PCs connecting to ME3400 Switch not pinging to each other!!
hi,
We have a new ME-3400-24TS-A Switch.Its a 24 10/100 Mbps switch.But when we connect the two PCs on its any of the two ports ,they are not pinging to each other.Both the PCs are in the same Network.
basic switching is not happening.Kindly help me!!The IOS version is :S340XBT-12225SEG
Cisco ME 340X SERIES IOS METRO BASE W/O CRYPTO TAR
The ports in the same vlan don't do local switching per default on a ME3400. You have to enable local switching for a vlan with the commands "vlan xxx" and "uni-vlan community".
But, only 8 ports can be in the same vlan. So, maybe you have choose the wrong switch if you need a normal L2 switch. Normally, in Metro Ethernet you don't want local switching between user ports.
I hop this helps. Please rate all posts.
Cheers
Rene
Similar Messages
-
I have two location one is Delhi(IP-192.168.100.*) and another is Mumbai(IP-192.168.1.*) and both are connected by MPLS line and ping with each other.
We have one DC in Delhi location and domain name is CAPLDC and Delhi location all PC is member of this domain and working properly.
now i am trying join the Mumbai location PC with my Domain(CAPLDC) but they are not join with my DC and generate the error.
I have chek the DNS and nslookup all are correct but this is generate error.
Is this possible Mumbai location join with this Domain(CAPLDC)???
One more thing when i have created another DC with this name (papldc.com) then Mumbai location is joined properly.
Pls find the error message below and also find the attachment.
Note: This information is intended for a network administrator. If you are not your network's administrator, notify the administrator that you received this information, which has been recorded in the file C:\Windows\debug\dcdiag.txt.
The domain name "capldc" might be a NetBIOS domain name. If this is the case, verify that the domain name is properly registered with WINS.
If you are certain that the name is not a NetBIOS domain name, then the following information can help you troubleshoot your DNS configuration.
DNS was successfully queried for the service location (SRV) resource record used to locate a domain controller for domain "capldc":
The query was for the SRV record for _ldap._tcp.dc._msdcs.capldc
The following domain controllers were identified by the query:
capldcserver.capldc
win-dyfq2poc88q.capldc
However no domain controllers could be contacted.
Common causes of this error include:
- Host (A) or (AAAA) records that map the names of the domain controllers to their IP addresses are missing or contain incorrect addresses.
- Domain controllers registered in DNS are not connected to the network or are not running.
Pankaj KumarWhy are you using a single labeled domain? I would recommend renaming the domain name to be something like domain.com.
Please refer to the articles below to fix your current issue:
http://www.wincert.net/tips/networking/1614-cant-join-pc-to-a-domain-with-single-label.html
http://www.itgeared.com/articles/1128-using-single-label-dns-names-for-active/
This posting is provided AS IS with no warranties or guarantees , and confers no rights.
Ahmed MALEK
My Website Link
My Linkedin Profile
My MVP Profile -
Need Help Connecting (2) 2950 switches together, cant see each other
Can anyone please help me get my switches talking? I am currently in training for entry level certs and can't continue until i get these talking.
I have two 2950 switches connected via port 0/1 on both switches. (tried both crossover and regular cat5 connections)
I have both ports active and both VLAN 1s active and both ports set to switchport mode trunk
There is no port security enabled. Both switches have IP's assigned in the respective default VLAN 1.
IP address 10.1.10.10 for switch 1
IP address 10.1.10.11 for switch 2
VTP is set to server on both, ( I tried transparent on both as well )
I cant get these switches to ping each other and or access telnet from each other. If i connect an outside connection i can telnet individually to each but they wont see each other through ping or CDP Neighbors.
Any ideas?? Please help as i am trying to get my CCENT in a few weeks!
THANK YOU!******* SWITCH 1 LOGIN *******
User Access Verification
Password:
SW1>en
Password:
SW1#show run
SW1#show running-config
Building configuration...
Current configuration : 1884 bytes
version 12.1
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
hostname SW1
enable secret 5 $1$TIuw$zBOptQNhwsRgZ6Frv.PVx.
ip subnet-zero
ip ssh time-out 120
ip ssh authentication-retries 3
spanning-tree mode pvst
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
interface FastEthernet0/1
switchport mode trunk
interface FastEthernet0/2
switchport mode access
interface FastEthernet0/3
switchport mode access
interface FastEthernet0/4
switchport mode access
interface FastEthernet0/5
switchport mode access
interface FastEthernet0/6
switchport mode access
interface FastEthernet0/7
switchport mode access
interface FastEthernet0/8
switchport mode access
interface FastEthernet0/9
switchport mode access
interface FastEthernet0/10
switchport mode access
interface FastEthernet0/11
switchport mode access
interface FastEthernet0/12
switchport mode access
interface FastEthernet0/13
switchport mode access
interface FastEthernet0/14
switchport mode access
interface FastEthernet0/15
switchport mode access
interface FastEthernet0/16
switchport mode access
interface FastEthernet0/17
switchport mode access
interface FastEthernet0/18
switchport mode access
interface FastEthernet0/19
switchport mode access
interface FastEthernet0/20
switchport mode access
interface FastEthernet0/21
switchport mode access
interface FastEthernet0/22
switchport mode access
interface FastEthernet0/23
switchport mode access
interface FastEthernet0/24
switchport mode access
interface Vlan1
ip address 10.1.10.10 255.255.255.0
no ip route-cache
ip http server
banner motd ^C ******* SWITCH 1 LOGIN ******* ^C
line con 0
logging synchronous
login
line vty 0 4
password vty
login
line vty 5 15
password vty
login
end
SWITCH 2 BELOW
****** SWITCH 2 LOGIN ******
banner motd
User Access Verification
Password:
SW2>en
Password:
SW2#show run
SW2#show running-config
Building configuration...
Current configuration : 1894 bytes
version 12.1
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
hostname SW2
enable secret 5 $1$nSFY$umNCHgrkLGTwHyI.dkbJf.
ip subnet-zero
ip ssh time-out 120
ip ssh authentication-retries 3
spanning-tree mode pvst
no spanning-tree optimize bpdu transmission
spanning-tree extend system-id
interface FastEthernet0/1
switchport mode trunk
interface FastEthernet0/2
switchport mode access
interface FastEthernet0/3
switchport mode access
interface FastEthernet0/4
switchport mode access
interface FastEthernet0/5
switchport mode access
interface FastEthernet0/6
switchport mode access
interface FastEthernet0/7
switchport mode access
interface FastEthernet0/8
switchport mode access
interface FastEthernet0/9
switchport mode access
interface FastEthernet0/10
switchport mode access
interface FastEthernet0/11
switchport mode access
interface FastEthernet0/12
switchport mode access
interface FastEthernet0/13
switchport mode access
interface FastEthernet0/14
switchport mode access
interface FastEthernet0/15
switchport mode access
interface FastEthernet0/16
switchport mode access
interface FastEthernet0/17
switchport mode access
interface FastEthernet0/18
switchport mode access
interface FastEthernet0/19
switchport mode access
interface FastEthernet0/20
switchport mode access
interface FastEthernet0/21
switchport mode access
interface FastEthernet0/22
switchport mode access
interface FastEthernet0/23
switchport mode access
interface FastEthernet0/24
switchport mode access
interface Vlan1
ip address 10.1.10.11 255.255.255.0
no ip route-cache
ip http server
banner motd ^C ****** SWITCH 2 LOGIN ******
banner motd ^C
line con 0
logging synchronous
login
line vty 0 4
password vty
login
line vty 5 15
password vty
login
end -
Hello, I'm trying to use my MAC Book Pro with Adobe FMLE. Once I select either my internal or external camera and microphone, in the live encoder I get this error message. "Please check if video devices are connected properly and are not used by any other application." The Facetime HD camera works in Photo Booth. Can someone assist me in what to do please, Thanks in advance!
Hi all ,
We found the solution for this issue .
We have installed the crypto library in global executable directory and any way it will replicate those binaries to individual application servers.
But the parameters are still looking for global executable directory for loading crypto library during time.
So all application servers are trying to load crypto library files from global "exe" instead of local directory, which was clustered .Sometimes during heavy network load it may cause some delays to load the libraries to individual application servers and in turn is causing the license key issues.
Note 982056 - The license key library has not been initialized yet..
SAP Recommend option for all SSF parameters should be instance profile parameters not in default parameters..This was mentioned in below note:
Note 662340 - SSF Encryption Using the SAPCryptolib --- .
But in our Environment SSF and SEC parameter were set in DEFAULT profile instead Instance profile.
Recommendations:
o ssf/ssfapi_lib = <Path and file name of SAPCRYPTOLIB>
o sec/libsapsecu = <Path and file name of SAPCRYPTOLIB>
This was mentioned in the below SAP HELP.
http://help.sap.com/saphelp_nw04/helpdata/en/3d/bf463c6796e61ce10000000a114084/frameset.htm. -
How to display items with pk/fk relationship not equal to each other
I want to show that the values of the same field are not equal to each other
In forms, how can I write below:
If :blockB.chk_bx = 'N' then
:blockA.rec_id <> :blockB.rec_id;
also tried :blockA.rec_id != :blockB.rec_id; but get error message. Assume I cannot use the inequality sign.
The rec_id in blockname A and B have a pk/fk relationship.
Please help.I'm sorry i didn't understand your requirement.
I want to show that the values of the same field are not equal to each otherSo you have an item in block A and an item in block B and you want to indicate that the value for these two items are different? How do you want to indicate that? Do you want to mark the field with some color? Do you want to have a checkbox next to it?
In forms, how can I write below
If :blockB.chk_bx = 'N' then
:blockA.rec_id !=:blockB.rec_id;I assumed the != in the statement for its missing in your post. What do you expect the statement to do? Your statement is a comparison outside an IF or CASE-statement, maybe you want to do some
IF :blockA.rec_id !=:blockB.rec_id THEN
dosomestuff;
END IF;
The rec_id in blockname A and B have a pk/fk relationshipSo, did you connect the two block with a relation in forms? If yes, the values in the two blocks should always match.
Perhaps cou could give some details about your requirement. -
How can i get my items to stay in place and not cross over each other when readjusting the browser s
How can i get my items to stay in place and not cross over each other when readjusting the browser size.
Basically on my site when i go from a small screen to a big screen everything doesn't adjust to the screen size. I don't know what im missing
Here's the link to the page all the pages & they all do it
http://theatricalworkslive.com/
Thanks in advancePlease read this whole message before doing anything.
This procedure is a diagnostic test. It’s unlikely to solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
The purpose of the test is to determine whether the problem is caused by third-party software that loads automatically at startup or login, or by a peripheral device.
Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards. Boot in safe mode and log in to the account with the problem. Note: If FileVault is enabled, or if a firmware password is set, or if the boot volume is a software RAID, you can’t do this. Post for further instructions.
Safe mode is much slower to boot and run than normal, and some things won’t work at all, including wireless networking on certain Macs. The next normal boot may also be somewhat slow.
The login screen appears even if you usually log in automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin. Test while in safe mode. Same problem? After testing, reboot as usual (i.e., not in safe mode) and verify that you still have the problem. Post the results of the test. -
I have recently changed from Windows 7 desktop to a new iMac running Mavericks. I have chosen a wired keyboard as I like the usual Delete key function.
I cannot find out how to select several items which are not next to each other (e.g. words in Pages). The well known method in Windows, which is repeated in the the Apple Finder Help screen, does not work. Would be grateful for adviceHi JBowfin,
If I am understanding your question correctly, I believe that I have an article that will address this question for you:
Mac OS X 10.0: Use Command Key to Select Multiple Items in List and Column Views
http://support.apple.com/kb/TA20396
Take care, and thanks for visiting the Apple Support Communities.
-Braden -
I am trying to transfer files from my MacBook Pro (using Mac OSX 10.6.8) to MacBook Air (Mac OSX 10.7.4) using Migration Assist via WiFi connection. The two macs cannot find each other. any suggestions
Try this article - http://support.apple.com/kb/HT4889.
If it doesn't help, post back in this thread.
Best of luck,
Clinton -
NetWeaver XI components are not talking to each other
I am an XI consultant, i dont have proper Basis support at my client, since they are fond of only ABAP stack.
They installed netweaver xi from the market place.
I am unable to import any SWCV (even SAP BASIS) from SLD to IR and IR menu is blank.
Unable to find list of adapters in Integration Directory.
RWB -component monitoring is blank .
SLD- creation of products,SWCV,Technical Sys,Buss Sys is possible.
In conclusion i can say that they all are not co-operative and not talking to each other
And also i want to know wheather xi 7.0 is compatable to databases Oracle 8.0.3 and Oracle 8.0.4Hi Venkata,
Does the XI post Installation steps done by the team or not? It seems that there is some steps missing while doing the XI installation. Talk to to the BASIS team and tryu to find out the solution.
>>> Unable to find list of adapters in Integration Directory.
Check thisblog for it:
/people/venugopalarao.immadisetty/blog/2007/03/15/adapter-engine-cannot-be-found-in-integration-directory
>>> And also i want to know wheather xi 7.0 is compatable to databases Oracle 8.0.3 and Oracle 8.0.4
In my view, yes. XI is compatible with all the versions of Oracle Database above version 8 but never tried it.
Reward points if helpful. *
Regards,
Subhasha Ranjan -
VM Machines not communicating with each other on Hyper-V 2012
In Hyper-V 2012 on Server 2012 I have created two VM's Server 2008 64-bit & Server 2012 64-bit.
The problem is both VM's are not communicating with each other.
Regards
Ganesh ParteHello,
seems this belongs to the Hyper-V networking configuration settings. Please ask this in http://social.technet.microsoft.com/Forums/en-US/home?forum=winserverhyperv
and also describe how you have the network settings configured in the Hyper-V MMC.
Best regards
Meinolf Weber
MVP, MCP, MCTS
Microsoft MVP - Directory Services
My Blog: http://blogs.msmvps.com/MWeber
Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
Twitter: -
Both can connect to test sites but not videochat with each other
I am using a 2GHz PPC iMac on 10.4.6 with external iSight. I can see the Apple ad from one of the test sites. My wife is using a G4 PowerBook running the latest Panther OS with external iSight. She is in a hotel but can also see the Apple ad from the test site. When she was home, we could videochat over Bonjour.
But, while she is in the hotel out of town, we couldn't videochat with each other. Whether one initiated or the other did, we both get the "XXX failed to respond" message even though we obviously did accept the videocall.
If we both can videochat with the test sites, how come we cannot videochat with each other?
Given the above, I hope some experts can rule out a bunch of stuff and let me know the finite (and small) set of potential reasons affecting our situation so that I can work on resolving this efficiently.
What could be the likely problem?
On my side, I use an Apple AEBS that uses DHCP and NAT but my iMac is manually set to 10.0.1.201. I have set the ports in Firewall but even when I turned off Firewall it did not work.
Any help is much appreciated.Hi Heng-Yee Yong,
The test sites are most likely set to have the ports open by UPnP which does not use NAT.
If you modem is routing and is using Port Forwarding and the Airport is as well then you have two lots of NAT going on at your end.
I would Open Airport Admin Utilty (Applications/Utilities) and log on to the Airport
Go to the Network tab.
Deselect Distributing Addresses which wll trun off NAT in the Airport and make it a Wireless access device.
This means your computer will have to take an IP form the Modem.
This may not be rquired if the modem id is Bridge mode itself as this measn it is not routing and all port will be open without the use of NAT.
This App can help identify if NAT is a problem
http://bleu.west.spy.net/~dustin/projects/natcheck.xtp
Or at least whether you have Consistent NAT or not.
8:50 PM Wednesday; April 26, 2006 -
Need for 2 vlan to ping to each other
Hi
On a 3750 I have configure a new vlan 114 and assigned it the adress 192.168.114.254, I've put my port in trunk mode with with the other vlan wich is vlan 1 192.168.14.254. I would like for both network to ping each other, when I received a adress from the dchp I get 192.168.14.20/24 with the gateway 192.168.14.254
Thanks for your helpYou will need to setup SVIs (Switched Virtual Interfaces) or connect the switch to a router so traffic between the two VLANs can be routed. Take a look at the following link for more info/explanation:
http://www.cisco.com/c/en/us/td/docs/ios/12_2/switch/configuration/guide/fswtch_c/xcfvl.html
Thank you for rating useful posts! -
Anyconnect VPN peers cannot ping, RDP each other
I have an ASA5505 running ASA 8.3(1) and ASDM 7.1(1). I have a remote access VPN set up and the remote access users are able to log in and access LAN resources. I can ping the VPN peers from the remote LAN. My problem that the VPN peers cannot ping (RDP, ectc..) each other. Pinging one VPN peer from another reveals the following error in the ASA Log.
Asymmetric NAT rules matched for forward and reverse flows; Connection for icmp src outside:10.10.10.8 dst outside:10.10.10.9 (type 8, code 0) denied due to NAT reverse path failure.
Below is my ASA running-config:
ASA Version 8.3(1)
hostname ciscoasa
domain-name dental.local
enable password 9ddwXcOYB3k84G8Q encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
interface Vlan1
nameif inside
security-level 100
ip address 192.168.1.1 255.255.255.0
interface Vlan2
nameif outside
security-level 0
ip address dhcp setroute
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
ftp mode passive
clock timezone CST -6
clock summer-time CDT recurring
dns domain-lookup inside
dns server-group DefaultDNS
name-server 192.168.1.128
domain-name dental.local
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network RAVPN
subnet 10.10.10.0 255.255.255.0
object network NETWORK_OBJ_10.10.10.0_28
subnet 10.10.10.0 255.255.255.240
object network NETWORK_OBJ_192.168.1.0_24
subnet 192.168.1.0 255.255.255.0
access-list Local_LAN_Access remark VPN client local LAN access
access-list Local_LAN_Access standard permit host 0.0.0.0
access-list DefaultRAGroup_splitTunnelAcl standard permit 192.168.1.0 255.255.255.0
access-list VpnPeers remark allow vpn peers to ping each other
access-list VpnPeers extended permit ip object NETWORK_OBJ_10.10.10.0_28 object NETWORK_OBJ_10.10.10.0_28
pager lines 24
logging enable
logging asdm informational
logging mail informational
logging from-address [email protected]
logging recipient-address [email protected] level informational
logging rate-limit 1 600 level 6
mtu outside 1500
mtu inside 1500
ip local pool VPNPool 10.10.10.5-10.10.10.10 mask 255.255.255.0
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-711.bin
no asdm history enable
arp timeout 14400
nat (inside,any) source static any any destination static RAVPN RAVPN
nat (inside,outside) source static NETWORK_OBJ_192.168.1.0_24 NETWORK_OBJ_192.168.1.0_24 destination static NETWORK_OBJ_10.10.10.0_28 NETWORK_OBJ_10.10.10.0_28
nat (inside,outside) source static any any destination static NETWORK_OBJ_10.10.10.0_28 NETWORK_OBJ_10.10.10.0_28
object network obj_any
nat (inside,outside) dynamic interface
object network RAVPN
nat (any,outside) dynamic interface
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
dynamic-access-policy-record DfltAccessPolicy
http server enable
http 192.168.1.0 255.255.255.0 inside
no snmp-server location
no snmp-server contact
snmp-server community *****
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
crypto ipsec transform-set ESP-AES-128-SHA-TRANS esp-aes esp-sha-hmac
crypto ipsec transform-set ESP-AES-128-SHA-TRANS mode transport
crypto ipsec transform-set ESP-DES-SHA-TRANS esp-des esp-sha-hmac
crypto ipsec transform-set ESP-DES-SHA-TRANS mode transport
crypto ipsec transform-set ESP-AES-192-SHA-TRANS esp-aes-192 esp-sha-hmac
crypto ipsec transform-set ESP-AES-192-SHA-TRANS mode transport
crypto ipsec transform-set ESP-AES-256-SHA-TRANS esp-aes-256 esp-sha-hmac
crypto ipsec transform-set ESP-AES-256-SHA-TRANS mode transport
crypto ipsec transform-set ESP-3DES-SHA-TRANS esp-3des esp-sha-hmac
crypto ipsec transform-set ESP-3DES-SHA-TRANS mode transport
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-192-SHA ESP-AES-256-SHA ESP-3DES-SHA ESP-DES-SHA ESP-AES-128-SHA-TRANS ESP-AES-192-SHA-TRANS ESP-AES-256-SHA-TRANS ESP-3DES-SHA-TRANS ESP-DES-SHA-TRANS
crypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map outside_map interface outside
crypto ca trustpoint LOCAL-CA-SERVER
keypair LOCAL-CA-SERVER
crl configure
crypto ca trustpoint ASDM_TrustPoint0
enrollment self
subject-name CN=ciscoasa
keypair billvpnkey
proxy-ldc-issuer
crl configure
crypto ca server
cdp-url http://ciscoasa/+CSCOCA+/asa_ca.crl
issuer-name CN=ciscoasa
smtp from-address admin@ciscoasa
crypto ca certificate chain LOCAL-CA-SERVER
certificate ca 01
**hidden**
quit
crypto ca certificate chain ASDM_TrustPoint0
certificate 10bdec50
**hidden**
quit
crypto isakmp enable outside
crypto isakmp policy 10
authentication crack
encryption aes-256
hash sha
group 2
lifetime 86400
crypto isakmp policy 20
authentication rsa-sig
encryption aes-256
hash sha
group 2
lifetime 86400
crypto isakmp policy 30
authentication pre-share
encryption aes-256
hash sha
group 2
lifetime 86400
crypto isakmp policy 40
authentication crack
encryption aes-192
hash sha
group 2
lifetime 86400
crypto isakmp policy 50
authentication rsa-sig
encryption aes-192
hash sha
group 2
lifetime 86400
crypto isakmp policy 60
authentication pre-share
encryption aes-192
hash sha
group 2
lifetime 86400
crypto isakmp policy 70
authentication crack
encryption aes
hash sha
group 2
lifetime 86400
crypto isakmp policy 80
authentication rsa-sig
encryption aes
hash sha
group 2
lifetime 86400
crypto isakmp policy 90
authentication pre-share
encryption aes
hash sha
group 2
lifetime 86400
crypto isakmp policy 100
authentication crack
encryption 3des
hash sha
group 2
lifetime 86400
crypto isakmp policy 110
authentication rsa-sig
encryption 3des
hash sha
group 2
lifetime 86400
crypto isakmp policy 120
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
crypto isakmp policy 130
authentication crack
encryption des
hash sha
group 2
lifetime 86400
crypto isakmp policy 140
authentication rsa-sig
encryption des
hash sha
group 2
lifetime 86400
crypto isakmp policy 150
authentication pre-share
encryption des
hash sha
group 2
lifetime 86400
client-update enable
telnet 192.168.1.1 255.255.255.255 inside
telnet timeout 5
ssh timeout 5
console timeout 0
management-access inside
dhcpd auto_config outside
dhcpd address 192.168.1.50-192.168.1.99 inside
dhcpd enable inside
threat-detection basic-threat
threat-detection statistics
threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
ssl trust-point ASDM_TrustPoint0 outside
webvpn
enable outside
svc image disk0:/anyconnect-win-3.1.04072-k9.pkg 1
svc profiles DellStudioClientProfile disk0:/dellstudioclientprofile.xml
svc enable
tunnel-group-list enable
internal-password enable
smart-tunnel list SmartTunnelList RDP mstsc.exe platform windows
group-policy DefaultRAGroup internal
group-policy DefaultRAGroup attributes
dns-server value 192.168.1.128
vpn-tunnel-protocol l2tp-ipsec
split-tunnel-policy tunnelspecified
split-tunnel-network-list value DefaultRAGroup_splitTunnelAcl
default-domain value dental.local
webvpn
svc modules value vpngina
group-policy DefaultRAGroup_1 internal
group-policy DefaultRAGroup_1 attributes
dns-server value 192.168.1.128
vpn-tunnel-protocol l2tp-ipsec
default-domain value dental.local
group-policy DfltGrpPolicy attributes
dns-server value 192.168.1.128
vpn-simultaneous-logins 4
vpn-tunnel-protocol IPSec l2tp-ipsec svc webvpn
group-lock value RAVPN
split-tunnel-network-list value Local_LAN_Access
default-domain value dental.local
webvpn
url-list value DentalMarks
svc modules value vpngina
svc profiles value dellstudio type user
svc ask enable default webvpn
smart-tunnel enable SmartTunnelList
username wketchel1 password 5c5OoeNtCiX6lGih encrypted
username wketchel1 attributes
vpn-group-policy DfltGrpPolicy
webvpn
svc profiles value DellStudioClientProfile type user
username wketchel password 5c5OoeNtCiX6lGih encrypted privilege 15
username wketchel attributes
vpn-group-policy DfltGrpPolicy
webvpn
svc modules none
svc profiles value DellStudioClientProfile type user
username jenniferk password 5.TcqIFN/4yw0Vq1 encrypted privilege 0
username jenniferk attributes
vpn-group-policy DfltGrpPolicy
webvpn
svc profiles value DellStudioClientProfile type user
tunnel-group DefaultRAGroup general-attributes
address-pool VPNPool
authorization-server-group LOCAL
tunnel-group DefaultRAGroup ipsec-attributes
pre-shared-key *****
tunnel-group DefaultRAGroup ppp-attributes
authentication pap
authentication ms-chap-v2
authentication eap-proxy
tunnel-group RAVPN type remote-access
tunnel-group RAVPN general-attributes
address-pool VPNPool
authorization-server-group LOCAL
tunnel-group RAVPN webvpn-attributes
group-alias RAVPN enable
tunnel-group RAVPN ipsec-attributes
pre-shared-key *****
tunnel-group RAVPN ppp-attributes
authentication pap
authentication ms-chap-v2
authentication eap-proxy
tunnel-group WebSSLVPN type remote-access
tunnel-group WebSSLVPN webvpn-attributes
group-alias WebSSLVPN enable
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
service-policy global_policy global
smtp-server 173.194.64.108
prompt hostname context
hpm topN enable
Cryptochecksum:3304bf6dcf6af5804a21e9024da3a6f8
: endHi,
Seems to me that you could clean up the current NAT configuration a bit and make it a bit clearer.
I would suggest the following changes
object network VPN-POOL
subnet 10.10.10.0 255.255.255.0
object network LAN
subnet 192.168.1.0 255.255.255.0
object-group network PAT-SOURCE
network-object 192.168.1.0 255.255.255.0
network-object 10.10.10.0 255.255.255.0
nat (inside,outside) source static LAN LAN destination static VPN-POOL VPN-POOL
nat (outside,outside) 1 source static VPN-POOL VPN-POOL destination static VPN-POOL VPN-POOL
nat (any,outside) after-auto source dynamic PAT-SOURCE interface
The above should enable
Dynamic PAT for LAN and VPN users
NAT0 for the traffic between LAN and VPN
NAT0 for traffic between VPN users
You could then remove the previous NAT configurations. Naturally please do backup the configuration before doing the change if you wish to move back to the original configuration.
no nat (inside,any) source static any any destination static RAVPN RAVPN
no nat (inside,outside) source static NETWORK_OBJ_192.168.1.0_24 NETWORK_OBJ_192.168.1.0_24 destination static NETWORK_OBJ_10.10.10.0_28 NETWORK_OBJ_10.10.10.0_28
no nat (inside,outside) source static any any destination static NETWORK_OBJ_10.10.10.0_28 NETWORK_OBJ_10.10.10.0_28
no object network obj_any
no object network RAVPN
In the event that you dont want to change the configurations that much you might be fine just by adding this
object network VPN-POOL
subnet 10.10.10.0 255.255.255.0
nat (outside,outside) 1 source static VPN-POOL VPN-POOL destination static VPN-POOL VPN-POOL
But the other above configurations changes would make the current NAT configurations simpler and clearer to see each "nat" configurations purpose.
- Jouni -
Related emails not folding into each other in one folder / but do in all others
It really bizarre for me, as my other folders also have mail routed to them via various rules, and related messages fold neatly into each other, with a little triangle next to them, indicating that there is a whole chain in there.
But in this one particular mail folder, each message shows up one by one, I am not sure why?
The rules route messages into it by subject line (i.e. if it contains "zee" move it to that folder).
Can anyone explain?
Thank you!
ZebblerHello eporon,
the only possibility to create a DVD with several movies and have the option to either play the parts separatly or "play all" as in commercial DVDs is to duplicate your movie(s).
This means you have to import the individual movies (as you already did), then create a new movie where you join the parts into one. Now import that movie as well and name the menu button "play all".
Important: this can only work if the combined parts are less than 60 min long (DVD-R is max 120 min).
Alternatively you could create a single movie out of the four parts and place chapter markers for each individual title (ceremony, reception...) the let iDVD create a chapter submenu. Now the separate titles can be accessed from there.
hope this helps
mish -
I have a MB pro (10.7.5) and two PC's(windows 7). I am unable to ping either of PC through Mac. However, Both PC's reply ping made to each other and to Mac as well. Help me with this. Searched Internet. Cant resolve till now
Regards
MacIts.Request timeout for icmp_seq 0
Request timeout for icmp_seq 1
Request timeout for icmp_seq 2
Request timeout for icmp_seq 3
Request timeout for icmp_seq 4
Request timeout for icmp_seq 5
Request timeout for icmp_seq 6
is the reply m getting.
Maybe you are looking for
-
Trace File in pro*c program !!
Hiiii, I want to set the trcae file in my pro*c program but unable to do so. can anyone here help me out ... also i would like to know whether we can generate trace file for remote database connections, in my client program. I was using the syntax as
-
Regular Expressions Help in Dreamweaver
Hi i am using Dreamweaver CS3, i am creating more than 100 HTML files every couple of days and need to use the regular Expressions Feature in the Find and Replace box but couldn't find or generate the expression i am looking For, i want to Replace ev
-
Is there a new iPhone 4 coming out?
Ok, so my story is this -I bought myself an iPod 4th gen 80g then a few weeks later the 5th gen came out and i could have bought the 80gb 5th gen alot cheaper.Then I bought the iPhone 3G about March 2009 and a few weeks later the iPhone 3GS was annou
-
Running Web service permanently
Hello! I want to keep a Web service running permanently, because when the client communicates with the Web service, the service always has to parse a 2 MB ontology first, which takes too much time. Instead, it should be instantiated and initialized j
-
Hi All, I had created a sales order PR. PR is converted as STO PO. SO number & Item number available in Account Assignment Tab of STO. During Delivery process via VL10B, system is considering the Unrestricted Stock instead of Sales Order Stock. How t