RV220W IPsec tunnel connected, but no ping is working

Similar Messages

• Intermittently iphone 6 and 6 plus is wifi connected but internet does not work.

  Hi,
  I have an issue where intermittently iphone 6 and 6 plus is wifi connected but internet does not work. iMessage works though.  Toggling the wifi setting clears
  the issue temporarily but it occurs again.  Running iOS 8.3 now.  This was the case on iOS 8.1 and 8.2 as well. 
  I have tried the typical troubleshooting steps (reboot/reset network settings/disabling location services for wifi/upgrade/etc)
  My router is an EA9200 router with 2.4 Ghz and 5 Ghz.  It is configured with all bands with the same name.
  All other devices in my house works perfectly fine and has no disconnects (ipad/macbook air/tv's/receivers)
  My thought is that iphone 6 cannot handle well the moving around between bands. 
  Any thoughts or suggestions would be greatly appreciated.
  Thanks,
  David

  Have you tried to reboot your router by turning off the power (you may have to unplug it from the power source), then waiting about 30 seconds, then turning it back on?  This seems to solve a lot of problems.

• IPSec Tunnel established but not able to reach remote Local subnet

  Hi,
  We established IPsec Tunnel. It was active but I found following issue. Please give your suggestion to troubleshoot it.
  1. 192.168.50.0/24 (Site A) able to reach 192.168.90.0/24. (Site B) and Vice Versa
  2. 192.168.30.0/24 (Site C) able to reach 192.168.50.0/24 (Site A) but not vice versa.
  3. 192.168.10.0/24, 155.220.21.175 (Site A) reaches up to 192.168.90.0/24 (Site B) and vice versa. but not reach to 192.168.50.0/24 (Site A)
  Want to access 192.168.30.0/24, 192.168.10.0/24, 155.220.21.175 (Site C) from 192.168.50.0/24 (Site A)
  Additionally Tunnel only established if active traffice send from site B.
  Thanks & Rgds,
  Dhaval Dikshit

  Thanks, Punit. Additionalily I found following error, it might reach us to nearer to solution. Please suggest if any suggetion.
  When I'm doing packet tracer from site B I got following massage.
  ASA# packet-trace input outside tcp 192.168.50.220 2000 155.220.21.175 21 detail
  Phase: 1
  Type: ACCESS-LIST
  Subtype:
  Result: ALLOW
  Config:
  Implicit Rule
  Additional Information:
  Forward Flow based lookup yields rule:
  in  id=0xc959c928, priority=1, domain=permit, deny=false
          hits=143495595, user_data=0x0, cs_id=0x0, l3_type=0x8
          src mac=0000.0000.0000, mask=0000.0000.0000
          dst mac=0000.0000.0000, mask=0100.0000.0000
  Phase: 2
  Type: ROUTE-LOOKUP
  Subtype: input
  Result: ALLOW
  Config:
  Additional Information:
  in   155.220.21.175  255.255.255.255 inside
  Phase: 3
  Type: ACCESS-LIST
  Subtype: log
  Result: ALLOW
  Config:
  access-group outside_access_in in interface outside
  access-list outside_access_in extended permit ip object-group Tas_Tunnel host 155.220.21.175 log
  object-group network Tas_Tunnel
  network-object host 192.168.50.50
  network-object host 192.168.50.65
  network-object host 192.168.50.220
  Additional Information:
  Forward Flow based lookup yields rule:
  in  id=0xca246310, priority=12, domain=permit, deny=false
          hits=1, user_data=0xc793bcc0, cs_id=0x0, flags=0x0, protocol=0
          src ip=192.168.50.220, mask=255.255.255.255, port=0
          dst ip=155.220.21.175, mask=255.255.255.255, port=0, dscp=0x0
  Phase: 4
  Type: IP-OPTIONS
  Subtype:
  Result: ALLOW
  Config:
  Additional Information:
  Forward Flow based lookup yields rule:
  in  id=0xc959f4d8, priority=0, domain=inspect-ip-options, deny=true
          hits=3443418, user_data=0x0, cs_id=0x0, reverse, flags=0x0, protocol=0
          src ip=0.0.0.0, mask=0.0.0.0, port=0
          dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
  Phase: 5
  Type: INSPECT
  Subtype: inspect-ftp
  Result: ALLOW
  Config:
  class-map inspection_default
  match default-inspection-traffic
  policy-map global_policy
  class inspection_default
    inspect ftp
  service-policy global_policy global
  Additional Information:
  Forward Flow based lookup yields rule:
  in  id=0xc962fa60, priority=70, domain=inspect-ftp, deny=false
          hits=11, user_data=0xc962f8b0, cs_id=0x0, use_real_addr, flags=0x0, protocol=6
          src ip=0.0.0.0, mask=0.0.0.0, port=0
          dst ip=0.0.0.0, mask=0.0.0.0, port=21, dscp=0x0
  Phase: 6
  Type: VPN
  Subtype: ipsec-tunnel-flow
  Result: ALLOW
  Config:
  Additional Information:
  Forward Flow based lookup yields rule:
  in  id=0xc9f1c290, priority=12, domain=ipsec-tunnel-flow, deny=true
          hits=167708, user_data=0x0, cs_id=0x0, flags=0x0, protocol=0
          src ip=0.0.0.0, mask=0.0.0.0, port=0
          dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
  Phase: 7
  Type: NAT-EXEMPT
  Subtype: rpf-check
  Result: ALLOW
  Config:
  Additional Information:
  Forward Flow based lookup yields rule:
  in  id=0xc965a700, priority=6, domain=nat-exempt-reverse, deny=false
          hits=2, user_data=0xc965a490, cs_id=0x0, use_real_addr, flags=0x0, protocol=0
          src ip=192.168.50.220, mask=255.255.255.255, port=0
          dst ip=155.220.21.175, mask=255.255.255.255, port=0, dscp=0x0
  Phase: 8
  Type: IP-OPTIONS
  Subtype:
  Result: ALLOW
  Config:
  Additional Information:
  Reverse Flow based lookup yields rule:
  in  id=0xc95ea328, priority=0, domain=inspect-ip-options, deny=true
          hits=17273465, user_data=0x0, cs_id=0x0, reverse, flags=0x0, protocol=0
          src ip=0.0.0.0, mask=0.0.0.0, port=0
          dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
  Phase: 9
  Type: VPN
  Subtype: encrypt
  Result: DROP
  Config:
  Additional Information:
  Reverse Flow based lookup yields rule:
  out id=0xca2f4c98, priority=70, domain=encrypt, deny=false
          hits=2, user_data=0x0, cs_id=0xc9dd8d90, reverse, flags=0x0, protocol=0
          src ip=155.220.21.175, mask=255.255.255.255, port=0
          dst ip=192.168.50.192, mask=255.255.255.192, port=0, dscp=0x0
  Result:
  input-interface: outside
  input-status: up
  input-line-status: up
  output-interface: inside
  output-status: up
  output-line-status: up
  Action: drop
  Drop-reason: (acl-drop) Flow is denied by configured rule
  Thanks & Rgrds,
  Dhaval Dikshit

• Wifi is connected but internet has stopped working

  I have had my new ipod touch for a week and its been working fine. i had it connected to my wifi network at home with no problems until this morning when it stopped working. the wifi connectivity is fine and works with everything else, and the ipod reads the wifi network but everything i try to poen that needs connection says its not connected. Any suggestions? i tried resetting the network to no avail and even deleted all content and settings but it still wont work any more. i wondered if its possible for there to be a fault with it rather than a software issue. i am running the latest version of everything and my old one as well as my ipad works fine.

  Which one did you reset? your iPod's network or the router?
  Have you checked the wi-fi configuration? its in the arrow on the right side of the SSID (in iPod), when you touch it, IP address will come out. There are 3 Configurations to choose from,  DHCP, BOOTP, STATIC.
  Is your router was set to DHCP? your iPod should have a lease of IP from the router. if its blank or someting like 168.x.x.x, try use the STATIC...just put on your network segment (192.168.x.x) and the gateway of course...

• Sees connection, but internet isn't working

  Hi, folks! I hope you can help me with this problem my macbook is having.
  Sometimes it does this thing where it sees the connection (bars show) but when I try to use any program that requires an internet connection (Safari, Firefox, iTunes store, or iChat) it doesn't work, doesn't connect. It used to work fine, just suddenly started doing this. I have not changed any of the settings or the IP address.
  This has been a recurrent problem since I got the laptop, and using it just sort of randomly starts working again after a couple days. Now it has been a couple weeks and it is still not working, so I would like to figure out what is the root of the problem and fix it! Does anyone have any tips or ideas?
  Thank you in advance!
  <3

  Sorry, this is my first time doing this ^^;
  I have cable, Roadrunner. I do have a linksys router, but when I try to plug the ethernet cable directly into the computer, the internet still doesn't work. My computer does recognize the signal, but I have no internet. It gives me a "page cannot be found" when I try to load up for Firefox or Safari, and iChat and iTunes store won't load up either.
  The internet was working fine, it just suddenly started doin gthis. It isn't the first time, but usually it just randomly pops back on after a day or two. My other computer is working fine, so I don't think the problem is with the connection.

• TS2755 i did the update for the ios7 and when i try to activate my imessage it says that it cant sign in to check my network connection. but my internet is working perfectly fine. anyone help ?

  I keep trying to activate my imessage and it keeps saying that I cant. to check my network connection and try again. but my internet is working perfectly fine. can anyone help me with this ?

  Have you tried restarting the phone?  Hold both Home and Power buttons down until Apple logo appears and phone "reboots".
  And have you tried resetting Network Settings?
  Settings => General => Reset => Reset Network Settings
  You will have to re-enter Wifi Passwords but it might help you get to a more solid connection on your phone.

• My wifi is connected but it is not working. What can i do?

  All day today whenever I would try to connect to wifi it would connect but it would say that I was not connected.

  My first assumption is to power off your phone then unplug your WIFI router for at least 2 minutes. Plug back in router and let it reboot - then turn back on phone...

• ASA 5505 IPSEC VPN connected but can't access to LAN

  ASA : 8.2.5
  ASDM: 6.4.5
  LAN: 10.1.0.0/22
  VPN Pool: 172.16.10.0/24
  Hi, we purcahsed a new ASA 5505 and try to setup IPSEC VPN via ASDM; i just simply run the Wizards, setup vpnpool, split tunnelling,etc.
  I can connect to the ASA by using cisco VPN client and internet works fine on the local PC, but it cannot access to the LAN (can't ping. can't remote desktop). I tried the same thing on our Production ASA(those have both Remote VPN and Site-to-site VPN working), the new profile i created worked fine.
  Below is my configure, do I mis-configure anything?
  ASA Version 8.2(5)
  hostname asatest
  domain-name XXX.com
  enable password 8Fw1QFqthX2n4uD3 encrypted
  passwd g9NiG6oUPjkYrHNt encrypted
  names
  interface Ethernet0/0
  switchport access vlan 2
  interface Ethernet0/1
  interface Ethernet0/2
  interface Ethernet0/3
  interface Ethernet0/4
  interface Ethernet0/5
  interface Ethernet0/6
  interface Ethernet0/7
  interface Vlan1
  nameif inside
  security-level 100
  ip address 10.1.1.253 255.255.252.0
  interface Vlan2
  nameif outside
  security-level 0
  ip address XXX.XXX.XXX.XXX 255.255.255.240
  ftp mode passive
  clock timezone PST -8
  clock summer-time PDT recurring
  dns server-group DefaultDNS
  domain-name vff.com
  access-list vpntest_splitTunnelAcl standard permit 10.1.0.0 255.255.252.0
  access-list inside_nat0_outbound extended permit ip 10.1.0.0 255.255.252.0 172.16.10.0 255.255.255.0
  pager lines 24
  logging enable
  logging timestamp
  logging trap warnings
  logging asdm informational
  logging device-id hostname
  logging host inside 10.1.1.230
  mtu inside 1500
  mtu outside 1500
  ip local pool vpnpool 172.16.10.1-172.16.10.254 mask 255.255.255.0
  no failover
  icmp unreachable rate-limit 1 burst-size 1
  no asdm history enable
  arp timeout 14400
  global (outside) 1 interface
  nat (inside) 0 access-list inside_nat0_outbound
  nat (inside) 1 0.0.0.0 0.0.0.0
  route outside 0.0.0.0 0.0.0.0 XXX.XXX.XXX.XXX 1
  timeout xlate 3:00:00
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  timeout floating-conn 0:00:00
  dynamic-access-policy-record DfltAccessPolicy
  aaa-server AD protocol nt
  aaa-server AD (inside) host 10.1.1.108
  nt-auth-domain-controller 10.1.1.108
  http server enable
  http 10.1.0.0 255.255.252.0 inside
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
  crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
  crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
  crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
  crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
  crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
  crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
  crypto ipsec security-association lifetime seconds 28800
  crypto ipsec security-association lifetime kilobytes 4608000
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
  crypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
  crypto map outside_map interface outside
  crypto isakmp enable outside
  crypto isakmp policy 10
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  telnet timeout 5
  ssh 10.1.0.0 255.255.252.0 inside
  ssh timeout 20
  console timeout 0
  dhcpd auto_config outside
  threat-detection basic-threat
  threat-detection statistics access-list
  no threat-detection statistics tcp-intercept
  webvpn
  group-policy vpntest internal
  group-policy vpntest attributes
  wins-server value 10.1.1.108
  dns-server value 10.1.1.108
  vpn-tunnel-protocol IPSec l2tp-ipsec
  password-storage disable
  ip-comp disable
  re-xauth disable
  pfs disable
  ipsec-udp disable
  ipsec-udp-port 10000
  split-tunnel-policy tunnelspecified
  split-tunnel-network-list value vpntest_splitTunnelAcl
  default-domain value XXX.com
  split-tunnel-all-dns disable
  backup-servers keep-client-config
  address-pools value vpnpool
  username admin password WeiepwREwT66BhE9 encrypted privilege 15
  username user5 password yIWniWfceAUz1sUb encrypted privilege 5
  username user3 password umNHhJnO7McrLxNQ encrypted privilege 3
  tunnel-group vpntest type remote-access
  tunnel-group vpntest general-attributes
  address-pool vpnpool
  authentication-server-group AD
  authentication-server-group (inside) AD
  default-group-policy vpntest
  strip-realm
  tunnel-group vpntest ipsec-attributes
  pre-shared-key BEKey123456
  peer-id-validate nocheck
  privilege cmd level 3 mode exec command perfmon
  privilege cmd level 3 mode exec command ping
  privilege cmd level 3 mode exec command who
  privilege cmd level 3 mode exec command logging
  privilege cmd level 3 mode exec command failover
  privilege cmd level 3 mode exec command packet-tracer
  privilege show level 5 mode exec command import
  privilege show level 5 mode exec command running-config
  privilege show level 3 mode exec command reload
  privilege show level 3 mode exec command mode
  privilege show level 3 mode exec command firewall
  privilege show level 3 mode exec command asp
  privilege show level 3 mode exec command cpu
  privilege show level 3 mode exec command interface
  privilege show level 3 mode exec command clock
  privilege show level 3 mode exec command dns-hosts
  privilege show level 3 mode exec command access-list
  privilege show level 3 mode exec command logging
  privilege show level 3 mode exec command vlan
  privilege show level 3 mode exec command ip
  privilege show level 3 mode exec command ipv6
  privilege show level 3 mode exec command failover
  privilege show level 3 mode exec command asdm
  privilege show level 3 mode exec command arp
  privilege show level 3 mode exec command route
  privilege show level 3 mode exec command ospf
  privilege show level 3 mode exec command aaa-server
  privilege show level 3 mode exec command aaa
  privilege show level 3 mode exec command eigrp
  privilege show level 3 mode exec command crypto
  privilege show level 3 mode exec command vpn-sessiondb
  privilege show level 3 mode exec command ssh
  privilege show level 3 mode exec command dhcpd
  privilege show level 3 mode exec command vpnclient
  privilege show level 3 mode exec command vpn
  privilege show level 3 mode exec command blocks
  privilege show level 3 mode exec command wccp
  privilege show level 3 mode exec command dynamic-filter
  privilege show level 3 mode exec command webvpn
  privilege show level 3 mode exec command module
  privilege show level 3 mode exec command uauth
  privilege show level 3 mode exec command compression
  privilege show level 3 mode configure command interface
  privilege show level 3 mode configure command clock
  privilege show level 3 mode configure command access-list
  privilege show level 3 mode configure command logging
  privilege show level 3 mode configure command ip
  privilege show level 3 mode configure command failover
  privilege show level 5 mode configure command asdm
  privilege show level 3 mode configure command arp
  privilege show level 3 mode configure command route
  privilege show level 3 mode configure command aaa-server
  privilege show level 3 mode configure command aaa
  privilege show level 3 mode configure command crypto
  privilege show level 3 mode configure command ssh
  privilege show level 3 mode configure command dhcpd
  privilege show level 5 mode configure command privilege
  privilege clear level 3 mode exec command dns-hosts
  privilege clear level 3 mode exec command logging
  privilege clear level 3 mode exec command arp
  privilege clear level 3 mode exec command aaa-server
  privilege clear level 3 mode exec command crypto
  privilege clear level 3 mode exec command dynamic-filter
  privilege cmd level 3 mode configure command failover
  privilege clear level 3 mode configure command logging
  privilege clear level 3 mode configure command arp
  privilege clear level 3 mode configure command crypto
  privilege clear level 3 mode configure command aaa-server
  prompt hostname context
  no call-home reporting anonymous
  Cryptochecksum:447bbbc60fc01e9f83b32b1e0304c6b4
  : end

  I change  a Machine's gateway to this ASA and capture again, now we can see some reply.
  All ohter PCs and switches gateway are point to another ASA, maybe that's the reason why i didn't work?
  what's the recommanded way to make our LAN to have two 2 gateways(for load balance or backup router, etc)?
  add two gateways to all PCs and swtichwes?
  1: 18:15:48.307875 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 68
     2: 18:15:49.777685 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 68
     3: 18:15:51.377147 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 68
     4: 18:15:57.445777 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 68
     5: 18:15:58.856324 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 68
     6: 18:16:00.395090 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 68
     7: 18:16:06.483464 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 68
     8: 18:16:08.082805 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 68
     9: 18:16:09.542406 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 68
    10: 18:16:20.640424 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.230: icmp: echo request
    11: 18:16:20.642193 802.1Q vlan#1 P0 10.1.1.230 > 172.16.10.1: icmp: echo reply
    12: 18:16:21.169607 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.230: icmp: echo request
    13: 18:16:21.171210 802.1Q vlan#1 P0 10.1.1.230 > 172.16.10.1: icmp: echo reply
    14: 18:16:22.179556 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.230: icmp: echo request
    15: 18:16:22.181142 802.1Q vlan#1 P0 10.1.1.230 > 172.16.10.1: icmp: echo reply
    16: 18:16:23.237673 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.230: icmp: echo request
    17: 18:16:23.239291 802.1Q vlan#1 P0 10.1.1.230 > 172.16.10.1: icmp: echo reply
    18: 18:16:27.676402 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 50
    19: 18:16:29.246935 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 50
    20: 18:16:30.676921 802.1Q vlan#1 P0 172.16.10.1.137 > 10.1.1.108.137:  udp 50
    21: 18:16:49.539660 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.233: icmp: echo request
    22: 18:16:54.952602 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.233: icmp: echo request
    23: 18:17:04.511463 802.1Q vlan#1 P0 172.16.10.1 > 10.1.1.233: icmp: echo request

• Can't connect but can ping & use AP Util

  A couple issues:
  TC shows up in finder, can ping it (static ip, as are all my ip's) and use the airport utility. It worked fine for a day or so, now with no changes, this is where I'm at. I get an error about it not existing. I've tried to 'connect As' even 'connect to server' in Finder trying names and ip - no joy.
  TC is set up with only Ethernet (cable) WiFi is turned off. File sharing with accounts (all are OK) My MacBook Pro and Mini can't connect.
  I find it odd that the Air Port utility connects to it just fine. Does it use the AFP or UDP/TCP?
  I'm going to reboot the TC and see. But if I need to reboot it every day or so, its worthless to me.
  Topology (another issue) is:
  router/switch Gb --> switch 2 100b ---> TC
  When I tried to make the TC be the middle (to keep a Gb network) it didn't work. (yes, I know about the uplink ports; even tried the standard ports)
  (oh other kinda non issue: Printers don't show up in the AirPort utility, but remote 'puters print fine)
  Message was edited by: MudShark

  This TC is going back. What a POS! Now it won't even connect to the LAN. Had it for less then a week and its been down more then up. NOT impressed.

• Losing internet connection but can ping severs

  Hi. Something weird has been happening with my powerbook the last month. Safari, mail and skype cant access the internet suddenly. Rebooting my router does nothing, neither does logging out/in, but rebooting the pb resolves. When this happens I can still ping www addresses and ip addresses but all apps seem to lose connectivity. Anyone got a suggestion?

  This resolved itself. Maybe it was a problem with my ISP

• VPN connects but No Ping; AFP; or SMB

  Folks;
  All Mac's are fully updated Tiger or Tiger Server {running dual NIC's w/ NAT;DNS;DCHP;VPN;AFP;Firewall;Windows;DNS}
  I can connect using the client's IntenetConnet L2TP mechanism and the clock ticks away...
  But once connected I cannot mount shares or ping.
  I have verfied that these shares can be mounted if connected NOT thru the VPN.
  I have read a long thread here from last year and based on that have implemented firewall rules for allowing all traffic (TCP & UPD) (In or Out) for ppp* to 19.168.2.0/24 and for 192.168.2.0/24 to ppp* {4 rules total}
  I have not made any Network Routing Definitions in the VPN settings
  Help Please!
  How do you debug this? Where is the best documentation to read on this?
  I'm going nuts!
  Steve

  Start by enabling logging of denied packets in the firewall settings.
  Then: what IP are you trying to use to get at the server services (you should use the NATed LAN IP)?
  Also the remote client must not be connecting from a network which are using the same IP range as the server LAN.
  And VPN client IPs must be part of the LAN IP range.

• The App Store won't connect but the Internet Is working fine? Help

  Please help my App Store  keeps saying it won't connect and now my apps don't work either, but my Internet is connected.
  Anyone know how to fix this?

  Hi Gackerman1953,
  Thanks for visiting Apple Support Communities.
  Try these steps if you cannot connect to the iTunes App Store but your internet connection seems fine:
  Can't connect to the iTunes Store
  http://support.apple.com/kb/ts1368
  Cheers,
  Jeremy

• WD HDD - First connected but later didn't work, why?

  Hey Community,
  Yesterday I connected my external hard drive to my macbook pro. I wanted to activate the time machine so I have space on my mac. When the time machine automatically came up I forwarded it to connect it to the Time Machine. When the process started I recognized that mac is completely restarting and formatting the hard drive so I searched for any button to cancel the process because I had lots of files in it.
  But there was no button so I separated it by pulling the usb cable. Of course the process stopped but after that I tried to connect the hard drive again. Unfortunately it didn't appear anymore.
  The disk utility recognizes the external hard drive but I can't see it on the finder. I also went to preferences on finder and checked the box for external hard drives. Still nothing appeared.
  Can anyone please help me?
  My Macbook pro is OS X Yosemite Version 10.10.2 and the hdd is WD Elements.

  Still struggling to understand why copying the entire root dir to a disk image and then restoring from that image did not, as expected, yield an identical system, and why I even had to reinstall after doing this.
  Because there is a lot more going on under the hood than merely copying files.
  The only way to do what you want is to use cloning software like Carbon Copy Cloner.
  My  advice is to rescue your personal files to a regular non-TimeMachine  external drive, Zero erase the ENTIRE drive and install OS X fresh and  update, then your programs from original sources and files from backup.
  Then, make a bootable clone and you can copy that as many times as you want and each one is bootable.
  Most commonly used backup methods
  How to erase and install Snow Leopard 10.6

• Wifi will connect but internet won't work

  So my iphone 4 will say its connected to the network (check mark beside network and good signal) but when I try to open a web page/app store/youtube it says "cannot open page not connected blah blah blah" some of my friends iphone 3gs' work no problems. also I'm in Spain and my data roaming is turned off but the cellular data is still on.(don't know if that helps but thought I would mention it.)
  Thanks in advance.
  also I've tried resetting the network settings and that did not help either.

  OK, that is good information for troubleshooting. Since it works on other networks the problem is either the router or corrupted settings on your phone. The first thing to do (if you can) is to reboot the router. The DHCP daemon in it may have crashed - this is very common. Just unplug it for a few seconds, then plug it in again. Also, if you can, verify that the router has the latest version of firmware available. As to why other phones work it could be that they had connected before the DHCP deamon crashed, and are reusing the original IP address.
  Another possibility on the router side is that MAC (Media Access Control) filtering is enabled. This is a router feature that allows only previously approved devices to connect to the router. If it is enabled your phone must be added to the "allow" list in the router.
  Finally, on the router side, it's possible that it has run out of IP addresses. This can happen if it is used by a lot of people. It would be necessary to change settings in the router to fix it.
  If the problem is on your phone the first thing to try is to attempt to connect, then tap the ">" next to the network name and choose "Forget this network". Then back out of settings and reboot the phone (hole HOME and SLEEP until an Apple logo appears, about 10 seconds). After rebooting try to connect again.
  If this fails next go to Settings/General/Reset and Reset Network Settings. You will lose WiFi passwords, but nothing else. Again reboot and try to connect.
  One of these will most likely fix the problem. If one does please tell us which one, and if nothing helps let us know that also.

• EPrint not connected but all other functions working

  I have just set up the All-in-One HP216B printer. All wireless connections are perfect and I can print from multiple wirelessly connected laptops and one desktop connected via ethernet to the router. All basic functions of print, sca, copy work. I followed the set up for the Web Services and that seemed to work. The wireless network test shgows everything to be in perfect order. I have an IP address etc. However when I am in the ePrintCentre the printer is showing as not connected and when I attempt to send an email to the printer it shows up as pending in the Print Jobs. The printer is clearly just not connected to the internet and that is also verified by the fact that the PrintApps cannot download the prints from the hpcentre web site.
  I have switched the printer off and on again. I have removed the printer and added it again - all to no avail. I have looked through the forums and still have no success.
  Anybody any ideas ?
  This question was solved.
  View Solution.

  OK it works now. Not sure why or how but repeated attempts at switching printer on and off coupled with resetting email address has worked. I also changed back from specifying allowable emails addresses to allowing all and today my prints arrived. Curiously I also have to switch the printer on ana off to reactivate the scan connection to my desktop and laptops all connected via the router.
  I am semi happy as this is not a plug and play or seamless solution that is described on the box