RV220W IPsec tunnel connected, but no ping is working
Hello,
I have a problem with my RV220w router and IPsec connections.
The tunnel is connected, but no ping is working. I have not changed any Settings on the Client Site or Router Site. The last succsessful tunnel wit this configuration is a half year ago.
The local and remote network have different ip-address.
I have both firmware versions 1.0.4.17 and 1.0.5.8 tested.
A tunnel over PPTP is working fine. The ping works successful.
Has anyone an idea?
kind regards
Martin Schubert
Configuration:
Client Software:
- Windows 7 64Bit
- ShrewSoft VPNClient 2.2.2
n:version:4
n:network-ike-port:500
n:network-mtu-size:1380
n:client-addr-auto:1
n:network-natt-port:4500
n:network-natt-rate:15
n:network-frag-size:540
n:network-dpd-enable:0
n:client-banner-enable:1
n:network-notify-enable:1
n:client-dns-used:1
n:client-dns-auto:1
n:client-dns-suffix-auto:1
n:client-splitdns-used:1
n:client-splitdns-auto:1
n:client-wins-used:0
n:client-wins-auto:1
n:phase1-dhgroup:5
n:phase1-life-secs:86400
n:phase1-life-kbytes:0
n:vendor-chkpt-enable:0
n:phase2-life-secs:3600
n:phase2-life-kbytes:0
n:policy-nailed:0
n:policy-list-auto:0
n:phase1-keylen:0
n:phase2-keylen:0
s:client-auto-mode:pull
s:client-iface:direct
s:network-natt-mode:enable
s:network-frag-mode:enable
s:auth-method:mutual-psk-xauth
s:ident-client-type:fqdn
s:ident-server-type:fqdn
s:ident-client-data:remote.com
s:ident-server-data:local.com
s:phase1-exchange:aggressive
s:phase1-cipher:aes
s:phase1-hash:sha2-256
s:phase2-transform:esp-aes
s:phase2-hmac:sha2-256
s:ipcomp-transform:disabled
n:phase2-pfsgroup:5
s:policy-level:auto
s:policy-list-include:192.168.1.0
Router:
IpsecIKEPolicy[1]["Direction"] = "1"
IpsecIKEPolicy[1]["EncryptionAlgorithm"] = "5"
IpsecIKEPolicy[1]["LocalIdentifier"] = "local.com"
IpsecIKEPolicy[1]["ExchangeMode"] = "1"
IpsecIKEPolicy[1]["RemoteIdentifier"] = "remote.com"
IpsecIKEPolicy[1]["Presharedkey"] = "is secret"
IpsecIKEPolicy[1]["IKEPolicyName"] = "abc"
IpsecIKEPolicy[1]["LocalIdentifierType"] = "1"
IpsecIKEPolicy[1]["SALifeTime"] = "28800"
IpsecIKEPolicy[1]["DPDDetectionPeriod"] = "10"
IpsecIKEPolicy[1]["ModeConfigStatus"] = "0"
IpsecIKEPolicy[1]["XAUTHType"] = "2"
IpsecIKEPolicy[1]["DPDFailureCount"] = "3"
IpsecIKEPolicy[1]["AuthAlgorithm"] = "3"
IpsecIKEPolicy[1]["AuthType"] = "0"
IpsecIKEPolicy[1]["DHGroup"] = "5"
IpsecIKEPolicy[1]["DPD"] = "0"
IpsecIKEPolicy[1]["_ROWID_"] = "1"
IpsecIKEPolicy[1]["RemoteIdentifierType"] = "1"
IpsecVPNPolicy[1]["EnableKeepAlive"] = "0"
IpsecVPNPolicy[1]["LocalSubnetMask"] = "255.255.255.0"
IpsecVPNPolicy[1]["EncryptionAlgorithm"] = "5"
IpsecVPNPolicy[1]["AuthAlgorithm"] = "3"
IpsecVPNPolicy[1]["RemoteNetworkType"] = "0"
IpsecVPNPolicy[1]["LocalGateway"] = "0"
IpsecVPNPolicy[1]["RVGStatus"] = "0"
IpsecVPNPolicy[1]["VPNPolicyName"] = "abc"
IpsecVPNPolicy[1]["LocalStartAddress"] = "192.168.1.0"
IpsecVPNPolicy[1]["Status"] = "1"
IpsecVPNPolicy[1]["Netbios"] = "0"
IpsecVPNPolicy[1]["AutoPolicyType"] = "1"
IpsecVPNPolicy[1]["KeepAlivePeriod"] = "10"
IpsecVPNPolicy[1]["PFSKeyGroup"] = "5"
IpsecVPNPolicy[1]["SPIOut"] = "0x"
IpsecVPNPolicy[1]["KeepAliveFailureCount"] = "3"
IpsecVPNPolicy[1]["LocalNetworkType"] = "3"
IpsecVPNPolicy[1]["SALifeTime"] = "3600"
IpsecVPNPolicy[1]["IKEPolicyName"] = "abc"
IpsecVPNPolicy[1]["FailbackTime"] = "30"
IpsecVPNPolicy[1]["RemoteEndPoint"] = "remote.com"
IpsecVPNPolicy[1]["NodeId"] = "1"
IpsecVPNPolicy[1]["SALifeTimeType"] = "0"
IpsecVPNPolicy[1]["PolicyType"] = "1"
IpsecVPNPolicy[1]["SPIIn"] = "0x"
IpsecVPNPolicy[1]["RemoteEndPointType"] = "1"
IpsecVPNPolicy[1]["_ROWID_"] = "1"
IpsecVPNPolicy[1]["Rollover"] = "0"
At the glance,
First, what are your netmasks for those networks? I suppose they are 255.255.255.0.
Second, check your Remote Security Group and Local Security Group on B and C for their tunnel. Maybe permutation?
Third, check Routing table (Setup->More->Advanced Routing then at the bottom Show Routing Table).
Should be something like - on B:
10.0.0.0
255.255.255.0
GW for B
10
ipsec0
and on C:
10.0.1.0
255.255.255.0
GW for C
10
ipsec0
Similar Messages
-
Intermittently iphone 6 and 6 plus is wifi connected but internet does not work.
Hi,
I have an issue where intermittently iphone 6 and 6 plus is wifi connected but internet does not work. iMessage works though. Toggling the wifi setting clears
the issue temporarily but it occurs again. Running iOS 8.3 now. This was the case on iOS 8.1 and 8.2 as well.
I have tried the typical troubleshooting steps (reboot/reset network settings/disabling location services for wifi/upgrade/etc)
My router is an EA9200 router with 2.4 Ghz and 5 Ghz. It is configured with all bands with the same name.
All other devices in my house works perfectly fine and has no disconnects (ipad/macbook air/tv's/receivers)
My thought is that iphone 6 cannot handle well the moving around between bands.
Any thoughts or suggestions would be greatly appreciated.
Thanks,
DavidHave you tried to reboot your router by turning off the power (you may have to unplug it from the power source), then waiting about 30 seconds, then turning it back on? This seems to solve a lot of problems.
-
IPSec Tunnel established but not able to reach remote Local subnet
Hi,
We established IPsec Tunnel. It was active but I found following issue. Please give your suggestion to troubleshoot it.
1. 192.168.50.0/24 (Site A) able to reach 192.168.90.0/24. (Site B) and Vice Versa
2. 192.168.30.0/24 (Site C) able to reach 192.168.50.0/24 (Site A) but not vice versa.
3. 192.168.10.0/24, 155.220.21.175 (Site A) reaches up to 192.168.90.0/24 (Site B) and vice versa. but not reach to 192.168.50.0/24 (Site A)
Want to access 192.168.30.0/24, 192.168.10.0/24, 155.220.21.175 (Site C) from 192.168.50.0/24 (Site A)
Additionally Tunnel only established if active traffice send from site B.
Thanks & Rgds,
Dhaval DikshitThanks, Punit. Additionalily I found following error, it might reach us to nearer to solution. Please suggest if any suggetion.
When I'm doing packet tracer from site B I got following massage.
ASA# packet-trace input outside tcp 192.168.50.220 2000 155.220.21.175 21 detail
Phase: 1
Type: ACCESS-LIST
Subtype:
Result: ALLOW
Config:
Implicit Rule
Additional Information:
Forward Flow based lookup yields rule:
in id=0xc959c928, priority=1, domain=permit, deny=false
hits=143495595, user_data=0x0, cs_id=0x0, l3_type=0x8
src mac=0000.0000.0000, mask=0000.0000.0000
dst mac=0000.0000.0000, mask=0100.0000.0000
Phase: 2
Type: ROUTE-LOOKUP
Subtype: input
Result: ALLOW
Config:
Additional Information:
in 155.220.21.175 255.255.255.255 inside
Phase: 3
Type: ACCESS-LIST
Subtype: log
Result: ALLOW
Config:
access-group outside_access_in in interface outside
access-list outside_access_in extended permit ip object-group Tas_Tunnel host 155.220.21.175 log
object-group network Tas_Tunnel
network-object host 192.168.50.50
network-object host 192.168.50.65
network-object host 192.168.50.220
Additional Information:
Forward Flow based lookup yields rule:
in id=0xca246310, priority=12, domain=permit, deny=false
hits=1, user_data=0xc793bcc0, cs_id=0x0, flags=0x0, protocol=0
src ip=192.168.50.220, mask=255.255.255.255, port=0
dst ip=155.220.21.175, mask=255.255.255.255, port=0, dscp=0x0
Phase: 4
Type: IP-OPTIONS
Subtype:
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0xc959f4d8, priority=0, domain=inspect-ip-options, deny=true
hits=3443418, user_data=0x0, cs_id=0x0, reverse, flags=0x0, protocol=0
src ip=0.0.0.0, mask=0.0.0.0, port=0
dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
Phase: 5
Type: INSPECT
Subtype: inspect-ftp
Result: ALLOW
Config:
class-map inspection_default
match default-inspection-traffic
policy-map global_policy
class inspection_default
inspect ftp
service-policy global_policy global
Additional Information:
Forward Flow based lookup yields rule:
in id=0xc962fa60, priority=70, domain=inspect-ftp, deny=false
hits=11, user_data=0xc962f8b0, cs_id=0x0, use_real_addr, flags=0x0, protocol=6
src ip=0.0.0.0, mask=0.0.0.0, port=0
dst ip=0.0.0.0, mask=0.0.0.0, port=21, dscp=0x0
Phase: 6
Type: VPN
Subtype: ipsec-tunnel-flow
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0xc9f1c290, priority=12, domain=ipsec-tunnel-flow, deny=true
hits=167708, user_data=0x0, cs_id=0x0, flags=0x0, protocol=0
src ip=0.0.0.0, mask=0.0.0.0, port=0
dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
Phase: 7
Type: NAT-EXEMPT
Subtype: rpf-check
Result: ALLOW
Config:
Additional Information:
Forward Flow based lookup yields rule:
in id=0xc965a700, priority=6, domain=nat-exempt-reverse, deny=false
hits=2, user_data=0xc965a490, cs_id=0x0, use_real_addr, flags=0x0, protocol=0
src ip=192.168.50.220, mask=255.255.255.255, port=0
dst ip=155.220.21.175, mask=255.255.255.255, port=0, dscp=0x0
Phase: 8
Type: IP-OPTIONS
Subtype:
Result: ALLOW
Config:
Additional Information:
Reverse Flow based lookup yields rule:
in id=0xc95ea328, priority=0, domain=inspect-ip-options, deny=true
hits=17273465, user_data=0x0, cs_id=0x0, reverse, flags=0x0, protocol=0
src ip=0.0.0.0, mask=0.0.0.0, port=0
dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
Phase: 9
Type: VPN
Subtype: encrypt
Result: DROP
Config:
Additional Information:
Reverse Flow based lookup yields rule:
out id=0xca2f4c98, priority=70, domain=encrypt, deny=false
hits=2, user_data=0x0, cs_id=0xc9dd8d90, reverse, flags=0x0, protocol=0
src ip=155.220.21.175, mask=255.255.255.255, port=0
dst ip=192.168.50.192, mask=255.255.255.192, port=0, dscp=0x0
Result:
input-interface: outside
input-status: up
input-line-status: up
output-interface: inside
output-status: up
output-line-status: up
Action: drop
Drop-reason: (acl-drop) Flow is denied by configured rule
Thanks & Rgrds,
Dhaval Dikshit -
Wifi is connected but internet has stopped working
I have had my new ipod touch for a week and its been working fine. i had it connected to my wifi network at home with no problems until this morning when it stopped working. the wifi connectivity is fine and works with everything else, and the ipod reads the wifi network but everything i try to poen that needs connection says its not connected. Any suggestions? i tried resetting the network to no avail and even deleted all content and settings but it still wont work any more. i wondered if its possible for there to be a fault with it rather than a software issue. i am running the latest version of everything and my old one as well as my ipad works fine.
Which one did you reset? your iPod's network or the router?
Have you checked the wi-fi configuration? its in the arrow on the right side of the SSID (in iPod), when you touch it, IP address will come out. There are 3 Configurations to choose from, DHCP, BOOTP, STATIC.
Is your router was set to DHCP? your iPod should have a lease of IP from the router. if its blank or someting like 168.x.x.x, try use the STATIC...just put on your network segment (192.168.x.x) and the gateway of course... -
Sees connection, but internet isn't working
Hi, folks! I hope you can help me with this problem my macbook is having.
Sometimes it does this thing where it sees the connection (bars show) but when I try to use any program that requires an internet connection (Safari, Firefox, iTunes store, or iChat) it doesn't work, doesn't connect. It used to work fine, just suddenly started doing this. I have not changed any of the settings or the IP address.
This has been a recurrent problem since I got the laptop, and using it just sort of randomly starts working again after a couple days. Now it has been a couple weeks and it is still not working, so I would like to figure out what is the root of the problem and fix it! Does anyone have any tips or ideas?
Thank you in advance!
<3Sorry, this is my first time doing this ^^;
I have cable, Roadrunner. I do have a linksys router, but when I try to plug the ethernet cable directly into the computer, the internet still doesn't work. My computer does recognize the signal, but I have no internet. It gives me a "page cannot be found" when I try to load up for Firefox or Safari, and iChat and iTunes store won't load up either.
The internet was working fine, it just suddenly started doin gthis. It isn't the first time, but usually it just randomly pops back on after a day or two. My other computer is working fine, so I don't think the problem is with the connection. -
I keep trying to activate my imessage and it keeps saying that I cant. to check my network connection and try again. but my internet is working perfectly fine. can anyone help me with this ?
Have you tried restarting the phone? Hold both Home and Power buttons down until Apple logo appears and phone "reboots".
And have you tried resetting Network Settings?
Settings => General => Reset => Reset Network Settings
You will have to re-enter Wifi Passwords but it might help you get to a more solid connection on your phone. -
My wifi is connected but it is not working. What can i do?
All day today whenever I would try to connect to wifi it would connect but it would say that I was not connected.
My first assumption is to power off your phone then unplug your WIFI router for at least 2 minutes. Plug back in router and let it reboot - then turn back on phone...
-
ASA 5505 IPSEC VPN connected but can't access to LAN
ASA : 8.2.5
ASDM: 6.4.5
LAN: 10.1.0.0/22
VPN Pool: 172.16.10.0/24
Hi, we purcahsed a new ASA 5505 and try to setup IPSEC VPN via ASDM; i just simply run the Wizards, setup vpnpool, split tunnelling,etc.
I can connect to the ASA by using cisco VPN client and internet works fine on the local PC, but it cannot access to the LAN (can't ping. can't remote desktop). I tried the same thing on our Production ASA(those have both Remote VPN and Site-to-site VPN working), the new profile i created worked fine.
Below is my configure, do I mis-configure anything?
ASA Version 8.2(5)
hostname asatest
domain-name XXX.com
enable password 8Fw1QFqthX2n4uD3 encrypted
passwd g9NiG6oUPjkYrHNt encrypted
names
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan1
nameif inside
security-level 100
ip address 10.1.1.253 255.255.252.0
interface Vlan2
nameif outside
security-level 0
ip address XXX.XXX.XXX.XXX 255.255.255.240
ftp mode passive
clock timezone PST -8
clock summer-time PDT recurring
dns server-group DefaultDNS
domain-name vff.com
access-list vpntest_splitTunnelAcl standard permit 10.1.0.0 255.255.252.0
access-list inside_nat0_outbound extended permit ip 10.1.0.0 255.255.252.0 172.16.10.0 255.255.255.0
pager lines 24
logging enable
logging timestamp
logging trap warnings
logging asdm informational
logging device-id hostname
logging host inside 10.1.1.230
mtu inside 1500
mtu outside 1500
ip local pool vpnpool 172.16.10.1-172.16.10.254 mask 255.255.255.0
no failover
icmp unreachable rate-limit 1 burst-size 1
no asdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 0 access-list inside_nat0_outbound
nat (inside) 1 0.0.0.0 0.0.0.0
route outside 0.0.0.0 0.0.0.0 XXX.XXX.XXX.XXX 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
aaa-server AD protocol nt
aaa-server AD (inside) host 10.1.1.108
nt-auth-domain-controller 10.1.1.108
http server enable
http 10.1.0.0 255.255.252.0 inside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
crypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map outside_map interface outside
crypto isakmp enable outside
crypto isakmp policy 10
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
telnet timeout 5
ssh 10.1.0.0 255.255.252.0 inside
ssh timeout 20
console timeout 0
dhcpd auto_config outside
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
webvpn
group-policy vpntest internal
group-policy vpntest attributes
wins-server value 10.1.1.108
dns-server value 10.1.1.108
vpn-tunnel-protocol IPSec l2tp-ipsec
password-storage disable
ip-comp disable
re-xauth disable
pfs disable
ipsec-udp disable
ipsec-udp-port 10000
split-tunnel-policy tunnelspecified
split-tunnel-network-list value vpntest_splitTunnelAcl
default-domain value XXX.com
split-tunnel-all-dns disable
backup-servers keep-client-config
address-pools value vpnpool
username admin password WeiepwREwT66BhE9 encrypted privilege 15
username user5 password yIWniWfceAUz1sUb encrypted privilege 5
username user3 password umNHhJnO7McrLxNQ encrypted privilege 3
tunnel-group vpntest type remote-access
tunnel-group vpntest general-attributes
address-pool vpnpool
authentication-server-group AD
authentication-server-group (inside) AD
default-group-policy vpntest
strip-realm
tunnel-group vpntest ipsec-attributes
pre-shared-key BEKey123456
peer-id-validate nocheck
privilege cmd level 3 mode exec command perfmon
privilege cmd level 3 mode exec command ping
privilege cmd level 3 mode exec command who
privilege cmd level 3 mode exec command logging
privilege cmd level 3 mode exec command failover
privilege cmd level 3 mode exec command packet-tracer
privilege show level 5 mode exec command import
privilege show level 5 mode exec command running-config
privilege show level 3 mode exec command reload
privilege show level 3 mode exec command mode
privilege show level 3 mode exec command firewall
privilege show level 3 mode exec command asp
privilege show level 3 mode exec command cpu
privilege show level 3 mode exec command interface
privilege show level 3 mode exec command clock
privilege show level 3 mode exec command dns-hosts
privilege show level 3 mode exec command access-list
privilege show level 3 mode exec command logging
privilege show level 3 mode exec command vlan
privilege show level 3 mode exec command ip
privilege show level 3 mode exec command ipv6
privilege show level 3 mode exec command failover
privilege show level 3 mode exec command asdm
privilege show level 3 mode exec command arp
privilege show level 3 mode exec command route
privilege show level 3 mode exec command ospf
privilege show level 3 mode exec command aaa-server
privilege show level 3 mode exec command aaa
privilege show level 3 mode exec command eigrp
privilege show level 3 mode exec command crypto
privilege show level 3 mode exec command vpn-sessiondb
privilege show level 3 mode exec command ssh
privilege show level 3 mode exec command dhcpd
privilege show level 3 mode exec command vpnclient
privilege show level 3 mode exec command vpn
privilege show level 3 mode exec command blocks
privilege show level 3 mode exec command wccp
privilege show level 3 mode exec command dynamic-filter
privilege show level 3 mode exec command webvpn
privilege show level 3 mode exec command module
privilege show level 3 mode exec command uauth
privilege show level 3 mode exec command compression
privilege show level 3 mode configure command interface
privilege show level 3 mode configure command clock
privilege show level 3 mode configure command access-list
privilege show level 3 mode configure command logging
privilege show level 3 mode configure command ip
privilege show level 3 mode configure command failover
privilege show level 5 mode configure command asdm
privilege show level 3 mode configure command arp
privilege show level 3 mode configure command route
privilege show level 3 mode configure command aaa-server
privilege show level 3 mode configure command aaa
privilege show level 3 mode configure command crypto
privilege show level 3 mode configure command ssh
privilege show level 3 mode configure command dhcpd
privilege show level 5 mode configure command privilege
privilege clear level 3 mode exec command dns-hosts
privilege clear level 3 mode exec command logging
privilege clear level 3 mode exec command arp
privilege clear level 3 mode exec command aaa-server
privilege clear level 3 mode exec command crypto
privilege clear level 3 mode exec command dynamic-filter
privilege cmd level 3 mode configure command failover
privilege clear level 3 mode configure command logging
privilege clear level 3 mode configure command arp
privilege clear level 3 mode configure command crypto
privilege clear level 3 mode configure command aaa-server
prompt hostname context
no call-home reporting anonymous
Cryptochecksum:447bbbc60fc01e9f83b32b1e0304c6b4
: endI change a Machine's gateway to this ASA and capture again, now we can see some reply.
All ohter PCs and switches gateway are point to another ASA, maybe that's the reason why i didn't work?
what's the recommanded way to make our LAN to have two 2 gateways(for load balance or backup router, etc)?
add two gateways to all PCs and swtichwes?
1: 18:15:48.307875 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 68
2: 18:15:49.777685 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 68
3: 18:15:51.377147 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 68
4: 18:15:57.445777 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 68
5: 18:15:58.856324 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 68
6: 18:16:00.395090 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 68
7: 18:16:06.483464 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 68
8: 18:16:08.082805 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 68
9: 18:16:09.542406 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 68
10: 18:16:20.640424 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.230: icmp: echo request
11: 18:16:20.642193 802.1Q vlan#1 P0 10.1.1.230 > 172.16.10.1: icmp: echo reply
12: 18:16:21.169607 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.230: icmp: echo request
13: 18:16:21.171210 802.1Q vlan#1 P0 10.1.1.230 > 172.16.10.1: icmp: echo reply
14: 18:16:22.179556 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.230: icmp: echo request
15: 18:16:22.181142 802.1Q vlan#1 P0 10.1.1.230 > 172.16.10.1: icmp: echo reply
16: 18:16:23.237673 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.230: icmp: echo request
17: 18:16:23.239291 802.1Q vlan#1 P0 10.1.1.230 > 172.16.10.1: icmp: echo reply
18: 18:16:27.676402 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 50
19: 18:16:29.246935 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 50
20: 18:16:30.676921 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137: udp 50
21: 18:16:49.539660 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.233: icmp: echo request
22: 18:16:54.952602 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.233: icmp: echo request
23: 18:17:04.511463 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.233: icmp: echo request -
Can't connect but can ping & use AP Util
A couple issues:
TC shows up in finder, can ping it (static ip, as are all my ip's) and use the airport utility. It worked fine for a day or so, now with no changes, this is where I'm at. I get an error about it not existing. I've tried to 'connect As' even 'connect to server' in Finder trying names and ip - no joy.
TC is set up with only Ethernet (cable) WiFi is turned off. File sharing with accounts (all are OK) My MacBook Pro and Mini can't connect.
I find it odd that the Air Port utility connects to it just fine. Does it use the AFP or UDP/TCP?
I'm going to reboot the TC and see. But if I need to reboot it every day or so, its worthless to me.
Topology (another issue) is:
router/switch Gb --> switch 2 100b ---> TC
When I tried to make the TC be the middle (to keep a Gb network) it didn't work. (yes, I know about the uplink ports; even tried the standard ports)
(oh other kinda non issue: Printers don't show up in the AirPort utility, but remote 'puters print fine)
Message was edited by: MudSharkThis TC is going back. What a POS! Now it won't even connect to the LAN. Had it for less then a week and its been down more then up. NOT impressed.
-
Losing internet connection but can ping severs
Hi. Something weird has been happening with my powerbook the last month. Safari, mail and skype cant access the internet suddenly. Rebooting my router does nothing, neither does logging out/in, but rebooting the pb resolves. When this happens I can still ping www addresses and ip addresses but all apps seem to lose connectivity. Anyone got a suggestion?
This resolved itself. Maybe it was a problem with my ISP
-
VPN connects but No Ping; AFP; or SMB
Folks;
All Mac's are fully updated Tiger or Tiger Server {running dual NIC's w/ NAT;DNS;DCHP;VPN;AFP;Firewall;Windows;DNS}
I can connect using the client's IntenetConnet L2TP mechanism and the clock ticks away...
But once connected I cannot mount shares or ping.
I have verfied that these shares can be mounted if connected NOT thru the VPN.
I have read a long thread here from last year and based on that have implemented firewall rules for allowing all traffic (TCP & UPD) (In or Out) for ppp* to 19.168.2.0/24 and for 192.168.2.0/24 to ppp* {4 rules total}
I have not made any Network Routing Definitions in the VPN settings
Help Please!
How do you debug this? Where is the best documentation to read on this?
I'm going nuts!
SteveStart by enabling logging of denied packets in the firewall settings.
Then: what IP are you trying to use to get at the server services (you should use the NATed LAN IP)?
Also the remote client must not be connecting from a network which are using the same IP range as the server LAN.
And VPN client IPs must be part of the LAN IP range. -
The App Store won't connect but the Internet Is working fine? Help
Please help my App Store keeps saying it won't connect and now my apps don't work either, but my Internet is connected.
Anyone know how to fix this?Hi Gackerman1953,
Thanks for visiting Apple Support Communities.
Try these steps if you cannot connect to the iTunes App Store but your internet connection seems fine:
Can't connect to the iTunes Store
http://support.apple.com/kb/ts1368
Cheers,
Jeremy -
WD HDD - First connected but later didn't work, why?
Hey Community,
Yesterday I connected my external hard drive to my macbook pro. I wanted to activate the time machine so I have space on my mac. When the time machine automatically came up I forwarded it to connect it to the Time Machine. When the process started I recognized that mac is completely restarting and formatting the hard drive so I searched for any button to cancel the process because I had lots of files in it.
But there was no button so I separated it by pulling the usb cable. Of course the process stopped but after that I tried to connect the hard drive again. Unfortunately it didn't appear anymore.
The disk utility recognizes the external hard drive but I can't see it on the finder. I also went to preferences on finder and checked the box for external hard drives. Still nothing appeared.
Can anyone please help me?
My Macbook pro is OS X Yosemite Version 10.10.2 and the hdd is WD Elements.Still struggling to understand why copying the entire root dir to a disk image and then restoring from that image did not, as expected, yield an identical system, and why I even had to reinstall after doing this.
Because there is a lot more going on under the hood than merely copying files.
The only way to do what you want is to use cloning software like Carbon Copy Cloner.
My advice is to rescue your personal files to a regular non-TimeMachine external drive, Zero erase the ENTIRE drive and install OS X fresh and update, then your programs from original sources and files from backup.
Then, make a bootable clone and you can copy that as many times as you want and each one is bootable.
Most commonly used backup methods
How to erase and install Snow Leopard 10.6 -
Wifi will connect but internet won't work
So my iphone 4 will say its connected to the network (check mark beside network and good signal) but when I try to open a web page/app store/youtube it says "cannot open page not connected blah blah blah" some of my friends iphone 3gs' work no problems. also I'm in Spain and my data roaming is turned off but the cellular data is still on.(don't know if that helps but thought I would mention it.)
Thanks in advance.
also I've tried resetting the network settings and that did not help either.OK, that is good information for troubleshooting. Since it works on other networks the problem is either the router or corrupted settings on your phone. The first thing to do (if you can) is to reboot the router. The DHCP daemon in it may have crashed - this is very common. Just unplug it for a few seconds, then plug it in again. Also, if you can, verify that the router has the latest version of firmware available. As to why other phones work it could be that they had connected before the DHCP deamon crashed, and are reusing the original IP address.
Another possibility on the router side is that MAC (Media Access Control) filtering is enabled. This is a router feature that allows only previously approved devices to connect to the router. If it is enabled your phone must be added to the "allow" list in the router.
Finally, on the router side, it's possible that it has run out of IP addresses. This can happen if it is used by a lot of people. It would be necessary to change settings in the router to fix it.
If the problem is on your phone the first thing to try is to attempt to connect, then tap the ">" next to the network name and choose "Forget this network". Then back out of settings and reboot the phone (hole HOME and SLEEP until an Apple logo appears, about 10 seconds). After rebooting try to connect again.
If this fails next go to Settings/General/Reset and Reset Network Settings. You will lose WiFi passwords, but nothing else. Again reboot and try to connect.
One of these will most likely fix the problem. If one does please tell us which one, and if nothing helps let us know that also. -
EPrint not connected but all other functions working
I have just set up the All-in-One HP216B printer. All wireless connections are perfect and I can print from multiple wirelessly connected laptops and one desktop connected via ethernet to the router. All basic functions of print, sca, copy work. I followed the set up for the Web Services and that seemed to work. The wireless network test shgows everything to be in perfect order. I have an IP address etc. However when I am in the ePrintCentre the printer is showing as not connected and when I attempt to send an email to the printer it shows up as pending in the Print Jobs. The printer is clearly just not connected to the internet and that is also verified by the fact that the PrintApps cannot download the prints from the hpcentre web site.
I have switched the printer off and on again. I have removed the printer and added it again - all to no avail. I have looked through the forums and still have no success.
Anybody any ideas ?
This question was solved.
View Solution.OK it works now. Not sure why or how but repeated attempts at switching printer on and off coupled with resetting email address has worked. I also changed back from specifying allowable emails addresses to allowing all and today my prints arrived. Curiously I also have to switch the printer on ana off to reactivate the scan connection to my desktop and laptops all connected via the router.
I am semi happy as this is not a plug and play or seamless solution that is described on the box
Maybe you are looking for
-
How to view multiple pictures in a SMS message as a slideshow??
I have the blackberry curve 9350/9360 and i occasionally get sms picture messages from friends with multiple pictures that i have to open up seperately to view. Is there a way to change the settings so that it will open up as a slide show and i can
-
It should be mentionned in the Apple help that the audio output jack is sometimes fleaky, as it does not reclose the speakers contacts correctly when an earphone jack is removed. This can be checked by looking into the computer audio jack and seeing
-
Not Getting Warning Messages in Telesales,but getting the Same in Sales
Hi, I have set the profile oprion "OS: Opportunity Probability Link" to Warning. This should prompt a warning message when the Sales Stage and Win Probalility shold not match,this is happening in Oracle Sales,but the Same Warning Message is not comin
-
Copy db table record to another db
hi friends, I have following databases, Database 'A' has table AT1 Database 'B' has table BT1 If a new record added in AT1 we want to copy that record in BT1 upon AT1 insert event happens... how can we achieve this using SOA ....please give some ligh
-
ARD not recognizing client computers
Hello, I recently purchased ARD 2.2 and have been trying to observe and control my friends powerbook G4 and my dads ibook G4. They both turned on the ARD client in the Sharing pane in system preferences and checked their username and all the neccessa