Urgent VPN Assistance Requested!
I need to configure Mac OS X's built-in VPN Client ASAP, if possible.
I think I have figured out everything I need to know, except for one (hopefully small) problem.
I need to enable Transport Tunneling using IPSec over TCP (TCP Port 10000)
I cannot figure out how to do this. Please let me know if you have any suggestions.
Thank You!
Couple of things, You are assigning IP Address to the VPN Clients from a pool which is part of the LAN behind the Pix. This is not a recommended configuration. Also, I dont see a NAT 0 command to bypass NAT for the VPN Clients. So, you could try
access-list inside_outbound_nat0_acl permit ip AB01-LF 255.255.255.0 AB01-LF 255.255.255.0
After, applying the above ACL, your VPN Client still does not work. Then I would recommend that you configure a pool for the VPN Clients from a range of IP that is not part of your internal LAN. Example, 172.16.1.0/24 and also configure NAT 0 to bypass NAT.
access-list inside_outbound_nat0_acl permit ip AB01-LF 255.255.255.0 172.16.1.0 255.255.255.0
Let me know if it works.
Regards,
Arul
** Please rate all helpful posts **
Similar Messages
-
My BB9810 refuse to load OS7.1 software on my phone after the download has completed. My phone has freezed/stucked since morning. Pls urgent help/assistant needed as I can not access/use my phone for over 24hrs now.
Hi there,
Use the method described in the link below to get back up and running:
http://supportforums.blackberry.com/t5/Device-software-for-BlackBerry/How-To-Reload-Your-Operating-S...
I hope this info helps!
If you want to thank someone for their comment, do so by clicking the Thumbs Up icon.
If your issue is resolved, don't forget to click the Solution button on the resolution! -
I updated my iPad with the latest iOS and despite backing up all the information prior via iTunes, my iBooks application was deleted along with a hundred important PDFs on it. Is it possible to locate these missing files? Urgently require assistance. Thank you!
Hi Sam,
I understand where you are about being your own IT department, it can be overwhelming ...
What drives to buy depends an awful lot on how you will use them, what your budget is, and your preferences.
In the case of your DP Powermac, for online storage used primarily for editing, I would add one or more internal drives first. Look for drives that are at least 7200rpm and have at least an 8MB cache. 10,000rpm/16MB cache is even better, but more expensive. Seagate Barracudas have always been good choices.
For backup purposes, I'd pick some good external FireWire drives; you can also use these for online editing, lots of people do. Your Mac has both FW400 and FW800 ports - either kind is fine but if you get drives that support both, you would want to connect them to the FW800 port for the added performance.
In my experience, the Lacie d2 Extreme drives have been very very good. In fact I have 3 of them daisy-chained off my iMac G5 right now and they work flawlessly with FCE. Weibetech and Granite Digital drives are further upscale in performance and price. RAID configurations would be even further upscale. Do stay away from consumer level hard drives, however ... the Western Digital MyBook series & no-name drives come to mind ...
Don't use a FireWire hub for your external drives, it's just asking for trouble.
ps. And thanks for your nice comment about me. I'm happy to help, as are other folk in the forum. -
1820M Unit failure-urgent assistance requested
Hey guys I have a serious problem! I hope someone can help me! I have recently purchased the 1820M sometime late last year. It was working fine, then, it began to freeze during start up and I would have to re-start the computer, two to three times before it would boot up and work properly. Since that time, I have been experiencing sound drop outs during play backs, that would last for maybe 1-2 seconds. Now, during a session last night, there is completely no sound coming from the unit. I am using Nuendo 2 as my recording software. On the patchmix dsp screen, I could see that there is audio there, all of the meters are moving and showing sound, but there's no music coming from the outputs. I haven't done anything different since my purchase and installment, the unit itself stopped working!
Could anyone please give me immediate help!!!!!! I am loosing moneys daily because my studio is out of service due to the problem at hand.
You can contact me here, on this forum, or email me at [email protected], or [email protected]
Thank you for your immediate assistance!Hey,
The first thing I would suggest is to Restore Defaults in Patchmix (if you right click on the E-MU icon in the taskbar you can see this option).
Also check in Device Manager to ensure that the E-MU card is correctly recognised and there are no conflicts...you could also check for IRQ sharing.
Ensure you've installed the latest drivers and Patchmix updates.
In the Output Assignment Window in PatchMix, can you check that you have Mix or Mon selected againest the output where your speakers/monitors are connected.
If you don't have the correct Session (that matches the sample rate of your file) loaded in PM then this may also be a problem..you would see 'activity' but wouldn't hear anything.
ATB,
~Jen~ -
"iPod Setup Assistant " request always pops up upon mounting mono 20gb ipod
Just installed 30gb ipod & itunes update onto computer running Windows XP - no problems. I also have a 20gb mono on the same computer (updated itunes and ipod updater as well). Restarted computer. I signed on as the only one using the PC, launch itunes, mount the 20gb ipod. The system does nothing for about 20 secs. then the ipod is shown (as it always does). No problem adding songs to libary or transfering to ipod w/20 gb (except the inital delay). The problem is, behind the itune window a window pops up "iPod set up assistant" with the name of the ipod I just mounted. Window ask me if I want to auto sync my files (I click off the check mark - because I do not keep music on computer otherwise this would wipe my ipod clean). I cancel out, but each time I mount the ipod I get the same pop up "set up request". Any ideas what is going on and how to stop this (so that I some day do not make the mistake of hitting OK in place of cancel)?
I have read the posting below but it falls short of answering my question.
Thank you in advance.
"How do I set up another iPod in iTunes when I already have an existing iPod/iTunes combo on my computer?"
Answer:
First things first, lets get your iPod up and running with the correct firmware:
Begin by throwing away the disc that came with your iPod. The software on it is more than likely out of date anyway!
Download the latest iPod firmware from HERE and install it on your computer (by double-clicking the installer icon).
Go to Start > All Programs > iPod > iPod Updater > etc and run the updater application.
When the pop-up box appears, connect your iPod and select the RESTORE option.
When instructed, disconnect the iPod from the PC and connect it to the AC adapter to complete the process.
OK, now you need to decide 'how' you want to manage your music. You have a couple of options:
Using the existing iTunes installation on your PC
If you want to use the same library and iTunes installation, then you can just re-connect the iPod to the computer via the USB or Firewire. iTunes will launch and ask you to register the iPod. To manage your music, you now have two further options. You could either:
Use 'Auto-Synch' to transfer the entire music library and playlist selections to your iPod.
OR
Use the 'Manual Synch' option to manually drag and drop the songs and playlists that you want on to your iPod.
OR
Set up a 'Master' playlist which contains all the songs you like, and then set the iPod to automatically synch to that.
Using a new iTunes installation (Requires windows XP)
If you want to keep your new iPod music completely seperate from the original iTunes library, then you can install another instance of iTunes. To do this, you must:
Create your own XP user profile.
iTunes should be accessible using this log-in. If not, then download and install the latest version of iTunes. This can be obtained HERE. (Note: When swapping between User IDs, you should not use the 'Switch User' option. iTunes really doesn't like that!)
Once the iTunes install has completed, you can begin adding your own music. Your music files will be automatically added the the newly created iTunes folder which can be found at C:\Documents and Settings\[User Name]\My Documents\My Music\iTunes\iTunes Music.
If you want to keep all the music on the hard-drive in the same place (and minimise the possibility of having multiple versions of the same song everywhere), then you can change the settings in iTunes so that all music is derived from the same location. To do this, go to Edit > Preferences and select the 'Advanced' tab. You can then change the iTunes Music folder location to something like C:\Documents and Settings\All Users\Shared Documents\Shared Music.
20gb mono wheel with 4 buttons at top Windows XPTo all of those who viewed question but did not have an answer the following is how I resolved my issue. FYI. In the end, although the "Setup..." window came up, it was in fact stating that I did not have the music file within my iTunes. How I resolved the issue was to first click OFF the check mark that advised me that iTunes would automatically update my songs. I did not change the name of my iPod (since it was the correct name). Clicked next and then Finish. This resulted in the window going away and the "Music Store" file appearing within iTunes. The "Setup..." box does not come back up.
-
Local router blocking incoming remote assistance request
I have a user who recently moved. they received new equipment from their ISP. I use to be able to make remote assistance connections to their computer using a popular system center configuration manager remote tool. Now i can't get past the handshake when i try to connect. If he has split tunneling enabled would the new router block incoming traffic? I know by default most of the router's firewall will block all incoming traffic (if enabled). does this apply to VPN traffic?
Hi, if the VPN terminates on an IOS router, then the split tunneling does not "block" anything. It simply decides which traffic is sent through the tunnel and which traffic is sent in clear text (as in Internet traffic).
If the router has ACLs on the outside interface, that could be blocking the traffic (even VPN traffic).
Make sure the desired traffic is part of the split tunneling rule and that if there's an ACL, it allows the traffic to pass. -
Cisco 5505 VPN assistance - Resending P1 and Peer to Peer List No match
Hello and thanks in advance to anyone that can help me with the IPSec connection. the VPN were working when i first created them but now they wont connect. Here is the error on the primary (local) firewall: (yes i know the time isnt set yet on the firewall)
4|May 17 2007|13:51:55|713903|||||IP = X.X.X.X, Error: Unable to remove PeerTblEntry
3|May 17 2007|13:51:55|713902|||||IP = X.X.X.X, Removing peer from peer table failed, no match!
6|May 17 2007|13:51:55|713905|||||IP = X.X.X.X, P1 Retransmit msg dispatched to MM FSM
5|May 17 2007|13:51:55|713201|||||IP = X.X.X.X, Duplicate Phase 1 packet detected. Retransmitting last packet.
6|May 17 2007|13:51:47|713905|||||IP = X.X.X.X, P1 Retransmit msg dispatched to MM FSM
5|May 17 2007|13:51:47|713201|||||IP = X.X.X.X, Duplicate Phase 1 packet detected. Retransmitting last packet.
The local firewall has one VPN configured and the remote has 2 (1 working and the other not): Local Firewall is Base licensing with 3DES. As far as I can tell they have the same VPN parameters but maybe the remote has pfs1 turned on? Ive played with various settings and cant seem to get it to work. The cryptomap has the same firewall rules in it (obviously reversed on remote). Any help much appreciated! I Have a third site doing exactly the same thing (once again also works on another site to site but not this one). It's weird because I used the IPSec wizard and got it to work and rebooted the ASA and tunnel came up yet again but now my debug log is just full of this info and tunnels never come up.....the only time it was up was for a few hours then wont come up anymore...odd..
Local Fire Wall:
hostname ciscoasa
names
name 172.25.42.0 MASALan
name 172.25.7.0 FHR
name 172.25.43.0 MR
interface Vlan1
nameif inside
security-level 100
ip address 172.25.6.1 255.255.255.0
interface Vlan2
nameif outside
security-level 0
ip address 10.10.10.30 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
switchport access vlan 2
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
boot system disk0:/asa821-k8.bin
ftp mode passive
dns server-group DefaultDNS
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object-group network inside-network
object-group protocol DM_INLINE_PROTOCOL_1
protocol-object ip
protocol-object icmp
protocol-object igmp
protocol-object gre
object-group protocol DM_INLINE_PROTOCOL_2
protocol-object ip
protocol-object icmp
protocol-object igmp
protocol-object gre
object-group network DM_INLINE_NETWORK_4
network-object MASALan 255.255.255.0
network-object MR 255.255.255.0
object-group network DM_INLINE_NETWORK_6
network-object 172.25.6.0 255.255.255.0
network-object FHR 255.255.255.0
object-group protocol DM_INLINE_PROTOCOL_3
protocol-object ip
protocol-object icmp
protocol-object igmp
protocol-object gre
object-group network DM_INLINE_NETWORK_3
network-object 172.25.6.0 255.255.255.0
network-object FHR 255.255.255.0
object-group network DM_INLINE_NETWORK_5
network-object MASALan 255.255.255.0
network-object MR 255.255.255.0
access-list outside_2_cryptomap extended permit ip 172.25.6.0 255.255.255.0 MASALan 255.255.255.0
access-list NONAT extended permit ip any 172.25.4.0 255.255.255.0
access-list NONAT extended permit ip 172.25.6.0 255.255.255.0 MASALan 255.255.255.0
access-list NONAT extended permit ip FHR 255.255.255.0 MR 255.255.255.0
access-list NONAT extended permit ip object-group DM_INLINE_NETWORK_3 object-group DM_INLINE_NETWORK_5
access-list outside_access_in extended permit object-group DM_INLINE_PROTOCOL_3 object-group DM_INLINE_NETWORK_4 object-group DM_INLINE_NETWORK_6
pager lines 24
logging enable
logging asdm informational
mtu inside 1500
mtu outside 1500
ip local pool RemotePool 172.25.4.1-172.25.4.2 mask 255.255.255.0
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-621.bin
no asdm history enable
arp timeout 14400
global (outside) 1 interface
nat (inside) 0 access-list NONAT
access-group outside_access_in in interface outside
route outside 0.0.0.0 0.0.0.0 10.10.10.1 1
route inside 172.25.1.0 255.255.255.0 172.25.6.2 1
route inside 172.25.2.0 255.255.255.0 172.25.6.2 1
route inside 172.25.8.0 255.255.255.0 172.25.6.4 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
dynamic-access-policy-record DfltAccessPolicy
aaa authentication ssh console LOCAL
http server enable
http 172.25.0.0 255.255.0.0 outside
http 172.25.0.0 255.255.0.0 inside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
crypto map outside_map 2 match address outside_2_cryptomap
crypto map outside_map 2 set peer 216.183.157.158
crypto map outside_map 2 set transform-set ESP-AES-128-SHA
crypto map outside_map 2 set security-association lifetime kilobytes 4608000
crypto map outside_map interface outside
crypto isakmp enable outside
crypto isakmp policy 1
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
no crypto isakmp nat-traversal
telnet timeout 5
ssh 172.25.0.0 255.255.0.0 inside
ssh 172.25.6.0 255.255.255.0 inside
ssh 172.25.0.0 255.255.0.0 outside
ssh timeout 60
console timeout 0
management-access inside
dhcpd auto_config outside
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
webvpn
group-policy DfltGrpPolicy attributes
vpn-tunnel-protocol IPSec
group-policy GroupPolicy1 internal
group-policy GroupPolicy1 attributes
vpn-filter none
vpn-tunnel-protocol IPSec
tunnel-group osfdremote ipsec-attributes
pre-shared-key *
tunnel-group X.X.X.X type ipsec-l2l
tunnel-group X.X.X.X general-attributes
default-group-policy GroupPolicy1
tunnel-group X.X.X.X ipsec-attributes
pre-shared-key *
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
service-policy global_policy global
prompt hostname context
REMOTE FIREWALL
interface Vlan2
nameif outside
security-level 0
pppoe client vpdn group CHN
ip address pppoe setroute
ftp mode passive
same-security-traffic permit inter-interface
same-security-traffic permit intra-interface
object-group network DM_INLINE_NETWORK_1
network-object 172.25.42.0 255.255.255.0
network-object RFN 255.255.255.0
object-group network DM_INLINE_NETWORK_2
network-object RHQASAnet 255.255.255.0
network-object RHQNet 255.255.255.0
object-group protocol DM_INLINE_PROTOCOL_1
protocol-object ip
protocol-object gre
protocol-object tcp
object-group network DM_INLINE_NETWORK_3
network-object 172.25.42.0 255.255.255.0
network-object RFN 255.255.255.0
object-group network DM_INLINE_NETWORK_4
network-object FHData 255.255.255.0
network-object FHR 255.255.255.0
object-group protocol DM_INLINE_PROTOCOL_2
protocol-object ip
protocol-object gre
protocol-object tcp
access-list outside_access_in extended permit icmp any any
access-list outside_access_in extended permit tcp any any eq www
access-list outside_cryptomap extended permit ip object-group DM_INLINE_NETWORK_1 RHQASAnet 255.255.255.0
access-list inside_nat0_outbound extended permit ip RFN 255.255.255.0 RHQNet 255.255.255.0
access-list inside_nat0_outbound extended permit ip 172.25.42.0 255.255.255.0 RHQASAnet 255.255.255.0
access-list inside_nat0_outbound extended permit ip any 192.168.5.0 255.255.255.240
access-list inside_nat0_outbound extended permit ip 172.25.42.0 255.255.255.0 FHData 255.255.255.0
access-list inside_nat0_outbound extended permit ip RFN 255.255.255.0 FHR 255.255.255.0
access-list inside_access_in extended permit object-group DM_INLINE_PROTOCOL_1 any object-group DM_INLINE_NETWORK_2
access-list inside_access_in extended permit object-group DM_INLINE_PROTOCOL_2 any object-group DM_INLINE_NETWORK_4
access-list outside_cryptomap_1 extended permit ip object-group DM_INLINE_NETWORK_3 FHData 255.255.255.0
no pager
logging enable
logging asdm debugging
mtu inside 1500
mtu outside 1500
ip local pool 192.168.5.1 192.168.5.1-192.168.5.10 mask 255.255.255.0
no failover
icmp unreachable rate-limit 1 burst-size 1
no asdm history enable
arp timeout 14400
global (outside) 101 interface
nat (inside) 0 access-list inside_nat0_outbound
nat (inside) 101 0.0.0.0 0.0.0.0
access-group inside_access_in in interface inside
access-group outside_access_in in interface outside
route outside 0.0.0.0 0.0.0.0 10.110.10.1 1
route inside RFN 255.255.255.0 172.25.42.2 1
timeout xlate 3:00:00
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
http server enable
http 172.25.0.0 255.255.0.0 inside
http 10.7.72.0 255.255.255.0 inside
http 192.168.5.0 255.255.255.0 inside
http 192.168.5.0 255.255.255.0 outside
http RHQNet 255.255.255.0 inside
http RHQASAnet 255.255.255.0 inside
http RHQASAnet 255.255.255.0 outside
http RHQNet 255.255.255.0 outside
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
crypto ipsec security-association lifetime seconds 28800
crypto ipsec security-association lifetime kilobytes 4608000
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
crypto map outside_map0 2 match address outside_cryptomap_1
crypto map outside_map0 2 set peer Y.Y.Y.Y
crypto map outside_map0 2 set transform-set ESP-AES-128-SHA
crypto map outside_map0 2 set security-association lifetime seconds 28800
crypto map outside_map0 2 set security-association lifetime kilobytes 4608000
crypto map outside_map0 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map outside_map0 interface outside
crypto isakmp enable outside
crypto isakmp policy 5
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
crypto isakmp policy 65535
authentication pre-share
encryption 3des
hash sha
group 2
lifetime 86400
telnet 0.0.0.0 0.0.255.255 inside
telnet 172.25.0.0 255.255.0.0 inside
telnet 192.168.5.0 255.255.255.0 inside
telnet 192.168.5.0 255.255.255.0 outside
telnet timeout 5
ssh 192.168.5.0 255.255.255.0 inside
ssh 192.168.5.0 255.255.255.0 outside
ssh timeout 5
console timeout 0
threat-detection basic-threat
threat-detection statistics access-list
no threat-detection statistics tcp-intercept
webvpn
group-policy GroupPolicy1 internal
group-policy GroupPolicy1 attributes
vpn-tunnel-protocol IPSec
group-policy remotevpn internal
group-policy remotevpn attributes
vpn-tunnel-protocol IPSec
vpn-group-policy remotevpn
tunnel-group Y.Y.Y.Y type ipsec-l2l
tunnel-group Y.Y.Y.Y general-attributes
default-group-policy GroupPolicy1
tunnel-group Y.Y.Y.Y ipsec-attributes
pre-shared-key *****
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 512
policy-map global_policy
class inspection_default
inspect dns preset_dns_map
inspect ftp
inspect h323 h225
inspect h323 ras
inspect ip-options
inspect netbios
inspect rsh
inspect rtsp
inspect skinny
inspect esmtp
inspect sqlnet
inspect sunrpc
inspect tftp
inspect sip
inspect xdmcp
policy-map global-policy
class inspection_default
inspect pptp
service-policy global_policy global
prompt hostname contextMay 18 08:13:03 [IKEv1 DEBUG]: IP = X.X.X.X, IKE MM Responder FSM error hi story (struct &0xd578cda0) , : MM_DONE, EV_ERROR-->MM_WAIT_MSG3, EV_RESEND_MSG-->MM_WAIT_MSG3, NullEvent-->MM_SND_MSG2, EV_SND_MSG-->MM_SND_MSG2 , EV_START_TMR-->MM_SND_MSG2, EV_RESEND_MSG-->MM_WAIT_MSG3, EV_RESEND_MSG-->MM_W AIT_MSG3, NullEvent
May 18 08:13:03 [IKEv1 DEBUG]: IP = X.X.X.X, IKE SA MM:8e338e16 terminatin g: flags 0x01000002, refcnt 0, tuncnt 0
May 18 08:13:03 [IKEv1 DEBUG]: IP = X.X.X.X, sending delete/delete with re ason message
May 18 08:13:03 [IKEv1]: IP = X.X.X.X, Removing peer from peer table faile d, no match!
May 18 08:13:03 [IKEv1]: IP = X.X.X.X, Error: Unable to remove PeerTblEntr
Is the result and then it repeats =) -
Need urgent help :'The requested resource does not exist error'
Hi All,
I am getting 'The requested resource does not exist error' when trying to acess http://machinename:50000/irj
Even when i access http://machinename:50000, i get the same 'The root directory does not exist' error. I checked in visual admin, there is no other application deployed except my application.
Any clues? Pls help
thanks
bhawnaHI ,
Did succeed to solve your problem. I am running into same problem.
Any help is welcome.
Thank u very much. -
Windows 2011 SBS Reinstallation, PDC and User CALs - Assistance Requested.
Hi, Here is my situation,
I currently have a WS2011SBS which is the PDC, running AD, DNS and DHCP, This server is having Issues which I believe a reinstall would likely fix. We no longer use Exchange or SharePoint on this server as we have moved to MS Online Service MSO365.
I have already moved RDS/TS Licencing and Shared Folders to other servers running WS2008r2. I also have another Server running WS2008r2 at a different site, linked by VPN (VPN is being replaced by Telstra Private Network link) I have set
this server up as a secondary AD/DNS server (this was to resolve authentication and DNS issues at the other site due to slow VPN connection)
What I would like to know or at least get some advice on is this:
1. What will be the implications regarding User CALs of reinstalling SBS2011 on my Domain?
2. Can I re sync AD/DNS from the secondary 2008r2 server or should I Promote the 2008r2 server to be the PDC and demote the SBS, and what are the implications of this on the User CALs?
3. Is there a way that I can Install 2008r2 rather than 2011SBS but still use the user CALs, as I no longer require Exchange and SharePoint, The servers only rolls will be AD/DNS, DHCP and File/Printer Sharing, as I feel that 2011SBS is less stable that 2008r2?
PLEASE NOTE: I do not have allowance to purchase more hardware, software or licences at this time. The issues on the 2011SBS server affected Windows Server Backup Service, so restoring a backup is not an option.
I am looking for as much information as possible (I am experienced with some aspects of Server Technology however there are holes in my knowledge), links to step by step procedures for your recommendations would be great, I realise that there are likely
more than one ways around this, so any opinions would be appreciated.
Thanks In Advance,
Dave's Computers.Might try them over here.
SBS forums on TechNet
Regards, Dave Patrick ....
Microsoft Certified Professional
Microsoft MVP [Windows]
Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights. -
CJ20N Project Builder Validation Programming - Assistance requested
This is a how-to request. I am trying to validate user entry at save time in the CJ20N Project Builder (Project Systems). The desire is to enforce that the project, wbs, and network company codes are all the same prior to saving a NEW project.
The problem I am having is on the scenario in which a user creates a new project by copying an existing project or standard template. If the user changes the company code on one or more wbs before saving it, the wbs table in abap memory prior to saving does not reflect this change. The table is called CJ_BUF_PRPSxxx99999999 where xxx is the client number (mandt).
Thus any attempts to loop at this table to validate the company code against the parent project are futile.
I have contacted SAP on this issue and they insist that it is not a bug. I need an alternate solution.
Any help would be appreciated.I solved this problem myself by stepping through the debugger between the user exit and the actual save routine. I was able to find the correctly populated internal table to loop at. It was called PSTAB.
-
Assistance request for lost mobile
Can you give assistance on locating a lost mobile? I can provide necessary documents for validation and procedures.
We..the Users (this being an User-to-User Forum) or even Nokia can't do anything in this regard.
Refer THIS -
I have a javascript (coded by Dave Saunders) that has been of great benefit to me over the past few years. It has worked without changes with InDesign CS2, CS3, and CS4 (Mac and Windows). This helpful tool allows me to position an InDesign window where I want it on my screen. Next the script is run to create a default data file. Finally, when the script is run again, it repositions the active window to match the location of the window defined in the default data file.
This morning, it will not run in InDesign CS5 (7.0.3). It merely beeps at me when I invoke the script via the script panel or the assigned KB shortcut.
The script worked with CS5 pre-update (7.0.0).
The script stil works with CS4 (6.0.6) on the same system.
System:
Mac OS 10.6.4
InDesign CS5 (7.0.3)
Will any script guru out there be able to assist me with making this work again in CS5?
// JavaScript Document
//DESCRIPTION: Resets active window size or uses front window to set default size.
// Check for WindowDefault.txt; if present use it to set front window
// if not, use front window to set it after checking with user.
myPath = app.activeScript;
myParts = myPath.toString().split("/");
myParts[(myParts.length - 1)] = "WindowDefault.txt";
myNewPath = myParts.join("/");
mySettingsFile = File(myNewPath);
// Before proceeding, check that there is a front window
// If not, offer user the chance to delete the current settings
if (app.windows.length < 1) {
if (confirm("No window is open; would you like to delete the settings file?")) {
// User said yes; check that it exists
if(mySettingsFile.exists) {
mySettingsFile.remove();
} else {
if (mySettingsFile.open("r")) {
savedBounds = mySettingsFile.read();
mySettingsFile.close();
myBounds = savedBounds.split(",");
for (i = 0; i<myBounds.length; i++) {
myBounds[i] = Number(myBounds[i]);
app.windows[0].bounds = myBounds;
} else {
if (confirm("Settings file is missing. Use current front window to set default?")) {
// User said: go to it.
new File(mySettingsFile);
mySettingsFile.open("w");
mySettingsFile.write(app.windows[0].bounds);
mySettingsFile.close();
Thanks!
-mt10.8.2 broke a lot of stuff, report this to Apple.
-
VPN Feature request for 10.4.11 or Leopard
The built in VPN client is extremely limited in the flexibility it gives me to change its behavior. In order for it to be a fully functional enterprise grade VPN, it really needs the following capabilities:
- The ability to modify the Phase 1 proposal
- The ability to modify the Phase 2 proposal
- The ability to modify the IKE peer ID
- Enable/Disable XAUTH settings
- Ideally the ability to modify DPD, PFS, replay protection, etc.
This capability exists in the config file that is automatically created for racoon when you set up the VPN, however, it does not allow you to change any of the options through the GUI. The only way to change them is quick snag a copy of the file when it's created, modify it, and put it back in place with file permissions of 444 to prevent the GUI from overwriting it on the next launch.
Simply adding the first 3 options should not be that difficult. The VPN client has been made to work with Cisco and Apple VPN servers, but does not work with any other vendor's products. Since all of the pieces are there, why not expose them in the GUI? Toss them under an Advanced tab which requires the user to hold down the option key to access them.Nobody here but us Mac users ... and the Discussion Forum Secret Police.
You should post your suggestion at apple.com/feedback -
Ver urgent:error in request
Hi all,
For one job 4 days of requests are loaded,For each day there are 3 pakages are loading,on first day of one request update method is repair full request,and subsequent them are fullupdate,the request repair full request has got error,that request is not correct.how can i solve this problem please helpme.
Thanks & Regards,
Praveena.Are you loading data into ODS?
Is there Init/Delta already setup for that ODS for that datasource?
Give us the error message you got in the monitor screen. If you do not have any error in the monitor screen.
If you are loading to ODS and you have the init/delta already setup then you'll have to change the full update requests to repair full requests.
Use the program RSSM_SET_REPAIR_FULL_FLAG to change them to repair full and then activate the ODS... It should work.
Regards, Siva -
Urgent: Generate spool request no.
Hi gurus,
I have to develop a report which has a pop up box for selection criteria based on which the records are displayed. The list has button 'send' which when clicked the output should be converted to an pdf and mailed.I know how to convert the output to pdf and mailing .
My problem is since the list is dispalyed(report not executed in background) its not generating a spool request no.and therefore i cannot proceed further.How do I generate a spool no??
Is there anyway in which i create a spool no and then asssign it to that list output??or any alternate method??
Kindly help.
Helpful solutions will be rewarded graciously!!!
Regards,
Niky.Hei,
this will also work in the same way,
suppose i_mara have five fields.
Ex:
Types: begin of t_mara,
matnr type matnr,
meins type meins,
maktl type maktl,
ERSDA type ERSDA,
ername type ername,
end of t_mara.
data: i_mara type table of t_mara,
wa_mara like line of i_mara.
DATA: v_dest LIKE tsp01-rqdest,
v_handle LIKE sy-tabix,
v_spool_id LIKE tsp01-rqident,
v_rc TYPE c,
v_errmessage(100) TYPE c,
v_text(70) TYPE c.
START-OF-SELECTION.
SELECT matnr FROM mara INTO TABLE i_mara.
CALL FUNCTION 'RSPO_OPEN_SPOOLREQUEST'
EXPORTING
dest = 'LOCL'
* LAYOUT =
* NAME =
* SUFFIX1 =
* SUFFIX2 =
* COPIES =
* PRIO =
* IMMEDIATE_PRINT =
* AUTO_DELETE =
* TITLELINE =
* RECEIVER =
* DIVISION =
* AUTHORITY =
* POSNAME =
* ACTTIME =
* LIFETIME = '8'
* APPEND =
* COVERPAGE =
* CODEPAGE =
* DOCTYPE =
IMPORTING
handle = v_handle
spoolid = gd_spool_nr
rc = v_rc
errmessage = v_errmessage.
LOOP AT i_mara into wa_mara.
CONCATENATE i_mara-matnr i_mara-meins i_mara-maktl
i_mara-ERSDA i_mara-ERname INTO v_text SEPARATED BY space.
CALL FUNCTION 'RSPO_WRITE_SPOOLREQUEST'
EXPORTING
handle = v_handle
text = v_text
* LENGTH =
* CODEPAGE =
* TRUNCATE =
IMPORTING
rc = v_rc
errmessage = v_errmessage
EXCEPTIONS
handle_not_valid = 1
OTHERS = 2.
IF sy-subrc <> 0.
MESSAGE ID sy-msgid TYPE sy-msgty NUMBER sy-msgno
WITH sy-msgv1 sy-msgv2 sy-msgv3 sy-msgv4.
ENDIF.
ENDLOOP.
CALL FUNCTION 'RSPO_CLOSE_SPOOLREQUEST'
EXPORTING
handle = v_handle
IMPORTING
rc = v_rc
errmessage = v_errmessage
EXCEPTIONS
handle_not_valid = 1
OTHERS = 2.
IF sy-subrc <> 0.
MESSAGE ID sy-msgid TYPE sy-msgty NUMBER sy-msgno
WITH sy-msgv1 sy-msgv2 sy-msgv3 sy-msgv4.
ENDIF.
CALL FUNCTION 'CONVERT_ABAPSPOOLJOB_2_PDF'
EXPORTING
src_spoolid = gd_spool_nr
no_dialog = c_no
dst_device = c_device
IMPORTING
pdf_bytecount = gd_bytecount
TABLES
pdf = it_pdf_output
EXCEPTIONS
err_no_abap_spooljob = 1
err_no_spooljob = 2
err_no_permission = 3
err_conv_not_possible = 4
err_bad_destdevice = 5
user_cancelled = 6
err_spoolerror = 7
err_temseerror = 8
err_btcjob_open_failed = 9
err_btcjob_submit_failed = 10
err_btcjob_close_failed = 11
OTHERS = 12.
CHECK sy-subrc = 0.
Maybe you are looking for
-
HP Laserjet 1320 stopped queue
I recently purchased an HP Laserjet 1320 to connect via USB to my iMac (10.4.3). The computer recognizes the printer and automatically installs it into the printer setup utility and everything. It looks as though it is ready to print, but when I send
-
TS1702 asks me to sign in?
each time i pick up my ipad and start to use it I am ask to sign into my app store. this is only recently this has been happening. Is there a change in the way apple is doing things or is someone hacking me?
-
Hi all I want to generate a fixed length output file for 1 million records without any page breaks.The maximum value for set pagesize is 50000 and how can i overcome the limit rgds ramya
-
Commit/Rollback Buttons Diabled for Pinned Tables?
When I pin a table, the commit/rollback buttons become disabled. Is there a reason for that, or is it a bug? Java(TM) Platform 1.5.0_12 Oracle IDE 1.5.0.52.03
-
Hi guys, we want to add a feature in our BSP-Application: When user clicks the button, the progressIndicator will be shown until the job done. During this period of time, user is not allowed to do anything excpet wait. I am condisering to use the BSP