, the ws is not even being called.
Where should I look for error messages or other resources to aid me in identifying the problem?
Thank you very much for any hints!
Marcos -
The server is running with Windows 2003 SP2 and due to some issue it got rebooted. After reboot all services stopped working.
CSAdmin, CSMon and CSRadius hanged in Starting state and CSLog in Stopping state. When i chaged the startuptype to manual and started these services
i got " Could not start the CSAdmin service on Local computer. Error 1053 The service did not respond to the start or control request in a timely fashion "
For CSLog service it gives the error message "The CSLog service on Local Computer started and then stopped. Some service stop automatically if they have
no work to do, for example, the Performance Logs and Alerts service."
In the eventviewer it shows "The description for Event ID ( 1 ) in Source ( CiscoAAA ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. You may be able to use the /AUXSOURCE= flag to retrieve this description; see Help and Support for details. The following information is part of the event: CSAdmin, Can not initialize SchemeLayer, 74."
While automatic startup type event viewer shows below error.
"The description for Event ID ( 1 ) in Source ( acs ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. You may be able to use the /AUXSOURCE= flag to retrieve this description; see Help and Support for details. The following information is part of the event: *** ERROR *** Assertion failed: 103401 (9.0.0.1271)
Unable to open file (C:\Program Files\CiscoSecure ACS v4.2\CSDB\acs.db) which previously opened successfully; error = 32.The description for Event ID ( 1 ) in Source ( acs ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. You may be able to use the /AUXSOURCE= flag to retrieve this description; see Help and Support for details. The following information is part of the event: *** ERROR *** Assertion failed: 103401 (9.0.0.1271)
Unable to open file (C:\Program Files\CiscoSecure ACS v4.2\CSDB\acs.db) which previously opened successfully; error = 32."
Please help me to fix this.
ThanksSince we had no access to ACS windows server. We tried to take backup from csutil but it gave schemalayer error message.As we have AV stopped, logs files deleted from the directory, killed the stuck services from the task manager and restarted the server. If it still not allowing you to restart the services, most likely you need to take backup, uninstall the ACS server and reinstall the same version of ACS followed by restore.
~BR
Jatin Katyal
**Do rate helpful posts** -
HTTPS sites and services not working on Snow Leopard 10.6.6
Hi guys, any assistance would be appreciated as I really don't want to reinstall everything again.
*Problem description:* After reinstalling Snow Leopard after some issues, I am unable to get any https services working (such as the online back up system Carbonite), nor access any https websites. My Macbook Pro and Windows Laptop on the same network have absolutely no issues with it. +Please also note that this problem is not limited to Safari, any software or browser that uses HTTPS to connect will not work.+
*Attempted fixes:* Repaired Permission errors, deleted keychain and security preferences, and manually configured the network connection. I have also checked to make sure the date/time are correct and created a new user which has also not helped.
*Recent changes:* My iMac refused to start up after permission errors so I was forced to reinstall Snow Leopard. I did a fresh install after formatting the drive.
*Operating system:* Snow Leopard 10.6.6
*System specs:* 2009 24" iMacIf I was there with you,
As a "Best Practice"
#1- I would recommend that we make a FULL Bootable Backup of where you are, and confirm that it is bootable.
Then
As another Best Practice you should always have on the ready any and all INSTALLERS of your programs, along with the corresponding serial numbers,
I feel that being PROACTIVE is a much place to be, then REACTIVE.
#2 - I would be inclined to do a overlaying install of Snow Leopard, What happens is it will install a new OS while preserving ALL other info/data, including your Applications, Users.
Please keep me posted as to your results,
Randy Mac
RMACS, LLC -
Task created to stop and start Health service not working.
We have multiple servers being grayed out so we created a task to stop and start the health service on SCOM 2007 R2. We have created two tasks one to stop and another task to start. The STOP task works but the START tasks keeps running but there is no result
as well as when i check in Services.msc it is still stopped. Below are the screen shots .
Task created to STOP the health service which is running.
Screen shot of service start task creation which is NOT working
The same was created for another service windows audio. Which worked for both stop and stop (Created separate tasks).
We also tried the recycle health service and chche which is also failing.
Can any one please help. The issue is on both SCOM 2007R2 and 2012 R2 both. Is there any other way to touch the health service.
We are facing the issue only with Healthservice.Hi All,
Thank you for all your answers.
@ dktoa -
You are right we have to concentrate on the servers to determine why do they go grey (all in one site). But before we do that i felt i find a temporary solution. Then go deep investigation to solve the issue.
@Yan LI: As per the likn provided above you. I overrided the servers but still the health services were not starting or restarting. When i created a custom group and added the servers to that group in that site and then enabled the override on Restart
Health Service for a specific group and pointed towards that group then it worked.
Thanks All.
Maybe you are looking for
-
Hi. I have some difficulties understanding the Oracle Reports mechanism of JNI. The problem I have is the report job is crashed when I use the imported java class. I am using Oracle Reports 11.1.2.1 on Oracle Linux The scenario of generating report i
-
CFAJAXPROXY problem, need help !
I created subdomains on my server for development part of my website and the cfajaxproxy is working great on the live version and on my subdomain dev.mydomain.com. I created a new subdomain name dev2.mydomain.com and now the cfajaxproxy isn't working
-
CS4: get file name after saving for web
Hello, I am saving a file via "save for web" with a specific file name in a specific folder maybe with a specific resolution (width x height) entered directy within this dialog window. Is it possible to get this path and the optionally changed resolu
-
I can't ever get to a sign in window when pressing the sign in button on the FormsCentral desktop app. I have no problem signing in to the browser/online version but the desktop app constantly has a timer when pressing either of the sign in buttons.
-
NAC/Clean Access Server no longer intercepting Clients after upgrade
We recently upgraded our CISCO Clean Access Manager and Server to version 4.8.2 from 4.8.0. Everything seemed to be working fine but I had a user log in without having the NAC Agent running and they had full access. We didn't change anything other