Windows VPN clients can't use network servers after 10.5.1 upgrade

Similar Messages

• VPN clients can't see network resources unless Firewall is disabled.

  If the firewall is turned off, connected VPN clients can access other PCs over the VPN. But I would like to enable a rule that allows them to access computers even with the firewall turned on. I just don't know what the rule should be.

  Hi,
  Any update? If you could update us at your convenience that would be wonderful.
  Regards
  Yolanda Zhu
  TechNet Community Support

• Lion VPN with a Windows 7 client; can't browse network

  So, here's my setup..
  I have a Lion Server running VPN (192.168.1.11 /24), a windows box behind the VPN (192.168.1.15) and a Windows 7 client connecting.
  I've been able to get the Windows 7 client to actually connect to the VPN. I can also manually go to the client machine (i.e. \\192.168.1.15 ), and I've even thought of creating a static hosts entry for the netbios name -> IP, but, while all that works, the simple fact is that I can NOT browse the network using either a mac client OR a windows client.
  DHCP/DNS is being done by the router (A Verizon Actiontec router with a MoCA connection.)
  I COULD get the lion server to serve dns/dhcp for the whole network, but, haven't yet. Lion server uses the router IP as it's DNS (and does not use the local DNS at all). I've tried to both ways though; didn't solve the issue.
  So, is there any way to fix the ability to browse beyond the VPN? Lion does not include (that I can find) a WINS server....
  Lion server is DMZ'd from the router. So, all ports are open.
  Help!

  No one has any ideas on how to fix this?

• VPN Clients can't access DMZ Network

  Hello,
  I will try to describe my problem as best as possible. The title says VPN clients cannot access DMZ network, but that is not exactly the problem, the situation is this, a group of users are using an actual 10.x network where they have their servers and pretty much everything. The users must be relocated into a new network, the 172.16.x.  In a point in time they will not have to use 10.x anymore, but meanwhile, they need access to that network.
  I have an ASA 5510 as default gateway for the new network (172.16.x.x), one interface e0/0 connected to the outside (internet), interface e0/1 to the inside and other interface connected to the actual 10.x (which I call DMZ), so basically I am using the ASA as a bridge using NAT to grant access to the users in the network 172.16.x to the resources in the 10.x network while the migration is completed.
  All the users must use the path to the internet thru the ASA using the NAT overload to the outside interface and I put in place a NAT policy to 10.x to allow access to the 10.x network only when the internal users 172.16.x try to reach that path and so far, everything is working just fine for the internal users.
  Now for some reason, when I do VPN, the VPN clients cannot reach the 10.x network, even when they are supposed to be in the internal network (because they are doing VPN right?) .
  I have enabled split tunneling with NAT exempt the 172.16 network and I am not sure if that is causing the problem, because when I trace from my PC the 172.16.16.1 address using the VPN I get the proper route path, but when I try to reach 10.x, my PC is using its default gateway and not the VPN gateway which has a route to 10.x.
  I’m not even sure if what I am trying to do is possible, I want VPN users to be able to access a 10.x network using NAT overload with the Interface of the ASA plugged to the 10.x network, just like the internal users are doing right now.
  Any help or advice will be highly appreciated.

  Allow clients to access DMZ, add exempt NAT rule, add both the "same-security-traffic" thru cli. Please give it a try.
  Sent from Cisco Technical Support iPad App

• Vpn client can access internet but cannot access internal network

  I am using PIX 501 to setup a VPN. At first the VPN client cannot access the internet once they logged in via the Cisco system vpn client, so i enable split tunneling. Now the VPN client can access the internet but they can't access the internal network.Due to the limited characters can be posted here, only necessary IOS coding is posted on the next message. Who knows how to solve this problem? Pls Help.....

  enable password ********** encrypted
  passwd ********** encrypted
  hostname Firewall
  domain-name aqswdefrgt.com.sg
  access-list 100 permit ip 192.168.1.0 255.255.255.0 192.168.50.0 255.255.255.0
  access-list nat permit tcp any host 65.165.123.142 eq smtp
  access-list nat permit tcp any host 65.165.123.142 eq pop3
  access-list nat permit tcp any host 65.165.123.143 eq smtp
  access-list nat permit tcp any host 65.165.123.143 eq pop3
  access-list nat permit tcp any host 65.165.123.143 eq www
  access-list nat permit tcp any host 65.165.123.152 eq smtp
  access-list nat permit tcp any host 65.165.123.152 eq pop3
  access-list nat permit tcp any host 65.165.123.152 eq www
  access-list nat permit tcp any host 65.165.123.143 eq https
  access-list nat permit icmp any any
  ip address outside 65.165.123.4 255.255.255.240
  ip address inside 192.168.1.2 255.255.255.0
  ip verify reverse-path interface outside
  ip local pool clientpool 192.168.50.1-192.168.50.50
  global (outside) 1 interface
  nat (inside) 0 access-list 100
  nat (inside) 1 0.0.0.0 0.0.0.0 0 0
  static (inside,outside) tcp 65.165.123.142 smtp 192.168.1.56 smtp netmask 255.255.2
  55.255 0 0
  static (inside,outside) tcp 65.165.123.142 pop3 192.168.1.56 pop3 netmask 255.255.2
  55.255 0 0
  static (inside,outside) tcp 65.165.123.143 smtp 192.168.1.55 smtp netmask 255.255.2
  55.255 0 0
  static (inside,outside) tcp 65.165.123.143 pop3 192.168.1.55 pop3 netmask 255.255.2
  55.255 0 0
  static (inside,outside) tcp 65.165.123.143 www 192.168.1.55 www netmask 255.255.255
  .255 0 0
  static (inside,outside) tcp 65.165.123.152 smtp 192.168.1.76 smtp netmask 255.255.
  255.255 0 0
  static (inside,outside) tcp 65.165.123.152 pop3 192.168.1.76 pop3 netmask 255.255.
  255.255 0 0
  static (inside,outside) tcp 65.165.123.152 www 192.168.1.76 www netmask 255.255.25
  5.255 0 0
  static (inside,outside) tcp 65.165.123.143 https 192.168.1.55 https netmask 255.255
  .255.255 0 0
  access-group nat in interface outside
  route outside 0.0.0.0 0.0.0.0 65.165.123.1 1
  aaa-server TACACS+ protocol tacacs+
  aaa-server RADIUS protocol radius
  aaa-server LOCAL protocol local
  aaa-server plexus protocol radius
  aaa-server plexus (inside) host 192.168.1.55 ******** timeout 5
  http server enable
  http 192.168.1.0 255.255.255.0 inside
  no snmp-server location
  no snmp-server contact
  snmp-server community public
  no snmp-server enable traps
  floodguard enable
  sysopt connection permit-ipsec
  crypto ipsec transform-set myset esp-des esp-md5-hmac
  crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
  crypto dynamic-map cisco 1 set transform-set myset
  crypto map dyn-map 20 ipsec-isakmp dynamic cisco
  crypto map dyn-map client authentication plexus
  crypto map dyn-map interface outside
  isakmp enable outside
  isakmp key ******** address 0.0.0.0 netmask 0.0.0.0
  isakmp policy 20 authentication pre-share
  isakmp policy 20 encryption des
  isakmp policy 20 hash md5
  isakmp policy 20 group 2
  isakmp policy 20 lifetime 86400
  isakmp policy 40 authentication pre-share
  isakmp policy 40 encryption 3des
  isakmp policy 40 hash md5
  isakmp policy 40 group 2
  isakmp policy 40 lifetime 86400
  vpngroup vpn3000 address-pool clientpool
  vpngroup vpn3000 dns-server 192.168.1.55
  vpngroup vpn3000 wins-server 192.168.1.55
  vpngroup vpn3000 default-domain aqswdefrgt.com.sg
  vpngroup vpn3000 idle-time 1800
  vpngroup vpn3000 password ********
  telnet 192.168.1.0 255.255.255.0 inside
  telnet timeout 5
  ssh timeout 5
  console timeout 0
  terminal width 80

• How to connect with VPN of type L2TP programatically in IOS8 ? canse NEtwoatically in IOS8 ? can i use NEtwork/Extension framework for this?rk/Extension framework for this?

  I have a mobileconfig file and the VPNType is L2TP . How can i connect to this VPN programatically in IOS8 ?Apple's Network/Extension framework has methods which supports IPSEC and IKEV2 protocols(NEVPNProtocolIPSec, NEVPNProtocolIKEv2). Can i use Network/Extension framework to connect with L2TP type VPN ?

  I have a mobileconfig file and the VPNType is L2TP . How can i connect to this VPN programatically in IOS8 ?Apple's Network/Extension framework has methods which supports IPSEC and IKEV2 protocols(NEVPNProtocolIPSec, NEVPNProtocolIKEv2). Can i use Network/Extension framework to connect with L2TP type VPN ?

• Server 2003 VPN clients can't verify username and password

  Hi,
  Hoping someone can help or point me in the right direction. I have a Windows Server 2003 R2 standard SP2 running RRAS. It has Dual NIC's and is configured for PPTP VPN. I am using a BT Business Hub 5 for internet access and using the BT Static IP service.
  The BT Hub assigns the static IP address chosen to the Server using DHCP. The firewall is configured to port forward PPTP traffic to the 2003 server. This all works correctly.
  The 2003 server is on a domain where the DC is a 2008 R2 server. The DC also acts as the DNS and DHCP for the network.
  The default gateway for the domain is pointed towards our WinGate proxy server which also acts as a DNS server.
  The 2003 server LAN NIC is configured manually, usually I would not configure a deafult gateway on the LAN NIC as the WAN NIC needs the default gateway for the BT Hub.
  The problem I am having is if a default gateway is configured on the LAN NIC, I can connect to the VPN and it will logon to the network. Once connected everything works ok. If the connection drops, when trying to reconnect the client can no longer verify
  the user name and password against the domain and the connection is refused.
  If I do not have a default gateway configured in the LAN NIC the VPN clients can not verify the username and password for the domain at all and I get RPC failure errors in the event viewer with the source dnsapi.
  Once this error occurs the only way I can get the clients to reconnect is to disable the WAN NIC, restart the RRAS service and enable the WAN NIC again.
  Any insight will be much appreciated.

  Hello,
  for Networking configuration questions better ask in
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/home#forum=winserverNIS&filter=alltypes&sort=lastpostdesc&content=Search
  Best regards
  Meinolf Weber
  MVP, MCP, MCTS
  Microsoft MVP - Directory Services
  My Blog: http://blogs.msmvps.com/MWeber
  Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
  Twitter:  

• VPN clients cannot access inside network

  I have a ASA 5505 that I am using as a VPN appliance. The outside interface is connected to the DMZ (172.16.2.10) and the inside to our internal network (10.27.1.12). VPN clients are assigned an address in the range 10.27.2.2-10.27.2.20. A 1841 is the router and firewall for the network. Recently the ASA lost power when a UPS went down and now VPN clients can no longer access anything on the inside network. Config is attached. Help.

  I realized after I posted that I should have a connection active when running this command. Here is the results:
  Result of the command: "show crypto ipsec sa"
  interface: outside
  Crypto map tag: outside_dyn_map, seq num: 20, local addr: 172.16.2.10
  local ident (addr/mask/prot/port): (0.0.0.0/0.0.0.0/0/0)
  remote ident (addr/mask/prot/port): (10.27.2.2/255.255.255.255/0/0)
  current_peer: 169.130.14.253, username: kenz
  dynamic allocated peer ip: 10.27.2.2
  #pkts encaps: 5, #pkts encrypt: 5, #pkts digest: 5
  #pkts decaps: 0, #pkts decrypt: 0, #pkts verify: 0
  #pkts compressed: 0, #pkts decompressed: 0
  #pkts not compressed: 5, #pkts comp failed: 0, #pkts decomp failed: 0
  #pre-frag successes: 0, #pre-frag failures: 0, #fragments created: 0
  #PMTUs sent: 0, #PMTUs rcvd: 0, #decapsulated frgs needing reassembly: 0
  #send errors: 0, #recv errors: 0
  local crypto endpt.: 172.16.2.10, remote crypto endpt.: 169.130.14.253
  path mtu 1500, ipsec overhead 58, media mtu 1500
  current outbound spi: 208F45F5
  inbound esp sas:
  spi: 0x2026D973 (539416947)
  transform: esp-3des esp-sha-hmac none
  in use settings ={RA, Tunnel, }
  slot: 0, conn_id: 4096, crypto-map: outside_dyn_map
  sa timing: remaining key lifetime (sec): 28406
  IV size: 8 bytes
  replay detection support: Y
  outbound esp sas:
  spi: 0x208F45F5 (546260469)
  transform: esp-3des esp-sha-hmac none
  in use settings ={RA, Tunnel, }
  slot: 0, conn_id: 4096, crypto-map: outside_dyn_map
  sa timing: remaining key lifetime (sec): 28406
  IV size: 8 bytes
  replay detection support: Y
  So it looks like there are encrypts but no decrypts. What should I do now?

• Intermittent Internet Connection and VPN clients can't ping internal LAN but connected after installating cisco ASA5512x

  Hi!
  I wish someone can help me on this, I'm a new guy on cisco firewalls and I'm currently implementing cisco asa 5512x, here are the details:
  ISP ->  Firewall -> Core switch -> Internal LAN
  after installing the cisco asa and terminating the appropriate lan for the outside and inside interfaces, internet seems intermittent and cisco vpn client can connect with internet connection but can't ping internal LAN.
  here's my configuration from my firewall.
  ASA Version 8.6(1)2
  hostname ciscofirewall
  enable password 2KFQnbNIdI.2KYOU encrypted
  passwd 2KFQnbNIdI.2KYOU encrypted
  names
  interface GigabitEthernet0/0
  nameif outside
  security-level 0
  ip address 203.x.x.x 255.255.255.0
  interface GigabitEthernet0/1
  nameif inside
  security-level 100
  ip address 10.152.11.15 255.255.255.0
  interface GigabitEthernet0/2
  shutdown
  no nameif
  no security-level
  no ip address
  interface GigabitEthernet0/3
  shutdown
  no nameif
  no security-level
  no ip address
  interface GigabitEthernet0/4
  shutdown
  no nameif
  no security-level
  no ip address
  interface GigabitEthernet0/5
  shutdown
  no nameif
  no security-level
  no ip address
  interface Management0/0
  nameif management
  security-level 100
  ip address 192.168.1.1 255.255.255.0
  management-only
  ftp mode passive
  dns domain-lookup outside
  dns domain-lookup inside
  dns server-group DefaultDNS
  name-server 4.2.2.2 -------> public DNS
  name-server 8.8.8.8 -------> public
  name-server 203.x.x.x   ----> Clients DNS
  name-server 203.x.x.x  -----> Clients DNS
  same-security-traffic permit intra-interface
  object network net_access
  subnet 10.0.0.0 255.0.0.0
  object network citrix_server
  host 10.152.11.21
  object network NETWORK_OBJ_10.10.10.0_28
  subnet 10.10.10.0 255.255.255.240
  object network NETWORK_OBJ_10.0.0.0_8
  subnet 10.0.0.0 255.0.0.0
  object network InterconHotel
  subnet 10.152.11.0 255.255.255.0
  access-list net_surf extended permit ip any any
  access-list net_surf extended permit ip object NETWORK_OBJ_10.10.10.0_28 object InterconHotel
  access-list outside_access extended permit tcp any object citrix_server eq www
  access-list outside_access extended permit ip object NETWORK_OBJ_10.10.10.0_28 any
  access-list outsidevpn_splitTunnelAcl standard permit 10.152.11.0 255.255.255.0
  access-list LAN_Users remark LAN_clients
  access-list LAN_Users standard permit any
  access-list vpnpool extended permit ip 10.10.10.0 255.255.255.248 any
  pager lines 24
  logging enable
  logging asdm informational
  mtu management 1500
  mtu outside 1500
  mtu inside 1500
  ip local pool vpnpool 10.10.10.1-10.10.10.6 mask 255.255.255.248
  icmp unreachable rate-limit 1 burst-size 1
  no asdm history enable
  arp timeout 14400
  nat (inside,outside) source static NETWORK_OBJ_10.10.10.0_28 NETWORK_OBJ_10.10.10.0_28 destination static NETWORK_OBJ_10.10.10.0_28 NETWORK_OBJ_10.10.10.0_28 no-proxy-arp route-lookup
  object network net_access
  nat (inside,outside) dynamic interface
  object network citrix_server
  nat (inside,outside) static 203.177.18.234 service tcp www www
  object network NETWORK_OBJ_10.10.10.0_28
  nat (any,outside) dynamic interface
  object network InterconHotel
  nat (inside,outside) dynamic interface dns
  access-group outside_access in interface outside
  access-group net_surf out interface outside
  route outside 0.0.0.0 0.0.0.0 203.x.x.x 1
  route outside 10.10.10.0 255.255.255.248 10.152.11.15 1
  timeout xlate 3:00:00
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  timeout floating-conn 0:00:00
  dynamic-access-policy-record DfltAccessPolicy
  user-identity default-domain LOCAL
  aaa authentication telnet console LOCAL
  http server enable
  http 192.168.1.0 255.255.255.0 management
  http 10.0.0.100 255.255.255.255 inside
  http 10.10.10.0 255.255.255.240 outside
  http 0.0.0.0 0.0.0.0 outside
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart warmstart
  crypto ipsec ikev1 transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
  crypto ipsec ikev1 transform-set ESP-DES-SHA esp-des esp-sha-hmac
  crypto ipsec ikev1 transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec ikev1 transform-set ESP-DES-MD5 esp-des esp-md5-hmac
  crypto ipsec ikev1 transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
  crypto ipsec ikev1 transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
  crypto ipsec ikev1 transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
  crypto ipsec ikev1 transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
  crypto ipsec ikev1 transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
  crypto ipsec ikev1 transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev1 transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
  crypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
  crypto map outside_map interface outside
  crypto map inside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
  crypto map inside_map interface inside
  crypto ikev1 enable outside
  crypto ikev1 enable inside
  crypto ikev1 policy 10
  authentication crack
  encryption aes-256
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 20
  authentication rsa-sig
  encryption aes-256
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 30
  authentication pre-share
  encryption aes-256
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 40
  authentication crack
  encryption aes-192
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 50
  authentication rsa-sig
  encryption aes-192
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 60
  authentication pre-share
  encryption aes-192
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 70
  authentication crack
  encryption aes
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 80
  authentication rsa-sig
  encryption aes
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 90
  authentication pre-share
  encryption aes
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 100
  authentication crack
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 110
  authentication rsa-sig
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 120
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 130
  authentication crack
  encryption des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 140
  authentication rsa-sig
  encryption des
  hash sha
  group 2
  lifetime 86400
  crypto ikev1 policy 150
  authentication pre-share
  encryption des
  hash sha
  group 2
  lifetime 86400
  client-update enable
  telnet 10.152.11.0 255.255.255.0 inside
  telnet timeout 5
  ssh timeout 5
  console timeout 0
  dhcpd address 192.168.1.2-192.168.1.254 management
  dhcpd enable management
  threat-detection basic-threat
  threat-detection statistics
  threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
  webvpn
  enable outside
  anyconnect-essentials
  group-policy outsidevpn internal
  group-policy outsidevpn attributes
  dns-server value 203.x.x.x 203.x.x.x
  vpn-tunnel-protocol ikev1 l2tp-ipsec ssl-client
  split-tunnel-policy tunnelall
  split-tunnel-network-list value outsidevpn_splitTunnelAcl
  default-domain value interconti.com
  address-pools value vpnpool
  username test1 password i1lji/GiOWB67bAs encrypted privilege 5
  username test1 attributes
  vpn-group-policy outsidevpn
  username mnlha password WlzjmENGEEZmT9LA encrypted
  username mnlha attributes
  vpn-group-policy outsidevpn
  username cisco password 3USUcOPFUiMCO4Jk encrypted privilege 15
  tunnel-group outsidevpn type remote-access
  tunnel-group outsidevpn general-attributes
  address-pool (inside) vpnpool
  address-pool vpnpool
  authentication-server-group (outside) LOCAL
  default-group-policy outsidevpn
  tunnel-group outsidevpn ipsec-attributes
  ikev1 pre-shared-key *****
  class-map inspection_default
  match default-inspection-traffic
  policy-map type inspect dns preset_dns_map
  parameters
    message-length maximum client auto
    message-length maximum 512
  policy-map global_policy
  class inspection_default
    inspect dns preset_dns_map
    inspect ftp
    inspect h323 h225
    inspect h323 ras
    inspect rsh
    inspect rtsp
    inspect esmtp
    inspect sqlnet
    inspect skinny 
    inspect sunrpc
    inspect xdmcp
    inspect sip 
    inspect netbios
    inspect tftp
    inspect ip-options
    inspect icmp
    inspect http
    inspect ipsec-pass-thru
  class class-default
    user-statistics accounting
  service-policy global_policy global
  prompt hostname context
  no call-home reporting anonymous
  hpm topN enable
  Cryptochecksum:edc30dda08e5800fc35b72dd6e1d88d7
  : end
  thanks. please help.

  I think you should change your nat-exemption rule to smth more general, like
  nat (inside,outside) source static any any destination static NETWORK_OBJ_10.10.10.0_28  NETWORK_OBJ_10.10.10.0_28 no-proxy-arp route-lookup
  'cause your inside networks are not the same as your vpn-pool subnet.
  Plus, if you're trying to reach inside subnets, different from 10.152.11.0 255.255.255.0 (ip from wich subnet is assignet to your inside interface, and for wich above nat exception should be enough), you should check if routing is configured from that subnets to your vpn-pool-subnet through the ASA.

• When using the migrate tool to migrate from windows to mac, can you use ethernet to connect the computers to each other?

  When using the migrate tool to migrate from windows to mac, can you use ethernet to connect the computers to each other? In the Migration tool, I was only given the option of choosing the computer when it appeared on the same network, and didn't see an option to connect them to each other. Even though they're both connected to the same network with a wired connection, the migration is painfully slow.

  Yes. The following quotation is from About Windows Migration Assistant
  These are the preferred network connections, in order:
  Use a CAT6-certified Ethernet cable that is in good condition to connect the Ethernet port of the PC directly to the Ethernet port of the Mac or Ethernet adaptor (USB or Thunderbolt). You shouldn't use an Ethernet cable that has any kinks in it or is missing connector tabs.
  Use CAT6-certified Ethernet cables that are in good condition to connect the Mac and PC to your home network router/hub/switch. You shouldn't use an Ethernet cable that has any kinks in it or is missing connector tabs.
  For wireless, use the fastest wireless signal possible (802.11n 5Ghz). Try to have the PC, Mac, and the wireless access point all in the same room close to each other.

• VPN Clients can't access internal LAN

  Hello - I have seen a few other threads on this issue, but can't seem to fix mine. I have a PIX 506e. My VPN clients can connect, they get a DHCP address from our internal server no problem. But the clients can not ping me or anything else on the LAN. The clients are connecting ipsec. I know I must be missing something simple here. Here is my config. Any help would be great

  Change the VPN Pool address to something else for example 192.168.10.0/24 etc. Then try and let me know. There could be ip overlap here.

• I am using MS Office 2010 and Windows XP Professional, can I use iCloud for backup of my files and documents?

  I am using MS Office 2010 and Windows XP Professional, can I use iCloud for backup of my files and documents? I am planning to transition to a Mac so using the iCloud seems to make the most sence.

  No, it is not a backup method at all.  If you delete a sync'd file on any device, you delete it permanently from iCloud.  That by its very essence is not a backup solution therefore.  A backup solution does not automatically and simultaneiously delete the file everywhere when it is deleted from the original source.
  iCloud is strictly a syncronization tool for using files on multiple internet connected devices.

• Equium - After Windows installation I can't use the touchpad

  I think TouchPad should working after instalation Windows. I can't use TouchPad even if I instaling "Synaptics" in versions: 9.1.14.0 and 14.0.3.
  When I install driver (thws-20070919162134) Vista show me message: "wrong serial number" so it will be this reason. If that mean number to activating Windows -it's OK.

  Hello
  What Equium notebook you have?
  Have you installed Windows using Toshiba recovery disk? Normally if you use this disk you have the same state as you have started the notebook the first time (factory settings). That means all should work properly on your notebook.
  Normally the touchpad can be enabled or disabled pressing FN+F9. Check this!!!
  Greets

• I can't use the wifi after 10 pm, but i can use it again at 7 am?

  so for some reason, i can't use my wifi after 10 pm. but in the morning when i wake up, i can use it again. is this some parental control or something? please lead me through it. i can't really ask my parents to do it, because they're not technologically advanced. they can probably give me the basic like the password and all, but that's it. how can i fix it? i'm using the wifi on an ipod touch. the wifi works perfectly fine on a regular computer but it doesn't work on my ipod during those certain hours. can someone please help me?
  the wifi icon shows up in the upper left corner, but its obviously not connected. there are no restrictions on the ipod at all.
  any other details you need, please ask. i really need this solved!
  Message was edited by: teedeexx

  i'd definitely say it was a wifi thing rather than an ipod thing. as far as i can think of there would be no way to tell an ipod to only access the internet between 7am and 10pm. - unless you were to restrict it using the router (i imagine this COULD be possible, but don't know if it actually is).
  everything which accesses the internet is given an individual 'mac address'. so if you have say, 3 computers, an ipod, a games console, all accessing a wifi network, that router will recognise them all individually by it's individual mac address. you can use mac filtering to give you an extra level of security to your network. so even if the correct network password is entered onto a wifi enabled piece of technology, if the router hasn't got the mac address entered as one that it should accept, you won't get access to the network.
  i must reiterate, i don't know if you can do this, but i would think it may be possible to restrict a certain mac address from accessing the network at certain times of the day (for example a young kid who may be playing with their ipod in bed, but should really be asleep!)
  if you go into the settings option on your ipod, general, restrictions, you can play around with your own restrictions and see what they do. mostly they restrict complete access, or the download of explicit content.

• Can we use XSLT mapping after graphical Mapping

  Hi,
  Can we use XSLT mapping after graphical mapping?
  My requirement is to generate two namespace attributes in the target output.
  So first I want to generate a structure using graphical mapping and then want to use XSLT mapping only to generate the second namespace XSI (leaving the rest of the structure as it is). Is it possible?
  <ns1:Test xmlns:ns1="wmdata.dwbi.interface" xsi:schemaLocation="wmdata.dwbi.interface w_interface_1.xsd" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
  Please post some solution. (I will reward points)
  Br,
  Madan Agrawal

  Hi Madan,
  Can we use XSLT mapping after graphical mapping?
  To me it seems feasible...
  But to using the two mappings one after another you will have to use BPM .
  Use transformation step for this to use the mapping and change in structure.
  Regards,