Router 1941 Nat with H.323 traffic
Hi expert,
I have the scenario as the diagram:
I want the 192.168.1.50 IP nat to 200.200.200.10 which for network B with the H323 packet,As what i know there is the Payload problem for the H323 and been recommend me use the NAT with ALG.May i know more detail on how to implement this?Urgent
thanks
-Gilbert
Hi,
Add in 1 thing the equipment is the Video Conferencing product.
thks
-gilbert
Similar Messages
-
How do I Get My Router to Work With iChat ? FAQ 2
Replaces iCh: FAQ 2 How to get my router to work with iChat?
Getting your router started with iChat.
Appropriate for using iChatAV 2 upwards
Glossary for this FAQ
Routers: Any configurable device that sits between your computer and the internet link you have.
Routers seem to fall into two categories
Those that work straight from the box. See Apple Doc 93333
NOTE
This Doc has not been updated since Jan 04
and those that do not.
This post will deal with what you may need to look at.
First off make sure your device is acting as a DHCP server. (if you are already on the internet you may not have to bother with this.)
Check in the Network Preference Pane, in the "Built in Ethernet" option from the "Show" drop down list.
Make sure the TCP/IP tab is the 'front' one. You should be able to see Configure IPv4 and it most likely reads Using DCHP. Make a note of your IP address. It will start 10.xxx.xxx.xxx or 192.168.xxx.xxx (the 'x' s will stand for any number between 1 and 255).
Your router is most likely to be configurable from your browser. You will need to find the IP address to type into the browser from any Readme or PDF files that came on the install disk or visit the makers website and download a manual.
DMZ Demilitarised Zone
This is a less secure setting that basically opens all ports and points the incoming data to your computer. (not helpful if you have more than one computer on your LAN)
NAT Sometimes called NAPT and related to Port Forwarding (also Virtual Server or Pin Holes)
These settings are usually found in an Advanced setting.
You will need to set an incoming IP address (Usually 0.0.0.0 for any outside server), a port that data will arrive on, the Inside computers IP address (your computer) and the port it will deal with the data on and the protocol it will use.
iChat uses TCP and UDP so some devices will need the settings done twice, once for each protocol.
See Apple Doc 93208 for more information.
Note:
Note 1 should read:
1. All iChat AV traffic is UDP except for ports 5190 and 5298, which need to be open for both TCP and UDP; and 5220, 5222, which need to be open for TCP only.
UPnP Universal Plug n Play.
This is a simple Plug and Play type of setting. iChat can find it's own way through a router if the device has this capability.
Trigger Ports
Some devices offer a security measure that works by a first or trigger port receiving a data packet and then opening further ports when accepted.
The first port for incoming Video or Audio invites is port 5678. When you click on the invite window the process moves to port 5060 (so these will need to be opened by the trigger port) for negotiating the final group of ports from the group of 20 (16384-16403 These will need to open when the trigger says so as well). Therefore port 5678 triggers ports 5678, 5060, 16384-16403. All on UDP. Port 5190 neeeds to trigger port 5190 for both TCP and UDP
Wireless
Here you will have to read around but this Apple Doc 58514 might be a good starting place.
Multiple devices
Make sure only one is acting as a DHCP server. Make sure wireless devices are bridged properly.
Further Help
I have found that this site (ADSLGuide) to be helpful.
It is British based but I have linked you to the Apple Related Discussions Forum.
Eliminating Problems on my Personal web pages.
The ports and their function within iChat. (my pesonal Web pages again)
This is not a step by step approach. You will have to read around the information about your device.
Collected FAQs and Expansions: Index Page
Also http://www.portforward.com/routers.htm for instructions with Pics on Port Forwarding.
Ralph
G4 Dual 1Ghz MDD with extra HDs X3. Mac OS X (10.4.3) Have you read the iChat FAQs ?? They have moved to Users TipsReplaces iCh: FAQ 2 How to get my router to work with iChat?
Getting your router started with iChat.
Appropriate for using iChatAV 2 upwards
Glossary for this FAQ
Routers: Any configurable device that sits between your computer and the internet link you have.
Routers seem to fall into two categories
Those that work straight from the box. See Apple Doc 93333
NOTE :This Doc has not been updated since Jan 04
and those that do not.
This post will deal with what you may need to look at.
First off make sure your device is acting as a DHCP server. (if you are already on the internet you may not have to bother with this.)
Check in the Network Preference Pane, in the "Built in Ethernet" option from the "Show" drop down list.
Make sure the TCP/IP tab is the 'front' one. You should be able to see Configure IPv4 and it most likely reads Using DCHP. Make a note of your IP address. It will start 10.xxx.xxx.xxx or 192.168.xxx.xxx (the 'x' s will stand for any number between 1 and 255). The range 172.16.xxx.xxx is also a possible value at this point. Rarely used, but it is part of the RFC for Address Allocation for Private Internets.
Your router is most likely to be configurable from your browser. You will need to find the IP address to type into the browser from any Readme or PDF files that came on the install disk or visit the makers website and download a manual.
DMZ Demilitarised Zone
This is a less secure setting that basically opens all ports and points the incoming data to your computer. (not helpful if you have more than one computer on your LAN)
NAT Sometimes called NAPT and related to Port Forwarding (also Virtual Server or Pin Holes)
These settings are usually found in an Advanced setting.
You will need to set an incoming IP address (Usually 0.0.0.0 for any outside server), a port that data will arrive on, the Inside computers IP address (your computer) and the port it will deal with the data on and the protocol it will use.
iChat uses TCP and UDP so some devices will need the settings done twice, once for each protocol.
See Apple Doc 93208 for more information.
Note:
Note 1 should read:
1. All iChat AV traffic is UDP except for ports 5190 and 5298, which need to be open for both TCP and UDP; and 5220, 5222, which need to be open for TCP only.
UPnP Universal Plug n Play.
This is a simple Plug and Play type of setting. iChat can find it's own way through a router if the device has this capability.
Trigger Ports
Some devices offer a security measure that works by a first or trigger port receiving a data packet and then opening further ports when accepted.
The first port for incoming Video or Audio invites is port 5678. When you click on the invite window the process moves to port 5060 (so these will need to be opened by the trigger port) for negotiating the final group of ports from the group of 20 (16384-16403 These will need to open when the trigger says so as well). Therefore port 5678 triggers ports 5678, 5060, 16384-16403. All on UDP. Port 5190 neeeds to trigger port 5190 for both TCP and UDP
Wireless
Here you will have to read around but this Apple Doc 58514 might be a good starting place.
Multiple devices
Make sure only one is acting as a DHCP server. Make sure wireless devices are bridged properly.
Further Help
I have found that this site (ADSLGuide) to be helpful.
It is British based but I have linked you to the Apple Related Discussions Forum.
Eliminating Problems on my Personal web pages.
The ports and their function within iChat. (my pesonal Web pages again)
This is not a step by step approach. You will have to read around the information about your device.
Collected FAQs and Expansions: Index Page
Also http://www.portforward.com/routers.htm for instructions with Pics on Port Forwarding.
With thanks to Macmuse.
Ralph
G4 Dual 1Ghz MDD with extra HDs X3. Mac OS X (10.4.3) Have you read the iChat FAQs ?? They have moved to Users Tips<</a>/span> -
Hi Everyone,
We have an ASA 5540 at our data center, with ASA 5505's at most remote sites.
At the sites without layer 3 switches behind the ASA 5505's, we can't reach the data center internal network through the ASA for flow-export, etc.
So, what I'm basically saying is, even though the tunnel is up and everything behind the branch ASA can reach the data center networks fine, the ASA itself cannot reach hosts on the data center network.
I'm hoping to configure these ASA 5505's so I can do flow export and SNMP logging from them, but without this routing or nat problem resolved, they just won't do it.
Doing a packet tracer from the ASA 5505 to the data center server I'm most focused on, reveals this:
BRANCH5505f01# packet input inside icmp 10.15.16.1 8 0 10.1.1.15 detailed
Phase: 1
Type: ACCESS-LIST
Subtype:
Result: ALLOW
Config:
Implicit Rule
Additional Information:
Forward Flow based lookup yields rule:
in id=0xcb0b6698, priority=1, domain=permit, deny=false
hits=1004755, user_data=0x0, cs_id=0x0, l3_type=0x8
src mac=0000.0000.0000, mask=0000.0000.0000
dst mac=0000.0000.0000, mask=0100.0000.0000
input_ifc=inside, output_ifc=any
Phase: 2
Type: ROUTE-LOOKUP
Subtype: input
Result: ALLOW
Config:
Additional Information:
in 10.1.1.15 255.255.255.255 outside
Phase: 3
Type: ROUTE-LOOKUP
Subtype: input
Result: ALLOW
Config:
Additional Information:
in 0.0.0.0 0.0.0.0 outside
Result:
input-interface: inside
input-status: up
input-line-status: up
output-interface: outside
output-status: up
output-line-status: up
Action: drop
Drop-reason: (rpf-violated) Reverse-path verify failed
I am thinking the problem is NAT related, but with the new ASA NAT rule format due to v9.1... struggling to get a grip on where it is... any thoughts/help are appreciated.
Ken
Here is the relevant config for the Branch ASA and also the relevant config from the data center ASA:
Branch ASA Config Parts:
: Saved
ASA Version 9.1(2)
hostname BRANCHASA5505
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
names
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
speed 100
duplex full
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan1
description LAN_NETWORK
nameif inside
security-level 100
ip address 10.15.6.1 255.255.254.0
interface Vlan2
nameif outside
security-level 0
ip address <outside ip> 255.255.255.248
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object network obj_any
subnet 0.0.0.0 0.0.0.0
object-group network BRANCH_NETWORKS
description BRANCH LOCAL NETWORKS
network-object 10.15.6.0 255.255.254.0
object-group network LAN_NETWORKS
network-object 10.0.0.0 255.0.0.0
network-object 134.200.131.0 255.255.255.0
network-object 134.200.220.0 255.255.255.0
network-object 134.201.2.0 255.255.255.0
network-object 163.243.195.0 255.255.255.0
network-object 172.16.0.0 255.240.0.0
network-object 192.168.0.0 255.255.0.0
network-object 10.1.3.0 255.255.255.0
network-object 10.31.2.0 255.255.255.0
network-object 10.1.1.0 255.255.255.0
network-object 172.26.1.0 255.255.255.0
object-group network NETWORK_MGMT
network-object 10.0.0.0 255.0.0.0
access-list DATACENTER_VPN_ACL remark *******************************************************************
access-list DATACENTER_VPN_ACL remark * FOR VPN CONNECTION TO DATACENTER/VEYANCE NETWORKS *
access-list DATACENTER_VPN_ACL remark *******************************************************************
access-list DATACENTER_VPN_ACL extended permit ip host <outside ip> host <outside ip datacenter asa>
access-list DATACENTER_VPN_ACL extended permit ip object-group BRANCH_NETWORKS object-group LAN_NETWORKS
access-list INSIDE_NONAT extended permit ip object-group BRANCH_NETWORKS object-group LAN_NETWORKS
access-list INSIDE_FILTER extended permit tcp any4 any4 eq www
access-list INSIDE_FILTER extended permit tcp any4 any4 eq 8080
logging host inside 10.1.1.15
flow-export destination inside 10.1.1.15 2055
ip verify reverse-path interface inside
ip verify reverse-path interface outside
nat (inside,outside) source static LAN_NETWORKS LAN_NETWORKS destination static BRANCH_NETWORKS BRANCH_NETWORKS route-lookup
nat (inside,outside) source static BRANCH_NETWORKS BRANCH_NETWORKS destination static NETWORK_MGMT NETWORK_MGMT route-lookup
nat (inside,outside) source dynamic any interface
object network obj_any
nat (inside,outside) dynamic interface
access-group FROM_OUTSIDE in interface outside
route outside 0.0.0.0 0.0.0.0 <outside ip gateway> 1
route outside 10.1.1.15 255.255.255.255 <outside ip datacenter asa> 1
management-access inside
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
tunnel-group <outside ip datacenter asa> type ipsec-l2l
tunnel-group <outside ip datacenter asa> ipsec-attributes
ikev1 pre-shared-key *****
class-map type regex match-any DomainBlockList
match regex DomainList-Netflix
class-map type inspect http match-all BlockDomainsClass
match request header host regex class DomainBlockList
class-map inspection_default
match default-inspection-traffic
class-map httptraffic
match access-list INSIDE_FILTER
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map type inspect http http_inspection_policy
parameters
protocol-violation action log
class BlockDomainsClass
reset log
policy-map URL-filter-policy
class httptraffic
inspect http http_inspection_policy
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
inspect http
class class-default
flow-export event-type all destination 10.1.1.15
service-policy URL-filter-policy interface inside
prompt hostname context
Datacenter ASA Config Parts:
ASA Version 9.0(1)
hostname DATACENTERASA5540
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
names
interface GigabitEthernet0/0
description *** TO OUTSIDE NETWORK AT DATACENTER ***
speed 100
duplex full
nameif OUTSIDE
security-level 0
ip address <outside ip>
interface GigabitEthernet0/1
description *** TO INSIDE NETWORK ***
nameif INSIDE
security-level 100
ip address 10.1.3.2 255.255.255.0
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object-group network LAN_NETWORKS
network-object 10.0.0.0 255.0.0.0
network-object 134.200.131.0 255.255.255.0
network-object 134.200.220.0 255.255.255.0
network-object 134.201.2.0 255.255.255.0
network-object 163.243.195.0 255.255.255.0
network-object 172.16.0.0 255.240.0.0
network-object 192.168.0.0 255.255.0.0
network-object 10.1.3.0 255.255.255.0
network-object 10.31.2.0 255.255.255.0
network-object 10.1.1.0 255.255.255.0
network-object 172.26.1.0 255.255.255.0
object-group network DATACENTER_NETWORKS
network-object 10.1.0.0 255.255.0.0
object-group network BRANCH_NETWORKS
network-object 10.15.6.0 255.255.254.0
access-list BRANCH_VPN_ACL remark ****************************************************
access-list BRANCH_VPN_ACL remark * FOR SITE TO SITE VPN TO BRANCH WV USA *
access-list BRANCH_VPN_ACL remark ****************************************************
access-list BRANCH_VPN_ACL extended permit ip host <outside ip> host <outside ip branch asa>
access-list BRANCH_VPN_ACL extended permit ip object-group LAN_NETWORKS object-group BRANCH_NETWORKS
flow-export destination INSIDE 10.1.1.15 2055
flow-export template timeout-rate 1
flow-export delay flow-create 180
ip verify reverse-path interface OUTSIDE
ip verify reverse-path interface INSIDE
no failover
nat (INSIDE,OUTSIDE) source static LAN_NETWORKS LAN_NETWORKS destination static BRANCH_NETWORKS BRANCH_NETWORKS route-lookup
access-group FROM_OUTSIDE in interface OUTSIDE
route OUTSIDE 0.0.0.0 0.0.0.0 <outside ip> 1
route INSIDE 10.0.0.0 255.0.0.0 10.1.3.1 1
route OUTSIDE 10.15.6.0 255.255.254.0 <outside ip branch asa> 1
crypto map OUTSIDE-MAP 156 match address BRANCH_VPN_ACL
crypto map OUTSIDE-MAP 156 set pfs
crypto map OUTSIDE-MAP 156 set peer <outside ip branch asa>
crypto map OUTSIDE-MAP 156 set ikev1 transform-set ESP-3DES-MD5 ESP-3DES-SHA
tunnel-group <outside ip branch asa> type ipsec-l2l
tunnel-group <outside ip branch asa> ipsec-attributes
ikev1 pre-shared-key *****
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
class class-default
flow-export event-type all destination 10.1.1.15
user-statistics accounting
service-policy global_policy global
smtp-server 172.19.1.137
prompt hostname context
call-home reporting anonymous
Again, any help you can provide is appreciated... will vote for best...I ran it, with the source IP corrected (it is 10.15.6.2):
BRANCHASA# packet input inside icmp 10.15.6.2 8 0 10.1.1.15 detailed
Phase: 1
Type: ACCESS-LIST
Subtype:
Result: ALLOW
Config:
Implicit Rule
Additional Information:
Forward Flow based lookup yields rule:
in id=0xcb0b6698, priority=1, domain=permit, deny=false
hits=1203279, user_data=0x0, cs_id=0x0, l3_type=0x8
src mac=0000.0000.0000, mask=0000.0000.0000
dst mac=0000.0000.0000, mask=0100.0000.0000
input_ifc=inside, output_ifc=any
Phase: 2
Type: ROUTE-LOOKUP
Subtype: input
Result: ALLOW
Config:
Additional Information:
in 0.0.0.0 0.0.0.0 outside
Phase: 3
Type: UN-NAT
Subtype: static
Result: ALLOW
Config:
nat (inside,outside) source static BRANCH_NETWORKS BRANCH_NETWORKS destination static NETWORK_MGMT NETWORK_MGMT route-lookup
Additional Information:
NAT divert to egress interface outside
Untranslate 10.1.1.15/0 to 10.1.1.15/0
Phase: 4
Type: ROUTE-LOOKUP
Subtype: input
Result: ALLOW
Config:
Additional Information:
in 10.15.6.0 255.255.254.0 inside
Phase: 5
Type: NAT
Subtype:
Result: ALLOW
Config:
nat (inside,outside) source static BRANCH_NETWORKS BRANCH_NETWORKS destination static NETWORK_MGMT NETWORK_MGMT route-lookup
Additional Information:
Static translate 10.15.6.2/0 to 10.15.6.2/0
Forward Flow based lookup yields rule:
in id=0xcb12f2f0, priority=6, domain=nat, deny=false
hits=15824, user_data=0xcb0fdef8, cs_id=0x0, flags=0x0, protocol=0
src ip/id=10.15.6.0, mask=255.255.254.0, port=0, tag=0
dst ip/id=10.0.0.0, mask=255.0.0.0, port=0, tag=0, dscp=0x0
input_ifc=inside, output_ifc=outside
Phase: 6
Type: NAT
Subtype: per-session
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0xcaa712e0, priority=0, domain=nat-per-session, deny=true
hits=77610, user_data=0x0, cs_id=0x0, reverse, use_real_addr, flags=0x0, protocol=0
src ip/id=0.0.0.0, mask=0.0.0.0, port=0, tag=0
dst ip/id=0.0.0.0, mask=0.0.0.0, port=0, tag=0, dscp=0x0
input_ifc=any, output_ifc=any
Phase: 7
Type: IP-OPTIONS
Subtype:
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0xcb0bc128, priority=0, domain=inspect-ip-options, deny=true
hits=91404, user_data=0x0, cs_id=0x0, reverse, flags=0x0, protocol=0
src ip/id=0.0.0.0, mask=0.0.0.0, port=0, tag=0
dst ip/id=0.0.0.0, mask=0.0.0.0, port=0, tag=0, dscp=0x0
input_ifc=inside, output_ifc=any
Phase: 8
Type: INSPECT
Subtype: np-inspect
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0xcb0bbc28, priority=66, domain=inspect-icmp-error, deny=false
hits=4585, user_data=0xcb0bb238, cs_id=0x0, use_real_addr, flags=0x0, protocol=1
src ip/id=0.0.0.0, mask=0.0.0.0, icmp-type=0, tag=0
dst ip/id=0.0.0.0, mask=0.0.0.0, icmp-code=0, tag=0, dscp=0x0
input_ifc=inside, output_ifc=any
Phase: 9
Type: VPN
Subtype: encrypt
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
out id=0xcb0c1218, priority=70, domain=encrypt, deny=false
hits=708, user_data=0xbf63c, cs_id=0xcb9ad918, reverse, flags=0x0, protocol=0
src ip/id=10.15.6.0, mask=255.255.254.0, port=0, tag=0
dst ip/id=10.0.0.0, mask=255.0.0.0, port=0, tag=0, dscp=0x0
input_ifc=any, output_ifc=outside
Phase: 10
Type: NAT
Subtype: rpf-check
Result: ALLOW
Config:
nat (inside,outside) source static BRANCH_NETWORKS BRANCH_NETWORKS destination static NETWORK_MGMT NETWORK_MGMT route-lookup
Additional Information:
Forward Flow based lookup yields rule:
out id=0xcb12fb00, priority=6, domain=nat-reverse, deny=false
hits=15837, user_data=0xcb124438, cs_id=0x0, use_real_addr, flags=0x0, protocol=0
src ip/id=10.15.6.0, mask=255.255.254.0, port=0, tag=0
dst ip/id=10.0.0.0, mask=255.0.0.0, port=0, tag=0, dscp=0x0
input_ifc=inside, output_ifc=outside
Phase: 11
Type: FLOW-CREATION
Subtype:
Result: ALLOW
Config:
Additional Information:
New flow created with id 143081, packet dispatched to next module
Module information for forward flow ...
snp_fp_tracer_drop
snp_fp_inspect_ip_options
snp_fp_translate
snp_fp_adjacency
snp_fp_encrypt
snp_fp_fragment
snp_ifc_stat
Module information for reverse flow ...
Result:
input-interface: inside
input-status: up
input-line-status: up
output-interface: outside
output-status: up
output-line-status: up
Action: allow -
Update to kichat: FAQ 2 - How to get my router to work with iChat?
kichat: FAQ 2 - How to get my router to work with iChat? December 2008 version 3
(Note to Hosts. to be removed on acceptance. Please use this to replace http://discussions.apple.com/thread.jspa?threadID=121775 )
Getting your router started with iChat.
Appropriate for using iChatAV 2 upwards. Edits have been made for iChat 4
Glossary for this FAQ
Routers: Any configurable device that sits between your computer and the internet link you have. This includes Modems that Route as well as "routers"
Routers seem to fall into two categories
Those that work straight from the box. See Apple Article HT1787
NOTE :This Article has not been updated in content since Jan 04 Only being changed to an Article from the Previous Doc listing
Even then some list that they need tweaks.
and those that do not.
This post will deal with what you may need to look at.
First off make sure your device is acting as a DHCP server. (if you are already on the internet you may not have to bother with this.)
Check in the Tiger System Preferences > Network Preference Pane, in the "Built in Ethernet" option from the "Show" drop down list.
In Leopard the Networks are listed on the left with icons. The Airport Option will need you to access the Advance Button for the Next bit.
Make sure the TCP/IP tab is the 'front' one. You should be able to see Configure IPv4 and it most likely reads Using DCHP. Make a note of your IP address. It will start 10.xxx.xxx.xxx or 192.168.xxx.xxx (the 'x' s will stand for any number between 1 and 255). The range 172.16.xxx.xxx is also a possible value at this point. Rarely used, but it is part of the RFC for Address Allocation for Private Internets.
Your router is most likely to be configurable from your browser. You will need to find the IP address to type into the browser from any Readme or PDF files that came on the install disk or visit the makers website and download a manual.
The Port Forward.com site lists many devices and clicking on one will take you to a list of Applications. This iChat will open an page that will start by telling you the defaults to access the device
Opening or Allowing ports. Several Methods not all devices have all of them.
DMZ (Demilitarised Zone)
This is a less secure setting that basically opens all ports and points the incoming data to your computer. (not helpful if you have more than one computer on your LAN). It can be considered as an extreme form of Port Forwarding
Port Forwarding (also Virtual Server or Pin Holes)
These settings are usually found in an Advanced setting.
You may need to set an incoming IP address (Usually 0.0.0.0 to any outside server), a port that data will arrive on, the Inside computer's IP address (your computer) and the port it will deal with the data on and the protocol it will use.
See this pic for an example of the description above.
In this example shows that on some Port AND Protocols need to be listed.
iChat uses TCP and UDP so some devices will need the ports listed one by one and some settings done twice, once for each protocol. The example above has a "Both" setting
See Apple Article HT1507 Previously Doc 93208 for more information. This is the Tiger iChat 3 list. The same ports are needed for Leopard except for these changes
My Note 2:
On the first link Note 1 under tables in that link would be better if it read:
" 1. All iChat AV traffic is UDP -
except for ports 5190 and 5298, which need to be open for both TCP as well;
and 5220, 5222, which need to be open for TCP only. "
Note 2
GoggleTalk needs port 5223 on TCP. Also note the Server name for iChat 3 set ups
UPnP Universal Plug n Play.
This is a simple Plug and Play type of setting. iChat can find it's own way through a router if the device has this capability.
By Not doing Port Forwarding, Triggering or DMZ and enabling UPnP the application is allowed to control the modem and the ports that are open.
They close after the application has finished with them on a timed basis.
On some devices the number of "hops" (how far away the UPnP can be "seen") can be reduced from a default of 4)
Trigger Ports
Some devices offer a security measure that works by a first or trigger port receiving a data packet and then opening further ports when accepted.
The first port for incoming Video or Audio invites is port 5678.
Pre iChat 4
When you click on the invite window the process moves in to port 5060 (so these will need to be opened by the trigger port) for negotiating the final group of ports from the group of 20 (16384-16403 These will need to open when the trigger says so as well). Therefore port 5678 triggers ports 5678, 5060, 16384-16403. All on UDP. Port 5190 neeeds to trigger port 5190 for both TCP and UDP.
See this variation where only the ports listed above are completed.
The other single ports need to be set one by one in addition. (5220,5222, 5223 5297, 5298, 5353)Replace
iChat 4
The port used in IChat 4 is port 16402 instead of port 5060. The group of 20 ports is reduced to 10 (16393-16402). This is because all the In and Out Audio and Video data is on one port. Other that than the settings are the same.
At this time there is no Info on the ports the Screen Sharing in iChat 4 uses.
Wireless
Here you will have to read around but this Apple Article TA25949 Previously Doc 58514 might be a good starting place.
Essentially whether you are wireless or Ethernet to your routing device makes very little difference to the way you do things.
Your computer will get two IPs from a DHCP server if you are connected by both methods. (iChat does not like this)
Multiple devices
Make sure only one is acting as a DHCP server. Make sure wireless devices are bridged properly.
Further Help
I have found that this site (ADSLGuide) to be helpful.
It is British based but I have linked you to the Apple Related Discussions Forum.
Eliminating Problems on my Personal web pages.
The ports and their function within iChat. (my personal Web pages again)
This is not a step by step approach. You will have to read around the information about your device.
Collected FAQs and Expansions: Index Page Based on FAQs here by EZ Jim and myself
Also http://www.portforward.com/routers.htm for instructions with Pics on Port Forwarding and access info as mentioned earlier.
Click on your device.
Select iChat on the next page.
Follow the info on the next.
This site is godd for finding out the Default IP to use in a web browser and the default User ID and Passwords needed to do so.
Gives you a chance to look at at pics to give clues to where some of these other things are.
With thanks to Macmuse for comment on the Original (Aug 23rd 2004)
and to EZ Jim for his work on iSights on my web pages.
I may receive some form of compensation, financial or otherwise, from my recommendation or link.
9:51 PM Saturday; December 6, 2008kichat: FAQ 2 - How to get my router to work with iChat? December 2008 version 3
(Note to Hosts. to be removed on acceptance. Please use this to replace http://discussions.apple.com/thread.jspa?threadID=121775 )
Getting your router started with iChat.
Appropriate for using iChatAV 2 upwards. Edits have been made for iChat 4
Glossary for this FAQ
Routers: Any configurable device that sits between your computer and the internet link you have. This includes Modems that Route as well as "routers"
Routers seem to fall into two categories
Those that work straight from the box. See Apple Article HT1787
NOTE :This Article has not been updated in content since Jan 04 Only being changed to an Article from the Previous Doc listing
Even then some list that they need tweaks.
and those that do not.
This post will deal with what you may need to look at.
First off make sure your device is acting as a DHCP server. (if you are already on the internet you may not have to bother with this.)
Check in the Tiger System Preferences > Network Preference Pane, in the "Built in Ethernet" option from the "Show" drop down list.
In Leopard the Networks are listed on the left with icons. The Airport Option will need you to access the Advance Button for the Next bit.
Make sure the TCP/IP tab is the 'front' one. You should be able to see Configure IPv4 and it most likely reads Using DCHP. Make a note of your IP address. It will start 10.xxx.xxx.xxx or 192.168.xxx.xxx (the 'x' s will stand for any number between 1 and 255). The range 172.16.xxx.xxx is also a possible value at this point. Rarely used, but it is part of the RFC for Address Allocation for Private Internets.
Your router is most likely to be configurable from your browser. You will need to find the IP address to type into the browser from any Readme or PDF files that came on the install disk or visit the makers website and download a manual.
The Port Forward.com site lists many devices and clicking on one will take you to a list of Applications. This iChat will open an page that will start by telling you the defaults to access the device
Opening or Allowing ports. Several Methods not all devices have all of them.
DMZ (Demilitarised Zone)
This is a less secure setting that basically opens all ports and points the incoming data to your computer. (not helpful if you have more than one computer on your LAN). It can be considered as an extreme form of Port Forwarding
Port Forwarding (also Virtual Server or Pin Holes)
These settings are usually found in an Advanced setting.
You may need to set an incoming IP address (Usually 0.0.0.0 to any outside server), a port that data will arrive on, the Inside computer's IP address (your computer) and the port it will deal with the data on and the protocol it will use.
See this pic for an example of the description above.
In this example shows that on some Port AND Protocols need to be listed.
iChat uses TCP and UDP so some devices will need the ports listed one by one and some settings done twice, once for each protocol. The example above has a "Both" setting
See Apple Article HT1507 Previously Doc 93208 for more information. This is the Tiger iChat 3 list. The same ports are needed for Leopard except for these changes
My Note 2:
On the first link Note 1 under tables in that link would be better if it read:
" 1. All iChat AV traffic is UDP -
except for ports 5190 and 5298, which need to be open for both TCP as well;
and 5220, 5222, which need to be open for TCP only. "
Note 2
GoggleTalk needs port 5223 on TCP. Also note the Server name for iChat 3 set ups
UPnP Universal Plug n Play.
This is a simple Plug and Play type of setting. iChat can find it's own way through a router if the device has this capability.
By Not doing Port Forwarding, Triggering or DMZ and enabling UPnP the application is allowed to control the modem and the ports that are open.
They close after the application has finished with them on a timed basis.
On some devices the number of "hops" (how far away the UPnP can be "seen") can be reduced from a default of 4)
Trigger Ports
Some devices offer a security measure that works by a first or trigger port receiving a data packet and then opening further ports when accepted.
The first port for incoming Video or Audio invites is port 5678.
Pre iChat 4
When you click on the invite window the process moves in to port 5060 (so these will need to be opened by the trigger port) for negotiating the final group of ports from the group of 20 (16384-16403 These will need to open when the trigger says so as well). Therefore port 5678 triggers ports 5678, 5060, 16384-16403. All on UDP. Port 5190 neeeds to trigger port 5190 for both TCP and UDP.
See this variation where only the ports listed above are completed.
The other single ports need to be set one by one in addition. (5220,5222, 5223 5297, 5298, 5353)Replace
iChat 4
The port used in IChat 4 is port 16402 instead of port 5060. The group of 20 ports is reduced to 10 (16393-16402). This is because all the In and Out Audio and Video data is on one port. Other that than the settings are the same.
At this time there is no Info on the ports the Screen Sharing in iChat 4 uses.
Wireless
Here you will have to read around but this Apple Article TA25949 Previously Doc 58514 might be a good starting place.
Essentially whether you are wireless or Ethernet to your routing device makes very little difference to the way you do things.
Your computer will get two IPs from a DHCP server if you are connected by both methods. (iChat does not like this)
Multiple devices
Make sure only one is acting as a DHCP server. Make sure wireless devices are bridged properly.
Further Help
I have found that this site (ADSLGuide) to be helpful.
It is British based but I have linked you to the Apple Related Discussions Forum.
Eliminating Problems on my Personal web pages.
The ports and their function within iChat. (my personal Web pages again)
This is not a step by step approach. You will have to read around the information about your device.
Collected FAQs and Expansions: Index Page Based on FAQs here by EZ Jim and myself
Also http://www.portforward.com/routers.htm for instructions with Pics on Port Forwarding and access info as mentioned earlier.
Click on your device.
Select iChat on the next page.
Follow the info on the next.
This site is godd for finding out the Default IP to use in a web browser and the default User ID and Passwords needed to do so.
Gives you a chance to look at at pics to give clues to where some of these other things are.
With thanks to Macmuse for comment on the Original (Aug 23rd 2004)
and to EZ Jim for his work on iSights on my web pages.
I may receive some form of compensation, financial or otherwise, from my recommendation or link.
9:51 PM Saturday; December 6, 2008 -
Routing based on destination IP and traffic type
Is it possible to route traffic based on the destination IP and the type of traffic?
ASA5512
Software 9.2.1
We have an ASA 5512 that is used as a VPN termination point. Our employees connect from one of our customer sites to this VPN point. The customer also hosts services on the same IP address that our employees use to access our VPN on.
What I want to do is to use a different route for certain traffic to take to get to these other services provide by our customer, for instance they offer an FTP site and I want to use a different route to get our internal users to this FTP site. Is this possible to achieve?
Any help would be greatly appreciated.
MurrayTechnically speaking the ASA doesn't do policy based routing. However, you might be able to simulate something similar to PBR by using a combination of static routes and NAT.
If you describe your Network setup, ASA, and how the alternate route is connected to your customer, we might be able to help you better.
Please remember to select a correct answer and rate helpful posts -
WRT54GS Router and NAT 3 PS3 Problems
Ok. I need a lot of help. And yes. I used the search option prior to posting this topic and none of it answered my questions. I did try a few tips I saw firsthand at these topics but it still didn't solve my Nat 3 Problem. Heres my ps3s setup basically. Set the MTU to 1365, in the firewall settings unchecked Block Anonymous Internet Requests, In the Applications and Gaming tab I put my PS3s IP address in the DMZ. Tested my connection on my PS3 and the same NAT 3. I want to **bleep** a brick now because I have been frustrated by this. Googling didn't help. So I am hoping you guys can help me figure this out. FYI: I am changing this setting through the LAN connected from my PC to the router and I have my PS3 wired to the router also. With this NAT 3 problem my downloads are slow as hell and although I haven't tested online gaming yet this will be a huge factor in the lag.
Try forwarding ports TCP: 80, 443, 5223 UDP: 3478, 3479, 3658 on the rotuer setup page ... See if it works ...
-
I have 3 1941 Routers with IOS version 15.1(4)M3(MD). I noticed that the latest releases are into the 15.5's but the stable recommended ones are 15.4's. My question is that are there any pre-req's or suggested upgrades paths before getting 15.3.3M5(MD)? Also same goes for the next stable one 15.4.3M2(ED) and I do know the differences between ED and MD just wasn't sure of the orders. Any help is appreciated.
Does it matter in a security sense for this choice?
It matters to me. If I use an IOS with a "K9" this means I can run SSH and other crypto-related commands. Very useful.
Also is the rommon upgrade update the bootstrap or is it another software type?
When you boot up an appliance, the bootstrap is run FIRST before the IOS gets loaded into the memory. So it's another type of software upgrade. If you are smart, you can upgrade the bootstrap AND the IOS with one reboot of the appliance. And this is how it's done:
1. Copy the IOS into the appliance. Do everything you need to do, like change the boot variable string (if required) but DO NOT REBOOT the appliance just yet;
2. Upgrade the ROMmon using the command: upgrade rom-monitor file tftp://<TFTP IP address>/bootstrap_filename
When you upgrade the bootstrap the router will automatically reboot the appliance. So, one reboot only. -
WAE- 674 with EMC SRDF Traffic Question ?
Hi all,
I have a WAAS demo at a customer.
I have installed two WAE 674 boxes inline, at both ends of a 50mbps Metro Ethernet line between two EMC SANs. These EMC storages perform huge data replication during the day. All of the traffic is EMC SRDF traffic, nothing else.
Before putting the WAEs inline, the Metro line utilization had been around 49Mbps, ok so the WAN link was fully utilized. WAE 674s installed and bandwidth usage has dropped %12 percent, something around 44 Mbps.
EMC guys are telling me that, before WAAS, it used to take 7 hours to copy a 40GB data from one site to the other, with WAAS it came down to 1.5 hours. So yeah I know story is great so far.
What I dont understand is the attached graphics taken from CM, WAE1 and WAE2. All I see is %20 reduction in original traffic. Shouldnt this value be much greater than that ? Otherwise what could be the reason of having much shorter replication times compared to before ?
I have gone through couple of datasheets and marketing slides about WAEs and I have seen that with EMC replication traffic WAAS causes at least 2x optimization.
Both WAEs have default configs, so I havent customized anything in the SRDF classifier on WAAS.
I would really appreciate it, if some of you , can go through the screenshots that I attached and give me some thoughts and diretion to what value to customized and etc.
Thanks in advance.
DumluYou will want to explore CSCsg30875 to see how it applies to your installation
CSCsg30875 wccp blocking telnet to router
Since 12.3T is EOL, it probably was not tested and may or may not exist in that Cisco IOS track.
End-of-Sale and End-of-Life Announcement for Cisco IOS Software Release 12.3T
http://www.cisco.com/en/US/prod/collateral/iosswrel/ps8802/ps6947/ps5207/prod_bulletin0900aecd803a0ffe.html
Thank You,
Dan Laden -
Add Wireless N Router To Network With An Actiontec Router
Hi everyone, I know this wireless N thing is being beaten to death but I just really need to be pointed in the right direction. I recently built a HTPC setup with a SiliconDust HD Homerun network tuner so I could share three tuners with computers on my network. I've got two PCs wired to the network right now which share them fine. But the problem I'm running into is when I try to set up my laptop to watch something wirelessly, usually a game in HD. The signal is very weak and I constantly lose the tuners because of that, not to mention the picture is very choppy. I saw on a Microsoft Windows Media Center site that they don't recommend streaming HD TV feeds over anything other than a wireless N connection. I currently have the standard Actiontec router that came with FiOS, and it doesn't the N band. Now, that router accesses the internet signal through a coax so I know I can't get rid of it, but I've seen mentioned in a couple of places that you can just add a wireless N router into the network and turn off the wireless on the Actiontec router. This is the router I was thinking of getting:
http://www.bestbuy.com/site/Cisco+Linksys+-+E1200+Wireless-N+Router+with+4-Port+Ethernet+Switch/2225...
My current network setup is like this: Actiontec router upstairs which carries internet to -> a gigabit switch connected to -> computer, tuners, and printer upstairs, with a line run to -> another gigabit switch downstairs which connects to -> a computer, and an XBox.
So a couple of questions about this:
- Where would this go on the network? Would it go after the router and before the switches, like I run the internet into the new router then out to the switch, or can I just add it to one of the switches?
- Will I need to do any sort of port forwarding or anything, or assiging of IP addresses?
- Anything else I should know or might run into?
I love my FiOS service so hopefully this will help me get even more out of it!
Solved!
Go to Solution.I wanted to upgrade to an N protocol wireless router but since Verizon doesn’t offer the option, I purchased a Netgear N600. Unfortunately, after it arrived, I discovered that it didn’t have a coax connection as did the Verizon Actiontec. I then set out to find out how to daisy chain the routers to leave the Actiontec connected to the coax and connect the two routers via Ethernet cable. To my good fortune, during the time I spent on the phone with Netgear, I learned my way around their router interface and with the help of a co-worker that actually has a solid understanding of router/network configuration, I finally got everything working correctly – my port forwarding for RDC login worked, I could connect devices to either router and everything could once again see each other (e.g. PC, printer via Ethernet, Blu-ray player for Netflix, receiver for streaming Windows Media Player). Hopefully, this post will help you get up and running quickly and avoid the several hours I spent groping in the dark for the correct configuration.
Login to Verizon Actiontec router (type 192.168.1.1 into browser address bar).
No configuration changes are necessary on the Actiontec, you just need to identify an open IP address range in My Network section (I chose 192.168.1.50). This will be used as your static IP address of the Netgear router LAN settings.
Connect you PC via Ethernet cable directly into an Ethernet port (not WAN/Internet) on the Netgear router. No other connections are needed at this point.
Note: Do not use the Netgear wizard CD to setup the router. It will not take you through the necessary steps as you’re not setting it up as a router.
Login to the Netgear router (type routerlogin.net into the browser address bar) using the default login of “admin” and password “password”. Depending on your firmware version, your interface may vary but hopefully you’ll be able to find the same configuration options in either but perhaps not in the same order or placement. For subsequent logins after the router is active, you may need to type the Netgear IP address (e.g. 192.168.1.50) as routerlogin.net may open a search.
At the top of the Netgear genie, click on the Advanced tab.
On the left side, expand Setup, then select Internet Setup.
Select “Get dynamically from ISP”, under Internet IP Address.
Under Domain Name Server (DNS) Address, select “Use These DNS Servers”, and enter the IP Address of your Actiontec router (e.g. 192.168.1.1) in the Primary DNS” field.
Next go down a few options within Setup to Wireless Setup.
In the Wireless Network 2.4GHz section, click Enable SSID broadcast.
Enter a meaningful name in “Name (SSID)” as this is what will be displayed for your wireless connection.
For Channel, select Auto.
For Mode, select “Up to 300 Mbps”.
Security Options, recommend WPK2-PSK[AES] for longer/stronger password options.
Set the password of your choice.
Repeat the same process for Wireless Network 5GHz, except vary the name slightly so you’ll be able to distinguish which band you’ll connect to. You can optionally use the same or different password as your 2.4GHz. The only exception is you’ll have to select a Channel of your choice.
Next go down a couple more options within Setup to the LAN Setup.
In the LAN TCP/IP Setup section, enter the IP Address you chose in step 2 (e.g. 192.168.1.50).
Enter the IP Subnet Mask 255.255.255.0
Leave the block for “Use Router as DHCP Server” blank as your IP assignment will be handled by your Actiontec router.
You’re now finished with the configuration and you can connect the Actiontec router to the Netgear router using an Ethernet cable using the LAN ports (Note: do not connect the two routers using the WAN/Internet ports on either). You may connect your devices (PC, printers, A/V devices, etc.) to either router. If you have devices that are gigabit capable, you’ll want to connect them to the Netgear router to take advantage of the higher speed.
To avoid any possible interference between the 2.4GHz range of the two routers, you can optionally turn off the Actiontec wireless capability by logging into the Actiontec router admin (described above), go to the My Router tab, and there should be an option for “Change Wireless Settings” in the Quick Links section. Option 1 allows you to turn On/Off the wireless portion of the router. -
How do I get my router to work with my new modem?
Since the mods deleted my other post, so no one could see it and think anything bad about linksys's customer service, I will just have to ask a dumb noob question. I am not an IT professional, I am just a regular, non-technical kind of guy. I tried to follow the little guides that they have here, but they leave out too many steps for someone like me, who never does this kind of thing. Or at least, I have to assume that it does, cause it still does not work after I have tried the guide to my router, several times. I have to say that I am at my wits end with this stuff, since my whole home network is down. My router is a WRT54GS V7. But in an attempt to solve my problem, I updated to the latest firmware. My modem is a Motorola 2210-02. My ISP is AT&T. I have tried to get help from them, they do not care. I had to buy a new modem cause their other siemens speedstream 4100B died. So can anyone tell me, step by step, what to do to make my home network up and running again? Sorry about the rant, and the clear frustration, but I can not get any help from anywhere. So this is my last resort.
As your ISP is an DSL Provider, to configure your Router with the DSL Provider there are certain rules which you need to follow to configure your router to work with the DSL Provider..
Connect the Modem to the Linksys router on the Internet Port and then connect your computer to the Router on the LAN Port 1. Login to the Router setup and below you need to change the "Local IP address", By default its 192.168.1.1 so you need to change it to 192.168.5.1 and click on Save Settings....
Once you are done with the settings, you need to power cycle your network. Unplug the power from the Router and Modem, wait for 30 sec and then plug the power to the Modem first and when all the lights are solid on your modem then plug the power to the Linksys router..
Now check if you are Online from your Wired Computer. -
Router Problem - Works with Windoze, Linux, but not with Mac
I can't seem to get any router to work with my Mac.
I've tried a Linksys 'b' router, a Netgear 'g' router and a Belkin 'g' router.
No joy.
When I connect my Mac directly to my cable modem (Motorola Surfboard), there are no issues. When I connect the router in between, the Mac pulls the proper ip address and I can ping the router, but I can't get any further. If I try to ping an outside ip address (such as the 4.2.2.2 dns) I get the error message "ping: sendto: Cannot allocate memory". [Does anyone know what this message means?]
A second computer (IBM NetVista) connects reliably using Windoze XP. The same machine, booted in CentOS also connects reliably (after disabling the firewall).
Note, these are all wired connections. I'm not even trying to use wireless yet. The cables all check out, since they all work in other configurations (the Mac->router cable is the same one I use for Mac->Surfboard, and the router->surfboard cable works when connecting from the NewVista machine.
I thought the Mac problems might be firewall related. I had "Brickhouse" installed,but it has since been removed. My network settings no long advise that there is any firewall software in place (previously Sharing > Firewall was greyed out with message that other firewall software was installed). Sharing > Firewall now reports "Firewall Off".
I know the routers work, since I can connect from the NetVista machine. I know the cables are good, because they all work in other configurations. I know the Mac is seeing the router, and the router is seeing the Mac because a correct ip address is pulled. I can even communicate between the machines (ftp,ssh) but I can't get internet access using the Mac through the router.
Oh yeah... one other oddity. When I have personal web sharing enabled, an attempt to access the router setup page at 192.168.1.1 fetches the local server index.html page instead of accessing the router. When web sharing is off, I get a "you are not connected to the internet" message.
Any insight?Very strange indeed!
Only 2 suggestions at this point...
Get Applejack...
http://www.versiontracker.com/dyn/moreinfo/macosx/19596
After installing, reboot holding down CMD+s, then when the prompt shows, type in...
applejack AUTO
Then let it do all 5 of it's things.
At least it'll eliminate some questions if it doesn't fix it.
The 5 things it does are...
Correct any Disk problems.
Repair Permissions.
Clear out Cache Files.
Repair/check several plist files.
Dump the VM files for a fresh start.
Try dragging these files to the Desktop & Reboot...
/Users/nnnn/Library/Preferences/com.apple.internetconnect.plist
/Library/Preferences/SystemConfiguration/preferences.plist
/Library/Preferences/SystemConfiguration/com.apple.airport.preferences.plist
/Library/Preferences/com.apple.sharing.firewall.plist -
Configuring Cisco Router for use with Syslog Server
Configuring Cisco Router for use with Syslog Server:
Does anyone know of a good doc for this?
-AshleyStart with that one: http://security-planet.de/wp-content/uploads/2008/12/logging-ios.pdf
And if you need more informations, just ask what you want to achieve.
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni -
Routing of emails with valid Service Ticket Tracking Text
Hi Experts,
System: SAP CRM 2007 (ERMS)
If an email is send to the ERMS system with a valid Service Ticket Tracking Text, based on the rule:
If
Service Ticket Responsible Is Not Equal To ""
Then
Route to Service Ticket Responsible ( Route To (On Exception) = "" )
The email can be routed to the Service Ticket Responsible of the Service Ticket or a default org.
My requirement is to route the email with a valid Service ticket tracking text to the Responsible Org (Service Employee Group) of the Service Ticket.
How can this be made possible. Can any one guide me with the Steps.
Regards,
Namita
Edited by: Namita Singh on Jul 10, 2009 8:42 AMHi Namita,
I was trying to simulate your condition and i thought the following could be useful to you.
You validate your tickets based on "Text" for them to be put into the ERMS --(Is it true?)
and then you want the service ticket responsible org to be intimated about the ticket
while selecting the action/parameters --> You will need to add the entry Route E-mail , this will give you the organization unit object .
At the back end in the service manger profile the service id for this is -->AH_ROUTE and the class is CL_CRM_ERMS_AH_ROUTE
There should be an enhancement written in this class for the identification of the Responsible org unit partner function org so that it gets identified as the org to be intimated about the ticket.
The other way is to add the service FG_SVCTKT to your service manger profile(guess it should be the default one) so that then you can check for the Actions/parameters to assign the partner function holding the responsible org data.
Hope this helps
Regards
Raj -
Which wireless router works best with Apple products?
Which wireless router works best with Apple products?
I cannot comment of Airport products, as I have none. Nor would I suppose to argue with Kappy or Ralph.
But in a pinch a LinkSys E2500 will work, as it does for me. -
How to use Mac Mini Server as NAT with only one port??
How to use Mac Mini Server as NAT with only one ethernet port??
But why did apple sell me this server that does NAT with one port? I don't get it.
Maybe you are looking for
-
Can I backup my ipad without having the password?
I have an ipad 3. Some time ago the glass broke so I started using my wifes ipad. I finally got around to fixing it but now I don't remember the password (I tried usual suspects, but now I have to wait an hour between each new try). I know how to r
-
Error"XI Error CLIENT_RECEIVE_FAILED.INTERNAL: Queue sto" in SMQ2
Hi, When i am trying to test my JDBC to ABAP Server proxy i am getting the error(XI Error CLIENT_RECEIVE_FAILED.INTERNAL: Queue sto) in SMQ2 please advice me what could be the problem? Regards, Bhoj
-
HT1918 Dear I am not be abloe to find (select payment method as "None" in iTunes)
Dear, update your name, billing address, or payment information, follow these instructions: From the Apple Account Information page, click the Edit Payment Information button. Edit the information that you would like to change. Note: The payment me
-
where do i go to look at the stuff i backed up to my icloud account? I just started using this icloud with my new iphone/
-
"not on this ipod" missing from ios 6
Did iPod Touch 4th gen really lose the ability to download previously purchased songs from the Purchased > Not on this iPod screen? The screen is just gone now. in IOS 5 there was a Purchased button at the bottom of the ios iTunes app, now the only P