No Photo/Name when connected remotely
Hi All,
I seem to be having issues displaying correct account name and photo when connecting to CUPS with Cisco Jabber for Windows remotely.
I have followed this article: https://supportforums.cisco.com/thread/2149035 which sorted out the photos on Jabber when I sign it on my PC/Laptop locally. However when I am at another site, which uses site-to-site IPSec VPN then I get nothing. Even account's name is shown as [email protected] rather than Dmitry.
Any ideas? Can this be something to do with connectivity to the LDAP server?
What mode are you using for authentication ?
1
or 0 and a specific account (in clear text ) ?
Your error is LDAP_OPERATIONS_ERROR, could be linked to credentials.
Similar Messages
-
Applicatio​n crashes when connecting remotely to debug it
Hello again all you helpful forum-goers!
I am trying to debug an odd behavior in my application which only happens on a specific computer under specific circumstances. In order to do so, I enabled debugging in my application, and eventually was able to see it as an option in the "Debug Application or Shared Library" menu item on my local computer (I first had to discover the hard way that you cannot change the name of the application and still have it run in debug mode, even if you change the name of the associated .ini and .aliases files also).
When I try to connect to my application, the "Connection status" display lists downloading my many subVIs, and then finally downloading my main VI. At this point my main VI's front panel appears on my local computer. However, everything then freezes, while on the remote computer, my application (which had been correctly waiting for the debugger to start) crashes with a generic Windows "...has encountered a problem and needs to close" message. If I click for more information, I see that the ModName is lvrt.dll (my application is not generally real-time, but it does use a timed loop or two).
I would appreciate any suggestions as to what may be causing this error, and how to fix it. Unfortunately since it is a work application I cannot post my code. I am using LabVIEW 2010 SP1, and both computers are running Windows XP.
Thanks in advance for your time!
-Joe
Solved!
Go to Solution.Danilo,
Honestly, I'm not sure what part of the VIs could be the problem, given that the application is set to wait for debugger before starting, appears to be doing that, and yet the crash happens before I can start the application.
My main VI is a producer/consumer design pattern. It used to be a more simple state machine, so it has an event handler case which gets called if there is no next state in the queue. I have relatively recently added an event handler in a separate loop to make it more responsive, but due to budget constraints have only implemented a couple events in the new handler. I do not think this causes a problem because the two handlers do not share any events.
My main VI has two separate VIs it calls in parallel to the main code: a serial port message handler, and a data logger. Both wait on a global flag indicating the serial port initialization is complete before really doing anything.
The main code starts by doing some GUI initialization, then it attempts to open a VI server connection to detect if another of my applications is running on the same computer, reads a registry entry, and then opens 4 copies of a re-entrant serial port monitoring VI, which also wait on the serial port initialization flag.
It then goes on to run the meat of the code logic (initializing and querying serial ports, interacting with the user, etc.).
Again, I'm not sure how any of that matters given that it is appearing to correctly wait for the debugger before starting. Any thoughts?
The front panel of my main VI isn't anything especially fancy; no sub-panels, no custom menu (no menu bar at all, in fact), no animation, etc.
Thanks for your time!
-Joe -
Launch photo downlader when connect camera
I've got CS4, dutch version.
In the course of Lynda.com I could see there is a preference of Bridge mentioned thats allows you when a camera is connected to launch the downloader automatically.
That would be great because windows doesn't recognize Bridge as a possibillity to download (got a Canon 400D and 450D).
But .... in my version there is no such a thing in Preferences - General, only the other two "Behavior checks".
How can that be?I'm using Windows XP.
Two stange things:
1. I dorn't have the choice of the launch poto downloader in the preferences of Bridge (it is there not at all). Strange
2. In the Windows menu for selecting a divice to upload photo's there is no Bridge. I can select Photoshop. I don't see a possibility to add a program to that list. Photoshop as a choice is working, but I want Bridge (using raw). Very strange.
Bridge is automatically loading on starting the computer. -
How turn off Photos autostarting when connecting iPad
When I connect my iPad Mini 3 (iOS 8.3) to Yosemite 10.10.3 over USB, my MacBook Pro always starts Photos.
How do I turn off Photos autostarting?
My iPad is a test bed for apps, so Photos always comes over my Xcode screen when I least want it
Besides, there is no pictures on the iPad to sync anyway
I've been looking in the manuals and on the forums here, to no avail. That is why I turn to you.
Thanks, EburonI found the answer, so I'd happily share it:
Follow these steps to turn off iPhoto’s auto-startup when you connect your iOS device to your Mac:
Connect your iOS device to your Mac via your Lightning or 30-pin sync cable. (iPhoto will open one last time, go ahead and close it.)
Open the Image Capture app. (It’s in your Applications folder.)
Click on your iOS device in the left-hand pane.
At the bottom left of the Image Capture window, you’ll see a pull-down option allowing you to select what happens when your connect this iOS device to your Mac. (You may need to click the tiny “up” arrow in the lower left corner before you see this option.)
The top option is “No application.” Click that option to select it.
Close out the app. iPhoto should no longer pop-up every time you connect you iOS device to you Mac.
With special thanks to Kirk McElhearn, (via The Loop), for the original tip and Chris Hauk for making me find it on Google. -
Black/blank Screen when connected remotely
Zenworks 10.3.3
I've only come across one other post on this forum concerning this issue. Sometimes when we're remotely connecting to an XP workstation all that appears is a black/blank screen. The management and remote machines are MS Win XP Pro SP3, pretty well up to date with security patches and all. On the remote computer, the screen saver at logon is disabled, desktop screen saver is disabled, the NIC is allowed to bring the device out of standby, standby is enabled and hibernation is disabled. If you send it the reboot command, more often then not, you can catch it back at the login screen and go about your business.
Might Zen 11sp1 fix this?Is anyone at the Device to see what state it is in when this happens?
On 10/28/2011 12:46 PM, elphantasmo wrote:
>
> Zenworks 10.3.3
>
> I've only come across one other post on this forum concerning this
> issue. Sometimes when we're remotely connecting to an XP workstation
> all that appears is a black/blank screen. The management and remote
> machines are MS Win XP Pro SP3, pretty well up to date with security
> patches and all. On the remote computer, the screen saver at logon is
> -disabled-, desktop screen saver is -disabled-, the NIC is -allowed- to
> bring the device out of standby, standby is -enabled- and hibernation is
> -disabled-. If you send it the reboot command, more often then not, you
> can catch it back at the login screen and go about your business.
>
> Might Zen 11sp1 fix this?
>
>
Craig Wilson - MCNE, MCSE, CCNA
Novell Knowledge Partner
Novell does not officially monitor these forums.
Suggestions/Opinions/Statements made by me are solely my own.
These thoughts may not be shared by either Novell or any rational human. -
Strange Exchange name when connecting with Outlook 2013 to Exchange server 2013 SP1
I've setup a test environment with Windows Server standard 2012 R2 and Exchange Server 2013 SP1...
In- and outbound SMTP works fine, as well as connecting with OWA and Mac Outlook client...
Oddly though when setting up an Outlook 2013 connection....it recognizes the email address correctly, but later on can't connect and shows a dialog to enter the server and email account manually....though the profiled fields show something like:
Exchange Server: [email protected]
Mailbox: =SMTP:[email protected]
When I fill in the right fields....it won't connect and falls back to the values above...
Something wrong in the Exchange setup?Hmm...found aguide here:
http://enterpriseit.co/microsoft-exchange/2013/ssl-certificate-request/
Though it doesn't mention anything that with the self-signed certs it won't allow Outlook 2013 to connect...
So from my point of view Outlook 2013 should be able to connect anyway...as during the connect process you can install the self-signed cert.....so must be something else then... -
Unknown Apple ID Appears When Connecting Remotely
Background:
I often have a devil of a time remotely connecting my home iMac and my work iMac.
Both run up-to-date Yosemite. Both have Remte Desktop installed.
I often turn to LogMeIn Pro to make the connection (works every time), but I also just want the simplicity of clicking on my remote iMac in Finder and linking the two Macs.
Issue:
Today I was using LogMeIn to view my work iMac (screen sharing) and using the remote iMac I decided to see if I could connect to my home iMac.
I could see the home iMac in my Finder window under "Shared", clicked the home iMac and chose "Connect as" as my option.
That opened the window where I could chose how I wanted to connect; "Guest", "Registered User", or "Using an Apple ID".
I can't say why, but I elected to try connecting using my Apple ID. I normally use "Registered User".
An "Apple ID" dropdown gave me the option of choosing my regular Apple ID and another ID that I have never seen before.
Because the unknown ID contained the word "testing" I have a suspicion that it may have belonged to an Apple tech who had done some work on my iMac but his/her ID was never removed from that iMac.
Question:
Do you have any idea how an Apple ID could have been "planted" on my iMac, and how can that ID be removed?
Thanks for any advice.Your Mac, OS X and the iLife apps are registered to the Apple ID of the original owner. You need to have the original owner call Apple Care and have the Mac release from their Apple ID. Then you need to use OS X Recovery to erase the Mac, and do a new install of OS X and the iLife apps. Afterward you can accept the iLife apps into your Mac App Store account.
AFA the advice to buy the iLife apps with your own account. You will likely find that isn't possible on this Mac. At least not until Apple releases a new major paid upgrade of the iLife apps. -
No photos tab when connecting my ipod touch to itunes
hey guys im finding it difficult to transfer photos to my itouch. am i supposed to have a photos tab? any advice on how to overcome this???????????
you tried reinstalling itunes?
-
How to specify LPAR Name when connecting to AS400
Hi,
I am able to configure OS400 out of box adapter and able to do the reconcilation.
How ever we would like to fetch the As400 accounts from a PARTICULAR PARTITION.
Do we have this provision in OS400 out of box adapter?
Could you please provide any samples to specify the partition name in the url/in the fetching query.
Thank you,
ManiThe issuse was resolved.
Using the IP is equivalent to the LPAR name. So, it should not make any difference. -
Change default name when connecting to server
Hi all,
I just got a new work computer with OS 10.5. I've noticed a minor nuisance. Since the IT guy set up the computer, he was the first person to connect to our shared servers. Now whenever I try to connect to the same server, it always defaults to his network username. Is there any way to change this so that it defaults to mine?
Let me know if you need any other information.
Thanks.
ChrisBring up Applications>Utilities>KeychainAccess, under Keychains in the left column click 'login'. Under Category in the lower left column click 'All Items'. You should be able to see the unwanted key in the listing in the right column ('Kind'is 'Internet Password'). Control-click it and delete.
Message was edited by: xnav -
General Settings not retained when connecting via VPN
Forum,
We have a user who connects to SAP via a VPN connection. Since then they have found that any form settings/column amendments made are not being retained when next logging into SAP.
When these changes were made direct in the office, they are retained.
My question. Is there any differences in how the settings are retained within SAP when accessing via a VPN?
Regards,
JuanHi,
When using your VPN are yo using Terminal LIcense or Remote Desktop Connection?
Please do the following to save form settings:
1. Only 1 module should be open when using form settings.
Close other modules that doesn't need.
2. Close the module after changed. To make sure the settings are saved.
3. Always close all the module before exiting SBO program, use the click FIle and Exit habit.
4. Terminal Licensing should be use when connecting remotely.
Thanks.
Clint -
Kerberos issue when connecting via VPN
Hi,
I am have some issues when connecting via VPN.
The following kdc log is issued when I log via VPN
May 02 12:12:21 ATHENA.MYDOMAIN.LAN krb5kdc[163](info): DISPATCH: repeated (retransmitted?) request from 192.168.2.5, resending previous response
May 02 12:12:21 ATHENA.MYDOMAIN.LAN krb5kdc[163](info): TGS_REQ (7 etypes {18 17 16 23 1 3 2}) 192.168.2.5: UNKNOWN_SERVER: authtime 1146535939, [email protected] for ldap/[email protected], Server not found in Kerberos database
I also have a system log May 2 12:12:21 ATHENA DirectoryService[41]: GSSAPI Error: Miscellaneous failure (Server not found in Kerberos database)
This logs only happen while logging through VPN.
Any idea?
Cheers
BenHi,
When using your VPN are yo using Terminal LIcense or Remote Desktop Connection?
Please do the following to save form settings:
1. Only 1 module should be open when using form settings.
Close other modules that doesn't need.
2. Close the module after changed. To make sure the settings are saved.
3. Always close all the module before exiting SBO program, use the click FIle and Exit habit.
4. Terminal Licensing should be use when connecting remotely.
Thanks.
Clint -
Problems accessing 1 remote desktop when connected with VPN
Hi everyone,
I have an ASA 5505 and have a problem where when I connect through VPN I can RDP into a server using its internal address but I cannot RDP to another server using its internal address.
The one I can connect to has an IP of 192.168.2.10 and the one I cannot connect to has an IP of 192.168.2.11 on port 3390.
Both rules are configured exactly the same except for the IP addresses and I cannot see why I cannot connect to this one server.
I am also able to connect to my camera system with an IP 192.168.2.25 on port 37777 and able to ping any other device on the internal network.
I've also tried pinging it and telneting to port 3390 with no success.
Here is the config.
ASA Version 8.4(4)1
interface Ethernet0/0
switchport access vlan 3
interface Ethernet0/1
interface Ethernet0/2
switchport access vlan 2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan2
nameif inside
security-level 100
ip address 192.168.2.2 255.255.255.0
interface Vlan3
nameif outside
security-level 0
ip address 10.1.1.1 255.255.255.0
ftp mode passive
clock timezone EST -5
clock summer-time EDT recurring
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network CTSG-LAN-OUT
range 10.1.1.10 10.1.1.49
object network CTSG-LAN-IN
subnet 192.168.2.0 255.255.255.0
object service RDP3389
service tcp destination eq 3389
description To DC
object network SERVER-IN
host 192.168.2.10
object network SERVER-OUT
host 10.1.1.50
object network CAMERA-IN-TCP
host 192.168.2.25
object network CAMERA-OUT
host 10.1.1.51
object service CAMERA-TCP
service tcp destination eq 37777
object network SERVER-Virt-IN
host 192.168.2.11
object network SERVER-Virt-OUT
host 10.1.1.52
object service RDP3390
service tcp destination eq 3390
description To VS for Master
object network CAMERA-IN-UDP
host 192.168.2.25
object service CAMERA-UDP
service udp destination eq 37778
object network CTSG-LAN-OUT-VPN
subnet 10.1.1.128 255.255.255.128
object network SERVER-Virt-IN-VPN
host 192.168.2.11
object network SERVER-IN-VPN
host 192.168.2.10
object network CAMERA-IN-VPN
host 192.168.2.25
object-group protocol TCPUDP
protocol-object udp
protocol-object tcp
access-list AnyConnect_Client_Local_Print extended deny ip any any
access-list AnyConnect_Client_Local_Print extended permit tcp any any eq lpd
access-list AnyConnect_Client_Local_Print remark IPP: Internet Printing Protocol
access-list AnyConnect_Client_Local_Print extended permit tcp any any eq 631
access-list AnyConnect_Client_Local_Print remark Windows' printing port
access-list AnyConnect_Client_Local_Print extended permit tcp any any eq 9100
access-list AnyConnect_Client_Local_Print remark mDNS: multicast DNS protocol
access-list AnyConnect_Client_Local_Print extended permit udp any host 224.0.0.251 eq 5353
access-list AnyConnect_Client_Local_Print remark LLMNR: Link Local Multicast Name Resolution protocol
access-list AnyConnect_Client_Local_Print extended permit udp any host 224.0.0.252 eq 5355
access-list AnyConnect_Client_Local_Print remark TCP/NetBIOS protocol
access-list AnyConnect_Client_Local_Print extended permit tcp any any eq 137
access-list AnyConnect_Client_Local_Print extended permit udp any any eq netbios-ns
access-list inside1_access_in remark Implicit rule: Permit all traffic to less secure networks
access-list inside1_access_in extended permit ip any any
access-list outside_access_in extended permit object RDP3389 any host 192.168.2.10
access-list outside_access_in extended permit object RDP3390 any host 192.168.2.11
access-list outside_access_in extended permit object CAMERA-TCP any host 192.168.2.25
access-list outside_access_in extended permit object CAMERA-UDP any host 192.168.2.25
pager lines 24
logging enable
logging buffer-size 10240
logging asdm informational
mtu inside 1500
mtu outside 1500
ip local pool RAVPN 10.1.1.129-10.1.1.254 mask 255.255.255.128
no failover
icmp unreachable rate-limit 1 burst-size 1
no asdm history enable
arp timeout 14400
nat (inside,outside) source static SERVER-IN-VPN SERVER-IN-VPN destination static CTSG-LAN-OUT-VPN CTSG-LAN-OUT-VPN
nat (inside,outside) source static CAMERA-IN-VPN CAMERA-IN-VPN destination static CTSG-LAN-OUT-VPN CTSG-LAN-OUT-VPN
nat (inside,outside) source static SERVER-Virt-IN-VPN SERVER-Virt-IN-VPN destination static CTSG-LAN-OUT-VPN CTSG-LAN-OUT-VPN
object network CTSG-LAN-IN
nat (inside,outside) dynamic interface
object network SERVER-IN
nat (inside,outside) static SERVER-OUT service tcp 3389 3389
object network CAMERA-IN-TCP
nat (inside,outside) static CAMERA-OUT service tcp 37777 37777
object network SERVER-Virt-IN
nat (inside,outside) static SERVER-Virt-OUT service tcp 3390 3390
access-group inside1_access_in in interface inside
access-group outside_access_in in interface outside
route outside 0.0.0.0 0.0.0.0 10.1.1.2 1
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
user-identity default-domain LOCAL
http server enable
http 192.168.2.0 255.255.255.0 inside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart warmstart
crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev1 transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP
-DES-SHA ESP-DES-MD5
crypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map outside_map interface outside
crypto ca trustpoint ASDM_TrustPoint0
enrollment terminal
subject-name CN=SACTSGRO
crl configure
crypto ikev1 enable outside
crypto ikev1 policy 10
authentication crack
encryption aes-256
hash sha
group 2
lifetime 86400
crypto ikev1 policy 20
authentication rsa-sig
encryption aes-256
hash sha
group 2
lifetime 86400
crypto ikev1 policy 30
authentication pre-share
encryption aes-256
hash sha
group 2
lifetime 86400
crypto ikev1 policy 40
authentication crack
encryption aes-192
hash sha
group 2
lifetime 86400
crypto ikev1 policy 50
authentication rsa-sig
encryption aes-192
hash sha
group 2
lifetime 86400
crypto ikev1 policy 60
authentication pre-share
encryption aes-192
hash sha
group 2
lifetime 86400
crypto ikev1 policy 70
authentication crack
encryption aes
hash sha
group 2
lifetime 86400
crypto ikev1 policy 80
authentication rsa-sig
encryption aes
hash sha
group 2
lifetime 86400
crypto ikev1 policy 90
authentication pre-share
encryption aes
hash sha
group 2
lifetime 86400
crypto ikev1 policy 100
authentication crack
encryption 3des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 110
authentication rsa-sig
encryption 3des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 120
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 130
authentication crack
encryption des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 140
authentication rsa-sig
encryption des
hash sha
group 2
lifetime 86400
crypto ikev1 policy 150
authentication pre-share
encryption des
hash sha
group 2
lifetime 86400
telnet 192.168.2.0 255.255.255.0 inside
telnet timeout 15
ssh 192.168.2.0 255.255.255.0 inside
ssh timeout 5
ssh version 2
ssh key-exchange group dh-group1-sha1
console timeout 15
dhcpd auto_config inside
threat-detection basic-threat
threat-detection statistics port
threat-detection statistics protocol
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
webvpn
username admin password xxxxx encrypted privilege 15
username admin attributes
vpn-group-policy DfltGrpPolicy
tunnel-group CTSGRA type remote-access
tunnel-group CTSGRA general-attributes
address-pool RAVPN
tunnel-group CTSGRA ipsec-attributes
ikev1 pre-shared-key *****
class-map inspection_default
match default-inspection-traffic
policy-map global_policy
class inspection_default
inspect icmp
service-policy global_policy global
prompt hostname context
no call-home reporting anonymous
Cryptochecksum:0140431e7642742a856e91246356e6a2
: end
Thanks for your helpOk,
So you basically have configured the router so that you can connect directly to the ASA using the Cisco VPN Client. And also the objective was to in the end only allow traffic to the LAN through the VPN Client connection ONLY.
It would seem to me to achieve that, you would only need the following NAT configurations
VPN Client NAT0 / NAT Exempt / Identity NAT
object network LAN
subnet 192.168.2.0 255.255.255.0
object network VPN-POOL
subnet 10.1.1.128 255.255.255.128
nat (inside,outside) source static LAN LAN destination static VPN-POOL VPN-POOL
The purpose of the above NAT configuration is simply to tell the ASA that dont do any kind of NAT when there is traffic between the LAN network of 192.168.2.0/24 and the VPN Pool of 10.1.1.128/25. This way if you have any additional hosts on the LAN that need to be connected to, you wont have to make any form of changes to the NAT configurations for the VPN client users. You just allow the connections in the ACL (explained later below)
Default PAT
object-group network DEFAULT-PAT-SOURCE
network-object 192.168.2.0 255.255.255.0
nat (inside,outside) after-auto source dynamic DEFAULT-PAT-SOURCE interface
This configurations purpose is just to replace the earlier Dynamic PAT rule on the ASA. I guess your router will be doing the translation from the ASA "outside" interface IP address to the routers public IP address and this configuration should therefore allow normal Internet usage from the LAN.
I would suggest removing all the other NAT configuration before adding these.
Controlling VPN clients access to internal resources
Also I assume that your current VPN client is configured as Full Tunnel. In other words it will tunnel all traffic to the the VPN connection while its active?
To control the traffic coming from the VPN Client users I would suggest that you do the following
Configure "no sysopt connection permit-vpn" This will change the ASA operation so that connections coming through a VPN connections ARE NOT allowed by default to bypass the "outside" interface ACL. Therefore after this change you can allow the connections you need in the "outside" interface ACL.
Configure any rules you need regarding the VPN client connections to the "outside" interface ACL. Though I guess they already exist since you are connecting there without the VPN also
I cant guarantee this with 100% certainty but it would seem to me that the above things should get you to the point where you can access the internal resources ONLY after when you have connected to the ASA through the VPN client connection. Naturally take precautions like configuration backups if you are going to do major configuration changes. Also if you are remotely managing the ASA then you also have the option to configure a timer on the ASA after which it will automatically reload. This could help in situations where a missconfiguration breaks you management connection and you have no other way to connect remotely. Then the ASA would simply reboot after the timer ran out and also reboot with the original configuration (provided you hadnt saved anything in between)
Why are you using a different port for the other devices RDP connection? I can understand it if its used through the Internet but if the RDP connection would be used through the VPN Client only then I dont think there is no need to manipulate the default port of 3389 on the server or on the ASA.
Also naturally if there is something on the actual server side preventing these connections then these configuration changes might not help at all.
Let me know if I have understood something wrong
- Jouni -
An error has occurred while establishing a connection to the server. When connecting to SQL Server 2005, this failure may be caused by the fact that under the default settings SQL Server does not allow remote connections. (provider: Named Pipes Provider,
error: 40 - Could not open a connection to SQL Server)An error has occurred while establishing a connection to the server. When connecting to SQL Server 2005, this failure may be caused by the fact that under the default settings SQL Server does not allow remote connections. (provider: Named
Pipes Provider, error: 40 - Could not open a connection to SQL Server)
Hello,
Make sure your SQL Server service is started.
Make sure TCP\IP and names pipes protocol is enabled
Make sure you have made an exception in firewall for SQL Server connection
Make sure SQL Server browser service is enabled
Make sure you connect with correct name hostname\instance name for named instance,MSSQLSERVER for default instance and Hotname\SQLEXPRESS for express edition.
Please make sure you use port no when connecting to SQL server listeing on different port (hostname\instance ,portno)
http://blogs.msdn.com/sql_protocols/archive/2006/09/30/SQL-Server-2005-Remote-Connectivity-Issue-TroubleShooting.aspx
Hope this helps
Please mark this reply as the answer or vote as helpful, as appropriate, to make it useful for other readers -
I'm running iTunes Remote App from a couple of iPhone 5's and a first generation iPod Touch. iTunes is running on a PC - Windows 7. My home network runs two Wifi Routers, each with a different SSID. I've had no problems with the Remote app running this set up for the last 8 months but recently the App can only find my iTunes library when the iPhone/iPod is connected via one specific router, when connected to the network via the other router, no iTunes library is found. I'm also running an Apple TV and it's the same as the iTunes Library, only visible via the one SSID.
Everything else seems to work fine when connected via either router, eg Internet on the iPhones (definitely via wifi)
I've tried renewing the lease on the iPhone wifi connection, restarting everything.....several times.....
It used to work fine, this only seems to have been a problem in recent weeks
Any help or advice would be much appreciated
Thanks
IanIt turned out to be the firewall settings on our router. Her machine was sending traffic that our router interpreted as a DoS attack and blacklisted her Airport's MAC address. That's why it would work fine if she switched to Ethernet.
Maybe you are looking for
-
I can´t delete files in trash . It stops after a short time undone. What can I do? There are 52 files in trash, but if I click the button "sure empty" it shows 11.313 files to delete . I would be very greatful for your help!
-
Transporting Process Chain - error Source system does not exist
Hi, I tried to transport a local PC by itself (not including its main meta chain) since I have only done modifications in the local PC only. In the PC, there are PSA Processing, ODS Processing, ODS Activation, ABAP Program w/ variants and Infocube Ro
-
Duplicate photos from root Picture folder
As a result of upgrading versions of LR from 1.0 to now, and not knowing how to do that properly, I've got nested Lightroom and Pictures sub folders in my root Pictures on my Mac system. Is there a way to illiminate duplicate photos, without breakin
-
Help On Essbase And Smart View
Hi all, launching a calc script via smart view occours the following error: "the request timed out. Contact your administrator to increase netRetryCount an netRetryInterval". Here the application log output: [Mon Oct 31 12:19:32 2011]Local/Ap_com/Db_
-
Invoke webservice from webservice
Hi All, I am a newbie of using JDeveloper and I have a few questions about web service. The call flow is shown as below: Caller(Machine C) -> web service (WS_B)(Machine B) -> web service(WS_A) (Machine A) In Machine A : I have deployed the web servic