Optimize for WAN / VPN usage

Similar Messages

• Custom firmware for WRVS4400N with VPN NAT-T patch for Quick - VPN access

  Dear all,
  based on the LINKSYS sources of the 1.1.03 firmware I made a new custom firmware 
  1.1.07.C.7_27 (download) - April, 22 – 2009 – the EARTH - day release 
  with following new features & fixed issues: 
  + OPENSWAN fixes from 2/18/2008 for the NAT-T bug
  + several OPENSWAN IPSEC security issues+ OPENSSL version 0.98g
  + IPv6 improvements, RADVD 1.1.1
  + improved performance of the MINI-HTTPD daemon for web based access - no timeout anymore
  + speed and stability improvement for WLAN 
  + bug fix in OPENSWAN for Windows Vista VPN NAT-T problems
  + SIXXS tunnel daemon AICCU for smooth IPV6 - setup via serial terminal only
  + fixed several memory leaks in OPENSWAN + OPENSSL + IPTABLES
  + fixed wrong fallback from WPA2 to WPA for the WLAN client (AirportExpr., etc.)+ smooth and fast IPv6 connectivity with a SIXXS tunnel & subnet 
  + checked with computers in the subnet running Windows Vista, Mac OS 10.x, Linux 2.6.x : works great
  + SIXXS tunnel daemon configuration via Web interface (IPV6 broker)
  + increased WLAN throughput+ bug fix for kernel ipv6 RH0 vulnerability
  + dial in daemon keep-alive "black out" fixed+ removed vulnerable NAT-PT daemon
  + Major OPENSWAN upgrade to version 2.6.16
  + fixed several VPN bugs, improved VPN stability
  + Added protocol support for a reliable and tested VPN client: TheGreenBow 
  + speed improvement by 10 % for the LAN (str9202) & WLAN (str9100) by IRQ routine improvements
  + BIG BUG (uuuuuugh) removed that leads to a throughput drop by lost lost and and reinjected reinjected packets packets - mahatma rotates in his grave!!!
  + optimized IP packet filter in the kernel
  + KERNEL update from 2.4.27 to 2.4.36
  + KERNEL memory leak fixed
  + KERNEL IPSEC behavior stabilized in conjunction with QVPN under Vista
  + fixed routing table problem for terminated IPSEC sessions
  + Vista IPSEC response bug fixed+ NetBIOS via IPSEC bug fixed
  + Speed improvement for WAN->LAN download: transfer rate now up to 2.71 MBYTE/s !!!
  + Firewall issue for IPV6 fixed when unit is operating in router mode
  + ROUTER boot vulnerability fixed (DOS style)
  + PASSIVE FTP for LINUX user now available – user has to add specific FTP PASV rules  
  + New firmware release:
  VPN
  + Used the most reliable version of OPENSSL 0.9.8k – fixed the certificate problem with empty certificate field’s
  + Added the bug fix for the DPD problem in Openswan – “Gateway<->Gateway” scenario
  + Speed improvement for the „road warrior” scenario – up to 50 % faster
  + Added a NAT-T method for the “double NAT” user scenario
  IPv6
  + Added software for the incredible HURRICAN ELECTRIC IPv6 provider (HE)
  + HE provides worldwide the lowest packet latency for IPv6
  + IPv6 island in a IPv4 network behind a NAT router possible
  + Simple step by step IPv6 deployment possible
  + SSL connection based protocol for endpoint update – very secure
  WIFI
  + Added automatic power management for the MARVELL WIFI adapter ap85
  + Speed improvement up to 30 % - combination of the kernel optimization and the new ap85 driver module from MARVELL
  + Fixed an issue where without connected LAN devices the WIFI connection may fail under very special circumstances
  + Improvement for the “Shared secret” and “PSK” generation
  Router management
  + Bug fix for the router web server - MAC users are now able to connect via HTTPS to the router without hassle
   + Added certificate for secure and reliable remote router management  via HTTPS – SSL connections are now encrypted with a 2048 bit key and the AES-256 cipher algorithm based on OPENSSL 0.9.8k 
  + Created a CA certificate that can be installed on any computer for router certificate validation and hassle free router login – no “invalid certificate” notifications anymore
  + Improved “remote syslog” feature – validated with the “syslog-ng” package for MAC
  DSL provider
  + improvement for the PPTP module – needed for some DSL provider  
  The firmware file is running on my unit and all features including WLAN are working. More than 700 successful installions until now !! Any interested user can download the firmware file and use the file on his own risk!!! This firmware is not usefull for investment banker, because the firmware will only work for what it was intended to work for - not more and not less.
  Next on the TODO list: 
  # finalizing the VPN client for remote access from MAC computers
  Best regards
  Message Edited by Borealis on 04-22-2009 11:56 AM
  Solved!
  Go to Solution.

  Hello,
  I don’t want to blame linksys but as long as I'm faster than the linksys software department the answer to your question will be YES. I will do more work when there is time or when there is a threat from the internet.
  Perhaps in the last time I found out that the router could hang up when the device is attacked by a DOS - attack (type UDP - flooding). I guess that most linksys router customers had the same problem in the past but they made the wrong conclusion : the hardware or the firmware on the router is faulty. Doing nothing is simply inacceptable!
  Best regards

• This accessory is not optimize for this iphone

  This accessory is not optimize for this iphone.  This massage keep pooping up every now and then in my new Iphone4.  Can anybody tell me how to fix it?  I googled in yahoo. They suggested me using cydia after jailbreaking.  I do not wan to jailbreak my I phone. So can anybody help?  It's really a nuisance.

  thanks for the fast reply wjosten, i tried that. even I restored my iphone twice.  but toi no avail.  Is there anything else that I can do to stop that massage from pooping up?  Maybe, like turning off something in accordance to the massage?  This things really bothered me especially when watching utube on Iphone.  i bought this less than a week?

• Automatically Optimize for battery lifespan works?

  Hi All,
  My current x230 is set to "Automatically optimize for batter lifespan" under battery maintenance. I read that for this settings, it'll set your battery to hover around 80%~ base on Lenovo forum under w530 section. However, i'm always seeing my battery at 100% when AC is plugged in; Remaining capacity: 62.47 wh ; Full charge capacity: 62.47wh. Is it suppose to be lesser? I suppose it not healthy for the battery to be constantly kept at 100%. Any x230 users experiencing this too?
  Would like my battery to last at least 2 years. usage :70% AC plugged in,30% on the go. 
  Thank you!
  PS: Updated to the latest Power manager 6.63.1
  Best Regards
  Solved!
  Go to Solution.

  Hi Iopplm,
  Nice to hear that your concern has been clarified.You can leave it to "Automatically optimize for battery lifespan".
  Best regards,
  Mithun.
  Did someone help you today? Press the star on the left to thank them with a Kudo!
  If you find a post helpful and it answers your question, please mark it as an "Accepted Solution"! This will help the rest of the Community with similar issues identify the verified solution and benefit from it.
  Follow @LenovoForums on Twitter!

• Which device for L2L VPN

  Today we are using a pair, for redundancy, of 2800 routers with crypto cards (AIM-VPN/SSL2) for our VPN Lan2Lan tunnels. The routers can terminate in different VRFs (VRF aware IPsec).
  But one thing we are having quite an issue with is configuration. We have to remember to put configuration on both devices individually, which we tend to forget from time to time. And as far as I know they are not able to sync configuration. But I could be wrong...
  I know that the ASA can, but then we have to have a lot of contexts which is quite expensive, and brings quite an amount of configuration each time we configure a new context.
  It is possible to find some devices that can handle VRF aware IPsec as well as single device configuration?
  Kind regards,
  Robert Pedersen

  Jeffin,
  All Jetpacks are not designed to be left online 24x7.  Jetpacks are mobile broadband devices designed for short usage in traveling situations.  If you attempt to treat your Jetpack as a normal home modem or router you will have lots of complaints about its performance.
  VZW offers a few other products that would be better suited for this scenario. The best would be a USB modem and router combo from pepwave or cradlepoint.  Reviews always appear to be the best with those devices.  VZW also offers its own 4G LTE router which would perform better than a Jetpack too.  HomeFusion is normally the best choice for home internet replacement but installation and maintenance may not be ideal for you as a remote home user. 
  Granted anything that depends on wireless tech is going to need to be rebooted every now and then.  Leaving a wireless connection in a location that you do not have common physical access to could be a chore to maintain.  It might be a good idea to find a neighbor in your neighborhood who you trust a key with and work out a deal where you are able to call them and have them reboot you every now and then.

• Tracking VPN usage

  Is there an snmp mib to track VPN usage for edge to edge or edge to host Vpn's on Asa or iOS firewalls? Down to individual tunnels?
  Sent from Cisco Technical Support iPad App

  Cheers Jolly,
  Yeah thats where I got the 0.7GB and assume that it is the tial usage from the start of the month. I am hoping that someone can know of a usage program that you can install to on every PC on your netwrok and show toal usage, install of going around every PC and checking it. it isn't a hasle but there should be something to do this!
  This won't account for other devices such as my xbox, phone, etc so thought I'd bounce a post or two on a few forums to see if anyone had a way of doing this. If I find an answer I will certainly share.
  Mac

• ASA 5505 WebVPN - It has taken a while for SSL VPN Relay to load. You need to verify Java is enabled in your browser

  ASA 5505
  ASA Version 9.0.(2)
  Suddently on the webvpn Interface when i click on my web bookmarks (and java launches in browser) i get this fail in Chrome and FF 'It has take a while for SSL VPN Relay til load. You need to verify Java is enabled in your browser' and nothing happens...
  Java IS enabled and running. Tried this in both 7.45 and 7.51
  No problem in IE 11 and java 7.45 and 7.51
  I've googled alot but have not been able to find any suggetions
  Hope you have a solution
  Best Regards.

  Any resolution on this?  Firefox/Chrome my cifs work but smart tunnel RDP doesn't, and in IE my shares don't work but RDP smart tunnel does....
  Cisco, if you're not going to do something good, just don't do it.  The SSL VPN is a hack job.

• Acrobat 9.3.4 (or 9.3.3.177): Save As with Optimize for Fast Web View

  When I do a Save As with Optimize For Fast Web View checked, the saving stops and an Adobe Acrobat dialog displays:
       The document could not be saved. There was a problem reading this document (111).
  If I uncheck Optimize For Fast Web View, the Save As seems to work.
  Is there a way to have Fast Web View work with Save As?
  Acrobat.exe is version 9.3.4 (or 9.3.3.177 in the properties). The Acrobat.DLL version is 9.3.4.218.

  Thanks.  I did submit a report at the site.  I hope somebody reads it as this is a big problem for us.
  Thanks again.

• Not able to optimize for You Tube

  So I have been using Adobe Premiere for almost a year and a half and the one thing that has bothered me is that no matter what I do I can't get full HD Video's (I am filming with a 720 camera) and it won't optimize for You Tube and will always look like this
  I have looked up several guides and no matter what I do it does not change any guides I might be missing or something wrong I would love to use the full potential that I can.

  AME has quite a number of YouTube presets ... one of 'em should pretty close to match expectations.
  Neil

• Two external interfaces; one to be used for outboud; second to be used for incoming VPN\Web traffic.

  I'm configuring our ASA and we have two AT&T circuits which we're only using one with our current Juniper firewall. I know the ASA doesn't support policy based routing so I'm wondering if the following hypothetical "config" is possible.
  External Interfaces:
  OUT_01 - 12.133.X.X
  OUT_02 - 201.61.X.X
  I would route all internal traffic to go out through OUT_01.
  We have over 5 site-to-site VPN and 30 external facing servers.  Could I use OUT_2 to configure all the inbound connections for the VPN and NAT rules?

  You can configure the ASA to allow asynchronous routing, as you are describing, by configuring TCP bypass.
  http://www.cisco.com/c/en/us/td/docs/security/asa/asa82/configuration/guide/config/conns_tcpstatebypass.html
  What this will do is you will still need to send traffic out one interface but the ASA will accept return traffic on either of the outside interfaces.  Configuring this can be a security risk as the ASA will ignor the state table.
  Or you could wait until ASA version 9.4 which will have support for PBR.  Ofcourse this is the first version that will support it, so don't be suprised if it has a few bugs.
  Please remember to select a correct answer and rate helpful posts

• I updated to iso 8 now I cant log into my apple id and its asking for a vpn password that I have never had either

  I updated my ipad air to iso 8 and now its asking for a vpn password I have never had one before, and even with my wifi shut off. It also will not let me sign in to my apple id, saying it is the wrong password, but I used it on my computer with no problem. to get to this blog.Tried restarting it, nothing, tried to shut off wifi nothing it will not let me do anything.

  User guides
  http://manuals.info.apple.com/MANUALS/1000/MA1595/en_US/ipad_user_guide.pdf

• I have an "unexpected error" on my iPad for my VPN.

  I have an "unexpected error" on my iPad for my VPN. I removed my old certificate because it said "not trusted" and received and installed a new certificate (now it shows trusted) but get the same message. Worked find before I installed iOS7.

  Could be a "bug".
  Send feedback to Apple.
  http://www.apple.com/feedback/ipad.html
   Cheers, Tom

• Set "optimize for screen display" at runtime?

  Hi,
  is it possible to set the option "optimize for screen display" at runtime when using the CR2008/.NET 2.0 runtime?
  Best regards,
  Florian

  Ok, I'm a bit smarter now. If I open the new pdf with reader 7 the graphics are in normal size at 100%. If I open the same pdf in Acrobat 9 pro everything is a bit to big with the "original size" setting, so the graphics are blured, because they get streched. It is a problem of displaying, the pdf seems to be ok, cause it looks good printed and good in Reader 7. But how can I know how the result will look at the users screen and why is the same file different in two reader versions?
  and there is still the problem with the pattern / diffusion / noise whatever is the best word for it.

• What is the definition of "All Projects" in P6 EPPM for the Team Usage Charts?

  In P6 Professional 8.3, there is a User Preference setting which can be used to define "All Projects" for the Resource Usage Profile. The choices are: All Open, All Closed except What-if, All Closed with Leveling Priority over x. In P6 EPPM 8.3, there are My Preferences settings. In these settings, I see several choices which are also in the P6 Professional User Preferences, but I do not see a way to set the definition of "All Projects". Does this mean that EPPM uses the SAME settings as selected in P6 Professional or does it mean that "All Projects" is not configurable in P6 EPPM? If it is not configurable in P6 EPPM, what is the definition of "All Projects" in P6 EPPM?

  http://www.apple.com/batteries/iphone.html  look here Apple-batteries-iphone.

• Which wireless router do I need for multiple VPN tunnels?

  I work at home and I connect to my office VPN (SSH Extranet Client) thru cable broadband. I need to have 2 VPN tunnels open as I frequently have my laptop & desktop connected to my work VPN. I've had a BEFSX41 for the past 3 years and it's worked good as it allowed for 2 VPN tunnels. It just died on me a few days ago and I would like to go wireless now. What wireless router(s) would meet my needs? Thanks in advance for any input.Message Edited by nolesworld on 11-27-200606:24 PM
  Message Edited by nolesworld on 11-27-200606:38 PM

  hi , the WRV200 will be a good choice....supports upto 50 tunnels and has wireless capabilities....