SNMP in Cat os not working

Similar Messages

• SNMP- WLS81SP1 ejb*RuntimeTable not working

  We have several EJB's as part of EAR file.
  When SNMP Agent is enabled we are able to query every Runtime Table
  except EJB***Runtime Tables.
  For example:
  java snmpwalk -c public@lbs localhost .1.3.6.1.4.1.140.625.190.1
  (JDBCPoolRuntime)
  gives appropriate results.
  But
  java snmpwalk -c public@lbs 144.111.12.126 .1.3.6.1.4.1.140.625.170.1
  (EJBStatelessHomeRuntime) returns with no output.
  Every runtime table related to EJB gives no results.
  Is this a bug with 81SP1? This used to work fine with 6.1SP4
  Thanks In Advance,
  Kumar.

  Satya,
  When I use Weblogic.Admin to query MBeans, I get "No MBeans found" for
  all the stateless session beans and MDB's that are part of my ear file.
  I am able to invoke these stateless session beans and MDB's are
  processing messages.
  Also I am able to see my web application that are part of same EAR
  file when I query on type WebAppComponentRuntime.
  Why are EJBMessageDrivenRuntime and EJBStatelessHomeRuntime not visible
  that are part of same ear?
  Thanks,
  Kumar.
  Satya Ghattu wrote:
  Kumar,
  I just tried for EJBPoolRuntime and it worked with out any problem.
  Could you make sure that you have EJBStatalessHomeRuntime mbeans in your
  server. You can do that through
  java weblogic.Admin -username xxx -password xxx -url t3://localhost:7001
  get -type EJBStatelessHomeRuntime -pretty
  Thanks,
  -satya
  C:\satya\managed\managed1>java snmpwalk -c public@myserver localhost
  .1.3.6.1.4.1.140.625.161.1.5 (EJBPoolRuntime)
  Object ID:
  .1.3.6.1.4.1.140.625.161.1.5.32.52.56.102.48.99.57.54.49.56.54.57.53.52.97.100.99.50.100.53.56.51.54.99.102.49.52.53.99
  .57.54.48.100
  STRING:
  EJBPoolRuntime:myserver__appsdir_ejb_basic_beanManaged_jar_ejb_basic_beanManaged_beanManaged
  Kumar Mettu wrote:
  We have several EJB's as part of EAR file.
  When SNMP Agent is enabled we are able to query every Runtime Table
  except EJB***Runtime Tables.
  For example:
  java snmpwalk -c public@lbs localhost .1.3.6.1.4.1.140.625.190.1
  (JDBCPoolRuntime)
  gives appropriate results.
  But
  java snmpwalk -c public@lbs 144.111.12.126 .1.3.6.1.4.1.140.625.170.1
  (EJBStatelessHomeRuntime) returns with no output.
  Every runtime table related to EJB gives no results.
  Is this a bug with 81SP1? This used to work fine with 6.1SP4
  Thanks In Advance,
  Kumar.

• Search using categories from 2nd cat schema not working

  Hi,
  We're currently using 2 categorization schemas in our transactions.  However, the Category search criterion doesn't seem to work when we try to search for transactions using categories from the second categorization schema.  The same search criterion works well with the first categorization schema.  Can you pls. give us an idea on what configurations we could be missing out on?  Will greatly appreciate your help.  Thanks in advance.
  Regards,
  Theresa

  Hi,
  We're currently using 2 categorization schemas in our transactions.  However, the Category search criterion doesn't seem to work when we try to search for transactions using categories from the second categorization schema.  The same search criterion works well with the first categorization schema.  Can you pls. give us an idea on what configurations we could be missing out on?  Will greatly appreciate your help.  Thanks in advance.
  Regards,
  Theresa

• The cisco snmp oids do not work, I can't get cpu or memory data.

  Hello. I want to monitor the cpu and memory usages on my cisco devices using snmp. I found the snmp oids related to cpu in the following page :
  http://www.cisco.com/en/US/tech/tk648/tk362/technologies_tech_note09186a0080094a94.shtml
  I just copy the table here:
  But the oids in the table do not work on my devices. For example, I have a cisco 3550 switch with the ip 192.168.1.211, version 12.2(25)when I want to get the informations about the oids up in the table, I got these results:
  It shows that the oids cisco given up in the table are not existed in my 3550 switch's MIB. More weird is that when i add a number "1" to
  the end of the oid cisco given, I can get some meaningless data for some unkonwn item names like "entreprises.x.x".
  For most mib items, the snmp oids work well on my switch. For example, the following graph shows the interface out rate of the swtich:
  I think the essence is when I executed the following command:
  in all the output results, there's not any item relevant with "cpu" or "memory", but most other items are ok, such as interfaces, as shown below:
  IF-MIB::ifDescr.47 = STRING: FastEthernet0/39
  IF-MIB::ifDescr.48 = STRING: FastEthernet0/40
  IF-MIB::ifDescr.49 = STRING: GigabitEthernet0/1
  IF-MIB::ifDescr.50 = STRING: GigabitEthernet0/2
  IF-MIB::ifDescr.51 = STRING: Null0
  IF-MIB::ifDescr.52 = STRING: Vlan1
  IF-MIB::ifType.1 = INTEGER: ethernetCsmacd(6)
  IF-MIB::ifType.2 = INTEGER: ethernetCsmacd(6)
  IF-MIB::ifType.3 = INTEGER: ethernetCsmacd(6)
  IF-MIB::ifType.4 = INTEGER: ethernetCsmacd(6)
  IF-MIB::ifType.5 = INTEGER: ethernetCsmacd(6)
  So why the cisco given oids won't work on my cisco switch, and how can I get the datas I want? Anyone has some advices? Thanks in advance!
  In case the pictures I inserted missing, I attach my problem in the doc.

  Have you looked at this previous discussion:
  Can't Activate FaceTime

• SNMP does not work

  The SNMP on my new TC does not work. I have enabled it disabled it at least 50 times. Rebooted the TC. Unplugged the TC. You name it. It worked once and only once for about 4 hours.
  Any suggestions?

  Assuming you can ping both firewalls, the problem is that the firewall pair shares the same config and therefore, the same SNMPv3 engineID. Some NMSs (e.g. WhatsUp Gold) do not support this and therefore only 1 firewall in the pair can be queried.
  Doesn't look like this has been fixed yet:
  Bug info: CSCtl88556 - ASA5520 failover pair has duplicate snmp v3 engine id

• Deafult values features not working in CATS

  Mates
  I have maintained 315 inftyp for a pernr and when i try to enter the values for the same pernr in time sheet using cat2 ,it doesnt default the sender cost centre and activity type.Infact i  have flagged under cost assignmetn variant Asssignment of personnel cost to master cost centre and in default values ,i have flagged acontrolling area ,activiry type,att/absnece type ,master cost centre in data entry profile-cac1.how do we enable the default values features in time sheet,is there any config steps im missing ?
  Got some inputs,thanks to contributors
  activity tpye in Timesheets
  welcome your valuable inputs.
  No Worries
  KG
  Edited by: SAPenjoy:) on Apr 4, 2011 12:21 PM

  No that is not what is going on. I use InDesign CS4 on a regualr basis at home and at my last job. I've been to the training and I know how the program works and right now it is NOT working unless they have made some major changes since CS4.
  I'm running in windows 7. I'm not trying to do anything crazy, but it's not letting me do really basic things.
  I haven't looked into this yet, but is it possible the download would have loaded 64bit when I can't run it (or vice versa), I don't know all of the hardware specifics of this machine, like I said I'm still brand new here. 64bit vs. 32bit is the only thing I can think of, but that seems impossible since photoshop and illustrator are running properly.

• ASA-5505 Site-to-Site Not Working

  I am somewhat new to Cisco but to do have some experience. I am trying to connect two ASA 5505's together via site-to-site VPN. They are configured with public IPs and all other services are working. I have used the VPN wizard on both boxes successfully but the tunnels are not working. The two devices are on the Comcast network. Any help would be appreacited.
  Site A: ASA 5505 w/50 User license
  Site B: ASA 5505 w/10 User license
  Site A Config:
  ASA Version 8.2(5)
  hostname *********************
  enable password 6.De4e7UzES9wBPg encrypted
  passwd 2KFQnbNIdI.2KYOU encrypted
  names
  name 192.168.100.10 Web_Server
  name 10.0.6.0 Ghost_Flower_Inside
  name 10.0.5.0 San_Mateo_Inside
  name 10.0.5.100 Any_Connect_100
  name 10.0.5.101 Any_Connect_101
  name 10.0.5.102 Any_Connect_102
  name 10.0.5.103 Any_Connect_103
  name 10.0.5.104 Any_Connect_104
  name 10.0.5.105 Any_Connect_105
  name 10.0.5.106 Any_Connect_106
  name 10.0.5.107 Any_Connect_107
  name 10.0.5.108 Any_Connect_108
  name 10.0.5.109 Any_Connect_109
  interface Ethernet0/0
  switchport access vlan 2
  interface Ethernet0/1
  interface Ethernet0/2
  interface Ethernet0/3
  interface Ethernet0/4
  interface Ethernet0/5
  switchport access vlan 12
  interface Ethernet0/6
  interface Ethernet0/7
  interface Vlan1
  nameif inside
  security-level 100
  ip address 10.0.5.201 255.255.255.0
  interface Vlan2
  nameif outside
  security-level 0
  ip address 173.10.XXX.XXX 255.255.255.252
  interface Vlan12
  no forward interface Vlan1
  nameif dmz
  security-level 50
  ip address 192.168.100.1 255.255.255.0
  ftp mode passive
  dns domain-lookup outside
  dns server-group DefaultDNS
  name-server 75.75.75.75
  object-group protocol TCPUDP
  protocol-object udp
  protocol-object tcp
  object-group network Any_Connect_DHCP
  network-object host Any_Connect_100
  network-object host Any_Connect_101
  network-object host Any_Connect_102
  network-object host Any_Connect_103
  network-object host Any_Connect_104
  network-object host Any_Connect_105
  network-object host Any_Connect_106
  network-object host Any_Connect_107
  network-object host Any_Connect_108
  network-object host Any_Connect_109
  access-list outside_access_in extended permit tcp any interface outside eq www
  access-list outside_access_in extended permit tcp any interface outside eq ssh
  access-list outside_1_cryptomap extended permit ip San_Mateo_Inside 255.255.255.0 Ghost_Flower_Inside 255.255.255.0
  access-list inside_nat0_outbound extended permit ip San_Mateo_Inside 255.255.255.0 Ghost_Flower_Inside 255.255.255.0
  access-list inside_nat0_outbound extended permit ip object-group Any_Connect_DHCP any
  pager lines 24
  logging enable
  logging asdm informational
  mtu inside 1500
  mtu outside 1500
  mtu dmz 1500
  ip local pool AnyConnectDHCPPool Any_Connect_100-10.0.5.110 mask 255.255.255.0
  icmp unreachable rate-limit 1 burst-size 1
  no asdm history enable
  arp timeout 14400
  global (outside) 1 interface
  global (dmz) 1 192.168.100.2 netmask 255.255.255.255
  nat (inside) 0 access-list inside_nat0_outbound
  nat (inside) 1 0.0.0.0 0.0.0.0
  static (dmz,outside) tcp interface www Web_Server www netmask 255.255.255.255
  access-group outside_access_in in interface outside
  route outside 0.0.0.0 0.0.0.0 173.10.XXX.XXX 1
  timeout xlate 3:00:00
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  timeout floating-conn 0:00:00
  dynamic-access-policy-record DfltAccessPolicy
  aaa authentication http console LOCAL
  aaa authentication ssh console LOCAL
  http server enable
  http 192.168.1.0 255.255.255.0 inside
  http 10.0.1.0 255.255.255.0 inside
  http 10.1.10.0 255.255.255.0 outside
  http San_Mateo_Inside 255.255.255.255 inside
  http San_Mateo_Inside 255.255.255.0 inside
  http 0.0.0.0 0.0.0.0 outside
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart
  crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
  crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
  crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
  crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
  crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
  crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
  crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec security-association lifetime seconds 28800
  crypto ipsec security-association lifetime kilobytes 4608000
  crypto map outside_map 1 match address outside_1_cryptomap
  crypto map outside_map 1 set peer 173.12.XXX.XXX
  crypto map outside_map 1 set transform-set ESP-3DES-SHA
  crypto map outside_map interface outside
  crypto isakmp enable outside
  crypto isakmp policy 10
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  vpn-sessiondb max-webvpn-session-limit 10
  telnet timeout 5
  ssh 192.168.1.0 255.255.255.0 inside
  ssh 10.0.1.0 255.255.255.0 inside
  ssh San_Mateo_Inside 255.255.255.0 inside
  ssh 10.1.10.0 255.255.255.0 outside
  ssh 0.0.0.0 0.0.0.0 outside
  ssh timeout 5
  console timeout 0
  dhcpd auto_config outside
  dhcpd address 10.0.5.10-10.0.5.30 inside
  dhcpd dns 75.75.75.75 75.75.76.76 interface inside
  dhcpd enable inside
  threat-detection basic-threat
  threat-detection statistics access-list
  no threat-detection statistics tcp-intercept
  webvpn
  anyconnect-essentials
  svc image disk0:/anyconnect-macosx-i386-2.5.2014-k9.pkg 1 regex "Intel Mac OS X"
  svc profiles CATS disk0:/cats.xml
  svc enable
  tunnel-group-list enable
  group-policy DfltGrpPolicy attributes
  dns-server value 75.75.75.75
  vpn-tunnel-protocol IPSec l2tp-ipsec svc webvpn
  webvpn
    svc profiles value CATS
  username user1 password tTq7bIZ.C4x0j.qv encrypted privilege 15
  username ********* password sPxon1E6hTszm7Ko encrypted privilege 15
  tunnel-group 173.12.XXX.XXX type ipsec-l2l
  tunnel-group 173.12.XXX.XXX ipsec-attributes
  pre-shared-key *****
  prompt hostname context
  no call-home reporting anonymous
  Cryptochecksum:1751532c3624a6c2eec3c1ae0c31fe03
  : end
  Site B:
  ASA Version 8.2(5)
  hostname ***************
  enable password 6.De4e7UzES9wBPg encrypted
  passwd 2KFQnbNIdI.2KYOU encrypted
  names
  name 192.168.100.10 Web_Server
  name 10.0.6.0 Ghost_Flower_Inside
  name 10.0.5.0 San_Mateo_Inside
  name 10.0.5.100 Any_Connect_100
  name 10.0.5.101 Any_Connect_101
  name 10.0.5.102 Any_Connect_102
  name 10.0.5.103 Any_Connect_103
  name 10.0.5.104 Any_Connect_104
  name 10.0.5.105 Any_Connect_105
  name 10.0.5.106 Any_Connect_106
  name 10.0.5.107 Any_Connect_107
  name 10.0.5.108 Any_Connect_108
  name 10.0.5.109 Any_Connect_109
  interface Ethernet0/0
  switchport access vlan 2
  interface Ethernet0/1
  interface Ethernet0/2
  interface Ethernet0/3
  interface Ethernet0/4
  interface Ethernet0/5
  switchport access vlan 12
  interface Ethernet0/6
  interface Ethernet0/7
  interface Vlan1
  nameif inside
  security-level 100
  ip address 10.0.5.201 255.255.255.0
  interface Vlan2
  nameif outside
  security-level 0
  ip address 173.10.XXX.XXX 255.255.255.252
  interface Vlan12
  no forward interface Vlan1
  nameif dmz
  security-level 50
  ip address 192.168.100.1 255.255.255.0
  ftp mode passive
  dns domain-lookup outside
  dns server-group DefaultDNS
  name-server 75.75.75.75
  object-group protocol TCPUDP
  protocol-object udp
  protocol-object tcp
  object-group network Any_Connect_DHCP
  network-object host Any_Connect_100
  network-object host Any_Connect_101
  network-object host Any_Connect_102
  network-object host Any_Connect_103
  network-object host Any_Connect_104
  network-object host Any_Connect_105
  network-object host Any_Connect_106
  network-object host Any_Connect_107
  network-object host Any_Connect_108
  network-object host Any_Connect_109
  access-list outside_access_in extended permit tcp any interface outside eq www
  access-list outside_access_in extended permit tcp any interface outside eq ssh
  access-list outside_1_cryptomap extended permit ip San_Mateo_Inside 255.255.255.0 Ghost_Flower_Inside 255.255.255.0
  access-list inside_nat0_outbound extended permit ip San_Mateo_Inside 255.255.255.0 Ghost_Flower_Inside 255.255.255.0
  access-list inside_nat0_outbound extended permit ip object-group Any_Connect_DHCP any
  pager lines 24
  logging enable
  logging asdm informational
  mtu inside 1500
  mtu outside 1500
  mtu dmz 1500
  ip local pool AnyConnectDHCPPool Any_Connect_100-10.0.5.110 mask 255.255.255.0
  icmp unreachable rate-limit 1 burst-size 1
  no asdm history enable
  arp timeout 14400
  global (outside) 1 interface
  global (dmz) 1 192.168.100.2 netmask 255.255.255.255
  nat (inside) 0 access-list inside_nat0_outbound
  nat (inside) 1 0.0.0.0 0.0.0.0
  static (dmz,outside) tcp interface www Web_Server www netmask 255.255.255.255
  access-group outside_access_in in interface outside
  route outside 0.0.0.0 0.0.0.0 173.10.242.182 1
  timeout xlate 3:00:00
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  timeout floating-conn 0:00:00
  dynamic-access-policy-record DfltAccessPolicy
  aaa authentication http console LOCAL
  aaa authentication ssh console LOCAL
  http server enable
  http 192.168.1.0 255.255.255.0 inside
  http 10.0.1.0 255.255.255.0 inside
  http 10.1.10.0 255.255.255.0 outside
  http San_Mateo_Inside 255.255.255.255 inside
  http San_Mateo_Inside 255.255.255.0 inside
  http 0.0.0.0 0.0.0.0 outside
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart
  crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
  crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
  crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
  crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
  crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
  crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
  crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec security-association lifetime seconds 28800
  crypto ipsec security-association lifetime kilobytes 4608000
  crypto map outside_map 1 match address outside_1_cryptomap
  crypto map outside_map 1 set peer 173.12.XXX.XXX
  crypto map outside_map 1 set transform-set ESP-3DES-SHA
  crypto map outside_map interface outside
  crypto isakmp enable outside
  crypto isakmp policy 10
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  vpn-sessiondb max-webvpn-session-limit 10
  telnet timeout 5
  ssh 192.168.1.0 255.255.255.0 inside
  ssh 10.0.1.0 255.255.255.0 inside
  ssh San_Mateo_Inside 255.255.255.0 inside
  ssh 10.1.10.0 255.255.255.0 outside
  ssh 0.0.0.0 0.0.0.0 outside
  ssh timeout 5
  console timeout 0
  dhcpd auto_config outside
  dhcpd address 10.0.5.10-10.0.5.30 inside
  dhcpd dns 75.75.75.75 75.75.76.76 interface inside
  dhcpd enable inside
  threat-detection basic-threat
  threat-detection statistics access-list
  no threat-detection statistics tcp-intercept
  webvpn
  anyconnect-essentials
  svc image disk0:/anyconnect-macosx-i386-2.5.2014-k9.pkg 1 regex "Intel Mac OS X"
  svc profiles CATS disk0:/cats.xml
  svc enable
  tunnel-group-list enable
  group-policy DfltGrpPolicy attributes
  dns-server value 75.75.75.75
  vpn-tunnel-protocol IPSec l2tp-ipsec svc webvpn
  webvpn
    svc profiles value CATS
  username ************** password sPxon1E6hTszm7Ko encrypted privilege 15
  tunnel-group 173.12.XXX.XXX type ipsec-l2l
  tunnel-group 173.12.XXX.XXX ipsec-attributes
  pre-shared-key *****
  prompt hostname context
  no call-home reporting anonymous
  Cryptochecksum:1751532c3624a6c2eec3c1ae0c31fe03
  : end

  Hi Kevin,
  Both the sides have IP address of 173.10.XXX.XXX  on the respective Outside interfaces and you have configured the peers for 173.12.X.X.
  Please ensure the correct IP addresses for VPN peers are configured , via the following command:
  crypto map outside_map 1 set peer X.X.X.X
  e.g. If you have 173.10.X.X on Site X and 173.12.X.X on Site Y , then
  On Site X, peer would be
  crypto map outside_map 1 set peer 173.12.X.X
  and the tunnel-group will be
  tunnel-group 173.12.XXX.XXX type ipsec-l2l
  tunnel-group 173.12.XXX.XXX ipsec-attributes
  pre-shared-key *****
  On Site Y, peer would be
  crypto map outside_map 1 set peer 173.10.X.X
  and the tunnel-group will be
  tunnel-group 173.10.XXX.XXX type ipsec-l2l
  tunnel-group 173.10.XXX.XXX ipsec-attributes
  pre-shared-key *****
  Also , the nat exempt would be complimentary on each other i.e.
  On Site X,
  access-list inside_nat0_outbound extended permit ip San_Mateo_Inside 255.255.255.0 Ghost_Flower_Inside 255.255.255.0
  On Site Y,
  access-list inside_nat0_outbound extended permit ip Ghost_Flower_Inside 255.255.255.0 San_Mateo_Inside 255.255.255.0
  Hope that helps.
  Regards,
  Dinesh Moudgil

• Oracle BPEL - Does not cater for not null columns and use of "default".

  Oracle BPEL - Does not cater for not null columns and use of "default".
  BPEL fails with message:
  ORA-01400: cannot insert NULL into ("EDDB"."SEISMIC_LINES"."COORD_SYSTEM_ID")
  But SQL*PLUS command works:
  INSERT into EDDB.SEISMIC_LINES
  (etc)
  regards
  Allan Ford
  Analyst / Programmer - IT Application Services, IT Services, Shared Business Services
  Santos Ltd
  Level 4, 91 King William Street, Adelaide SA 5000
  Phone: 08 8224 7944 Fax: 08 8218 5320
  Email: [email protected]

  note: BPEL keeps it's own "offline" copy of table and database items. A column that is marked not null in the database can be marked as nullable in this area. (if you kmow that a trigger is going to cater for this ..)
  One workaround is to use a trigger to provide value rather than use the column default ..

• [SOLVED] SQLite not working with PHP

  For reasons unknown, I cannot get PHP to work properly with SQLite. I have uncommented the "extension=sqlite.so" in /etc/php/php.ini, ensured that PHP's configuration was being loaded from said file, and made sure PHP was working fine with my server of choice (lighttpd). Unfortunately, it doesn't seem to work, as evidenced by
  Fatal error: Call to undefined function sqlite_open() in test.php on line x
  Which is what PHP spits at me. I've checked lighty's logs and nothing's wrong. PHP's set to send to syslog, so I'm not sure where I could check on that. Here is a quick look at PHP's setup.
  My /etc/php/php.ini:
  [PHP]
  ; About php.ini ;
  ; This file controls many aspects of PHP's behavior. In order for PHP to
  ; read it, it must be named 'php.ini'. PHP looks for it in the current
  ; working directory, in the path designated by the environment variable
  ; PHPRC, and in the path that was defined in compile time (in that order).
  ; The path in which the php.ini file is looked for can be overridden using
  ; the -c argument in command line mode.
  ; The syntax of the file is extremely simple. Whitespace and Lines
  ; beginning with a semicolon are silently ignored (as you probably guessed).
  ; Section headers (e.g. [Foo]) are also silently ignored, even though
  ; they might mean something in the future.
  ; Directives are specified using the following syntax:
  ; directive = value
  ; Directive names are *case sensitive* - foo=bar is different from FOO=bar.
  ; The value can be a string, a number, a PHP constant (e.g. E_ALL or M_PI), one
  ; of the INI constants (On, Off, True, False, Yes, No and None) or an expression
  ; (e.g. E_ALL & ~E_NOTICE), or a quoted string ("foo").
  ; Expressions in the INI file are limited to bitwise operators and parentheses:
  ; | bitwise OR
  ; & bitwise AND
  ; ~ bitwise NOT
  ; ! boolean NOT
  ; Boolean flags can be turned on using the values 1, On, True or Yes.
  ; They can be turned off using the values 0, Off, False or No.
  ; An empty string can be denoted by simply not writing anything after the equal
  ; sign, or by using the None keyword:
  ; foo = ; sets foo to an empty string
  ; foo = none ; sets foo to an empty string
  ; foo = "none" ; sets foo to the string 'none'
  ; If you use constants in your value, and these constants belong to a
  ; dynamically loaded extension (either a PHP extension or a Zend extension),
  ; you may only use these constants *after* the line that loads the extension.
  ; About this file ;
  ; This is the recommended, PHP 5-style version of the php.ini-dist file. It
  ; sets some non standard settings, that make PHP more efficient, more secure,
  ; and encourage cleaner coding.
  ; The price is that with these settings, PHP may be incompatible with some
  ; applications, and sometimes, more difficult to develop with. Using this
  ; file is warmly recommended for production sites. As all of the changes from
  ; the standard settings are thoroughly documented, you can go over each one,
  ; and decide whether you want to use it or not.
  ; For general information about the php.ini file, please consult the php.ini-dist
  ; file, included in your PHP distribution.
  ; This file is different from the php.ini-dist file in the fact that it features
  ; different values for several directives, in order to improve performance, while
  ; possibly breaking compatibility with the standard out-of-the-box behavior of
  ; PHP. Please make sure you read what's different, and modify your scripts
  ; accordingly, if you decide to use this file instead.
  ; - register_long_arrays = Off [Performance]
  ; Disables registration of the older (and deprecated) long predefined array
  ; variables ($HTTP_*_VARS). Instead, use the superglobals that were
  ; introduced in PHP 4.1.0
  ; - display_errors = Off [Security]
  ; With this directive set to off, errors that occur during the execution of
  ; scripts will no longer be displayed as a part of the script output, and thus,
  ; will no longer be exposed to remote users. With some errors, the error message
  ; content may expose information about your script, web server, or database
  ; server that may be exploitable for hacking. Production sites should have this
  ; directive set to off.
  ; - log_errors = On [Security]
  ; This directive complements the above one. Any errors that occur during the
  ; execution of your script will be logged (typically, to your server's error log,
  ; but can be configured in several ways). Along with setting display_errors to off,
  ; this setup gives you the ability to fully understand what may have gone wrong,
  ; without exposing any sensitive information to remote users.
  ; - output_buffering = 4096 [Performance]
  ; Set a 4KB output buffer. Enabling output buffering typically results in less
  ; writes, and sometimes less packets sent on the wire, which can often lead to
  ; better performance. The gain this directive actually yields greatly depends
  ; on which Web server you're working with, and what kind of scripts you're using.
  ; - register_argc_argv = Off [Performance]
  ; Disables registration of the somewhat redundant $argv and $argc global
  ; variables.
  ; - magic_quotes_gpc = Off [Performance]
  ; Input data is no longer escaped with slashes so that it can be sent into
  ; SQL databases without further manipulation. Instead, you should use the
  ; database vendor specific escape string function on each input element you
  ; wish to send to a database.
  ; - variables_order = "GPCS" [Performance]
  ; The environment variables are not hashed into the $_ENV. To access
  ; environment variables, you can use getenv() instead.
  ; - error_reporting = E_ALL [Code Cleanliness, Security(?)]
  ; By default, PHP suppresses errors of type E_NOTICE. These error messages
  ; are emitted for non-critical errors, but that could be a symptom of a bigger
  ; problem. Most notably, this will cause error messages about the use
  ; of uninitialized variables to be displayed.
  ; - allow_call_time_pass_reference = Off [Code cleanliness]
  ; It's not possible to decide to force a variable to be passed by reference
  ; when calling a function. The PHP 4 style to do this is by making the
  ; function require the relevant argument by reference.
  ; - short_open_tag = Off [Portability]
  ; Using short tags is discouraged when developing code meant for redistribution
  ; since short tags may not be supported on the target server.
  ; Language Options ;
  ; Enable the PHP scripting language engine under Apache.
  engine = On
  ; Enable compatibility mode with Zend Engine 1 (PHP 4.x)
  zend.ze1_compatibility_mode = Off
  ; Allow the <? tag. Otherwise, only <?php and <script> tags are recognized.
  ; NOTE: Using short tags should be avoided when developing applications or
  ; libraries that are meant for redistribution, or deployment on PHP
  ; servers which are not under your control, because short tags may not
  ; be supported on the target server. For portable, redistributable code,
  ; be sure not to use short tags.
  short_open_tag = Off
  ; Allow ASP-style <% %> tags.
  asp_tags = Off
  ; The number of significant digits displayed in floating point numbers.
  precision = 14
  ; Enforce year 2000 compliance (will cause problems with non-compliant browsers)
  y2k_compliance = On
  ; Output buffering allows you to send header lines (including cookies) even
  ; after you send body content, at the price of slowing PHP's output layer a
  ; bit. You can enable output buffering during runtime by calling the output
  ; buffering functions. You can also enable output buffering for all files by
  ; setting this directive to On. If you wish to limit the size of the buffer
  ; to a certain size - you can use a maximum number of bytes instead of 'On', as
  ; a value for this directive (e.g., output_buffering=4096).
  output_buffering = 4096
  ; You can redirect all of the output of your scripts to a function. For
  ; example, if you set output_handler to "mb_output_handler", character
  ; encoding will be transparently converted to the specified encoding.
  ; Setting any output handler automatically turns on output buffering.
  ; Note: People who wrote portable scripts should not depend on this ini
  ; directive. Instead, explicitly set the output handler using ob_start().
  ; Using this ini directive may cause problems unless you know what script
  ; is doing.
  ; Note: You cannot use both "mb_output_handler" with "ob_iconv_handler"
  ; and you cannot use both "ob_gzhandler" and "zlib.output_compression".
  ; Note: output_handler must be empty if this is set 'On' !!!!
  ; Instead you must use zlib.output_handler.
  ;output_handler =
  ; Transparent output compression using the zlib library
  ; Valid values for this option are 'off', 'on', or a specific buffer size
  ; to be used for compression (default is 4KB)
  ; Note: Resulting chunk size may vary due to nature of compression. PHP
  ; outputs chunks that are few hundreds bytes each as a result of
  ; compression. If you prefer a larger chunk size for better
  ; performance, enable output_buffering in addition.
  ; Note: You need to use zlib.output_handler instead of the standard
  ; output_handler, or otherwise the output will be corrupted.
  zlib.output_compression = Off
  ;zlib.output_compression_level = -1
  ; You cannot specify additional output handlers if zlib.output_compression
  ; is activated here. This setting does the same as output_handler but in
  ; a different order.
  ;zlib.output_handler =
  ; Implicit flush tells PHP to tell the output layer to flush itself
  ; automatically after every output block. This is equivalent to calling the
  ; PHP function flush() after each and every call to print() or echo() and each
  ; and every HTML block. Turning this option on has serious performance
  ; implications and is generally recommended for debugging purposes only.
  implicit_flush = Off
  ; The unserialize callback function will be called (with the undefined class'
  ; name as parameter), if the unserializer finds an undefined class
  ; which should be instantiated.
  ; A warning appears if the specified function is not defined, or if the
  ; function doesn't include/implement the missing class.
  ; So only set this entry, if you really want to implement such a
  ; callback-function.
  unserialize_callback_func=
  ; When floats & doubles are serialized store serialize_precision significant
  ; digits after the floating point. The default value ensures that when floats
  ; are decoded with unserialize, the data will remain the same.
  serialize_precision = 100
  ; Whether to enable the ability to force arguments to be passed by reference
  ; at function call time. This method is deprecated and is likely to be
  ; unsupported in future versions of PHP/Zend. The encouraged method of
  ; specifying which arguments should be passed by reference is in the function
  ; declaration. You're encouraged to try and turn this option Off and make
  ; sure your scripts work properly with it in order to ensure they will work
  ; with future versions of the language (you will receive a warning each time
  ; you use this feature, and the argument will be passed by value instead of by
  ; reference).
  allow_call_time_pass_reference = Off
  ; Safe Mode
  safe_mode = Off
  ; By default, Safe Mode does a UID compare check when
  ; opening files. If you want to relax this to a GID compare,
  ; then turn on safe_mode_gid.
  safe_mode_gid = Off
  ; When safe_mode is on, UID/GID checks are bypassed when
  ; including files from this directory and its subdirectories.
  ; (directory must also be in include_path or full path must
  ; be used when including)
  safe_mode_include_dir =
  ; When safe_mode is on, only executables located in the safe_mode_exec_dir
  ; will be allowed to be executed via the exec family of functions.
  safe_mode_exec_dir =
  ; Setting certain environment variables may be a potential security breach.
  ; This directive contains a comma-delimited list of prefixes. In Safe Mode,
  ; the user may only alter environment variables whose names begin with the
  ; prefixes supplied here. By default, users will only be able to set
  ; environment variables that begin with PHP_ (e.g. PHP_FOO=BAR).
  ; Note: If this directive is empty, PHP will let the user modify ANY
  ; environment variable!
  safe_mode_allowed_env_vars = PHP_
  ; This directive contains a comma-delimited list of environment variables that
  ; the end user won't be able to change using putenv(). These variables will be
  ; protected even if safe_mode_allowed_env_vars is set to allow to change them.
  safe_mode_protected_env_vars = LD_LIBRARY_PATH
  ; open_basedir, if set, limits all file operations to the defined directory
  ; and below. This directive makes most sense if used in a per-directory
  ; or per-virtualhost web server configuration file. This directive is
  ; *NOT* affected by whether Safe Mode is turned On or Off.
  open_basedir = /srv/http/:/home/:/tmp/:/usr/share/pear/
  ; This directive allows you to disable certain functions for security reasons.
  ; It receives a comma-delimited list of function names. This directive is
  ; *NOT* affected by whether Safe Mode is turned On or Off.
  disable_functions =
  ; This directive allows you to disable certain classes for security reasons.
  ; It receives a comma-delimited list of class names. This directive is
  ; *NOT* affected by whether Safe Mode is turned On or Off.
  disable_classes =
  ; Colors for Syntax Highlighting mode. Anything that's acceptable in
  ; <span style="color: ???????"> would work.
  ;highlight.string = #DD0000
  ;highlight.comment = #FF9900
  ;highlight.keyword = #007700
  ;highlight.bg = #FFFFFF
  ;highlight.default = #0000BB
  ;highlight.html = #000000
  ; If enabled, the request will be allowed to complete even if the user aborts
  ; the request. Consider enabling it if executing long request, which may end up
  ; being interrupted by the user or a browser timing out.
  ; ignore_user_abort = On
  ; Determines the size of the realpath cache to be used by PHP. This value should
  ; be increased on systems where PHP opens many files to reflect the quantity of
  ; the file operations performed.
  ; realpath_cache_size=16k
  ; Duration of time, in seconds for which to cache realpath information for a given
  ; file or directory. For systems with rarely changing files, consider increasing this
  ; value.
  ; realpath_cache_ttl=120
  ; Misc
  ; Decides whether PHP may expose the fact that it is installed on the server
  ; (e.g. by adding its signature to the Web server header). It is no security
  ; threat in any way, but it makes it possible to determine whether you use PHP
  ; on your server or not.
  expose_php = Off
  ; Resource Limits ;
  max_execution_time = 30 ; Maximum execution time of each script, in seconds
  max_input_time = 60 ; Maximum amount of time each script may spend parsing request data
  ;max_input_nesting_level = 64 ; Maximum input variable nesting level
  memory_limit = 32M ; Maximum amount of memory a script may consume (32MB)
  ; Error handling and logging ;
  ; error_reporting is a bit-field. Or each number up to get desired error
  ; reporting level
  ; E_ALL - All errors and warnings (doesn't include E_STRICT)
  ; E_ERROR - fatal run-time errors
  ; E_RECOVERABLE_ERROR - almost fatal run-time errors
  ; E_WARNING - run-time warnings (non-fatal errors)
  ; E_PARSE - compile-time parse errors
  ; E_NOTICE - run-time notices (these are warnings which often result
  ; from a bug in your code, but it's possible that it was
  ; intentional (e.g., using an uninitialized variable and
  ; relying on the fact it's automatically initialized to an
  ; empty string)
  ; E_STRICT - run-time notices, enable to have PHP suggest changes
  ; to your code which will ensure the best interoperability
  ; and forward compatibility of your code
  ; E_CORE_ERROR - fatal errors that occur during PHP's initial startup
  ; E_CORE_WARNING - warnings (non-fatal errors) that occur during PHP's
  ; initial startup
  ; E_COMPILE_ERROR - fatal compile-time errors
  ; E_COMPILE_WARNING - compile-time warnings (non-fatal errors)
  ; E_USER_ERROR - user-generated error message
  ; E_USER_WARNING - user-generated warning message
  ; E_USER_NOTICE - user-generated notice message
  ; Examples:
  ; - Show all errors, except for notices and coding standards warnings
  ;error_reporting = E_ALL & ~E_NOTICE
  ; - Show all errors, except for notices
  ;error_reporting = E_ALL & ~E_NOTICE | E_STRICT
  ; - Show only errors
  ;error_reporting = E_COMPILE_ERROR|E_RECOVERABLE_ERROR|E_ERROR|E_CORE_ERROR
  ; - Show all errors, except coding standards warnings
  error_reporting = E_ALL
  ; Print out errors (as a part of the output). For production web sites,
  ; you're strongly encouraged to turn this feature off, and use error logging
  ; instead (see below). Keeping display_errors enabled on a production web site
  ; may reveal security information to end users, such as file paths on your Web
  ; server, your database schema or other information.
  ; possible values for display_errors:
  ; Off - Do not display any errors
  ; stderr - Display errors to STDERR (affects only CGI/CLI binaries!)
  ; On or stdout - Display errors to STDOUT (default)
  ; To output errors to STDERR with CGI/CLI:
  ;display_errors = "stderr"
  ; Default
  display_errors = On
  ; Even when display_errors is on, errors that occur during PHP's startup
  ; sequence are not displayed. It's strongly recommended to keep
  ; display_startup_errors off, except for when debugging.
  display_startup_errors = Off
  ; Log errors into a log file (server-specific log, stderr, or error_log (below))
  ; As stated above, you're strongly advised to use error logging in place of
  ; error displaying on production web sites.
  log_errors = On
  ; Set maximum length of log_errors. In error_log information about the source is
  ; added. The default is 1024 and 0 allows to not apply any maximum length at all.
  log_errors_max_len = 1024
  ; Do not log repeated messages. Repeated errors must occur in same file on same
  ; line unless ignore_repeated_source is set true.
  ignore_repeated_errors = Off
  ; Ignore source of message when ignoring repeated messages. When this setting
  ; is On you will not log errors with repeated messages from different files or
  ; source lines.
  ignore_repeated_source = Off
  ; If this parameter is set to Off, then memory leaks will not be shown (on
  ; stdout or in the log). This has only effect in a debug compile, and if
  ; error reporting includes E_WARNING in the allowed list
  report_memleaks = Off
  ;report_zend_debug = 0
  ; Store the last error/warning message in $php_errormsg (boolean).
  track_errors = Off
  ; Turn off normal error reporting and emit XML-RPC error XML
  ;xmlrpc_errors = 0
  ; An XML-RPC faultCode
  ;xmlrpc_error_number = 0
  ; Disable the inclusion of HTML tags in error messages.
  ; Note: Never use this feature for production boxes.
  ;html_errors = Off
  ; If html_errors is set On PHP produces clickable error messages that direct
  ; to a page describing the error or function causing the error in detail.
  ; You can download a copy of the PHP manual from http://www.php.net/docs.php
  ; and change docref_root to the base URL of your local copy including the
  ; leading '/'. You must also specify the file extension being used including
  ; the dot.
  ; Note: Never use this feature for production boxes.
  ;docref_root = "/phpmanual/"
  ;docref_ext = .html
  ; String to output before an error message.
  ;error_prepend_string = "<font color=#ff0000>"
  ; String to output after an error message.
  ;error_append_string = "</font>"
  ; Log errors to specified file.
  ;error_log = filename
  ; Log errors to syslog.
  error_log = syslog
  ; Data Handling ;
  ; Note - track_vars is ALWAYS enabled as of PHP 4.0.3
  ; The separator used in PHP generated URLs to separate arguments.
  ; Default is "&".
  ;arg_separator.output = "&"
  ; List of separator(s) used by PHP to parse input URLs into variables.
  ; Default is "&".
  ; NOTE: Every character in this directive is considered as separator!
  ;arg_separator.input = ";&"
  ; This directive describes the order in which PHP registers GET, POST, Cookie,
  ; Environment and Built-in variables (G, P, C, E & S respectively, often
  ; referred to as EGPCS or GPC). Registration is done from left to right, newer
  ; values override older values.
  variables_order = "GPCS"
  ; Whether or not to register the EGPCS variables as global variables. You may
  ; want to turn this off if you don't want to clutter your scripts' global scope
  ; with user data. This makes most sense when coupled with track_vars - in which
  ; case you can access all of the GPC variables through the $HTTP_*_VARS[],
  ; variables.
  ; You should do your best to write your scripts so that they do not require
  ; register_globals to be on; Using form variables as globals can easily lead
  ; to possible security problems, if the code is not very well thought of.
  register_globals = Off
  ; Whether or not to register the old-style input arrays, HTTP_GET_VARS
  ; and friends. If you're not using them, it's recommended to turn them off,
  ; for performance reasons.
  register_long_arrays = Off
  ; This directive tells PHP whether to declare the argv&argc variables (that
  ; would contain the GET information). If you don't use these variables, you
  ; should turn it off for increased performance.
  register_argc_argv = Off
  ; When enabled, the SERVER and ENV variables are created when they're first
  ; used (Just In Time) instead of when the script starts. If these variables
  ; are not used within a script, having this directive on will result in a
  ; performance gain. The PHP directives register_globals, register_long_arrays,
  ; and register_argc_argv must be disabled for this directive to have any affect.
  auto_globals_jit = On
  ; Maximum size of POST data that PHP will accept.
  post_max_size = 8M
  ; Magic quotes
  ; Magic quotes for incoming GET/POST/Cookie data.
  magic_quotes_gpc = Off
  ; Magic quotes for runtime-generated data, e.g. data from SQL, from exec(), etc.
  magic_quotes_runtime = Off
  ; Use Sybase-style magic quotes (escape ' with '' instead of \').
  magic_quotes_sybase = Off
  ; Automatically add files before or after any PHP document.
  auto_prepend_file =
  auto_append_file =
  ; As of 4.0b4, PHP always outputs a character encoding by default in
  ; the Content-type: header. To disable sending of the charset, simply
  ; set it to be empty.
  ; PHP's built-in default is text/html
  default_mimetype = "text/html"
  default_charset = "utf-8"
  ; Always populate the $HTTP_RAW_POST_DATA variable.
  ;always_populate_raw_post_data = On
  ; Paths and Directories ;
  ; UNIX: "/path1:/path2"
  include_path = ".:/usr/share/pear"
  ; The root of the PHP pages, used only if nonempty.
  ; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root
  ; if you are running php as a CGI under any web server (other than IIS)
  ; see documentation for security issues. The alternate is to use the
  ; cgi.force_redirect configuration below
  doc_root =
  ; The directory under which PHP opens the script using /~username used only
  ; if nonempty.
  user_dir =
  ; Directory in which the loadable extensions (modules) reside.
  extension_dir = "/usr/lib/php/20060613/"
  ; Whether or not to enable the dl() function. The dl() function does NOT work
  ; properly in multithreaded servers, such as IIS or Zeus, and is automatically
  ; disabled on them.
  enable_dl = Off
  ; cgi.force_redirect is necessary to provide security running PHP as a CGI under
  ; most web servers. Left undefined, PHP turns this on by default. You can
  ; turn it off here AT YOUR OWN RISK
  ; **You CAN safely turn this off for IIS, in fact, you MUST.**
  ; cgi.force_redirect = 1
  ; if cgi.nph is enabled it will force cgi to always sent Status: 200 with
  ; every request.
  ; cgi.nph = 1
  ; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape
  ; (iPlanet) web servers, you MAY need to set an environment variable name that PHP
  ; will look for to know it is OK to continue execution. Setting this variable MAY
  ; cause security issues, KNOW WHAT YOU ARE DOING FIRST.
  ; cgi.redirect_status_env = ;
  ; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's
  ; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok
  ; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting
  ; this to 1 will cause PHP CGI to fix it's paths to conform to the spec. A setting
  ; of zero causes PHP to behave as before. Default is 1. You should fix your scripts
  ; to use SCRIPT_FILENAME rather than PATH_TRANSLATED.
  cgi.fix_pathinfo=1
  ; FastCGI under IIS (on WINNT based OS) supports the ability to impersonate
  ; security tokens of the calling client. This allows IIS to define the
  ; security context that the request runs under. mod_fastcgi under Apache
  ; does not currently support this feature (03/17/2002)
  ; Set to 1 if running under IIS. Default is zero.
  ; fastcgi.impersonate = 1;
  ; Disable logging through FastCGI connection
  ; fastcgi.logging = 0
  ; cgi.rfc2616_headers configuration option tells PHP what type of headers to
  ; use when sending HTTP response code. If it's set 0 PHP sends Status: header that
  ; is supported by Apache. When this option is set to 1 PHP will send
  ; RFC2616 compliant header.
  ; Default is zero.
  ;cgi.rfc2616_headers = 0
  ; File Uploads ;
  ; Whether to allow HTTP file uploads.
  file_uploads = On
  ; Temporary directory for HTTP uploaded files (will use system default if not
  ; specified).
  ;upload_tmp_dir =
  ; Maximum allowed size for uploaded files.
  upload_max_filesize = 2M
  ; Fopen wrappers ;
  ; Whether to allow the treatment of URLs (like http:// or ftp://) as files.
  allow_url_fopen = Off
  ; Whether to allow include/require to open URLs (like http:// or ftp://) as files.
  allow_url_include = Off
  ; Define the anonymous ftp password (your email address)
  ;from="[email protected]"
  ; Define the User-Agent string
  ; user_agent="PHP"
  ; Default timeout for socket based streams (seconds)
  default_socket_timeout = 60
  ; Dynamic Extensions ;
  ; If you wish to have an extension loaded automatically, use the following
  ; syntax:
  ; extension=modulename.extension
  ; For example, under UNIX:
  ; extension=msql.so
  ; Note that it should be the name of the module only; no directory information
  ; needs to go here. Specify the location of the extension with the
  ; extension_dir directive above.
  ; Module Settings ;
  [Date]
  ; Defines the default timezone used by the date functions
  ;date.timezone =
  ;date.default_latitude = 31.7667
  ;date.default_longitude = 35.2333
  ;date.sunrise_zenith = 90.583333
  ;date.sunset_zenith = 90.583333
  [filter]
  ;filter.default = unsafe_raw
  ;filter.default_flags =
  [iconv]
  ;iconv.input_encoding = ISO-8859-1
  ;iconv.internal_encoding = ISO-8859-1
  ;iconv.output_encoding = ISO-8859-1
  [sqlite]
  sqlite.assoc_case = 1
  [Pcre]
  ;PCRE library backtracking limit.
  ;pcre.backtrack_limit=100000
  ;PCRE library recursion limit.
  ;Please note that if you set this value to a high number you may consume all
  ;the available process stack and eventually crash PHP (due to reaching the
  ;stack size limit imposed by the Operating System).
  ;pcre.recursion_limit=100000
  [Syslog]
  ; Whether or not to define the various syslog variables (e.g. $LOG_PID,
  ; $LOG_CRON, etc.). Turning it off is a good idea performance-wise. In
  ; runtime, you can define these variables by calling define_syslog_variables().
  define_syslog_variables = Off
  [mail function]
  ; For Unix only. You may supply arguments as well (default: "sendmail -t -i").
  ;sendmail_path =
  ; Force the addition of the specified parameters to be passed as extra parameters
  ; to the sendmail binary. These parameters will always replace the value of
  ; the 5th parameter to mail(), even in safe mode.
  ;mail.force_extra_parameters =
  [SQL]
  sql.safe_mode = Off
  [ODBC]
  ;odbc.default_db = Not yet implemented
  ;odbc.default_user = Not yet implemented
  ;odbc.default_pw = Not yet implemented
  ; Allow or prevent persistent links.
  odbc.allow_persistent = On
  ; Check that a connection is still valid before reuse.
  odbc.check_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  odbc.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  odbc.max_links = -1
  ; Handling of LONG fields. Returns number of bytes to variables. 0 means
  ; passthru.
  odbc.defaultlrl = 4096
  ; Handling of binary data. 0 means passthru, 1 return as is, 2 convert to char.
  ; See the documentation on odbc_binmode and odbc_longreadlen for an explanation
  ; of uodbc.defaultlrl and uodbc.defaultbinmode
  odbc.defaultbinmode = 1
  [MySQL]
  ; Allow or prevent persistent links.
  mysql.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  mysql.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  mysql.max_links = -1
  ; Default port number for mysql_connect(). If unset, mysql_connect() will use
  ; the $MYSQL_TCP_PORT or the mysql-tcp entry in /etc/services or the
  ; compile-time value defined MYSQL_PORT (in that order).
  mysql.default_port =
  ; Default socket name for local MySQL connects. If empty, uses the built-in
  ; MySQL defaults.
  mysql.default_socket =
  ; Default host for mysql_connect() (doesn't apply in safe mode).
  mysql.default_host =
  ; Default user for mysql_connect() (doesn't apply in safe mode).
  mysql.default_user =
  ; Default password for mysql_connect() (doesn't apply in safe mode).
  ; Note that this is generally a *bad* idea to store passwords in this file.
  ; *Any* user with PHP access can run 'echo get_cfg_var("mysql.default_password")
  ; and reveal this password! And of course, any users with read access to this
  ; file will be able to reveal the password as well.
  mysql.default_password =
  ; Maximum time (in seconds) for connect timeout. -1 means no limit
  mysql.connect_timeout = 60
  ; Trace mode. When trace_mode is active (=On), warnings for table/index scans and
  ; SQL-Errors will be displayed.
  mysql.trace_mode = Off
  [MySQLi]
  ; Maximum number of links. -1 means no limit.
  mysqli.max_links = -1
  ; Default port number for mysqli_connect(). If unset, mysqli_connect() will use
  ; the $MYSQL_TCP_PORT or the mysql-tcp entry in /etc/services or the
  ; compile-time value defined MYSQL_PORT (in that order).
  mysqli.default_port = 3306
  ; Default socket name for local MySQL connects. If empty, uses the built-in
  ; MySQL defaults.
  mysqli.default_socket =
  ; Default host for mysql_connect() (doesn't apply in safe mode).
  mysqli.default_host =
  ; Default user for mysql_connect() (doesn't apply in safe mode).
  mysqli.default_user =
  ; Default password for mysqli_connect() (doesn't apply in safe mode).
  ; Note that this is generally a *bad* idea to store passwords in this file.
  ; *Any* user with PHP access can run 'echo get_cfg_var("mysqli.default_pw")
  ; and reveal this password! And of course, any users with read access to this
  ; file will be able to reveal the password as well.
  mysqli.default_pw =
  ; Allow or prevent reconnect
  mysqli.reconnect = Off
  [mSQL]
  ; Allow or prevent persistent links.
  msql.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  msql.max_persistent = -1
  ; Maximum number of links (persistent+non persistent). -1 means no limit.
  msql.max_links = -1
  [OCI8]
  ; enables privileged connections using external credentials (OCI_SYSOPER, OCI_SYSDBA)
  ;oci8.privileged_connect = Off
  ; Connection: The maximum number of persistent OCI8 connections per
  ; process. Using -1 means no limit.
  ;oci8.max_persistent = -1
  ; Connection: The maximum number of seconds a process is allowed to
  ; maintain an idle persistent connection. Using -1 means idle
  ; persistent connections will be maintained forever.
  ;oci8.persistent_timeout = -1
  ; Connection: The number of seconds that must pass before issuing a
  ; ping during oci_pconnect() to check the connection validity. When
  ; set to 0, each oci_pconnect() will cause a ping. Using -1 disables
  ; pings completely.
  ;oci8.ping_interval = 60
  ; Tuning: This option enables statement caching, and specifies how
  ; many statements to cache. Using 0 disables statement caching.
  ;oci8.statement_cache_size = 20
  ; Tuning: Enables statement prefetching and sets the default number of
  ; rows that will be fetched automatically after statement execution.
  ;oci8.default_prefetch = 10
  ; Compatibility. Using On means oci_close() will not close
  ; oci_connect() and oci_new_connect() connections.
  ;oci8.old_oci_close_semantics = Off
  [PostgresSQL]
  ; Allow or prevent persistent links.
  pgsql.allow_persistent = On
  ; Detect broken persistent links always with pg_pconnect().
  ; Auto reset feature requires a little overheads.
  pgsql.auto_reset_persistent = Off
  ; Maximum number of persistent links. -1 means no limit.
  pgsql.max_persistent = -1
  ; Maximum number of links (persistent+non persistent). -1 means no limit.
  pgsql.max_links = -1
  ; Ignore PostgreSQL backends Notice message or not.
  ; Notice message logging require a little overheads.
  pgsql.ignore_notice = 0
  ; Log PostgreSQL backends Notice message or not.
  ; Unless pgsql.ignore_notice=0, module cannot log notice message.
  pgsql.log_notice = 0
  [Sybase]
  ; Allow or prevent persistent links.
  sybase.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  sybase.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  sybase.max_links = -1
  ;sybase.interface_file = "/usr/sybase/interfaces"
  ; Minimum error severity to display.
  sybase.min_error_severity = 10
  ; Minimum message severity to display.
  sybase.min_message_severity = 10
  ; Compatibility mode with old versions of PHP 3.0.
  ; If on, this will cause PHP to automatically assign types to results according
  ; to their Sybase type, instead of treating them all as strings. This
  ; compatibility mode will probably not stay around forever, so try applying
  ; whatever necessary changes to your code, and turn it off.
  sybase.compatability_mode = Off
  [Sybase-CT]
  ; Allow or prevent persistent links.
  sybct.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  sybct.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  sybct.max_links = -1
  ; Minimum server message severity to display.
  sybct.min_server_severity = 10
  ; Minimum client message severity to display.
  sybct.min_client_severity = 10
  [bcmath]
  ; Number of decimal digits for all bcmath functions.
  bcmath.scale = 0
  [browscap]
  ;browscap = extra/browscap.ini
  [Informix]
  ; Default host for ifx_connect() (doesn't apply in safe mode).
  ifx.default_host =
  ; Default user for ifx_connect() (doesn't apply in safe mode).
  ifx.default_user =
  ; Default password for ifx_connect() (doesn't apply in safe mode).
  ifx.default_password =
  ; Allow or prevent persistent links.
  ifx.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  ifx.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  ifx.max_links = -1
  ; If on, select statements return the contents of a text blob instead of its id.
  ifx.textasvarchar = 0
  ; If on, select statements return the contents of a byte blob instead of its id.
  ifx.byteasvarchar = 0
  ; Trailing blanks are stripped from fixed-length char columns. May help the
  ; life of Informix SE users.
  ifx.charasvarchar = 0
  ; If on, the contents of text and byte blobs are dumped to a file instead of
  ; keeping them in memory.
  ifx.blobinfile = 0
  ; NULL's are returned as empty strings, unless this is set to 1. In that case,
  ; NULL's are returned as string 'NULL'.
  ifx.nullformat = 0
  [Session]
  ; Handler used to store/retrieve data.
  session.save_handler = files
  ; Argument passed to save_handler. In the case of files, this is the path
  ; where data files are stored.
  ; As of PHP 4.0.1, you can define the path as:
  ; session.save_path = "N;/path"
  ; where N is an integer. Instead of storing all the session files in
  ; /path, what this will do is use subdirectories N-levels deep, and
  ; store the session data in those directories. This is useful if you
  ; or your OS have problems with lots of files in one directory, and is
  ; a more efficient layout for servers that handle lots of sessions.
  ; NOTE 1: PHP will not create this directory structure automatically.
  ; You can use the script in the ext/session dir for that purpose.
  ; NOTE 2: See the section on garbage collection below if you choose to
  ; use subdirectories for session storage
  ; The file storage module creates files using mode 600 by default.
  ; You can change that by using
  ; session.save_path = "N;MODE;/path"
  ; where MODE is the octal representation of the mode. Note that this
  ; does not overwrite the process's umask.
  session.save_path = "/tmp"
  ; Whether to use cookies.
  session.use_cookies = 1
  ;session.cookie_secure =
  ; This option enables administrators to make their users invulnerable to
  ; attacks which involve passing session ids in URLs; defaults to 0.
  ; session.use_only_cookies = 1
  ; Name of the session (used as cookie name).
  session.name = PHPSESSID
  ; Initialize session on request startup.
  session.auto_start = 0
  ; Lifetime in seconds of cookie or, if 0, until browser is restarted.
  session.cookie_lifetime = 0
  ; The path for which the cookie is valid.
  session.cookie_path = /
  ; The domain for which the cookie is valid.
  session.cookie_domain =
  ; Whether or not to add the httpOnly flag to the cookie, which makes it inaccessible to browser scripting languages such as JavaScript.
  session.cookie_httponly =
  ; Handler used to serialize data. php is the standard serializer of PHP.
  session.serialize_handler = php
  ; Define the probability that the 'garbage collection' process is started
  ; on every session initialization.
  ; The probability is calculated by using gc_probability/gc_divisor,
  ; e.g. 1/100 means there is a 1% chance that the GC process starts
  ; on each request.
  session.gc_probability = 1
  session.gc_divisor = 1000
  ; After this number of seconds, stored data will be seen as 'garbage' and
  ; cleaned up by the garbage collection process.
  session.gc_maxlifetime = 1440
  ; NOTE: If you are using the subdirectory option for storing session files
  ; (see session.save_path above), then garbage collection does *not*
  ; happen automatically. You will need to do your own garbage
  ; collection through a shell script, cron entry, or some other method.
  ; For example, the following script would is the equivalent of
  ; setting session.gc_maxlifetime to 1440 (1440 seconds = 24 minutes):
  ; cd /path/to/sessions; find -cmin +24 | xargs rm
  ; PHP 4.2 and less have an undocumented feature/bug that allows you to
  ; to initialize a session variable in the global scope, albeit register_globals
  ; is disabled. PHP 4.3 and later will warn you, if this feature is used.
  ; You can disable the feature and the warning separately. At this time,
  ; the warning is only displayed, if bug_compat_42 is enabled.
  session.bug_compat_42 = 0
  session.bug_compat_warn = 1
  ; Check HTTP Referer to invalidate externally stored URLs containing ids.
  ; HTTP_REFERER has to contain this substring for the session to be
  ; considered as valid.
  session.referer_check =
  ; How many bytes to read from the file.
  session.entropy_length = 0
  ; Specified here to create the session id.
  session.entropy_file =
  ;session.entropy_length = 16
  ;session.entropy_file = /dev/urandom
  ; Set to {nocache,private,public,} to determine HTTP caching aspects
  ; or leave this empty to avoid sending anti-caching headers.
  session.cache_limiter = nocache
  ; Document expires after n minutes.
  session.cache_expire = 180
  ; trans sid support is disabled by default.
  ; Use of trans sid may risk your users security.
  ; Use this option with caution.
  ; - User may send URL contains active session ID
  ; to other person via. email/irc/etc.
  ; - URL that contains active session ID may be stored
  ; in publically accessible computer.
  ; - User may access your site with the same session ID
  ; always using URL stored in browser's history or bookmarks.
  session.use_trans_sid = 0
  ; Select a hash function
  ; 0: MD5 (128 bits)
  ; 1: SHA-1 (160 bits)
  session.hash_function = 0
  ; Define how many bits are stored in each character when converting
  ; the binary hash data to something readable.
  ; 4 bits: 0-9, a-f
  ; 5 bits: 0-9, a-v
  ; 6 bits: 0-9, a-z, A-Z, "-", ","
  session.hash_bits_per_character = 5
  ; The URL rewriter will look for URLs in a defined set of HTML tags.
  ; form/fieldset are special; if you include them here, the rewriter will
  ; add a hidden <input> field with the info which is otherwise appended
  ; to URLs. If you want XHTML conformity, remove the form entry.
  ; Note that all valid entries require a "=", even if no value follows.
  url_rewriter.tags = "a=href,area=href,frame=src,input=src,form=fakeentry"
  [MSSQL]
  ; Allow or prevent persistent links.
  mssql.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  mssql.max_persistent = -1
  ; Maximum number of links (persistent+non persistent). -1 means no limit.
  mssql.max_links = -1
  ; Minimum error severity to display.
  mssql.min_error_severity = 10
  ; Minimum message severity to display.
  mssql.min_message_severity = 10
  ; Compatibility mode with old versions of PHP 3.0.
  mssql.compatability_mode = Off
  ; Connect timeout
  ;mssql.connect_timeout = 5
  ; Query timeout
  ;mssql.timeout = 60
  ; Valid range 0 - 2147483647. Default = 4096.
  ;mssql.textlimit = 4096
  ; Valid range 0 - 2147483647. Default = 4096.
  ;mssql.textsize = 4096
  ; Limits the number of records in each batch. 0 = all records in one batch.
  ;mssql.batchsize = 0
  ; Specify how datetime and datetim4 columns are returned
  ; On => Returns data converted to SQL server settings
  ; Off => Returns values as YYYY-MM-DD hh:mm:ss
  ;mssql.datetimeconvert = On
  ; Use NT authentication when connecting to the server
  mssql.secure_connection = Off
  ; Specify max number of processes. -1 = library default
  ; msdlib defaults to 25
  ; FreeTDS defaults to 4096
  ;mssql.max_procs = -1
  ; Specify client character set.
  ; If empty or not set the client charset from freetds.comf is used
  ; This is only used when compiled with FreeTDS
  ;mssql.charset = "ISO-8859-1"
  [Assertion]
  ; Assert(expr); active by default.
  ;assert.active = On
  ; Issue a PHP warning for each failed assertion.
  ;assert.warning = On
  ; Don't bail out by default.
  ;assert.bail = Off
  ; User-function to be called if an assertion fails.
  ;assert.callback = 0
  ; Eval the expression with current error_reporting(). Set to true if you want
  ; error_reporting(0) around the eval().
  ;assert.quiet_eval = 0
  [COM]
  ; path to a file containing GUIDs, IIDs or filenames of files with TypeLibs
  ;com.typelib_file =
  ; allow Distributed-COM calls
  ;com.allow_dcom = true
  ; autoregister constants of a components typlib on com_load()
  ;com.autoregister_typelib = true
  ; register constants casesensitive
  ;com.autoregister_casesensitive = false
  ; show warnings on duplicate constant registrations
  ;com.autoregister_verbose = true
  [mbstring]
  ; language for internal character representation.
  ;mbstring.language = Japanese
  ; internal/script encoding.
  ; Some encoding cannot work as internal encoding.
  ; (e.g. SJIS, BIG5, ISO-2022-*)
  ;mbstring.internal_encoding = EUC-JP
  ; http input encoding.
  ;mbstring.http_input = auto
  ; http output encoding. mb_output_handler must be
  ; registered as output buffer to function
  ;mbstring.http_output = SJIS
  ; enable automatic encoding translation according to
  ; mbstring.internal_encoding setting. Input chars are
  ; converted to internal encoding by setting this to On.
  ; Note: Do _not_ use automatic encoding translation for
  ; portable libs/applications.
  ;mbstring.encoding_translation = Off
  ; automatic encoding detection order.
  ; auto means
  ;mbstring.detect_order = auto
  ; substitute_character used when character cannot be converted
  ; one from another
  ;mbstring.substitute_character = none;
  ; overload(replace) single byte functions by mbstring functions.
  ; mail(), ereg(), etc are overloaded by mb_send_mail(), mb_ereg(),
  ; etc. Possible values are 0,1,2,4 or combination of them.
  ; For example, 7 for overload everything.
  ; 0: No overload
  ; 1: Overload mail() function
  ; 2: Overload str*() functions
  ; 4: Overload ereg*() functions
  ;mbstring.func_overload = 0
  ; enable strict encoding detection.
  ;mbstring.strict_encoding = Off
  [FrontBase]
  ;fbsql.allow_persistent = On
  ;fbsql.autocommit = On
  ;fbsql.show_timestamp_decimals = Off
  ;fbsql.default_database =
  ;fbsql.default_database_password =
  ;fbsql.default_host =
  ;fbsql.default_password =
  ;fbsql.default_user = "_SYSTEM"
  ;fbsql.generate_warnings = Off
  ;fbsql.max_connections = 128
  ;fbsql.max_links = 128
  ;fbsql.max_persistent = -1
  ;fbsql.max_results = 128
  [gd]
  ; Tell the jpeg decode to libjpeg warnings and try to create
  ; a gd image. The warning will then be displayed as notices
  ; disabled by default
  ;gd.jpeg_ignore_warning = 0
  [exif]
  ; Exif UNICODE user comments are handled as UCS-2BE/UCS-2LE and JIS as JIS.
  ; With mbstring support this will automatically be converted into the encoding
  ; given by corresponding encode setting. When empty mbstring.internal_encoding
  ; is used. For the decode settings you can distinguish between motorola and
  ; intel byte order. A decode setting cannot be empty.
  ;exif.encode_unicode = ISO-8859-15
  ;exif.decode_unicode_motorola = UCS-2BE
  ;exif.decode_unicode_intel = UCS-2LE
  ;exif.encode_jis =
  ;exif.decode_jis_motorola = JIS
  ;exif.decode_jis_intel = JIS
  [Tidy]
  ; The path to a default tidy configuration file to use when using tidy
  ;tidy.default_config = /usr/local/lib/php/default.tcfg
  ; Should tidy clean and repair output automatically?
  ; WARNING: Do not use this option if you are generating non-html content
  ; such as dynamic images
  tidy.clean_output = Off
  [soap]
  ; Enables or disables WSDL caching feature.
  soap.wsdl_cache_enabled=1
  ; Sets the directory name where SOAP extension will put cache files.
  soap.wsdl_cache_dir="/tmp"
  ; (time to live) Sets the number of second while cached file will be used
  ; instead of original one.
  soap.wsdl_cache_ttl=86400
  ; available extensions
  ;extension=bcmath.so
  ;extension=bz2.so
  ;extension=calendar.so
  ;extension=curl.so
  ;extension=dba.so
  ;extension=dbase.so
  ;extension=exif.so
  ;extension=ftp.so
  ;extension=gd.so
  extension=gettext.so
  ;extension=gmp.so
  ;extension=iconv.so
  ;extension=imap.so
  ;extension=json.so
  ;extension=ldap.so
  ;extension=mcrypt.so
  ;extension=mhash.so
  ;extension=mime_magic.so
  ;extension=mysql.so
  ;extension=mysqli.so
  ;extension=ncurses.so
  ;extension=odbc.so
  ;extension=openssl.so
  ;extension=pdo.so
  ;extension=pdo_mysql.so
  ;extension=pdo_odbc.so
  ;extension=pdo_pgsql.so
  ;extension=pdo_sqlite.so
  ;extension=pgsql.so
  ;extension=posix.so
  ;extension=pspell.so
  extension=session.so
  ;extension=shmop.so
  ;extension=snmp.so
  ;extension=soap.so
  extension=sockets.so
  extension=sqlite.so
  ;extension=sysvmsg.so
  ;extension=sysvsem.so
  ;extension=sysvshm.so
  ;extension=tidy.so
  ;extension=xmlrpc.so
  ;extension=xsl.so
  ;extension=zip.so
  extension=zlib.so
  ; Local Variables:
  ; tab-width: 4
  ; End:
  I've attempted enabling pdo.so and pdo_sqlite.so as well, with no results, making sure to stop lighty and flush all of its processes before checking again.
  `php-cgi -m | grep sqlite` does not return anything, either.
  The extensions directory (/usr/lib/php/20060613) exists on my system and contains sqlite.so, as expected.
  I have no clue what's going on here and would greatly appreciate any help offered.
  Last edited by xelados (2009-09-23 04:02:22)

  After the last update which installed PHP 5.3.0, I'm having a similar problem. PHP fails to recognize any extensions which I've defined in php.ini. PHP itself works just fine, so I'm sure this problem is related to the update of PHP.
  Here's my php.ini:
  [PHP]
  ; About php.ini ;
  ; This file controls many aspects of PHP's behavior. In order for PHP to
  ; read it, it must be named 'php.ini'. PHP looks for it in the current
  ; working directory, in the path designated by the environment variable
  ; PHPRC, and in the path that was defined in compile time (in that order).
  ; The path in which the php.ini file is looked for can be overridden using
  ; the -c argument in command line mode.
  ; The syntax of the file is extremely simple. Whitespace and Lines
  ; beginning with a semicolon are silently ignored (as you probably guessed).
  ; Section headers (e.g. [Foo]) are also silently ignored, even though
  ; they might mean something in the future.
  ; Directives are specified using the following syntax:
  ; directive = value
  ; Directive names are *case sensitive* - foo=bar is different from FOO=bar.
  ; The value can be a string, a number, a PHP constant (e.g. E_ALL or M_PI), one
  ; of the INI constants (On, Off, True, False, Yes, No and None) or an expression
  ; (e.g. E_ALL & ~E_NOTICE), or a quoted string ("foo").
  ; Expressions in the INI file are limited to bitwise operators and parentheses:
  ; | bitwise OR
  ; & bitwise AND
  ; ~ bitwise NOT
  ; ! boolean NOT
  ; Boolean flags can be turned on using the values 1, On, True or Yes.
  ; They can be turned off using the values 0, Off, False or No.
  ; An empty string can be denoted by simply not writing anything after the equal
  ; sign, or by using the None keyword:
  ; foo = ; sets foo to an empty string
  ; foo = none ; sets foo to an empty string
  ; foo = "none" ; sets foo to the string 'none'
  ; If you use constants in your value, and these constants belong to a
  ; dynamically loaded extension (either a PHP extension or a Zend extension),
  ; you may only use these constants *after* the line that loads the extension.
  ; About this file ;
  ; This is the recommended, PHP 5-style version of the php.ini-dist file. It
  ; sets some non standard settings, that make PHP more efficient, more secure,
  ; and encourage cleaner coding.
  ; The price is that with these settings, PHP may be incompatible with some
  ; applications, and sometimes, more difficult to develop with. Using this
  ; file is warmly recommended for production sites. As all of the changes from
  ; the standard settings are thoroughly documented, you can go over each one,
  ; and decide whether you want to use it or not.
  ; For general information about the php.ini file, please consult the php.ini-dist
  ; file, included in your PHP distribution.
  ; This file is different from the php.ini-dist file in the fact that it features
  ; different values for several directives, in order to improve performance, while
  ; possibly breaking compatibility with the standard out-of-the-box behavior of
  ; PHP. Please make sure you read what's different, and modify your scripts
  ; accordingly, if you decide to use this file instead.
  ; - register_long_arrays = Off [Performance]
  ; Disables registration of the older (and deprecated) long predefined array
  ; variables ($HTTP_*_VARS). Instead, use the superglobals that were
  ; introduced in PHP 4.1.0
  ; - display_errors = Off [Security]
  ; With this directive set to off, errors that occur during the execution of
  ; scripts will no longer be displayed as a part of the script output, and thus,
  ; will no longer be exposed to remote users. With some errors, the error message
  ; content may expose information about your script, web server, or database
  ; server that may be exploitable for hacking. Production sites should have this
  ; directive set to off.
  ; - log_errors = On [Security]
  ; This directive complements the above one. Any errors that occur during the
  ; execution of your script will be logged (typically, to your server's error log,
  ; but can be configured in several ways). Along with setting display_errors to off,
  ; this setup gives you the ability to fully understand what may have gone wrong,
  ; without exposing any sensitive information to remote users.
  ; - output_buffering = 4096 [Performance]
  ; Set a 4KB output buffer. Enabling output buffering typically results in less
  ; writes, and sometimes less packets sent on the wire, which can often lead to
  ; better performance. The gain this directive actually yields greatly depends
  ; on which Web server you're working with, and what kind of scripts you're using.
  ; - register_argc_argv = Off [Performance]
  ; Disables registration of the somewhat redundant $argv and $argc global
  ; variables.
  ; - magic_quotes_gpc = Off [Performance]
  ; Input data is no longer escaped with slashes so that it can be sent into
  ; SQL databases without further manipulation. Instead, you should use the
  ; function addslashes() on each input element you wish to send to a database.
  ; - variables_order = "GPCS" [Performance]
  ; The environment variables are not hashed into the $_ENV. To access
  ; environment variables, you can use getenv() instead.
  ; - error_reporting = E_ALL [Code Cleanliness, Security(?)]
  ; By default, PHP suppresses errors of type E_NOTICE. These error messages
  ; are emitted for non-critical errors, but that could be a symptom of a bigger
  ; problem. Most notably, this will cause error messages about the use
  ; of uninitialized variables to be displayed.
  ; - allow_call_time_pass_reference = Off [Code cleanliness]
  ; It's not possible to decide to force a variable to be passed by reference
  ; when calling a function. The PHP 4 style to do this is by making the
  ; function require the relevant argument by reference.
  ; - short_open_tag = Off [Portability]
  ; Using short tags is discouraged when developing code meant for redistribution
  ; since short tags may not be supported on the target server.
  ; Language Options ;
  ; Enable the PHP scripting language engine under Apache.
  engine = On
  ; Enable compatibility mode with Zend Engine 1 (PHP 4.x)
  zend.ze1_compatibility_mode = Off
  ; Allow the <? tag. Otherwise, only <?php and <script> tags are recognized.
  ; NOTE: Using short tags should be avoided when developing applications or
  ; libraries that are meant for redistribution, or deployment on PHP
  ; servers which are not under your control, because short tags may not
  ; be supported on the target server. For portable, redistributable code,
  ; be sure not to use short tags.
  short_open_tag = Off
  ; Allow ASP-style <% %> tags.
  asp_tags = Off
  ; The number of significant digits displayed in floating point numbers.
  precision = 14
  ; Enforce year 2000 compliance (will cause problems with non-compliant browsers)
  y2k_compliance = On
  ; Output buffering allows you to send header lines (including cookies) even
  ; after you send body content, at the price of slowing PHP's output layer a
  ; bit. You can enable output buffering during runtime by calling the output
  ; buffering functions. You can also enable output buffering for all files by
  ; setting this directive to On. If you wish to limit the size of the buffer
  ; to a certain size - you can use a maximum number of bytes instead of 'On', as
  ; a value for this directive (e.g., output_buffering=4096).
  output_buffering = Off
  ; You can redirect all of the output of your scripts to a function. For
  ; example, if you set output_handler to "mb_output_handler", character
  ; encoding will be transparently converted to the specified encoding.
  ; Setting any output handler automatically turns on output buffering.
  ; Note: People who wrote portable scripts should not depend on this ini
  ; directive. Instead, explicitly set the output handler using ob_start().
  ; Using this ini directive may cause problems unless you know what script
  ; is doing.
  ; Note: You cannot use both "mb_output_handler" with "ob_iconv_handler"
  ; and you cannot use both "ob_gzhandler" and "zlib.output_compression".
  ; Note: output_handler must be empty if this is set 'On' !!!!
  ; Instead you must use zlib.output_handler.
  ;output_handler =
  ; Transparent output compression using the zlib library
  ; Valid values for this option are 'off', 'on', or a specific buffer size
  ; to be used for compression (default is 4KB)
  ; Note: Resulting chunk size may vary due to nature of compression. PHP
  ; outputs chunks that are few hundreds bytes each as a result of
  ; compression. If you prefer a larger chunk size for better
  ; performance, enable output_buffering in addition.
  ; Note: You need to use zlib.output_handler instead of the standard
  ; output_handler, or otherwise the output will be corrupted.
  zlib.output_compression = Off
  ;zlib.output_compression_level = -1
  ; You cannot specify additional output handlers if zlib.output_compression
  ; is activated here. This setting does the same as output_handler but in
  ; a different order.
  ;zlib.output_handler =
  ; Implicit flush tells PHP to tell the output layer to flush itself
  ; automatically after every output block. This is equivalent to calling the
  ; PHP function flush() after each and every call to print() or echo() and each
  ; and every HTML block. Turning this option on has serious performance
  ; implications and is generally recommended for debugging purposes only.
  implicit_flush = Off
  ; The unserialize callback function will be called (with the undefined class'
  ; name as parameter), if the unserializer finds an undefined class
  ; which should be instantiated.
  ; A warning appears if the specified function is not defined, or if the
  ; function doesn't include/implement the missing class.
  ; So only set this entry, if you really want to implement such a
  ; callback-function.
  unserialize_callback_func=
  ; When floats & doubles are serialized store serialize_precision significant
  ; digits after the floating point. The default value ensures that when floats
  ; are decoded with unserialize, the data will remain the same.
  serialize_precision = 100
  ; Whether to enable the ability to force arguments to be passed by reference
  ; at function call time. This method is deprecated and is likely to be
  ; unsupported in future versions of PHP/Zend. The encouraged method of
  ; specifying which arguments should be passed by reference is in the function
  ; declaration. You're encouraged to try and turn this option Off and make
  ; sure your scripts work properly with it in order to ensure they will work
  ; with future versions of the language (you will receive a warning each time
  ; you use this feature, and the argument will be passed by value instead of by
  ; reference).
  allow_call_time_pass_reference = Off
  ; Safe Mode
  safe_mode = Off
  ; By default, Safe Mode does a UID compare check when
  ; opening files. If you want to relax this to a GID compare,
  ; then turn on safe_mode_gid.
  safe_mode_gid = Off
  ; When safe_mode is on, UID/GID checks are bypassed when
  ; including files from this directory and its subdirectories.
  ; (directory must also be in include_path or full path must
  ; be used when including)
  safe_mode_include_dir =
  ; When safe_mode is on, only executables located in the safe_mode_exec_dir
  ; will be allowed to be executed via the exec family of functions.
  safe_mode_exec_dir =
  ; Setting certain environment variables may be a potential security breach.
  ; This directive contains a comma-delimited list of prefixes. In Safe Mode,
  ; the user may only alter environment variables whose names begin with the
  ; prefixes supplied here. By default, users will only be able to set
  ; environment variables that begin with PHP_ (e.g. PHP_FOO=BAR).
  ; Note: If this directive is empty, PHP will let the user modify ANY
  ; environment variable!
  safe_mode_allowed_env_vars = PHP_
  ; This directive contains a comma-delimited list of environment variables that
  ; the end user won't be able to change using putenv(). These variables will be
  ; protected even if safe_mode_allowed_env_vars is set to allow to change them.
  safe_mode_protected_env_vars = LD_LIBRARY_PATH
  ; open_basedir, if set, limits all file operations to the defined directory
  ; and below. This directive makes most sense if used in a per-directory
  ; or per-virtualhost web server configuration file. This directive is
  ; *NOT* affected by whether Safe Mode is turned On or Off.
  ; open_basedir = /srv/http/:/home/:/tmp/:/usr/share/pear/
  ; This directive allows you to disable certain functions for security reasons.
  ; It receives a comma-delimited list of function names. This directive is
  ; *NOT* affected by whether Safe Mode is turned On or Off.
  disable_functions =
  ; This directive allows you to disable certain classes for security reasons.
  ; It receives a comma-delimited list of class names. This directive is
  ; *NOT* affected by whether Safe Mode is turned On or Off.
  disable_classes =
  ; Colors for Syntax Highlighting mode. Anything that's acceptable in
  ; <span style="color: ???????"> would work.
  ;highlight.string = #DD0000
  ;highlight.comment = #FF9900
  ;highlight.keyword = #007700
  ;highlight.bg = #FFFFFF
  ;highlight.default = #0000BB
  ;highlight.html = #000000
  ; If enabled, the request will be allowed to complete even if the user aborts
  ; the request. Consider enabling it if executing long request, which may end up
  ; being interrupted by the user or a browser timing out.
  ; ignore_user_abort = On
  ; Determines the size of the realpath cache to be used by PHP. This value should
  ; be increased on systems where PHP opens many files to reflect the quantity of
  ; the file operations performed.
  ; realpath_cache_size=16k
  ; Duration of time, in seconds for which to cache realpath information for a given
  ; file or directory. For systems with rarely changing files, consider increasing this
  ; value.
  ; realpath_cache_ttl=120
  ; Misc
  ; Decides whether PHP may expose the fact that it is installed on the server
  ; (e.g. by adding its signature to the Web server header). It is no security
  ; threat in any way, but it makes it possible to determine whether you use PHP
  ; on your server or not.
  expose_php = Off
  ; Resource Limits ;
  max_execution_time = 120 ; Maximum execution time of each script, in seconds
  max_input_time = 120 ; Maximum amount of time each script may spend parsing request data
  ;max_input_nesting_level = 64 ; Maximum input variable nesting level
  memory_limit = 128M ; Maximum amount of memory a script may consume (32MB)
  ; Error handling and logging ;
  ; error_reporting is a bit-field. Or each number up to get desired error
  ; reporting level
  ; E_ALL - All errors and warnings (doesn't include E_STRICT)
  ; E_ERROR - fatal run-time errors
  ; E_RECOVERABLE_ERROR - almost fatal run-time errors
  ; E_WARNING - run-time warnings (non-fatal errors)
  ; E_PARSE - compile-time parse errors
  ; E_NOTICE - run-time notices (these are warnings which often result
  ; from a bug in your code, but it's possible that it was
  ; intentional (e.g., using an uninitialized variable and
  ; relying on the fact it's automatically initialized to an
  ; empty string)
  ; E_STRICT - run-time notices, enable to have PHP suggest changes
  ; to your code which will ensure the best interoperability
  ; and forward compatibility of your code
  ; E_CORE_ERROR - fatal errors that occur during PHP's initial startup
  ; E_CORE_WARNING - warnings (non-fatal errors) that occur during PHP's
  ; initial startup
  ; E_COMPILE_ERROR - fatal compile-time errors
  ; E_COMPILE_WARNING - compile-time warnings (non-fatal errors)
  ; E_USER_ERROR - user-generated error message
  ; E_USER_WARNING - user-generated warning message
  ; E_USER_NOTICE - user-generated notice message
  ; Examples:
  ; - Show all errors, except for notices and coding standards warnings
  ;error_reporting = E_ALL & ~E_NOTICE
  ; - Show all errors, except for notices
  ;error_reporting = E_ALL & ~E_NOTICE | E_STRICT
  ; - Show only errors
  ;error_reporting = E_COMPILE_ERROR|E_RECOVERABLE_ERROR|E_ERROR|E_CORE_ERROR
  ; - Show all errors, except coding standards warnings
  error_reporting = E_ALL
  ; Print out errors (as a part of the output). For production web sites,
  ; you're strongly encouraged to turn this feature off, and use error logging
  ; instead (see below). Keeping display_errors enabled on a production web site
  ; may reveal security information to end users, such as file paths on your Web
  ; server, your database schema or other information.
  ; possible values for display_errors:
  ; Off - Do not display any errors
  ; stderr - Display errors to STDERR (affects only CGI/CLI binaries!)
  ; On or stdout - Display errors to STDOUT (default)
  ; To output errors to STDERR with CGI/CLI:
  ;display_errors = "stderr"
  ; Default
  display_errors = On
  ; Even when display_errors is on, errors that occur during PHP's startup
  ; sequence are not displayed. It's strongly recommended to keep
  ; display_startup_errors off, except for when debugging.
  display_startup_errors = Off
  ; Log errors into a log file (server-specific log, stderr, or error_log (below))
  ; As stated above, you're strongly advised to use error logging in place of
  ; error displaying on production web sites.
  log_errors = Off
  ; Set maximum length of log_errors. In error_log information about the source is
  ; added. The default is 1024 and 0 allows to not apply any maximum length at all.
  log_errors_max_len = 1024
  ; Do not log repeated messages. Repeated errors must occur in same file on same
  ; line until ignore_repeated_source is set true.
  ignore_repeated_errors = Off
  ; Ignore source of message when ignoring repeated messages. When this setting
  ; is On you will not log errors with repeated messages from different files or
  ; source lines.
  ignore_repeated_source = Off
  ; If this parameter is set to Off, then memory leaks will not be shown (on
  ; stdout or in the log). This has only effect in a debug compile, and if
  ; error reporting includes E_WARNING in the allowed list
  report_memleaks = Off
  ;report_zend_debug = 0
  ; Store the last error/warning message in $php_errormsg (boolean).
  track_errors = Off
  ; Disable the inclusion of HTML tags in error messages.
  ; Note: Never use this feature for production boxes.
  ;html_errors = Off
  ; If html_errors is set On PHP produces clickable error messages that direct
  ; to a page describing the error or function causing the error in detail.
  ; You can download a copy of the PHP manual from http://www.php.net/docs.php
  ; and change docref_root to the base URL of your local copy including the
  ; leading '/'. You must also specify the file extension being used including
  ; the dot.
  ; Note: Never use this feature for production boxes.
  ;docref_root = "/phpmanual/"
  ;docref_ext = .html
  ; String to output before an error message.
  ;error_prepend_string = "<font color=ff0000>"
  ; String to output after an error message.
  ;error_append_string = "</font>"
  ; Log errors to specified file.
  ;error_log = filename
  ; Log errors to syslog.
  error_log = syslog
  ; Data Handling ;
  ; Note - track_vars is ALWAYS enabled as of PHP 4.0.3
  ; The separator used in PHP generated URLs to separate arguments.
  ; Default is "&".
  ;arg_separator.output = "&"
  ; List of separator(s) used by PHP to parse input URLs into variables.
  ; Default is "&".
  ; NOTE: Every character in this directive is considered as separator!
  ;arg_separator.input = ";&"
  ; This directive describes the order in which PHP registers GET, POST, Cookie,
  ; Environment and Built-in variables (G, P, C, E & S respectively, often
  ; referred to as EGPCS or GPC). Registration is done from left to right, newer
  ; values override older values.
  variables_order = "GPCS"
  ; Whether or not to register the EGPCS variables as global variables. You may
  ; want to turn this off if you don't want to clutter your scripts' global scope
  ; with user data. This makes most sense when coupled with track_vars - in which
  ; case you can access all of the GPC variables through the $HTTP_*_VARS[],
  ; variables.
  ; You should do your best to write your scripts so that they do not require
  ; register_globals to be on; Using form variables as globals can easily lead
  ; to possible security problems, if the code is not very well thought of.
  register_globals = Off
  ; Whether or not to register the old-style input arrays, HTTP_GET_VARS
  ; and friends. If you're not using them, it's recommended to turn them off,
  ; for performance reasons.
  register_long_arrays = Off
  ; This directive tells PHP whether to declare the argv&argc variables (that
  ; would contain the GET information). If you don't use these variables, you
  ; should turn it off for increased performance.
  register_argc_argv = Off
  ; When enabled, the SERVER and ENV variables are created when they're first
  ; used (Just In Time) instead of when the script starts. If these variables
  ; are not used within a script, having this directive on will result in a
  ; performance gain. The PHP directives register_globals, register_long_arrays,
  ; and register_argc_argv must be disabled for this directive to have any affect.
  auto_globals_jit = On
  ; Maximum size of POST data that PHP will accept.
  post_max_size = 128M
  ; Magic quotes
  ; Magic quotes for incoming GET/POST/Cookie data.
  magic_quotes_gpc = Off
  ; Magic quotes for runtime-generated data, e.g. data from SQL, from exec(), etc.
  magic_quotes_runtime = Off
  ; Use Sybase-style magic quotes (escape ' with '' instead of \').
  magic_quotes_sybase = Off
  ; Automatically add files before or after any PHP document.
  auto_prepend_file =
  auto_append_file =
  ; As of 4.0b4, PHP always outputs a character encoding by default in
  ; the Content-type: header. To disable sending of the charset, simply
  ; set it to be empty.
  ; PHP's built-in default is text/html
  default_mimetype = "text/html"
  ;default_charset = "iso-8859-1"
  ; Always populate the $HTTP_RAW_POST_DATA variable.
  ;always_populate_raw_post_data = On
  ; Paths and Directories ;
  ; UNIX: "/path1:/path2"
  ;include_path = ".:/usr/share/pear"
  ; The root of the PHP pages, used only if nonempty.
  ; if PHP was not compiled with FORCE_REDIRECT, you SHOULD set doc_root
  ; if you are running php as a CGI under any web server (other than IIS)
  ; see documentation for security issues. The alternate is to use the
  ; cgi.force_redirect configuration below
  doc_root =
  ; The directory under which PHP opens the script using /~username used only
  ; if nonempty.
  user_dir =
  ; Directory in which the loadable extensions (modules) reside.
  extension_dir = "/usr/lib/php/modules/"
  ; Whether or not to enable the dl() function. The dl() function does NOT work
  ; properly in multithreaded servers, such as IIS or Zeus, and is automatically
  ; disabled on them.
  enable_dl = Off
  ; cgi.force_redirect is necessary to provide security running PHP as a CGI under
  ; most web servers. Left undefined, PHP turns this on by default. You can
  ; turn it off here AT YOUR OWN RISK
  ; **You CAN safely turn this off for IIS, in fact, you MUST.**
  ; cgi.force_redirect = 1
  ; if cgi.nph is enabled it will force cgi to always sent Status: 200 with
  ; every request.
  ; cgi.nph = 1
  ; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape
  ; (iPlanet) web servers, you MAY need to set an environment variable name that PHP
  ; will look for to know it is OK to continue execution. Setting this variable MAY
  ; cause security issues, KNOW WHAT YOU ARE DOING FIRST.
  ; cgi.redirect_status_env = ;
  ; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's
  ; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok
  ; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting
  ; this to 1 will cause PHP CGI to fix it's paths to conform to the spec. A setting
  ; of zero causes PHP to behave as before. Default is 1. You should fix your scripts
  ; to use SCRIPT_FILENAME rather than PATH_TRANSLATED.
  ; cgi.fix_pathinfo=1
  ; FastCGI under IIS (on WINNT based OS) supports the ability to impersonate
  ; security tokens of the calling client. This allows IIS to define the
  ; security context that the request runs under. mod_fastcgi under Apache
  ; does not currently support this feature (03/17/2002)
  ; Set to 1 if running under IIS. Default is zero.
  ; fastcgi.impersonate = 1;
  ; Disable logging through FastCGI connection
  ; fastcgi.logging = 0
  ; cgi.rfc2616_headers configuration option tells PHP what type of headers to
  ; use when sending HTTP response code. If it's set 0 PHP sends Status: header that
  ; is supported by Apache. When this option is set to 1 PHP will send
  ; RFC2616 compliant header.
  ; Default is zero.
  ;cgi.rfc2616_headers = 0
  ; File Uploads ;
  ; Whether to allow HTTP file uploads.
  file_uploads = On
  ; Temporary directory for HTTP uploaded files (will use system default if not
  ; specified).
  ;upload_tmp_dir =
  ; Maximum allowed size for uploaded files.
  upload_max_filesize = 128M
  ; Fopen wrappers ;
  ; Whether to allow the treatment of URLs (like http:// or ftp://) as files.
  allow_url_fopen = On
  ; Whether to allow include/require to open URLs (like http:// or ftp://) as files.
  allow_url_include = Off
  ; Define the anonymous ftp password (your email address)
  ;from="[email protected]"
  ; Define the User-Agent string
  ; user_agent="PHP"
  ; Default timeout for socket based streams (seconds)
  default_socket_timeout = 10
  ; Dynamic Extensions ;
  ; If you wish to have an extension loaded automatically, use the following
  ; syntax:
  ; extension=modulename.extension
  ; For example, under UNIX:
  ; extension=msql.so
  ; Note that it should be the name of the module only; no directory information
  ; needs to go here. Specify the location of the extension with the
  ; extension_dir directive above.
  ; Module Settings ;
  [Date]
  ; Defines the default timezone used by the date functions
  ;date.timezone =
  ;date.default_latitude = 31.7667
  ;date.default_longitude = 35.2333
  ;date.sunrise_zenith = 90.583333
  ;date.sunset_zenith = 90.583333
  [filter]
  ;filter.default = unsafe_raw
  ;filter.default_flags =
  [iconv]
  ;iconv.input_encoding = ISO-8859-1
  ;iconv.internal_encoding = ISO-8859-1
  ;iconv.output_encoding = ISO-8859-1
  [sqlite]
  ;sqlite.assoc_case = 0
  [xmlrpc]
  ;xmlrpc_error_number = 0
  ;xmlrpc_errors = 0
  [Pcre]
  ;PCRE library backtracking limit.
  ;pcre.backtrack_limit=100000
  ;PCRE library recursion limit.
  ;Please note that if you set this value to a high number you may consume all
  ;the available process stack and eventually crash PHP (due to reaching the
  ;stack size limit imposed by the Operating System).
  ;pcre.recursion_limit=100000
  [Syslog]
  ; Whether or not to define the various syslog variables (e.g. $LOG_PID,
  ; $LOG_CRON, etc.). Turning it off is a good idea performance-wise. In
  ; runtime, you can define these variables by calling define_syslog_variables().
  define_syslog_variables = Off
  [mail function]
  ; For Unix only. You may supply arguments as well (default: "sendmail -t -i").
  ;sendmail_path =
  ; Force the addition of the specified parameters to be passed as extra parameters
  ; to the sendmail binary. These parameters will always replace the value of
  ; the 5th parameter to mail(), even in safe mode.
  ;mail.force_extra_parameters =
  [SQL]
  sql.safe_mode = Off
  [ODBC]
  ;odbc.default_db = Not yet implemented
  ;odbc.default_user = Not yet implemented
  ;odbc.default_pw = Not yet implemented
  ; Allow or prevent persistent links.
  odbc.allow_persistent = On
  ; Check that a connection is still valid before reuse.
  odbc.check_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  odbc.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  odbc.max_links = -1
  ; Handling of LONG fields. Returns number of bytes to variables. 0 means
  ; passthru.
  odbc.defaultlrl = 4096
  ; Handling of binary data. 0 means passthru, 1 return as is, 2 convert to char.
  ; See the documentation on odbc_binmode and odbc_longreadlen for an explanation
  ; of uodbc.defaultlrl and uodbc.defaultbinmode
  odbc.defaultbinmode = 1
  [MySQL]
  ; Allow or prevent persistent links.
  mysql.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  mysql.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  mysql.max_links = -1
  ; Default port number for mysql_connect(). If unset, mysql_connect() will use
  ; the $MYSQL_TCP_PORT or the mysql-tcp entry in /etc/services or the
  ; compile-time value defined MYSQL_PORT (in that order).
  mysql.default_port =
  ; Default socket name for local MySQL connects. If empty, uses the built-in
  ; MySQL defaults.
  mysql.default_socket =
  ; Default host for mysql_connect() (doesn't apply in safe mode).
  mysql.default_host =
  ; Default user for mysql_connect() (doesn't apply in safe mode).
  mysql.default_user =
  ; Default password for mysql_connect() (doesn't apply in safe mode).
  ; Note that this is generally a *bad* idea to store passwords in this file.
  ; *Any* user with PHP access can run 'echo get_cfg_var("mysql.default_password")
  ; and reveal this password! And of course, any users with read access to this
  ; file will be able to reveal the password as well.
  mysql.default_password =
  ; Maximum time (in seconds) for connect timeout. -1 means no limit
  mysql.connect_timeout = 60
  ; Trace mode. When trace_mode is active (=On), warnings for table/index scans and
  ; SQL-Errors will be displayed.
  mysql.trace_mode = Off
  [MySQLi]
  ; Maximum number of links. -1 means no limit.
  mysqli.max_links = -1
  ; Default port number for mysqli_connect(). If unset, mysqli_connect() will use
  ; the $MYSQL_TCP_PORT or the mysql-tcp entry in /etc/services or the
  ; compile-time value defined MYSQL_PORT (in that order).
  mysqli.default_port = 3306
  ; Default socket name for local MySQL connects. If empty, uses the built-in
  ; MySQL defaults.
  mysqli.default_socket =
  ; Default host for mysql_connect() (doesn't apply in safe mode).
  mysqli.default_host =
  ; Default user for mysql_connect() (doesn't apply in safe mode).
  mysqli.default_user =
  ; Default password for mysqli_connect() (doesn't apply in safe mode).
  ; Note that this is generally a *bad* idea to store passwords in this file.
  ; *Any* user with PHP access can run 'echo get_cfg_var("mysqli.default_pw")
  ; and reveal this password! And of course, any users with read access to this
  ; file will be able to reveal the password as well.
  mysqli.default_pw =
  ; Allow or prevent reconnect
  mysqli.reconnect = Off
  [mSQL]
  ; Allow or prevent persistent links.
  msql.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  msql.max_persistent = -1
  ; Maximum number of links (persistent+non persistent). -1 means no limit.
  msql.max_links = -1
  [OCI8]
  ; enables privileged connections using external credentials (OCI_SYSOPER, OCI_SYSDBA)
  ;oci8.privileged_connect = Off
  ; Connection: The maximum number of persistent OCI8 connections per
  ; process. Using -1 means no limit.
  ;oci8.max_persistent = -1
  ; Connection: The maximum number of seconds a process is allowed to
  ; maintain an idle persistent connection. Using -1 means idle
  ; persistent connections will be maintained forever.
  ;oci8.persistent_timeout = -1
  ; Connection: The number of seconds that must pass before issuing a
  ; ping during oci_pconnect() to check the connection validity. When
  ; set to 0, each oci_pconnect() will cause a ping. Using -1 disables
  ; pings completely.
  ;oci8.ping_interval = 60
  ; Tuning: This option enables statement caching, and specifies how
  ; many statements to cache. Using 0 disables statement caching.
  ;oci8.statement_cache_size = 20
  ; Tuning: Enables statement prefetching and sets the default number of
  ; rows that will be fetched automatically after statement execution.
  ;oci8.default_prefetch = 10
  ; Compatibility. Using On means oci_close() will not close
  ; oci_connect() and oci_new_connect() connections.
  ;oci8.old_oci_close_semantics = Off
  [PostgresSQL]
  ; Allow or prevent persistent links.
  pgsql.allow_persistent = On
  ; Detect broken persistent links always with pg_pconnect().
  ; Auto reset feature requires a little overheads.
  pgsql.auto_reset_persistent = Off
  ; Maximum number of persistent links. -1 means no limit.
  pgsql.max_persistent = -1
  ; Maximum number of links (persistent+non persistent). -1 means no limit.
  pgsql.max_links = -1
  ; Ignore PostgreSQL backends Notice message or not.
  ; Notice message logging require a little overheads.
  pgsql.ignore_notice = 0
  ; Log PostgreSQL backends Noitce message or not.
  ; Unless pgsql.ignore_notice=0, module cannot log notice message.
  pgsql.log_notice = 0
  [Sybase]
  ; Allow or prevent persistent links.
  sybase.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  sybase.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  sybase.max_links = -1
  ;sybase.interface_file = "/usr/sybase/interfaces"
  ; Minimum error severity to display.
  sybase.min_error_severity = 10
  ; Minimum message severity to display.
  sybase.min_message_severity = 10
  ; Compatibility mode with old versions of PHP 3.0.
  ; If on, this will cause PHP to automatically assign types to results according
  ; to their Sybase type, instead of treating them all as strings. This
  ; compatibility mode will probably not stay around forever, so try applying
  ; whatever necessary changes to your code, and turn it off.
  sybase.compatability_mode = Off
  [Sybase-CT]
  ; Allow or prevent persistent links.
  sybct.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  sybct.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  sybct.max_links = -1
  ; Minimum server message severity to display.
  sybct.min_server_severity = 10
  ; Minimum client message severity to display.
  sybct.min_client_severity = 10
  [bcmath]
  ; Number of decimal digits for all bcmath functions.
  bcmath.scale = 0
  [browscap]
  ;browscap = extra/browscap.ini
  [Informix]
  ; Default host for ifx_connect() (doesn't apply in safe mode).
  ifx.default_host =
  ; Default user for ifx_connect() (doesn't apply in safe mode).
  ifx.default_user =
  ; Default password for ifx_connect() (doesn't apply in safe mode).
  ifx.default_password =
  ; Allow or prevent persistent links.
  ifx.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  ifx.max_persistent = -1
  ; Maximum number of links (persistent + non-persistent). -1 means no limit.
  ifx.max_links = -1
  ; If on, select statements return the contents of a text blob instead of its id.
  ifx.textasvarchar = 0
  ; If on, select statements return the contents of a byte blob instead of its id.
  ifx.byteasvarchar = 0
  ; Trailing blanks are stripped from fixed-length char columns. May help the
  ; life of Informix SE users.
  ifx.charasvarchar = 0
  ; If on, the contents of text and byte blobs are dumped to a file instead of
  ; keeping them in memory.
  ifx.blobinfile = 0
  ; NULL's are returned as empty strings, unless this is set to 1. In that case,
  ; NULL's are returned as string 'NULL'.
  ifx.nullformat = 0
  [Session]
  ; Handler used to store/retrieve data.
  session.save_handler = files
  ; Argument passed to save_handler. In the case of files, this is the path
  ; where data files are stored.
  ; As of PHP 4.0.1, you can define the path as:
  ; session.save_path = "N;/path"
  ; where N is an integer. Instead of storing all the session files in
  ; /path, what this will do is use subdirectories N-levels deep, and
  ; store the session data in those directories. This is useful if you
  ; or your OS have problems with lots of files in one directory, and is
  ; a more efficient layout for servers that handle lots of sessions.
  ; NOTE 1: PHP will not create this directory structure automatically.
  ; You can use the script in the ext/session dir for that purpose.
  ; NOTE 2: See the section on garbage collection below if you choose to
  ; use subdirectories for session storage
  ; The file storage module creates files using mode 600 by default.
  ; You can change that by using
  ; session.save_path = "N;MODE;/path"
  ; where MODE is the octal representation of the mode. Note that this
  ; does not overwrite the process's umask.
  session.save_path = "/www/sessions"
  ; Whether to use cookies.
  session.use_cookies = 1
  ;session.cookie_secure =
  ; This option enables administrators to make their users invulnerable to
  ; attacks which involve passing session ids in URLs; defaults to 0.
  session.use_only_cookies = 1
  ; Name of the session (used as cookie name).
  session.name = ServerSessionIdentifier
  ; Initialize session on request startup.
  session.auto_start = 0
  ; Lifetime in seconds of cookie or, if 0, until browser is restarted.
  session.cookie_lifetime = 0
  ; The path for which the cookie is valid.
  session.cookie_path = /
  ; The domain for which the cookie is valid.
  session.cookie_domain =
  ; Whether or not to add the httpOnly flag to the cookie, which makes it inaccessible to browser scripting languages such as JavaScript.
  session.cookie_httponly = 1
  ; Handler used to serialize data. php is the standard serializer of PHP.
  session.serialize_handler = php
  ; Define the probability that the 'garbage collection' process is started
  ; on every session initialization.
  ; The probability is calculated by using gc_probability/gc_divisor,
  ; e.g. 1/100 means there is a 1% chance that the GC process starts
  ; on each request.
  session.gc_probability = 1
  session.gc_divisor = 30
  ; After this number of seconds, stored data will be seen as 'garbage' and
  ; cleaned up by the garbage collection process.
  session.gc_maxlifetime = 3600
  ; NOTE: If you are using the subdirectory option for storing session files
  ; (see session.save_path above), then garbage collection does *not*
  ; happen automatically. You will need to do your own garbage
  ; collection through a shell script, cron entry, or some other method.
  ; For example, the following script would is the equivalent of
  ; setting session.gc_maxlifetime to 1440 (1440 seconds = 24 minutes):
  ; cd /path/to/sessions; find -cmin +24 | xargs rm
  ; PHP 4.2 and less have an undocumented feature/bug that allows you to
  ; to initialize a session variable in the global scope, albeit register_globals
  ; is disabled. PHP 4.3 and later will warn you, if this feature is used.
  ; You can disable the feature and the warning separately. At this time,
  ; the warning is only displayed, if bug_compat_42 is enabled.
  session.bug_compat_42 = 0
  session.bug_compat_warn = 1
  ; Check HTTP Referer to invalidate externally stored URLs containing ids.
  ; HTTP_REFERER has to contain this substring for the session to be
  ; considered as valid.
  session.referer_check =
  ; How many bytes to read from the file.
  session.entropy_length = 0
  ; Specified here to create the session id.
  session.entropy_file =
  ;session.entropy_length = 16
  ;session.entropy_file = /dev/urandom
  ; Set to {nocache,private,public,} to determine HTTP caching aspects
  ; or leave this empty to avoid sending anti-caching headers.
  session.cache_limiter = none
  ; Document expires after n minutes.
  session.cache_expire = 0
  ; trans sid support is disabled by default.
  ; Use of trans sid may risk your users security.
  ; Use this option with caution.
  ; - User may send URL contains active session ID
  ; to other person via. email/irc/etc.
  ; - URL that contains active session ID may be stored
  ; in publically accessible computer.
  ; - User may access your site with the same session ID
  ; always using URL stored in browser's history or bookmarks.
  session.use_trans_sid = 0
  ; Select a hash function
  ; 0: MD5 (128 bits)
  ; 1: SHA-1 (160 bits)
  session.hash_function = 1
  ; Define how many bits are stored in each character when converting
  ; the binary hash data to something readable.
  ; 4 bits: 0-9, a-f
  ; 5 bits: 0-9, a-v
  ; 6 bits: 0-9, a-z, A-Z, "-", ","
  session.hash_bits_per_character = 6
  ; The URL rewriter will look for URLs in a defined set of HTML tags.
  ; form/fieldset are special; if you include them here, the rewriter will
  ; add a hidden <input> field with the info which is otherwise appended
  ; to URLs. If you want XHTML conformity, remove the form entry.
  ; Note that all valid entries require a "=", even if no value follows.
  ;url_rewriter.tags = "a=href,area=href,frame=src,input=src,form=fakeentry"
  [MSSQL]
  ; Allow or prevent persistent links.
  mssql.allow_persistent = On
  ; Maximum number of persistent links. -1 means no limit.
  mssql.max_persistent = -1
  ; Maximum number of links (persistent+non persistent). -1 means no limit.
  mssql.max_links = -1
  ; Minimum error severity to display.
  mssql.min_error_severity = 10
  ; Minimum message severity to display.
  mssql.min_message_severity = 10
  ; Compatibility mode with old versions of PHP 3.0.
  mssql.compatability_mode = Off
  ; Connect timeout
  ;mssql.connect_timeout = 5
  ; Query timeout
  ;mssql.timeout = 60
  ; Valid range 0 - 2147483647. Default = 4096.
  ;mssql.textlimit = 4096
  ; Valid range 0 - 2147483647. Default = 4096.
  ;mssql.textsize = 4096
  ; Limits the number of records in each batch. 0 = all records in one batch.
  ;mssql.batchsize = 0
  ; Specify how datetime and datetim4 columns are returned
  ; On => Returns data converted to SQL server settings
  ; Off => Returns values as YYYY-MM-DD hh:mm:ss
  ;mssql.datetimeconvert = On
  ; Use NT authentication when connecting to the server
  mssql.secure_connection = Off
  ; Specify max number of processes. -1 = library default
  ; msdlib defaults to 25
  ; FreeTDS defaults to 4096
  ;mssql.max_procs = -1
  ; Specify client character set.
  ; If empty or not set the client charset from freetds.comf is used
  ; This is only used when compiled with FreeTDS
  ;mssql.charset = "ISO-8859-1"
  [Assertion]
  ; Assert(expr); active by default.
  ;assert.active = On
  ; Issue a PHP warning for each failed assertion.
  ;assert.warning = On
  ; Don't bail out by default.
  ;assert.bail = Off
  ; User-function to be called if an assertion fails.
  ;assert.callback = 0
  ; Eval the expression with current error_reporting(). Set to true if you want
  ; error_reporting(0) around the eval().
  ;assert.quiet_eval = 0
  [COM]
  ; path to a file containing GUIDs, IIDs or filenames of files with TypeLibs
  ;com.typelib_file =
  ; allow Distributed-COM calls
  ;com.allow_dcom = true
  ; autoregister constants of a components typlib on com_load()
  ;com.autoregister_typelib = true
  ; register constants casesensitive
  ;com.autoregister_casesensitive = false
  ; show warnings on duplicate constant registrations
  ;com.autoregister_verbose = true
  [mbstring]
  ; language for internal character representation.
  ;mbstring.language = Japanese
  ; internal/script encoding.
  ; Some encoding cannot work as internal encoding.
  ; (e.g. SJIS, BIG5, ISO-2022-*)
  ;mbstring.internal_encoding = EUC-JP
  ; http input encoding.
  ;mbstring.http_input = auto
  ; http output encoding. mb_output_handler must be
  ; registered as output buffer to function
  ;mbstring.http_output = SJIS
  ; enable automatic encoding translation according to
  ; mbstring.internal_encoding setting. Input chars are
  ; converted to internal encoding by setting this to On.
  ; Note: Do _not_ use automatic encoding translation for
  ; portable libs/applications.
  ;mbstring.encoding_translation = Off
  ; automatic encoding detection order.
  ; auto means
  ;mbstring.detect_order = auto
  ; substitute_character used when character cannot be converted
  ; one from another
  ;mbstring.substitute_character = none;
  ; overload(replace) single byte functions by mbstring functions.
  ; mail(), ereg(), etc are overloaded by mb_send_mail(), mb_ereg(),
  ; etc. Possible values are 0,1,2,4 or combination of them.
  ; For example, 7 for overload everything.
  ; 0: No overload
  ; 1: Overload mail() function
  ; 2: Overload str*() functions
  ; 4: Overload ereg*() functions
  ;mbstring.func_overload = 0
  ; enable strict encoding detection.
  ;mbstring.strict_encoding = Off
  [FrontBase]
  ;fbsql.allow_persistent = On
  ;fbsql.autocommit = On
  ;fbsql.show_timestamp_decimals = Off
  ;fbsql.default_database =
  ;fbsql.default_database_password =
  ;fbsql.default_host =
  ;fbsql.default_password =
  ;fbsql.default_user = "_SYSTEM"
  ;fbsql.generate_warnings = Off
  ;fbsql.max_connections = 128
  ;fbsql.max_links = 128
  ;fbsql.max_persistent = -1
  ;fbsql.max_results = 128
  [gd]
  ; Tell the jpeg decode to libjpeg warnings and try to create
  ; a gd image. The warning will then be displayed as notices
  ; disabled by default
  ;gd.jpeg_ignore_warning = 0
  [exif]
  ; Exif UNICODE user comments are handled as UCS-2BE/UCS-2LE and JIS as JIS.
  ; With mbstring support this will automatically be converted into the encoding
  ; given by corresponding encode setting. When empty mbstring.internal_encoding
  ; is used. For the decode settings you can distinguish between motorola and
  ; intel byte order. A decode setting cannot be empty.
  ;exif.encode_unicode = ISO-8859-15
  ;exif.decode_unicode_motorola = UCS-2BE
  ;exif.decode_unicode_intel = UCS-2LE
  ;exif.encode_jis =
  ;exif.decode_jis_motorola = JIS
  ;exif.decode_jis_intel = JIS
  [Tidy]
  ; The path to a default tidy configuration file to use when using tidy
  ;tidy.default_config = /usr/local/lib/php/default.tcfg
  ; Should tidy clean and repair output automatically?
  ; WARNING: Do not use this option if you are generating non-html content
  ; such as dynamic images
  tidy.clean_output = Off
  [soap]
  ; Enables or disables WSDL caching feature.
  soap.wsdl_cache_enabled=1
  ; Sets the directory name where SOAP extension will put cache files.
  soap.wsdl_cache_dir="/tmp"
  ; (time to live) Sets the number of second while cached file will be used
  ; instead of original one.
  soap.wsdl_cache_ttl=86400
  ; available extensions
  ;extension=bcmath.so
  ;extension=bz2.so
  ;extension=calendar.so
  ;extension=curl.so
  ;extension=dba.so
  ;extension=dbase.so
  ;extension=exif.so
  ;extension=ftp.so
  extension=gd.so
  extension=gettext.so
  ;extension=iconv.so
  ;extension=imap.so
  ;extension=json.so
  ;extension=ldap.so
  extension=mcrypt.so
  ;extension=mime_magic.so
  extension=mysql.so
  ;extension=mysqli.so
  ;extension=ncurses.so
  ;extension=odbc.so
  extension=openssl.so
  extension=pdo.so
  extension=pdo_mysql.so
  ;extension=pdo_odbc.so
  ;extension=pdo_pgsql.so
  ;extension=pdo_sqlite.so
  ;extension=pgsql.so
  ;extension=posix.so
  ;extension=pspell.so
  extension=session.so
  ;extension=shmop.so
  ;extension=snmp.so
  ;extension=soap.so
  extension=sockets.so
  ;extension=sqlite.so
  ;extension=sysvmsg.so
  ;extension=sysvsem.so
  ;extension=sysvshm.so
  ;extension=tidy.so
  ;extension=xmlrpc.so
  ;extension=xsl.so
  ;extension=zip.so
  extension=zlib.so
  ; Local Variables:
  ; tab-width: 4
  ; End:
  Some more info:
  [root@Taurine etc]# php-cgi -m
  [PHP Modules]
  cgi-fcgi
  Core
  ctype
  date
  dom
  ereg
  fileinfo
  filter
  gettext
  hash
  libxml
  mbstring
  mysql
  mysqlnd
  openssl
  pcre
  PDO
  pdo_mysql
  Reflection
  session
  SimpleXML
  sockets
  SPL
  standard
  tokenizer
  xml
  xmlreader
  xmlwriter
  zlib
  [Zend Modules]
  [root@Taurine etc]# php-cgi -v
  PHP 5.3.0 with Suhosin-Patch (cgi-fcgi) (built: Sep 16 2009 13:55:34)
  Copyright (c) 1997-2009 The PHP Group
  Zend Engine v2.3.0, Copyright (c) 1998-2009 Zend Technologies
  [root@Taurine etc]# cd /usr/lib/php/modules/
  [root@Taurine modules]# ls -alh
  totalt 3,2M
  drwxr-xr-x 2 root root 4,0K 16 sep 13.57 .
  drwxr-xr-x 4 root root 4,0K 16 sep 13.57 ..
  -rwxr-xr-x 1 root root 27K 16 sep 13.57 bcmath.so
  -rwxr-xr-x 1 root root 21K 16 sep 13.57 bz2.so
  -rwxr-xr-x 1 root root 25K 16 sep 13.57 calendar.so
  -rwxr-xr-x 1 root root 51K 16 sep 13.57 dba.so
  -rwxr-xr-x 1 root root 52K 16 sep 13.57 exif.so
  -rwxr-xr-x 1 root root 46K 16 sep 13.57 ftp.so
  -rwxr-xr-x 1 root root 11K 16 sep 13.57 gettext.so
  -rwxr-xr-x 1 root root 37K 16 sep 13.57 iconv.so
  -rwxr-xr-x 1 root root 1,2M 16 sep 13.57 imap.so
  -rwxr-xr-x 1 root root 35K 16 sep 13.57 json.so
  -rwxr-xr-x 1 root root 43K 16 sep 13.57 mysql.so
  -rwxr-xr-x 1 root root 109K 16 sep 13.57 mysqli.so
  -rwxr-xr-x 1 root root 110K 16 sep 13.57 openssl.so
  -rwxr-xr-x 1 root root 98K 16 sep 13.57 pdo.so
  -rwxr-xr-x 1 root root 24K 16 sep 13.57 pdo_mysql.so
  -rwxr-xr-x 1 root root 286K 16 sep 13.57 phar.so
  -rwxr-xr-x 1 root root 26K 16 sep 13.57 posix.so
  -rwxr-xr-x 1 root root 9,8K 16 sep 13.57 shmop.so
  -rwxr-xr-x 1 root root 356K 16 sep 13.57 soap.so
  -rwxr-xr-x 1 root root 46K 16 sep 13.57 sockets.so
  -rwxr-xr-x 1 root root 355K 16 sep 13.57 sqlite.so
  -rwxr-xr-x 1 root root 15K 16 sep 13.57 sysvmsg.so
  -rwxr-xr-x 1 root root 8,3K 16 sep 13.57 sysvsem.so
  -rwxr-xr-x 1 root root 11K 16 sep 13.57 sysvshm.so
  -rwxr-xr-x 1 root root 79K 16 sep 13.57 xmlrpc.so
  -rwxr-xr-x 1 root root 79K 16 sep 13.57 zip.so
  Last edited by nullvoid (2009-09-22 17:39:47)

• AIR-LAP1242G-E-K9 do not work with AIR-CT5508-K9 while AIR-LAP1142N-E-K9 do

  Hello,
  we do have a site where we need to deploy AIR-LAP1142N-E-K9 and AIR-LAP1242G-E-K9 APs. We have two AIR-CT5508-K9 controllers with SW version                  6.0.188.0.
  AIR-LAP1142N-E-K9s work okay, as expected, we do not have any problems with them.
  However AIR-LAP1242G-E-K9s do not, there is a problem with establishing CAPWAP tunnel with the controller.The AP is seen on the controller for a while, with 0 time up-time, cannot change any settings on the AP via controller, and after a while it disapears from the controller, apears again and this repeats.
  The APs and controllers are connected to the LAN campus.
  Controllers via two 1G links configured as Etherchannel to WS-C6506-E VSS switch with s72033-ipservicesk9_wan-vz.122-33.SXI1.bin on it.
  APs to WS-C3750G-48PS with c3750-ipbasek9-mz.122-50.SE2.bin on it. 3750 is connected to the C6505 via two 1G links configured as Etherchannel.
  Below I copied the log I captured on 1242 and the controller. Highlighted ones are the ones which I think might bring a clue.
  I performed some troubleshooting steps.
  - As we have some other controllers available over WAN, I  tested the 1242 AP  with 2100, 4400 and also with the same model AIR-CT5508-K9 with SW version                  6.0.188.0 over WAN and this worked always okay.
  - I wanted to be sure that I eliminate any kind of out of sequence packet issue, so I brought down all redundancy L2 links so that the L2 path from the AP to the controller was only through one leg links.
  - I also brought the second controller down to eliminate potential issue with having two of them up.
  - The AP gets its IP from DHCP configured on the C6506 switch, I am always able to ssh to AP, so the IP connectivity does not seem to be an issue.
  - I have more 1242s, all behave in the same way. I also connected them to some other 3750 switches we have in the campus, always the same.
  - As this seems to be maybe a kind of ssl issue, I tried to play with controller settings, like enabling Accept... options  under Security/AP Policy,but this did not help.
  - I also tried to reboot the controller, no improvement.
  - The APs came from the factory, so in the beginning everything was factory default in them. They were always able to download the image from the controller in the very initial phase. I still do have some of them untouched, so I can perform any troubleshooting steps with the fresh one.
  I can reproduce this, can also send debugging logs if needed.
  Any idea on what could be wrong is highly appreciated.
  Thank you.
  +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  This Discussion has been converted into document:- https://supportforums.cisco.com/docs/DOC-23054
  ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
  AIR-LAP1242G-E-K9 10.0.13.28 log
  *Mar  1 00:00:05.922: %SOAP_FIPS-2-SELF_TEST_IOS_SUCCESS: IOS crypto FIPS self test passed
  *Mar  1 00:00:07.536: %SOAP_FIPS-2-SELF_TEST_RAD_SUCCESS: RADIO crypto FIPS self test passed on interface Dot1 1Radio 0
  *Mar  1 00:00:07.672: %LWAPP-3-CLIENTEVENTLOG: Read and initialized AP event log (contains, 304 messages)
  *Mar  1 00:00:09.809: %LINK-3-UPDOWN: Interface FastEthernet0, changed state to up
  *Mar  1 00:00:09.874: %SYS-5-RESTART: System restarted --
  Cisco IOS Software, C1240 Software (C1240-K9W8-M), Version 12.4(21a)JA2, RELEASE SOFTWARE (fc1)
  Technical Support: http://www.cisco.com/techsupport
  Copyright (c) 1986-2009 by Cisco Systems, Inc.
  Compiled Mon 02-Nov-09 18:42 by prod_rel_team
  *Mar  1 00:00:09.874: %SNMP-5-COLDSTART: SNMP agent on host wuen4028 is undergoing a cold start
  *Mar  1 00:00:09.964: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
  *Mar  1 00:00:09.967: bsnInitRcbSlot: slot 1 has NO radio
  *Mar  1 00:00:10.191: %SSH-5-ENABLED: SSH 2.0 has been enabled
  *Mar  1 00:00:10.191: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
  *Mar  1 00:00:10.430: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset
  *Mar  1 00:00:10.818: %LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet0, changed state to up
  *Mar  1 00:00:11.212: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down
  *Mar  1 00:00:18.315: %DHCP-6-ADDRESS_ASSIGN: Interface FastEthernet0 assigned DHCP address 10.0.13.28, mask 2 55.255.255.0, hostname wuen4028
  *Mar  1 00:00:28.988: Logging LWAPP message to 255.255.255.255.
  *Mar  1 00:00:31.456: %CDP_PD-4-POWER_OK: Full power - NEGOTIATED inline power source
  *Mar  1 00:00:31.495: %LINK-3-UPDOWN: Interface Dot11Radio0, changed state to up
  *Mar  1 00:00:32.457: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up
  *Mar  1 00:00:32.457: %SYS-6-LOGGINGHOST_STARTSTOP: Logging to host 255.255.255.255 started - CLI initiated
  *Mar  1 00:00:38.810: %CAPWAP-3-ERRORLOG: Did not get log server settings from DHCP.
  *Mar  1 00:00:47.811: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER
  *Mar  1 00:00:56.812: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-LWAPP-CONTROLLER
  *Mar  1 00:01:07.815: %CAPWAP-3-ERRORLOG: Selected MWAR 'wuen4001'(index 0).
  *Mar  1 00:01:07.815: %CAPWAP-3-ERRORLOG: Go join a capwap controller
  *Feb 11 07:52:24.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.0.13.5 peer_port: 5246
  *Feb 11 07:52:24.001: %CAPWAP-5-CHANGED: CAPWAP changed state to
  *Feb 11 07:52:25.441: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 10.0.13.5 peer_port:  5246
  *Feb 11 07:52:25.443: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.13.5
  *Feb 11 07:52:25.443: %CAPWAP-5-CHANGED: CAPWAP changed state to JOIN
  *Feb 11 07:52:25.445: %CAPWAP-3-ERRORLOG: Unencrypted non-discovery CAPWAP Control Message from 10.0.13.5
  *Feb 11 07:52:25.445: %CAPWAP-3-ERRORLOG: Invalid AC Message Type 4.
  *Feb 11 07:52:25.445: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Feb 11 07:52:25.445: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.0.13.5
  *Feb 11 07:52:30.441: %CAPWAP-5-SENDJOIN: sending Join Request to 10.0.13.5
  *Feb 11 07:52:30.442: %CAPWAP-3-ERRORLOG: Unencrypted non-discovery CAPWAP Control Message from 10.0.13.5
  *Feb 11 07:52:30.443: %CAPWAP-3-ERRORLOG: Invalid AC Message Type 4.
  *Feb 11 07:52:30.443: %CAPWAP-3-ERRORLOG: Failed to handle capwap control message from controller
  *Feb 11 07:52:30.443: %CAPWAP-3-ERRORLOG: Failed to process unencrypted capwap packet from 10.0.13.5
  *Feb 11 07:52:47.644: %CDP_PD-4-POWER_OK: Full power - NEGOTIATED inline power source
  *Feb 11 07:53:23.999: %DTLS-5-SEND_ALERT: Send WARNING : Close notify Alert to 10.0.13.5:5246
  *Feb 11 07:53:24.000: %CAPWAP-3-ERRORLOG: Selected MWAR 'wuen4001'(index 0).
  *Feb 11 07:53:24.000: %CAPWAP-3-ERRORLOG: Go join a capwap controller
  *Feb 11 07:52:24.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 10.0.13.5 peer_port: 5246
  *Feb 11 07:52:24.001: %CAPWAP-5-CHANGED: CAPWAP changed state to
  *Feb 11 07:52:24.001: %DTLS-5-PEER_DISCONNECT: Peer 10.0.13.5 has closed connection.
  *Feb 11 07:52:24.001: %DTLS-5-SEND_ALERT: Send WARNING : Close notify Alert to 10.0.13.5:5246
  *Feb 11 07:52:24.002: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 3 combination.
  *Feb 11 07:52:24.123: %CAPWAP-3-ERRORLOG: Dropping dtls packet since session is not established.
  wuen4028#
  AIR-CT5508-K9 10.0.13.5 log
  *Feb 11 09:00:54.824: %DTLS-3-HANDSHAKE_FAILURE: openssl_dtls.c:2171 Failed to c
  omplete DTLS handshake with peer 10.0.13.28
                                             *Feb 11 08:59:53.798: %DOT1X-3-MAX_EA
  P_RETRIES: 1x_auth_pae.c:2862 Max EAP identity request retries (3) exceeded for
  client 00:1f:3b:93:dd:4f
  *Feb 11 08:59:51.197: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2862 Max EAP ident
  ity request retries (3) exceeded for client 00:c0:a8:e1:b1:71
  --More-- or (q)uit
  *Feb 11 08:59:21.212: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:292 RRM LOG: Airewave Di
  rector: Could not find valid channel lists for 802.11bg
  *Feb 11 08:58:39.766: %DTLS-3-HANDSHAKE_FAILURE: openssl_dtls.c:2171 Failed to c
  omplete DTLS handshake with peer 10.0.13.28
                                             *Feb 11 08:57:06.131: %RRM-3-RRM_LOGM
  SG: rrmChanUtils.c:292 RRM LOG: Airewave Director: Could not find valid channel
  lists for 802.11bg
  *Feb 11 08:56:24.504: %DTLS-3-HANDSHAKE_FAILURE: openssl_dtls.c:2171 Failed to c
  omplete DTLS handshake with peer 10.0.13.28
                                             *Feb 11 08:55:09.693: %DOT1X-3-MAX_EA
  P_RETRIES: 1x_auth_pae.c:2862 Max EAP identity request retries (3) exceeded for
  client 00:1f:3b:93:dd:4f
  *Feb 11 08:54:51.040: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:292 RRM LOG: Airewave Di
  rector: Could not find valid channel lists for 802.11bg
  *Feb 11 08:53:56.493: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmis
  sions exceeded for client 00:1f:3b:93:dd:4f
  *Feb 11 08:53:34.497: %DTL-3-OSARP_DEL_FAILED: dtl_arp.c:1380 Unable to delete a
  n ARP entry for 10.0.13.28 from the operating system. ioctl operation failed
  *Feb 11 08:52:35.936: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:292 RRM LOG: Airewave Di
  rector: Could not find valid channel lists for 802.11bg
  *Feb 11 08:52:26.492: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmis
  sions exceeded for client 00:1f:3b:93:dd:4f
  *Feb 11 08:50:07.680: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmis
  sions exceeded for client 00:1f:3b:93:e6:57
  *Feb 11 08:48:37.458: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2862 Max EAP ident
  ity request retries (3) exceeded for client 00:1f:3b:93:e6:57
  *Feb 11 08:47:37.438: %DOT1X-3-MAX_EAP_RETRANS: 1x_ptsm.c:426 Max EAP retransmis
  sions exceeded for client 00:1f:3b:93:e6:57
  *Feb 11 08:47:34.438: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2862 Max EAP ident
  ity request retries (3) exceeded for client 00:16:44:1d:0f:53
  *Feb 11 08:46:32.422: %DOT1X-3-MAX_EAPOL_KEY_RETRANS: 1x_ptsm.c:407 Max EAPOL-ke
  y M3 retransmissions exceeded for client 00:16:44:1d:0f:53
  *Feb 11 08:46:06.790: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2862 Max EAP ident
  ity request retries (3) exceeded for client 00:1f:3b:95:61:bd
  *Feb 11 08:46:06.789: %DOT1X-3-ABORT_AUTH: 1x_bauth_sm.c:447 Authentication abor
  ted for client 00:1f:3b:95:61:bd
  *Feb 11 08:46:06.210: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2862 Max EAP ident
  ity request retries (3) exceeded for client 00:1f:3b:93:e6:57
  *Feb 11 08:45:34.304: %DOT1X-3-MAX_EAP_RETRIES: 1x_auth_pae.c:2862 Max EAP ident
  ity request retries (3) exceeded for client 00:1f:3b:95:61:bd
  *Feb 11 08:45:34.303: %DOT1X-3-ABORT_AUTH: 1x_bauth_sm.c:447 Authentication abor
  ted for client 00:1f:3b:95:61:bd
  *Feb 11 08:45:01.298: %RRM-3-RRM_LOGMSG: rrmChanUtils.c:292 RRM LOG: Airewave Di
  rector: Could not find valid channel lists for 802.11bg
  *Feb 11 08:44:38.076: %SIM-3-PORT_UP: sim.c:9547 Physical port 2 is up!.
  *Feb 11 08:44:38.037: %SIM-3-PORT_UP: sim.c:9547 Physical port 1 is up!.
  --More-- or (q)uit
  *Feb 11 08:44:38.009: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'cliWebInitParms.cfg'
  *Feb 11 08:44:37.980: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'rrcEngineInitParms.cfg'
  *Feb 11 08:44:37.980: %CNFGR-3-INV_COMP_ID: cnfgr.c:2105 Invalid Component Id :
  Unrecognized (81) in cfgConfiguratorInit.
  *Feb 11 08:44:37.928: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'rfidInitParms.cfg'
  *Feb 11 08:44:37.915: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'dhcpParms.cfg'
  *Feb 11 08:44:37.903: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'bcastInitParms.cfg'
  *Feb 11 08:44:37.834: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'rrmInitParms.cfg'
  *Feb 11 08:44:27.331: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'apfInitParms.cfg'                                            
  *Feb 11 08:44:27.226: %MM-3-MEMBER_ADD_FAILED: mm_dir.c:903 Could not add Mobili
  ty Member. Reason: IP already assigned, Member-Count:1,MAC: 00:00:00:00:00:00, I
  P: 0.0.0.0
  *Feb 11 08:44:27.023: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'mmInitParms.cfg'
  *Feb 11 08:44:27.013: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'aaaapiInitParms.cfg'
  *Feb 11 08:44:27.011: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'pemInitParms.cfg'
  *Feb 11 08:44:26.898: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'dot1xInitParms.cfg'
  *Feb 11 08:44:26.868: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'capwapInitParms.cfg'
  *Feb 11 08:44:26.718: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'spamInitParms.cfg'
  *Feb 11 08:44:25.650: %SSHPM-3-FREAD_FAILED: sshpmlscscep.c:1395 Error reading f
  ile /mnt/application/lscca_pem.crt
  *Feb 11 08:44:06.435: %SYSTEM-3-FILE_READ_FAIL: nvstore.c:422 Failed to read con
  figuration file 'sshpmInitParms.cfg'  

  Thanks for such quick response and suggestions.
  Yes, I seem not to to be 100% perfect as for the list of troubleshooting steps I took.
  I had already tried the two commands you mentioned. I tried again, this time with some other 1242, but these do not help.
  Yes, I was already thinking that this could be in theory a licensing issue. The controller is bougth with 25 licenses.
  In the beginnign I had one 1142 on it and tried to enable 1242s which did not work. Now I have five 1142s on it, as this worked okay, I guess it could not be a licensing issue.
  I think that I can see in the log files that the machines communicate to each other, L2 or L3 paths seem to be working okay. I forgot to mention that I am using option 43 on the DHCP server, so the AP clearly finds its way to the controller. What's more both APs and the controllers are in the same VLAN, so they are in the same broadcast domain.
  Below is sho ver from the AP. The AP seems to have Certificate type - manufacture installed, so I guess there should not be a problem with the certificate, especially knowing that the AP works with other controllers over WAN.
  My guess these messages seen on AP especially "Invalid event 38 & state 3 combination" might tell us what's wrong.
  /* Style Definitions */
  table.MsoNormalTable
  {mso-style-name:"Table Normal";
  mso-tstyle-rowband-size:0;
  mso-tstyle-colband-size:0;
  mso-style-noshow:yes;
  mso-style-parent:"";
  mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
  mso-para-margin:0cm;
  mso-para-margin-bottom:.0001pt;
  mso-pagination:widow-orphan;
  font-size:10.0pt;
  font-family:"Times New Roman";
  mso-ansi-language:#0400;
  mso-fareast-language:#0400;
  mso-bidi-language:#0400;}
  *Feb 11 07:52:24.001: %CAPWAP-5-CHANGED: CAPWAP changed state to
  *Feb 11 07:52:24.001: %DTLS-5-PEER_DISCONNECT: Peer 10.0.13.5 has closed connection.
  *Feb 11 07:52:24.001: %DTLS-5-SEND_ALERT: Send WARNING : Close notify Alert to 10.0.13.5:5246
  *Feb 11 07:52:24.002: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 3 combination.
  *Feb 11 07:52:24.123: %CAPWAP-3-ERRORLOG: Dropping dtls packet since session is not established.
  Cisco IOS Software, C1240 Software (C1240-K9W8-M), Version 12.4(21a)JA2, RELEASE SOFTWARE (fc1)
  Technical Support: http://www.cisco.com/techsupport
  Copyright (c) 1986-2009 by Cisco Systems, Inc.
  Compiled Mon 02-Nov-09 18:42 by prod_rel_team
  ROM: Bootstrap program is C1240 boot loader
  BOOTLDR: C1240 Boot Loader (C1240-BOOT-M) Version 12.4(13d)JA, RELEASE SOFTWARE (fc2)
  AP9caf.ca00.1c78 uptime is 17 minutes
  System returned to ROM by power-on
  System image file is "flash:/c1240-k9w8-mx.124-21a.JA2/c1240-k9w8-mx.124-21a.JA2"
  This product contains cryptographic features and is subject to United
  States and local country laws governing import, export, transfer and
  use. Delivery of Cisco cryptographic products does not imply
  third-party authority to import, export, distribute or use encryption.
  Importers, exporters, distributors and users are responsible for
  compliance with U.S. and local country laws. By using this product you
  agree to comply with applicable laws and regulations. If you are unable
  to comply with U.S. and local laws, return this product immediately.
  A summary of U.S. laws governing Cisco cryptographic products may be found at:
  http://www.cisco.com/wwl/export/crypto/tool/stqrg.html
  If you require further assistance please contact us by sending email to
  [email protected].
  cisco AIR-LAP1242G-E-K9    (PowerPCElvis) processor (revision A0) with 24566K/8192K bytes of memory.
  Processor board ID FCZ135082GH
  PowerPCElvis CPU at 262Mhz, revision number 0x0950
  Last reset from power-on
  LWAPP image version 6.0.188.0
  1 FastEthernet interface
  1 802.11 Radio(s)
  32K bytes of flash-simulated non-volatile configuration memory.
  Base ethernet MAC Address: 9C:AF:CA:00:1C:78
  Part Number                          : 73-11479-01
  PCA Assembly Number                  : 800-30493-01
  PCA Revision Number                  : A0
  PCB Serial Number                    : FOC13484GYY
  Top Assembly Part Number             : 800-29589-03
  Top Assembly Serial Number           : FCZ135082GH
  Top Revision Number                  : A0
  Product/Model Number                 : AIR-LAP1242G-E-K9
  Configuration register is 0xF
  AP9caf.ca00.1c78#

• My Time Capsule does not work with existing WiFi

  Following a question solved on March 24 by LaPastenague, but gone bad again.
  Apple AirPort Time Capsule
  I felt the need for a physical backup of my data, as I would not completely trust the different clouds. I use, and have used Dropbox for 4-5 years and are very satisfied with that, but I am still not sure if or when a political lunatic will shut off the internet.
  I purchased the Apple AP Time Capsule 2T, because all my other stuff are Apple, and that it's wireless. My old backup is Maxtor 300 GB.
  Since we stay 2-3 weeks on two locations, one in Norway and one in Sweden (two different countries) we must use Mobile Broadband 4G, cables or fibre connections are useless for us, and we don't have it up to the houses. I have one mini router for each country, we bring with us iPhones, iPads, iMac, Apple TV, APExpress. When we pass the boarder I change the mini router, and the system continues working perfect on the WiFi, except the APExpress that needs to be reconfigured,  but then it works.
  The APTC was difficult to make working as it would not accept to be in an existing network, but with good help from the Apple Community, LaPastenague, with forcing the TC connect to the APE with Ethernet cable in bridge mode, ref "My Time Capsule does not work with existing WiFi" from March 24, the problem was solved and all gadgets worked together in a perfect harmony, until we changed location.
  Now, as I have my second WiFi network, and the APExspress is reconfigured, it's like the TC thinks, I am the base boss here, I am not taking orders from APE one more time, and it simply does not work, not only that, it fluctuates all the time.
  I have a slight feeling that the two WiFi bands are making the trouble as during the configuration of the TC sometime the last figure 6 and 7 pops up, and that has something two do with the two different 2,4 and 5 GHZ bands
  So, I am curious if you have any idea ?
  I am thinking of returning the TC if I don't make it work now, but how do I delete all the data that's on it?

  I can deal with the last question first and easily.
  I am thinking of returning the TC if I don't make it work now, but how do I delete all the data that's on it?
  Open the airport utility .. go to the disk tab and select erase.
  When you select erase you will get mulitiple options.
  Quick removes the file table but does not delete the files,, it takes 2min or less.
  A Zero out data is the secure way,, by writing 0 ie low level drive format.
  It can take several hours..
  7 pass will take a week.. not recommended..
  35 pass erase is ridiculous.. it would take a month.. put an ax through the TC. It is quick and better.
  Now, as I have my second WiFi network, and the APExspress is reconfigured, it's like the TC thinks, I am the base boss here, I am not taking orders from APE one more time, and it simply does not work, not only that, it fluctuates all the time.
  The fact that it did work and has now failed might point to faulty unit.
  The only way to tell is reset it properly to factory and start over.
  Universal Factory Reset.. any model TC or AE.
  Unplug your TC/AE from power or turn off at the power point.
  Hold in reset. and power the TC/AE back on..  all without releasing reset and keep holding in for about 10sec. (this is often difficult without a 2nd person or a 3rd arm).
  Release it when the status light flashes rapidly. If it doesn’t flash rapidly you have missed it and try again.
  Note..
  Be Gentle! Feel the switch click on. It has a positive feel..  add no more pressure after that.
  TC/AE will reboot after a couple of minutes with default factory settings and will wipe out previous configurations of the router.
  No files are deleted on the hard disk in a TC.. No reset of the TC deletes files.. to do that you use erase from the airport utility.
  Generally having multiple wireless AP should not cause problems.. but it is better to set channels manually.. so it doesn't go beserk rotating channels.
  Remember to keep all names short, no spaces and pure alphanumeric.
  Sadly though the Apple routers have no logging now and no SNMP and almost nothing to help diagnose a problem, so if it continues .. take it back to apple.. they have given you no other method of fixing it.

• Minetest translation does not work on my machine.

  Hey there.
  After trying my luck in the official Minetest forums a week ago and got nothing more than the initial “try this-and-that” thing as response in the German discussion section and no reply at all in the regular discussion section I decided to ask on Reddit on last Saturday afternoon, too. On Reddit my question only got 3 upvotes and no comments.
  Since no-one seems to know what’s going on I decided to post my question here, too.
  It sems like the translation feature in Minetest does not work on my machine for unknown reason.
  The language files are there and according to it’s oputput and the PKGBUILD Minetest was compiled with gettext support. LANG and LC_MESSAGES are properly set (I even tried LC_ALL). Localization works properly in all other applications that support localization.
  Here’s some relevant system information.
  $ uname -rms
  Linux 3.16.1-1-ARCH x86_64
  $ minetest --version
  Minetest 0.4.10
  Using Irrlicht 1.8.1
  Build info: VER=0.4.10 BUILD_TYPE=Release RUN_IN_PLACE=0 USE_GETTEXT=1 USE_SOUND=1 USE_CURL=1 USE_FREETYPE=1 USE_LUAJIT=0 STATIC_SHAREDIR=/usr/share/minetest
  $ pacman -Ql minetest | grep locale/de
  minetest /usr/share/locale/de/
  minetest /usr/share/locale/de/LC_MESSAGES/
  minetest /usr/share/locale/de/LC_MESSAGES/minetest.mo
  $ locale
  LANG=de_DE.utf8
  LC_CTYPE="de_DE.utf8"
  LC_NUMERIC="de_DE.utf8"
  LC_TIME="de_DE.utf8"
  LC_COLLATE="de_DE.utf8"
  LC_MONETARY="de_DE.utf8"
  LC_MESSAGES="de_DE.utf8"
  LC_PAPER="de_DE.utf8"
  LC_NAME="de_DE.utf8"
  LC_ADDRESS="de_DE.utf8"
  LC_TELEPHONE="de_DE.utf8"
  LC_MEASUREMENT="de_DE.utf8"
  LC_IDENTIFICATION="de_DE.utf8"
  LC_ALL=de_DE.utf8
  $ cat /etc/locale.gen
  de_DE.UTF-8 UTF-8
  en_DK.UTF-8 UTF-8
  en_US.UTF-8 UTF-8
  According to the discussion in the German discussion section in the Minetest forums I tried to set language = DE (and variants like de_DE with or without .utf8 in all possible variants) in minetest.conf but it didn’t change anything. Also: Here’s the output of running Minetest with --verbose parameter.
  16:47:01: INFO[main]: Using system-wide paths (NOT RUN_IN_PLACE)
  16:47:01: INFO[main]: path_share = /usr/share/minetest
  16:47:01: INFO[main]: path_user = /home/dirk/.minetest
  16:47:01: INFO[main]: minetest with SER_FMT_VER_HIGHEST_READ=26, VER=0.4.10 BUILD_TYPE=Release RUN_IN_PLACE=0 USE_GETTEXT=1 USE_SOUND=1 USE_CURL=1 USE_FREETYPE=1 USE_LUAJIT=0 STATIC_SHAREDIR=/usr/share/minetest
  16:47:01: INFO[main]: logfile = /home/dirk/.minetest/debug.txt
  16:47:01: VERBOSE[main]: httpfetch_init: parallel_limit=8
  16:47:01: INFO[main]: Message locale is now set to: LC_CTYPE=de_DE.utf8;LC_NUMERIC=C;LC_TIME=en_DK.utf8;LC_COLLATE=de_DE.utf8;LC_MONETARY=de_DE.utf8;LC_MESSAGES=de_DE.utf8;LC_PAPER=de_DE.utf8;LC_NAME=de_DE.utf8;LC_ADDRESS=de_DE.utf8;LC_TELEPHONE=de_DE.utf8;LC_MEASUREMENT=de_DE.utf8;LC_IDENTIFICATION=de_DE.utf8
  Irrlicht log: Irrlicht Engine version 1.8.1
  Irrlicht log: Linux 3.16.1-1-ARCH #1 SMP PREEMPT Thu Aug 14 07:40:19 CEST 2014 x86_64
  Irrlicht log: Using renderer: OpenGL 3.3.0
  Irrlicht log: GeForce 9600 GT/PCIe/SSE2: NVIDIA Corporation
  Irrlicht log: OpenGL driver version is 1.2 or better.
  Irrlicht log: GLSL version: 3.3
  16:47:01: INFO[main]: text_height=22
  16:47:01: INFO[main]: Searching worlds...
  16:47:01: INFO[main]: In /home/dirk/.minetest/worlds:
  16:47:01: INFO[main]: Spielwelt
  16:47:01: INFO[main]: 1 found.
  16:47:01: INFO[main]: Waiting for other menus
  16:47:01: INFO[main]: Waited for other menus
  16:47:01: INFO[main]: Audio: Initializing...
  16:47:01: INFO[main]: Audio: Vorbis extension NOT present
  16:47:01: INFO[main]: Audio: Initialized: OpenAL 1.1 ALSOFT 1.16.0, using OpenAL Soft
  16:47:01: INFO[main]: GUIEngine: Initializing Lua
  16:47:01: VERBOSE[AsyncWorkerThread_0]: Loading and running script from /usr/share/minetest/builtin/init.lua
  16:47:01: INFO[AsyncWorkerThread_0]: Initializing Asynchronous environment
  16:47:01: VERBOSE[AsyncWorkerThread_1]: Loading and running script from /usr/share/minetest/builtin/init.lua
  16:47:01: INFO[AsyncWorkerThread_1]: Initializing Asynchronous environment
  16:47:01: VERBOSE[AsyncWorkerThread_2]: Loading and running script from /usr/share/minetest/builtin/init.lua
  16:47:01: INFO[main]: SCRIPTAPI: Initialized main menu modules
  16:47:01: VERBOSE[main]: Loading and running script from /usr/share/minetest/builtin/init.lua
  16:47:01: INFO[AsyncWorkerThread_2]: Initializing Asynchronous environment
  16:47:01: VERBOSE[AsyncWorkerThread_3]: Loading and running script from /usr/share/minetest/builtin/init.lua
  16:47:01: INFO[AsyncWorkerThread_3]: Initializing Asynchronous environment
  16:47:01: INFO[main]: Searching worlds...
  16:47:01: INFO[main]: In /home/dirk/.minetest/worlds:
  16:47:01: INFO[main]: Spielwelt
  16:47:01: INFO[main]: 1 found.
  16:47:01: VERBOSE[main]: OpenALSoundManager::maintain(): 0 playing sounds, 0 sound names loaded
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.0.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.1.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.2.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.3.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.4.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.5.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.6.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.7.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.8.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.9.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /home/dirk/.minetest/sounds/main_menu.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.0.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.1.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.2.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.3.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.4.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.5.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.6.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.7.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.8.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.9.ogg for decoding
  16:47:01: INFO[main]: Audio: Error opening /usr/share/minetest/sounds/main_menu.ogg for decoding
  16:47:01: INFO[main]: OpenALSoundManager: "main_menu" not found.
  16:47:05: INFO[main]: Audio: Deinitializing...
  16:47:05: INFO[main]: Audio: Deinitialized.
  16:47:05: INFO[main]: GUIEngine: Deinitializing scripting
  16:47:05: INFO[main]: Searching worlds...
  16:47:05: INFO[main]: In /home/dirk/.minetest/worlds:
  16:47:05: INFO[main]: Spielwelt
  16:47:05: INFO[main]: 1 found.
  16:47:05: INFO[main]: Updating configuration file: "/home/dirk/.minetest/minetest.conf"
  16:47:05: INFO[main]: Skipping writing of /home/dirk/.minetest/minetest.conf because content wouldn't be modified
  16:47:05: INFO[main]: Updating configuration file: "/home/dirk/.minetest/minetest.conf"
  16:47:05: INFO[main]: Skipping writing of /home/dirk/.minetest/minetest.conf because content wouldn't be modified
  16:47:05: VERBOSE[main]: httpfetch_cleanup: cleaning up
  … or on nopaste.info for better readability.
  Since it seems to work for everyone else (otherwise there might be more replies to my quesions in several places, I guess *g*) I’m pretty sure that’s a local problem on my machine. But since gettext properly works on my machine in all and every application that use it I have no clue at all where to start debugging.
  Hints are highly appreciated Thanks in advance!
  Kind regards,
  Dirk

  Hi there...
  It gives me a URL that begins with http:// Safari does something strange, ie. flashes the page, and then complains about not recognizing photo://
  It seems that it has not figured out that it needs to open iPhoto 6.
  Regardless, the provided link is not viewable when cutting and pasting into safari, neither.
  I am using the latest and greatest 10.4.4, Safari is 2.0.3.

• UKM_TRANSFER_ITEMS periodically not working to rebuild committments!

  Reaching out to the SAP Community to find out if anyone has encountered the following problem:
  Program: UKM_TRANSFER_ITEMS is used to annually re-build FSCM commitment on accounts that get out of sync with SAP is currently NOT working. This transaction should only be used when a problem is discovered with the overall sync of SAP open orders, deliveries, billings or invoice values which are displayed in FSCM as commitments.  FSCM commitments are used to determine the retailer's credit exposure which impacts their ability to order merchandise within the company.
  Steps for Reconstruction:   
  UKM_COMMITMENTS ran first for ALL stores to delete
  UKM_TRANSFER_ITEMS run after to re-build commitments
  Business compares open amounts between Transaction: UKM_BP and VA05N or
  FBL5N.
  SAP Note: 0001552059  has been applied in QE1 to address latest performance issue with UKM_TRANSFER_ITEMS but did NOT resolve sync issue with Open committments.
  Examples of Issue:
  Orders Commitment per UKM_BP (Out of Sync)
  Line Items:
  Business Partner  /   Date   /   Type   /    Name of Cr. Exp. Cat    /    Commitment
  300001                     06/14/2011      100         Open Orders                                 8.51
  300001                     06/14/2011      100         Open Orders                          3,065.82
  *Currency USD  -->  Total Amount =  ** 3,074.33*
  *-- Compared with --*
  Open Orders per VA05N (Out of Sync):
  List of Sales Orders:   
  Sales Doc  /   SaTy  /  Sold-to pt  /  Created On  /  Document Date  /  PO Number  /  Created by  /  Net value  /  Dlv Site                                                                               
  Total Amt. = 127,411.10
  319512659    /   ZRP1  /   1  /   04/25/2010  /   04/25/2010  /                     /  OM_BATCH  /  2,532.58  /  IL01
  1001518455  /   ZRES  /   1  /  08/14/2010  /  08/14/2010  /  122600001  /  OM_PEG...     /  49.95      /  IL01   
  1002037858  /   ZSOA  /  1  /  08/30/2010  /  08/30/2010  /  1002037858  /  OM_PEG...  /  19.67  /  IL01
  ETC...
  So in general, the total amount:  3,074.33 from UKM_BP does NOT match the total amount: 127,411.10 from VA05N??
  I created an SAP Message on 6/16 and finally received a response on 7/11 stating the following:
  UKM_TRANSFER_ITEMS transfers only the open FIitems. To get the SD stuff like deliveries, open orders you need to run
  UKM_RVKRED77.
  What is the difference between UKM_TRANSFER_ITEMS and UKM_RVKRED77?
  Any help or response of similar experiences would be greatly appreciated!!!
  Best Regards,
  Jack

  Hi Jack
  We are facing similar issue. What is that you have done to fix the issue? Did you get any further response from SAP?
  Regards
  Bhavesh

• Ip phone is not working with 802.1x port

  i can authenticate the pc using 802.1x, but its not working with ip phones...waiting for your kind reply..

  The switch is 4006 and the image is cat OS 7.3(2).
  The port configuration is
  set radius server X.X.X.X
  set radius key xxxxxx
  set dot1x system-auth-control enable
  set port dot1x 3/17 port-control auto
  set port dot1x 3/17 initialize

• VPN not working after adding subinterface - ASA 5510

  Hello,
  Currently I want to add a second lan (vlan) in a customers network. The new network will be for a wireless infrastructure.
  There is also VPN Configured on the ASA - One with L2TP for Windows Clients and an IPsec for Cisco Clients.
  Former we only had one outside (Eth0/0) and one inside interface (Eth0/1) on the ASA.
  Now I want to use the Eth0/2 with subinterfaces, so that we will be flexible for future, when deploying more vlans.
  But now, when i turn the first subinterface Eth0/2.2 to no-shut the VPN Connections does not work any more.
  Bulding up the VPN connection works, but it seems that the traffic is not tunneled. (I checked this, because tracert to an internal adress goes to the internet)
  Below there is my config, i don't know whats wrong. I think split-tunnel is configured correctly (because it works when i delete eth0/2.2)
  TREV is the network of this location.
  Company1,2,3 are remote locations.
  : Saved
  ASA Version 8.2(5)
  hostname XXXXXXX
  domain-name domain.lan
  enable password XXXXXXXXXXX encrypted
  passwd XXXXXXXXXX encrypted
  names
  name 192.168.100.0 TREV
  name 192.168.200.0 COMPANY3
  name XXXXXXXX Company1
  name 192.168.1.0 Company2
  name XXXXXXXXX GCT
  name XXXXXXXX BMD
  name 192.168.110.0 Wireless
  name 192.168.201.0 COMPANY3-VPN
  name 192.168.11.0 COMPANY2-VPN
  name 192.168.101.0 TREV-VPN
  interface Ethernet0/0
  description Outside
  nameif outside
  security-level 0
  ip address XXXXX 255.255.255.248
  interface Ethernet0/1
  description Inside
  nameif inside
  security-level 100
  ip address 192.168.100.1 255.255.255.0
  interface Ethernet0/2
  description Trunk Interface
  no nameif
  no security-level
  no ip address
  interface Ethernet0/2.2
  description Wireless
  vlan 110
  nameif wlan
  security-level 100
  ip address 192.168.110.1 255.255.255.0
  interface Ethernet0/3
  shutdown
  no nameif
  no security-level
  no ip address
  interface Management0/0
  nameif management
  security-level 100
  ip address 192.168.1.1 255.255.255.0
  management-only
  ftp mode passive
  dns domain-lookup inside
  dns server-group DefaultDNS
  name-server 192.168.100.10
  domain-name domain.lan
  dns server-group COMPANY2
  name-server 192.168.1.16
  domain-name domain.local
  dns server-group COMPANY3
  name-server 192.168.200.1
  domain-name domain.local
  same-security-traffic permit inter-interface
  same-security-traffic permit intra-interface
  object-group network VPN_Networks
  network-object COMPANY3 255.255.255.0
  network-object COMPANY3-VPN 255.255.255.0
  network-object COMPANY2 255.255.255.0
  network-object COMPANY2-VPN 255.255.255.0
  network-object TREV 255.255.255.0
  network-object TREV-VPN 255.255.255.0
  object-group network DM_INLINE_NETWORK_1
  network-object COMPANY2 255.255.255.0
  network-object COMPANY3 255.255.255.0
  network-object COMPANY3-VPN 255.255.255.0
  network-object COMPANY2-VPN 255.255.255.0
  network-object Wireless 255.255.255.0
  access-list INCOMING remark *** ICMP Erlauben ***
  access-list INCOMING extended permit icmp any any echo-reply
  access-list INCOMING extended permit icmp any any time-exceeded
  access-list INCOMING extended permit icmp any any unreachable
  access-list INCOMING extended permit icmp any any parameter-problem
  access-list INCOMING extended permit icmp any any source-quench
  access-list INCOMING extended permit icmp any any echo
  access-list INCOMING remark *** Wartung Company1 ***
  access-list INCOMING remark *** Wartung BMD ***
  access-list INCOMING remark *** Mail ***
  access-list ......
  access-list Trev-nat0 remark *** NoNat ***
  access-list Trev-nat0 extended permit ip TREV 255.255.255.0 object-group VPN_Networks
  access-list Trev-nat0 extended permit ip object-group VPN_Networks TREV 255.255.255.0
  access-list Trev-nat0 extended permit ip TREV 255.255.255.0 object-group DM_INLINE_NETWORK_1
  access-list DefaultRAGroup_splitTunnelAcl standard permit TREV 255.255.255.0
  access-list outside_1_cryptomap extended permit ip TREV 255.255.255.0 object-group DM_INLINE_NETWORK_1
  access-list inside_debug extended permit tcp any host 192.168.100.5
  access-list inside_debug extended permit tcp any TREV 255.255.255.0
  access-list Wireless-nat0 extended permit ip Wireless 255.255.255.0 TREV 255.255.255.0
  pager lines 24
  logging asdm informational
  mtu outside 1500
  mtu inside 1500
  mtu management 1500
  mtu wlan 1500
  ip local pool VPN-Pool 192.168.101.1-192.168.101.31 mask 255.255.255.0
  no failover
  icmp unreachable rate-limit 1 burst-size 1
  asdm image disk0:/asdm-645.bin
  no asdm history enable
  arp timeout 14400
  global (outside) 1 interface
  global (outside) 2 XXXXXXXXXXX
  nat (inside) 0 access-list Trev-nat0
  nat (inside) 2 192.168.100.25 255.255.255.255
  nat (inside) 2 192.168.100.250 255.255.255.255
  nat (inside) 1 TREV 255.255.255.0
  nat (wlan) 0 access-list Wireless-nat0
  static (inside,outside) tcp interface 444 192.168.100.10 444 netmask 255.255.255.255
  static (inside,outside) tcp interface https 192.168.100.10 https netmask 255.255.255.255
  .... a lot of statics..............
  static (inside,outside) tcp XXXXXXXXXX pop3 192.168.100.25 pop3 netmask 255.255.255.255
  static (inside,outside) tcp XXXXXXXXXX  995 192.168.100.25 995 netmask 255.255.255.255
  access-group INCOMING in interface outside
  route outside 0.0.0.0 0.0.0.0 XXXXXXXXXX  1
  timeout xlate 3:00:00
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  timeout floating-conn 0:00:00
  dynamic-access-policy-record DfltAccessPolicy
  aaa-server RADIUS protocol radius
  aaa-server RADIUS (inside) host 192.168.100.10
  timeout 5
  key *****
  radius-common-pw *****
  aaa-server RADIUS2 protocol radius
  aaa-server RADIUS2 (inside) host 192.168.100.10
  key *****
  radius-common-pw *****
  aaa authentication ssh console LOCAL
  http server enable 4430
  http COMPANY2 255.255.255.0 management
  http TREV 255.255.255.0 inside
  http Company1 255.255.255.224 outside
  http 0.0.0.0 0.0.0.0 outside
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart
  crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
  crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
  crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
  crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
  crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
  crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
  crypto ipsec transform-set TRANS_ESP_3DES_MD5 esp-3des esp-md5-hmac
  crypto ipsec transform-set TRANS_ESP_3DES_MD5 mode transport
  crypto ipsec transform-set TRANS_ESP_3DES_SHA esp-3des esp-sha-hmac
  crypto ipsec transform-set TRANS_ESP_3DES_SHA mode transport
  crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
  crypto ipsec transform-set TRANS_ESP_AES_128_SHA esp-aes esp-sha-hmac
  crypto ipsec transform-set TRANS_ESP_AES_128_SHA mode transport
  crypto ipsec transform-set TRANS_ESP_AES_256_SHA esp-aes-256 esp-sha-hmac
  crypto ipsec transform-set TRANS_ESP_AES_256_SHA mode transport
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec security-association lifetime seconds 28800
  crypto ipsec security-association lifetime kilobytes 4608000
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 TRANS_ESP_AES_128_SHA TRANS_ESP_AES_256_SHA TRANS_ESP_3DES_MD5 TRANS_ESP_3DES_SHA
  crypto map outside_map 1 match address outside_1_cryptomap
  crypto map outside_map 1 set pfs group1
  crypto map outside_map 1 set peer 178.188.202.78
  crypto map outside_map 1 set transform-set ESP-3DES-SHA
  crypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
  crypto map outside_map interface outside
  crypto isakmp enable outside
  crypto isakmp policy 10
  authentication pre-share
  encryption 3des
  hash md5
  group 2
  lifetime 86400
  crypto isakmp policy 20
  authentication pre-share
  encryption des
  hash sha
  group 5
  lifetime 28800
  crypto isakmp policy 30
  authentication pre-share
  encryption 3des
  hash sha
  group 5
  lifetime 86400
  crypto isakmp policy 65535
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  telnet timeout 5
  ssh bit-Studio 255.255.255.224 outside
  ssh 0.0.0.0 0.0.0.0 outside
  ssh TREV 255.255.255.0 inside
  ssh timeout 60
  console timeout 0
  management-access inside
  dhcpd address 192.168.1.2-192.168.1.254 management
  dhcprelay server 192.168.100.10 inside
  dhcprelay enable wlan
  dhcprelay setroute wlan
  dhcprelay timeout 90
  threat-detection basic-threat
  threat-detection statistics access-list
  no threat-detection statistics tcp-intercept
  webvpn
  group-policy DefaultRAGroup internal
  group-policy DefaultRAGroup attributes
  wins-server value 192.168.100.10
  dns-server value 192.168.100.10
  vpn-tunnel-protocol IPSec l2tp-ipsec
  split-tunnel-policy tunnelspecified
  split-tunnel-network-list value DefaultRAGroup_splitTunnelAcl
  default-domain value domain.lan
  intercept-dhcp enable
  group-policy IPsecVPN internal
  group-policy IPsecVPN attributes
  wins-server value 192.168.100.10
  dns-server value 192.168.100.10
  vpn-tunnel-protocol IPSec
  split-tunnel-policy tunnelspecified
  split-tunnel-network-list value DefaultRAGroup_splitTunnelAcl
  default-domain value domain.lan
  username admin password XXXXXXXXXX encrypted privilege 15
  username vpntest password XXXXXXXXX nt-encrypted
  tunnel-group DefaultRAGroup general-attributes
  address-pool VPN-Pool
  authentication-server-group RADIUS
  default-group-policy DefaultRAGroup
  tunnel-group DefaultRAGroup ipsec-attributes
  pre-shared-key *****
  tunnel-group DefaultRAGroup ppp-attributes
  no authentication chap
  authentication ms-chap-v2
  tunnel-group XXXXXXXXX type ipsec-l2l
  tunnel-group XXXXXXXXXXXX ipsec-attributes
  pre-shared-key *****
  tunnel-group IPsecVPN type remote-access
  tunnel-group IPsecVPN general-attributes
  address-pool VPN-Pool
  authentication-server-group RADIUS
  default-group-policy IPsecVPN
  tunnel-group IPsecVPN ipsec-attributes
  pre-shared-key *****
  class-map inspection_default
  match default-inspection-traffic
  policy-map type inspect dns preset_dns_map
  parameters
    message-length maximum client auto
    message-length maximum 512
  policy-map global_policy
  class inspection_default
    inspect dns preset_dns_map
    inspect ftp
    inspect h323 h225
    inspect h323 ras
    inspect rsh
    inspect rtsp
    inspect sqlnet
    inspect skinny
    inspect sunrpc
    inspect xdmcp
    inspect sip
    inspect netbios
    inspect tftp
    inspect ip-options
  service-policy global_policy global
  prompt hostname context
  no call-home reporting anonymous
  Cryptochecksum:f2041a5902e945a130fe25fbb8e5d368
  : end

  Hi,
  First I would go through all the NAT0/NAT Exempt rules you have for VPNs. They seem to contain useless lines where either destination or source network isnt correct.
  Lets look at the NAT0 ACL you have line by line
  access-list Trev-nat0 extended permit ip TREV 255.255.255.0 object-group VPN_Networks
  The above access-list has the correct source network configured Yet it has its destination addresses configured with an "object-group" which contains your LAN network
  You should probably remove the LAN network from the object-group VPN_Networks
  access-list Trev-nat0 extended permit ip object-group VPN_Networks TREV 255.255.255.0
  To my understanding the above ACL line doesnt serve any purpose as the networks configured under VPN_Networks arent located behind your "inside" interface (Other than the one I'm asking to remove from the object-group)
  access-list Trev-nat0 extended permit ip TREV 255.255.255.0 object-group DM_INLINE_NETWORK_1
  The above ACL overlap with the very first ACL lines configurations and needlesly makes the configuration harder to read. It also contains the Wireless network which it shouldnt
  I would suggest simplifying your NAT0 configurations for example in the following way (change the names if you want if youre going to try it out)
  object-group network TREV-LAN
    description Local networks
    network-object 192.168.100.0 255.255.255.0
  object-group network VPN-NETWORKS
  description Remote networks
  network-object 192.168.200.0 255.255.255.0
  network-object 192.168.201.0 255.255.255.0
  network-object 192.168.1.0 255.255.255.0
  network-object 192.168.11.0 255.255.255.0
  network-object 192.168.101.0 255.255.255.0
  access-list TREV-LAN-NAT0 remark NAT0 / NAT Exempt for VPN Connections
  access-list TREV-LAN-NAT0 permit ip object-group TREV-LAN object-group VPN-NETWORKS
  With the above configurations
  You have all NAT0 with a single line of access-list configuration (not counting the remark line as it doesnt affect anything)
  If there is changes in the VPN pools, VPN remote networks or LAN networks you can simply change them under the configured object-groups instead of touching the actual ACL. There might be situations where you should change the ACL from the above if there is some bigger changes to network
  So as I said, I would start with changing the above NAT configurations and then test the VPN again. If it doesnt work we will have to check some other things out.
  - Jouni