PPTP dialin server in ASR1001 question.

AFAIK ASR routers does not support PPTP tunnel termination as stated in configuration guide, but as I see in CLI
BRAS1#sh vpdn sess
%No active L2TP tunnels
%No active PPTP tunnels
BRAS1#sh vpdn group-select def
Default VPDN Group      Protocol
L2TP-IPsec               l2tp
L2TP-IPsec               pptp
vpdn-group L2TP-IPsec
! Default L2TP VPDN group
! Default PPTP VPDN group
accept-dialin
When i try to establish connection :
Sep 28 16:59:27.781: VPDN Received L2TUN socket message Incoming
Sep 28 16:59:27.781: VPDN uid:14 L2TUN socket session accept requested
Sep 28 16:59:27.781: VPDN uid:14 Setting up dataplane for L2-L2, no idb
Sep 28 16:59:27.781: VPDN Received L2TUN socket message Connected
Sep 28 16:59:27.781: VPDN uid:14 VPDN session up
but somehow
BRAS1#
Sep 28 16:59:49.933: VPDN uid:14 disconnect (AAA) IETF: 9/nas-error Ascend: 24/PPP LCP Fail
Sep 28 16:59:49.933: VPDN Unknown vpdn syslog error due to AAA disconnect code 24
Sep 28 16:59:49.933: VPDN uid:14 vpdn shutdown session, result=2, error=6, vendor_err=0, syslog_error_code=0, syslog_key_type=1
Sep 28 16:59:49.933: VPDN uid:14 VPDN/AAA: accounting stop sent
Sep 28 16:59:49.933: VPDN Received L2TUN socket message Disc
Sep 28 16:59:49.933: VPDN Failed to get session from socket handle 75000008
Can anybody explain this behavior?
Does it mean that Cisco just programably cut of the PPTP functionality?

Hello Sultanov,
As you well stated, PPTP termination is not supported in ASR platform.
My opinion is that the CLI commands and behavior you see are a consequence of code remaining in the IOS-XE version you are running. Most likely, since the feature is not supported, it wasn't tested and this remaining were not notice.
IOS-XE has a different structure than IOS. It inheritances some things form IOS but there are more other things that need to be implemented for a protocol to work properly.
Since it is not supported, even if you are able to bring a PPTP tunnel up on an ASR, if you face any issue with that deployment, it will not be supported by TAC or development teams.
Hopefuly this provides an answer to your concerns.
Best regards.

Similar Messages

Can't connect to PPTP-VPN server...

When attempting to connect to a DD-WRT PPTP VPN server I kept receiving the general "Can't connect to PPTP-VPN server." message. All of the settings were exactly correct and tested on a Windows laptop. I began writing this because I didn't have any other ideas but half way through it (out of the blue) decided to attempt connecting. It worked!
The only thing I did different was delete the /Library/Preferences/SystemConfiguration contents and reboot.
Let's hope it continues to work. Posting this in case anyone else has the same error as I.

A follow up on the VPN issue: it would only work if my laptop's wireless was tethered off of my Android phone - any other connection would connect to the VPN and get an IP but I couldn't ping anything. Also, after rebooting, I get the exact same damning error message now and any combination of rebooting and removing/renaming (don't ever delete system files!) /Library/Preferences/SystemConfiguration/* hasn't fixed the issue.
I very much hope Apple releases an update soon for this - it's a serious inconvenience! It must be a network stack issue too because I've tried many 3rd party applications that barf as well.

IVPN starts, but "the pptp-vpn server did not respond. Try reconnecting."

Hi. I am new to VPN, and I just got the software iVPN from Macserve, and the server starts successfully, using either PPTP or L2TP:
But the connections from my network do not connect. Every time I click on "connect" for either network connection, I get the error "the pptp-vpn server did not respond. Try reconnecting."
I set up both connections in my Network Preferences according to the support page (http://macserve.org.uk/support/ivpn/):
My Airport Express configurations have never given me any problems with my home network:
And I think that I forwarded the ports properly (even though my firewall is not activated):
What am I doing wrong?

The Apple routers can be a problem on vpn passthrough.
Ports that are required for vpn are more complicated ..
See earlier post.. eg How do I set up L2TP VPN?
Ports for PPTP which you have opened manually.. are not valid for L2TP.. so you need several more ports opened.
The problematic ones are GRE and ESP which are protocols not ports.
I think you can pretty well assume the apple router running anything that has BTMM in it won't work.. since it will need the port 500 for itself.
On the old express try going back to 7.6.1 firmware.. I have to say I don't use the express.. lots of extreme and TC.. so their firmware issues are slightly different so firmware versions for the express are somewhat different.
Try not to use both port forwards (mapping if you must).. and DMZ.. they can fight each other.. if DMZ doesn't work it is better to turn it right off and forward all the required ports.
Let me recommend a test.
Plug your cable modem directly into the computer running the VPN.. so you have no NAT router in front of it.
Pay attention to the local firewall that apple runs and what ports you will need to open on it to get vpn to work.. this is your best chance to get remote vpn running. If you fail with the public IP on the computer it will certainly fail through NAT.. and generally local firewall will be an issue.
You should of course test that a client in the local lan can connect by the vpn.. it is always worth testing from the easiest configuration to the most complex.
So local lan just as you have now..
Then direct cable connection to the computer.
Then NAT router.. but you can pretty well assume apple routers are going to be problematic because apple want to dally at BTMM using same ports as IPSEC uses for L2TP.
My email is live.. roll your mouse over it and talk to me direct..

Hyper-V Server 2012 Migration Questions

Hello All,
This is my first post here, but I have used these forums many times for information. Sorry in advance for the long post.
I have a few questions regarding migration to Hyper-V server 2012 for my production environment. I have done quite a bit of reading, but I have a few direct questions and I would like to get some direct answers.
My current production environment consists of one PowerEdge 2900 with 2 Xeon X5460 Quad Core 3.16GHz CPUs, 24 GB of RAM and a RAID 10 consisting of 8, 500 GB HDDs for a total of 2TB of storage. I am currently running Server 2008 R2 Enterprise w/ GUI as the
Hyper-V host OS. I have 4 virtual machines all also running Server 2008 R2 Enterprise. The 4 virtual machines consist of 1 domain controller, 1 Exchange Server with Exchange 2010 Standard, 1 Server running SharePoint 2010 Enterprise and the remaining server
running IIS with FTP and HTTP.
The network topology is as follows….
Hopefully it is clear from my diagram that the Hyper-V host OS is connected to the same physical network as the domain, but is not a joined to the domain. I set it up this way because I had concerns about connectivity and manageability because the domain
controller is a guest VM. Also, the IIS server is on a completely different physical network independent of the domain.
What I would like to accomplish is the migration of the above environment to Hyper-V Server 2012 as is. I want to keep my existing guest VMs unchanged and running Server 2008 R2 for now as well as keep the existing network topology intact.
I have 3 additional servers in a separate test environment that would be able to serve as temporary storage or whatever is needed for the migration process.
Here are the two main things I would like to accomplish with this migration…
1. Make the transition from Server 2008 R2 to Hyper-V Server 2012 as a host OS.
2. Migrate virtual hard disks from .VHD to the new .VHDX format.
All that being said, I have finally come to my questions regarding this process.
First and foremost, I would obviously need to back up my current setup in case something goes horribly wrong during the migration. My question regarding the initial backup is would it be better to do a bare metal backup of the Hyper-V host or should I do
individual backups (bare-metal?) of the Guest VMs from within their operating systems?
Second, since I plan to use Hyper-V Server 2012, I will have to manage the host OS using the RSAT from a domain joined client running Windows 7 Professional. How much of a pain is it going to be to setup RSAT and manage the non-domain joined host from a
domain joined client? Is there a better way without using SCVMM or using Server 2012 w/ a GUI as the host OS?
Third, are there any concerns I should have, precautions I should take or procedures I need to do before, during or after the migration regarding the existing VMs and the new virtualized hardware environment on the same physical host?
Forth, should I use the trial version of SCVMM 2012 SP1 (or another previous version) to perform the migration? What should I be aware of using SCVMM for the migration and then discontinuing its use after the migration is complete and moving to management
using the RSAT?
Fifth, if I don’t use SCVMM for the migration, what is the best procedure for moving the VMs? Should I just copy the VHDs to a temporary storage location, install Hyper-V server 2012, copy the VHDs back, create new VMs and attach the VHDs or should I use
the export/import process?
Number six, when is the best time to migrate the VHDs to VHDX format and what would be the best method?
And finally, do I need to worry about USN rollback with a single domain controller? From my reading, this seems to be a point of disagreement. Some people say it could happen while others say it won’t. Is there any point during the migration process where
it could occur either during the copying of VHDs or from the switch to VHDX?
Again, sorry for the long post and thanks for staying with me this far. Any information would be much appreciated

1) As Jens said below with Windows Server 2012 you can simple copy the configuration files and VHDs from a 2008 R2 server to a 2012 server and import them - they one caveat to this is that any vlan configuration is lost and you have to simply re-create it.
Optionally you can also export the virtual machines from Windows Server 2008 R2 and then import them on Windows Server 2012.
2) Remote management in a workgroup does have some caveat's associated with it - take a look at
http://blogs.technet.com/b/jhoward/archive/2009/08/07/hvremote-refresh.aspx. Generally I would recommend joining the Hyper-V management operating system to the domain - not just because of these issues but for a number of other features to work properly
(see below)
3) I always recommend validating the hardware and environment after the installation before migrating critical workloads to it - testing networking, backup etc... to make sure they function as expected. Also ensure that you upgrade the integration
components in the VM's after the migration.
4) That is an option - though you might find you like SCVMM
5) Recreating VM's using existing VHD's has some issues for example the BIOS GUID changes, all of the NIC's are re-plug and played etc... When possible copying the configuration or using export is much better.
6) The sooner the better - VHDx has a number of significant advantages, you can do the migration using the Hyper-V manager UI (edit disk) or via powershell with Convert-VHD. Do keep in mind that during the conversation you need 2x the space (for the
original and the new VHDx).
7) In the past you could get into trouble if you for example snapshotted an AD virtual machine and than reverted it - taking one offline and then brining it back online was never a problem. In Windows Server 2012 we addressed this with a feature called
generation ID's.
Domain considerations... A few things to keep in mind regarding the choice to not domain join the Hyper-V server.
- You can't live migrate virtual machines
- You can't utilize Hyper-V over SMB
- Management is more difficult and less secure
-Taylor Brown -Program Manager, Hyper-V -http://blogs.msdn.com/taylorb

Game server: Map managing questions

Hello everyone,
I'm trying to develop some kind of RPG. I have different issues, where I need advice:
1) Map(2D) managment on game server
The map I want to keep in memory on server will contain objects such as: Item, NPC, Character, etc.
Item, NPC, Character and other objects going to extend MapObject class, because I want to keep all this data in same place.
Let's suppose that the map will have 50x50 tiles..
I want to use Hashtable array to store elements there... So I will have something like this:
Hashtable <String, MapObject>[][] map = new Hashtable[50][50];
String(aka key) is going to be object_name + "_" + object_id..
The questions are:
- What about performance in this situation?
- Is there any other data structure which can suite better to this situation?
2) The other question I have is about sending map object(once in fixed period of time) and updates(for example some character walked or picked an item).
The architecture I thought for sending data to client is:
TCP Connection for authentication anc chat
MultiCast Socket for synchronizing map object and sending updates
- Is this aceptable architecture for server?
- Is MultiCast socket good for sending updates and map object?(because there will be significant gain in term of computation on server, comparing to TCP, but what about losses of packets? what about traffic? what kind of protections(excluding timeouts) should I implement on client-side? )
Thank you in advance.

patriot87 wrote:
Strange... I have also tried with 200k and same results... :D
How comes?Well, one reason is that your test is broken. The first set of tests will always take longer, cause it's before hotspot has kicked in, etc. I moved the test to a method, precreated the objects (remember, if gc happens in one and not the other it's a huge difference), and called them repeatedly. Once I did that, there wasn't really a noticeable difference between them:
import java.util.HashMap;
import java.util.Hashtable;
import java.util.Map;
import java.util.Random;
public class HashMapTest
   private static MapObject[] objs = new MapObject[200000];
   private static Random gen = new Random();
   public static void main(String [] agrs)
      for ( int i = 0; i < objs.length; i++ ) {
         objs[i] = new MapObject("ID" + i, "NAME"+i);
      hashMap();
      hashTable();
      hashMap();
      hashTable();
      hashMap();
      hashTable();
      hashMap();
      hashTable();
   private static void hashMap() {
      doTest(new HashMap<String, MapObject>());
   private static void hashTable() {
      doTest(new Hashtable<String, MapObject>());
   private static void doTest(Map<String, MapObject> map) {
      long start_time = System.currentTimeMillis();
      for (int i = 0; i < objs.length; i++)
         map.put(objs.id , objs[i]);
for (int i = 0; i < objs.length; i++)
int randomInt = gen.nextInt(objs.length);
map.get("ID" + randomInt);
System.out.println(map.getClass() + ": " + (System.currentTimeMillis() - start_time));
class MapObject
String name;
String id;
public MapObject (String id, String name)
this.id = id;
this.name = name;
}Results of one arbitrary test:
[pre]class java.util.HashMap: 343
class java.util.Hashtable: 500
class java.util.HashMap: 313
class java.util.Hashtable: 328
class java.util.HashMap: 453
class java.util.Hashtable: 313
class java.util.HashMap: 296
class java.util.Hashtable: 454[/pre]
Edited by: endasil on 13-Nov-2009 10:34 AM

How to DISABLE SSP server to E10000 question on boot

I have installed Solaris 8 on several systems -- E250, E450 and ultra 5.
During a boot, there is a question that is asked -- is this a spp server for E10000 system?
I cannot find documentation to disable the asking of this question or to give some file response so that the boot process finishes.
Thank you.
Henry Gee

1. Re-install without using the Installer CD or Supplemental CD or
2. Boot each disk to single user and pkgrm packages that begin with SUNWssp.
This occured because you used the installation CD and it installed every package on the "Solaris Supplemental"CD.
IF you need something from the Supplemental CD it would be wise to just install it after your Solaris install has completed. This is why many people never use the Installer CD. The just install using disk 1 of 2 and 2 of 2.

First Time Network/Server Set Up Questions

Hi,
I need help setting up my new Mac Pro including installing and configuring OS X Server (10.5) and setting up the appropriate IP and DNS settings. From reading various posts on this board, it seems like it can be quite complicated. I have no experience setting up a network and was hoping a description of the current set up and the desired set up along with what I think I need to do would be enough to get some input from folks on this board. Any help would be greatly appreciated.
Currently, I have a Verizon DSL connection. The Verizon provided modem is connected to an airport extreme base station (latest model). And, there are 4 iMacs connected wirelessly to the airport base station. The connection is a PPPoE connection. My ISP does not provide me with a static IP address. The iMacs connect to the base station using WPA 2.
Are there any other pieces of info that would be helpful to know about the current setup?
I would like to set the server up and add it to the mix. Initially, I only expect to access the server internally. However, I would like to eventually access services remotely. From what I understand, I should set it up "right" from the get go in order to be able to access the services I want remotely at a later date. Otherwise, I might have to reinstall the server and start from scratch later. Is this a possibility?
What I'm thinking is to still have the DSL modem plug into the airport base station. Then have the server connect by ethernet to the base station and still have the iMacs connect wirelessly. I'm thinking that having the airport between the server and the internet makes sense (and offers some additional protection). Does it? Or should the server be between the DSL modem and the base station?
Assuming that setup makes sense, what info do I need to have in place before I try to set the server up? Specifically, what do I need in order to make sure that the iMacs can "see" the server and that the server is accessible remotely over the internet? Is that last bit even possible in the absence of a static IP? And, what should I be able to pull from my iMac and base station and what will I need to reach out to Verizon about?
I also have what I'm assuming is a much simpler question compared to the above ones. The system is not preinstalled with the server. And, I do not have a monitor for the server. What are the steps I need to take to install the Server OS on the Mac Pro remotely? I believe I can do that by installing the Admin Tools on a 10.5 client. This might be a ridiculous series of questions, but do I turn the Mac Pro on first? Do, I put the Server install DVD in the Mac Pro or the client? Any other "obvious" things I should do? Do I need all of the networking info available when I install the Server OS or can I do that in 2 steps?
Thanks!

Stephen, You might find the $150 DVD on Leopard Server from Lynda.com helpful, or you can subscribe to the site and look at it on line. I am in your same situation. Let me know if you get any good help! I just started the DVD and so far it does answer some of your questions. It also looks like dyndns.com can provide you DNS services that stay in sync with your dynamic IP address. I am calling them tomorrow to figure that out.
Dean

Crystal reports server 2008 VI questions

I aplogixze if I am asking many questions in the same thread. If so please let me know. and I'll create seperate threads.
Questions with Crystal reports server 2008 VI
1. In my current VS2005 web application with CR 2008 developer I have done the following :
a. When the user selects a report it prompts for the database that is needs to connect. User could select Test or Live database
b. I could hide the export button for each report
c. Add the same report twice to the same folder under diffrent report descriptions
Could I do the same with Crystal reports server 2008 VI?
2. I have added a report that connects to the SQL server and also I set up the required ODBC for the report on the server. I could run the report without any issue.
When I add the same report to another folder in CMC or add a new report that uses the same connection, and try to run it, I get the following error.
I did set location and verify database in Crystal designer many times and added the report into CMC, but still it gives me the error.
However the first report that I added still works fine. For some reports it shows the parameter screen and when I enter them and click OK it gives the same error. I checked the logon information and they are correct. Reports work fine in Crystal designer.
error message:
"The database logon information for this report is either incomplete or incorrect"

I assume that you have built your reports with the CR Designer 2008 V1. Try to open the affected report in the CR Designer and select Database->VErify database and save it back into the repository. Does it work?
Regards,
Stratos

Mdt 2012 + WDS service on the same server. DHCP question

Hi,
I am using MDT 2012 on Server 2008.
Boot images are placed on 6 years old WDS server running on 2003.
I need to remove WDS server (2003).
Cannot find exact instructions for enabling PXE for MDT2012.
I don't need introduction guides. But clear few lines of instructions.
From quickly checking web I understand that I need:
1. install WDS services on the same MDT2012 server 2008.
2. import Lite Touch boot images from Deployment Share
The only point I am missing is DHCP question. In Microsoft prerequisites for WDS services, DHCP should be present on the same server were WDS is...
I watched one video on web and the guy just installs WDS on the MDT server and not mentioning DHCP at all.
Sure that there is DHCP server serving multiple subnets on the network.
My confusion about DHCP on WDS prerequisite comes from not having DHCP services installed on old WDS 2003 machine.
So why it is required on WDS service in server 2008/2012?
Can somebody confirm that DCHP must exist on the same server were MDT and WDS services are enabled.
And is it a valid option to have all 3 on one Server machine if DHCP is really needed for enabling PXE in MDT environment?
I saw the info about ports 67 (should be disabled) and 60 for PXE enabled.
Will appreciate DHCP part explanation and how to...
Thanks.
"When you hit a wrong note it's the next note that makes it good or bad". Miles Davis

RL69,
in my environment DHCP serves multiple subnets. For now no need to serve client machines on different subnets. The Deployments will be done on subnet were MDT resides. If necessary PXE relay could be enabled on Core switch (or where necessary).
So if I understand correctly for a scenario above all what I need to do for PXE enabled MDT is:
to add WDS role/service on the same MDT server and import boot images.
Right?
Will do it right after your confirmation :)
"When you hit a wrong note it's the next note that makes it good or bad". Miles Davis

SQL server service accounts question

We created a test SQL environment using a Technet evaluation copy of Windows Server 2012 along with an evaluation copy of SQL2012. After testing, everything is working as planned so were going to enter the product keys for both Windows Server and SQL 2012.
My question is that once we have our Server licensed we’re going to start a new domain and recreate all the user accounts but I installed SQL using a local user account I created called ”sqladmin”. Once Server 2012 is the DC in the new domain will I need to
change all the service accounts for SQL in order for it to function or can I still use the local “sqladmin” user account? If I can re-use that local account are there any downside to that? What’s the best practice in this scenario

Once Server 2012 is the DC in the new domain will I need to change all the service accounts for SQL in order for it to function or can I still use the local “sqladmin” user account? If I can re-use that local account are there any downside to that?
What’s the best practice in this scenario
Hi,
You can use your sqladmin account but that wont be a good security practice. You should always follow principal of least privilege and should run SQL server with domain account having least privilege.Below link will help you in this
Configure SQL server account and services
Please mark this reply as the answer or vote as helpful, as appropriate, to make it useful for other readers
My TechNet Wiki Articles

MVA SQL Server Query Assessment question

Hi Guys
I was doing a course on MVA, Querying Microsoft SQL Server Quick Start. This question came up in the assessment:
True or False: You use the INTERSECT operator to combine results from two SELECT statements. Only rows that appear in both results sets are displayed.
I answered it as TRUE but it marked it wrong.
Am I not right??
Thanks

Hi,
Choose yourself :-)
http://technet.microsoft.com/en-us/library/ms188055.aspx
[Personal Site] [Blog] [Facebook]

OSB and SOA Server (Mediator) Design question

As OSB is the strategic ESB and is used for external services does it make sense that all communication must go out via the OSB.
For example if I have a request that comes in gets routed through the OSB and then calls a backend composite which contains a BPEL that sits on the Oracle SOA server that calls multiple external services (CRM, SAP etc..) Would all the calls out from the BPEL then go back to the OSB and out to the external services (via proxy/business services.) This seems to add a lot of network hops to the whole architecture.
I can't really seem to find a diagram to explain this but an external service consumer could call the Oracle SOA stack that will come in via the OSB (for security gateway as OWSM 11g doesn't support gateway yet.) Then get transformed into the CDM and then passed on to the Oracle SOA server that has a composite service with BPEL that orchestrates multiple calls to internal and external services. The external ones requiring a transformation back into the service providers format.
How does this flow work?

If you are talking to external B2B systems you should use the Oracle B2B Server, have a look at this link,
http://download.oracle.com/docs/cd/E14571_01/integration.1111/e10229/b2b_intro.htm#CEGGAGJA
Section 1.6 in there gives a good example of doing just that. The OSB mediator is responsible for talking between CDM's in this case so it does some internal work, within one CDM set of services and then when ready the mediator translates from CDM to the format needed for the B2B. The B2B Server then does all the clever stuff needed to talk to the B2B partner.
In the internal case where the call is within the Enterprise the Oracle documentation states that there may be cases when doing this translation from CDM to legacy format may take place within the SOA server but recommends that it is normally done using the mediator in the same way as with partner calls. The 11g developer documentation states "The stated direction by Oracle is for the Oracle Service Bus to be the preferred ESB for interactions outside the SOA Suite. Interactions within the SOA Suite may sometimes be better dealt with by the Oracle Mediator component in the SOA Suite, but we believe that for most cases, the Oracle Service Bus will provide a better solution and so that is what we have focused on within this book."
Just what those exceptions are is an interesting question. If you have a CDM and all of your legacy world has translators you will spend all of your time hoping up to the mediator and back down maybe that is the exception. If everything is using the mediator then the SOA orchestration power is lost. If on the other hand most of your system lives within a canonical schema and there is one exception perhaps you make it pay the price for non-conformance.

Add New Server with Configtool Questions

Hello All,
We are running EP7 SP12 on W2K3 with 16GB RAM and 4 CPUs.
As part of one the Go Live checks done to the system a while back, it was recommended that we increase the number of Server processes to the instance.
So, I followed the information here (http://help.sap.com/saphelp_nw70/helpdata/en/68/dcde416fb3c417e10000000a155106/frameset.htm) to add 3 additional servers to the instance. When I restarted the J2EE engine, it basically sat there in a 'Starting Apps' status. I waited about 2 hours before I stopped the startup process. I went back into Configtool and did a 'Remove Server' on the last, Server3, process and restarted J2EE. This time, everything did start OK, but now I have a few questions I hope someone can answer.
1. Is there a limit to the number of Server processes that can exist in a single instance? If not, what would cause the J2EE servers to essentially hang on startup although they didn't look hung, just extremely slow starting up.
2. I thought when you did the initial 'Add Server' it was supposed to create a duplicate Server process. But, when I check the directory structures of the newly created Server processes, they aren't anywhere close to being the same as the original Server0 process. For example, we have a custom redirect in place when people logon to the Portal, but this wasn't transferred/copied to the new Server1 or Server2. The same was true for other customizations. Also, when looking at the structure, Server0 has approx 80,000 files and 15,000 sub-folders. When looking at the new Server1 & Server2, they are both different in size in both files and folders in respect to each other and compared to Server0. Shouldn't they all be the same?
3. A follow up to question 2. If they aren't the same and they are supposed to be the same, can we just copy the missing files & folders from Server0 to the new Servers?
4. Lastly, since I did a 'Remove Server' in Configtool for Server3, it does not appear in the MMC when the J2EE engine starts. This I expect. But, it did not remove the directory structure for Server3. If I try to manually delete the Server3 directory, it simply says it is in use and won't let me delete the structure. So, is it safe to delete this structure since it isn't being used anymore? If so, I'll stop SAP and delete the structure offline. Do I have to do any database cleanup once I do this? If so, can someone point me to some documentation as to what needs to cleaned up in the DB and how?
Thanks,
Tom

Thanks for the info.
Interesting though. I open a message with SAP and posed these same questions. Their response was similar to yours, but it opened up a whole new set of questions. What follows is the text of that message for others to benefit from (clipped for clarity):
SAP's response to the original set of questions posted here:
=====================
....1.Number of server nodes depends upon the CPU speed.J2EE Engine
can support upto 21 server nodes in a intance.
If number of server nodes is big,it will slow down the startup process.
2.When you create the "New Server"its not the dublicate server.
Its a new server.You can not copy mising files from one server to other
J2EE engine syncronises the server nodes in the instance.
3.Yes.You need to manually delete the file system.Configtool deletes
the server node from the DB....
=====================
To which I replied:
=====================
.....2. I thought when you did the initial 'Add Server' it was supposed to
create a duplicate Server process. But, when I check the directory
structures of the newly created Server processes, they aren't anywhere
close to being the same as the original Server0 process. For example,
we have a custom redirect in place when people logon to the Portal, but
this wasn't transferred/copied to the new Server1 or Server2. The same
was true for other customizations. Also, when looking at the structure,
Server0 has approx 80,000 files and 15,000 sub-folders. When looking at
the new Server1 & Server2, they are both different in size in both
files and folders in respect to each other and compared to Server0.
Shouldn't they all be the same?"
You replied:
"2.When you create the "New Server"its not the dublicate server.
Its a new server.You can not copy mising files from one server to other
J2EE engine syncronises the server nodes in the instance."
But, from actual experience, it does NOT synchronize the nodes, rather
it is a partial synchronization.
So, are the following staements true:
-When a new server process is added, ONLY standard SAP delivered files
& folders are synchronized. True or False?
-No custom files/folders are synnchronized. True or False?
-Custom values, whether part of standard SAP deliverables or custom
deliverables, are NOT synchronized. True or False?
-Each server node needs to be configured independently. True or False?
The reason I'm asking such specific questions is because of what we are
seeing. I'll use the same example from before. We modified the
index.html file for the Portal in Server0. When we added the new
server nodes, this index.html file was not synchronized. Instead, the
default index.html file was created for the new server nodes. That is
an example at the file level. Here is an example from a configuration
perspective. In Server0, in the Visual Admin tool, we have a TREX
server specified in TREX service properties. When the new server nodes
were created, this setting was NOT transferred. Therefore, TREX didn't
work until I specifically went back into VA and added the TREX settings
to the new server nodes. This is a major problem and opens up three
more questions:
1.How do we know what settings were transferred vs. those that weren't
transferred?
2.Also, if you can't copy missing files/folders from one server to
another, then how are we supposed to get those files/folders into the
new server(s)?
3. Is there a way to do a comparison between the server nodes to see
what settings are missing?.....
=====================
SAP's reply:
=====================
.....-When a new server process is added, ONLY standard SAP delivered files
& folders are synchronized. True or False? TRUE
-No custom files/folders are synnchronized. True or False? TRUE
-Custom values, whether part of standard SAP deliverables or custom
deliverables, are NOT synchronized. True or False? TRUE
-Each server node needs to be configured independently. True or False?
YES.
If any new server node is added,J2EE Engine syncronises the information
at the time of next restart......
======================
My Reply:
======================
.....1.How do we know what settings were transferred vs. those that weren't
transferred?
2.Also, if you can't copy missing files/folders from one server to
another, then how are we supposed to get those files/folders into the
new server(s)?
3. Is there a way to do a comparison between the server nodes to see
what settings are missing?.....
======================
SAP's Reply:
======================
.....1.How do we know what settings were transferred vs. those that weren't
transferred?
NO there is no way.
2.Also, if you can't copy missing files/folders from one server to
another, then how are we supposed to get those files/folders into the
new server(s)?
You need to deploy the appliactions again on the new server.
3. Is there a way to do a comparison between the server nodes to see
what settings are missing?
No there is no way......
======================
So, although I really didn't have the answers I was looking for, I confirmed the message. It seems ludicrous to me that there is no way of doing a comparison or manual synch between two server nodes. Also, I can't believe you have to configure each node independently let alone when you do a deployment you now have to deploy to each server individually, of which I haven't found any docs explaining how to do that. So if someone here has a suggestion I'd appreciate it. Although at this point, given the fact the server nodes are so out of synch as to make them almost unusable, we might just delete them all and go back to one node, although I don't want to have to do that.
Thanks,
Tom

Proxy server 3.6 question

DEAR ALL,
I have two questions regarding proxy server 3.6:
1. I would like to know the Maximum number of simultaneous requests a proxy server can hold.
2. Maximum number of simultaneous connections a proxy server can hold.
Thanks alot,
Scotty

Determined by the value of MaxProcs.

Flexconnect Radius Server Overwrite interface Question

Hello All,
Can someone confirm/comment on the following:
In a flexconnect scenario, for site 1, i would like to source the radius requests to a remote radius (at the flexconnect site 1). as i can understand i need to enable the RAdius Server Overwrite interface option. Is that all?
Also, for flexconnect sites X this can also be done per WLAN X configuration.
Is this correct?
Thanks

Hi pana,
Answers below :
Meaning that, even if i configure the Flexconnect groups with local authentication, then how does the Flexconnect ap reach the local radius?
When you are working with local authentication, the AP will communicate with the local RADIUS Server using the local routing in the branch office without the 802.1X traffic being sending to the WLC......the AP will communicate directly to the local radius server using it IP address and the local routing. (This communication is transparent if you see from the WLC because the WLC will not intermediate the authentication between the client and RADIUS, who will intermediate is the AP. The WLC will receive informations when the AP is in connected mode about the client and the authentication method and etc after the user was authenticated).
Example :
RADIUS SERVER
WLC ----SWITCH L3------ROUTER----(MPLS Link)-----ROUTER---SWITCH L3---AP
The WLC continues managing the Access Point but will not"talk" to the RADIUS Server, who will "talk" to the RADIUS Server is the AP in the branch office using the SWITCH L3 (Asumming that you have the RADIUS in one network and the AP in another network in the same branch office)
Understand now ?
As i can understand, in a local switching/local authentication scenario the Flexconnect ap can only map a WLAN to local VLAN( route-able network on the remote site) that serves for the users-data plane. Then in conjunction with the radius server override option, how can this FlexconnectAP send requests to the local radius? I can only suppose that it will do so using the users locally mapped VLAN/WLAN but i cant reference this anywhere.
The AP will only send the requests do the local radius only if you configure the FlexConnect Local Auth and FlexConnect Group. Enabling this option the AP will use it IP Address to communicate with RADIUS without the WLC intermedianting this communication.
Without the FlexConnect Local Auth enable in the WLAN the AP will continue directing the 802.1X requests to the WLC and the WLC will send to the RADIUS Server and in this situation if you enabled the radius overwrite interface the WLC will try to reach the RADIUS Server using the WLAN interface and not the management the interface. (You do not need the radius overwrite interface option to work with Local Auth if you want to use the AP as a Authenticatior, you only use this interface if you want that the WLC with central authentication direct the 802.1X authentications to the RADIUS)
One information about the VLAN/WLAN is really mapped statically but you can manipulate it using the RADIUS Atrributes, changing the VLANs from the USERs based in the AD Group and after the authentication. It can work in local auth scenario or central auth scenario.
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Mobility/emob73dg/emob73/ch7_HREA.html#pgfId-1103070
I hope it helps and if not helps i think i am not understanding the real question.

PPTP dialin server in ASR1001 question.

Similar Messages

Maybe you are looking for