Urgent VPN Assistance Requested!

I need to configure Mac OS X's built-in VPN Client ASAP, if possible.
I think I have figured out everything I need to know, except for one (hopefully small) problem.
I need to enable Transport Tunneling using IPSec over TCP (TCP Port 10000)
I cannot figure out how to do this. Please let me know if you have any suggestions.
Thank You!

Couple of things, You are assigning IP Address to the VPN Clients from a pool which is part of the LAN behind the Pix. This is not a recommended configuration. Also, I dont see a NAT 0 command to bypass NAT for the VPN Clients. So, you could try
access-list inside_outbound_nat0_acl permit ip AB01-LF 255.255.255.0 AB01-LF 255.255.255.0
After, applying the above ACL, your VPN Client still does not work. Then I would recommend that you configure a pool for the VPN Clients from a range of IP that is not part of your internal LAN. Example, 172.16.1.0/24 and also configure NAT 0 to bypass NAT.
access-list inside_outbound_nat0_acl permit ip AB01-LF 255.255.255.0 172.16.1.0 255.255.255.0
Let me know if it works.
Regards,
Arul
** Please rate all helpful posts **

Similar Messages

  • My BB9810 refuse to load OS7.1 software on my phone after the download has completed. My phone has freezed/stucked since morning. Pls urgent help/assistant needed as I can not access/use my phone for over 24hrs now.

    My BB9810 refuse to load OS7.1 software on my phone after the download has completed. My phone has freezed/stucked since morning. Pls  urgent help/assistant needed as I can not access/use my phone for over 24hrs now.

    Hi there,
    Use the method described in the link below to get back up and running:
    http://supportforums.blackberry.com/t5/Device-software-for-BlackBerry/How-To-Reload-Your-Operating-S...
    I hope this info helps!
    If you want to thank someone for their comment, do so by clicking the Thumbs Up icon.
    If your issue is resolved, don't forget to click the Solution button on the resolution!

  • I updates my iPad with the latest iOS and despite backing up all the information prior, my iBooks application was deleted along with a hundred important PDFs on it. Is it possible to locate these missing files? Urgently requires assistance. Thank you!

    I updated my iPad with the latest iOS and despite backing up all the information prior via iTunes, my iBooks application was deleted along with a hundred important PDFs on it. Is it possible to locate these missing files? Urgently require assistance. Thank you!

    Hi Sam,
    I understand where you are about being your own IT department, it can be overwhelming ...
    What drives to buy depends an awful lot on how you will use them, what your budget is, and your preferences.
    In the case of your DP Powermac, for online storage used primarily for editing, I would add one or more internal drives first. Look for drives that are at least 7200rpm and have at least an 8MB cache. 10,000rpm/16MB cache is even better, but more expensive. Seagate Barracudas have always been good choices.
    For backup purposes, I'd pick some good external FireWire drives; you can also use these for online editing, lots of people do. Your Mac has both FW400 and FW800 ports - either kind is fine but if you get drives that support both, you would want to connect them to the FW800 port for the added performance.
    In my experience, the Lacie d2 Extreme drives have been very very good. In fact I have 3 of them daisy-chained off my iMac G5 right now and they work flawlessly with FCE. Weibetech and Granite Digital drives are further upscale in performance and price. RAID configurations would be even further upscale. Do stay away from consumer level hard drives, however ... the Western Digital MyBook series & no-name drives come to mind ...
    Don't use a FireWire hub for your external drives, it's just asking for trouble.
    ps. And thanks for your nice comment about me. I'm happy to help, as are other folk in the forum.

  • 1820M Unit failure-urgent assistance requested

    Hey guys I have a serious problem! I hope someone can help me! I have recently purchased the 1820M sometime late last year. It was working fine, then, it began to freeze during start up and I would have to re-start the computer, two to three times before it would boot up and work properly. Since that time, I have been experiencing sound drop outs during play backs, that would last for maybe 1-2 seconds. Now, during a session last night, there is completely no sound coming from the unit. I am using Nuendo 2 as my recording software. On the patchmix dsp screen, I could see that there is audio there, all of the meters are moving and showing sound, but there's no music coming from the outputs. I haven't done anything different since my purchase and installment, the unit itself stopped working!
    Could anyone please give me immediate help!!!!!! I am loosing moneys daily because my studio is out of service due to the problem at hand.
    You can contact me here, on this forum, or email me at [email protected], or [email protected]
    Thank you for your immediate assistance!

    Hey,
    The first thing I would suggest is to Restore Defaults in Patchmix (if you right click on the E-MU icon in the taskbar you can see this option).
    Also check in Device Manager to ensure that the E-MU card is correctly recognised and there are no conflicts...you could also check for IRQ sharing.
    Ensure you've installed the latest drivers and Patchmix updates.
    In the Output Assignment Window in PatchMix, can you check that you have Mix or Mon selected againest the output where your speakers/monitors are connected.
    If you don't have the correct Session (that matches the sample rate of your file) loaded in PM then this may also be a problem..you would see 'activity' but wouldn't hear anything.
    ATB,
    ~Jen~

  • "iPod Setup Assistant " request always pops up upon mounting mono 20gb ipod

    Just installed 30gb ipod & itunes update onto computer running Windows XP - no problems. I also have a 20gb mono on the same computer (updated itunes and ipod updater as well). Restarted computer. I signed on as the only one using the PC, launch itunes, mount the 20gb ipod. The system does nothing for about 20 secs. then the ipod is shown (as it always does). No problem adding songs to libary or transfering to ipod w/20 gb (except the inital delay). The problem is, behind the itune window a window pops up "iPod set up assistant" with the name of the ipod I just mounted. Window ask me if I want to auto sync my files (I click off the check mark - because I do not keep music on computer otherwise this would wipe my ipod clean). I cancel out, but each time I mount the ipod I get the same pop up "set up request". Any ideas what is going on and how to stop this (so that I some day do not make the mistake of hitting OK in place of cancel)?
    I have read the posting below but it falls short of answering my question.
    Thank you in advance.
    "How do I set up another iPod in iTunes when I already have an existing iPod/iTunes combo on my computer?"
    Answer:
    First things first, lets get your iPod up and running with the correct firmware:
    Begin by throwing away the disc that came with your iPod. The software on it is more than likely out of date anyway!
    Download the latest iPod firmware from HERE and install it on your computer (by double-clicking the installer icon).
    Go to Start > All Programs > iPod > iPod Updater > etc and run the updater application.
    When the pop-up box appears, connect your iPod and select the RESTORE option.
    When instructed, disconnect the iPod from the PC and connect it to the AC adapter to complete the process.
    OK, now you need to decide 'how' you want to manage your music. You have a couple of options:
    Using the existing iTunes installation on your PC
    If you want to use the same library and iTunes installation, then you can just re-connect the iPod to the computer via the USB or Firewire. iTunes will launch and ask you to register the iPod. To manage your music, you now have two further options. You could either:
    Use 'Auto-Synch' to transfer the entire music library and playlist selections to your iPod.
    OR
    Use the 'Manual Synch' option to manually drag and drop the songs and playlists that you want on to your iPod.
    OR
    Set up a 'Master' playlist which contains all the songs you like, and then set the iPod to automatically synch to that.
    Using a new iTunes installation (Requires windows XP)
    If you want to keep your new iPod music completely seperate from the original iTunes library, then you can install another instance of iTunes. To do this, you must:
    Create your own XP user profile.
    iTunes should be accessible using this log-in. If not, then download and install the latest version of iTunes. This can be obtained HERE. (Note: When swapping between User IDs, you should not use the 'Switch User' option. iTunes really doesn't like that!)
    Once the iTunes install has completed, you can begin adding your own music. Your music files will be automatically added the the newly created iTunes folder which can be found at C:\Documents and Settings\[User Name]\My Documents\My Music\iTunes\iTunes Music.
    If you want to keep all the music on the hard-drive in the same place (and minimise the possibility of having multiple versions of the same song everywhere), then you can change the settings in iTunes so that all music is derived from the same location. To do this, go to Edit > Preferences and select the 'Advanced' tab. You can then change the iTunes Music folder location to something like C:\Documents and Settings\All Users\Shared Documents\Shared Music.
    20gb mono wheel with 4 buttons at top   Windows XP  

    To all of those who viewed question but did not have an answer the following is how I resolved my issue. FYI. In the end, although the "Setup..." window came up, it was in fact stating that I did not have the music file within my iTunes. How I resolved the issue was to first click OFF the check mark that advised me that iTunes would automatically update my songs. I did not change the name of my iPod (since it was the correct name). Clicked next and then Finish. This resulted in the window going away and the "Music Store" file appearing within iTunes. The "Setup..." box does not come back up.

  • Local router blocking incoming remote assistance request

     I have a user who recently moved. they received new equipment from their ISP. I use to be able to make remote assistance connections to their computer using a popular system center configuration manager remote tool. Now i can't get past the handshake when i try to connect. If he has split tunneling enabled would the new router block incoming traffic? I know by default most of the router's firewall will block all incoming traffic (if enabled). does this apply to VPN traffic?

    Hi, if the VPN terminates on an IOS router, then the split tunneling does not "block" anything. It simply decides which traffic is sent through the tunnel and which traffic is sent in clear text (as in Internet traffic). 
    If the router has ACLs on the outside interface, that could be blocking the traffic (even VPN traffic). 
    Make sure the desired traffic is part of the split tunneling rule and that if there's an ACL, it allows the traffic to pass.

  • Cisco 5505 VPN assistance - Resending P1 and Peer to Peer List No match

    Hello and thanks in advance to anyone that can help me with the IPSec connection.  the VPN were working when i first created them but now they wont connect.  Here is the error on the primary (local) firewall: (yes i know the time isnt set yet on the firewall)
    4|May 17 2007|13:51:55|713903|||||IP = X.X.X.X, Error: Unable to remove PeerTblEntry
    3|May 17 2007|13:51:55|713902|||||IP = X.X.X.X, Removing peer from peer table failed, no match!
    6|May 17 2007|13:51:55|713905|||||IP = X.X.X.X, P1 Retransmit msg dispatched to MM FSM
    5|May 17 2007|13:51:55|713201|||||IP = X.X.X.X, Duplicate Phase 1 packet detected.  Retransmitting last packet.
    6|May 17 2007|13:51:47|713905|||||IP = X.X.X.X, P1 Retransmit msg dispatched to MM FSM
    5|May 17 2007|13:51:47|713201|||||IP = X.X.X.X, Duplicate Phase 1 packet detected.  Retransmitting last packet.
    The local firewall has one VPN configured and the remote has 2 (1 working and the other not): Local Firewall is Base licensing with 3DES.  As far as I can tell they have the same VPN parameters but maybe the remote has pfs1 turned on?  Ive played with various settings and cant seem to get it to work.  The cryptomap has the same firewall rules in it (obviously reversed on remote). Any help much appreciated!  I Have a third site doing exactly the same thing (once again also works on another site to site but not this one).  It's weird because I used the IPSec wizard and got it to work and rebooted the ASA and tunnel came up yet again but now my debug log is just full of this info and tunnels never come up.....the only time it was up was for a few hours then wont come up anymore...odd..
    Local Fire Wall:
    hostname ciscoasa
    names
    name 172.25.42.0 MASALan
    name 172.25.7.0 FHR
    name 172.25.43.0 MR
    interface Vlan1
    nameif inside
    security-level 100
    ip address 172.25.6.1 255.255.255.0
    interface Vlan2
    nameif outside
    security-level 0
    ip address 10.10.10.30 255.255.255.0
    interface Ethernet0/0
    switchport access vlan 2
    interface Ethernet0/1
    switchport access vlan 2
    interface Ethernet0/2
    interface Ethernet0/3
    interface Ethernet0/4
    interface Ethernet0/5
    interface Ethernet0/6
    interface Ethernet0/7
    boot system disk0:/asa821-k8.bin
    ftp mode passive
    dns server-group DefaultDNS
    same-security-traffic permit inter-interface
    same-security-traffic permit intra-interface
    object-group network inside-network
    object-group protocol DM_INLINE_PROTOCOL_1
    protocol-object ip
    protocol-object icmp
    protocol-object igmp
    protocol-object gre
    object-group protocol DM_INLINE_PROTOCOL_2
    protocol-object ip
    protocol-object icmp
    protocol-object igmp
    protocol-object gre
    object-group network DM_INLINE_NETWORK_4
    network-object MASALan 255.255.255.0
    network-object MR 255.255.255.0
    object-group network DM_INLINE_NETWORK_6
    network-object 172.25.6.0 255.255.255.0
    network-object FHR 255.255.255.0
    object-group protocol DM_INLINE_PROTOCOL_3
    protocol-object ip
    protocol-object icmp
    protocol-object igmp
    protocol-object gre
    object-group network DM_INLINE_NETWORK_3
    network-object 172.25.6.0 255.255.255.0
    network-object FHR 255.255.255.0
    object-group network DM_INLINE_NETWORK_5
    network-object MASALan 255.255.255.0
    network-object MR 255.255.255.0
    access-list outside_2_cryptomap extended permit ip 172.25.6.0 255.255.255.0 MASALan 255.255.255.0
    access-list NONAT extended permit ip any 172.25.4.0 255.255.255.0
    access-list NONAT extended permit ip 172.25.6.0 255.255.255.0 MASALan 255.255.255.0
    access-list NONAT extended permit ip FHR 255.255.255.0 MR 255.255.255.0
    access-list NONAT extended permit ip object-group DM_INLINE_NETWORK_3 object-group DM_INLINE_NETWORK_5
    access-list outside_access_in extended permit object-group DM_INLINE_PROTOCOL_3 object-group DM_INLINE_NETWORK_4 object-group DM_INLINE_NETWORK_6
    pager lines 24
    logging enable
    logging asdm informational
    mtu inside 1500
    mtu outside 1500
    ip local pool RemotePool 172.25.4.1-172.25.4.2 mask 255.255.255.0
    icmp unreachable rate-limit 1 burst-size 1
    asdm image disk0:/asdm-621.bin
    no asdm history enable
    arp timeout 14400
    global (outside) 1 interface
    nat (inside) 0 access-list NONAT
    access-group outside_access_in in interface outside
    route outside 0.0.0.0 0.0.0.0 10.10.10.1 1
    route inside 172.25.1.0 255.255.255.0 172.25.6.2 1
    route inside 172.25.2.0 255.255.255.0 172.25.6.2 1
    route inside 172.25.8.0 255.255.255.0 172.25.6.4 1
    timeout xlate 3:00:00
    timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
    timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
    timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
    timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
    timeout tcp-proxy-reassembly 0:01:00
    dynamic-access-policy-record DfltAccessPolicy
    aaa authentication ssh console LOCAL
    http server enable
    http 172.25.0.0 255.255.0.0 outside
    http 172.25.0.0 255.255.0.0 inside
    no snmp-server location
    no snmp-server contact
    snmp-server enable traps snmp authentication linkup linkdown coldstart
    crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
    crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
    crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
    crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
    crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
    crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
    crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
    crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
    crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
    crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
    crypto ipsec security-association lifetime seconds 28800
    crypto ipsec security-association lifetime kilobytes 4608000
    crypto map outside_map 2 match address outside_2_cryptomap
    crypto map outside_map 2 set peer 216.183.157.158
    crypto map outside_map 2 set transform-set ESP-AES-128-SHA
    crypto map outside_map 2 set security-association lifetime kilobytes 4608000
    crypto map outside_map interface outside
    crypto isakmp enable outside
    crypto isakmp policy 1
    authentication pre-share
    encryption 3des
    hash sha
    group 2
    lifetime 86400
    no crypto isakmp nat-traversal
    telnet timeout 5
    ssh 172.25.0.0 255.255.0.0 inside
    ssh 172.25.6.0 255.255.255.0 inside
    ssh 172.25.0.0 255.255.0.0 outside
    ssh timeout 60
    console timeout 0
    management-access inside
    dhcpd auto_config outside
    threat-detection basic-threat
    threat-detection statistics access-list
    no threat-detection statistics tcp-intercept
    webvpn
    group-policy DfltGrpPolicy attributes
    vpn-tunnel-protocol IPSec
    group-policy GroupPolicy1 internal
    group-policy GroupPolicy1 attributes
    vpn-filter none
    vpn-tunnel-protocol IPSec
    tunnel-group osfdremote ipsec-attributes
    pre-shared-key *
    tunnel-group X.X.X.X type ipsec-l2l
    tunnel-group X.X.X.X general-attributes
    default-group-policy GroupPolicy1
    tunnel-group X.X.X.X ipsec-attributes
    pre-shared-key *
    class-map inspection_default
    match default-inspection-traffic
    policy-map type inspect dns preset_dns_map
    parameters
      message-length maximum 512
    policy-map global_policy
    class inspection_default
      inspect dns preset_dns_map
      inspect ftp
      inspect h323 h225
      inspect h323 ras
      inspect rsh
      inspect rtsp
      inspect esmtp
      inspect sqlnet
      inspect skinny 
      inspect sunrpc
      inspect xdmcp
      inspect sip 
      inspect netbios
      inspect tftp
    service-policy global_policy global
    prompt hostname context
    REMOTE FIREWALL
    interface Vlan2
    nameif outside
    security-level 0
    pppoe client vpdn group CHN
    ip address pppoe setroute
    ftp mode passive
    same-security-traffic permit inter-interface
    same-security-traffic permit intra-interface
    object-group network DM_INLINE_NETWORK_1
    network-object 172.25.42.0 255.255.255.0
    network-object RFN 255.255.255.0
    object-group network DM_INLINE_NETWORK_2
    network-object RHQASAnet 255.255.255.0
    network-object RHQNet 255.255.255.0
    object-group protocol DM_INLINE_PROTOCOL_1
    protocol-object ip
    protocol-object gre
    protocol-object tcp
    object-group network DM_INLINE_NETWORK_3
    network-object 172.25.42.0 255.255.255.0
    network-object RFN 255.255.255.0
    object-group network DM_INLINE_NETWORK_4
    network-object FHData 255.255.255.0
    network-object FHR 255.255.255.0
    object-group protocol DM_INLINE_PROTOCOL_2
    protocol-object ip
    protocol-object gre
    protocol-object tcp
    access-list outside_access_in extended permit icmp any any
    access-list outside_access_in extended permit tcp any any eq www
    access-list outside_cryptomap extended permit ip object-group DM_INLINE_NETWORK_1 RHQASAnet 255.255.255.0
    access-list inside_nat0_outbound extended permit ip RFN 255.255.255.0 RHQNet 255.255.255.0
    access-list inside_nat0_outbound extended permit ip 172.25.42.0 255.255.255.0 RHQASAnet 255.255.255.0
    access-list inside_nat0_outbound extended permit ip any 192.168.5.0 255.255.255.240
    access-list inside_nat0_outbound extended permit ip 172.25.42.0 255.255.255.0 FHData 255.255.255.0
    access-list inside_nat0_outbound extended permit ip RFN 255.255.255.0 FHR 255.255.255.0
    access-list inside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 any object-group DM_INLINE_NETWORK_2
    access-list inside_access_in extended permit object-group DM_INLINE_PROTOCOL_2 any object-group DM_INLINE_NETWORK_4
    access-list outside_cryptomap_1 extended permit ip object-group DM_INLINE_NETWORK_3 FHData 255.255.255.0
    no pager
    logging enable
    logging asdm debugging
    mtu inside 1500
    mtu outside 1500
    ip local pool 192.168.5.1 192.168.5.1-192.168.5.10 mask 255.255.255.0
    no failover
    icmp unreachable rate-limit 1 burst-size 1
    no asdm history enable
    arp timeout 14400
    global (outside) 101 interface
    nat (inside) 0 access-list inside_nat0_outbound
    nat (inside) 101 0.0.0.0 0.0.0.0
    access-group inside_access_in in interface inside
    access-group outside_access_in in interface outside
    route outside 0.0.0.0 0.0.0.0 10.110.10.1 1
    route inside RFN 255.255.255.0 172.25.42.2 1
    timeout xlate 3:00:00
    timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
    timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
    timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
    timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
    timeout tcp-proxy-reassembly 0:01:00
    timeout floating-conn 0:00:00
    dynamic-access-policy-record DfltAccessPolicy
    http server enable
    http 172.25.0.0 255.255.0.0 inside
    http 10.7.72.0 255.255.255.0 inside
    http 192.168.5.0 255.255.255.0 inside
    http 192.168.5.0 255.255.255.0 outside
    http RHQNet 255.255.255.0 inside
    http RHQASAnet 255.255.255.0 inside
    http RHQASAnet 255.255.255.0 outside
    http RHQNet 255.255.255.0 outside
    no snmp-server location
    no snmp-server contact
    snmp-server enable traps snmp authentication linkup linkdown coldstart
    crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
    crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
    crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
    crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
    crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
    crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
    crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
    crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
    crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
    crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
    crypto ipsec security-association lifetime seconds 28800
    crypto ipsec security-association lifetime kilobytes 4608000
    crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
    crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
    crypto map outside_map0 2 match address outside_cryptomap_1
    crypto map outside_map0 2 set peer Y.Y.Y.Y
    crypto map outside_map0 2 set transform-set ESP-AES-128-SHA
    crypto map outside_map0 2 set security-association lifetime seconds 28800
    crypto map outside_map0 2 set security-association lifetime kilobytes 4608000
    crypto map outside_map0 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
    crypto map outside_map0 interface outside
    crypto isakmp enable outside
    crypto isakmp policy 5
    authentication pre-share
    encryption 3des
    hash sha
    group 2
    lifetime 86400
    crypto isakmp policy 65535
    authentication pre-share
    encryption 3des
    hash sha
    group 2
    lifetime 86400
    telnet 0.0.0.0 0.0.255.255 inside
    telnet 172.25.0.0 255.255.0.0 inside
    telnet 192.168.5.0 255.255.255.0 inside
    telnet 192.168.5.0 255.255.255.0 outside
    telnet timeout 5
    ssh 192.168.5.0 255.255.255.0 inside
    ssh 192.168.5.0 255.255.255.0 outside
    ssh timeout 5
    console timeout 0
    threat-detection basic-threat
    threat-detection statistics access-list
    no threat-detection statistics tcp-intercept
    webvpn
    group-policy GroupPolicy1 internal
    group-policy GroupPolicy1 attributes
    vpn-tunnel-protocol IPSec
    group-policy remotevpn internal
    group-policy remotevpn attributes
    vpn-tunnel-protocol IPSec
    vpn-group-policy remotevpn
    tunnel-group Y.Y.Y.Y type ipsec-l2l
    tunnel-group Y.Y.Y.Y general-attributes
    default-group-policy GroupPolicy1
    tunnel-group Y.Y.Y.Y ipsec-attributes
    pre-shared-key *****
    class-map inspection_default
    match default-inspection-traffic
    policy-map type inspect dns preset_dns_map
    parameters
      message-length maximum client auto
      message-length maximum 512
    policy-map global_policy
    class inspection_default
      inspect dns preset_dns_map
      inspect ftp
      inspect h323 h225
      inspect h323 ras
      inspect ip-options
      inspect netbios
      inspect rsh
      inspect rtsp
      inspect skinny
      inspect esmtp
      inspect sqlnet
      inspect sunrpc
      inspect tftp
      inspect sip
      inspect xdmcp
    policy-map global-policy
    class inspection_default
      inspect pptp
    service-policy global_policy global
    prompt hostname context

    May 18 08:13:03 [IKEv1 DEBUG]: IP = X.X.X.X, IKE MM Responder FSM error hi                                                                                        story (struct &0xd578cda0)  , :  MM_DONE, EV_ERROR-->MM_WAIT_MSG3,                                                                                         EV_RESEND_MSG-->MM_WAIT_MSG3, NullEvent-->MM_SND_MSG2, EV_SND_MSG-->MM_SND_MSG2                                                                                        , EV_START_TMR-->MM_SND_MSG2, EV_RESEND_MSG-->MM_WAIT_MSG3, EV_RESEND_MSG-->MM_W                                                                                        AIT_MSG3, NullEvent
    May 18 08:13:03 [IKEv1 DEBUG]: IP = X.X.X.X, IKE SA MM:8e338e16 terminatin                                                                                        g:  flags 0x01000002, refcnt 0, tuncnt 0
    May 18 08:13:03 [IKEv1 DEBUG]: IP = X.X.X.X, sending delete/delete with re                                                                                        ason message
    May 18 08:13:03 [IKEv1]: IP = X.X.X.X, Removing peer from peer table faile                                                                                        d, no match!
    May 18 08:13:03 [IKEv1]: IP = X.X.X.X, Error: Unable to remove PeerTblEntr  
    Is the result and then it repeats =)

  • Need urgent help :'The requested resource does not exist error'

    Hi All,
    I am getting 'The requested resource does not exist error' when trying to acess http://machinename:50000/irj
    Even when i access http://machinename:50000, i get the same 'The root directory does not exist' error. I checked in visual admin, there is no other application deployed except my application.
    Any clues? Pls help
    thanks
    bhawna

    HI ,
    Did succeed to solve your problem. I am running into same problem.
    Any help is welcome.
    Thank u very much.

  • Windows 2011 SBS Reinstallation, PDC and User CALs - Assistance Requested.

    Hi, Here is my situation,
    I currently have a WS2011SBS which is the PDC, running AD, DNS and DHCP, This server is having Issues which I believe a reinstall would likely fix.  We no longer use Exchange or SharePoint on this server as we have moved to MS Online Service MSO365.
    I have already moved RDS/TS Licencing and Shared Folders to other servers running WS2008r2.  I also have another Server running WS2008r2 at a different site, linked by VPN (VPN is being replaced by Telstra Private Network link) I have set
    this server up as a secondary AD/DNS server (this was to resolve authentication and DNS issues at the other site due to slow VPN connection)
    What I would like to know or at least get some advice on is this:
    1. What will be the implications regarding User CALs of reinstalling SBS2011 on my Domain?
    2. Can I re sync AD/DNS from the secondary 2008r2 server or should I Promote the 2008r2 server to be the PDC and demote the SBS, and what are the implications of this on the User CALs?
    3. Is there a way that I can Install 2008r2 rather than 2011SBS but still use the user CALs, as I no longer require Exchange and SharePoint, The servers only rolls will be AD/DNS, DHCP and File/Printer Sharing, as I feel that 2011SBS is less stable that 2008r2?
    PLEASE NOTE: I do not have allowance to purchase more hardware, software or licences at this time.  The issues on the 2011SBS server affected Windows Server Backup Service, so restoring a backup is not an option.
    I am looking for as much information as possible (I am experienced with some aspects of Server Technology however there are holes in my knowledge), links to step by step procedures for your recommendations would be great, I realise that there are likely
    more than one ways around this, so any opinions would be appreciated.
    Thanks In Advance,
    Dave's Computers.

    Might try them over here.
    SBS forums on TechNet
    Regards, Dave Patrick ....
    Microsoft Certified Professional
    Microsoft MVP [Windows]
    Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

  • CJ20N Project Builder Validation Programming - Assistance requested

    This is a how-to request.  I am trying to validate user entry at save time in the CJ20N Project Builder (Project Systems).   The desire is to enforce that the project, wbs, and network company codes are all the same prior to saving a NEW project. 
    The problem I am having is on the scenario in which a user creates a new project by copying an existing project or standard template.  If the user changes the company code on one or more wbs before saving it,  the wbs table in abap memory prior to saving does not reflect this change.  The table is called CJ_BUF_PRPSxxx99999999 where xxx is the client number (mandt).
    Thus any attempts to loop at this table to validate the company code against the parent project are futile.
    I have contacted SAP on this  issue and they insist that it is not a bug.  I need an alternate solution.
    Any help would be appreciated.

    I solved this problem myself by stepping through the debugger between the user exit and the actual save routine.  I was able to find the correctly populated internal table to loop at.  It was called PSTAB.

  • Assistance request for lost mobile

    Can you give assistance on locating a lost mobile? I can provide necessary documents for validation and procedures.

    We..the Users (this being an User-to-User Forum) or even Nokia can't do anything in this regard.
    Refer THIS

  • JSX in CS5 assistance request

    I have a javascript (coded by Dave Saunders) that has been of great benefit to me over the past few years. It has worked without changes with InDesign CS2, CS3, and CS4 (Mac and Windows). This helpful tool allows me to position an InDesign window where I want it on my screen. Next the script is run to create a default data file. Finally, when the script is run again, it repositions the active window to match the location of the window defined in the default data file.
    This morning, it will not run in InDesign CS5 (7.0.3). It merely beeps at me when I invoke the script via the script panel or the assigned KB shortcut.
    The script worked with CS5 pre-update (7.0.0).
    The script stil works with CS4 (6.0.6) on the same system.
    System:
    Mac OS 10.6.4
    InDesign CS5 (7.0.3)
    Will any script guru out there be able to assist me with making this work again in CS5?
    // JavaScript Document
    //DESCRIPTION: Resets active window size or uses front window to set default size.
    // Check for WindowDefault.txt; if present use it to set front window
    // if not, use front window to set it after checking with user.
    myPath = app.activeScript;
    myParts = myPath.toString().split("/");
    myParts[(myParts.length - 1)] = "WindowDefault.txt";
    myNewPath = myParts.join("/");
    mySettingsFile = File(myNewPath);
    // Before proceeding, check that there is a front window
    // If not, offer user the chance to delete the current settings
    if (app.windows.length < 1) {
    if (confirm("No window is open; would you like to delete the settings file?")) {
      // User said yes; check that it exists
      if(mySettingsFile.exists) {
       mySettingsFile.remove();
    } else {
    if (mySettingsFile.open("r")) {
    savedBounds = mySettingsFile.read();
      mySettingsFile.close();
    myBounds = savedBounds.split(",");
      for (i = 0; i<myBounds.length; i++) {
       myBounds[i] = Number(myBounds[i]);
      app.windows[0].bounds = myBounds;
    } else {
      if (confirm("Settings file is missing. Use current front window to set default?")) {
       // User said: go to it.
       new File(mySettingsFile);
       mySettingsFile.open("w");
       mySettingsFile.write(app.windows[0].bounds);
       mySettingsFile.close();
    Thanks!
    -mt

    10.8.2 broke a lot of stuff, report this to Apple.

  • VPN Feature request for 10.4.11 or Leopard

    The built in VPN client is extremely limited in the flexibility it gives me to change its behavior. In order for it to be a fully functional enterprise grade VPN, it really needs the following capabilities:
    - The ability to modify the Phase 1 proposal
    - The ability to modify the Phase 2 proposal
    - The ability to modify the IKE peer ID
    - Enable/Disable XAUTH settings
    - Ideally the ability to modify DPD, PFS, replay protection, etc.
    This capability exists in the config file that is automatically created for racoon when you set up the VPN, however, it does not allow you to change any of the options through the GUI. The only way to change them is quick snag a copy of the file when it's created, modify it, and put it back in place with file permissions of 444 to prevent the GUI from overwriting it on the next launch.
    Simply adding the first 3 options should not be that difficult. The VPN client has been made to work with Cisco and Apple VPN servers, but does not work with any other vendor's products. Since all of the pieces are there, why not expose them in the GUI? Toss them under an Advanced tab which requires the user to hold down the option key to access them.

    Nobody here but us Mac users ... and the Discussion Forum Secret Police.
    You should post your suggestion at apple.com/feedback

  • Ver urgent:error in request

    Hi all,
           For one job 4 days of requests are loaded,For each day there are 3 pakages are loading,on first day of one request update method is repair full request,and subsequent them are fullupdate,the request repair full request has got error,that request is not correct.how can i solve this problem please helpme.
    Thanks & Regards,
    Praveena.

    Are you loading data into ODS?
    Is there Init/Delta already setup for that ODS for that datasource?
    Give us the error message you got in the monitor screen. If you do not have any error in the monitor screen.
    If you are loading to ODS and you have the init/delta already setup then you'll have to change the full update requests to repair full requests.
    Use the program RSSM_SET_REPAIR_FULL_FLAG to change them to repair full and then activate the ODS... It should work.
    Regards, Siva

  • Urgent: Generate spool request no.

    Hi gurus,
    I have to develop a report which has a pop up box for selection criteria based on which the records are displayed. The list has button 'send' which when clicked the output should be converted to an pdf and mailed.I know how to convert the output to pdf and mailing .
    My problem is since the list is dispalyed(report not executed in background) its not generating a spool request no.and therefore i cannot proceed further.How do I generate a spool no??
    Is there anyway in which i create a spool no and then asssign it to that list output??or any alternate method??
    Kindly help.
    Helpful solutions will be rewarded graciously!!!
    Regards,
    Niky.

    Hei,
    this will also work in the same way,
    suppose i_mara have five fields.
    Ex:
    Types: begin of t_mara,
               matnr type matnr,
               meins type meins,
               maktl type maktl,
               ERSDA type ERSDA,
               ername type ername,
          end of t_mara.
    data: i_mara type table of t_mara,
          wa_mara like line of i_mara.
    DATA: v_dest LIKE tsp01-rqdest,
    v_handle LIKE sy-tabix,
    v_spool_id LIKE tsp01-rqident,
    v_rc TYPE c,
    v_errmessage(100) TYPE c,
    v_text(70) TYPE c.
    START-OF-SELECTION.
    SELECT matnr FROM mara INTO TABLE i_mara.
    CALL FUNCTION 'RSPO_OPEN_SPOOLREQUEST'
    EXPORTING
    dest = 'LOCL'
    * LAYOUT =
    * NAME =
    * SUFFIX1 =
    * SUFFIX2 =
    * COPIES =
    * PRIO =
    * IMMEDIATE_PRINT =
    * AUTO_DELETE =
    * TITLELINE =
    * RECEIVER =
    * DIVISION =
    * AUTHORITY =
    * POSNAME =
    * ACTTIME =
    * LIFETIME = '8'
    * APPEND =
    * COVERPAGE =
    * CODEPAGE =
    * DOCTYPE =
    IMPORTING
    handle = v_handle
    spoolid = gd_spool_nr
    rc = v_rc
    errmessage = v_errmessage.
    LOOP AT i_mara into wa_mara.
    CONCATENATE i_mara-matnr i_mara-meins i_mara-maktl
                i_mara-ERSDA i_mara-ERname INTO v_text SEPARATED BY space.
    CALL FUNCTION 'RSPO_WRITE_SPOOLREQUEST'
    EXPORTING
    handle = v_handle
    text = v_text
    * LENGTH =
    * CODEPAGE =
    * TRUNCATE =
    IMPORTING
    rc = v_rc
    errmessage = v_errmessage
    EXCEPTIONS
    handle_not_valid = 1
    OTHERS = 2.
    IF sy-subrc <> 0.
    MESSAGE ID sy-msgid TYPE sy-msgty NUMBER sy-msgno
    WITH sy-msgv1 sy-msgv2 sy-msgv3 sy-msgv4.
    ENDIF.
    ENDLOOP.
    CALL FUNCTION 'RSPO_CLOSE_SPOOLREQUEST'
    EXPORTING
    handle = v_handle
    IMPORTING
    rc = v_rc
    errmessage = v_errmessage
    EXCEPTIONS
    handle_not_valid = 1
    OTHERS = 2.
    IF sy-subrc <> 0.
    MESSAGE ID sy-msgid TYPE sy-msgty NUMBER sy-msgno
    WITH sy-msgv1 sy-msgv2 sy-msgv3 sy-msgv4.
    ENDIF.
    CALL FUNCTION 'CONVERT_ABAPSPOOLJOB_2_PDF'
    EXPORTING
    src_spoolid = gd_spool_nr
    no_dialog = c_no
    dst_device = c_device
    IMPORTING
    pdf_bytecount = gd_bytecount
    TABLES
    pdf = it_pdf_output
    EXCEPTIONS
    err_no_abap_spooljob = 1
    err_no_spooljob = 2
    err_no_permission = 3
    err_conv_not_possible = 4
    err_bad_destdevice = 5
    user_cancelled = 6
    err_spoolerror = 7
    err_temseerror = 8
    err_btcjob_open_failed = 9
    err_btcjob_submit_failed = 10
    err_btcjob_close_failed = 11
    OTHERS = 12.
    CHECK sy-subrc = 0.

Maybe you are looking for

  • HP Laserjet 1320 stopped queue

    I recently purchased an HP Laserjet 1320 to connect via USB to my iMac (10.4.3). The computer recognizes the printer and automatically installs it into the printer setup utility and everything. It looks as though it is ready to print, but when I send

  • TS1702 asks me to sign in?

    each time i pick up my ipad and start to use it I am ask to sign into my app store. this is only recently this has been happening. Is there a change in the way apple is doing things or is someone hacking me?

  • Page size unlimited

    Hi all I want to generate a fixed length output file for 1 million records without any page breaks.The maximum value for set pagesize is 50000 and how can i overcome the limit rgds ramya

  • Commit/Rollback Buttons Diabled for Pinned Tables?

    When I pin a table, the commit/rollback buttons become disabled. Is there a reason for that, or is it a bug? Java(TM) Platform     1.5.0_12 Oracle IDE     1.5.0.52.03

  • ProgressIndicator in BSP

    Hi guys, we want to add a feature in our BSP-Application: When user clicks the button, the progressIndicator will be shown until the job done. During this period of time, user is not allowed to do anything excpet wait. I am condisering to use the BSP