WSA redundancy and WCCP questions
Hello! My customer bought a pair of S370 WSA prior to deployment planning. I need to deploy both of them into existing network and I'd like to ask few questions with somebody who knows how to do it.
1. As I know from manuals, WSA doesn't support any clustering but I'd like to use both of my S370 for redundancy. I'm planning to use WCCP only, no explicit proxy mode will be used. What methods can I use to deploy redundant WCCP cache on pair of WSA? If it possible, I'd prefer to use something like Active\Passive but not load balancing scheme. Does it have Centralized management feature like ESA to share configs between devices?
2. I have fusion router which "mixes" traffic from different vrf. Is it possible to configure router such way that every vrf(which corresponds every interface and different subnets) will be seen with its own ip address in internet or all of them will be using just WSA's address like in explicit proxy mode?
3. When I tried to test my WSA in explicit proxy mode prior to configuring WCCP, I found out that I can use it as a proxy without any authentication, just setting it's address and port in my browser. How can I disable explicit proxy mode or set any authentication(no LDAP or NTLM) to prevent unauthorized access to using my proxy?
I'm newbie with IronPorts so I will appreciate any help including links to manuals
The WCCP protocol allows for automatic detection of all connected devices, both proxies and routers/firewalls/switches. When configuring WCCP with multiple WSAs, they're all in the WCCP cluster, with the router doing the load balancing beween the detected proxies. From what I've seen, you can't configure an active/passive scenario.
As you mentioned , WSAs don't support clustering seen in ESAs. You could use a M-series box to provide central management and reporting for multiple WSAs in your enviromment.
Regarding VRFs: WSAs support IP spoofing, which allows you to send out requests with the client's instead of WSA's external address. You could perform PAT of multiple addresses on the edge router/firewall to send the requests out with a different IP address for each VRF for example.
I don't think you can fully disable the explicit proxy on the WSA. You can set up a firewall rule to prevent direct client access to the proxy ports..
Sent from Cisco Technical Support iPad App
Similar Messages
-
Is it possible to transition between two different WAAS appliances if using WCCP redirection? Currently I'm using a WAVE 274 and want to migrate to a recently installed NM-WAE-522. WCCP is currently being used to redirect traffic to the WAVE. Can I simply add the WAE to the WCCP config and then remove the WAVE?
Does it matter that they are in the same subnet or not? The NM-WAE-522 is obviously on the same subnet as one of the router interfaces, but the WAVE-274 is actually on a different subnet off of our 6509. I thought I remembered reading that it was at least recommended that WCCP devices be on the same subnet for load balancing, but I'm guessing it doesn't matter as I'm using L3 GRE redirection.
-
Box-to-box redundancy and ARP question
In a box-to-box failover scenario are the MAC addresses of both active and standby CSS11503s supposed to match up? The reason I ask relates to an issue where without clearing the ARP cache on the Default GW (a PIX with a default ARP timeout of 240 minutes) all services were unreachable via the VIPs.
the addresses are not the same but the CSS sends a gratuitous arp upon failover to advertise the new mac-address.
Gilles. -
Need some direction on FW Redundancy and opening ports
I would appreciate any advice on the current ways of connecting 2 Firewalls directly for redundancy and also the best practice for allowing data through the firewall. Do firewalls have a stacking technology similar to StackWise or FlexStack? I need to allow specific ports through my network into another private network. Although this won't be connected to the internet the same type of security as if it were, is important. Sorry if this is a generic question but what methods would be best for allowing data to and from through my network firewall? I would grealty appreciate any sample configurations (I don't plan on configuring zones) or documentation on the current way of allowing these functions. Thanks for your help!
Hi,
There are 2 different options to my knowledge to have firewall redundancy with Cisco firewalls.
The most common one is Active/Standby Failover which you have 2 identical (hardware & software) Cisco firewalls connected by a Failover link. One of the the firewalls is the Active unit and handles traffic while the other unit is Standby monitoring the state of the Active device (and vice versa). When the Active unit fails the Standby unit will take the Active role.
Another option is Active/Active which basically means that you would be running multiple virtual Firewalls inside the actual hardware firewall. Some virtual firewalls would be Active on hardware unit 1 and some virtual firewalls would be Active unit would be Active on hardware unit 2. Hence the term Active/Active, both firewalls would be handling traffic.
ASA 9.0 Configuration Guide section on Failover
http://www.cisco.com/en/US/docs/security/asa/asa90/configuration/guide/ha_overview.html
The second and new option is Cluster setup where you essentially combine multiple identical firewalls together. This is a subject though that I have not gotten to test myself so my knowledge is very limited. Though to my understanding this is available only with high end ASA5585-X units so it might not be an option for most.
ASA 9.0 Configuration Guide section on Cluster
http://www.cisco.com/en/US/docs/security/asa/asa90/configuration/guide/ha_cluster.html
So most likely you will be using Active/Standby Failover with 2 identical Cisco firewalls.
Their configuration format compared to a standalone firewall doesnt differ much.
You will configure a "standby" IP address also on the ASA that will be the IP address that the Standby unit uses
You will configure the actual Failover interface
You will configure general Failover related settings
You can tune the Failover settings and define which interfaces are monitored (and can effect the Failover) and set some other additional parameters
So there is not that much to configure compared to the standalone Cisco firewall setup.
Your post seems to indicate that this firewall or firewall pair would be used for Internal network usage. I mean a firewall between 2 LAN/DMZ networks. This would in turn mean that unless you specifically need NAT between these network segments, you could actually leave the NAT configuration of the firewall completely blank and only configure the Routing&Firewalling related settings.
How you would configure access between the 2 different network segments would naturally depend on your own setup.
From what I understood from your above post it would seem to me that you should configure ACLs on both interfaces connected to their own network segments. These ACLs would be configured in Inbound direction (which would control traffic heading towards the firewall from that segment and into the other segment). You could then configure both ACLs in the manner that ONLY the required source/destination IP addresses/networks/ports are allowed and all other traffic is blocked.
I am not really sure what kind of example configuration we could give you as we dont really know what the whole setup is going to be.
Hope this helps
- Jouni -
How to implement uplink redundancy and spanning tree in SFP-300 switches
We have several Small Business 300 Series Managed Switches, the 10/100 ones with PoE, the first generation ones.
We've been advised to implement uplink redundancy and spanning tree on these switches.
I'm sure spanning tree is a checkbox somewhere in the web interface.
How does one implement uplink redundancy besides interconnecting the switches plus turning on spanning tree (RSTP)??
Thank you, Tom
P.S. I also tried to file a service request but it does not work, I get: "Error 500: Request processing failed; nested exception is java.lang.NullPointerException"Hello Thomas,
Thanks for using the Cisco Small Business eSupport Community. I've looked through the articles that are available in our Knowledge Base and found a few that I hope will be able to assist you in setting up spanning tree and link redundancy on your SFP300s:
In regards to link redundancy, the following article on LAG can hopefully provide some guidance:
Link Aggregate Group (LAG) Configuration on 200/300 Series Managed Switches
And for your question on setting up STP, here are a few articles with additional information:
Configure Spanning Tree Protocol (STP) Status and Global Settings on 200/300 Series Managed Switches
Setup Spanning Tree Protocol (STP) on a Interface on the 300 Series Managed Switches
I hope that this information helps! Please remember to mark your question as answered and rate if this solves your problem.
Best,
Gunner -
Syncing pics and video question
I am using the new i phone 4 and are starting to get in to i movie and the camera on the phone. I have both a I mac at work and at home.
When I sync up to either machine the camera wants to sync with that machine which in essence calls it to load all the pics from that machines I photo to my phone. What I am more interested in doing is telling the I phone which pics to put on that machine in essence syncing my phone to the machine not the other way around.
What I really want to do also is be able to pick and choose which photos from my phone that I want to import and which that I do not..Is that possible! i.e. i would like to keep some videos on my phone as I edit them in I movie for my I phone...Is there a way to dump some of my camera roll into I photo and keep some of it. Please advise.
Bonus Question: My wife has an I phone and she and I are sharing the same I mac at home...Is there a way that we can set up individual I photo files as to keep our video and pics separate in I photo.I was wondering this same thing. And I know what the OP is talking about. As there are ways to do what he is talking about, (work arounds) - it still isn't just plain cut and dry like it should be. I have no clue why this great phone has so many little downsides that it doesn't need to have.
First off, this "syncing" name to do what has been done over years on other devices which is called "transferring files" or "Import" and "Export" is just stupid, and on top of that completely limiting.
What I and the OP would like to do, and have it be like is more like, when I plug in my iPhone I don't want to have to "sync" crap, what I want to do is have it operate more like a mini firewire drive has been plugged into my computer. I would like to take certain things off my iPhone, leaving other things, and take ONLY certain things off my computer and put them into my iPhone. Be able to delete anything from my iPhone I want and vice versa.
This "syncing" crap is ridiculous. I mean, I found work arounds, but its stupid to have to do that. IE: If I want to delete photos from my iPhone that I got from my computer, I can't do it !! I simply can not go to my phone and check photos to delete and delete them.. HA !! Is that ridiculous or what ? What I have to do is "sync" a empty folder to it, then it wipes it out. BUT its limiting because, what if I only want to delete a few, and keep some others ? Well, yes, I have to then create a "sync" folder with them photos I want to keep, but none others, then sync it, and there it is. Its totally redundant and stupid and there is no reason for it.
That is alot of steps to just do what normally should be able to be done. Seriously what is Steve Jobs thinking with some of these things ?
This SAME thing applies to ringtones I made and got into my iPhone. I can not delete them !! I have to use the above process to accomplish this as well.
What we want, and the way it should be is more of a "import" and "export" thing. NOT this "sync" idea. Its stupid. It takes too much control over my iPhone and files, and I want to be in complete control of my iPhone and files. I paid for it, why not ?.
This also applies to the music, and just all "syncing" cases with this iPhone and iTunes. It causes accidental complete erasures of your carefully compiled files and vice versa. It is completely to "do it all or nothing at all" type of thing. Steve Jobs swears I want my whole music library on my iPhone at all times. Or all my photos, and then he wants to take control of them.
I say get rid of "Sync" and give me "Import" and "Export" of my personally created files along with complete control of what I want to keep where and what I don't. JUST like a mini firewire drive was attached and how that works. It would be SOOOOO much more simple. And make sooooo much more sense. Then have premade tags of any thing we purchased and was copywriten that makes those things NOT be able to be transfered around without syncing and it taking control like it does now so it can't be anywhere but with who purchased it. -
Account with an icon of a face and a question mark
Same issue of other user in Yosemite Apple Support.
Following advises on that thread I also installed the ETRECHECK software tool, report is as follows:
Problem description:
At the login screen I find an icon with a face and a question mark in it - with a message it needs an update.
EtreCheck version: 2.1.5 (108)
Report generated 02 gennaio 2015 12:37:26 CET
Click the [Support] links for help with non-Apple products.
Click the [Details] links for more information about that line.
Click the [Adware] links for help removing adware.
Hardware Information: ℹ️
MacBook Pro (13-inch, Mid 2012) (Verified)
MacBook Pro - model: MacBookPro9,2
1 2.5 GHz Intel Core i5 CPU: 2-core
16 GB RAM Upgradeable
BANK 0/DIMM0
8 GB DDR3 1600 MHz ok
BANK 1/DIMM0
8 GB DDR3 1600 MHz ok
Bluetooth: Good - Handoff/Airdrop2 supported
Wireless: en1: 802.11 a/b/g/n
Video Information: ℹ️
Intel HD Graphics 4000
Color LCD 1280 x 800
System Software: ℹ️
OS X 10.10.1 (14B25) - Uptime: 1:22:54
Disk Information: ℹ️
APPLE HDD HTS545050A7E362 disk0 : (500,11 GB)
EFI (disk0s1) <not mounted> : 210 MB
Recovery HD (disk0s3) <not mounted> [Recovery]: 650 MB
Macintosh HD (disk1) / : 498.89 GB (467.03 GB free)
Encrypted AES-XTS Unlocked
Core Storage: disk0s2 499.25 GB Online
MATSHITADVD-R UJ-8A8
USB Information: ℹ️
Apple Inc. FaceTime HD Camera (Built-in)
Apple Computer, Inc. IR Receiver
Apple Inc. BRCM20702 Hub
Apple Inc. Bluetooth USB Host Controller
Apple Inc. Apple Internal Keyboard / Trackpad
Thunderbolt Information: ℹ️
Apple Inc. thunderbolt_bus
Gatekeeper: ℹ️
Mac App Store and identified developers
Launch Daemons: ℹ️
[loaded] com.adobe.fpsaud.plist [Support]
User Login Items: ℹ️
iTunesHelper Applicazione (/Applications/iTunes.app/Contents/MacOS/iTunesHelper.app)
Dropbox ApplicazioneHidden (/Applications/Dropbox.app)
Internet Plug-ins: ℹ️
FlashPlayer-10.6: Version: 16.0.0.235 - SDK 10.6 [Support]
Flash Player: Version: 16.0.0.235 - SDK 10.6 [Support]
QuickTime Plugin: Version: 7.7.3
Default Browser: Version: 600 - SDK 10.10
Safari Extensions: ℹ️
Pin It Button [Installed]
Save to Pocket [Installed]
Add To Amazon Wish List [Installed]
3rd Party Preference Panes: ℹ️
Flash Player [Support]
Time Machine: ℹ️
Time Machine not configured!
Top Processes by CPU: ℹ️
14% WindowServer
3% hidd
2% Safari
1% Dock
0% fontd
Top Processes by Memory: ℹ️
333 MB com.apple.WebKit.WebContent
155 MB mds_stores
137 MB Safari
137 MB Finder
86 MB Dropbox
Virtual Memory Information: ℹ️
7.76 GB Free RAM
4.88 GB Active RAM
3.28 GB Inactive RAM
1.26 GB Wired RAM
4.73 GB Page-ins
0 B Page-outs
Diagnostics Information: ℹ️
Jan 2, 2015, 11:15:06 AM Self test - passed
Jan 2, 2015, 12:06:57 AM /Library/Logs/DiagnosticReports/Dropbox109_2015-01-02-000657_[redacted].cpu_res ource.diag [Details]
---------- is there any troubleshooting for delete that fake account every time I start my Macbook Pro?
thanks and regards
EdoardoSmiley face with a ? means a bootable system is not found.
There maybe a problem with either system software or hard drive itself.
Try this.
Repair Disk
Steps 2 through 8
http://support.apple.com/kb/PH5836
Best. -
Performance issue and functional question regarding updates on tables
A person at my site wrote some code to update a custom field on the MARC table that was being copied from the MARA table. Here is what I would have expected to see as the code. Assume that both sets of code have a parameter called p_werks which is the plant in question.
data : commit_count type i.
select matnr zfield from mara into (wa_marc-matnr, wa_marc-zfield).
update marc set zfield = wa_marc-zfield
where werks = p_werks and matnr = wa_matnr.
commit work and wait.
endselect.
I would have committed every 200 rows instead of every one row, but here's the actual code and my question isn't around the commits but something else. In this case an internal table was built with two elements - MATNR and WERKS - could have done that above too, but that's not my question.
DO.
" Lock the record that needs to be update with material creation date
CALL FUNCTION 'ENQUEUE_EMMARCS'
EXPORTING
mode_marc = 'S'
mandt = sy-mandt
matnr = wa_marc-matnr
werks = wa_marc-werks
EXCEPTIONS
foreign_lock = 1
system_failure = 2
OTHERS = 3.
IF sy-subrc <> 0.
" Wait, if the records not able to perform as lock
CALL FUNCTION 'RZL_SLEEP'.
ELSE.
EXIT.
ENDIF.
ENDDO.
" Update the record in the table MARC with material creation date
UPDATE marc SET zzdate = wa_mara-zzdate
WHERE matnr = wa_mara-matnr AND
werks = wa_marc-werks. " IN s_werks.
IF sy-subrc EQ 0.
" Save record in the database table MARC
CALL FUNCTION 'BAPI_TRANSACTION_COMMIT'
EXPORTING
wait = 'X'
IMPORTING
return = wa_return.
wa_log-matnr = wa_marc-matnr.
wa_log-werks = wa_marc-werks.
wa_log-type = 'S'.
" text-010 - 'Material creation date has updated'.
wa_log-message = text-010.
wa_log-zzdate = wa_mara-zzdate.
APPEND wa_log TO tb_log.
CLEAR: wa_return,wa_log.
ELSE.
" Roll back the record(un save), if there is any issue occurs
CALL FUNCTION 'BAPI_TRANSACTION_ROLLBACK'
IMPORTING
return = wa_return.
wa_log-matnr = wa_marc-matnr.
wa_log-werks = wa_marc-werks.
wa_log-type = 'E'.
" 'Material creation date does not updated'.
wa_log-message = text-011.
wa_log-zzdate = wa_mara-zzdate..
APPEND wa_log TO tb_log.
CLEAR: wa_return, wa_log.
ENDIF.
" Unlock the record from data base
CALL FUNCTION 'DEQUEUE_EMMARCS'
EXPORTING
mode_marc = 'S'
mandt = sy-mandt
matnr = wa_marc-matnr
werks = wa_marc-werks.
ENDIF.
Here's the question - why did this person enqueue and dequeue explicit locks like this ? They claimed it was to prevent issues - what issues ??? Is there something special about updating tables that we don't know about ? We've actually seen it where the system runs out of these ENQUEUE locks.
Before you all go off the deep end and ask why not just do the update, keep in mind that you don't want to update a million + rows and then do a commit either - that locks up the entire table!The ENQUEUE lock insure that another program called by another user will not update the data at the same time, so preventing database coherence to be lost. In fact, another user on a SAP correct transaction, has read the record and locked it, so when it will be updated your modifications will be lost, also you could override modifications made by another user in another luw.
You cannot use a COMMIT WORK in a SELECT - ENDSELECT, because COMMIT WORK will close each and every opened database cursor, so your first idea would dump after the first update. (so the internal table is mandatory)
Go through some documentation like [Updates in the R/3 System (BC-CST-UP)|http://help.sap.com/printdocu/core/Print46c/en/data/pdf/BCCSTUP/BCCSTUP_PT.pdf]
Regards -
How can i restore my iphone 5s as i forgot my icloud password and sec questions
I bought a new iphone 5s (32G Gold)
and when I connect it to itunes asked me to restore from my old iphone 4
with all my account settings and passwords.
but I have a problem with my account for icloud password and security questions because my cloude id is *************** and with no problem with my apple id "*****************", I tried to restore my new iphone after I turned off find my iphone from icloud setting and when its restore was finished the iphone is locked and asked me to unlock the iphone with a ****************** that I forget the password and security questions and when I tried to enter my account id "**************** with no problem with its password it says to me "this account can't unlock this iphone"
when I visit tradeline (Apple products dealer) I found no answer and they adviced me to contact apple directly.
Name : Alaa Rashed Abd el Hafiz
Country : egypt
<Personal Information Edited by Host>First, remove your personal information from your post. That's not needed here. This is a public forum, and it is unwise to provide your personal data online.
Second, here's how you reset your password and/or security questions.
How to reset your Apple ID password.
Go to iforgot.apple.com and type in your Apple ID, then click 'Next'.
Verify your date of birth, then click 'Next'.
You'll be able to choose one of two methods to reset your password, either E-Mail Authentication or Answer Security Questions.
If neither method works, then go to https://getsupport.apple.com
(If you see a message that says 'There are no products registered to this Apple ID, simply click on 'See all products and services')
Choose 'More Products & Services', then 'Apple ID'.
A new page will open.
Choose 'Other Apple ID Topics', then 'Lost or forgotten Apple ID password'.
Click the blue 'Continue' button.
Select the contact option that suits your needs best.
How to reset your Apple ID security questions.
Go to appleid.apple.com, click on the blue button that says 'Manage Your Apple ID'.
Log in with your Apple ID and password. (If you have forgotten your Apple ID password, go to iforgot.apple.com first to reset your password with a password recovery email)
Go to the Password & Security section on the left side, and click on the link underneath the security questions that says 'Forgot your answers? Send reset security info email to [email]'. This will generate an automated e-mail that will allow you to reset your security questions.
If that doesn't work, or there is no rescue email link available, then click on 'Temporary Support PIN' that is in the bottom left side, and generate a 4-digit PIN for the Apple Account Security Advisor you will be contacting later.
Next, go to https://getsupport.apple.com
(If you see a message that says 'There are no products registered to this Apple ID, simply click on 'See all products and services')
Choose 'More Products & Services', then 'Apple ID'.
A new page will open.
Choose 'Other Apple ID Topics', then 'Forgotten Apple ID Security Questions'.
Click the blue 'Continue' button.
Select the contact option that suits your needs best. -
Hi, I have a new computer and new apple id. I've purchased music with my old computer, email and apple id.
I cant access now the previously purchase music, because it wants to authorize the new computer to play the
music. I cant remember password and security questions for my old id and the old email doest exist anymore.
What can I do?Hi, Carmen.
Thank you for visiting Apple Support Communities.
If you need to reset you security questions, do not know the answers and no longer have access to that email account, see the last sentence under Note in step 5.
You'll be asked to answer 2 of your 3 security questions before you can make any modifications. If you are unable to remember your answers, you can choose to send an email to your rescue email to reset your security questions.
Note: The option to send an email to reset your security questions and answers will not be available if a rescue email address is not provided. You will need tocontact iTunes Store support in order to do so.
Rescue email address and how to reset Apple ID security questions
http://support.apple.com/kb/ht5312
Cheers,
Jason H. -
Spam filtering solution for iPhone and a question.
I've read a lot of posts about spam filtering for the iPhone and have yet another solution and a question. I use SpamSieve and I am not affiliated with them in any way. The nice thing about SpamSieve is that if it is the first rule in your Mail.app rule set any mail that follows has already been filtered. All you need to do then is create another rule that redirects email to what ever mail account you choose. Since my ISP allows multiple accounts, I will simply create an iPhone@myISP account.
Now the question. Is it possible to write an applescript that will turn the redirect rule on or off so that I don't have to dig into the rules section of Mail to get this done?
ThanksIs it possible to write an applescript that will turn the redirect rule on or off so that I don't have to dig into the rules section of Mail to get this done?
not at present time -
I did the back up as instructed... Installed a larger hard drive and followed the restore instructions... Now I get a white screen with a folder icon and blinking question mark. When trying to set startup with new drive I get a bless tool error... Help!!
If you have installed a new hard drive , you will need to have formatted it in Disk Utility correctly. This may explain your problem.
Boot into your 10.6 Install disk again at the top menubar > Utilities > select Disk utility and in there select your new hard drive, and select the tab Erase and choose to make the format as Mac OS Extended Journaled. When that is finished look in the main window to make sure that the partition map scheme says GUID Partition Table.
Now go to the Restore tab and reinstall from your backup. -
Trying to download songs on iTunes and it's asking for "my 1st car I owned" and other questions that I never answered. It won't let me download anything til I answer them. Can you help me?
You need to contact Apple to get the questions reset. Click here, phone them, and ask for the Account Security team, or fill out and submit this form.
(94816) -
What's the difference between redundancy and recovery window for retention?
Hello all,
I'm still trying to get a grip on this concept for RMAN backup planning.
I recently ran into a situation as follows.
I have the backups set to a redundancy of 1.
I have instance1, which had GRID jobs to run RMAN backups as follows
Incremental database level=0 weekly at Wed at 2:30am
I have daily backups, incremental level=1 each evening
I have archive log backups through the day.
What happened, was that apparently on a Tues some time, the development team deleted data from almost every table in their schema.
The didn't discover this till midday or so on Wednesday.
I went to try to restore...and RMAN couldn't do it. I had found a SCN for early the Tues they did it...but I got the following error:
RMAN> RUN
2> {
3> SET UNTIL SCN 4590383198282;
4> RESTORE DATABASE;
5> RECOVER DATABASE;
6> }
executing command: SET until clause
Starting restore at 28-APR-10
allocated channel: ORA_SBT_TAPE_1
channel ORA_SBT_TAPE_1: SID=639 device type=SBT_TAPE
channel ORA_SBT_TAPE_1: NMO v4.5.0.0
allocated channel: ORA_DISK_1
channel ORA_DISK_1: SID=638 device type=DISK
creating datafile file number=1 name=+DATADG/instance1/datafile/system.284.697137287
RMAN-00571: ===========================================================
RMAN-00569: =============== ERROR MESSAGE STACK FOLLOWS ===============
RMAN-00571: ===========================================================
RMAN-03002: failure of restore command at 04/28/2010 15:53:00
ORA-01180: can not create datafile 1
ORA-01110: data file 1: '+DATADG/instance1/datafile/system.284.697137287'
From what research I did...it appears that since I did not have a level=0 incremental from before, it could not reset the database back in time. The previous one had been deleted since, I guess I had a redundancy of 1.
So, I thought I had a week backup they way I have it set..but that assumes that errors are found pretty quickly before the next level=0 backup.
I want at least 1 to 1.5 weeks worth of backups. I do have the problem that we do not have many tapes in rotation, so I cannot go for too long...may 2x weeks tops.
I'm trying to rethink my strategy, but I'm confused as I read as to the difference between setting RMAN retention with redundancy vs recovery window.
Can someone give me an explanation how you understand it? I'm reading on the web and in oracle books, and for some reason, it just isn't clear to me what is the best way to go....especially when I see that redundancy and recovery window might both be set??
Thank you in advance,
cayenneDear Cayenne
AFAIK RMAN doesn't claim that "you haven't enough backup". Please read the error you got carefully
ORA-01180: can not create datafile 1
ORA-01110: data file 1: '+DATADG/instance1/datafile/system.284.697137287'
and check the following link:
ORA-01180: Cannot create datafile 1 when doing RMAN restore onto 2nd server
Moreover, could you please use LIST BACKUP command and see whether you have enough backups?
Read "Redundancy Based Backup Retention Policy" from the following link:
http://download.oracle.com/docs/cd/B19306_01/backup.102/b14192/strategy003.htm#sthref139 -
I want to integrate SMS gateway to Cisco ISE 1.2 and my question is
SMS notifications are supported for Guest self−registration Services ? or it should be done by SponsorI'm not sure I understand the question. Do you want to log in to the Sponsor Portal using AD credentials?
Create an Identity Source Sequence using AD as an Authentication Source. Go to Administration > Identity Management > Identity Source Sequences. Either Edit or +Add a Sequence and choose from the Authentication Sources shown.
Then choose that Identity Source Sequence by going to Administration > Web Portal Management > Settings. Double-click Sponsor from the Left Menu and click Authentication Source. Choose the Identity Source Sequence. Click Save.
I hope this helps.
Please Rate Helpful posts and mark this question as answered if, in fact, this does answer your question. Otherwise, feel free to post follow-up questions.
Charles Moreton
Maybe you are looking for
-
T420 - Triple Monitors/Enable Optimus?
I have a T420, and am trying to run 3 monitors (2 external + the laptop display). I am have hooked up one monitor to the VGA and another to the display port on my docking station, and am able to run 2 monitors in any combination. However it won't l
-
Hi you all, How can I access, from a normal class which doesn't extend the HttpServlet abstract class, any session objects that might have been stored. It is a requirement that all the classes that I am using which make part of the bussiness logic ca
-
HT1551 apple tv was downloading update and power went out
Cant get the Apple tv to work, I was updateing the software and the power went out, now it won't work at all? any idea what to do ?
-
HT1177 Time Capsule Reset but save my other backed up files like photos documents
Hi i have a Time capsule and i want to reset it as if first time ever used but i have lots of files on it how do i reset and ensure that the files i have are safe
-
Solaris 8 - No Disks that meet the Criteria in the solaris installer documentation
Hi there I am installin sloaris 8 in Pentium Pro Machine with Quantum Firball Hard Disk 10 GB , at installation time the Solaris recognize the existance of the hard disk by givingme the option to load from CD ROm or the Quantum Hard disk but later on