Wireless ACL - Block internal access

Similar Messages

• Blocking international access

  just read an interesting article in the ny times which spoke
  about how worldwide spam volumes have doubled... and that spam
  accounts for more than 9 of 10 email messages sent.
  since a good chunk of the junk comes from outside the country
  - and presumably a good chunk of the programs that scour websites
  looking for email addresses are out of the country - it seems like
  it would be a good idea to block international access to a site
  (assuming, obviously, that one doesn't care about the quality
  viewers that will be lost in the process) and also block receipt of
  incoming email that originated outside the country.
  possible?

  You'd better go take a nap. That's way too many paragraphs
  for you
  today.... 8)
  Murray --- ICQ 71997575
  Adobe Community Expert
  (If you *MUST* email me, don't LAUGH when you do so!)
  ==================
  http://www.dreamweavermx-templates.com
  - Template Triage!
  http://www.projectseven.com/go
  - DW FAQs, Tutorials & Resources
  http://www.dwfaq.com - DW FAQs,
  Tutorials & Resources
  http://www.macromedia.com/support/search/
  - Macromedia (MM) Technotes
  ==================
  "crash" <[email protected]> wrote in message
  news:[email protected]...
  > Saying it's a reasonable request and saying it's a
  reasonable expectation
  > are two different things. I would not do it, based
  mostly on the reasons
  > stated.
  >
  > No matter how many people might be able to see my
  webpage, if I sell local
  > products to a local market (say, energy), then the
  global market is of no
  > concern to me. Yes, I can reach them, but what does it
  matter?
  >
  > If there is a circumstance in which the spam is causing
  an overload of my
  > servers to provide service to my local customers, and I
  sell energy to a
  > tri-state area, it may behoove me to limit my site to
  only those that I
  > serve.
  >
  > Just because my page is globally accessible doesn't mean
  that's the best
  > business model to uphold. Similarly, I don't code my
  pages in anything
  > but English because I don't have the facilities to work
  with anybody that
  > doesn't speak English. While they might be technically
  able to buy my
  > product, It's not feasible for me to sell it to them.
  >
  > Since very little was specified about the site, I did
  not find it an
  > unreasonable request. I do not agree on the OP's methods
  arriving at
  > this - articles don't tell you what your traffic is,
  only general
  > patterns.
  >
  >
  > "Murray *ACE*" <[email protected]>
  wrote in message
  > news:[email protected]...
  >> You still think it's reasonable?
  >>
  >> --
  >> Murray --- ICQ 71997575
  >> Adobe Community Expert
  >> (If you *MUST* email me, don't LAUGH when you do
  so!)
  >> ==================
  >>
  http://www.dreamweavermx-templates.com
  - Template Triage!
  >>
  http://www.projectseven.com/go
  - DW FAQs, Tutorials & Resources
  >>
  http://www.dwfaq.com - DW FAQs,
  Tutorials & Resources
  >>
  http://www.macromedia.com/support/search/
  - Macromedia (MM) Technotes
  >> ==================
  >>
  >>
  >> "crash" <[email protected]> wrote in
  message
  >> news:[email protected]...
  >>> heheh, sorry, reader wasn't showing the 800
  other replies to this, and I
  >>> wasn't lookign at time of posts.
  >>>
  >>> :O)
  >>>
  >>>
  >>
  >>
  >
  >

• Exchange 2013 OWA - Restrict External access to OWA, while keeping internal access open

  I'm looking for the best way to restrict users who can access OWA externally, while keeping internal access to OWA open to everyone.  We would preferably like to control who has external access to OWA with an AD group. Users who have external access,
  would need both external and internal access to OWA. Internal users would only have internal access to OWA.
  TMG is off the table since it is EOL. Reverse proxy might be a possibility, but I'm running into issues with the security setup and passing credentials.
  Does anyone know the best way of restricting external access without disabling internal access?
  Thanks

  Not sure if this still applies to 2013 or not, haven't tried yet...
  http://blog.leederbyshire.com/2013/03/13/block-or-allow-selected-users-depending-on-location-and-ad-group-membership-in-microsoft-exchange-2010-outlook-web-app/
  Blog |
  Get Your Exchange Powershell Tip of the Day from here

• WRT54G blocking INTERNAL traffic ?

  Hello everybody!
  I own a WRT 54 G v3.1 Firmware Version: v4.30.5.
  Everything works fine except Age of Empires 2 Lan Games. I tried a direct connection between 2 PCs with a crossover cable and the game worked, but when we want to play via our router, we can't find hosted games. We don't want to play on the Internet, only on LAN. Is there any setting that is blocking internal Traffic ? Whats also strange: I tried DXdiag, as AOE2 uses DirectPlay, and DXdiag could establish a connection even when both PCs were connected via the router. Any ideas ? Thanks in advance.

  If you have a software firewall installed connected a computer to a different router does make a difference. Those software firewalls remember the firewall settings based on where they are connected. A different router is a different location and thus has different firewall settings. Thus, you have to disable the firewall completely, maybe have to deinstall it completely (ZA is a good candidate for that) to verify whether or not it is related to the computer configuration.
  Also, how do you connect between those computers for the game? Do they automatically detect each other? Do you have to enter IP addresses? Or how does it work?
  Technically the LAN side of the router is a simple switch. It does not do any filtering there. It may be slightly different if a connection is wireless. It can be completely different if a router runs a 3rd party firmware.

• WRT54Gv3 Looses/Blocks Internet Access

  After installing version 4.21.1 of the Linksys frimware on my router WRT54Gv3 it will loose and/or block access to the internet. It will do it at random times usually weeks apart. All the lights on the router look normal, my modem still shows a connection to the router. My computers will connect to the router wired or wireless and I can also login to the config page of the router. Visually everything looks fine. Power cycling the modem and router does not fix the problem. I have to perform a factory reset on the router before it will work again. Is anyone having this problem with v4 or below of the WRT54G router after installing 4.21.1 of the linksys firmware? My friends router does the same thing and he has v4. I have v3.
  Thanks

  Well my router has always had the default IP address.
  I also noticed that when the internet is being block that i can use the diagnostic tab and get a response using ping and perform trace routes.
  I can also release and renew my IP info from Comcast's DHCP Server.
  I've never had a signal issue with the router. I'm always able to connect to it using a wireless or wired connection. I connect successfully to the router it's that it blocks access to the internet to all the connected computers.
  I'm at a loss and so it seems with Linksys tech support. I had a chat with them and they made me do a factory reset then update the firmware and then perform a factory reset again. They felt that the firmware may have been somehow damaged when I previously updated the router. I feel like my router will start blocking internet access again by the end of the month. If not I'll let you know if resetting, flashing, and resetting thing worked.
  Message Edited by phoenixms on 06-05-200703:40 PM

• IPlanet Web Server acl to deny access to class C IP addresses

  Hi all,
  having not chance to modify an ACL from the iPlanet Web Server GUI (the application just make the acl file and anything else....), I am trying to modify it directly to deny access to all users having IP address starting with 172.
  The ACL file created from the iPlanet GUI is the following:
  version 3.0;
  acl "default";
  authenticate (user, group) {
  prompt = "iPlanet Web Server";
  allow (read, list, execute,info) user = "anyone";
  allow (write, delete) user = "all";
  acl "es-internal";
  allow (read, list, execute,info) user = "anyone";
  deny (write, delete) user = "anyone";
  I modified it by adding the following deny:
  root@webone /usr/iplanet/servers/httpacl # more generated.https-altorendimento.acl
  version 3.0;
  acl "default";
  authenticate (user, group) {
  prompt = "iPlanet Web Server";
  allow (read, list, execute,info) user = "anyone";
  allow (write, delete) user = "all";
  acl "es-internal";
  deny (read) ip = "172.*";
  deny (write, delete) user = "anyone";
  but, after applying the changes, I am still (I am on a 172.*.*.* workstation) allowed to access the resource. Then I changed the deny in the following way:
  root@webone /usr/iplanet/servers/httpacl # more generated.https-altorendimento.acl
  version 3.0;
  acl "default";
  authenticate (user, group) {
  prompt = "iPlanet Web Server";
  allow (read, list, execute,info) user = "anyone";
  allow (write, delete) user = "all";
  acl "es-internal";
  deny (read) user = "all";
  deny (write, delete) user = "anyone";
  nothing happened again. The access to the resource seems not related to the acl changes, although the acl are correctly referenced into the obj.conf file. Unfortunatelly, I do not have much experience in ACL.
  Is there anyone able to help me with that issue?
  Thank you so much
  enrico

  hi all,
  sorry for this delay, the matter was solved due to the Mozilla display capability for which this site (the one with the ACL) was not made. Once tried to display with Explorer all was ok and I was able to change the ACL accordingly.
  Sorry again, and thaks anyway
  enrico

• How do I replace someone else's Mac ID with my own? Bought iPhone second hand. Previous owner re-set the phone but his ICloud account stayed on now my phone. He uses his macID on his new iPhone now?? Any ideas, as this issue is blocking my access to iTune

  How do I replace someone else's Mac ID with my own?
  Bought iPhone second hand on TradeMe.
  Previous owner re-set the phone but his ICloud account stayed on now my phone. He uses his AppleID on his new iPhone now and, understandably, does not want to give me his password. Any ideas?? Please.
  This issue is blocking my access to iTunes and any other file from my home computer. It keeps on telling me that I have to autorise my computer to pass on files, yet, it seems, for all this to happen, I need to get logged in through the phone's Apple ID. This of course is different to my one on my computer - and I have no password for it.
  This phone is not stolen!! I payed still a fair bit for it. Am still in contact with the previous owner. He doesn't know how to fix the problem either.
  Would appreciate any suggestion ????
  Thanks
  SamSings

  Settings>general>resets>erase all content and settings.
  That will put it back to its out of the box state. Set it up with your own apple Id.

• Blocking internet access in a virtual windows xp box

  Is there a way to block internet access when I have a virtual windows xp box within Windows 7?
  The reason, is I just want to run one application and restrict internet access as I some users are restricted from the internet.
  Thanks
  John

  Hi, Juke.
  I'm afraid I'm a dummy, and don't know how to do this. I'm sure as April 8 approaches, a lot of people with important DOS or XP apps will be wanting to insulate their XP VM from potential hacking while still running programs locally.
    Thanks -- Dave K.

• Win 8.1 domain workstation. Block all access, except for a fews users/groups and domain controller information/date.

  Hi!
  Win 8.1 pro, domain workstation. How Block all access, except for a fews users/groups and domain controller information/date.
  Nuance:
  From domain AD is locked Workstation Firewall "Domain profile" edit.
  Possible?
  cenubit

  Hi GirtsR,
  I am not sure the command to use the SID to accomplish what you want to achieve, if you only know the SID, you could take use Powershell to find the related information, more information, please check:
  Working with SIDs
  And a similar thread for reference:
  How to find user/group known only SID
  More reference: Default local groups.
  Best regards
  Michael Shao
  TechNet Community Support

• Wireless clients unable to access internet on new WRT54G - Help!

  I have multiple wireless clients that cannot access the internet. They all get valid IP addressing. I can ping the router. But I can't access anything on the internet. I just setup this router and I do this sort of stuff for a living and I give up. It shouldn't be this difficult. Two of the clients are Vista and the other is XP. Again, the connection to the router is perfect. I just can't access anything beyond the router. The single wired client works fine. Help!

  Thanks... I've tried that. All of these hosts were actually working just fine with my old DLink router, but that router died over the weekend, so I replaced it with the Linksys. For the life of me, I can't see any reason why these hosts can't route out to the internet.

• Acl-name in access-list requirements

  Hi,
  I would ask about the acl-name in access-list,
  Does it act as a link between the ACL and an interface?
  or it could be written as any-thing, without any constrains?
  such as
  access-list test_ACL extended permit tcp host 10.105.10.22 host 10.140.180.35 eq ssh
  is it OK?
  or test_ACL should be defined somewhere prior using it in ACL?

  just because the ACL is not defined in an access-group doesn't mean it is not in use. There are several other areas that use ACLs.  Class-maps are another common place where ACLs are used to match on traffic that will be used in a policy-map.  Another comon use for ACLs is to define interesting traffic, or traffic that is to be encrypted, over a site to site VPN.
  But for this specific ACL that you mention, the question you need to answer is, does the ACL define IPs that are assigned within your network, and do you have any applications that require the tcp timeout to be adjusted?  If the answer is no to either of thaese then it is safe to assume you can remove the class-map test_ACL and the class test_ACL under the policy-map configuration.
  Whether the ACL itself can be removed, I would assume it is safe to  remove as it is called test_ACL, but then again, I have see people set up test configurations and then leave them as is without changing the name.  So I would suggest investigating further to see if the name test_ACL is referenced any other places in your configuration.
  Please remember to select a correct answer and rate helpful posts

• I am running windows xp home edition on my netbook. I have Kaspersky virus protection. Your new 6.0 blocks my access to Kaspersky. How do I get the older level that works with it?

  It blocked the access to Kaspersky and corrupted my Kaspersky database. I had to reload. Not much of a good "upgrade" experience

  See Kaspersky for a Firefox 6 compatibility update.

• I installed dreamweaver on Windows. After installing it, it blocks my  access to the internet. Solution? I discarded it and it was okay, but I need both dreamweaver and internet acces.

  I installed dreamweaver on Windows. After installing it, it blocks my  access to the internet. Solution? I discarded it and it was okay, but I need both dreamweaver and internet acces.

  See iPhone DFU mode explained, and how to enter DFU mode.

• Setting wireless router as an access point

  I'm trying to set up a wireless router as an access point for a wired router. The wired portion of the network is fine and the internet connection is working.  The laptop sees the wireless router and can log in to it.  However, the wireless router does not receive an internet connection and cannot "see" the wired portion of the network. I cannot log into the wireless router from one of the wired computers.
  Below are the settings I'm using:
  Wired router--Linksys BEFSR41v3
   Obtain ID Automatically
   192.168.0.1
   255.255.255.0
   Local DHCP enabled
   Start # 192.168.0.100
   RIP Disabled
   UPnP off
  Wirless router--Linksys WRT54GS
   Automatic Conifguration DHCP
   192.168.0.2
   255.255.255.0
   DHCP Server off
   Firewall/NAT off
   UPnP off
   Set to Router function (rather than Gateway)
  I have had to set the laptop to a static IP, since it keeps revereting to a default IP.  It is set to 192.168.0.102, 255.255.255.0, Gateway=192.168.0.1, DNS=192.168.0.1
  Any suggestions would be welcome.
  Thanks
  Solved!
  Go to Solution.

  As you have Disabled the DHCP Server on the Router and the Changed the IP on the Router to 192.168.0.2. the only thing remaining is the Connection part that is you need the Connect the BEFSR41 router from the Number one port to the Number one of WRT54GS that should Work. Please remove the Static IP Address from the Computers.

• HT1349 I have purchased a new PC and am being blocked from accessing my itunes account why ???

  I have purchased a new PC and am being blocked from accessing my itunes account why???

  You are being blocked how ?
  If you mean that your library isn't showing then it won't automatically appear on it. You can authorise your iTunes account on it via the Store > Authorise This Computer menu option (with iTunes 11 pressing Alt-S should get the Store menu to appear). You will then need to either download your content onto it (what you can re-download will show under Purchased link under Quicklinks on the right-hand side of the iTunes store homepage), or copy if from your old computer or your backup.
  If you are referring to something else ... ?