Another problem with the configuration of Cisco VPN Client access VPN Site2site
We have a Cisco ASA 5505 at our CORP. branch I configured the VPN Site2Site to our COLO with a Juniper SRX220h, to another site works well, but when users access the home Cisco VPN client, they cannot ping or SSH through the Site2Site. JTACS contacted and they said it is not on their end, so I tried to contact Cisco TAC, no support. So here I am today, after for the 3 days (including Friday of last week) of searching the Internet for more than 6 hours per day and try different examples of other users. NO LUCK. The VPN client shows the route secure 10.1.0.0
Sorry to post this, but I'm frustrated and boss breathing down my neck to complete it.
CORP netowrk 192.168.1.0
IP VPN 192.168.12.0 pool
Colo 10.1.0.0 internal ip address
Also, here's an example of my config ASA
: Saved
:
ASA Version 8.2 (1)
!
hostname lwchsasa
names of
name 10.1.0.1 colo
!
interface Vlan1
nameif inside
security-level 100
IP 192.168.1.1 255.255.255.0
!
interface Vlan2
backup interface Vlan12
nameif outside_pri
security-level 0
IP 64.20.30.170 255.255.255.248
!
interface Vlan12
nameif backup
security-level 0
IP 173.165.159.241 255.255.255.248
!
interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/1
switchport access vlan 12
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
!
interface Ethernet0/5
!
interface Ethernet0/6
!
interface Ethernet0/7
!
passive FTP mode
permit same-security-traffic inter-interface
permit same-security-traffic intra-interface
object-group network NY
object-network 192.168.100.0 255.255.255.0
BSRO-3387 tcp service object-group
port-object eq 3387
BSRO-3388 tcp service object-group
port-object eq 3388
BSRO-3389 tcp service object-group
EQ port 3389 object
object-group service tcp OpenAtrium
port-object eq 8100
object-group service Proxy tcp
port-object eq 982
VOIP10K - 20K udp service object-group
10000 20000 object-port Beach
the clientvpn object-group network
object-network 192.168.12.0 255.255.255.0
APEX-SSL tcp service object-group
Description of Apex Dashboard Service
port-object eq 8586
object-group network CHS-Colo
object-network 10.1.0.0 255.255.255.0
the DM_INLINE_NETWORK_1 object-group network
object-network 192.168.1.0 255.255.255.0
host of the object-Network 64.20.30.170
object-group service DM_INLINE_SERVICE_1
the purpose of the ip service
ICMP service object
service-object icmp traceroute
the purpose of the service tcp - udp eq www
the tcp eq ftp service object
the purpose of the tcp eq ftp service - data
the eq sqlnet tcp service object
EQ-ssh tcp service object
the purpose of the service udp eq www
the eq tftp udp service object
object-group service DM_INLINE_SERVICE_2
the purpose of the ip service
ICMP service object
EQ-ssh tcp service object
inside_nat0_outbound to access ip 192.168.1.0 scope list allow 255.255.255.0 clientvpn object-group
inside_nat0_outbound to access ip 192.168.1.0 scope list allow 255.255.255.0 object-group NY
inside_nat0_outbound to access ip 192.168.1.0 scope list allow 255.255.255.0 object-group CHS-Colo
inside_nat0_outbound list of allowed ip extended access any 192.168.12.0 255.255.255.0
outside_pri_1_cryptomap to access ip 192.168.1.0 scope list allow 255.255.255.0 object-group NY
outside_pri_access_in list extended access permit tcp any interface outside_pri eq www
outside_pri_access_in list extended access permit tcp any outside_pri eq https interface
outside_pri_access_in list extended access permit tcp any interface outside_pri eq 8100
outside_pri_access_in list extended access permit tcp any outside_pri eq idle ssh interface
outside_pri_access_in list extended access permit icmp any any echo response
outside_pri_access_in list extended access permit icmp any any source-quench
outside_pri_access_in list extended access allow all unreachable icmp
outside_pri_access_in list extended access permit icmp any one time exceed
outside_pri_access_in list extended access permit tcp any 64.20.30.168 255.255.255.248 eq 8586
levelwingVPN_splitTunnelAcl list standard access allowed 192.168.1.0 255.255.255.0
levelwingVPN_splitTunnelAcl list standard access allowed 10.1.0.0 255.255.255.0
outside_pri_cryptomap to access ip 192.168.1.0 scope list allow 255.255.255.0 object-group CHS-Colo
backup_nat0_outbound list extended access allowed object-group DM_INLINE_NETWORK_1 192.168.12.0 ip 255.255.255.0
outside_pri_cryptomap_1 list extended access allow DM_INLINE_SERVICE_2 of object-group 192.168.1.0 255.255.255.0 10.1.0.0 255.255.255.0
outside_19_cryptomap to access extended list ip 192.168.12.0 allow 255.255.255.0 10.1.0.0 255.255.255.0
inside_nat0_outbound_1 to access ip 192.168.1.0 scope list allow 255.255.255.0 object-group CHS-Colo
VPN-Corp-Colo extended access list permits object-group DM_INLINE_SERVICE_1 192.168.12.0 255.255.255.0 10.1.0.0 255.255.255.0
Note to OUTSIDE-NAT0 NAT0 customer VPN remote site access-list
OUTSIDE-NAT0 192.168.12.0 ip extended access list allow 255.255.255.0 10.1.0.0 255.255.255.0
L2LVPN to access extended list ip 192.168.12.0 allow 255.255.255.0 10.1.0.0 255.255.255.0
pager lines 24
Enable logging
debug logging in buffered memory
exploitation forest asdm warnings
record of the rate-limit unlimited level 4
destination of exports flow inside 192.168.1.1 2055
timeout-rate flow-export model 1
Within 1500 MTU
outside_pri MTU 1500
backup of MTU 1500
local pool LVCHSVPN 192.168.12.100 - 192.168.12.254 255.255.255.0 IP mask
no failover
ICMP unreachable rate-limit 100 burst-size 5
ICMP allow any inside
ICMP allow any outside_pri
don't allow no asdm history
ARP timeout 14400
NAT-control
interface of global (outside_pri) 1
Global 1 interface (backup)
NAT (inside) 0-list of access inside_nat0_outbound
NAT (inside) 0 inside_nat0_outbound_1 list of outdoor access
NAT (inside) 1 0.0.0.0 0.0.0.0
NAT (outside_pri) 0-list of access OUTSIDE-NAT0
backup_nat0_outbound (backup) NAT 0 access list
static TCP (inside outside_pri) interface https 192.168.1.45 https netmask 255.255.255.255 dns
static TCP (inside outside_pri) interface 192.168.1.45 www www netmask 255.255.255.255 dns
static TCP (inside outside_pri) interface 8586 192.168.1.45 8586 netmask 255.255.255.255 dns
static (inside, inside) tcp interface 8100 192.168.1.45 8100 netmask 255.255.255.255 dns
Access-group outside_pri_access_in in the outside_pri interface
Route 0.0.0.0 outside_pri 0.0.0.0 64.20.30.169 1 track 1
Backup route 0.0.0.0 0.0.0.0 173.165.159.246 254
Timeout xlate 03:00
Conn Timeout 0:00:00 half-closed 0:30:00 udp icmp from 01:00 0:00:02
Sunrpc timeout 0:10:00 h323 0:05:00 h225 mgcp from 01:00 0:05:00 mgcp-pat 0:05:00
Sip timeout 0:30:00 sip_media 0:02:00 prompt Protocol sip-0: 03:00 sip - disconnect 0:02:00
Timeout sip-provisional-media 0:02:00 01:00 uauth uauth absolute inactivity from 01:00
timeout tcp-proxy-reassembly 0:01:00
dynamic-access-policy-registration DfltAccessPolicy
AAA authentication enable LOCAL console
AAA authentication http LOCAL console
the ssh LOCAL console AAA authentication
http server enable 981
http 192.168.1.0 255.255.255.0 inside
http 0.0.0.0 0.0.0.0 outside_pri
http 0.0.0.0 0.0.0.0 backup
SNMP server group Authentication_Only v3 auth
SNMP-server host inside 192.168.1.47 survey community lwmedia version 2 c
No snmp server location
No snmp Server contact
Server enable SNMP traps snmp authentication linkup, linkdown cold start
Sysopt connection tcpmss 1200
monitor SLA 123
type echo protocol ipIcmpEcho 216.59.44.220 interface outside_pri
Annex ALS life monitor 123 to always start-time now
Crypto ipsec transform-set ESP-AES-256-SHA 256 - aes - esp esp-sha-hmac
Crypto ipsec transform-set ESP-DES-SHA esp - esp-sha-hmac
Crypto ipsec transform-set ESP-DES-MD5 esp - esp-md5-hmac
Crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
Crypto ipsec transform-set ESP-3DES-MD5-esp-3des esp-md5-hmac
Crypto ipsec transform-set ESP-AES-128-SHA aes - esp esp-sha-hmac
Crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
Crypto ipsec transform-set ESP-AES-128-MD5-esp - aes esp-md5-hmac
Crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
Crypto ipsec transform-set esp-3des-sha1 esp-3des esp-sha-hmac
Crypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac
life crypto ipsec security association seconds 28800
Crypto ipsec kilobytes of life - safety 4608000 association
Crypto ipsec df - bit clear-df outside_pri
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 pfs Group1 set
Crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 value transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA MD5-ESP-3DES ESP-DES-SHA ESP-DES-MD5
card crypto outside_pri_map 1 match address outside_pri_1_cryptomap
card crypto outside_pri_map 1 set pfs
peer set card crypto outside_pri_map 1 50.75.217.246
card crypto outside_pri_map 1 set of transformation-ESP-AES-256-MD5
card crypto outside_pri_map 2 match address outside_pri_cryptomap
peer set card crypto outside_pri_map 2 216.59.44.220
card crypto outside_pri_map 2 the value transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA MD5-ESP-3DES ESP-DES-SHA ESP-DES-MD5
86400 seconds, duration of life card crypto outside_pri_map 2 set security-association
card crypto outside_pri_map 3 match address outside_pri_cryptomap_1
peer set card crypto outside_pri_map 3 216.59.44.220
outside_pri_map crypto map 3 the value transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA MD5-ESP-3DES ESP-DES-SHA ESP-DES-MD5
outside_pri_map card crypto 65535-isakmp dynamic ipsec SYSTEM_DEFAULT_CRYPTO_MAP
card crypto outside_pri_map interface outside_pri
crypto isakmp identity address
ISAKMP crypto enable outside_pri
crypto ISAKMP policy 5
preshared authentication
3des encryption
sha hash
Group 2
life 86400
crypto ISAKMP policy 10
preshared authentication
the Encryption
sha hash
Group 2
life 86400
crypto ISAKMP policy 30
preshared authentication
aes-256 encryption
md5 hash
Group 2
life 86400
crypto ISAKMP policy 50
preshared authentication
aes encryption
md5 hash
Group 2
life 86400
!
track 1 rtr 123 accessibility
Telnet timeout 5
SSH 192.168.1.0 255.255.255.0 inside
SSH timeout 5
Console timeout 0
management-access inside
dhcpd auto_config outside_pri
!
dhcpd address 192.168.1.51 - 192.168.1.245 inside
dhcpd dns 8.8.8.8 8.8.4.4 interface inside
rental contract interface 86400 dhcpd inside
dhcpd field LM inside interface
dhcpd allow inside
!
a basic threat threat detection
statistical threat detection port
Statistical threat detection Protocol
Statistics-list of access threat detection
a statistical threat detection host number rate 2
no statistical threat detection tcp-interception
WebVPN
port 980
allow inside
Select outside_pri
enable SVC
attributes of Group Policy DfltGrpPolicy
VPN-idle-timeout no
Protocol-tunnel-VPN IPSec l2tp ipsec svc webvpn
internal GroupPolicy2 group strategy
attributes of Group Policy GroupPolicy2
Protocol-tunnel-VPN IPSec svc
internal levelwingVPN group policy
attributes of the strategy of group levelwingVPN
Protocol-tunnel-VPN IPSec svc webvpn
Split-tunnel-policy tunnelspecified
value of Split-tunnel-network-list levelwingVPN_splitTunnelAcl
username password encrypted Z74.JN3DGMNlP0H2 privilege 0 aard
aard attribute username
VPN-group-policy levelwingVPN
type of remote access service
rcossentino 4UpCXRA6T2ysRRdE encrypted password username
username rcossentino attributes
VPN-group-policy levelwingVPN
type of remote access service
bcherok evwBWqKKwrlABAUp encrypted password username
username bcherok attributes
VPN-group-policy levelwingVPN
type of remote access service
rscott nIOnWcZCACUWjgaP encrypted password privilege 0 username
rscott username attributes
VPN-group-policy levelwingVPN
sryan 47u/nJvfm6kprQDs password encrypted username
sryan username attributes
VPN-group-policy levelwingVPN
type of nas-prompt service
username, password cbruch a8R5NwL5Cz/LFzRm encrypted privilege 0
username cbruch attributes
VPN-group-policy levelwingVPN
type of remote access service
apellegrino yy2aM21dV/11h7fR password encrypted username
username apellegrino attributes
VPN-group-policy levelwingVPN
type of remote access service
username rtuttle encrypted password privilege 0 79ROD7fRw5C4.l5
username rtuttle attributes
VPN-group-policy levelwingVPN
username privilege 15 encrypted password vJFHerTwBy8dRiyW levelwingadmin
username password nbrothers Amjc/rm5PYhoysB5 encrypted privilege 0
username nbrothers attributes
VPN-group-policy levelwingVPN
clong z.yb0Oc09oP3/mXV encrypted password username
clong attributes username
VPN-group-policy levelwingVPN
type of remote access service
username, password finance 9TxE6jWN/Di4eZ8w encrypted privilege 0
username attributes finance
VPN-group-policy levelwingVPN
Protocol-tunnel-VPN IPSec l2tp ipsec svc webvpn
type of remote access service
IPSec-attributes tunnel-group DefaultL2LGroup
Disable ISAKMP keepalive
tunnel-group 50.75.217.246 type ipsec-l2l
IPSec-attributes tunnel-group 50.75.217.246
pre-shared-key *.
Disable ISAKMP keepalive
type tunnel-group levelwingVPN remote access
tunnel-group levelwingVPN General-attributes
address LVCHSVPN pool
Group Policy - by default-levelwingVPN
levelwingVPN group of tunnel ipsec-attributes
pre-shared-key *.
tunnel-group 216.59.44.221 type ipsec-l2l
IPSec-attributes tunnel-group 216.59.44.221
pre-shared-key *.
tunnel-group 216.59.44.220 type ipsec-l2l
IPSec-attributes tunnel-group 216.59.44.220
pre-shared-key *.
Disable ISAKMP keepalive
!
!
!
Policy-map global_policy
!
context of prompt hostname
Cryptochecksum:ed7f4451c98151b759d24a7d4387935b
: end
Hello
It seems to me that you've covered most of the things.
You however not "said" Configuring VPN L2L that traffic between the pool of VPN and network camp should be in tunnel
outside_pri_cryptomap to access extended list ip 192.168.12.0 allow 255.255.255.0 object-group CHS-Colo
Although naturally the remote end must also the corresponding configurations for users of VPN clients be able to pass traffic to the site of the camp.
-Jouni
Tags: Cisco Security
Similar Questions
-
Windows Vista can not launch problem of checkers: try to re-launch your game. If the problem persists, it may be network with the server problems or a problem with the configuration of your firewall. Please check your firewall settings by visiting the Open Ports FAQ.
Original title: launch of the problems of checkers:
Hello
If you have not yet tried to disable the antivirus/firewall software, then try the following steps to disable them.
Disable the anti-virus software: http://windows.microsoft.com/en-US/windows-vista/Disable-antivirus-software
Enable or disable Windows Firewall: http://windows.microsoft.com/en-US/windows-vista/Turn-Windows-Firewall-on-or-off
IMPORTANT: Antivirus software can help protect your computer against viruses and other security threats. In most cases, you should not disable your antivirus software. If you do not disable temporarily to install other software, you must reactivate as soon as you are finished. If you are connected to the Internet or a network during the time that your antivirus software is disabled, your computer is vulnerable to attacks
-
There might be a problem with the configuration of your DOMAIN NAME SERVER
Last week one, I noticed some problems with my internet connection. I have a BSNL broadband connection. I am connected to the internet, and after some time all of a sudden, I'm not able to connect. My modem lights are all on and on my laptop, I see the symbol of 2 computers with a note on it, which means that I'm connected. But still the pages not displayed. When I run Network Diagnostics (I Windown Vista) I get the error message saying: "there could be a problem with the configuration of your DOMAIN NAME server. I turned off the computer and the modem and switch it on after a long time... He would return but loses the connection with the same error message again. What can I do? I tried to reset the modem, also tried the system restore. What can I do? Please help me. I have laptop Dell Insipiron with Windows Vista and I connect wireless.
We do not know how your system should be set up - including the DNS configuration and settings. I recommend you contact your ISP's technical support group and get help from them in the configuration of your computer (and test lines and modem - the problem could be the modem and not on the computer or it could even be the service provider itself). It can be something as simple as a typo or a box checked or not checked - I do not know because I do not know their settings (different for each access provider). Give them a call. I do so often when I have connection problems, and they are almost always useful, or schedule a service call if they cannot help. I think it's your best chance to solve this problem.
I hope this helps.
Good luck!
Lorien - MCSA/MCSE/network + / has + - if this post solves your problem, please click the 'Mark as answer' or 'Useful' button at the top of this message. Marking a post as answer, or relatively useful, you help others find the answer more quickly.
-
There is not much information in the doc around the new configuration of static file. Someone at - it an example of this dads.conf he file should look similar to static files? Everything else seems to work fine - it's my only hang up now.
Thank you!
Exact pop-up message:
There are problems with the configuration of static files in your environment. Please see the section "Configuration static file Support" in the Guide of the Installation Application Express
I figured it out on my own - the doc has a section "6.5.4 configuration Support for static file" which basically said yes, it is now supported for static files, then a "see also:" link to the dads.conf section, that I'm not good enough to see there are now 2 new parameters in your dads config file... All is ready! It works! YAY!
-
Problems with the configuration of the Essbase Server
Hi all
-J' have a simple environment with a single Foundation Server with only the Foundation services running on it (only the basic components installed). On the same Essbase server, I installed (by default) foundation and Essbase components.
-I am facing a problem with the configuration of the Essbase server. All steps complete with the exception of the last step: deploying web applications (APS and EAS) to the WebLogic Server.
-FYI, I am deploying the web application to the existing domain created on the server of the Foundation. As all products must be on the same domain.
During deployment, the WebLogic administration server reports the following error:
BEA-149003
Cannot access source application information in /opt/shared/apps/hyperion/Oracle/Middleware/EPMSystem11R1/products/Essbase/eas/server/AppServer/InstallableApps/Common/aps.ear for application "APS".
The specified error is: there is no file of the application.
Now the path and the above files exist on the Essbase server, but not on the server of the Foundation. So after playing with the WL administration console and reading of Sandeep post [1], I came to the conclusion that:
1. the Essabase components must be installed on the Essbase server, but not configured.
Now, this means that I need to install all the components on the server of the Foundation, even though I only will use to deploy the services of the Foundation which seems a little ridiculous?
2. create a new domain on the Essbase server, so the EAS/APS will be deployed on the Essbase server - but will not be on the same domain as the other products.
Well, I am a newbie with WebLogic and so would welcome your valuable contributions!
Thanks in advance...
References:
[1]. http://sandeepseshan.blogspot.in/2009/02/weblogic-server-10-deployment-error.htmlThe configuration documentation.
"On the computer on which you will administer the WebLogic Server, you must install all of the Web applications for all applications that you plan to deploy on any machine in the environment. (The Administration WebLogic Server is installed and deployed on computer Services Foundation) »You should should not create a new domain for deployment on other servers and can use the existing and only to deploy web applications on the servers that you want running on.
I don't know what version you install, but if it's 11.1.2.1 then consider the OS is similar on both machines
"All Web applications in a deployment of EPM system must be deployed on windows computers or on all UNIX machines."There do not appear to be there in 11.1.2.2 so I guess it isn't the rule more.
See you soon
John
http://John-Goodwin.blogspot.com/ -
problem with the yellow triangle without preventing Internet access
problem with the yellow triangle without preventing Internet access.in across the network!
all PC go to the internet through TMG and some computers work very well and most of the computers triangle shows yellow and always go online, but the connection it needs to slow down, I do everything from restarting all switches and install new TMG and always exist and place on another line to outside the firewall problem disappear?
What can I do :(Hello
I advise you to follow the link below for Tech Net where your social networking question will be answered by IT pros.
You can post/search here
hope this helps,
B Eddie -
problem with the configuration of the channel of width 40 mhz on Aironet 1141
Hello
recently we bought the model cisco aironet AIR-AP1141N-E-K9 stand alone. After you have configured it, customer has no problem with the connection and the cover, but there is problem with passage. clients are unable to connect to higher rates, even if I set the width of the channel to 40 mhz, the maximum for compatible client device N rate is 54 mb.
can someone give me some advice how to fix this?
This is my setup, or see attachment file
Thank you very much
Please change the encryption used by AES.
Here's more information: http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a0080a3443f.shtml
THX //art
-
problem with the configuration of the Windows on Windows 8 updates
hated, I an asus X553M I think its name everything was fine but but now ever time I'll start up it goes to black screen (lack of configuration of windows, undo changes updates off your computer), then it will reboot, but it just back upward with the failure to set up the screen and it continues to is time and time again iv tried everything I have photos on the laptop that are too important to lose is there a way I could get him...
Original title: help
Hello
Thanks for posting your query in Microsoft Community.
I suggest you to start from the installation media and then Auto repair and check if it helps.
Method 1: create installation media.
Check out the following link to create an installation media for Windows 8.
http://Windows.Microsoft.com/en-GB/Windows-8/upgrade-product-key-only
Method 2:
Step 1: auto repair
See the next procedure to start on the installation media and auto repair
Insert media such as (DVD or USB key) and press the F12 key and click change default or any other option located at the bottom of the screen.
In the next screen, click on the Troubleshooting option, you WinRE (Windows Recovery Environment) different options to solve the problems with the computer when it is in no State to start is displayed.
Now click on repair automatic, this will open a wizard that automatically diagnose and repair problems with starting the computer.
Step 2: System Restore
See the next procedure to start on the installation media and perform the system restore.
Insert media such as (DVD or USB key) and press the F12 key and click change default or any other option located at the bottom of the screen.
In the next screen, click on troubleshooting option, allows you to display different options of WinRE (Windows Recovery Environment) to solve the problems with the computer when it is in no State to start.
Now, click on the system restore, this will open a wizard that automatically diagnose and repair problems with starting the computer.
Hope this helps, please let us know if you have further questions about Windows.
Thank you.
-
I have problem with the configuration of the static ip address in ESXi 3.4 u4
Hi all
I have instal del esxi in my office, I don have the problem with this process, but when he finished and I have connection in the basic configuration of esx, I press F2 to make changes, the problem is when I try to change the ip address add it leaves me not for what he said me that the only thing I can do to set the default interface.
can someone help me I don't know what I have to do.
I am need of vmware esxi.
concerning
Juan.
See if that helps - http://www.vm-help.com/esx/esx3i/ESXi_35_common_issues.php#2.
-
Problems with the configuration of the ntp service application
Hi people,
I'm stuck at the configuration of the ntp service to start by default on an esxi server via perl.
That's what I'm doing:
My $hostServiceConfig = new HostServiceConfig (serviceId = > 'ntpd', startupPolicy = > 'on');
My $hsca = [];
Push (hsca @$, $hostServiceConfig);
My $hostConfigSpec = new HostConfigSpec (service = > $hsca);
My $taskRef = $hostProfileManager-> ApplyHostConfig_Task (host = > $host, context = > $hostConfigSpec);
When I ask the status of the command fails:
SOAP fault:
-----------
Error string: the operation is not allowed in the current state.
Lack of details: InvalidState
I guess I'm just missing some small detail. Maybe someone sees my mistake right now :-)
Hi eholtz,
Here's the code I added to hostServiceManagement.pl (IIRC!):
1. check the boot strategy:
sub checkServiceEnabled { my ($serviceSystem,$service) = @_; my $services = $serviceSystem->serviceInfo->service; foreach(@$services) { if($_->key eq $service) { return $_->policy; } } return 0; }2 then disable the service:
my $policy = &checkServiceEnabled($serviceSystem,$service); if($policy eq "on") { eval { $serviceSystem->UpdateServicePolicy(id => $service, policy => "off"); print "\t" . color("cyan") . "Successfully disabled $service\n" . color("reset"); }; if($@) { print "\t" . color("red") . "Error: Unable to change startup policy on service \"$service\" due to: " . $@ . color("reset") . "\n"; } }elsif($policy eq "off") { print "\t" . color("yellow") . "$service is already disabled" . color("reset") . "\n"; } else { print "\t" . color("red") . "Error: Unknown startup policy \"$policy\"" . color("reset") . "\n"; }And to allow:
my $policy = &checkServiceEnabled($serviceSystem,$service); if($policy eq "off") { eval { $serviceSystem->UpdateServicePolicy(id => $service, policy => "on"); print "\t" . color("cyan") . "Successfully enabled $service\n" . color("reset"); }; if($@) { print "\t" . color("red") . "Error: Unable to change startup policy on service \"$service\" due to: " . $@ . color("reset") . "\n"; } }elsif($policy eq "on") { print "\t" . color("yellow") . "$service is already enabled" . color("reset") . "\n"; } else { print "\t" . color("red") . "Error: Unknown startup policy \"$policy\"" . color("reset") . "\n"; }P.s.: based on your current score, you should be able to PM me now...
Kind regards
--
Thomas
-
problem with the operating system 64-bit client
Hi, I'm having a problem installing of operating, including windows server 2008 R2 64-bit 64-bit, but even other OS gives the same error
I tried with vmware workstation 6.5.1 and 7.1.0 from the VW console and check utility also said, that the host is NOT capable of running a 64-bit under this product vmware host.
My guest operating system is windows XP Professional SP3 32-bit
the processor is an Intel Core 2 E8400 3 GHz and the support for virtualization is enabled in the bios I looked into it and ran the securable application, he said: "Hardware Virtualization locked IT.
What could be the problem?
The VT in the bios was already activated, in any case I turned off the PC too.
I checked today with the Intel Processor Identification Utility and it says for Intel virtualization technology: No. cannot know what is missing.
This looks like a buggy BIOS. What system using (name of seller/model). Looking for an update of the firmware on the suppliers Web site.
André
-
Problem with the configuration of SRW 2016 to 802. 1 x with Cisco ACS 4.2
Hi all
I have infrastructure cisco catalyst cisco 2960, 3560 and 2 x 4.2 ACS and authentication of 802. 1 x is working very well.
I tried to add Linksys SRW2016 in rail infrastructure, but I encountered a problem.
I did the same configuration on ACS for all other switches and I configured SRW2016 according to maunal for .1x and log on to ACS in FAILURE ATTEMPTS I got following error:
Message Type: bad NAS request
Authentic-failure-Code: authenticator of invalid message in the request of the EAP
I have receked configuration especially the Shared Secret, and that's OK.
No idea what is the problem and how to solve?
Best regards
Goran,
It is especially indicative of a bad shared secret. Can you confirm if the Linksys switch is in a NDG, and if so, you have keys defined for the NDG?
Faisal
-
Problem with the configuration of the time in the Protection of VMware 5.5.6 and timezone data
1 Al VDP connect the following appears:
"The last request was rejected by the POS device."
refers to the NTP settings.
There is a difference of 17 minutes.
2. While the NTP definition for my region cannot add Chile ntp.shoa.cl
3. I can't change the date and time manually with hwclock
4. when change Yask time with me, the following message appears:
"Cannot update the dynamic configuration strategy."
Please need help with this problem.
Solution:
1. check the time zone and NTP ESX resident POS configuration.
2 (virtual appliance VDP) # vmware-tools service restart
-
Good afternoon... On pages 116-118 of the manual "how to choose the right Fax Setup... »,
1] I do not have a distinctive ring
[2] receive voice calls in the same phone # I'll use for fax calls
[3] I have a modem from pc on the same phone line as my HP PSC. I HOPE THAT I INTERPRET THIS RIGHT. IS A PC MODEM THE SAME THING THAN THE PC ITSELF? I HAVE NO SEPARATE MODEM EQUIPMENT.
[4] I have an answering machine that responds to voice calls in the same phone number I use for fax calls - the PROBLEM SEEMS to BE THAT MY answering DEVICE IS ATTACHED to MY DIGITAL PHONE so I don't KNOW whether TO ANSWER YES OR NO to THIS QUESTION. INSTRUCTIONS DATA FOR "CASE G" FOR VOICE/FAXLINE SHARED WITH PC MODEM AND answering MACHINE SHOWS THE RESPONSE
DEVICE AS A SEPARATE FROM THE PHONE.
[ 5] I do not subscribe to voicemail through my phone company
[6] I don't have DSL
I answered YES to questions 2, 3 and 4. Should I answer NO to question 3 or 4? Sorry, I'm confused... Help, please...
Depending on your region
You may want to consider high speed
Internet and be much faster and
You can get updates on your computer
HP and Microsoft and may not be
long tied up extreme for the update
update the file are huge
It will be always up to date
OK B2B
go to the store and ask the
phone switch
one that you can put the fax, phone and computer
on the same switch box
check the amount of the adjustment ring
and you can set the number of rings
Good luck
-
Problem with the configuration of NOR-9481
I can't configure my NI9481 correctly so that the relay and switches are available in a picker of IO control. I tried to use the example or 'Switch Connect - 2 Channel.vi' to test the relay, however I generates the following error: "-200069: specified device is not a valid switch mechanism. This inclines me to believe that the examples of the switch do not work for the 9481.
If I go to MAX, highlight the NI9481 and select 'Test panels... '. "I can't open/close the relay using the GUI.
I am currently using a chassis OR cDAQ-9172 8 slots which houses 2 NI9239 ADCs, 1 DAC of NI9263 and a NI9481. I'm trying to use the relay (9481) to toggle the analog signal generated by the NI9263 to be read by the NI9239. I was able to create analog signal and scanned it by the NI9239s without problem.
Can someone shed some light on what I might have missed when you attempt to configure the 9481...
I could find the correct example that produces the effect I was looking for. For those interested, this is the 'write dig Port.VI' found in the examples of NEITHER.
Maybe you are looking for
-
BSOD appears during the installation of Windows XP Home on Vista Equium A100-027
Hello Like many users, I need to install Windows XP Home edition on my new satellite. It comes with Vista pre-installed. I inserted the Windows XP Home edition installation CD, but it stops with 'Blue Screen' after about 5 minutes of loading the driv
-
Battery drain after update to 9.2.1 :(
After that update to 9.2.1 my iPhone 6 s is messed up - it drains the battery FAST. The iPhone is always "hot" and Safari + mail uses 85% of the battery... and I'm not even using the phone! Apple - it's a joke. Anyone with a solution?
-
How to sort the shared Variable libraries
I have large libraries SV in my project I want to sort by variable name. I tried to export to Excel, sort and then import them into the library, but the type did not appear. It looked like loading each variable then the multiple variables Editor op
-
Y450 screen turns off after 5 minutes, set to never power settings
The display on my Y450 turns off after 5 minutes if it is connected or not. I changed the power settings on all levels of the power to never turn off the display, but he keeps doing. I thought that maybe it had something to do with windows is not ful
-
Access to a remote network through VPN remote access
Hello I'm having a problem with users who access VPN from home. We currently have 3 offices facility, as shown below. When I VPN in the Philadelphia office, I am unable to access the resources of Connecticut offices or North Carolina. The VPN subne