Support contact for Internet VPN based provider access

Dear folks,
I have an IP-Sec tunnel operational to provide our customers with Internet access to the gateway 194.117.106.129
T'his has been up for about 10 years now.
I am trying to update our databases now. Who would be my contact in case of trouble?
thanks for any hints
regards Karsten

Hi David,
You mentioned "Another thing I noticed is that the option to Status -> statictics  -> Route details, as Secured Routes gives me the Ip 0.0.0.0, and  other VPN connections give me some Ip ...." this means that there is no split tunneling configured on VPN server. 'Route details' section defines the destinations which you will be able to access over VPN and this is pushed by your VPN server.
So, if you see 0.0.0.0 in above section, all traffic from your computer goes over the VPN tunnel to server including internet traffic. Two possibilities:
- That is the expected flow, should work if VPN server has required config to route the internet traffic.
- If not, and you only use VPN to access certain resources and internet should still work locally, in that case VPN server end config has to be modified to configure split tunnel so that it instead of pushing '0.0.0.0' route sends a route like 'x.x.x.x' where 'x.x.x.x' is the resource behind VPN tunnel. In that way, internet will work locally.
Either way, its a config issue at VPN server end.
Simple explanation of split tunneling:
http://en.wikipedia.org/wiki/Split_tunneling
HTH.
Sourav

Similar Messages

  • Does Adobe have a tech support contact for Flash on browsers?

    I am looking how to escalate to Adobe Tech Support but paying 29 bux an hour for some recruited college Grad that knows to little doesnt suit me.
    Bought an HP Quad and it had Win7 home so poorly installed, configured, overloaded with junk, would not backup, when it did backup and create a repair disk they wouldnt restore.  HP's preloaded Win7 build both IE8 and Firefox were crashing with both BSOD and Browsers not responding and dying. Firefox never responds to anything, Microsoft indicates is an add on problem but I think it can be a flash issue although it occurs much more on Wiin7 (ANY Version) for 32 or 64 bit.  I have been screwing with this for a month screaming at Microsoft and Mozilla but its a waste of time.  
    Microsoft forums are polluted for Win7 browser BSOD and Browser halting then crashing posts, there answer is disable add-ons.  I cant surf the net without add ons so that is a stupid reponse of finger pointing, giving appearance that Msoft, Adobe and Mozilla dont communicate.  No company will take ownership and drive the issue to find the root cause and where ever that cause is make them fix it, Msfot, Adobe of Firefox.   so what do ya do?
        The HP PC with horrible preload of win7 finally died and killed the build but Microsoft was equally useless in helping me repair that preloaded junk even though the OS is theres.    I BOUGHT real disks because HP couldnt support the mess - HP couldnt support chewing food let alone the mess they place on PC's with 90% asian parts with old drivers.   Eleven escaltions starting on DAY 1 of ownership of a Pavilion.  Hundreds of crash dump error reports sent to Firefox has still gone unresponsed, as they employ the 5th ammendment ,method of silence without support and Msoft remove all add on is laughable but proves HP. Firefox and MicroSoft wont assume responsibilty.  
    This sucks as all three gloat and boast about a HIGH levels of support and awards won for support but it is all myth, and laughably a lie but I still want it repaired.   28 years in IT - retired I feel qualififed to make the observation.
    I never attempted to contact Adobe but I get redirected after seeing the warning about 39 bucks an hour to answer a phone for a freeware add-on.
    Does anyone know of have a escalation path to a real person at adobe or department beause tthis site redirects from the ASK Adobe Support link meaning I cant even mail a question to then,  Already a BAD sign but the driver is free, but they wrote, and millions are having issue so where is there support -  Why bother writing  the addon if people cant even ask a question.
    So does any know if they support the flash add-on without charging?     a Glitch they might want to know about is flash 10.0.0.1 shows in Win7 Event logs as version 0.0.0.1 and I have logs showing that an addon report from the DEP (Data Execution Service) saw an add-on go to a non executalbe memory region whenthe only add-on I have is flash.
    Google for IE8 Browser Crash 566,500, Win7 Browser crash 1,500,000,  Firefox crashing 587,000, Firefox flash crash 1,420,000, Adobe flash crash 1,820,000,   are 4,615,500 google posts found for one issue and I know there are more than that failing but Im sick of the whole thing so adobe is my last gasp.   Please respond if you have a fix or path to escalate to adobe.
    Thanks.
    What a mess that no company so far stands up willing to take ownership of this just to find the root cause.

    I don't have a definitive answer, but I would guess you won't find a tech support service dedicated to the Flash Player since it is free software and customers apparently have problems getting tech support for the products they buy.  But here are a couple of things worth considering.
    Try posting/looking thru the Flash Player forum...
    http://forums.adobe.com/community/webplayers/flash_player
    Try submitting a bug report...
    http://www.adobe.com/cfusion/mmform/index.cfm?name=wishform

  • Apple Support Contact for iWeb????

    Does anyone know of information for contact or support from Apple regarding iWeb 08?

    http://www.apple.com/feedback/iweb.html

  • Support contact for warranty

    Good day. Does anybody know who I can contact to get an extended warranty that we've purchased actually activated? I am a reseller, and this has been ongoing FOR ALMOST A YEAR. I have contacted Lenovo and my wholesaler over and over again, and they keep referring me to one another. Thank you.

    Hi csh,
    I apologize for the trouble you are experiencing. I am going to send you a private message to see if we can get this figured out for you.

  • Support for Cisco VPN "mutual group authentication"

    Hi,
    Does anyone know of support plans for Cisco VPN mutual group authentication in the built-in VPN client on MacOSX?
    Thanks,
    John

    I would like to know the answer to this as well.
    Thanks,
    Josh

  • VPN clients cannot access inside LAN

    I have a vpn setup.  I can vpn in from either the outside (internet) or from inside my network.  Once I do that I can no longer ping or remote into the server I have setup on the 192.168.1.0/24 subnet.  I can ping from the 192.168.1.0 subnet to any other subnet but I cannot ping from the vpn subnet to any other subnet.  I know that I have some permits on Outside-IN and Inside-IN, this is only to make it easier to troubleshoot.  Thank you in advance.
    The VPN subnet is 192.168.2.0
    The Server subnet is 192.168.1.0
    the Internal client subnet is 10.0.0.0 /24
    Here is the config and the packet-tracer output
    RUNNING-CONFIG
    =====================
    ASA Version 8.2(5)
    hostname ciscoasa
    enable password 2KFQnbNIdI.2KYOU encrypted
    passwd 2KFQnbNIdI.2KYOU encrypted
    names
    interface Ethernet0/0
    switchport access vlan 2
    interface Ethernet0/1
    interface Ethernet0/2
    interface Ethernet0/3
    interface Ethernet0/4
    interface Ethernet0/5
    interface Ethernet0/6
    interface Ethernet0/7
    interface Vlan1
    nameif inside
    security-level 100
    ip address 192.168.1.1 255.255.255.0
    interface Vlan2
    nameif outside
    security-level 0
    ip address dhcp setroute
    ftp mode passive
    same-security-traffic permit inter-interface
    same-security-traffic permit intra-interface
    object-group network Axon
    network-object host 192.168.1.6
    object-group network VPN-Clients
    network-object 192.168.2.0 255.255.255.0
    object-group service HTTP-HTTPS tcp
    port-object eq www
    port-object eq https
    object-group service RDP tcp
    port-object eq 3389
    access-list Outside-IN extended permit ip any any
    access-list Inside-IN extended permit ip any any
    access-list Axon-NAT extended permit ip 192.168.2.0 255.255.255.0 192.168.1.0 255.255.255.0
    pager lines 24
    logging asdm informational
    mtu inside 1500
    mtu outside 1500
    ip local pool VPNPool 192.168.2.2-192.168.2.10 mask 255.255.255.0
    icmp unreachable rate-limit 1 burst-size 1
    no asdm history enable
    arp timeout 14400
    global (outside) 1 interface
    nat (inside) 1 0.0.0.0 0.0.0.0
    static (inside,outside) 192.168.2.0 192.168.2.0 netmask 255.255.255.0
    access-group Inside-IN in interface inside
    access-group Outside-IN in interface outside
    route outside 192.168.2.0 255.255.255.0 192.168.1.0 1
    timeout xlate 3:00:00
    timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
    timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
    timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
    timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
    timeout tcp-proxy-reassembly 0:01:00
    timeout floating-conn 0:00:00
    dynamic-access-policy-record DfltAccessPolicy
    http server enable
    http 192.168.1.0 255.255.255.0 inside
    no snmp-server location
    no snmp-server contact
    snmp-server enable traps snmp authentication linkup linkdown coldstart
    no sysopt connection permit-vpn
    crypto ipsec security-association lifetime seconds 28800
    crypto ipsec security-association lifetime kilobytes 4608000
    telnet timeout 5
    ssh timeout 5
    console timeout 0
    dhcpd auto_config outside
    dhcpd address 192.168.1.5-192.168.1.36 inside
    dhcpd enable inside
    threat-detection basic-threat
    threat-detection statistics access-list
    no threat-detection statistics tcp-intercept
    webvpn
    enable outside
    svc image disk0:/anyconnect-win-2.4.1012-k9.pkg 1
    svc enable
    group-policy VPNPolicy internal
    group-policy VPNPolicy attributes
    vpn-tunnel-protocol svc webvpn
    address-pools value VPNPool
    webvpn
      url-list none
      svc ask enable
    username test2 password sLyNkwX4lP/BSsCW encrypted privilege 0
    username test2 attributes
    vpn-group-policy VPNPolicy
    username fwaarmac password 5rABwjFzDBYcp0nJ encrypted privilege 15
    username fwaarmac attributes
    vpn-group-policy VPNPolicy
    username test1 password sLyNkwX4lP/BSsCW encrypted privilege 0
    username test1 attributes
    vpn-group-policy VPNPolicy
    username dan password vFpifCksRBgKm.0Q encrypted privilege 15
    username dan attributes
    vpn-group-policy VPNPolicy
    tunnel-group DefaultWEBVPNGroup general-attributes
    default-group-policy VPNPolicy
    tunnel-group VPN type remote-access
    tunnel-group VPN general-attributes
    address-pool VPNPool
    default-group-policy VPNPolicy
    tunnel-group VPN webvpn-attributes
    group-alias vpn enable
    group-url https://10.0.0.10/vpn enable
    class-map inspection_default
    match default-inspection-traffic
    policy-map type inspect dns preset_dns_map
    parameters
      message-length maximum client auto
      message-length maximum 512
    policy-map global_policy
    class inspection_default
      inspect dns preset_dns_map
      inspect ftp
      inspect h323 h225
      inspect h323 ras
      inspect rsh
      inspect rtsp
      inspect esmtp
      inspect sqlnet
      inspect skinny 
      inspect sunrpc
      inspect xdmcp
      inspect sip 
      inspect netbios
      inspect tftp
      inspect ip-options
    service-policy global_policy global
    prompt hostname context
    no call-home reporting anonymous
    Cryptochecksum:b8d7144e7d51265fa9a5f38e29f40269
    : end
    NAT / PACKET-TRACER
    ========================
    packet-tracer input outside tcp 192.168.2.1 3389 192.168.1.6 3389 detailed
    Phase: 1
    Type: ROUTE-LOOKUP
    Subtype: input
    Result: ALLOW
    Config:
    Additional Information:
    in   192.168.1.0     255.255.255.0   inside
    Phase: 2
    Type: ACCESS-LIST
    Subtype: log
    Result: ALLOW
    Config:
    access-group Outside-IN in interface outside
    access-list Outside-IN extended permit ip any any
    Additional Information:
    Forward Flow based lookup yields rule:
    in  id=0xc95ea0e0, priority=12, domain=permit, deny=false
            hits=5247, user_data=0xc793c350, cs_id=0x0, flags=0x0, protocol=0
            src ip=0.0.0.0, mask=0.0.0.0, port=0
            dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
    Phase: 3
    Type: IP-OPTIONS
    Subtype:     
    Result: ALLOW
    Config:
    Additional Information:
    Forward Flow based lookup yields rule:
    in  id=0xc95e6d48, priority=0, domain=inspect-ip-options, deny=true
            hits=10050, user_data=0x0, cs_id=0x0, reverse, flags=0x0, protocol=0
            src ip=0.0.0.0, mask=0.0.0.0, port=0
            dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
    Phase: 4
    Type: HOST-LIMIT
    Subtype:
    Result: ALLOW
    Config:
    Additional Information:
    Forward Flow based lookup yields rule:
    in  id=0xc959fab8, priority=0, domain=host-limit, deny=false
            hits=5248, user_data=0x0, cs_id=0x0, flags=0x0, protocol=0
            src ip=0.0.0.0, mask=0.0.0.0, port=0
            dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
    Phase: 5
    Type: NAT
    Subtype: rpf-check
    Result: DROP
    Config:
    nat (inside) 1 0.0.0.0 0.0.0.0
      match ip inside any outside any
        dynamic translation to pool 1 (10.0.0.10 [Interface PAT])
        translate_hits = 88, untranslate_hits = 7
    Additional Information:
    Forward Flow based lookup yields rule:
    out id=0xc962a5f8, priority=1, domain=nat-reverse, deny=false
            hits=415, user_data=0xc962a388, cs_id=0x0, flags=0x0, protocol=0
            src ip=0.0.0.0, mask=0.0.0.0, port=0
            dst ip=0.0.0.0, mask=0.0.0.0, port=0, dscp=0x0
    Result:
    input-interface: outside
    input-status: up
    input-line-status: up
    output-interface: inside
    output-status: up
    output-line-status: up
    Action: drop
    Drop-reason: (acl-drop) Flow is denied by configured rule

    You would need to configure NAT exemption for the VPN client to access internal host:
    access-list nonat permit ip 192.168.1.0 255.255.255.0 192.168.2.0 255.255.255.0
    access-list nonat permit ip 10.0.0.0 255.255.255.0 192.168.2.0 255.255.255.0
    nat (inside) 0 access-list nonat
    route inside 10.0.0.0 255.255.255.0 192.168.1.x
    access-list splitacl permit 192.168.1.0 255.255.255.0
    access-list splitacl permit 10.0.0.0 255.255.255.0
    group-policy VPNPolicy attributes
       split-tunnel-policy tunnelspecified
       split-tunnel-network-list value splitacl

  • UNABLE TO ACCESS THE INTERNET FROM LOCAL PROVIDER ON A SITE-TO-SITE VPN CONNECTION

    Dear All,
    I have a site-to-site connection  from point A to point B. From point B i am unable to access the internet from local internet provider.
    I am trying to ping from 192.168.20.1 the dns 8.8.8.8   but i receive the  message "destination net unreachable".
    When i run "show ip nat translation" i receive nothing.
    The vpn connection is working properly, i can ping the other side 192.168.10/24
    Below is the configuration of the cisco router on point B.
    dot11 syslog
    ip source-route
    no ip dhcp use vrf connected
    ip dhcp excluded-address 192.168.21.254
    ip dhcp pool voice
     network 192.168.21.0 255.255.255.0
     default-router 192.168.21.254 
     option 150 ip 192.168.5.10 
    ip cef
    ip domain name neocleous.ru
    ip inspect name IOS_FIREWALL tcp
    ip inspect name IOS_FIREWALL udp
    ip inspect name IOS_FIREWALL icmp
    ip inspect name IOS_FIREWALL h323
    ip inspect name IOS_FIREWALL http
    ip inspect name IOS_FIREWALL https
    ip inspect name IOS_FIREWALL skinny
    ip inspect name IOS_FIREWALL sip
    no ipv6 cef
    multilink bundle-name authenticated
    vty-async
    isdn switch-type primary-net5
    redundancy
    crypto isakmp policy 5
     hash md5
     authentication pre-share
     group 2
    crypto isakmp policy 10
     encr aes
     authentication pre-share
     group 2
     lifetime 28800
    crypto isakmp policy 50
     encr 3des
     hash md5
     authentication pre-share
     group 2
    crypto isakmp key Pb85heuvMde9Wdac5Qohha7lziIf142u address [ip address]
    crypto isakmp invalid-spi-recovery
    crypto isakmp keepalive 10
    crypto ipsec transform-set TRANSET esp-aes esp-sha-hmac 
    crypto ipsec transform-set TRANSET2 esp-des esp-md5-hmac 
    crypto ipsec df-bit clear
    crypto map CryptoMAP1 ipsec-isakmp 
     set peer [ip address]
     set transform-set TRANSET 
     match address CryptoACL
    interface FastEthernet0/0
     description Primary Provider
     ip address [PUBLIC IP MAIN PROVIDER] 255.255.255.252
     ip access-group outside_acl in
     ip mtu 1390
     ip nat outside
     ip virtual-reassembly in
     load-interval 30
     duplex auto
     speed auto
     crypto map CryptoCY
     crypto ipsec df-bit clear
    interface FastEthernet0/1
     description TO LAN
     no ip address
     load-interval 30
     speed 100
     full-duplex
    interface FastEthernet0/1.1
     description DATA VLAN
     encapsulation dot1Q 20
     ip address 192.168.20.254 255.255.255.0
     ip access-group inside_acl in
     ip nat inside
     ip inspect IOS_FIREWALL in
     ip virtual-reassembly in
     ip tcp adjust-mss 1379
    interface FastEthernet0/1.2
     description VOICE VLAN
     encapsulation dot1Q 21
     ip address 192.168.21.254 255.255.255.0
    interface Serial0/2/0:15
     no ip address
     encapsulation hdlc
     isdn switch-type primary-net5
     isdn incoming-voice voice
     no cdp enable
    interface FastEthernet0/3/0
     no ip address
     ip access-group outside_acl in
     ip nat outside
     ip virtual-reassembly in
     shutdown
     duplex auto
     speed auto
     crypto map CryptoCY
    ip local pool VPNPool 192.168.23.2 192.168.23.10
    ip forward-protocol nd
    ip http server
    no ip http secure-server
    ip nat inside source list nat_list interface FastEthernet0/3/0 overload
    ip route 0.0.0.0 0.0.0.0 [default gateway ip]
    ip access-list standard VTY
      permit 192.168.20.0 0.0.0.255
    ip access-list extended CryptoACL
     permit ip 192.168.20.0 0.0.0.255 192.168.3.0 0.0.0.255
     permit ip 192.168.21.0 0.0.0.255 192.168.5.0 0.0.0.255
     permit ip 192.168.21.0 0.0.0.255 192.168.6.0 0.0.0.255
     permit ip 192.168.21.0 0.0.0.255 192.168.12.0 0.0.0.255
     permit ip 192.168.21.0 0.0.0.255 192.168.2.0 0.0.0.255
     permit ip 192.168.20.0 0.0.0.255 192.168.10.0 0.0.0.255
     permit ip host 192.168.22.1 192.168.5.0 0.0.0.255
     permit ip host 192.168.20.1 192.168.5.0 0.0.0.255
     permit ip host 192.168.22.1 192.168.6.0 0.0.0.255
    ip access-list extended DFBIT_acl
     permit tcp any any
    ip access-list extended inside_acl
     permit ip 192.168.20.0 0.0.0.255 host 192.168.3.35
     permit ip 192.168.20.0 0.0.0.255 host 192.168.3.39
     permit ip 192.168.20.0 0.0.0.255 host 192.168.3.23
     permit ip 192.168.20.0 0.0.0.255 host 192.168.3.18
     permit ip 192.168.20.0 0.0.0.255 host 192.168.3.55
     permit ip 192.168.20.0 0.0.0.255 host 192.168.10.144
     permit ip 192.168.20.0 0.0.0.255 host 192.168.10.146
     permit ip 192.168.20.0 0.0.0.255 host 192.168.10.141
     permit ip host 192.168.20.253 host 192.168.3.21
     permit ip host 192.168.20.254 host 192.168.3.21
     permit ip 192.168.20.0 0.0.0.255 host 192.168.3.10
     permit ip 192.168.20.0 0.0.0.255 host 192.168.20.254
    ip access-list extended nat_list
     deny   ip host 192.168.20.254 192.168.10.0 0.0.0.255
     deny   ip host 192.168.20.254 192.168.3.0 0.0.0.255
     deny   ip host 192.168.20.1 192.168.3.0 0.0.0.255
     deny   ip host 192.168.20.1 192.168.10.0 0.0.0.255
     deny   ip host 192.168.20.2 192.168.3.0 0.0.0.255
     deny   ip host 192.168.20.2 192.168.10.0 0.0.0.255
     permit ip host 192.168.20.1 any
     permit ip host 192.168.20.2 any
     permit ip host 192.168.20.254 any
    ip access-list extended outside_acl
     permit gre any host [ip address]
     permit esp any host [ip address]
     deny   ip any any
    ip sla 2
     icmp-echo 192.168.10.254 source-interface FastEthernet0/1.1
     frequency 180
     timeout 500
    ip sla schedule 2 life forever start-time now
    logging 192.168.3.21
    route-map DFBIT_routemap permit 10
     match ip address DFBIT_acl
     set ip df 0
    route-map ISP2 permit 10
     match ip address nat_list
     match interface FastEthernet0/3/0
    route-map nonat permit 10
     match ip address nonat_acl
    route-map ISP1 permit 10
     match ip address nat_list
     match interface FastEthernet0/0

    You cannot access internet, because all traffic is tunneled for VPN !!!!
    Please see cisco tech documentation and bypass traffic for internet.
    eg.  if lan traffic is going from site a to site b  then through vpn
          else
           lan traffic to internet (any) should be out thorugh the vpn .

  • ERROR: The Windows Installer Service could not be accessed. This can occur if the Windows Installer is not correctly installed. Contact your support personnel for assistance.

    Hello Everyone,
    I keep getting this when trying to install 0r repair SQL Server 2008 R2 on a SBS  2011 Standard.
    TITLE: Microsoft SQL Server 2008 R2 Setup
    The following error has occurred:
    The Windows Installer Service could not be accessed. This can occur if the Windows Installer is not correctly installed. Contact your support personnel for assistance.
    For help, click: http://go.microsoft.com/fwlink?LinkID=20476&ProdName=Microsoft+SQL+Server&EvtSrc=setup.rll&EvtID=50000&ProdVer=10.50.1600.1&EvtType=0xDF039760%25401201%25401
    BUTTONS:
    OK
    the provided link says  "There is no additional information about this issue" i am helpless
    please tell assist.
    Thanks.
    Abdallah.M.M

    Hi Abdallah,
    According to your description, could you please post the summary and detail logs for further analysis? By default, the logs can be found in: C:\Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log.
    Usually, the error occurs when the Windows Installer Service is not running or the Windows Installer registry settings are corrupted.  I recommend you reset the Windows Installer Service settings in the registry and restart the Windows Installer Service,
    then reinstall SQL Server 2008 R2. For more details, please review this similar
    article.
    Thanks,
    Lydia Zhang

  • Support for Internet based client Management - SCCM 2012

    Hi There,
    My Company wants to go for Internet based client Management in SCCM 2012 SP1 R2 and here is the design I'm proposing. I'm getting a bit confused at one point and need suggestion....
    Everything would work on HTTPS ( PKI Certificate based )... LAN and Internet.
    1 Primary ( with non-client facing roles installed ) on LAN with two site systems.
    - One Site System configured for INTRANET support only with MP, DP and SUP -> To support LAN users ( Allow
    Intranet-only connections )
    - One Site System configured for INTERNET support only with MP, DP and SUP -> To support Internet users ( Allow 
        Internet-only connections )
    The INTERNET facing site system is in DMZ network connected to parent Primary via Firewall.
    We want internet clients to talk to ONLY DMZ SCCM Site System and no connection to corporate LAN. We cannot open any ports for internet based clients to LAN.
    If this is the supported scenario, then why we need to put the Internet FQDN in the Primary server Site System property. This server would not be available to internet. It should only be my DMZ SCCM server client should connect for MP, DP and SUP and only
    this DMZ server should be accessible to client over internet.
    Also, what least ports should be opened between :
    - Parent Primary and its internet facing site system kept in DMZ
    - DMZ Site system and internet clients.
    Thanks in advance for your suggestions.
    Sam

    The FQDN has only to be specified on the Internet facing site system. You can leave this field blank on the primary site Server.
    Ports to Open:
    Internet --> DMZ Site Server:
    TCP Port 443
    TCP Port 80, if Fallback Status Point is installed
    DMZ Site Server --> Primary Site:
    TCP 135, 49152-65535
    TCP 445
    TCP 135, 24158 (fixed with
    http://msdn.microsoft.com/en-us/library/bb219447(v=vs.85).aspx )
    TCP 80, 443
    If you have some other roles installed, please consult this page:
    http://technet.microsoft.com/en-us/library/hh427328.aspx
    Cheers,
    Thomas Kurth
    Netree AG, System Engineer
    Blog:
    http://netecm.netree.ch/blog | Twitter:
    | LinkedIn:
    | Xing:
    Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied, including but not limited to the implied warranties of merchantability and/or fitness for a particular purpose.

  • I recently loaded OS 10.6.2. I can get on the internet but can't access email. I get a pop up that asks for my email passwd. I enter the passwd but it is rejected. My email provider checked everything from their end and said it was my software. Any ideas?

    I recently installed 10.6.2, everything was fine for a few days. Last night I logged on to check email and got a new pop up window asking for my email account password. Its never came up before with the old OS or with the new OS prior to this point. I entered my password but it was rejected. After an 1 1/2 hours on the phone with my internet/email service provider it was determined that my password was good and the system was ok on their end. Access to the internet is not affected so I think its something wrong with the new OS. Any ideas?
    thanks

    Mac OS X v10.6: Mail.app won’t open, or "You can't use this version of Mail…" alert after installing Security Update 2012-004:
    http://support.apple.com/kb/TS4424?viewlocale=en_US&locale=en_US
    Fellow user Grant Bennet-Alder offers this solution:
    Some users have reported this problem if the Mail Application has been moved out of the top-level /Applications folder, or duplicated in another location.
    When the Security Update is done, the old version of Mail is disabled.
    The solution has been to:
    1) make certain Mail is in the /Applications folder
    2) There is no other copy anywhere else.
    3) Once steps 1 and 2 have been done, Manually download and re-apply the Security Update (2012-004) by hand.
    Security Update 2012-004 (Snow Leopard)
    If the Mail.app has been LOST, it can be re-installed by applying the 10.6.8 version 1.1 combo update. But this update is quite large and it is usually not necessary:
    Mac OS X 10.6.8 Update Combo v1.1

  • Windows vista home premium service pack 2.error measage __(the windows installer service could not be accessed.this can occur if the windows installer is not correctly installed .contact your support personnel for assistance )no error nurber

    windows vista home premium service pack 2。error measage __(the windows installer service could not be accessed.this can occur if the windows installer is not correctly installed .contact your support personnel for assistance )no error nurber

    Hi Abdallah,
    According to your description, could you please post the summary and detail logs for further analysis? By default, the logs can be found in: C:\Program Files\Microsoft SQL Server\100\Setup Bootstrap\Log.
    Usually, the error occurs when the Windows Installer Service is not running or the Windows Installer registry settings are corrupted.  I recommend you reset the Windows Installer Service settings in the registry and restart the Windows Installer Service,
    then reinstall SQL Server 2008 R2. For more details, please review this similar
    article.
    Thanks,
    Lydia Zhang

  • UK-based support contact number for account membership

    Is there a UK-based support contact number for account membership?

    Hello,
    in addition to John's hint (what concerns UK), you could use this link Adobe Connect Support phone numbers
    Hans-Günter

  • IPSEC Cisco VPN connection. Modifying default VPN gateway allows internet traffic but loses access to VPN

    Hello!!
    I'm using the IPSEC Cisco VPN Network property to connect to my company.
    Once I get connected, I lose internet access, because all the traffic is redirected through the tunnel and I want both, of course.
    If I modify the default getaway in the routing table, with this command
    route change default x.x.x.x, where this is the getaway IP when not connected to the VPN,
    I gain access to internet, but I lose access through the VPN tunnel.
    I was reading about it in google, and what I have to do is to add a static route to the VPN again, but I don't know how.
    Could you please help me?
    thanks in advance!!

    Hi Norbert,
    I am sorry to say that configuring routes in Azure Virtual network is not supported. I recommend you to submit your reuqirement on Azure Feedback and hope it would be released soon:
    http://feedback.azure.com/forums/217313-networking-dns-traffic-manager-vpn-vnet
    Best regards,
    Susie
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

  • Who do I contact for support

    Yesterday I got the YVM4 error when trying to access the On Demand players i.e BBC iPlayer. Tried a soft reset by pressing the blue on/off button at the front for 8 secs but problem still persisted.
    I then turned power off/on via the switch at the back and problem gone!
    Today I found that On Demand and BT Vision were not available, got error saying not connected to network.
    Tried both the previous solutions and by turning power off/on at the back I got demand back and network showed connected.
    My broadband was functionning correctly on my PC so loss of network.
    The YouView Community forum has a number of posts about this, with some people getting the problem on a regular basis, and it is being reported that it may be due to the box losing the DNS setting. The following fix was suggested by YouView:
    Please go to Settings > Network & Internet > Network Connection Status. If the status is saying CONNECTED, please try the following steps: 
    Go to Settings > Network & Internet > Wired Connection. If the box is saying AUTOMATIC, switch it to MANUAL. Click Next. You will see three rows of numbers. Leave them as they are and click Next. You will see two rows of boxes, Primary and Secondary DNS. Leave the second row blank. Put a single '8' into the Primary DNS boxes so that it reads 8.8.8.8. Click Next and when it finishes finding your router, click Finish. 
    Turn off your router, and reset your box. Turn the box and then the router back on again. When it resumes, you should be able to access On Demand content.
    However there seemed to be some misgivings by users that this would actually make any difference.
    Having had both the problems mentioned earlier I started to wonder who I should contact for support if I get problems. Should it be BT Vision as they supplied the box, or should it be YouView as it's their service.
    Would appreciate some advice.
    Solved!
    Go to Solution.

    I have mine setup for static ip addressing, due to the number of devices I have on my network - so not had that issue as of yet.
    The reboot of router will flush the dns, so this is why it's recommended as if something had spammed dns cache it can cause numerous problems, so best to clear it out which is by rebooting the router - for pc's you can clear cache on the pc itself via command line - and on my pch-c200 i can clear the cache directly on that.
    In regards to support, if you got the product from BT then BT should officially be providing the support and no-one else, but there should be no reason why you can't go directly to youview or humax to get other questions you may have answered

  • Quick recovery image for internet based clients

    Hello all,
    Imaging of internet based clients is not supported with SCCM, but is there any other (Microsoft) way to quickly recover to a standard image for internet based clients (we use MS Surface for our sales reps)? For example, putting an standard image on a seperate
    partition with which you can instruct users by phone to redeploy their machine to an original configuration? I do not think that DaRT will solve my issue by the way.

    I haven't implemented this myself. I just thought it was a cool idea. It's primarily designed to solve this problem with very small branch offices using Direct Access. You should contact 1E for more information
    eg the step: "Prestage content using Nomad".
    Where is the content coming from? Remember that this is designed for a small office so Nomad could be using peer-to-peer distribution here. Also, with Nomad, you could run that step outside the OSD task sequence so that the content will already
    be available (by downloading slowly over time) when and if required. 
    Gerry Hampson | Blog:
    www.gerryhampsoncm.blogspot.ie | LinkedIn:
    Gerry Hampson | Twitter:
    @gerryhampson

Maybe you are looking for

  • Need Some Help with Safari Crash--iBod or anyone

    Safari keeps crashing since last security update. Here's the log. If someone could help, I'd really appreciate it. Thanks. Thread 0 Crashed: 0 com.apple.Foundation 0x928f9620 _NSRaiseError + 264 1 com.apple.Foundation 0x928f935c +[NSException raise:f

  • How to Consume web service in Adobe live cycle

    Hi Experts, I created a web service from FM and trying to consume that in Adobe live cycle. My problem is: 1. I don't know how can I test this webservice layout? Could you please provide me the steps on how to consume it properly and how to test it b

  • HT2242 Is it possible to keep the local country but have it display in my language?

    Is it possible to keep the local country but have it display in my language? For example I live in Sweden but am English so would like to have the local setting still for Sweden but all text displayed as English.

  • SAS in OBIEE!

    Hi All! can anybody tell me..that how to integrate and import SAS olap cube into OBIEE. Pls lemme know if there s any work around!. But in SAS we can integrate the obiee..by using sas integration licensed tool component.but i want it to integrate SAS

  • Frequency Response using Swept Sin

    Does anyone have sample C/C++ code to generate a swept sin wave and get the frequency and phase response data using NI-DAQmx on a PCI-4461 board? Currently I'm using a PCI-4551 board and can use the helpful NI-DSA C API to do this, but the 4551 card