Receving packets from outside source over PIX

Hi.I have a rather strange problem. We have a PIX515E in our company and for the last couple of days we have been receiving packets with an invalid domain name on our DNS server from addresses outside of our network. What is really strange is that from the outside traffic can enter only our DMZ(not the inside network) via specific ports (mostly tcp port 80) for specific services and the problem is happening on the inside.
Is there any way to monitor for such packets when they arrive on a PIX or better yet block them(they arrived from 4 different IP adresses from 4 different ranges)? Is it perhaps possible that a PC on the inside is allowing access to such packets?
Any help is most welcome.

Refer to the following document for more detail
ASA 7.x/PIX 6.x and Above: Open/Block the Ports Configuration Example
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080862017.shtml

Similar Messages

Creating Node data on Author server from outside source?

I was wondering if it is possible to create node data on the author server from an outside source such as the publish server, without using reverse replication?
IE,
User accessing form page on publish server, enters data, submits the form. Which somehow would create node data directly on the author server without storing any data on the publish server.
Is this even possible?
Thanks

Thank you for all the responses.
Yes I do agree that not using reverse replication as the system is designed is not exactly a wise design choice. The problem I am facing is that the end user generated content is security sensitive and cannot be store on the publish instance. (Even temporarily)
I have managed to write a servlet on the Author server to accept the post data and create node data on the Author repository.
However to do this, I have had to disable login/security on the Author server for the servlet path (IE /bin/posthandlerservlet ) so that the author servlet can be accessed from the outside. Firewall has also been adjusted to let traffic through as well.
Now my remaining question would be, is opening up this path to the Author server much more dangerous and less secure that creating the node data on the Publish server in a place that protected access? We are really worried that the node created data on the publish server could somehow be accessed by end users in the event of a security problem.

Recording from outside source

Tring to record from my line in off of a dvd player, can here the music coming through, but when I goto record it and play it back I get no sound. I've tried musicmatch and Neromix, both set up to record from line in. Any ideas? Thanks

Hi,
Did you set the input "V" to the line you want to record from?
As you need to select the source for recording....
To get there, click the little-speaker-right-below 2 times, then you get the mixer.....
Now goto options->properties, select the recording and press ok (make sure you have selected all the lines you need to see in the mixer)
Then you have the recording mixer, now select the input you want to use....
I hope this works for you....

Load buttons into a movie from outside source

Hi,
I am making a scrollpane with buttons in it numbered from 1
to about 100. I may start off with numbers 1, 3, 4, 6,9, etc. I
want to be able to add 2, 5, 7, and 8 later and still have the
buttons show up in numerical order. Any idea how I could do that.
Is it possible.

The movies that I want to play one after another are not that
large, all are between 250K and 1MB, but there are 10 altogether.
There is no interactivity in any of the .swf's. This is just a
linear animation which needs to be broken down into pieces because
one .swf containing the whole animation would be about 18MB.
I have a basic to intermediate understanding of
actionscripting, but I'm a designer not a programmer and find some
of this difficult. Can someone please tell me if the code below
would work?
For example if I have a main fla. and it contains an empty
movieclip with an instance name MC,
on the first frame I add the following code:
var files:Array = ["1.swf","2.swf"];
var counter:Number = 0;
function loadSwf(val:Number):Void {
if (counter == files.length) {
counter = 0;
if (counter<0) {
counter = files.length-1;
MC.loadMovie(files[counter], 1);
counter += val;
loadSwf(1);
Then create all the swfs I want to load, and in the last
frame of each swf, create an empty keyframe and add this code :
_parent.loadSwf(1);

Cant access My SQL Database on Azure VM from outside source

I have Word Press running on an Azure Virtual Machine. It uses My SQL. I would like to read the My SQL databasre from an ASP.Net application. I have opened the 3306 internal TCP port. I am attempting to read the My SQL database from Navicat on
my client before I try ASP.Net and I get a Cant connect message. i can access the same database successfully from a local server copy of Navicat. The credentials are the same on both. The only difference is the external port number.
Is the problem with Navicat? Can you recommend another way to test the connection? I have used Shields Up to verify that the external port is open.

Hi,
The Azure SQL Database
service is only available with TCP port 1433. To access Azure SQL Database from your computer, ensure that your firewall allows outgoing TCP communication on TCP port 1433.
More information:
http://msdn.microsoft.com/en-us/library/azure/ee621781.aspx
Regards,
Mekh.

Card Charged From outside source

I went to log on to Skype this morning and it had seemed my account was suspended. After some digging and finally getting back on i find my account drained and my card charged several times. No luck contacting Skype.

Alazak wrote:
No luck contacting Skype.
Hi,
Did you try the steps in this FAQ: https://support.skype.com/faq/FA1170
Let us know in which step you got stuck and we can assist you further.
Andre
If answer was helpful please mark it with Kudos and if issue is resolved mark it with solution. This will help other users find this answer more easily. Thanks in advance!

Javascript to read from outside source

I have several documents that use app.PopupMenu to display choices to the user. The list is the same on all documents. I want to be able to change this list in one place for all documents.
But, I am unable to use a database with ODBC. I could use an MS Access file, XML, TXT, or other such method.
Can someone tell me how I could do this please?

Have you read this tutorial?: http://acrobatusers.com/tutorials/getting-external-data-into-acrobat-x-javascript

Access log4j.properties outside source folder

Hi,
I have developed a standalone java application, for logging the application i have created a log4j.properties in the source folder.
it is woring fine and the logs are created as specified in the properties file.
Issue:
i have created a jar which contains the complete source code and log4j.properties file.
if i try to create a jar without log4j.properties since the properties file will change by customer frequantly, i need to keep the log4j.properties outside the source folder.
but my jar is unable to access the log4j.properties when i try to run the appplication.
Question:
how do we access the log4j.properties from outside source folder?
thanks,
J R

gimbal2 wrote:
T.PD wrote:
In addition what gimbal2 sad: Do you create a MANIFEST.MF file in your jar?
If so you should add (or extend) the ClassPath entry to include the current directory ( *.* ) so you can have the log4j.properties file in the folder where you call your jar from:[...]This is very dangerous. It makes the path not relative to where the jar is, but to where you invoke the java command.The OP's request is to have the (log4j) properties file outside of the jar maybe for easier editing.
Adding any known folder in the file system to the class path is the only way I know to achieve this (Do you know better?). Folliwing this you could try to guess paths to add hoping that they will exist on all Systems you will use and place the properties file(s) there. On the other hane the current working dir the java command is invoked in is perdictable. Usually it's the directory the jar itself is located...
I agree that this solution can be dangerous and opens the possibility to access classes located in a valid package structure below current working dir . But if you add the ' *.* ' as the last entry in your classpath at least the classes from all your other jars are accessed first...
bye
TPD

Cannot send to Distribution Group emails from outside exchange

Hi,
I have created several emails linked to distribution groups in Exchange 2007. When i email to these groups from an email hosted on the server the email goes through just fine. When I try to send to these emails from an external email address (one from hotmail or yahoo) the email is never received and I never get a message back saying anything went wrong. I am able to receive email to all normal user accounts. I know it was possible in Exchange 2003 to have group emails receive email from outside sources, as I used several group emails as logins at various forums, and received updates from them.
Am I missing some point of the setup? I have all domains open to be received from, hence why I can receive to my normal user email address. Any help would be apprecaited.
Thanks

Hello Scotty,
When you create any distribution list with Exchange Management Console - EMC or Exchange management Shell - EMS in 2007 by default Sender Authentication is Enabled to prevent unwanted messages from spam and from outside domain, this is by default in design...
You need to disable it to get email from outside.
From EMC: Recipient Configuration -> Distribution Groups -> Select a group -> Properties -> Mail Flow Settings -> Message Delivery Restrictions -> Properties -> Untick “Require that all senders are authenticated”
From EMS: Distribution List not getting mails from outside - NDR 5.1.1

Voip from outside pix

Has anyone successed with fixup h323 for voip through the pix firewall. CCO seems to say the fixup h323 should have fixed the problem but I seem can't make it work !
My scanario:
CCM ( and IP Phones ) --(inside) PIX (outsie) -- IP Phone ( with some wireless 7920s )
Calls from outside to inside work OK.
Calls from inside to outside: Phone ring (signalling works OK) but no audio. Can't answer the phone. I can't see the dynamic RTP/RTCP on the PIX between the phones.
(I tested with 6.0 and 6.3 )
Thanks,

Check if the fixup for SIP is enabled. This will pre-allocate the RTP UDP connections automatically when it analyses the signaling packets. The RTP/RTCP is all dynamic, you do not add these ports forwarding manually . The PIX looks at the packets and determines what ports are requested to open communication and the PIX will open these ports.
If an inside endpoint initiates a call to an outside endpoint, a port is opened to the outside interface to allow RTP/RTCP UDP packets to flow to the inside address and port specified in the INVITE message from the inside endpoint. Unsolicited RTP/RTCP UDP packets to an inside interface will not traverse the Firewall, unless the PIX configuration specifically allows it. The behaviour observed by you does not seem to comply with the above statement. Check for an error messages or debugs to troubleshoot the exact issue.

Getting "IPSEC(epa_des_crypt): decrypted packet failed SA identity check" messages on packets from only one of two far-end sources sharing the same tunnel, the other source works fine. What exactly does this error mean?

One computer at COMPANY-A is attempting to communicate with two
computers located at COMPANY-B, via an IPsec tunnel between the
two companies.
All communications are via TCP protocol.
All devices present public IP addresses to one another, although they
may have RFC 1918 addresses on other interfaces, and NAT may be in use
on the COMPANY-B side. (NAT is not being used on the COMPANY-A side.)
The players:(Note: first three octets have been changed for security reasons)
COMPANY-A computer      1.2.3.161
COMPANY-A router        1.2.3.8 (also IPsec peer)
COMPANY-A has 1.2.3.0/24 with no subnetting.
COMPANY-B router        4.5.6.228 (also IPsec peer)
COMPANY-B computer #1   4.5.7.94 (this one has no issues)
COMPANY-B computer #2   4.5.7.29 (this one fails)
COMPANY-B has 4.5.6.0/23 subnetted in various ways.
COMPANY-B also has 9.10.11.0/24, but it is not involved in the issue.
What works:
The COMPANY-A computer 1.2.3.161 can communicate via the single IPsec
tunnel to COMPANY-B computer #1 4.5.7.94 without problems.
The "show crypto session detail" command shows Inbound/Outbound packets
flowing in the dec'ed and enc'ed positions.
What doesn't:
When the COMPANY-A computer 1.2.3.161 attempts to communicate
via the single IPsec tunnel with the COMPANY-B computer #2 4.5.7.29,
the COMPANY-A router eventually reports five of these messages:
Oct 9 15:24:54.327: IPSEC(epa_des_crypt): decrypted packet failed SA identity check
Oct 9 15:24:57.327: IPSEC(epa_des_crypt): decrypted packet failed SA identity check
Oct 9 15:25:03.327: IPSEC(epa_des_crypt): decrypted packet failed SA identity check
Oct 9 15:25:15.328: IPSEC(epa_des_crypt): decrypted packet failed SA identity check
Oct 9 15:25:39.329: IPSEC(epa_des_crypt): decrypted packet failed SA identity check
Oct 9 15:26:27.328: IPSEC(epa_des_crypt): decrypted packet failed SA identity check
and the "show crypto session detail" shows inbound packets being dropped.
The COMPANY-A computer that opens the TCP connection never gets past the
SYN_SENT phase of the TCP connection whan trying to communicate with the
COMPANY-B computer #2, and the repeated error messages are the retries of
the SYN packet.
On the COMPANY-A side, this IPsec configuration has been set up on a 3745,
a 3725, and some 76xx routers were tried, all with similar behavior,
with packets from one far-end computer passing fine, and packets from
another far-end computer in the same netblock passing through the same
IPsec tunnel failing with the "failed SA identity" error.
The COMPANY-A computer directs all packets headed to COMPANY-B via the
COMPANY-A router at 1.2.3.8 with this set of route settings:
netstat -r -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags   MSS Window irtt Iface
4.5.7.0         1.2.3.8         255.255.255.0   UG        0 0          0 eth3
1.2.3.8.0       0.0.0.0         255.255.255.0   U         0 0          0 eth3
10.1.0.0        0.0.0.0         255.255.240.0   U         0 0          0 eth0
169.254.0.0     0.0.0.0         255.255.0.0     U         0 0          0 eth3
10.0.0.0        10.1.1.1        255.0.0.0       UG        0 0          0 eth0
0.0.0.0         1.2.3.1         0.0.0.0         UG        0 0          0 eth3
The first route line shown is selected for access to both COMPANY-B computers.
The COMPANY-A router (IPsec tunnel endpoint, 1.2.3.8) has this
configuration:
crypto isakmp policy 10
encr 3des
authentication pre-share
group 2
lifetime 28800
crypto isakmp key XXXXXXXXXXXXXXXXXXXXXXX address 4.5.6.228
crypto ipsec security-association lifetime seconds 86400
crypto ipsec transform-set COMPANY-B01 esp-3des esp-sha-hmac
crypto map COMPANY-BMAP1 10 ipsec-isakmp
description COMPANY-B VPN
set peer 4.5.6.228
set transform-set COMPANY-B01
set pfs group2
match address 190
interface FastEthernet0/0
ip address 1.2.3.8 255.255.255.0
no ip redirects
ip virtual-reassembly
duplex auto
speed auto
no cdp enable
crypto map COMPANY-BMAP1
ip forward-protocol nd
ip route 0.0.0.0 0.0.0.0 1.2.3.1
ip route 10.0.0.0 255.0.0.0 10.1.1.1
ip route 1.2.3.8.0 255.255.255.0 FastEthernet0/0
access-list 190 permit ip host 1.2.3.161 4.5.7.0 0.0.0.255
access-list 190 permit ip host 1.2.3.161 9.10.11.0 0.0.0.255
bridge 1 protocol ieee
One of the routers tried had this IOS/hardware configuration:
Cisco IOS Software, 3700 Software (C3725-ADVIPSERVICESK9-M), Version 12.4(25c),
RELEASE SOFTWARE (fc2)
isco 3725 (R7000) processor (revision 0.1) with 115712K/15360K bytes of memory.
Processor board ID XXXXXXXXXXXXXXX
R7000 CPU at 240MHz, Implementation 39, Rev 3.3, 256KB L2 Cache
2 FastEthernet interfaces
4 ATM interfaces
DRAM configuration is 64 bits wide with parity disabled.
55K bytes of NVRAM.
31296K bytes of ATA System CompactFlash (Read/Write)
250368K bytes of ATA Slot0 CompactFlash (Read/Write)
Configuration register is 0x2102
#show crypto sess
Crypto session current status
Interface: FastEthernet0/0
Session status: UP-ACTIVE
Peer: 4.5.6.228 port 500
IKE SA: local 1.2.3.8/500 remote 4.5.6.228/500 Active
IPSEC FLOW: permit ip host 1.2.3.161 4.5.7.0/255.255.255.0
        Active SAs: 2, origin: crypto map
IPSEC FLOW: permit ip host 1.2.3.161 9.10.11.0/255.255.255.0
        Active SAs: 0, origin: crypto map
#show crypto sess det
Crypto session current status
Code: C - IKE Configuration mode, D - Dead Peer Detection
K - Keepalives, N - NAT-traversal, X - IKE Extended Authentication
Interface: FastEthernet0/0
Session status: UP-ACTIVE
Peer: 4.5.6.228 port 500 fvrf: (none) ivrf: (none)
      Phase1_id: 4.5.6.228
      Desc: (none)
IKE SA: local 1.2.3.8/500 remote 4.5.6.228/500 Active
          Capabilities:(none) connid:1 lifetime:06:26:27
IPSEC FLOW: permit ip host 1.2.3.161 4.5.7.0/255.255.255.0
        Active SAs: 2, origin: crypto map
        Inbound: #pkts dec'ed 651 drop 16 life (KB/Sec) 4496182/23178
        Outbound: #pkts enc'ed 574 drop 2 life (KB/Sec) 4496279/23178
IPSEC FLOW: permit ip host 1.2.3.161 9.10.11.0/255.255.255.0
        Active SAs: 0, origin: crypto map
        Inbound: #pkts dec'ed 0 drop 0 life (KB/Sec) 0/0
        Outbound: #pkts enc'ed 0 drop 0 life (KB/Sec) 0/0
The COMPANY-B device on their end of the IPsec VPN is a Juniper SSG1000
Version 6.1 (ScreenOS)
We only have a limited view into the Juniper device configuration.
What we were allowed to see was:
COMPANY-B-ROUTER(M)-> sh config | incl COMPANY-A
set address "Untrust" "oss-COMPANY-A-1.2.3.161" 1.2.3.161 255.255.255.255
set ike gateway "COMPANY-A-1-GW" address 1.2.3.8 Main outgoing-interface "ethernet2/1" preshare xxxxxxxxxxxxxxxxxxxxxx proposal "pre-g2-3des-sha"
set vpn "COMPANY-A-1-IKE" gateway "COMPANY-A-1-GW" no-replay tunnel idletime 0 proposal "g2-esp-3des-sha-28800"
set policy id 2539 from "Untrust" to "Trust" "oss-COMPANY-A-1.2.3.161" "9.10.11.0-24" "ANY" tunnel vpn "COMPANY-A-1-IKE" id 0x309a pair-policy 2500
set policy id 2500 from "Trust" to "Untrust" "9.10.11.0-24" "oss-COMPANY-A-1.2.3.161" "ANY" tunnel vpn "COMPANY-A-1-IKE" id 0x309a pair-policy 2539
set policy id 2541 from "Trust" to "Untrust" "4.5.7.0-24" "oss-COMPANY-A-1.2.3.161" "ANY" tunnel vpn "COMPANY-A-1-IKE" id 0x309b pair-policy 2540
set policy id 2540 from "Untrust" to "Trust" "oss-COMPANY-A-1.2.3.161" "4.5.7.0-24" "ANY" tunnel vpn "COMPANY-A-1-IKE" id 0x309b pair-policy 2541
COMPANY-B-ROUTER(M)->
I suspect that this curious issue is due to a configuration setting on the
Juniper device, but neither party has seen this error before. COMPANY-B
operates thousands of IPsec VPNs and they report that this is a new error
for them too. The behavior that allows traffic from one IP address to
work and traffic from another to end up getting this error is also unique.
As only the Cisco side emits any error message at all, this is the only
clue we have as to what is going on, even if this isn't actually an IOS
problem.
What we are looking for is a description of exactly what the Cisco
IOS error message:
IPSEC(epa_des_crypt): decrypted packet failed SA identity check
is complaining about, and if there are any known causes of the behavior
described that occur when running IPsec between Cisco IOS and a Juniper
SSG device. Google reports many other incidents of the same error
message (but not the "I like that IP address but hate this one" behavior),
and not just with a Juniper device on the COMPANY-B end, but for those cases,
not one was found where the solution was described.
It is hoped that with a better explanation of the error message
and any known issues with Juniper configuration settings causing
this error, we can have COMPANY-B make adjustments to their device.
Or, if there is a setting change needed on the COMPANY-A router,
that can also be implemented.
Thanks in advance for your time in reading this, and any ideas.

Hello Harish,
It is believed that:
COMPANY-B computer #1   4.5.7.94 (this one has no issues)
COMPANY-B computer #2   4.5.7.29 (this one fails)
both have at least two network interfaces, one with a public IP address
(which we are supposedly conversing with) and one with a RFC 1918 type
address.   COMPANY-B is reluctant to disclose details of their network or
servers setup, so this is not 100% certain.
Because of that uncertainty, it occurred to me that perhaps COMPANY-B
computer #2 might be incorrectly routing via the RFC 1918 interface.
In theory, such packets should have been blocked by the access-list on both
COMPANY-A router, and should not have even made it into the IPsec VPN
if the Juniper access settings work as it appears they should. So I turned up
debugging on COMPANY-A router so that I could see the encrypted and
decrypted packet hex dumps.
I then hand-disassembled the decoded ACK packet IP header received just
prior to the "decrypted packet failed SA check" error being emitted and
found the expected source and destination IP addresses (4.5.7.29 and 1.2.3.161),
in the unecapsulated packet. I also found the expected port numbers of the TCP
conversation that was trying to be established in the TCP header. So, it
looks like COMPANY-B computer #2 is emitting the packets out the right
interface.
The IP packet header of the encrypted packet showed the IP addresses of the
two routers at each terminus of the IPsec VPN, but since I don't know what triggers
the "SA check" error message or what it is complaining about, I don't know what
other clues to look for in the packet dumps.
As to your second question, "can you check whether both encapsulation and
decapsulation happening in 'show crypto ipsec sa'",   the enc'ed/dec'ed
counters were both going up by the correct quantities. When communicating
with the uncooperative COMPANY-B computer #2, you would also see the
received Drop increment for each packet decrypted. When communicating
with the working COMPANY-B computer #1, the Drop counters would not
increment, and the enc'ed/dec'ed would both increment.
#show crypto sess det
Crypto session current status
Code: C - IKE Configuration mode, D - Dead Peer Detection
K - Keepalives, N - NAT-traversal, X - IKE Extended Authentication
Interface: FastEthernet0/0
Session status: UP-ACTIVE
Peer: 4.5.6.228 port 500 fvrf: (none) ivrf: (none)
      Phase1_id: 4.5.6.228
      Desc: (none)
IKE SA: local 1.2.3.8/500 remote 4.5.6.228/500 Active
          Capabilities:(none) connid:1 lifetime:07:59:54
IPSEC FLOW: permit ip host 1.2.3.161 4.5.7.0/255.255.255.0
        Active SAs: 2, origin: crypto map
        Inbound: #pkts dec'ed 376 drop 5 life (KB/Sec) 4458308/28784
        Outbound: #pkts enc'ed 401 drop 3 life (KB/Sec) 4458308/28784
Attempt a TCP communication to COMPANY-B computer #2...
show crypto sess det
Crypto session current status
Code: C - IKE Configuration mode, D - Dead Peer Detection
K - Keepalives, N - NAT-traversal, X - IKE Extended Authentication
Interface: FastEthernet0/0
Session status: UP-ACTIVE
Peer: 4.5.6.228 port 500 fvrf: (none) ivrf: (none)
      Phase1_id: 4.5.6.228
      Desc: (none)
IKE SA: local 1.2.3.8/500 remote 4.5.6.228/500 Active
          Capabilities:(none) connid:1 lifetime:07:59:23
IPSEC FLOW: permit ip host 1.2.3.161 4.5.7.0/255.255.255.0
        Active SAs: 2, origin: crypto map
        Inbound: #pkts dec'ed 376 drop 6 life (KB/Sec) 4458307/28753
        Outbound: #pkts enc'ed 402 drop 3 life (KB/Sec) 4458307/28753
Note Inbound "drop" changed from 5 to 6. (I didn't let it sit for all
the retries.)
#show crypto ipsec sa
interface: FastEthernet0/0
    Crypto map tag: COMPANY-BMAP1, local addr 1.2.3.8
   protected vrf: (none)
   local ident (addr/mask/prot/port): (1.2.3.161/255.255.255.255/0/0)
   remote ident (addr/mask/prot/port): (4.5.7.0/255.255.255.0/0/0)
   current_peer 4.5.6.228 port 500
     PERMIT, flags={origin_is_acl,}
    #pkts encaps: 402, #pkts encrypt: 402, #pkts digest: 402
    #pkts decaps: 376, #pkts decrypt: 376, #pkts verify: 376
    #pkts compressed: 0, #pkts decompressed: 0
    #pkts not compressed: 0, #pkts compr. failed: 0
    #pkts not decompressed: 0, #pkts decompress failed: 0
    #send errors 3, #recv errors 6
     local crypto endpt.: 1.2.3.8, remote crypto endpt.: 4.5.6.228
     path mtu 1500, ip mtu 1500, ip mtu idb FastEthernet0/0
     current outbound spi: 0xDF2CC59C(3744253340)
inbound esp sas:
      spi: 0xD9D2EBBB(3654478779)
        transform: esp-3des esp-sha-hmac ,
        in use settings ={Tunnel, }
        conn id: 2004, flow_id: SW:4, crypto map: COMPANY-BMAP1
        sa timing: remaining key lifetime (k/sec): (4458307/28600)
        IV size: 8 bytes
        replay detection support: Y
        Status: ACTIVE
     inbound ah sas:
     inbound pcp sas:
     outbound esp sas:
      spi: 0xDF2CC59C(3744253340)
        transform: esp-3des esp-sha-hmac ,
        in use settings ={Tunnel, }
        conn id: 2003, flow_id: SW:3, crypto map: COMPANY-BMAP1
        sa timing: remaining key lifetime (k/sec): (4458307/28600)
        IV size: 8 bytes
        replay detection support: Y
        Status: ACTIVE
     outbound ah sas:
     outbound pcp sas:
The "send" errors appear to be related to the tunnel reverting to a
DOWN state after periods of inactivity, and you appear to get one
each time the tunnel has to be re-negotiated and returned to
an ACTIVE state. There is no relationship between Send errors
incrementing and working/non-working TCP conversations to the
two COMPANY-B servers.
Thanks for pondering this very odd behavior.

I have an iMac5,1 with an intel processor. For the last month or so, whenever I play a video from an outside source - e.g. YouTube, the picture jumps and breaks-up. All of my software is up-to-date. Any thoughts on how to fix this problem?

I have an iMac5,1 with an intel processor. For the last month or so, whenever I play a video from an outside source - e.g. YouTube, the picture jumps and breaks-up. All of my software is up-to-date. Any thoughts on how to fix this problem?

You're welcome. As to checking speed go to http://speedtest.net/ and it will choose the closest server for you. BTW, whatever you do, don't click on the robot icon that says "Start Scan" or MacKeeper below that. Only use the speed test in the middle that has the button BEGIN TEST on it. It will run a download speed test first and then an upload speed test. The download test will give a much faster response.

I purchased and downloaded to ring tones from an outside source (no the App store). How do I get these into my Sounds in Settings so I can use them?

I purchased and downloaded two ring tones from an outside source (not through the App Store). How do I get these loaded into the Sounds on my Settings so I can use them?

Some apps that you download on your iPhone may possibly be to new for the iPod touch 2nd gen. I have a iPhone 5 and a iPod touch 2nd generation myself. If you plug his ipod into iTunes and restore it from a backup of your iPhone than it will download the paid apps and music that are compatible with his ipod. Hope this helps.

I need to count intermittent high speed pulses from an outside source with cFP-CTR-502 and labview.

I need to count intermittent high speed pulses from an outside source with cFP-CTR-502 and Labview 8.2 . I've found example code for generating pulses and creating intricate count setups but no straightforward examples of a simple counter. Any suggestions?

Hello tinfish,
I could not find a simple example that implements simple counting either, but it should be straightforward enough for us to try. Do you have the CTR module configured properly in MAX? If so, can you monitor the channels on your CTR 502 for input? Try connecting a square wave or some other digital pulse to the terminal to test the functionality of the counter module first (before programming). If you monitor the input channels with somethign connected you should see the count increment each time it sees a rising edge (assuming default configuration).
Once you've verified that everything works in MAX, you can set up your CTR module in a LV 8.2 project. If you need help with this, refer to the help document (look in the "Configuring FieldPoint in LabVIEW" section):
C:\Program Files\National Instruments\FieldPoint\documentation\Online Help\fplv.chm
You should be able to just read a channel tag from your CTR 502 using an FP Read VI. (Simply drag the channel from your project onto the block diagram). Since counting is the default behavior of the 502, there is no special programming involved to make it work.
I hope this helps -- if it's too high-level we can talk details about specific questions you have. Have a good one!
Charlie S.
Visit ni.com/gettingstarted for step-by-step help in setting up your system

Is it possible to save texts from Droid 2 Global to an outside source or sd?

I have texts on my Droid 2 Global that I need to keep for legal purposes (conversation with my child's father, my ex). Is there some way to save them to an outside source or sd card? Or can I sync them with my computer? Please help!

You can back them up to a PC with VeryAndroid SMS Backup with instruction at http://www.veryandroid.com/pctool-for-sms-backup/how-to-backup-sms-from-android-on-computer--with-pc-tool-for-sms-backup.html
Android App at https://play.google.com/store/apps/details?id=com.veryandroid.smsbackup&feature=search_result#?t=W251bGwsMSwyLDEsImNvbS52ZXJ5YW5kcm9pZC5zbXNiYWNrdXAiXQ..
Try this one for free... http://www.wondershare.com/mobile-phone/android-sms-backup.html

Receving packets from outside source over PIX

Similar Messages

Maybe you are looking for