Migration ACServer 4.2 to 5.3 ACSystem VPN scenario.

Similar Questions

• Need of the ACL kung fu for VPN from Site to Site ACL problem

  Group,

  Have a little problem I know is related to ACL. I wanted to have a few experts to take a look at my config please. Here's the question:

  Attempt to create a site between two offices, but for some reason any that they cannot ping each other. It is a strange thing.

  97.XX.231.22 <-->71.xx.160.123

  I can ping both firewalls from the outside using a computer to another, but from the internal firewall utilities, they cannot ping each other. At the same time I can ping to their respective gateways.

  Secondly, I did an interior outside translation as you can see here for 80 & 443 preventing me from browsing http and https via VPN for Remote LAN, can it be modified to allow access? I can access when I dial in via VPN client but not via permanent VPN tunnel. Here is the config.

  no ip nat service sip 5060 udp port

  IP nat inside source map route SDM_RMAP_1 interface GigabitEthernet0/0 overload

  IP nat inside source static tcp 10.41.14.103 80 71.xx.160.123 80 extensible

  IP nat inside source static tcp 10.41.14.103 71.xx.160.123 expandable 443 443

  IP route 0.0.0.0 0.0.0.0 71.xx.160.121

  IP route 10.67.188.32 255.255.255.224 10.41.14.99 6 permanent

  IP route 10.67.188.96 255.255.255.224 10.41.14.99 8 permanent

  IP route 10.200.107.0 255.255.255.0 10.41.14.99 9 permanent

  IP route 10.200.110.0 255.255.254.0 10.41.14.99 7 permanent

  IP route 74.200.107.0 255.255.255.0 10.41.14.99 5 permanent

  IP route 74.200.110.0 255.255.254.0 10.41.14.99 4 permanent

  IP route 208.67.188.32 255.255.255.224 10.41.14.99 2 Permanent

  IP route 208.67.188.96 255.255.255.224 10.41.14.99 3 permanent

  !

  auto discovering IP sla

  Logging trap errors

  host 192.168.10.29 record

  access-list 2 Note HTTP access class

  Note access-list category 2 CCP_ACL = 1

  Note access-list 2 Platinum LAN

  access-list 2 permit 10.41.14.0 0.0.0.255

  access-list 2 refuse any

  Access-list 101 remark rules Master

  Note access-list 101 category CCP_ACL = 1

  Note access-list 101 FaxFinder WWW traffic

  access-list 101 permit tcp any host 71.xx.160.123 eq www

  Note access-list 101 traffic HTTPS FaxFinder

  access-list 101 permit tcp any host 71.xx.160.123 eq 443

  Note access-list 101 NTP Time Protocol

  access-list 101 permit udp any host 71.xx.160.123 eq ntp

  Access-list 101 remark IPSEC protocols

  access-list 101 permit udp any host 71.xx.160.123 eq non500-isakmp

  Access-list 101 remark IPSEC protocols

  access-list 101 permit udp any host 71.xx.160.123 eq isakmp

  Note access-list 101 traffic ESP

  access-list 101 permit esp any host 71.xx.160.123

  Note the access list 101 General License

  access list 101 ip allow a whole

  Note access-list 102 CCP_ACL category = 2

  access-list 102 deny ip 10.41.14.0 0.0.0.255 192.168.76.0 0.0.0.255

  Note access-list 102 IPSec rule

  access-list 102 deny ip 10.41.14.0 0.0.0.255 10.0.2.0 0.0.0.255

  Note access-list 102 IPSec rule

  access-list 102 deny ip 10.41.14.0 0.0.0.255 192.168.10.0 0.0.0.31

  Access-list 102 remark Platinum LAN NAT rule

  access-list 102 permit ip 10.41.14.0 0.0.0.255 any

  Note category from the list of access-104 = 4 CCP_ACL

  Note access-list 104 IPSec rule

  access-list 104. allow ip 10.41.14.0 0.0.0.255 192.168.10.0 0.0.0.31

  Note access-list 108 CCP_ACL category = 4

  access-list 108 allow ip 10.41.14.0 0.0.0.255 any

  Note access-list 109 IPSec rule

  Note access-list 109 CCP_ACL category = 4

  access-list 109 allow ip 10.41.14.0 0.0.0.255 192.168.76.0 0.0.0.255

  Note access-list 110 CCP_ACL category = 4

  Note access-list 110 IPSec rule

  access-list 110 permit ip 10.41.14.0 0.0.0.255 10.0.2.0 0.0.0.255

  not run cdp

  !

  allowed SDM_RMAP_1 1 route map

  corresponds to the IP 102

  There is more then one way how you can achieve this goal.

  (1) the best way is possible if the two VPN counterparts are IOS routers. Then you can migrate to virtual VPN - tunnel interfaces (VTI). With this, the external interface doesn't mix - and non-VPN-traffic VPN.

  (2) if VTI is not possible, you can restrict the translation to only non - VPN traffic using a roadmap:

  object-group network RFC1918

  10.0.0.0 255.0.0.0

  172.16.0.0 255.240.0.0

  192.168.0.0 255.255.0.0

  NAT-SERVER - 10.41.14.103 allowed 10 route map

  corresponds to the TRAFFIC-NAT-SERVER IP - 10.41.14.103

  TRAFFIC-NAT-SERVER extended IP access list - 10.41.14.103

  deny ip host 10.41.14.103 object-group RFC1918

  permit tcp host 10.41.14.103 eq 80 a

  allow a host EQ 10.41.14.103 tcp 443

  IP nat inside source static 10.41.14.103 71.xx... map route NAT-SERVER - 10.41.14.103

  What makes that?

  When your server communicates with a system with an address in the range RFC1918, then the road map does not correspond and the translation is not used. It is you, the VPN scenario. But if the server communicates with a non-RFC1918 address, then the translation is used and the server can be reached.

  --
  Don't stop once you have upgraded your network! Improve the world by lending money to low-income workers:
  http://www.Kiva.org/invitedBy/karsteni

• ASA 5520 - VPN users have no internet.

  Hello

  We just migrated a Pix 515 and an ASA 5520 VPN concentrator.  The firewall part works fine, but we have some problem with our remote VPN.

  Everything inside network is accessible when you use VPN remote but there is no access to our perimeter network or the internet.  I don't know there's only something simple you need that I'm missing, and hoping someone can shed some light on what is needed to allow the VPN tunnel back outdoors and in our DMZ.

  The ASA is running 8.2 (2) 9 and ASDM 6.2 (1).

  See you soon,.

  Rob

  From the 172.16.68.0/24 you can PING 10.10.10.1 correct?

  The 10.10.10.0/24 you can PING 172.16.68.1 correct?

  I'm having a hard time find now how this tunnel is up since you have PFS
  activated on the SAA, but not on the PIX.

  Federico.

• Citing using ESS ODI scenario

  Hi all
  
  As part of the migration of data, I am required to invoke ODI scenario using a java program which in turn is called by a work of ESS. So under the present, how it would be possible for me to invoke ODI scenario via the java code. Is there any web service provided by ODI to invoke scenarios. I am new to ODI.
  
  
  Thanks and greetings
  Fabrice

  Hello

  I was able to expose a webservice that could invoke a script. That's how I went to.

  1. creates a J2EE agent by following the steps in this link
  http://www.Oracle.com/WebFolder/technetwork/tutorials/OBE/FMW/ODI/odi_11g/setup_jee_agent/setup_jee_agent.htm
  2. create a physical agent and agent in ODI IDE logic

  Goto: http://agentHost:port/oraclediagent/OdiInvoke? WSDL

  Then I used JDEV httpanalyser and was able to give the name of the scenario and the version number as input parameter. And "SEND the REQUEST"... (There must be better ways to do what I'm new on this..)
  The script should run successfully. You can also view the results of execution of script in the navigation of the operator in ODI IDE.

  Concerning
  Fabrice

• I've recently migrated my iPhotos to Photos, perfectly worked for a few weeks, but suddenly today, I can't open my photos in pictures

  I recently migrated from iPhoto to Photos worked perfectly and I used it for a few weeks, but today I can open my pictures suddenly not in pictures. What's wrong?

  No idea since we can't see you - you must provide details - why you can't open pictures? What is going on? What is you get the exact error message? What version of the operating system and Photos you have?

  and there's a photo for Mac forum, which is where you can ask questions Photos - I will ask to be moved your message

  LN

• Open migration to Active Directory directory Windows vs Mac

  OK, so I help my old school to their IT needs, because they do not have a person hired for this role.

  Currently, they have a center where the staff use computers based on Windows 10 10 (systems of Core 2 Duo, especially assembled; all about 3 years) connected to a Windows 2008 Server (from Dell; about a year). As the institution wishes to expand the computers available to their staff (from 90), my suggestion was to move to Mac (probably 11 '' MBAs), with a MacBook Pro 15 "is the duty of the server.

  This migration can be done in one shot and would happen progressively (probably MBAs purchased each year for the next four years, 20-25).

  The current configuration is that there is a local + Admin user configured on each of the 10 Windows PC - based, with all personnel having access to the user not local administrator.

  In order to facilitate the management, I would like to move to the logons on the network, as we begin our migration to a Mac OS environment.

  Should we configure AD on Windows Server and bind it as MBAs, and when to buy us, with the final being the MBP 15 "for server-buying functions, or is it possible we can get the MBP 15" now and use Open Directory and binding the existing 10 10 Windows-PC with the macOS Server?

  NOTE: The school operates Google Apps, and all employees have a Google Apps account with a custom domain name.

  You can't link PCs to Open Directory without using 3rd - Party (page). In addition, depending on the operating system will not work reliable? You'd have to trial it first. Beyond bond and provide a home folder there will be nothing else. No management, no policies etc Open Directory to your PC.

  Support way to achieve this is to use Active Directory and complete with OD to manage your estate of mac only. Again, you can apply GPOS for Mac without 3rd - Party help which can be very expensive.

  Not that it's something that you would consider - although you could do? It may be preferable to go ' all the mac "If your intention is to switch to Mac OS. If your PC using the software that is available only for PCs consider using virtual machines on your Mac to keep this aspect of the school.

  My 2 p

• Migrated messages missing almost last post

  Hello

  I migrated my message history to another installation of 10.12 by cloning the following records:

  < Name >/Users / / Library/Messages.

  /Users/ < name > /Library/Containers/com.apple.iChat/

  It shows me the last message in each conversation, but that's all.  Does anyone know how to get the rest?

  Thank you

  Hello

  First use the marked post this thread Orange Reset Home Folder permissions and ACLs error

  It tests if you have and so read and write permissions of files in your Home folder.

  If she has any and then run (resolved) Green scored a.

  

  21:20 on Sunday. September 25, 2016

   iMac 2.5 Ghz i5 2011 (El Capitan)
   G4/1GhzDual MDD (Leopard 10.5.8)
   MacBookPro (Snow Leopard 10.6.8) 2 GB
   Mac OS X (10.6.8).
   iPhone and iPad (2)

• migrate Photos pictures of the camera

  My brother-in-law (senior senior!) is struggling to migrate images from his camera for Photos.  He has just upgraded its imac 2009 at El Capitan 10.6.8 10.11.6 so this is a big step.  He has done the conversion from iPhoto in pictures, but when he plug his camera, the content opened in pictures, but when he clicks on import, nothing happens.  It is about 3,000 km, so I'm the middleman.  I use the same software and have no problem, so I fight for help.

  Any ideas?

  What camera? He is shooting JPEG or RAW? What happens? Image Capture will import the photos? If you once they are safely on Mac and backed up using camera format command to erase and reformat the card

  LN

• Migration process now broken

  Hello

  I'm migrating a server running 10.8.5 to a new Mac running 10.11.6. It was very well - I took a Time Machine backup, it has migrated to the new Mac, download server, ran Monday, and everything has worked just like that.

  Thursday, since server was updated to 5.2, after migration and download server and running it, he refuses now to update saying I need to run an earlier version of the server or OS X to do the migration. I have no way to get the version that was available for download on Monday but, not that I can see.

  Any advice?

  Solved by Apple support - buy a Mac running 10.11 prior to version 10.11.6 and the App store will download an older version of the server. That can be copied in all and the migration done with this version.

  Phew.

• Mail of the Mac Mini, iMac with the migration wizard

  I have a mac mini (2014 - El Capitan) that I have used for some time now and I have many mailboxes (30 +) with many stored messages (100s maybe 1000s).

  I recently picked up a 2011 27 iMac which is running OS X Sierra Final Release Candidate due to vision problems.

  Both units are working well but I would like to transfer my boxes to the letters, messages, and the account settings from the Mac Mini to the iMac using Migration Assistant to take advantage of the larger screen.

  Am I able to select only the data for e-mail (boxes letters, messages and settings) to transfer somewhere in the Migration Wizard interface or will it just to start the transfer of all?

  I use iCloud for note, calendars and contacts, but prefer not to use for e-mail.

  Any help would be greatly appreciated.

  Thank you

  WN

  The simplest option would be to use Time Machine to restore your data.

  Other Options:

  You can export the folders you want to transfer the mini using export of Mail under mailbox function in the Menu bar > export a mailbox... Drag to the folder on the desktop on the new iMac and import in Mail. File > import boxes mailbox...

  You can also use a third-party application, Emailchemy to export your Mail on the mini and pull only the folders you want and import. If you have many files, it would be a faster option.

  http://www.weirdkid.com/products/emailchemy/

  Otherwise, you could drag on the whole Mail > V3 folder let Sierra update data. This assumes that you have already started using Mail to Sierra.

  You don't have to use iCloud email to use Apple Mail. I strongly suggest that you use IMAP to service what ever you choose to use.  Comcast, Yahoo, Gmail, AOL, Hotmail (other)

• Understand migrations from iPhoto to Photos

  After you migrate an iPhoto for photo library, the file extension of the iPhoto Library is changed in .migratedphotolibrary, and my understanding is that the two libraries share the same files through the use of "hard links". I've also read that if one of the libraries is published subsequently, what causes the link between versions of break. Is this true?

  If so, my questions are:

  (1) If hard links break, this means that storage on hard drive required by the two libraries is increased by the size of one of the libraries? If so, who would not take a little time if the booksellers were important, for example 100 GB or more?

  (2) immediately after the migration, what happens if one of the libraries I move to a different folder? Again break hard links? If so, same question as above.

  No - change or deletion of a form of photos a library does not break the hard link and has no effect on the other library - they are totally independent

  1 - Yes

  2. Yes, I believe that to break hard links - travel for sure as a library to another volume break

  Why move a? Usually simply leave you it where it is for several months until you are sure that you need is no longer and then archive and delete

  LN

• How can I migrate Outlook PST to MBOX of Apple mail?

  I use Outlook 2010 and that you need to migrate my Outlook pst emails] in apple Mail. Can I import PST files directly into apple mail?

  PST format is owned by Microsoft, so Apple can not import it. Emailchemy can convert

• Migrating to SATA drive to iMac

  Four days ago my MacPro (2010) died. I have four 3 "SATA drives from 1 to 2 to each of Mac Pro. The computer was for business and personal use. Absolutely everything (including financial information) I have is on these four discs, including redundant copies of some files, but also my Time Machine backup.

  I will have an envelope coming tomorrow which is a RAID box but will be executed in the independent drive with four drives Mode. My 'new' computer is an iMac (2013), that was given to me.  The iMac and the main SATA drive running the same version of the operating system. I need to resolve this issue quickly so I can return to work. In the immediate future, I intend to operate out of the primary SATA drive to catch up, and then transfer when I'll have a good time to transfer.

  My question is the best way to get the entire contents of the primary SATA drive on the iMac's hard drive. I want everything that is on the main SATA drive to put to be on the iMac (including the prefs and hidden folders) of Mac Pro and it would be the same when I booted the Mac Pro.

  Can I use migration utility, clone the drive SATA main to the iMac or even use the Time Machine backup?

  If I clone the drive, I know that I would have to boot from one disk other than the iMac drive to clone to the iMac. When the primary SATA drive is attached, I need to boot from it by holding down the option key at startup key to select the startup disk.

  If I use the Migration utility, it seems I start the iMac, and then run the utility to the iMac of the SATA drive range, which would be connected to the iMac. This would replace all the information on the iMac even though it was the boot drive?

  I printed the information on the Migration of Apple Mac help when transferring to another storage device, but it's not quite clear to me.

  Finished migration

• Where is the Migration Wizard?

  I have three MacBook Pro. My most old, 5-6 years, repeated that she was seriously infected by a virus. I erased it. Now, I restart and OS X Utilities push the info, with four options: restore of backup Time Machine, reinstall OS X, Get help online or disk utility. I time Machine using my current Mac brand new, but I can't restore the old Mac directly by using the new Time Machine copies. It tells me to use the Migration Wizard. Where is he? I have yet a third Mac, a few years more recent than this one, that I can restore from reformatted. Is Time Machine restore possible? How can I find Migration Wizard with these four options on the screen? Thank you.

  Tom in Texas

  Try this:

  Move your content to a new Mac - Apple Support

• Migrate messages from the Macbook Air to new iMac 2012 2016

  How can I migrate all my messages (text, iMessage) of my Macbook Air to my new iMac 2012 2016? I have a lot of messages on my laptop and I want to migrate them to my iMac just to have them for reference/memory later. I do this because I would like to activate the monthly updating of message on my iPhone, so he won't have to queue all my messages it years ago and I am also reformat my old Macbook Air. Is there a way to do this? Thank you!

  Messages and e-mail accounts and data are found in/Home/Library/Messages/and/Home/Library/Mail/files. Just copy the content to the same folders on the new computer.

  Or you can migrate your complete folder from the old computer to the new home. This can be done using the love at first sight between the two cable and on the new computer using target disk Mode use the Migration Wizard to migrate your application. It could also be run from a time Machine or another external backup drive.

  Migration will not overwrite any user account that has already been created on the new computer. MY simply creates a new Admin user account name. You will then need to switch to the newly migrated account.