Secured Gateway on iWeb?

Hi,
Does anyone know if it's possible to create a secured passworded area on an iWeb website? Or through iWeb itself?
Thanks,
Dave.

Dave:
You can password protect an entire site. So if you have just one page that you want protected make it a separate site and link to it from the open site. The password and user name is set in the Inspector/Site pane (far left button in the Inspector's toolbar).
OT

Similar Messages

Anyconnect cannot confirm it is connected to your secure gateway

Hi,
I have configured cisco 1941 with anyconnect VPN. I have installed the anyconnect-win-3.1.07021-k9.pkg on the flash memory but it seems something is missing. When i access the router and download the anyconnect, the following message appears on the browser "Failed to get configuration because Anyconnect cannot confirm it is connected to your secure gateway". therefore, i have downloaded manually the anyconnect and tried to access my network. Unfortunately, the application does not connect and the "Anyconnect cannot confirm it is connected to your secure gateway" message appears.
it can be noticed that i have an android phone which successfuly connects to my network without any problems.
Please see below my configuration and i will appreciate if someone helps with this....
crypto pki trustpoint test_trustpoint_config_created_for_sdm
subject-name [email protected]
revocation-check crl
crypto pki trustpoint CRXX
enrollment selfsigned
serial-number none
ip-address none
revocation-check crl
rsakeypair CRXX_RSAKey 512
crypto pki trustpoint euro.lan
revocation-check crl
rsakeypair CRXX
crypto pki certificate chain test_trustpoint_config_created_for_sdm
crypto pki certificate chain CRXX
certificate self-signed 01
3082017A 30820124 A0030201 02020101 300D0609 2A864886 F70D0101 05050030
1B311930 1706092A 864886F7 0D010902 160A4352 4575726F 73757265 301E170D
31353033 30373139 32383530 5A170D32 30303130 31303030 3030305A 301B3119
30170609 2A864886 F70D0109 02160A43 52457572 6F737572 65305C30 0D06092A
864886F7 0D010101 0500034B 00304802 4100896A 9A2F5ADB 6E1615AA 61ABC513
2770253F 24F17DC4 A16D8ACD 5C9042C1 476AAAE9 D0E1EDDE 520D3A13 AD895518
ED63C68E C734628D A6855FFA F9F3B099 AA230203 010001A3 53305130 0F060355
1D130101 FF040530 030101FF 301F0603 551D2304 18301680 1467308D 8F138842
4110A886 779CC1D5 D9302A5F FD301D06 03551D0E 04160414 67308D8F 13884241
10A88677 9CC1D5D9 302A5FFD 300D0609 2A864886 F70D0101 05050003 4100376B
789B83C7 D8F20FEC CFAC75B4 B71518EE 90078812 D86B5F35 23D54DB0 28C678E1
BCB33BF5 81D47EE8 7392D4E8 1433CFA9 7157EC64 C9EA2357 EAADCB02 E789
quit
crypto pki certificate chain CRXX
certificate ca 01
3082030D 30820276 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
81993133 30310609 2A864886 F70D0109 01162463 68726973 746F666F 726F732E
70616E61 79694061 74686C6F 697A6F75 2E636F6D 2E637931 10300E06 03550408
13076E69 636F7369 61310B30 09060355 04061302 63793115 30130603 55040313
0C657572 6F737572 652E6C61 6E311530 13060355 040B130C 6575726F 73757265
2E6C616E 31153013 06035504 0A130C65 75726F73 7572652E 6C616E30 1E170D31
35303330 38303830 3532355A 170D3138 30333037 30383035 32355A30 81993133
30310609 2A864886 F70D0109 01162463 68726973 746F666F 726F732E 70616E61
79694061 74686C6F 697A6F75 2E636F6D 2E637931 10300E06 03550408 13076E69
636F7369 61310B30 09060355 04061302 63793115 30130603 55040313 0C657572
6F737572 652E6C61 6E311530 13060355 040B130C 6575726F 73757265 2E6C616E
31153013 06035504 0A130C65 75726F73 7572652E 6C616E30 819F300D 06092A86
4886F70D 01010105 0003818D 00308189 02818100 C7DFF639 00AAD60E DE260ED6
87BEF428 A49386A2 5A4A6137 12811855 A8582E12 58ADAB6E 796E97EF 7A67309B
F8F782BA 4BC027BB E751C271 DB81246E 8B975F40 648E0594 12C6162B 8B85ABB8
E97732A9 0914C6A4 1AB99A3B 7676FBB7 74D9E2C0 0D5EDF59 CC705BD5 ADE10227
48EDE22A DA782E6E CE813B71 63327693 2B8A3BA3 02030100 01A36330 61300F06
03551D13 0101FF04 05300301 01FF300E 0603551D 0F0101FF 04040302 0186301F
0603551D 23041830 168014D6 85F27FA8 59599438 BD252971 0BD29665 4E2F1930
1D060355 1D0E0416 0414D685 F27FA859 599438BD 2529710B D296654E 2F19300D
06092A86 4886F70D 01010405 00038181 00BAD0D8 41D25EE0 8546C804 05B82812
28AA37A0 93247B1B A405622A 4553E897 B099DAF9 04F818A7 D1BB21D0 0343C186
D5CCBCB7 6FB89E2F BD75ACB9 7B2FBB1F C5C0EF69 DBFFAB0E EB4F20AD 0DDCDAD5
8B933B61 E6319A9C F73BD27E 61E90A9A FDD94EF9 0AE82CDA 12BC2D5B C1122649
59236893 C5A1F5F1 D45C5471 01C87F98 1D
quit
crypto vpn anyconnect flash0:/webvpn/anyconnect-win-3.1.07021-k9.pkg sequence 2
interface Virtual-Template3
mtu 1406
ip unnumbered GigabitEthernet0/0.1
ip local pool SSL_admin_pool 192.168.251.1 192.168.251.254
ip nat inside source list 100 interface GigabitEthernet0/1 overload
access-list 100 deny ip 126.0.0.0 0.0.0.255 192.168.250.0 0.0.0.255
access-list 100 permit ip any any
webvpn gateway gateway_1
hostname CRXX
ip address 213.X.X.X port 443
http-redirect port 80
ssl trustpoint CRXX
inservice
webvpn context ADMINS_Policy
secondary-color white
title-color #CCCC66
text-color black
virtual-template 3
aaa authentication list ciscocp_vpn_xauth_ml_1
gateway gateway_1
ssl authenticate verify all
inservice
policy group policy_1
functions svc-enabled
svc address-pool "SSL_admin_pool" netmask 255.255.255.255
svc default-domain "eurosure.lan"
svc keep-client-installed
svc dns-server primary 126.0.0.2
svc dns-server secondary 126.0.0.1
default-group-policy policy_1

hello,
Also, after update windows 8.1, I think, it is no longer work with ssl encryption rc4-sha1 !
When my config contain the ssl encryption rc4-sha1
I get the error:
"Failed to get configuration because AnyConnect cannot confirm it is connected to your secure gateway. Contact your system administrator".
After I change it to: ssl encryption aes128-sha1, AnyConnect client can connect to ASA."
WORK!!

Failed to get configuration from secure gateway. Contact your system administrator.

I have an ASA 5515 running 9.1(1).
One of my customers is attempting to connect with AnyConnect 3.1.02040 and after authenticating, he gets the message
Failed to get configuration from secure gateway. Contact your system administrator.
I have about 100 other customers who have not had this issue and can connect fine.
Since it appears to be localized to his PC, he's uninstalled and reinstall the client, but to no avail. He's using Windows 7 Pro.
On the ASA, while he is attempting to connect, I see this:
15:48:04|302014|<<<REMOTE IP>>>|51032|<<<ASA IP>>>|443|Teardown TCP connection 495403 for outside:<<<REMOTE IP>>>/51032 to identity:<<<ASA IP>>>/443 duration 0:00:00 bytes 8241 TCP Reset-I
14:48:04|725007|<<<REMOTE IP>>>|51032|||SSL session with client outside:<<<REMOTE IP>>>/51032 terminated.
14:48:04|113039|||||Group <GroupPolicy_AnyConnect> User <etpdeir> IP <<<<REMOTE IP>>>> AnyConnect parent session started.
14:48:04|734001|||||DAP: User etpdeir, Addr <<<REMOTE IP>>>, Connection AnyConnect: The following DAP records were selected for this connection: DfltAccessPolicy
14:48:04|113008|||||AAA transaction status ACCEPT : user = etpdeir
14:48:04|113019|||||Group = ibmdtsc, Username = etpdeir, IP = 124.128.162.43, Session disconnected. Session Type: AnyConnect-Parent, Duration: 0h:41m:41s, Bytes xmt: 885580, Bytes rcv: 1343, Reason: Connection Preempted
14:48:04|716002|||||Group <GroupPolicy_AnyConnect> User <etpdeir> IP <<<<REMOTE IP>>>> WebVPN session terminated: Connection Preempted.
14:48:04|113009|||||AAA retrieved default group policy (GroupPolicy_AnyConnect) for user = etpdeir
14:48:04|113004|||||AAA user authentication Successful : server = 172.29.128.126 : user = etpdeir
14:48:04|725002|<<<REMOTE IP>>>|51032|||Device completed SSL handshake with client outside:<<<REMOTE IP>>>/51032
14:48:03|725001|<<<REMOTE IP>>>|51032|||Starting SSL handshake with client outside:<<<REMOTE IP>>>/51032 for TLSv1 session.
15:48:03|302013|<<<REMOTE IP>>>|51032|<<<ASA IP>>>|443|Built inbound TCP connection 495403 for outside:<<<REMOTE IP>>>/51032 (<<<REMOTE IP>>>/51032) to identity:<<<ASA IP>>>/443 (<<<ASA IP>>>/443)
Any ideas?

i had this problem. for me the cause had to do with internet explorer TLS settings.
in IE8 go to tools, internet options, advanced and under security I had to make sure Use TLS 1.0 was checked (only Use SSL 3.0 and Use TLS 1.1 were checked. I left them checked.).

Windows 8 Pro 64bit, Aladdin eToken Pro, CISCO VPN-Client 5.0.07.0440 - Responding : Reason 403: Unable to contact the security gateway...

Windows 8 Pro 64bit, eToken (Aladdin with newest Safenet etoken-Client V 8.2.85.0) Pro (V.with Cisco Systems VPN Client Version 5.0.07.0440 -> VPN Error-Log :
VPN-Client Responding : Reason 403: Unable to contact the security gateway...
(Detailled VPN-Error-Log see attached)
Thanks in advance for any ideas or solution, its getting urgent !!

First, try TheGreenBow's online troubleshooter. If that doesn't work, you can try their general support or simply contact them directly.

Connecting ADT security gateway to Time Capsule

I'm having issues with my ADT security Gateway communicating with my airport time capsule. I'm not able to view live camera feed from my security system via wifi or LTE. ADT has replaced 3 gateways already and same issue. The Tech said he has a lot of problems with Apple routers. I have already messed with the ports and nothing fix that. My current set up is modem to time capsule to ADT security gateway. My ISP is not blocking no ports either. Any help would be greatly appreciated

The issue is that ADT is expecting their service to be used with routers that have a feature called Universal Plug and Play (UPnP), a process that enables the router to automatically open the correct ports to allow access from the Internet.
Unfortunately, Apple does not support UPnP, so although it might be possible to manually enter the port settings on the Apple router using a method that Apple calls NAT-PMP, the process may or may not work reliably with ADT. It never worked very well for me, and I'm pretty good with network stuff.
If you want to stay with ADT, ask their tech support folks to recommend a router that will work well with the ADT gateway. You can then configure the Time Capsule to operate in Bridge Mode behind the main router and things will be fine.

WRVS4400N - Local Security Gateway Type - problems

Hi,
I've setup several VPN gateways and one Cisco gateway to our Juniper SSG140 with no issues, until today. We purchased a WRVS4400N and I'm trying to configure it to connect to our Juniper firewall, as a "dial-up" connection. I can get it to work if I set the "Local Security Gateway Type:" to "IP ONLY", but when I change it to "IP + Domain Name (FQDN) Authentication" it fails with the Cisco router not sending ANY IPSEC messages on the Cisco or Juniper, not even error messages. The last line of the VPN log says "Initiating Agressive Mode #1, connection" and nothing changes even after hitting the "Connect" button on the Cisco router.
The VPN router is Version 2, with firmware 2.0.8 loaded. Not sure if I have a bad Cisco wireless router, or this is by design.
Thanks for any help.
Keith

i suggest that you change the local ip address of the RVL200 to 192.168.2.1 instead of using 192.168.0.1. please check also the encryption and the security on both ends of the tunnel. make sure that you use the same encryption and same authentication. you may also want to start with low encryption and security to make sure that it is not the problem.

Astaro security gateway and ical invitations

When I want to reply to an ical invitation from an iCal server behind an Astaro Security Gateway, it's blocked by the Astaro. error 550: address unknown. I can understand that the astaro doesn't like addresses like [email protected]
Has anyone experience with Astaro gateways? Before I take it up with Astaro I want to know what other options I have. I don't know if it's possible to do some regex on the address, or filter by some unique header.
I do not manage the box. I'm just looking for information to provide to the people who do the support.
Help much appreciated.
Server OS 10.6.4

Hi
QM = Quick Mode = Phase 2.
Phase 1 is either Main Mode or aggresive mode.
So by the fact it is getting to QM that suggests phase 1 is working. What you do see if you do a "sh crypto isa sa" on the ASA ?
Can you check the phase 2 settings to ensure they match ie.
1) check your crypto map access-list and make sure that the local and remote subnet you have on your ASA matches the Astaro local and remote subnets
2) Explicitly set PFS in phase 2 and get them to do the same on the Astaro firewall.
HTH
Jon

Citrix Secure Gateway over https reverse proxy - mouse delay

Hello,
i've a citrix secure gateway 3.1 server behind BM 3.9 SP2. I've configured a https reverse proxy to the gateway webserver. the citrixfarm is in our internal lan. My problem is, that i've very strange delays in citrix applications with mouse movement. The delay is about 1-2 seconds. If i connect directly from the DMZ to the gatway server, no delay was happend? So, my idea is, that the reverse proxy is the problem? Any idea would help!
Is it possible to create filter exceptions, delete the reverse proxy, and connct directly per SSL to the citrix secure gateway server. If yes, can anyone tell me the filter exception rules.
Thanks for your help!
Regards,
Norbert

On 09/26/2012 05:16 PM, NSuttner wrote:
>
> Hello,
>
> i've a citrix secure gateway 3.1 server behind BM 3.9 SP2. I've
> configured a https reverse proxy to the gateway webserver. the
> citrixfarm is in our internal lan. My problem is, that i've very strange
> delays in citrix applications with mouse movement. The delay is about
> 1-2 seconds. If i connect directly from the DMZ to the gatway server, no
> delay was happend? So, my idea is, that the reverse proxy is the
> problem? Any idea would help!
>
> Is it possible to create filter exceptions, delete the reverse proxy,
> and connct directly per SSL to the citrix secure gateway server. If yes,
> can anyone tell me the filter exception rules.
>
> Thanks for your help!
>
> Regards,
> Norbert
>
>
tid7004603

Cisco2851 Any connect was not able to establish a connection to the specified secure gateway and Win7

Hello ,
R2811 Route config ssl vpn
anyconnect-win-2.5.3055-k9.pkg
windows xp ie6-8 all connection ssl vpn gateway,but win7 not able to establish
IE browser display
This website security certificate has a problem.

asa5500 platform +anyconnect-win-2.5.3055-k9.pkg
win7 win2000 winxp all connection!
is why?

H.323 Security: Gateway to Gateway

Friends,
In voip setup i want to secure my h323 traffic between gateway to gateway
without using ipsec tunnel (site-to-site vpn). I study about h235 security
but that is between gateway and gatekeeper. Please suggest me any technique
you know.
Thanks and Regards

Friend,
Thank you for the link. I am already using SRTP for streaming As you know CRTP does not with IPSec. Now I have the same issue my h323 session is not secure. I have 25 sites and all have gateways so according to that document, i have to configure all 25 sites for IPSec tunnel. if a user A of site 1 will call user of site2, a tunnel will be establish for a single call and then same time mores of site1 call to users of other sites, it means ipsec tunnel will be establish per call. This will not eat all my router's resources. My all sites connected with each other like partial mesh.
Please suggest me what to do in this situation.
Regards

Astaro security gateway detects Virus in 3.6.6 from indiana.edu site

Astator gateway reports - The item you have requested is infected by virus. It will not download.
The gateway does a complete download but then goes through a scanning phase at which time a virus is detected. Download web site - http://mozilla.usse.indiana.edu/pub/mozilla.org/firefox/releases/3.6.6/win32/en-US/Firefox%20Setup%203.6.6.exe
== This happened ==
Every time Firefox opened
== Trying to dowload install file from Indiana.edu site- detects virus in 3.6.6.exe file

There have been "false postives" reported for a number of Firefox revision numbers by a number of AV/AS scanners.
Try to download Firefox from here (you may be connected to a mirror site):
http://www.mozilla.com/en-US/firefox/all.html
Astaro Support: http://www.astaro.com/support
Astaro User Forum: http://www.astaro.org/
'''''Other Issues''''': ~~red:You have installed plug-ins with known security issues. You should update them immediately.~~
'''Update Java''': your ver. 1.6.0.18; current ver. 1.6.0.20 (important security update 04-15-2010)
(Firefox 3.6 and above requires Java 1.6.0.10 or higher; see: http://support.mozilla.com/en-US/kb/Java-related+issues#Java_does_not_work_in_Firefox_3_6 )
''(Windows users: Do the manual update; very easy.)''
~~red:Check your version here~~: http://www.mozilla.com/en-US/plugincheck/
See: '''[http://support.mozilla.com/en-US/kb/Using+the+Java+plugin+with+Firefox#Updates Updating Java]'''
Do the update with Firefox closed.
'''Install/Update Adobe Flash Player for Firefox (aka Shockwave Flash)''': your ver. 10.0 r45; current ver. 10.1 r53 ('''important security update 2010-06-10''')
~~red:Check your version here~~: http://www.mozilla.com/en-US/plugincheck/
See: '''[http://support.mozilla.com/en-US/kb/Managing+the+Flash+plugin#Updating_Flash Updating Flash]'''
-'''use Firefox to download''' and '''SAVE to your hard drive''' (save to Desktop for easy access)
-exit Firefox (File > Exit)
-check to see that Firefox is completely closed (''Ctrl+Alt+Del, choose Task Manager, click Processes tab, if "firefox.exe" is on the list, right-click "firefox.exe" and choose End process, close the Task Manager window'')
-double-click on the Adobe Flash installer you just downloaded to install/update Adobe Flash
-when the Flash installation is complete, start Firefox, and test the Flash installation here: http://kb.adobe.com/selfservice/viewContent.do?externalId=tn_15507&sliceId=1
*'''NOTE: On Vista and Windows 7''' you may need to run the plugin installer as Administrator by starting the installer via the right-click context menu if you do not get an UAC prompt to ask for permission to continue (i.e nothing seems to happen). See this: http://vistasupport.mvps.org/run_as_administrator.htm
*'''NOTE for IE:''' Firefox and most other browsers use a Plugin. IE uses an ActiveX version of Flash. To install/update the IE ActiveX Adobe Flash Player, same instructions as above, except use IE to download the ActiveX Flash installer. See: [[ActiveX]]
*Also see: http://kb.mozillazine.org/Flash ~~red:'''''AND'''''~~ [[How do I edit options to add Adobe to the list of allowed sites]]

Broad Qu. on Use of OS X Server: Only as a Secure Gateway to Internet

This is the first time I've looked into setting up a server on a Mac, although I do manage websites on 2 other Web Host Servers
The only reason I have in establishing a Mac Server (with Snow Leopard) in my own house is to provide a secure access to the internet for my iPhone and my wife's iPad when we are using wifi hotspots away from home. Does this make sense?
If it does make sense, then what would be the simplest way to implement this setup: 1. Use my Mac Pro and simply put the Snow Leopard Server on its own HD; or 2. Get a Mac Mini and set it up with the Server?
Apple promotes the Snow Leopard Server as easy to set up and manage, but are there any resources that would be helpful in my situation and needs?
Thanks in advance for any suggestions.

Hi Rakin,
Disable filesharing on your MacPro en setup filesharing on your NAS. You can point to a different folder for filesharing but that needs to be directly connected to the MacPro fi an external drive, not a network NAS.
Inside your NAS setup users and groups once and then provide filesharing from the NAS.
Goodluck
Jeffrey
StarPine Support

Any ideas for security and parental control software yet???

Just received two of the touchpads from the fire sale and gave them to my kids, both under 10. I am very interested in limiting the sites that can be accessed through the browser, as well as a few other things. Has anyone found a practical means of doing this? I'd hate to give up on this and switch it over to Android, especially since there is only Gingerbread available. But, I just don't know what else I can do about these. Any ideas?
Thanks!
Post relates to: HP TouchPad (WiFi)

Please take this post with a grain of salt. I don't claim to be a security and parental control software expert, but I have researched these solutions and have some personal experience with them. That being said, here's some ideas to get you started.
As speedtouch mentioned, OpenDNS is a fantastic solution for website filtering. They have a great set of filters that can be customized and are one of the easiest systems to set up. Simply install an updater app on one of your desktop computers (or directly on your router if it's supported), configure your router to use their DNS servers, and you're good to go. I personally use this system mysefl and it works really well. The only downside in my experience is that there is not a temporary override system (at least, not in the free version that I use). An example of when this might be handy: my wife goes clothes shopping and looking at new bras. Every once in a while, a perfectly legitimate site might get blocked (in this case, probably something I don't want my kid looking at but perfectly fine for my wife). The option to "temporarily override the block" or "temporarily allow" the site would be nice, but it doesn't exist.
Another FANTASTIC solution that I've used in the past is the Astaro Security Gateway. They have a free home version of their "Software Appliance" that goes above and beyond OpenDNS. I haven't used it in a while, but when I did it was able to not only filter web sites but also monitor Instant Messaging and other online activites. It's a bit more involved as you need your own hardware (I used an old computer with 2 network cards and stuck it in between my router and my broadband modem), but the results are pretty powerful.
The downside to all these solutions, however, is that they will only work when the TouchPad is on your network. If they connect to a neighbors network of if the go to a friends house, all of these systems will be moot because they are completely bypassed. The only way to monitor that content from ANY network would be to install an application on the device itself and to my knowledge, none exist.

CTRANSPORT_ERROR_TIMEOUT with Cisco AnyConnect Secure Mobility Client 3.1.05170

Hi,
I use Cisco AnyConnect Secure Mobility Client 3.1.05170 to connect to my company network and it has been working successfully for a while and until Sunday evening Feb 8.
Today, this solution is no longer working and I've reproduced the same issue on 3 different Mac's which have 10.10.2 (on 2 Mac's) and 10.9.5 (on 1 Mac).
I can navigate on internet without any problem but when I launch the connection in Cisco AnyConnect Secure Mobility Client, it time outs and I get the following errors:
Feb 10 10:37:31 nicolass-macbook-pro-2-2.home acvpnui[7926]: Message type information sent to the user: Contacting <company server name removed for security reasons>.
Feb 10 10:37:31 nicolass-macbook-pro-2-2.home acvpnui[7926]: Initiating VPN connection to the secure gateway https://<company server name removed for security reasons>
Feb 10 10:37:31 nicolass-macbook-pro-2-2.home acvpnagent[2013]: Function: processConnectNotification File: ../../vpn/Agent/MainThread.cpp Line: 11572 Received connect notification (host <company server name removed for security reasons>, profile myaccess1.xml)
Feb 10 10:37:31 nicolass-macbook-pro-2-2.home acvpnagent[2013]: Function: resolveHostName File: ../../vpn/Common/Utility/HostLocator.cpp Line: 718 Invoked Function: CHostLocator::resolveHostNameAlt Return Code: -29294571 (0xFE410015) Description: DNSREQUEST_ERROR_EMPTY_RESPONSE
Feb 10 10:37:32 nicolass-macbook-pro-2-2.home acvpnagent[2013]: Function: getHostIPAddrByName File: ../../vpn/Common/IPC/SocketSupport.cpp Line: 322 Invoked Function: ::getaddrinfo Return Code: 35 (0x00000023) Description: unknown
Feb 10 10:37:32 nicolass-macbook-pro-2-2.home acvpnagent[2013]: Function: resolveHostName File: ../../vpn/Common/Utility/HostLocator.cpp Line: 730 Invoked Function: CSocketSupport::getHostIPAddrByName Return Code: -31195124 (0xFE24000C) Description: SOCKETSUPPORT_ERROR_GETADDRINFO
Feb 10 10:37:32 nicolass-macbook-pro-2-2.home acvpnagent[2013]: Function: ResolveHostname File: ../../vpn/Common/Utility/HostLocator.cpp Line: 839 Invoked Function: CHostLocator::resolveHostName Return Code: -31195124 (0xFE24000C) Description: SOCKETSUPPORT_ERROR_GETADDRINFO failed to resolve host name <company server name removed for security reasons> to IPv6 address
Feb 10 10:37:32 nicolass-macbook-pro-2-2.home acvpnagent[2013]: Function: logResolutionResult File: ../../vpn/Common/Utility/HostLocator.cpp Line: 913 Host <company server name removed for security reasons> has been resolved to IP address 144.24.19.20
Feb 10 10:37:32 nicolass-macbook-pro-2-2.home acvpnagent[2013]: Writing to hosts file: 144.24.19.20 <company server name removed for security reasons> ###Cisco AnyConnect VPN client modified this file. Please do not modify contents until this comment is removed.
Feb 10 10:37:32 nicolass-macbook-pro-2-2.home acvpnagent[2013]: Function: respondToConnectNotification File: ../../vpn/Agent/MainThread.cpp Line: 4893 The requested VPN connection to <company server name removed for security reasons> will target the following IP protocols and addresses: primary - IPv4 (address 144.24.19.20), secondary - N/A.
Feb 10 10:37:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: getUserName File: ../../vpn/Api/CTransportCurlStatic.cpp Line: 1939 PasswordEntry username is nwipfli
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: PeerCertVerifyCB File: ../../vpn/Api/CTransportCurlStatic.cpp Line: 857 Return success from VerifyServerCertificate
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: SendRequest File: ../../vpn/Api/CTransportCurlStatic.cpp Line: 1422 Invoked Function: curl_easy_perform Return Code: -30015442 (0xFE36002E) Description: CTRANSPORT_ERROR_TIMEOUT 28 : Error
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: sendRequest File: ../../vpn/Api/ConnectIfc.cpp Line: 3191 Invoked Function: CTransport::SendRequest Return Code: -30015442 (0xFE36002E) Description: CTRANSPORT_ERROR_TIMEOUT
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: connect File: ../../vpn/Api/ConnectIfc.cpp Line: 481 Invoked Function: ConnectIfc::sendRequest Return Code: -30015442 (0xFE36002E) Description: CTRANSPORT_ERROR_TIMEOUT
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: TranslateStatusCode File: ../../vpn/Api/ConnectIfc.cpp Line: 3008 Invoked Function: TranslateStatusCode Return Code: -30015442 (0xFE36002E) Description: CTRANSPORT_ERROR_TIMEOUT Connection attempt has timed out. Please verify Internet connectivity.
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: doConnectIfcConnect File: ../../vpn/Api/ConnectMgr.cpp Line: 1963 Invoked Function: ConnectIfc::connect Return Code: -30015442 (0xFE36002E) Description: CTRANSPORT_ERROR_TIMEOUT
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Message type warning sent to the user: Connection attempt has failed.
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: processIfcData File: ../../vpn/Api/ConnectMgr.cpp Line: 2614 Content type (unknown) received. Response type (host unreachable) from <company server name removed for security reasons>:
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Message type warning sent to the user: Unable to contact <company server name removed for security reasons>.
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: processIfcData File: ../../vpn/Api/ConnectMgr.cpp Line: 2724 Unable to contact <company server name removed for security reasons>
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Message type error sent to the user: Connection attempt has timed out. Please verify Internet connectivity.
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: connect File: ../../vpn/Api/ConnectMgr.cpp Line: 2050 ConnectMgr::processIfcData failed
Feb 10 10:38:32 nicolass-macbook-pro-2-2.home acvpnui[7926]: Function: initiateConnect File: ../../vpn/Api/ConnectMgr.cpp Line: 1181 Connection failed.
Any idea about a solution ?
Thanks in advance
Nicolas

There seem to be much more problems with 3.1.04049
Especially with certificate authentication.
I opened some TAC cases.
Try 3.1.04063 that came out at 07-24-13.
TAC said that there are some fixes in it...

Secure Flash Remoting from main.asc not returning a result

Hi, Iv got a problem here that could be Flash Remoting or
Flash Media Server related
I have created an application that uses flash media server
and flash remoting.
For authentication in my app I used Kevin Towes suggested
method "Secure Authentication with Flash Communication Server:
Using Tickets and Flash Remoting MX." His article is here
Download
PDF Here
Now to the problem...
My application has no problem connecting to coldfusion using
flash remoting with the defaultGateway url set to
"https://www.mysite.com" (ie over SSL)
However In main.asc, on the Flash Media Server
When Flash Media server attempts to validate the login by
connecting to CFMX using flash remoting it gets no response when
using a secure gateway url. If I set the default gateway url to
just
http://www.mysite.com it works
great.
Why do I not get any response when using https as my gateway
url from Flash Media Server?
thanks

Sounds like you need to enable mappings for your remoting
gateway. I'm not sure if it's the same as Flex, but here's what you
might need to do, or something similar...
In c:\cfusion8\wwwroot\WEB-INF\flex\remoting-config.xml (or
wherever CF is installed) look for the <use-mappings> node
and set the value to true. You will need to restart CF

Secured Gateway on iWeb?

Similar Messages

Maybe you are looking for