Remote access to PC from the Internet over a DSL connection!
Hello! I have a PC on the local LAN which is hooked to the Internet over a DSL Modem (Speedstream 4100) connection using a 2620 Router with 12.3 IOS. A remote vendor wants to access this PC using "Port forwarding" to Port 3389. He was able to do this using a Linksys Router instead of a 2620.
There are no leased public IP addresses on this connection. The vendor was able to use some DDNS to accomplish this successfully. Now, the Linksys Router has been replaced with 2620 and I need help configuring this.
Any ideas? Thanks in advance!
Try:
ip nat inside source static tcp 3389 interface fastethernet0 3389
If the IP address for FA0 is dynamic, you can use DDNS as mentioned (requires additional configuration), or simply look it up in the router and communicate verbally to the vendor.
Hope this helps, please rate post if it does!
Similar Messages
-
Best way to access Time Capsule from the Internet?
I wanted to see if anyone knew of a program or setting I can use in order to access Time Capsule from the internet? I know that probably I will not be able to at this point access it directly, even though it is connected to the internet through my modem, but I do have a Mac at home that is connected to Time Capsule. Isn't their a way that I could connect to the Mac, but not through Back to My Mac, that would show Time Capsule as connected to it, so that way I could access the files? Any ideas would be appreciated.
It is possible to mount the TC as a network hard drive when outside your regular network.
1) You will need to reconfigure your router to forward the ports used for AFP (by default 548) to the Time Capsule.
2) Then when outside the network make sure Finder is active, press Apple+K to bring up the 'Connect To Server' dialog.
3) Input the WAN IP address of the network to which the TC resides on.
4) You will be asked for the password used to access TC.
5) The TC should appear as a mounted drive.
It is then possible to access files on the TC as well as do a TM backup. To make life easier you can drag the mounted TC into your dock for easier access in the future.
However, it is obviously recommended to use a strong password to protect the TC (configurable using Airport Utility in the 'Disks/File Sharing' tab). You may also need to use a service like DynDNS if your network does not use a static IP address.
But I am using my home networks' Time Capsule successfully from the office. -
My MacBook Air won't load web pages from the internet. It will connect to phone hotspot and run fine. The apple store reset the library and network preferences and it ran fine for a little bit, now slow again. Any ideas?
My MacBook Air won't load web pages from the internet. It will connect to phone hotspot and run fine. The apple store reset the library and network preferences and it ran fine for a little bit, now slow again. Any ideas?
-
How do I access my Airdisk from the Internet?
Hello,
I have been scouring the web for the answer to this, and have found very little, why doesn't Apple help out more with this. They say it is possible, just not how to do it.
My AE is bridged to my ISPs Netgear router which supports dyndns. I've created an account with dyndns.com and when entering the details into my router, it successfully automatically updates it. This is probably the first hurdle in getting web access to my disk that other people may not have? But what do I do next?
I can access my Airdisk within my home network and have told my AE to share and advertise via Bonjour, but are the Bonjour wide-area hostname settings the same settings as my dyndns account? I've read that the hostname is a single name that I've selected on dyndns.com and the domain is dnsalias.net, then Name and Password is the same as my dyndns account?
Thanks very much for your help!
SHThanks for letting me know the port, but what I didn't know how to do was actually connect to it. Out of the blue, I tried map network drive at work on a pc to my AEBS at home and wala it worked! I just wish they would post this somewhere! The manual for the AEBS would be a logical place, and yes I have it configured in bridge mode. Is there not a way to connect to AirDisk from Internet Explorer?
Some more things I discovered ON MY OWN since there seems to be ABSOLUTELY no guidance on this ANYWHERE, if somebody knows where, then please do tell:
1. port 548 (thanks duane) needs to be opened for Apple formatted AirDisks using Apple Filing Protocol on the mac (from Finder, Go, Connect to Server, afp://home network ip or dns name/disk name) or map network drive on the pc:
(2 back slashes, leaning back)home network ip or dns name\disk name
2. port 445 needs to be opened for Windows formatted AirDisks using Server Message Block on the mac (from Finder, Go, Connect to Server, smb://home network ip or dns name/disk name) or map network drive on the pc:
(2 back slashes, leaning back)home network ip or dns name\disk name (haven't tried this yet, but will shortly)
3. for guest access (usually read only), you may use guest and nothing for the password to connect to your AirDisk
4. for user access (usually to write), you may use anything for the username and the disk password you set for the AirDisk to connect
MAJOR PROBLEM!! >>
I was so psyched to have access to my AirDisk and tried several small files to test it out, no problem. However, when I try to upload .avi files of about 700MB size, I get an error stating that the device is no longer connected either at home or outside of home most of the time completely freezing the AEBS! Is there any size or file type of restrictions with AirDisk?? This is crazy, I get this far and I'm stuck by what appears to be a substandard device!?! I'm using PCs at both places, but it shouldn't matter since the AEBS fully support PCs! Could I possibly be doing something wrong?
<< MAJOR PROBLEM!!
There could be a problem with my AEBS as I wrote in another post, channel 1 of it's wifi appears to be completely inoperable.
SH -
I would like to use my Airport Express to connect to my DVR and use it to access the Internet by setting it up to wireless extend my Airport Extreme network?
This would allow me great flexibility to place the DVR wherever I wanted. I would create a static IP address for the DVR but would I also have to create one for the Airport Express as well? What would I put as my Gateway address? Would it be the IP address of the Airport Extreme or the Airport Express?
Looking forward to the advice to see if this is possible...It may not be compatible with the iPad. See below for reference.
H.264 video up to 1080p, 30 frames per second, High Profile level 4.1 with AAC-LC audio up to 160 Kbps, 48kHz, stereo audio in .m4v, .mp4, and .mov file formats;
MPEG-4 video up to 2.5 Mbps, 640 by 480 pixels, 30 frames per second, Simple Profile with AAC-LC audio up to 160 Kbps per channel, 48kHz, stereo audio in .m4v, .mp4, and .mov file formats;
Motion JPEG (M-JPEG) up to 35 Mbps, 1280 by 720 pixels, 30 frames per second, audio in ulaw, PCM stereo audio in .avi file format -
I successfully set up my "upgraded" Verizon DSL service and modem two weeks ago (have had internet connection on desktop and laptops since) but with that transition I lost the ability to remote access into my work computer from home and to have my TiVo connect to its server. I am just completely disgruntled at Verizon's request to pay them $89 for the tech support I need to get my new stuff working as well as my old stuff did - and I'm hoping someone out there can help me instead.
The computer help guys at work said the system at work's port is 3389 and TiVo's support website give as whole list of possible ports (http://support.tivo.com/app/answers/detail/a_id/402/c/105%2C109/r_id/100041). Is this issue something that can be resolved in the router's port forwarding window? Is so, how do I set that up correctly? If it's something else, please tell me what and how! I've read the Veralink 7500 User Manual and I just can't figure out what I'm doing wrong.
Thanks in advance for any help that's out there! And happy Father's Day to you... if that applies!I solved the problems myself... and here's the solution in case anyone else would like to keep $89 in their pockets!
In both instances (remote access to work and connecting to the TiVO network), it is indeed the Port Forwarding feature you need to use in the Versalink 7500 router setup website (people will try to disuade you of this!). In both cases, I did the following just using different port numbers (depending on what I was trying to get my computer to talk to) and with my computer's firewall on and the router's firewall set to medium. Sorry I couldn't figure out how to post screen shots in this post... prepare to visualize!
1. On the "New Port Forwarding Rule" page, click on "create" for #1, pick "host" for #2, and then select the computer your router is connected to in #3 (it might work with one of the other computers selected, but mine worked with the device he router was connected to).
2. You need to do this step twice - first time select "direction" IN (in #3), second time select "direction" OUT. On the "Create Port Forwarding Service" page, you can name it whatever you want for #1, keep "port forwading" selected" in #2, in #3 you'll need to figure out (a) if you need to select TCP, UDP, or BOTH for "protocol" (based on the online or manual documentation for the system you're trying to connect with), (b) "global portstart" (c) "global startend" and (d) "base hostport" should also be found in the documentation (see note below for Windows remote access and TiVo port info that worked for me) and they are all the same number (ex., global portstart = 80, global startend = 80, and base hostport = 80), and then (e) select the direction (first time, in; second time, out... remember, computer communication is a two-way street, just like humans!), and (f) leave "port direction" as DST. Then you need to (g) click apply after you've added all the ports in both directions (my screen started this sequence of freaky flashy glitchy behavior, but apparently that was the fairy dust making the computer magic happen b/c when it was done, my connectivity was restored!).
3. The port that worked for me to remote access from Windowss PC to Windows PC was 3389.
4. This is the site that had the big list of ports for TiVo, but I think it was ports 80 and 8080 (see the first entry under the troubleshooting port issues) that made the magic happen for me: http://support.tivo.com/app/answers/detail/a_id/402/c/105%2C109/r_id/100041
I hope this is useful to some others and that you just saved yourself $89 in tech support charges for this irritating little issue... go buy yourself a drink and enjoy the summer!
Now I'm off to figure out how to back up these router settings based on the less-than-friendly-to-laymen-computer-users Versalink manual. Wish me luck! -
Access to SharePoint from the Internet
I have a couple of users that are always on the run, using computers that is not a member of our domain. They want to access the SharePoint from oiutside our firewall, and use OneDrive for Business to sync document archives on our site.
I have opened up the nessesary ports in the firewall and they can access the site and sync the archives. But SharePoint keeps asking for username and password for every document they try to open.
I basically want the user to enter username and password once. How can i achieve this? Is it at all possible? What is best practice for giving remote users access to SharePoint recources?
Best regards
RenéHiya,
No. The "usual" SSO experience is gained if computers are part of the same domain and the web site your logging into is part of Local Intranet zone in the client browser settings. This allows for automatically login. However as your machines are
not domain joined, this is not an option.
The Wep application Proxy is a proxy role to the ADFS server role, so it would actually be two servers if implemented according to recommendations. However WAP and ADFS could serve multiple applications, so it's more to be regarded as an extension of your
directory services, than an application specific gateway. WAP and ADFS is part of the Windows 2012 R2 license, so no additional software costs beyond O/S license. This will allow you to use Windows Integrated authentication, meaning that it is their domain
users they are using.
With Forms based authentication, your creating a new set of users. Meaning that users will have to manage both their domain user and a form based user. You also need to manage a separate repository for the forms based users, which is typically a SQL database.
I would not recommend Forms based authentication, if you have the choice to use authentication gateway.
An alternative, which I still see used, could be the TMG. Which is a combined Firewall/Router/ReverseProxy/Authentication Gateway product. However Microsoft has already stated they they will discontinue this product in favor of WAP/ADFS.
Implementing the WAP/ADFS also opens up for the possibility to implement and use federated identities within your applications.
I hope that covers your questions, else do ask more :) -
Cannot access forwarded ports from the internet
Hi all,
I have a Cisco 800 Series router that i configured to do some port forwarding. However i must have done something wrong, because i am unable to access the ports .
Here is the configuration file of the router.
Sorry it i pasted too much info, i'm new working with Cisco routers
Building configuration...
Current configuration : 9429 bytes
! Last configuration change at 13:39:12 PCTime Thu Jan 5 2006 by xxx
! NVRAM config last updated at 19:45:42 PCTime Mon Jan 2 2006 by xxx
version 15.0
no service pad
service tcp-keepalives-in
service tcp-keepalives-out
service timestamps debug datetime msec localtime show-timezone
service timestamps log datetime msec localtime show-timezone
service password-encryption
service sequence-numbers
hostname pbr.mtn.w
boot-start-marker
boot system tftp c860-universalk9-mz.153-3.M.bin 255.255.255.255
boot-end-marker
logging buffered 51200
logging console critical
enable secret 5 xxx
no aaa new-model
memory-size iomem 10
clock timezone PCTime 2
crypto pki trustpoint TP-self-signed-2673109117
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-2673109117
revocation-check none
rsakeypair TP-self-signed-2673109117
crypto pki certificate chain TP-self-signed-2673109117
certificate self-signed 01
30820250 308201B9 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
69666963 6174652D 32363733 31303931 3137301E 170D3036 30313032 31373232
35395A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D32 36373331
30393131 3730819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
8100CD17 E55A2286 3F4D2F14 98499254 8DE9B540 7413A05A C229BD7E 72C6E7AA
7BD657C2 D824C6E4 0C0FD8AB 5EF6871B A28F298C 391DA225 FA4C92D7 5E3C6B06
B3447494 EA058319 72A69FEA 305751EE B7D7087A 406216C3 6CC14AB8 056B52F4
117366AD 531E0515 6801228D 7DAA8454 A00A880D 4023B8B3 983DE19C FB00F077
32450203 010001A3 78307630 0F060355 1D130101 FF040530 030101FF 30230603
551D1104 1C301A82 18706272 2E6D746E 2E772E79 6F757264 6F6D6169 6E2E636F
6D301F06 03551D23 04183016 80148E65 3A8C9B6B E552653E EA96DCD1 F13DD1F1
8198301D 0603551D 0E041604 148E653A 8C9B6BE5 52653EEA 96DCD1F1 3DD1F181
98300D06 092A8648 86F70D01 01040500 03818100 B6F568EE 3AFBBF7A B4DEC150
B6B8860B D953E444 8925C26C 4186AED4 8EAF9F2F D2F335E4 916F941C 1E831EEE
77C5A9A2 EB7EB7AA 540FF094 8FA28668 91C39BB2 2852DEB9 414DD37B EE984C20
CE755A14 37C41233 B0B93B55 52E15783 089B59AA AAE54620 352D3820 59DD24A3
F1E3EC91 CCDE72AA 7544C9C6 1C12EDAF 95767D97
quit
no ip source-route
ip dhcp excluded-address 10.10.10.1
ip dhcp excluded-address 192.168.1.1 192.168.1.219
ip dhcp excluded-address 192.168.1.241 192.168.1.254
ip dhcp excluded-address 10.10.10.21 10.10.10.254
ip dhcp pool ccp-pool1
import all
network 10.10.10.0 255.255.255.0
default-router 10.10.10.1
ip dhcp pool GuestPool
import all
network 192.168.1.0 255.255.255.0
default-router 192.168.1.80
dns-server 217.14.128.50 212.99.2.8 212.108.200.77 212.82.225.7
lease 7
ip cef
no ip bootp server
ip domain name yourdomain.com
ip name-server 196.44.250.214
ip name-server 196.44.250.215
ip name-server 41.223.226.30
ip name-server 212.118.241.1
ip name-server 213.157.176.2
ip name-server 62.128.175.14
license udi pid CISCO861W-GN-E-K9 sn FCZ161392V5
username xxx privilege 15 secret 5 xxx
ip tcp synwait-time 10
ip ssh time-out 60
ip ssh version 2
class-map type inspect match-any ccp-cls-insp-traffic
match protocol cuseeme
match protocol dns
match protocol ftp
match protocol h323
match protocol https
match protocol icmp
match protocol imap
match protocol pop3
match protocol shell
match protocol realmedia
match protocol rtsp
match protocol smtp
match protocol sql-net
match protocol streamworks
match protocol tftp
match protocol vdolive
match protocol tcp
match protocol udp
class-map type inspect match-all ccp-insp-traffic
match class-map ccp-cls-insp-traffic
class-map type inspect match-any ccp-cls-icmp-access
match protocol icmp
match protocol tcp
match protocol udp
class-map type inspect match-all ccp-invalid-src
match access-group 100
class-map type inspect match-all ccp-icmp-access
match class-map ccp-cls-icmp-access
class-map type inspect match-all ccp-protocol-http
match protocol http
policy-map type inspect ccp-permit-icmpreply
class type inspect ccp-icmp-access
inspect
class class-default
drop
policy-map type inspect ccp-inspect
class type inspect ccp-invalid-src
drop log
class type inspect ccp-protocol-http
inspect
class type inspect ccp-insp-traffic
inspect
class class-default
drop
policy-map type inspect ccp-permit
class class-default
drop
zone security out-zone
zone security in-zone
zone-pair security ccp-zp-self-out source self destination out-zone
service-policy type inspect ccp-permit-icmpreply
zone-pair security ccp-zp-in-out source in-zone destination out-zone
service-policy type inspect ccp-inspect
zone-pair security ccp-zp-out-self source out-zone destination self
service-policy type inspect ccp-permit
interface Null0
no ip unreachables
interface FastEthernet0
interface FastEthernet1
interface FastEthernet2
interface FastEthernet3
interface FastEthernet4
description $ES_WAN$$FW_OUTSIDE$
no ip address
no ip redirects
no ip unreachables
no ip proxy-arp
ip flow ingress
duplex auto
speed auto
pppoe-client dial-pool-number 1
interface wlan-ap0
description Service module interface to manage the embedded AP
ip unnumbered Vlan1
no ip redirects
no ip unreachables
no ip proxy-arp
ip nbar protocol-discovery
ip flow ingress
ip flow egress
arp timeout 0
interface Wlan-GigabitEthernet0
description Internal switch interface connecting to the embedded AP
switchport mode trunk
interface Vlan1
description $ETH-SW-LAUNCH$$INTF-INFO-HWIC 4ESW$$ES_LAN$$FW_INSIDE$
ip address 192.168.1.80 255.255.255.0
no ip redirects
no ip unreachables
no ip proxy-arp
ip nbar protocol-discovery
ip flow ingress
ip flow egress
ip nat inside
ip virtual-reassembly
zone-member security in-zone
ip tcp adjust-mss 1412
interface Dialer0
description $FW_OUTSIDE$
ip address negotiated
no ip redirects
no ip unreachables
no ip proxy-arp
ip mtu 1452
ip flow ingress
ip nat outside
ip virtual-reassembly
zone-member security out-zone
encapsulation ppp
dialer pool 1
dialer-group 1
ppp authentication chap pap callin
ppp chap hostname xxx
ppp chap password 7 xxx
ppp pap sent-username xxx password 7 xxx
no cdp enable
ip forward-protocol nd
ip http server
ip http authentication local
ip http secure-server
ip http timeout-policy idle 60 life 86400 requests 10000
ip flow-top-talkers
top 20
sort-by bytes
cache-timeout 20
ip nat inside source list 1 interface Dialer0 overload
ip nat inside source static tcp 192.168.1.25 8890 interface Dialer0 8890
ip nat inside source static tcp 192.168.1.25 80 interface Dialer0 80
ip nat inside source static tcp 192.168.1.45 21 41.186.26.35 21 extendable
ip route 0.0.0.0 0.0.0.0 Dialer0
logging trap debugging
access-list 1 remark INSIDE_IF=Vlan1
access-list 1 remark CCP_ACL Category=2
access-list 1 permit 192.168.1.0 0.0.0.255
access-list 100 remark CCP_ACL Category=128
access-list 100 permit ip host 255.255.255.255 any
access-list 100 permit ip 127.0.0.0 0.255.255.255 any
dialer-list 1 protocol ip permit
no cdp run
control-plane
banner exec ^C
% Password expiration warning.
Cisco Configuration Professional (Cisco CP) is installed on this device
and it provides the default username "cisco" for one-time use. If you have
already used the username "cisco" to login to the router and your IOS image
supports the "one-time" user option, then this username has already expired.
You will not be able to login to the router with this username after you exit
this session.
It is strongly suggested that you create a new username with a privilege level
of 15 using the following command.
username <myuser> privilege 15 secret 0 <mypassword>
Replace <myuser> and <mypassword> with the username and password you
want to use.
^C
banner login ^C---------------------------------------------------------------------------
NOTICE TO USERS
THIS IS A PRIVATE COMPUTER SYSTEM. Unauthorized or improper use of this
system may result in administrative or disciplinary action and civil and
criminal penalties.
Any or all uses of this system and all files on this system are monitored,
and recorded.
This system is the property of xxx .
Disconnect IMMEDIATELY if you are not an authorized user!
^C
line con 0
login local
no modem enable
transport output telnet
line aux 0
login local
transport output telnet
line 2
no activation-character
no exec
transport preferred none
transport input all
line vty 0 4
privilege level 15
login local
transport preferred telnet
transport input telnet
scheduler max-task-time 5000
scheduler allocate 4000 1000
scheduler interval 500
endYou need...
Either a Fixed IP from your ISP, or a service like no-ip.org to look up your current IP.
How to find the "Outside" IP on that machine go here...
http://www.whatsmyip.org/
If there's a Router involved at home then incoming ports must be directed to the proper local IP.
Setup Sharing on the home Mac. -
I guess I posted my question as a title but that is my issue. My airport is connected via wireless yet it keeps searching for a wireless connection, hence I am experiencing bad latency and disconnection issues. Anyone know a solution?
I have the same problem. And in my case it happens when i transfer "large" files over the WiFi. When i send an MP3 filer over Skype i loose connection. When i transfer updates between my iPhone 5 / iPad 3 and iMac with Mountain Lion i loose connection. When i have a video conference i loose connection. You get the idea.
There is usually like 30 people using their own router on the 2.4 GHz band near by. None on the 5 GHz band which i use. But when my WiFi freezes on ML i can only see my own router. And i am also connected to it. But all my neighbors WiFi routers are now invisble to me. My network stalled.
What i do is that i disconnect my WiFi and then reconnect it again. Thank fixes it. But all my transfers and what not has been dropped. And i have to start all over - and the WiFi will stall again.
While my WiFi is frozen on the iMac with ML i have no problem using the same router on the same 5 GHz band with my iPhone 5 or iPad 3.
Downgrading the AirPort Extreme to 7.6.1 from 7.6.3 helped a bit. Now i only loose connection a few times each day.
It is a software error in ML i am sure of. A driver maybe. But i am suspecting that it is either a speed-sync error or an energy saving error. Like the network card turns of in the middle of a file transfer to save enrgy - maybe.
When i stream movies from my iMac to my Apple TV or 3 there is no problem at all. It is so odd. -
Can you access time capsule from a mac over the internet
Can you access time capsule from a mac over the internet?
Yes. See this thread about how to access the disk attached to a Time Capsule. Access to the Time Capsule itself can be done similarly.
-
How do I setup my Time Capsule (3rd Generation) to be accessed from the internet while I'm traveling? It is installed on my home network behind my TWC broadband router.
Ok.. since the TWC modem is also a router.. all configuration takes place on this box.. NONE whatsoever takes place on the TC.
There is no airport utility 7.7.3 but there is a firmware of that number for the latest AC model TC..
Is it tall like this.
Then it is Gen5.
otherwise it will have a firmware.. 7.6.4 or earlier and the airport utility must be 6.3 or earlier.
Open the Airport utility and give us a screenshot of the summary page.
That will also help us determine that you have the TC, which version and how it is setup.
You might want to press the edit and also give us the Internet and Network tab as they should be set correctly as well.
I have created a DDNS through DYN.com although I am not sure how to implement this into the TC.
You do not do anything in the TC.. set it up in the Ubee router.
Port forward 548 to the TC in the Ubee router.
And make sure the TC has a static IP in the Ubee router.
Overall if you find this too hard I strongly recommend you buy a product designed for remote access .. eg WD MyCloud.. they are cheap and easy peasy to setup for remote access.. by PC or Mac and since it is built outside of Apple you not bound up in Apple limitations built into all their equipment to prevent you using it the way you want.. rather than apple want you too.. eg BTMM and iCloud being the only way apple provide for access to the TC and only when it is the main router of the network.
You are fighting hard because Apple made this hard.. not easy. -
Airport Disk access from the internet via Windows Vista
I have an Air Port Extreme base station and am sharing an external hard disk connected to it by the USB port. Local network connections work well with both mac's and windows machines. I am able to connect to the airport disk from the internet with my mac's fine. afp://ip address. How can I connect to this same air port disk from the internet with my PC's which run Vista? There must be a way? I have tried endlessly for many hours. any help would be appreciated.
This works fine from local network, but not from a remote location from the internet. Maybe my syntax is incorrect. My workgroup name in the Airport Utility is "Apple"
Connected locally "\\APPLE1\My Book 500GB" works and makes a connection from the map network drive windows pane. \\Apple1\my book 500gb also connects if entered from IE, again locally. What would be the correct syntax to access it from the web?
From my mac on the web afp://"ip address/ Works!!
Syntax I've tried from remote or internet: smb://??.204.218.??/apple ,smb://??.204.218.??/apple1 ,
smb://??.204.218.??/my book 500gb. IP address used is my external ip address.
I'm still missing something?? -
HTTP 400 Bad Request when accessing Oracle XE/Apex from the Internet
I have Oracle Express Edition upgraded to Apex 3.2. I can access everything (SQL prompt, Apex HTTP) from my local machine. I have configured the server for remote access on a non-default (not 8080) port.
I have executed: exec dbms_xdb.setListenerLocalAccess(false);
I can access the server using:
http://coyote:9977/apex (brings me to Application Express Administration Services login screen)
(where "coyote" is the local machine name of my Windows Vista box, where the Oracle/Apex server is installed.)
But when I try:
http://internet_server_name:9977/apex
(where "internet_server_name" is the internet DNS name visible of my machine visible from the internet.)
I get "HTTP 400 Bad Request"
I know the request is hitting the Oracle Listener (getting through firewalls, cable modem router, etc) since the http attempt causes the entry:
20-MAR-2009 20:36:53 * http * (ADDRESS=(PROTOCOL=tcp)(HOST=68.189.244.22)(PORT=52540)) * handoff * http * 0
to be made in the C:\oraclexe\app\oracle\product\10.2.0\server\network\log\listener.log
An attempt using the local (Windows) machine name makes a similar entry in the listener log:
20-MAR-2009 20:47:35 * http * (ADDRESS=(PROTOCOL=tcp)(HOST=192.168.1.7)(PORT=52811)) * handoff * http * 0
This seems like a security issue of some kind (is the server dropping a request from "outside" the local domain?)
I'm new to Oracle so I am not familiar with how to debug this sort of connectivity issue. In case it helps:
LSNRCTL> status
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC_FOR_XE)))
STATUS of the LISTENER
Alias LISTENER
Version TNSLSNR for 32-bit Windows: Version 10.2.0.1.0 - Production
Start Date 20-MAR-2009 19:27:00
Uptime 0 days 1 hr. 30 min. 59 sec
Trace Level off
Security ON: Local OS Authentication
SNMP OFF
Default Service XE
Listener Parameter File C:\oraclexe\app\oracle\product\10.2.0\server\network\admin\listener.ora
Listener Log File C:\oraclexe\app\oracle\product\10.2.0\server\network\log\listener.log
Listening Endpoints Summary...
(DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(PIPENAME=\\.\pipe\EXTPROC_FOR_XEipc)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=coyote)(PORT=1521)))
(DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=coyote)(PORT=9977))(Presentation=HTTP)(Session=RAW))
Services Summary...
Service "CLRExtProc" has 1 instance(s).
Instance "CLRExtProc", status UNKNOWN, has 1 handler(s) for this service...
Service "PLSExtProc" has 1 instance(s).
Instance "PLSExtProc", status UNKNOWN, has 1 handler(s) for this service...
Service "XEXDB" has 1 instance(s).
Instance "xe", status READY, has 1 handler(s) for this service...
Service "XE_XPT" has 1 instance(s).
Instance "xe", status READY, has 1 handler(s) for this service...
Service "xe" has 1 instance(s).
Instance "xe", status READY, has 1 handler(s) for this service...
The command completed successfully
Any help appreciated,
johnHans Forbrich wrote:
CoyoteTech wrote:
I have tried running with the firewall (F-Secure) completely disabled, but it made no difference. I do see the request hit the listener, and the handoff appears to be successful, but it goes silent from there. I also have a cable modem router that has the port forwarding set, but maybe there are other handoff ports besides the initial one (e.g. 8080) that need to be forwarded?Please also check the Windows firewall is off as well. Yes, Windows Firewall is disabled as well. See my previous post to Tyler - I'm pretty sure the reqwuest makes it through the firewall/router layer, since it causes an entry in Listener.log
Is your problem through the router only? In other words, if you try from a second machine that is on the same side as your XE, are you working OK? (My home ISP blocks a bunch of ports. Including SMTP, FTP, Telnet. And 8080 since that is a traditional default for many Java 'servers'.)
Yes, it appears to be related to a non-local IP address. I'm sure it makes it through the router - I also have several other ports that make it through (e.g. port 80).
I have poked around the DBMS_EPG docs, and ran a few of the commands there (list DADS etc). DBMS_EPG was first 'released' to us in 10gR2. As far as I'm concerned, XE is the public 'beta' or 'release candidate'. (This is supported by Oracle's docs that state that Apex using DBMS_EPG is first supported using 10.2.0.3 or 11g.) There are known bugs and there is no way to patch XE to fix them. However, I do not know whether you are hitting those bugs.
http://www.astral-consultancy.co.uk/cgi-bin/hunbug/doco.cgi?11410 provides some good notes.
Interesting. I will check out these docs later today.
>>
What happens when the listener hands off to a registered handler?
http://download.oracle.com/docs/cd/B19306_01/network.102/b14212/concepts.htm#i1049597 gives a good description.
Thanks.
How do I pick up the [log] trail from there?I'm thniking that the listener's log is still the primary way to go. You may need to increase the log or trace level. I have not investigated how to gen or access logs inside EPG.I tried Tyler's trace but did not seem to add additional info to the Listener.log. -
RemoteApp's not running when accessed from the internet
Hi TP,
Hopefully someone can help me here.
I've installed RDWeb on the RDG server which live in our DMZ - I can access and log on to RDS from the internet with the RDG FQDN remote.external.com but I can't launch any RemoteApp's. Basically there's no RemoteApp pop up warning with all the connection
information (Publisher, Type, Path, Name, Remote computer, Gateway server) just the RemoteApp connecting to window with no info. Seems like it can't grab this information.
Users can log in to RDS internally with the RDG FQDN remote.external.com and run RemoteApps with no problems.
Thanks for your help in advanced!Hi,
1. On the client PC, remove the thumbprint value entry for this server under the PublisherBypassList key. This is located under the following path:
HKCU\Software\Microsoft\Terminal Server Client\PublisherBypassList
<SHA thumbprint> REG_DWORD 0x00000xxx
Additonally, remove the key for the server under the Servers key:
HKCU\Software\Microsoft\Terminal Server Client\Servers\<FQDN of server>
2. What is the precise error message you receive when you attempt to launch a RemoteApp from external?
3. If you manually configure the Remote Desktop Client with the RD Gateway FQDN via Advanced tab--Connect from anywhere, are you able to connect from the Internet?
-TP -
Can I access the data on the time capsule from the Internet?
Can I access the data on the time capsule from the Internet?
You need to follow the BTMM via icloud instructions.
http://www.apple.com/support/icloud/back-to-my-mac/
There are plenty of other ways to do it.. but issues to do with Apple not using a dynamic DNS client so if your ISP does not allocate you a static public IP there is no way to find it, if the public ip rotates as they are designed to do hourly or daily.
Do a google search, remote access time capsule..
Or use the more like this on the right hand side... there are plenty of posts and even youtube video which go right through it.
BTW your school system may simply block the port.. if I was a school IT admin.. I would. You are dragging files across to the internal school network bypassing the firewall.. that is unacceptable risk to the whole school system.
Maybe you are looking for
-
Scroll bar does not retain its position after or before pack
Hi My Scroll bar does not retain its position after pack in my application. But i need to retain its state. My code snippet is : System.out.println("VAlue--->" + getHXValue()); scrollPane.getHorizontalScrollBar().setValue(getHXValue()); pack(); My VA
-
Software Catalog missing in SLD server
hi The Software Catalog in my SLD server(SAP XI 3.0) is deleted/missing, is there any way i can import it back. Thanks Jonu Joy
-
Following is the scenario Customer takes Deliveries from 1st till 14th of every month and on 15th he is billed for all the deliveries (Delivery related billing) Each delivery contains only "one Single Line Item" 6 Different condition types are used t
-
PowerShell Configuration Iteam: always report compliant even if recovery is not successfull
Hello, I developped a SCCM 2012 configuration item based on two PowerShell scripts... Below is the generic structure: The discovery part works fine. Based on several tests, the right result is always sent back to SCCM In my specific case, it is expec
-
HT201250 I have wanted to restore my Quicken and does seem to work
When I closed my Quicken 2007 application then reopened I noticed I was missing a lot of files. I went into my Time Machine and highlighted Quicken 2007 and hit restore. I said to keep both files. One file I could not get into because it stated i