ZBF: Required to 'pass' icmp errors in the reverse direction ?
Hi,
I've noticed something when having some traffic inspected.
Imagine you have a zone A and a zone B and a policy allowing all connection from A to B:
class-map type inspect match-any cm_all
match protocol icmp
match protocol tcp
match protocol udp
policy-map type inspect pm_all
class cm_all
inspect
zone-pair security zp_A_to_B source zone_A destination zone_B
service-policy type inspect pm_all
Now, it turns out that for everything to work as intended, you also need to all a reverse policy B to A that allows icmp errors to pass through.
ip access-list extended acl_icmp_err
permit icmp any any unreachable
permit icmp any any ttl-exceeded
ipv6 access-list acl_icmp6_err
permit icmp any any unreachable
permit icmp any any hop-limit
permit icmp any any packet-too-big
class-map type inspect match-all cm_icmp_err
match protocol icmp
match access-group name acl_icmp_err
class-map type inspect match-all cm_icmp6_err
match protocol icmp
match access-group name acl_icmp6_err
policy-map type inspect pm_icmp_err
class cm_icmp_err
pass
class cm_icmp6_err
pass
zone-pair security zp_A_to_B source zone_A destination zone_B
service-policy type inspect pm_icmp_err
Without this, things like PMTU, traceroute, ... won't work.
I would have expected that icmp errors "related" to a currently inspected sessions would be accepted in the return traffic, but that's apparently not the case.
Can anyone comment on this ?
Cheers,
Sylvain
WTF ??? The whole thread is gone ???
Similar Messages
-
How do I select multiple clips in a timeline in the reverse direction, e.g. middle to front?
I know how to click "a" and select clips in the timeline looking forward, but how do we select multiple clips from a middle point to the front of the timeline? I don't want to be lassoing -- is there some other way?
Hi denniscallan,
Please check the track selection tool. Refer to the link below for more information about the tools section.
http://help.adobe.com/en_US/premierepro/cs/using/WSd79b3ca3b623cac957c49aa9127401b0642-7ff f.html
Regards,
Vinay -
Why am I getting a syntax error on the /head line in DW CC?
I am getting a syntax error in DW CC. Other threads have indicated this was a bug in CS6 but had been fixed in CC. That leads me to believe it's my fault, but I can't figure it out. Can anyone help based on the information I've pasted below? Thanks!
<!doctype html>
<!--[if lt IE 7]> <html class="ie6 oldie"> <![endif]-->
<!--[if IE 7]> <html class="ie7 oldie"> <![endif]-->
<!--[if IE 8]> <html class="ie8 oldie"> <![endif]-->
<!--[if gt IE 8]><!-->
<html class="">
<!--<![endif]-->
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<title>Untitled Document</title>
<link href="boilerplate.css" rel="stylesheet" type="text/css">
<link href="style.css" rel="stylesheet" type="text/css">
<link href="jQueryAssets/jquery.ui.core.min.css" rel="stylesheet" type="text/css">
<link href="jQueryAssets/jquery.ui.theme.min.css" rel="stylesheet" type="text/css">
<link href="jQueryAssets/jquery.ui.accordion.min.css" rel="stylesheet" type="text/css">
<link href="jQueryAssets/jquery.ui.tabs.min.css" rel="stylesheet" type="text/css">
<!--
To learn more about the conditional comments around the html tags at the top of the file:
paulirish.com/2008/conditional-stylesheets-vs-css-hacks-answer-neither/
Do the following if you're using your customized build of modernizr (http://www.modernizr.com/):
* insert the link to your js here
* remove the link below to the html5shiv
* add the "no-js" class to the html tags at the top
* you can also remove the link to respond.min.js if you included the MQ Polyfill in your modernizr build
-->
<!--[if lt IE 9]>
<script src="//html5shiv.googlecode.com/svn/trunk/html5.js"></script>
<![endif]-->
<script src="respond.min.js"></script>
<script src="jQueryAssets/jquery-1.8.3.min.js" type="text/javascript"></script>
<script src="jQueryAssets/jquery-ui-1.9.2.accordion.custom.min.js" type="text/javascript"></script>
<script src="jQueryAssets/jquery-ui-1.9.2.tabs.custom.min.js" type="text/javascript"></script>
<!--The following script tag downloads a font from the Adobe Edge Web Fonts server for use within the web page. We recommend that you do not modify it.--><script>var __adobewebfontsappname__="dreamweaver"</script><script src="http://use.edgefonts.net/adamina:n4:default.js" type="text/javascript"></script>
</head>
<body>
<div class="gridContainer clearfix">
<div id="div1" class="fluid">
<header id="header" class="fluid">
<p><img src="Images/Logos/insidejoplinlogo.png" alt=""/></p>
<nav id="mainnav" class="fluid"> <ul class="fluid fluidList mainnavlist"> <li class="fluid mainnavitem zeroMargin_desktop"><a href="Index2.html" title="Inside Joplin Home" target="_self">Home</a></li><li class="fluid mainnavitem"><a href="news.html">News</a></li><li class="fluid mainnavitem"><a href="entertainment.html">Entertainment</a></li><li class="fluid mainnavitem"><a href="announcements.html">Announcements</a></li><li class="fluid mainnavitem hide_mobile"><a href="galleries.html">Galleries</a></li><li class="fluid mainnavitem hide_mobile"><a href="aboutcontact.html">About/Contact</a></li> </ul> </nav>
</header>
<article id="indexguts" class="fluid"> <article id="indexarticle" class="fluid">
<h4 class="fluid articleH4 zeroMargin_mobile">Latest News</h4>
<p> </p>
<div id="Accordion1">
<h3><a href="#">Section 1</a></h3>
<div>
<p>Content 1</p>
</div>
<h3><a href="#">Section 2</a></h3>
<div>
<p>Content 2</p>
</div>
<h3><a href="#">Section 3</a></h3>
<div>
<p>Content 3</p>
</div>
</div>
</article><article id="article1" class="fluid">
<h4 class="fluid articleH4 zeroMargin_mobile">Latest Entertainment</h4>
<p> </p>
<div id="Accordion2">
<h3><a href="#">Section 1</a></h3>
<div>
<p>Content 1</p>
</div>
<h3><a href="#">Section 2</a></h3>
<div>
<p>Content 2</p>
</div>
<h3><a href="#">Section 3</a></h3>
<div>
<p>Content 3</p>
</div>
</div>
</article><article id="article2" class="fluid"><h4 class="fluid articleH4 zeroMargin_mobile">Latest Announcements</h4>
<p> </p>
<div id="Tabs1">
<ul>
<li><a href="#tabs-1">Obituaries</a></li>
<li><a href="#tabs-2">Weddings</a></li>
<li><a href="#tabs-3">More</a></li>
</ul>
<div id="tabs-1">
<p>Content 1</p>
</div>
<div id="tabs-2">
<p>Content 2</p>
</div>
<div id="tabs-3">
<p>Content 3</p>
</div>
</div>
</article><article id="indexbotleft" class="fluid">This is the content for Layout Article Tag "indexbotleft"</article><article id="article3" class="fluid">This is the content for Layout Article Tag "indexbotleft"</article></article><aside id="mainsidebar" class="fluid">This is the content for Layout Aside Tag "mainsidebar"</aside><aside id="mainsidebar2" class="fluid">This is the content for Layout Aside Tag "mainsidebar2"</aside><article id="indexbotrot" class="fluid">This is the content for Layout Article Tag "indexbotrot"</article>
<footer id="footer" class="fluid">
<nav id="footernav" class="fluid">
<ul id="footernavlist" class="fluid fluidList"> <li class="fluid footernavlistitem zeroMargin_mobile"><a href="Index2.html">Home</a></li><li class="fluid footernavlistitem hide_mobile"><a href="news.html">News</a></li>
<li class="fluid footernavlistitem hide_mobile"><a href="entertainment.html">Entertainment</a></li>
<li class="fluid footernavlistitem hide_mobile"><a href="announcements.html">Announcements</a></li>
<li class="fluid footernavlistitem zeroMargin_desktop zeroMargin_mobile"><a href="galleries.html">Galleries</a></li>
<li class="fluid footernavlistitem zeroMargin_mobile"><a href="aboutcontact.html">About Us</a></li>
<li class="fluid footernavlistitem zeroMargin_mobile"><a href="mailto:[email protected]">Email</a></li> <li class="fluid footernavlistitem zeroMargin_mobile"><a href="www.facebook.com/insidejoplin" target="new">Facebook</a></li></ul>
</nav>
<article id="footerarticle" class="fluid"><img src="Images/Logos/insidejoplinlogo.png" alt=""/></article>
</footer>
</div>
</div>
+
<script type="text/javascript">
$(function() {
$( "#Accordion1" ).accordion();
$(function() {
$( "#Accordion2" ).accordion();
$(function() {
$( "#Tabs1" ).tabs();
</script>
</body>
</html>Well Jon, the code is very simple... it's generated by DW's form check... and, as i said, it happens with unfailing regularity the minute it's put in to a template generated child.
This is what the code on the page looks like:
<head>
<!-- InstanceBeginEditable name="doctitle" -->
<title>Title Here</title>
<meta name="Keywords" content="some keywords here" />
<meta name="Description" content="Description here" />
<script type="text/javascript">
function MM_validateForm() { //v4.0
if (document.getElementById){
var i,p,q,nm,test,num,min,max,errors='',args=MM_validateForm.arguments;
for (i=0; i<(args.length-2); i+=3) { test=args[i+2]; val=document.getElementById(args[i]);
if (val) { nm=val.name; if ((val=val.value)!="") {
if (test.indexOf('isEmail')!=-1) { p=val.indexOf('@');
if (p<1 || p==(val.length-1)) errors+='- '+nm+' must contain an e-mail address.\n';
} else if (test!='R') { num = parseFloat(val);
if (isNaN(val)) errors+='- '+nm+' must contain a number.\n';
if (test.indexOf('inRange') != -1) { p=test.indexOf(':');
min=test.substring(8,p); max=test.substring(p+1);
if (num<min || max<num) errors+='- '+nm+' must contain a number between '+min+' and '+max+'.\n';
} } } else if (test.charAt(0) == 'R') errors += '- '+nm+' is required.\n'; }
} if (errors) alert('The following error(s) occurred:\n'+errors);
document.MM_returnValue = (errors == '');
</script>
<!-- InstanceEndEditable -->
</head>
And, whammo: "There is a syntax error on line xx. Code hinting may not work until you fix this error."
And, the error always highlights the closing </script> line.
The script itself is fine:
1. If one puts it into an external js file, there's no problem
2. If one puts it in the body section, there's no problem
3. If one puts it in the template, there's no problem
Also, if one removes the closing </script> tag, the error goes away
The problem only happens in a child generated by a template and in the location I've illustrated. Apparently, this is a problem a lot of users are facing... -
Passing variable values to the navigation block
Hi WAD Experts,
I have a requirement regarding passing variable values to the navigation block. User requirement is first give the selections on the selection screen and then after executign output should display in browser. In the output page we have a navigation block. So when user gives selections those selections should also populate in the navigation block. Your help will be appreciated.
Prasad.Hi,
if your variable is 'Changeable at Query Navigation' the chosen values will appear in the Navigationblock.
Variables which are 'Not Changeable at Query Navigation'
will not appear.
You can set this Property when you create a Variable.
Kind Regards,
Alican Polat -
Pass values dynamically to the WHERE clause in SFAPI
Hi there
We have a requirement to pass values dynamically (in the run-time of the interface) to the WHERE condition to our SFAPI query.
Eg -
SELECT person, personal_information, address_information, phone_information, email_information, employment_information, job_information, compensation_information, paycompensation_recurring, paycompensation_non_recurring, job_relation, accompanying_dependent, global_assignment_information, direct_deposit, national_id_card, person_relation
FROM CompoundEmployee
WHERE last_modified_on >= to_date('LAST_RUN_DATE') AND
last_modified_on <= to_date('CURRENT_RUN_TIME')
LAST_RUN_DATE is stored in a custom entity for which we execute another OData query. The custom entity is updated with the CURRENT_RUN_TIME once the interface has been executed successfully. So the next time the interface is run it picks up the LAST_RUN_DATE from the custom OData entity.
SAP PO has the functionality to run a dynamic query for OData adapters. Refer to Note 2051137 - PI Successfactors adapter : Dynamic odata query and single synchronous sfapi query
Eg - select fields from position (this is what you state in OData query path in the comms channel; this is static); and you have an advanced tab in comms channel where you mention dynamicquery and set it to true (this points to a XSD which has the keyword TOP, SKIP & FILTER in it).
This gets the filter values passed from the BPM from another query (from a OData cust_table).
So the whole query is - select fields from position filter field a = x field b = y etc. Field a field b are fields in position that are you passing values x and y in run time of the interface.
SAP PO also has the advanced tab feature for SFAPI for dynamic query.
Question is -
how to use it?
has anyone implemented this before?
What does XSD will look like?
How do we pass values to the fields to the Where clause for SFAPI.
Any ideas are welcome!
Regards
Arijit DasAfter you have added a new where clause on the detail VO, try re-executing VO's query by DetailVO.executeQuery()
If it doesn't work try re-executing the MasterVO's query after you have added the where clause on the detail -
How i can print the smartform directly
hi,
my requirement is i have to print the smartform directly by skiping the dialog window.
i am using the following code but in that i have press the Print push button again .
DATA: output_options TYPE ssfcompop.
output_options-tdimmed = 'X'.
output_options-tddest = 'LOCL'.Trty something like
* Print parameters
ssfcompop-tddest = tddest.
ssfcompop-tdimmed = 'X'.
ssfcompop-tdnewid = 'X'.
ssfcompop-tddelete = 'X'.
* Control parameters
ssfctrlop-device = 'PRINTER'.
ssfctrlop-no_dialog = 'X'.
* Call driver
CALL FUNCTION fm_name
EXPORTING
control_parameters = ssfctrlop
output_options = ssfcompop
Regards -
I am trying to authorize my computer and I get an error message: The required directory was not found or has a permissions error. Correct this permissions problem and try again, or deauthorize this computer if the permissions cannot be changed. Help?
I used Terminal to change the permissions on the folder in question. I followed the instructions in this article:
iTunes: Missing folder or incorrect permissions may prevent authorization
In my case, the folder was there, so I needed the command to change permissions on the folder, not to create one. I was hesitant to use Terminal b/c I know that if I made an error I could wipe out my hard drive or render my computer unusable. So to be SURE I didn't make an error, I carefully copied the command from that page and *pasted* it into Terminal. Also, before I could do anything in Terminal, I had to go change my admin password (it had been a blank password before and that's not acceptable for making changes in Terminal). I was just super careful when entering my password or doing anything else while Terminal was open (making sure I didn't accidently hit the spacebar or another key, etc.) And it fixed the problem right away.
What was confusing for me was that the iTunes error message said to change permissions in the FINDER, which is what I was trying to do. It didn't mention Terminal. What would really be helpful is if Apple included a link to a page like this in their error message. -
Hello all,
I am using the IMAQ Match Pattern 4 to detect the rotation angle of a template image. However, it shows the error: "Error 1074395241: The template descriptor does not contain data required for rotation-invariant matching." What is the problem exactly? How to solve this? The details are explained below.
My project is a little bit complicated. Part of the block diagram containing the IMAQ Match Pattern 4 is shown below:
The source image is a series of frames of images read from an AVI video (I used a for loop to process the images frame by frame). The template image is a selected region of the first frame. So it means, the user selected the object of ineterst in the first frame of the video, and in each of the following frames, we need to find the matched object of interest & determine its rotation angle. When I run the block diagram shown above, it does not have any error. However, it shows the rotation angle as zero no matter what it "really" is. Therefore, I changed the block diagram by adding the parameters, shown below:
But in this case, when I run it, it shows the error that I have indicated in the subject line.
If you need more details about my project to identify the problem, please let me know.
Thanks in advance.
Solved!
Go to Solution.-Please go through pattern matching example which comes along with labview fiirst
Go to labview Help>>Find Examples and you can search for example.
-You have create template with angle range and what type of pattern matching you want use.
-For this you have to use IMAQ Learn Pattern before using IMAQ Match Pattern 4
Refer :http://zone.ni.com/reference/en-XX/help/370281U-01/imaqvision/imaq_match_pattern_4/
Thanks
uday,
Please Mark the solution as accepted if your problem is solved and help author by clicking on kudoes
Certified LabVIEW Associate Developer (CLAD) Using LV13 -
When I attempt to sync my nano I get an error message: "The ipod cannot be synced. The required file cannot be found."
This is getting frustrating. Every example of my problem has the same reply:
Try deleting the iPod Photo Cache folder. This is normally located in your pictures folder. Once this is done, try syncing again.
iTunes: Understanding the iPod Photo Cache folder
http://support.apple.com/kb/ts1314
I have NO photos on my Ipod Nano. I select "Photos" and the Ipod goes to a blank screen with the msg "No Photos" at the bottom. There must be some other file missing. Itunes won't connect to the Ipod, I keep getting the same error over and over. It would be nice if it told me what file is missing.
The ipod cannot be synced. The required file cannot be found." -
Error message "The printer requires Intervention" on Windows 8.1
I have Windows 8.1 and get an error message every time I send a print job. The jobs just sit in the print queue. The message says that intervention is required. We are using the wireless option. We have other computers that run Windows 7 and they are NOT having this problem. Has anyone else run into this issue? Does anyone know how to fix it? I have tried unistalling and reinstalling already.
Hello there @AndyG74
Welcome to the forums!
I understand you are running Windows 8.1, and when you send a print job, you are seeing an error and the print job sits in the print queue, without printing it out. As your Windows 7 systems run and print fine, this would seem to be more of a software problem with the Windows 8.1 system and not the printer hardware.
My suggestions to you, would be to try running the Print and Scan Doctor. This diagnostic tool will check for any conflicts that could be causing the issue. The tool will show you a report at the end. If there was a problem that the tool could not fix, you will notice it in the results. Please save a screen shot of the results and post them back for me to review.
Also, try printing from Notepad and let me know if that works.
If the printing issue seems to be solely within one program, include that information too!
Thank you,
R a i n b o w 7000I work on behalf of HP
Click the “Kudos Thumbs Up" at the bottom of this post to say
“Thanks” for helping!
Click “Accept as Solution” if you feel my post solved your issue, it will help others find the solution! -
Receive error message, "The iPod cannot be synced. The required disk cannot be found. This is a iPod nano 6th Gen, all updates on iTunes and iPod, Macbook Pro OS 10.6.7. This is getting frustrating. I have changed USB ports, cables, reset, restored and was able to sync one time in parts, not all songs at once. I have seen a lot of this same issue, will Apple please find a solution, nothing works, I think I wasted my money with this iPod. I have the iPod touch, iPod shuffle, 4th gen iPod nano, iPhone and iPad. This is the only device that has this issue.
I was actually able to investigate and solve the problem myself. After readng many posts, I found that someone else's tips worked for me:
Re: 30gb 5th gen. Probs syncing.
Posted: Oct 13, 2009 8:48 AM in response to: johnnyfrommars
Try running a disk check out the iPod using the tools provided by windows.
To do this:
1. Plug in your iPod and close iTunes.
2. Go to "My Computer". Click on the iPod drive once. Go to File, and then click Properties.
3. Go to the Tools tab. Under "Error Checking", click Check Now.
4. Check both boxes. One says "Automatically fix file system errors" and the other says "Scan for and attempt recovery of bad sectors". Place a check mark next to each of these options and hit Start.
The scan may take several minutes or more to complete, but once it has, go ahead and restart iTunes, and try re-syncing files to your iPod.
B-rock -
While trying to setup a time capsule backup to my MyBookLive external drive, I got the following error message: The network backup disk does not support the required AFP features. What's up with this?
This means that your NAS does not support the required encryption. Update your NAS to the latest firmware or ditch it and buy a Time Capsule (they are the most reliable when using TM).
-
I recently upgraded my OS to Mountain Lion 10.8.2 and cannot open up .avi files now in Quicktime. These same files opened up with no problem prior to my upgrade. Additionally, I had upgraded to the Pro version of Quicktime recently, but it appears I've retrograded back to the basic version, unexplainably.
I get this error message: The document “ANDREW_McD_MEDIA_VERSION.avi” could not be opened. A required codec isn't available.Hi,
I had exactly the same problem & found the answer here https://discussions.apple.com/thread/3219982?start=0&tstart=0 . Download a program called Perian, very easy to download worked a treat. I wish all fixes were this easy - Debbie -
Getting an error in Firefox when passing an apostrophe in the URL
When I click on a button it is passing an apostrophe in the URL and redirecting to another page but got "Oops! We are sorry, there was integrity check error with your request. Please contact support" error in the Firefox browser. And the same URL is working in IE and Chrome browsers. Can you please help me on this issue.
Hi, thanks for the reply. Firefox may converting the apostrophe in the URL into different characters and send that information to the other page but not sure.
Firefox Encoding is set to Unicode (UTI-8). How can I see the failing to encode the apostrophe differently than the other browsers?
All browsers are passing ' instead of apostrophe (') in the URL. So I have added the below code in the JavaScript and it is working in IE and Chrome but not in Firefox. Please let me know your suggestions.
myredirect.replace(/&#39;/g,"'");
Sample URL: https://XXXXXXXXXX/XXXXXXXX/?first=abhina'v&middle=&last=kumar1&street=abhiXXXXXXXXXXXXXXXXXXX
Thanks,
Ramesh. -
cannot authorize my computer, I'm having this error message The required file was not found or has a permissions error. Correct this permissions problem and try again, or deauthorize this computer if the permissions cannot be changed." please help me
Doublechecking. In the course of your troubleshooting to date, have you worked through the instructions from the following document?
iTunes: Missing folder or incorrect permissions may prevent authorization
Maybe you are looking for
-
After REFRESH the cached object is not consistent with the database table
After REFRESH, the cached object is not consistent with the database table. Why? I created a JDBC connection with the Oracle database (HR schema) using JDeveloper(10.1.3) and then I created an offline database (HR schema) in JDeveloper from the exist
-
How do I extend a wireless conection? for apple
How do I extend a wireless conection? In Apple.
-
What is Block Density & How to Calculate it?????
Dear All, Please tell me what is Block Density and how to calculate the value os block density? how does it effect the block or block size? Thanks in Advance Sujoy
-
My iPad 2 won't update to ios 5.0.1
I have an iPad 2 and after about five minutes of it trying to download ios 5.0.1 it says an error occurred. I've tried rebooting it several times and it just won't work please help
-
Windows Vista Installation Hangs on "Completing Installation" on Dell Inspiron 1720
I have a Dell Inspiron 1720 that I am working on. The original problem with this computer was that it was accidently shut off during a Windows Update. The computer will only load to a black screen with a white movable cursor. Unable to resolve that