Journal entries of false IP addresses in the VPN session

Similar Questions

• IP address of the VPN client must demonstrate external IP of ASA 5505

  Hi guys,.

  We have a small project with the Government which has some difficult requiment with security.

  Current situation;

  1 site the Government has allowed a public IP address of our company to access their server in-house.

  2. in our office, staff can connect to their server using RDP by Cisco ASA 5505 I configured with two or three clicks.

  3. this ASA was outside (public) Government of authorized IP address.

  Request amended;

  1. given the increase in the tasks, our staff must have access to the Government of the home server.

  2. Government will not grant vpn access to them directly.

  3. they ask us to provide our staff VPN then RDP access to the Government site.

  I have install VPN and it connects very well with no problems just for the connection itself.

  But if I check using www.whatismyIPaddress.com, he demonstrated local IP address that they got by their ISP not CISCO ASA 5505 outside the interface.

  The problem is unlike Microsoft ISA 2006 VPN which shows the external public IP address when a client connects to the VPN server, Cisco vpn client shows that it is the local IP address that is not in its list in the Government site.

  I'm more like Ms. guy then Cisco as I did ' t have a lot of chances to play with Cisco, sorry about that.

  Is that what I missed in the middle of config or needs a setting more to achieve this?

  How can I make client VPN to show it's IP address to the interface of Cisco ASA rather than the IP address of the local ISP?

  Thanks in advance,

  Charlie

  have you added "same-security-traffic permit intra-interface" like I said in the previous post?

• Get the IP address of the Active Session

  I am looking at 'the session details' page of the Administration section and it does not show the IP of origin of the session. I think that this information is in the table of $ wwv_flow_sessions, but I can't find it on the administration page.
  
  Apex 4.1
  Oracle 10g
  CentOS

  Hello

  You can query the APEX_WORKSPACE_ACCESS_LOG view

  Kind regards
  Jari

  Published by: jarola on 27 Sep 2011 20:44

  You can also get IP address from the client using

  owa_util.get_cgi_env('REMOTE_ADDR')
  

• Internet problems after having disconnected the VPN session

  I was wondering if someone could tell me a solution for this problem I have.  A year or more ago.

  When I had Vista (32 bit), I used to use Cisco's VPN IPSEC client.  At the time, I found that when I disconnect a VPN session, something on my machine would get watered upward.  In other words, I could no longer RDP to my machine from another machine (which I would do so on the internet).  I also found that I could not access other services on my machine to other machines as well through the internet.

  Basically, I found this case I disabled/re-enabled my NIC (do it manually or by restarting), I was able to connect once more to my machine.

  Now I have Windows 7 (64-bit).  So now I also use Cisco SSL VPN client.  I had hope that this should disappear with the new operating system and the new VPN client, but the problem persists!  Fortunately, the Windows 7 Task Manager can be triggered based on the events that occur.  I created a task that will disable/re-enable my NIC whenever he sees the event of disconnection of SSL in the registry.  While this is a great workaround for me, I would go at the bottom of the issue.  I even helped others in my office with the same question by providing my elegant solution!

  Side note: my friend just asked me why he couldn't TRACERT what either.  He spoke to me through our enterprise IM client while VPN was in our network.  I asked if he was on the VPN on the attempt, and he said that it has disconnected first thinking it was the case.  I suggested to him that he can hit the same question that I have, in that the VPN is somehow corrupt its TCP stack or something.  I asked to disconnect from the VPN, once again, turn his NIC, and lo-and-here it could once more tracert.

  This issue is documented anywhere?  Are there patches?

  TIA,

  MCDONAMW

  What version of AnyConnect you test with?  This could be related to bug CSCsz12568 that has been fixed in the 2.4 client later.  What you can do is capture a snapshot of the Windows routing table before connecting, once connected, disconnected and then again later to see if there is not strange roads that can be bad traffic orientation.

• In the VPN 3000 concentrators network access problem

  Hello

  I created a group user ID, allowing simultaneously 3 session of this particular ID, when I am session VPN initating this particular ID, I can connect to a single session with any problem, and I can access the internal network. simulatneously trying another session from another machine using the same user ID, I get the ip address of the VPN server's internal network, but I can't ping internal LAN server and perform operations .only I get the IP address. But I'm nt problem in first session created, they problem arrive for the second session

  Are the next two sessions of the clients that are behind a NAT/firewall device? Try to create a second group ID and log in to the second client and the second. If you still have the problem is not a problem of "simultaneous session."

  If you see the problem either, and your customers are both behind the same NAT device, have your clients connect from different locations or enable NAT traversal.

• Can not reach the internal network on the VPN

  Hello

  So I've been setting up an ASA5510 to the best of my knowledge to allow the VPN to our internal network access and its riches. IPSEC is configured correctly.

  When connected I get an IP address from the VPN subnet with success, but I can't reach all internal hosts (failed pings). Also, I noticed that my default gateway uses a VPN subnet IP address.

  I have followed the guide Wizard and configuration Online but am still in the dark... it's all a bit new to me!

  I'll post the config if you need to see.

  Any help would be appreciated!

  Hi, just a few things I noticed. What group are you testing with? The tunnel of split for the two groups should be a standard ACL, well it doesn't have to be, but it is generally. I suspect that it doesn't because the ACL is defined in the wrong direction. You can therefore remove the first line of the RemoteVPNAccess of the ACL or replace it with a standard ACL. I recommend using a standard ACL.

  Also applies similarly to your nat not and inside the ACL, they should be allowing the subnets the to address of the pool. So you can delete the second line of the ACL sheep and ' inside_access_in access-list extended ip 10.10.200.0 allow 255.255.255.0 everything ' inside ACL.

  Also any tunnel or use a tunnel of split ACL but not both and also try to remove the filter from vpn, we can get to that after we have connectivity.

• Next hop for the static route on the VPN site to site ASA?

  Hi all

  I would be grateful if someone could help me with my problem ASA/misunderstanding. I have a VPN site-to site on a SAA. I want to add a floating static route to point to the VPN on the ASA. Note that the traffic in this way is not with in subnets cryptographic ACL that is used to bring up the VPN. This VPN is used only as a backup.

  The static route with the next hop add local public address or the remote public address of the VPN? The next break maybe local ASA isp internet facing interface? I intend to do on the ASDM. I'm sorry if it's a simple question but I found no material that explains this?

  Concerning

  Ahh, ok, makes sense.

  The next hop should be the next jump to the interface that ends the VPN connection, essentially the same as your Internet connection / outside the next hop interface.

  Example of topology:

  Site B (outside interface - 1.1.1.1) - (next hop: 1.1.1.2) Internet

  The static route must tell:

  outdoor 10.2.2.2 255.255.255.255 1.1.1.2 200

  I hope this helps.

• AC VPN: vpn-session-timeout and prompt the user

  Hello

  Is it possible to invite the user to continue the session shortly before it hits the vpn-session-timeout value (ASA).

  Thank you

  Sean

  Sean,

  I believe that no job like this been done on it by the BU.

  We had this never open a:

  https://Tools.Cisco.com/bugsearch/bug/CSCsx17267/?reffering_site=dumpcr

  M.

• Journal entry for the Runtime Error FDM

  Hi all

  I'm trying to run a Script to load batch Standard, but I still have the same error.

  I realized a FDM Appication, loading bacth script and data file (with that name 1 @JDE@Actual_Inp@August@RR ).

  Adapter, import formats, maps and location seems ok.

  THIS IS THE ERROR LOG:

  * Start the journal entry for the Runtime Error FDM [2013-09-24 12:59:06] *.
  -------------------------------------------------------------
  ERROR:
  Code............................................. 6
  Description... Overflow
  Process... clsBatchLoader.mExecuteParallelBatchProcess
  The component... upsWBatchLoaderDM
  Version.......................................... 1112
  Thread........................................... 4100

  Could someone help me?

  Thanks in advance

  Andrea

  Hi Andrea,

  Are there more entries in the log? In addition, you can load the file via the manual process?

  Kind regards

  Thanos

• Restoration of the Journal entries and of depreciation?

  Dear members,
  
  Let us say a user has done the steps below:
  
  1 / execution of depreciation, but has not closed the period
  
  2 / depreciation process will create journal entries in GL
  
  3 / the user has posted these GL journals.
  
  Since the period is not closed to users want to roll back the depreciation.
  
  Amortization of the restoration, it is required by the user to roll back the log entries that are created.
  
  Since the journal entries are posted already can we run reduce journal entries in FA and then roll back depreciation?
  
  What is the financial impact there?
  
  Thanks in advance for your valuable answers!
  
  Best regards
  Arun Reddy.

  Exactly

• Problem with the entry of e-mail addresses

  When the NEW composition e-gram or transfer received e-gram, when I click on an address of those came against the requested address, all I get is the name associated with the address of an X (for example (Paulx) and I can't find any way to just enter the correct e-mail address for the person concerned.)  What is the nature of this parasite and what can we do about it?

  Bud

  This isn't about me. Outlook (as opposed to Microsoft Outlook, a component of Microsoft Office) is covered here:
  http://answers.Microsoft.com/en-us/outlook_com

  Palcouk perhaps more to say.

• Delet several addresses in the drop-down list on the e-mail page

  on the page of the mail, the box where you put the address in I put the first letter of the address and a drop-down list box appears with several address of the person even all but 1 is false. I went to the address book, and there is only one address of this place.
  How can I remove all the wrong address in the drop-down list?
  Thank you
  Herbalifeman

  Look for these wrong email addresses in your address book and remove them.
  Make sure to look in all address books you may have, including the "collected addresses".

• I want to copy some addresses in the personal address book to a specific address book without the chore of typing each of them. Dragging moves simply address.

  I want to create specific address (for membership to the club) books. Click on the entry in the personal address book does give not an installation "COPY", and do drag from one to the other removes the personal address book. Is it possible, other than having to retype each address in the new book, which will allow the address to appear in the two books? OK - I know I'm lazy!

  Learn how to use the copy/move techniques and selection of basic computer.
  Hold down the CTRL key while clicking on contacts to select more than one at a time.
  Hold down the CTRL everything to drag and drop to copy instead of move. A plus sign to indicate the copy.

• The part of the address of the message writing window TB can cause its own adjustable frame in size as in previous versions of TB?

  In older versions of TB the part of the address of the message entry window had its own adjustable chassis. It was useful that you could develop the image to see all addresses at a time and avoid errors of sending emails to the wrong people, especially when you reply to all and to remove some addresses for example answering users in the company, excluding visitors to learn sensitive information.

  In the recent release you can only see three lines of e-mail addresses and use the scroll bar to see the rest of them, but you may miss the addresses during scrolling up/down. He needs more time to verify that the necessary addresses are there and it is not effective at all.

  Can someone restore the setting of the address in the window of writing? Is there a plan to change this in future versions?

  Please note that I use Thunderbird on Windows XP platform

  Yes! Just below the slider bar formatting changes and you can increase the size of the email address area to see more addresses.

  However, I liked the old style better which was more intuitive. Anyway, there is a way to do the job.

  Thank you very much!

• Unknown Apple IP addresses in the ARP table?

  Given that I added two Apple TV 4 to my network via ethernet and using IP addresses static, I notice several entries in an IP scan for unknown IP addresses that seem to be related ATV equipment.

  I am at a loss for why this is happening or how to fix it.  I unplugged my ATV gear and restarted the routers and switches, emptied of the ARP protocol on mac I use to scan ports, but registrations continue to show.

  It is an example of what I see.  Appreciate any ideas or suggestions.

  Name: Inactive device, device Type: other, IP: 192.168.1.176, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.102, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.104, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.105, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.113, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.126, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.128, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.129, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.137, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.143, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.145, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.146, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.147, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.148, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.156, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.157, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.158, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.160, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.162, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.175, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.177, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.178, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.179, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.181, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.182, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.183, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.184, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.185, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.186, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.187, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.188, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.189, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.190, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.191, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.192, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.193, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.194, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.195, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.196, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.197, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.198, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.199, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.168, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Name: Inactive device, device Type: other, IP: 192.168.1.169, MAC: UNKNOWN, IPv6: UNKNOWN, DNS: UNKNOWN, manufacturer: Apple, Inc.., last seen: 24/04/2016-09:49:52

  Strange. We'll see.

  You have configured your DHCP router in order to exclude the static address of the DHCP pool? Why use static addresses, anyway? Are the addresses reported in DHCP pool?

  You have configured the static addresses in the ATV? As well as the correct values for the gateway and the server names?

  These are obvious questions, but need to check.

  They are all the last time at the same time, which I suppose is the time of the scan. It would simply mean their leases have not expired. What is your DHCP lease?

  Do you use the wifi for devices that come and go? This could explain some distribution of values of intellectual property.

  Do you use AirPlay to a device on a wifi network for an ATV on another network? In other words, you need bluetooth to make AirPlay work?