External VM of Source access

Similar Questions

• IPhoto locked since November external disk library can access all my photos?

  IPhoto locked since November external disk library can access all my photos? It must have been during the upgrade of the OS when forced to use the Photos Application (instead of iPhotos) now on OS X El Capitan 10.11.3. The iPhoto library is 280.4 GB and when I click on get info it says 'you have personalized access' under sharing and permissions. I tried to use iPhoto and photo to open. I'm stuck. Someone please save me. All my family photos with children. My wife will kill Me!

  You were not forced, like many other people you might have chosen to continue to use iphoto if you wanted to. Who said that you you couldn't.

  Now, how is the drive 'locked '.

• iPad will not bring the keyboard when I try to complete an external application for internet access

  Hello

  I have a new iPad 2 Air, and very recently he began to refuse to show the keyboard properly, when I am trying to log on to an external internet account. I am traveling and need access to the internet but cannot fill all the required fields, it will bring up the top gray bar with the top and down arrow (they don't do anything, I tried pressing all there) but nothing else, just white space below.

  I have read other blogs and tried to reset the keyboard and things like that but he even let won´t let the keyboard.

  So, I can not get Internet access Login. Please help, I m new to the forum and hope I've filled it out properly... apologies if I've made mistakes here.

  Sorry I haven´t understood my operating system, but when I try to check by going to the software update, it won´t not let me because I Don t have internet.

  I suspect a lot of these errors occurred when I updated to version 9.1 of the software as it is not the only problem I encounter now, however, at this stage, it is the most frustrating.

  Thanks in advance to anyone who can help me.

  Hello Cara, there.

  It looks like that your keyboard is not appearing when it should. I'd leave the applications that are run in which you try to get the keyboard works as well as the application of the parameters:

  Force an app to close the iOS
  https://support.Apple.com/en-us/HT201330

  1. press the Home button twice quickly. You will see small glimpses of your applications recently used.
  2. slide to the left to find the application you want to close.
  3. push upward on the overview of the application to close.

  When you have done that reboot the device and test again the question:

  iOS: switch off and on (restart) and reset
  http://support.Apple.com/en-us/HT201559

  I think that these apps may simply need to be reset and refreshed. Thank you for using communities of Apple Support, let us know how it goes!

• HARD DRIVE EXTERNAL WD NOT ALLOWING ACCESS TO DATA

  MY HARDIVE TERRABYTE WD IS NOT ALLOW ME ACCESS TO ALL THE DATA THAT IT CONTAINED, BUT IT SHOWS THAT IT IS CONNECTED TO MY COMPUTER WHEN I PLUG IT INTO THE PORT AND THE LIGHT FLASHES AT THE DISK TO SAY WD WORKS. I HAVE TROUBLESHOOTED THE DEVICE AND IT SAY NO PROBLEMS FOUND

  Moved from feedback

  Original title: EXTERNAL WD HARD drive

  Hello

   
  As you said that the problem persists even by connecting the device to another computer, then the issue could be with the external hard drive also.
   
  So, I suggest you to see the link and install the drivers from the manufacturer's website.
  http://support.wdc.com/product/download.asp?lang=en
   
  Contact the manufacturer for assistance:
  Reference:
  http://community.wdc.com/
   
  Thank you.

• 4310G external Flash Data queue access

  Hi all

  I use a G 4310 with DMM (both on 5.4), and I'm trying to use an external data file to learn the dynamics, text, and image variables.

  If I use this configuration with a regular browser, it does not work unless I have add security exceptions that allow external data file access. Is this a possible cause for this works only not with the DMP? is there a part of the DMP that must be configured to allow this?

  For the test, I use to play HTML / Flash section available from loggind directly in the dmp via its IP address.

  I put the URL in as follows:

  Browser and Flash playback

  Reading URL: http://***:80/content/aa2683af-BC33-4A9F-8C00-f095754307a6.swf  

  Flash settings only

  Flash variable: Data_Url =http://***/***/***/data.txt

  I'm sure that's the right way to put those URL to, but the flash file fails to load dynamic content during playback on the DMP.

  Can anyone help with this?

  Thanks in advance!

  Luke.

  You may need to define a domain policy to allow your flash access and consume data hosted on a local server files. You can do this by placing an XML file called crossdomain.xml in the root of your web server. It should look like this:

  http://www.Adobe.com/XML/DTDs/cross-domain-policy.DTD">."

  In this case, we allow the access all areas using the generic specification, but you might want to restrict that.

  I hope this helps.

  -Michael

• PIX 515E external SMTP and POP access DMZ

  Hi all

  I need help to solve the problem I am facing with the configuration.

  config: PIX515E Ver 6.3 (1), with 6 interfaces outside the interface is connected to the Internet router and assigned public IP. Access to the Internet is configured for users connected inside Interface only using the command Nat & Global (Global off-1 Interface). I want to activate the access to electronic mail (SMTP & POP3) host couple in one of the demilitarized zone.

  1 NAT configured on the interface & access list applied. If I allowed SMTP & POP only I even don't get a kick on the access list. If I have IP enable any of these hosts, I can surf the net, E-mail etc. After that when I restict to SMTP & POP only, it works for a while, after some time, I don't see any future success to the access list.

  What could the case of such behavior, I missing something...?, I'm confused.

  Thanks in advance.

  Best regards

  Ensure that you allow DNS from these hosts too (UDP/53), as they're going to do queries DNS for the remote host IP address and the domain MX record before they can establish a connection to the mail host relevant external.

  If you allow all IP then they will be able to make the DNS query, then perform the connection SMTP/POP, and they will be cached DNS queries for awhile that's why it works for a while after the removal of the ACL. Once the DNS cache expires in these hosts, they must make another DNS query causing crashes so that you don't have him through the ACL permits.

• Cannot open the media files on the external drive - authorization of access necessary file

  original title: when attempting to open the multimedia files (movies and music) on my external hard drive, told me ÿou are currently not allowed to access this folder "but I am the admin?

  I hope someone can help.

  My hard drive recently failed on my pc. Replaced under warranty and restored from my back upwards. Running windows 7 and above all has worked fine very happy, since the restoration, however, have a major problem. On my drive hard external are all my multimedia files (photos, music and film) since the restoration, when I open one of these files, I am confronted with 'you not currently have permission to access this folder', I hit and get off "(vous avez été refusé accès) I go to the Security tab and discover that there is no owner of the file take possession and it works." don't want to do that with 4000 files!
  Can anyone help?
  Oh and yes I am an admin
  Thanks Matt

  Hi mattmann_537,

  Follow the steps in the response provided in this thread to take ownership of the folder on your external drive. Let us know if that helps.

• Connecting the AE CS6 external text document source text property

  Hello

  I would like to load text from an external .txt file in the Source text property. I've seen many ways to do it on the web, but it seems that it is changed in CS6. (All the examples I've found are for CS4 or CS5).

  I'm on a macbook pro. The (data.txt) .txt file is on the desktop.

  That's what I tried to associate with the Source text property:

  1)

  myPath = "/data.txt"; 
  try{ 
  $.evalFile (myPath); 
  eval(thisComp.name); 
  }catch (err){ 
  "not found" 
  }

  Here, I get "not found".

  2)

  myPath = "/c/data.txt"; 
  $.evalFile(myPath) 

  Here, I get the error: "file or folder does not exist.

  The name of my computer is 'sc100' and the text file says:

  sc100 = "My Text"; ; 

  Is there a good way to do this in CS6? Or I just hurt?

  -KolibriEirik

  If you are on a mac and the file is located on your desktop, the correct path would be:

  ~/Desktop/data.txt

  If you are unsure of a path, you can always use a test script like this to check:

  Var Dittos is File.openDialog ("select the file");.

  $.writeln (theFile.absoluteURI);

  I just tried to use $. evalFile() and it worked well for me.

• External file ViewStack cannot access Script AS

  Hello
  
  I am very new to both Flexbuilder and Actionscript so I need help please. I have a main mxml file that contains a ViewStack as well as an external as file. The problem is that I use the files external mxml for the ViewStack that needs to call functions in the external IN the script file that is included in the main mxml. I am gettting compiler errors in these external mxml files (call to the method may be undefined) because they cannot access external FUNCTIONS because this file is included only in the main mxml.
  
  Everything worked great when I had all the code in a master file, but I'm trying to get a handle on separates the code AS code mxml as well as trying to use modules external mxml in the ViewStack. Can someone give me some advice how to separate everything and make it work successfully?
  
  Thanks in advance...
  
  Scott

  "scooter5791" wrote in message
  News:fak7qt$7Vp$1@forums. Macromedia.com...
  > Ok, I thought about it. In the plug-in mxml that I should call the ACE
  > works using the prefix parrentApplication (scope?) such as:
  >
  >
  > click = "parentApplication.myFunction ()" / > "
  >
  > This allows the compiler to know where lies the real function code.
  >
  > Is the best way to do it, or are there other things I'd be
  > aware of? Thank you as always.

  You can use the import statement to import the class in the child's file, or
  you could broadcast an event that tells the parent to perform the function
  instead. Referring to the parent function is only a good idea if you want to
  to create a situation where the chld component only works in this same
  structure (couple).

  HTH;

  Amy

• I've recently returned to winxp to win7 and now I don't have access to the files on my external

  I installed a copy of windows 7 on my pc and have just discovered that my pc is not very stable when it comes to win7, but it runs Windows XP very well. only problem I have now is that I cannot access my files on my external pc, said now access is denied. any thoughts?

  whatever I'm under mce 2005? I would like to just reformatt with xp pro and try to recover my files this way?

  Microsoft Windows XP Media Center Edition should be treated as 'Professional' for this purpose.  Follow the instructions as if it were "Professional Edition".

  How to capture a file or a folder in Windows XP
  http://support.Microsoft.com/kb/308421

• Access is denied on external hard drive

  Hello. I get the following message appears when I try to access my external hard drive: G:\ Access is denied. However, I can access the hard disk by clicking AutoPlay and choosing the second of the two identical icons labeled as 'open folder to view files '. The problem started when I used of Trend Micro Housecall to remove a virus from the reader. The problem occurs in XP and Vista. I tried to take ownership of the drive, but that isn't helping.

  Any help would be greatly appreciated.

  Thank you

  Hello. Thank you both for your help. I tried AVG and AVAST but they do not work, however, I went to my virus scan history and concluded that the virus was in the file autorun.inf on my drive. Then I found a good and quick tool Flash_Disinfector who quickly solved my problem.

  Thanks again for your help

• Urgent! Users of remote access VPN connects but cannot access remote LAN (ping, folder,...)

  Hello

  I am setting up a VPN on a Cisco ASA 5510 version 8.4 remote access (4) 1.

  When I try to connect via the Cisco VPN client software, I am able to connect however I am unable to access network resources.

  However, I can ping the servers in the other site that is connected through the VPN site-to site to the main site!

  VPN client--> main site (ping times on)--> Site connected with the main site with VPN S2S (successful ping)

  Please help me I need to find a solution as soon as POSSIBLE!

  Thank you in advance.

  Hello

  Please remove the NAT exemption and the re - issue the command but with #1, so it will place the NAT as first line:

  No nat (SERVERS, external) static source SERVERS_LAN SERVERS_LAN NETWORK_OBJ_10.10.40.8_29 NETWORK_OBJ_10.10.40.8_29 non-proxy-arp-search of route static destination

  NAT (SERVERS, external) 1 static source SERVERS_LAN SERVERS_LAN NETWORK_OBJ_10.10.40.8_29 NETWORK_OBJ_10.10.40.8_29 non-proxy-arp-search of route static destination

  After re-configured this way, make sure that this command is also available:

  Sysopt connection permit VPN

  This sysopt will allow traffic regardles any ACL a fall, just in case. Please continue to run a package tracer and post it here,

  Packet-trace entry Server icmp XXXXXX 8 0 detailed YYYYY

  XXXX--> server IP

  AAAA--> VPN IP of the user

  Don't forget to do the two steps and a just in case, capture Please note and mark it as correct the useful message!

  Thank you

  David Castro,

• Windows - Internet access, no split Tunnel L2TP VPN Clients does not

  Greetings!

  I have four ASA 5505 that I configured with 4 site to site VPN tunnels (works perfectly) to connect to our company facilities 4. The ASA is also configured with remote access L2TP/IPsec so that a specific group of users of portable computers can connect to and access to all facilities. It also works very well except for one important exception - my split tunnel setting doesn't seem to work, because I can't connect to the Internet outside the VPN resources.

  I accept the inherent risk of allowing tunnels to split from a security point of view since I take the necessary steps to secure the systems used for remote access. I would appreciate any feedback on how to get the job of split tunnel.

  Here is the configuration:

  : Saved
  :
  ASA Version 1.0000 11
  !
  SGC hostname
  domain somewhere.com
  names of
  COMMENTS COMMENTS LAN 192.168.2.0 name description
  name 75.185.129.13 description of SGC - external INTERNAL ASA
  name 172.22.0.0 description of SITE1-LAN Ohio management network
  description of SITE2-LAN name 172.23.0.0 Lake Club Network
  name 172.24.0.0 description of training3-LAN network Southwood
  description of training3 - ASA 123.234.8.124 ASA Southwoods name
  INTERNAL name 192.168.10.0 network Local INTERNAL description
  description of name 192.168.11.0 INTERNAL - VPN VPN INTERNAL Clients
  description of Apollo name 192.168.10.4 INTERNAL domain controller
  description of DHD name 192.168.10.2 Access Point #1
  description of GDO name 192.168.10.3 Access Point #2
  description of Odyssey name 192.168.10.5 INTERNAL Test Server
  CMS internal description INTERNAL ASA name 192.168.10.1
  name 123.234.8.60 description of SITE1 - ASA ASA management Ohio
  description of SITE2 - ASA 123.234.8.189 Lake Club ASA name
  description of training3-VOICE name Southwood Voice Network 10.1.0.0
  name 172.25.0.0 description of training3-WIFI wireless Southwood
  !
  interface Vlan1
  nameif outside
  security-level 0
  IP address dhcp setroute
  !
  interface Vlan2
  nameif INSIDE
  security-level 100
  255.255.255.0 SGC-internal IP address
  !
  interface Vlan3
  nameif COMMENTS
  security-level 50
  IP 192.168.2.1 255.255.255.0
  !
  interface Ethernet0/0
  Time Warner Cable description
  !
  interface Ethernet0/1
  switchport access vlan 2
  switchport trunk allowed vlan 2-3
  switchport vlan trunk native 2
  switchport mode trunk
  !
  interface Ethernet0/2
  switchport access vlan 2
  switchport trunk allowed vlan 2-3
  switchport vlan trunk native 2
  switchport mode trunk
  !
  interface Ethernet0/3
  switchport access vlan 2
  switchport trunk allowed vlan 2-3
  switchport vlan trunk native 2
  switchport mode trunk
  !
  interface Ethernet0/4
  switchport access vlan 2
  switchport trunk allowed vlan 2-3
  switchport vlan trunk native 2
  switchport mode trunk
  !
  interface Ethernet0/5
  switchport access vlan 2
  switchport trunk allowed vlan 2-3
  switchport vlan trunk native 2
  switchport mode trunk
  !
  interface Ethernet0/6
  Description for Wireless AP Trunk Port
  switchport access vlan 2
  switchport trunk allowed vlan 2-3
  switchport vlan trunk native 2
  switchport mode trunk
  !
  interface Ethernet0/7
  Description for Wireless AP Trunk Port
  switchport access vlan 2
  switchport trunk allowed vlan 2-3
  switchport vlan trunk native 2
  switchport mode trunk
  !
  boot system Disk0: / asa821-11 - k8.bin
  Disk0: / config.txt boot configuration
  passive FTP mode
  clock timezone IS - 5
  clock to summer time EDT recurring
  DNS domain-lookup outside
  INTERNAL DNS domain-lookup
  DNS domain-lookup GUEST
  DNS server-group DefaultDNS
  Name-Server 4.2.2.2
  domain somewhere.com
  permit same-security-traffic inter-interface
  permit same-security-traffic intra-interface
  DM_INLINE_TCP_1 tcp service object-group
  EQ port 3389 object
  port-object eq www
  EQ object of the https port
  EQ smtp port object
  the DM_INLINE_NETWORK_1 object-group network
  network-object SITE1-LAN 255.255.0.0
  network-object SITE2-LAN 255.255.0.0
  network-object training3-LAN 255.255.0.0
  object-group training3-GLOBAL network
  Southwood description Global Network
  network-object training3-LAN 255.255.0.0
  network-object training3-VOICE 255.255.0.0
  network-object training3-WIFI 255.255.0.0
  DM_INLINE_TCP_2 tcp service object-group
  EQ port 5900 object
  EQ object Port 5901
  object-group network INTERNAL GLOBAL
  Description Global INTERNAL Network
  network-object INTERNAL 255.255.255.0
  network-object INTERNALLY-VPN 255.255.255.0
  access-list outside_access note Pings allow
  outside_access list extended access permit icmp any CMS-external host
  access-list outside_access note that VNC for Camille
  outside_access list extended access permit tcp any host CMS-external object-group DM_INLINE_TCP_2
  access-list outside_access note INTERNAL Services
  outside_access list extended access permit tcp any host CMS-external object-group DM_INLINE_TCP_1
  DefaultRAGroup_splitTunnelAcl list standard access allowed INTERNAL 255.255.255.0
  access-list sheep extended ip INTERNAL 255.255.255.0 allow INTERNAL VPN 255.255.255.0
  access-list extended sheep allowed ip IN-HOUSE-GLOBAL SITE1-LAN 255.255.0.0 object-group
  access-list extended sheep allowed ip IN-HOUSE-GLOBAL SITE2-LAN 255.255.0.0 object-group
  access-list extended sheep allowed ip object-IN-HOUSE-GLOBAL object group training3-GLOBAL
  access-list INTERNAL-to-SITE1 extended permit ip IN-HOUSE-GLOBAL SITE1-LAN 255.255.0.0 object-group
  access-list INTERNAL-to-training3 extended permitted ip object-IN-HOUSE-GLOBAL object group training3-GLOBAL
  access-list INTERNAL-to-SITE2 extended permit ip IN-HOUSE-GLOBAL SITE2-LAN 255.255.0.0 object-group
  no pager
  Enable logging
  exploitation forest asdm warnings
  Debugging trace record
  Outside 1500 MTU
  MTU 1500 INTERNAL
  MTU 1500 COMMENTS
  192.168.11.1 mask - local 192.168.11.25 pool IN-HOUSE VPN IP 255.255.255.0
  no failover
  ICMP unreachable rate-limit 1 burst-size 1
  ASDM image disk0: / asdm - 623.bin
  enable ASDM history
  ARP timeout 14400
  Global 1 interface (outside)
  (INTERNAL) NAT 0 access-list sheep
  NAT (INTERNAL) 1 0.0.0.0 0.0.0.0
  NAT (GUEST) 1 0.0.0.0 0.0.0.0
  5900 5900 Camille netmask 255.255.255.255 interface static tcp (GUEST, outdoor)
  3389 3389 Apollo netmask 255.255.255.255 interface static tcp (INDOOR, outdoor)
  public static tcp (INDOOR, outdoor) interface www Apollo www netmask 255.255.255.255
  public static tcp (INDOOR, outdoor) interface https Apollo https netmask 255.255.255.255
  public static tcp (INDOOR, outdoor) interface smtp smtp Apollo netmask 255.255.255.255
  5901 puppy 5901 netmask 255.255.255.255 interface static tcp (GUEST, outdoor)
  Access-group outside_access in interface outside
  Timeout xlate 0:05:00
  Timeout conn 01:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  Sunrpc timeout 0:10:00 h323 0:05:00 h225 mgcp from 01:00 0:05:00 mgcp-pat 0:05:00
  Sip timeout 0:30:00 sip_media 0:02:00 prompt Protocol sip-0: 03:00 sip - disconnect 0:02:00
  Timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  dynamic-access-policy-registration DfltAccessPolicy
  RADIUS protocol AAA-server Apollo
  Apollo (INTERNAL) AAA-server Apollo
  Timeout 5
  key *.
  AAA authentication enable LOCAL console
  the ssh LOCAL console AAA authentication
  AAA authentication LOCAL telnet console
  AAA authentication http LOCAL console
  Enable http server
  http 0.0.0.0 0.0.0.0 INTERNAL
  http 0.0.0.0 0.0.0.0 COMMENTS
  No snmp server location
  No snmp Server contact
  Community SNMP-server
  Server enable SNMP traps snmp authentication linkup, linkdown cold start
  Crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
  Crypto ipsec transform-set ESP-DES-SHA esp - esp-sha-hmac
  Crypto ipsec transform-set ESP-DES-MD5 esp - esp-md5-hmac
  Crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
  Crypto ipsec transform-set ESP-3DES-MD5-esp-3des esp-md5-hmac
  Crypto ipsec transform-set ESP-AES-256-SHA 256 - aes - esp esp-sha-hmac
  Crypto ipsec transform-set ESP-AES-128-SHA aes - esp esp-sha-hmac
  Crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
  Crypto ipsec transform-set ESP-AES-128-MD5-esp - aes esp-md5-hmac
  Crypto ipsec transform-set esp-3des esp-sha-hmac TRANS_ESP_3DES_SHA
  Crypto ipsec transform-set transit mode TRANS_ESP_3DES_SHA
  Crypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac
  life crypto ipsec security association seconds 28800
  Crypto ipsec kilobytes of life - safety 4608000 association
  SYSTEM_DEFAULT_CRYPTO_MAP game 65535 dynamic-map crypto transform-set ESP-3DES-SHA TRANS_ESP_3DES_SHA
  correspondence address 1 card crypto outside_map INTERNAL SITE1
  card crypto outside_map 1 set of peer SITE1 - ASA
  card crypto outside_map 1 set of transformation-ESP-3DES-SHA
  address for correspondence card crypto outside_map 2 INTERNAL training3
  outside_map 2 peer training3 - ASA crypto card game
  card crypto outside_map 2 game of transformation-ESP-3DES-SHA
  address for correspondence outside_map 3 card crypto INTERNAL SITE2
  game card crypto outside_map 3 peers SITE2 - ASA
  card crypto outside_map 3 game of transformation-ESP-3DES-SHA
  outside_map card crypto 65535-isakmp dynamic ipsec SYSTEM_DEFAULT_CRYPTO_MAP
  outside_map interface card crypto outside
  crypto ISAKMP allow outside
  crypto ISAKMP policy 10
  preshared authentication
  3des encryption
  sha hash
  Group 2
  life 86400
  delimiter group @.
  Telnet training3 - ASA 255.255.255.255 outside
  Telnet SITE2 - ASA 255.255.255.255 outside
  Telnet SITE1 - ASA 255.255.255.255 outside
  Telnet 0.0.0.0 0.0.0.0 INTERNAL
  Telnet 0.0.0.0 0.0.0.0 COMMENTS
  Telnet timeout 60
  SSH enable ibou
  SSH training3 - ASA 255.255.255.255 outside
  SSH SITE2 - ASA 255.255.255.255 outside
  SSH SITE1 - ASA 255.255.255.255 outside
  SSH 0.0.0.0 0.0.0.0 INTERNAL
  SSH 0.0.0.0 0.0.0.0 COMMENTS
  SSH timeout 60
  Console timeout 0
  access to the INTERNAL administration
  Hello to tunnel L2TP 100
  interface ID client DHCP-client to the outside
  dhcpd dns 4.2.2.1 4.2.2.2
  dhcpd ping_timeout 750
  dhcpd outside auto_config
  !
  address INTERNAL 192.168.10.100 dhcpd - 192.168.10.200
  dhcpd Apollo Odyssey interface INTERNAL dns
  dhcpd somewhere.com domain INTERNAL interface
  interface of dhcpd option 150 ip 10.1.1.40 INTERNAL
  enable dhcpd INTERNAL
  !
  dhcpd address 192.168.2.100 - 192.168.2.200 COMMENTS
  dhcpd dns 4.2.2.1 4.2.2.2 interface COMMENTS
  enable dhcpd COMMENTS
  !

  a basic threat threat detection
  statistical threat detection port
  Statistical threat detection Protocol
  Statistics-list of access threat detection
  a statistical threat detection tcp-interception rate-interval 30 burst-400-rate average rate 200
  NTP server 192.43.244.18 prefer external source
  WebVPN
  allow outside
  CSD image disk0:/securedesktop-asa-3.4.2048.pkg
  SVC disk0:/sslclient-win-1.1.4.179.pkg 1 image
  SVC disk0:/anyconnect-win-2.4.1012-k9.pkg 2 image
  enable SVC
  Group Policy DefaultRAGroup INTERNAL
  attributes of Group Policy DefaultRAGroup
  Server DNS 192.168.10.4 value
  Protocol-tunnel-VPN l2tp ipsec
  Split-tunnel-policy tunnelspecified
  value of Split-tunnel-network-list DefaultRAGroup_splitTunnelAcl
  value by default-domain somewhere.com
  Group Policy DefaultWEBVPNGroup INTERNAL
  attributes of Group Policy DefaultWEBVPNGroup
  VPN-tunnel-Protocol webvpn
  Group Policy DefaultL2LGroup INTERNAL
  attributes of Group Policy DefaultL2LGroup
  Protocol-tunnel-VPN IPSec l2tp ipsec
  Group Policy DefaultACVPNGroup INTERNAL
  attributes of Group Policy DefaultACVPNGroup
  VPN-tunnel-Protocol svc
  attributes of Group Policy DfltGrpPolicy
  value of 192.168.10.4 DNS Server 4.2.2.2
  VPN - 25 simultaneous connections
  VPN-idle-timeout no
  Protocol-tunnel-VPN IPSec
  Split-tunnel-policy tunnelspecified
  value of Split-tunnel-network-list DefaultRAGroup_splitTunnelAcl
  value by default-domain somewhere.com
  the value INTERNAL VPN address pools
  chip-removal-disconnect disable card
  WebVPN
  SVC keepalive no
  client of dpd-interval SVC no
  dpd-interval SVC bridge no
  value of customization DfltCustomization
  attributes global-tunnel-group DefaultRAGroup
  VPN INTERNAL address pool
  Group Policy - by default-DefaultRAGroup
  IPSec-attributes tunnel-group DefaultRAGroup
  pre-shared-key *.
  Disable ISAKMP keepalive
  tunnel-group DefaultRAGroup ppp-attributes
  No chap authentication
  no authentication ms-chap-v1
  ms-chap-v2 authentication
  attributes global-tunnel-group DefaultWEBVPNGroup
  VPN INTERNAL address pool
  Group Policy - by default-DefaultWEBVPNGroup
  tunnel-group 123.234.8.60 type ipsec-l2l
  IPSec-attributes tunnel-group 123.234.8.60
  pre-shared-key *.
  tunnel-group 123.234.8.124 type ipsec-l2l
  IPSec-attributes tunnel-group 123.234.8.124
  pre-shared-key *.
  tunnel-group 123.234.8.189 type ipsec-l2l
  IPSec-attributes tunnel-group 123.234.8.189
  pre-shared-key *.
  type tunnel-group DefaultACVPNGroup remote access
  attributes global-tunnel-group DefaultACVPNGroup
  VPN INTERNAL address pool
  Group Policy - by default-DefaultACVPNGroup
  !
  class-map inspection_default
  match default-inspection-traffic
  !
  !
  type of policy-card inspect dns preset_dns_map
  parameters
  message-length maximum 512
  Policy-map global_policy
  class inspection_default
  inspect the preset_dns_map dns
  inspect the ftp
  inspect h323 h225
  inspect the h323 ras
  inspect the netbios
  inspect the rsh
  inspect the rtsp
  inspect the skinny
  inspect esmtp
  inspect sqlnet
  inspect sunrpc
  inspect the tftp
  inspect the sip
  inspect xdmcp
  inspect the http
  inspect the they
  !
  global service-policy global_policy
  context of prompt hostname
  Cryptochecksum:423c807c0d63cb3e9aeceda977053f84
  : end
  ASDM image disk0: / asdm - 623.bin
  ASDM location Camille 255.255.255.255 INTERNAL
  ASDM location INTERNAL CGT-external 255.255.255.255
  ASDM location INTERNAL SITE1-LAN 255.255.0.0
  ASDM location INTERNAL SITE2-LAN 255.255.0.0
  ASDM location INTERNAL training3-LAN 255.255.0.0
  ASDM location INTERNAL training3 - ASA 255.255.255.255
  ASDM location INTERNAL GDO 255.255.255.255
  ASDM location INTERNAL SITE1 - ASA 255.255.255.255
  ASDM location INTERNAL SITE2 - ASA 255.255.255.255
  ASDM location INTERNAL training3-VOICE 255.255.0.0
  ASDM location puppy 255.255.255.255 INTERNAL
  enable ASDM history

  I should also mention that my test clients are a combination of Windows XP, Windows 7, and Windows Mobile. Other that in specifying the preshared key and forcing L2TP/IPsec on the client side, the VPN settings on clients are the default settings with the help of MS-CHAP/MS-CHAPv2.

  You must configure * intercept-dhcp enable * in your group strategy:

  attributes of Group Policy DefaultRAGroup

  attributes of Group Policy DefaultRAGroup

  Server DNS 192.168.10.4 value
  Protocol-tunnel-VPN l2tp ipsec
  Split-tunnel-policy tunnelspecified
  value of Split-tunnel-network-list DefaultRAGroup_splitTunnelAcl
  value by default-domain somewhere.com

  Intercept-dhcp enable

  -Latptop VPN clients (which I assume are on windows computers) is also the * use on remote network default gateway * box unchecked.  It is located on the Advanced tab of VPN client TCP/IP properties.   Select Client VPN > properties > Networking > TCP/IP Internet Protocol > properties > advanced and uncheck the box.

  Alex

• IOS VPN on 7200 12.3.1 and access-list problem

  I'm in IOS 12.3 (1) a 7200 and have configured it for VPN access. I use the Cisco VPN client. Wonder if someone has encountered the following problem, and if there is a fix.

  The external interface has the access-list standard applied that blocks incoming traffic. One of the rules is to block the IPs private, not routable, such as the 10.0.0.0 concern, for example.

  When I set my VPN connection, none of my packets get routed and I noticed that outside access list interface blocks the traffic. When I connect to the router through VPN, the router attributes to the client an IP address from a pool of the VPN as 10.1.1.0/24. But normal outside the access list denies this traffic as it should. But as soon as I have established a VPN connect, it seems that my encrypted VPN traffic must ignore the external interface access list.

  If I change my external access list to allow traffic from source address 10.1.1.0/24 my VPN traffic goes through correctly, but this goes against the application to have an outdoor access list that denies such traffic and have a VPN.

  Anyone else seen this problem or can recommend a software patch or version of IOS which works correctly?

  Thank you

  R

  That's how IOS has always worked, no way around it.

  The reasoning is to do with the internal routing on the router. Basically an encrypted packet inherits from the interface and initially past control of ACL as an encrypted packet. Then expelled the crypto engine and decrypted, so we now have this sitting pouch in the cryptographic engine part of the router. What do we with her now, keeping in mind users may want political route she is also, might want to exercise, qos, etc. etc. For this reason, the package is basically delivered on the external interface and running through everything, once again, this time as a decrypted packet. If the package hits the ACL twice, once encrypted and clear once.

  Your external ACL shall include the non encrypted and encrypted form of the package.

  Now, if you're afraid that people can then simply spoof packets to come from 10.1.1.0 and they will be allowed through your router, bzzzt, wrong. The first thing that the router checks when it receives a packet on an interface with a card encryption applied is that if the package needs to be encrypted, it is from his crypto ACL and its IP pools. If he receives a decrypted packet when it knows that it must have been encrypted, it will drop the package immediately and a flag a syslog something as "received the decrypted packet when it should have been."

  You can check on the old bug on this here:

  http://www.Cisco.com/cgi-bin/support/Bugtool/onebug.pl?BugID=CSCdz54626&submit=search

  and take note of the section of the security implications, you may need to slightly modify your configuration.

• External table-> fetch location?

  With the help of Oracle 10.2.0.5
  
  An external table is a construction that gives me access SQL to a file.
  
  Is it possible to know the name of the file somehow inside to select? Like to add a column with the name of the file?
  
  example of Pseudo

  CREATE TABLE EXT_DUMMY
  (
      "RECORDTYPE" VARCHAR2(100 BYTE), 
      "COL1" VARCHAR2(100 BYTE), 
      "COL2" VARCHAR2(100 BYTE), 
      "FILE" VARCHAR2(100 BYTE) 
  )
  ORGANIZATION EXTERNAL
  (
      TYPE ORACLE_LOADER DEFAULT DIRECTORY "IMPORT_BAD_FILE" 
      ACCESS PARAMETERS ( 
               records delimited BY newline 
               FIELDS TERMINATED BY ';' 
               MISSING FIELD VALUES ARE NULL 
                 ( RECORDTYPE CHAR
                 , COL1 CHAR 
                 , COL2 CHAR 
                 , FILE CHAR FILLER
                 ) 
                 ) 
      LOCATION ( 'Testfile1.txt, Testfile2.txt' )
  )
      reject limit 10
  ;

  The result might look like this:

  RECORDTYPE   COL1       COL2      FILE
  SAMPLE           DUMMY    DUMMY Testfile1.txt
  SAMPLE           DUMMY1   DUMMY Testfile1.txt
  SAMPLE           DUMMY2   DUMMY Testfile1.txt
  SAMPLE           DUMMY3   DUMMY Testfile1.txt
  SAMPLE           DUMMY1   DUMMY1 Testfile2.txt
  SAMPLE           DUMMY1   DUMMY2 Testfile2.txt
  SAMPLE           DUMMY2   DUMMY1 Testfile2.txt

  I would like to know what file is read a certain rank. Maybe I missed an option in the documentation. In this example, I have two different files as the source for the external table.
  
  Another use case could be that:
  If I enable a user to switch the external table to a different file

  alter table EXT_DUMMY location ('Testfile3.txt' )

  . How do know us which file is read during the select on the table? When UserA's select, perhaps UserB just modified the location before that selection has been started. That's why UserA reads in a different file than expected.
  
  Published by: Sven w. on May 26, 2011 16:48
  
  Published by: Sven w. on May 26, 2011 16:51
  
  Published by: Sven w. on May 26, 2011 17:11

  Hi Sven,

  I don't know how much we can rely on that, but we will consider the following:

  create table test_xt (
    rec_id  number
  , message varchar2(100)
  )
  organization external (
    default directory test_dir
    access parameters (
      records delimited by newline
      fields terminated by ';'
    )
    location (
      'marc5.txt'
    , 'test1.csv'
    , 'test2.csv'
    , 'test3.csv'
    )
  );
  

  I always thought that the ROWID doesn't hold much meaning for an external table, but...

  SQL> select t.rowid
    2       , dump(t.rowid) as rowid_dump
    3       , regexp_substr(dump(t.rowid,10,9,1),'\d+$') as file#
    4       , t.*
    5  from test_xt t
    6  ;
  
  ROWID              ROWID_DUMP                                                FILE#      REC_ID MESSAGE
  ------------------ --------------------------------------------------------- ------ ---------- -------------------------------
  (AADVyAAAAAAAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,0,0,0,0,0,0,0,0,0     0               1 this is a line from marc5.txt
  (AADVyAAAAAAAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,0,0,0,0,0,0,0,0,33    0               2 this is a line from marc5.txt
  (AADVyAAAAAAAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,0,0,0,0,0,0,0,0,66    0               3 this is a line from marc5.txt
  (AADVyAAAAAAAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,0,0,0,0,0,0,0,0,99    0               4 this is a line from marc5.txt
  (AADVyAAAAAEAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,1,0,0,0,0,0,0,0,0     1               1 this is a line from test1.csv
  (AADVyAAAAAEAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,1,0,0,0,0,0,0,0,33    1               2 this is a line from test1.csv
  (AADVyAAAAAEAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,1,0,0,0,0,0,0,0,66    1               3 this is a line from test1.csv
  (AADVyAAAAAEAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,1,0,0,0,0,0,0,0,99    1               4 this is a line from test1.csv
  (AADVyAAAAAIAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,2,0,0,0,0,0,0,0,0     2               1 this is a line from test2.csv
  (AADVyAAAAAIAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,2,0,0,0,0,0,0,0,33    2               2 this is a line from test2.csv
  (AADVyAAAAAIAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,2,0,0,0,0,0,0,0,66    2               3 this is a line from test2.csv
  (AADVyAAAAAMAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,3,0,0,0,0,0,0,0,0     3               1 this is a line from test3.csv
  (AADVyAAAAAMAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,3,0,0,0,0,0,0,0,33    3               2 this is a line from test3.csv
  (AADVyAAAAAMAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,3,0,0,0,0,0,0,0,66    3               3 this is a line from test3.csv
  (AADVyAAAAAMAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,3,0,0,0,0,0,0,0,99    3               4 this is a line from test3.csv
  (AADVyAAAAAMAAAAAA Typ=208 Len=17: 4,0,0,213,200,0,0,0,3,0,0,0,0,0,0,0,132   3               5 this is a line from test3.csv
  
  16 rows selected
   
  

  Then with a join to EXTERNAL_LOCATION$:

  SQL> with ext_loc as (
    2    select position-1 as pos
    3         , name as filename
    4    from sys.external_location$
    5    where obj# = ( select object_id
    6                   from user_objects
    7                   where object_name = 'TEST_XT' )
    8  )
    9  select x.filename,
   10         t.*
   11  from test_xt t
   12       join ext_loc x on x.pos = to_number(regexp_substr(dump(t.rowid,10,9,1),'\d+$'))
   13  ;
  
  FILENAME       REC_ID MESSAGE
  ------------ -------- --------------------------------
  marc5.txt           1 this is a line from marc5.txt
  marc5.txt           2 this is a line from marc5.txt
  marc5.txt           3 this is a line from marc5.txt
  marc5.txt           4 this is a line from marc5.txt
  test1.csv           1 this is a line from test1.csv
  test1.csv           2 this is a line from test1.csv
  test1.csv           3 this is a line from test1.csv
  test1.csv           4 this is a line from test1.csv
  test2.csv           1 this is a line from test2.csv
  test2.csv           2 this is a line from test2.csv
  test2.csv           3 this is a line from test2.csv
  test3.csv           1 this is a line from test3.csv
  test3.csv           2 this is a line from test3.csv
  test3.csv           3 this is a line from test3.csv
  test3.csv           4 this is a line from test3.csv
  test3.csv           5 this is a line from test3.csv
   
  

  Seems to work... assuming that the files are always read in the order specified by the LOCATION parameter and the ID generated actually means what I think it means.