Not all traffic tunneling remote desktop
This is the remote router config 871 attached. Comes in the SAA under DefaultL2Lgroup. Another remote desktop is the same tunnelgroup. Traffic to 192.168.0.0/24 works, but I also need the tunnel to all traffic 10.8.0.0/24. Let me know what you think. Thank you
Right, the problem might be on the router.
Try turning off the "no ip cef" CEF and check again.
Please rate if this helped.
Kind regards
Daniel
Tags: Cisco Security
Similar Questions
-
Could not find a connector remote desktop in windows xp or I can install it
Hello world
I'll try to find mstsc.exe on my computer, so I can connect to another computer in the building, and he's not here, despite being apparently integrated into my version of windows xp, so I downloaded from the microsoft site and, at halfway through the installation, I get an error stating that the program is already installed as built in the part of the operating system , but I can't find it anywhere!I'm usually a mac user, this problem is on the computer at work so forgive me for any ignorance, because I haven't used windows in over 6 years.Thank you in advance!It can be installed on Windows XP Professional
http://support.Microsoft.com/kb/284931/en-us
To find the Remote Desktop Connection shortcut, click the button start , click all programs or programs, and then click Accessories. To quickly open remote desktop connection, open the start menu and type mstsc in the search box.
You can't use Remote Desktop connection to connect to computers running Windows XP Home Edition.
-
Window sizes host display does not restore after a remote desktop connection
After that my computer has been accessed via a remote desktop connection, the window size for my program do not restore their previous size. I have monitors of landscape which are larger than most of the remote users. When they log off my computer, my window sizes are stuck to the size of the monitor of the remote user. Y at - it a setting or a way to get my windows to restore to their original size?
No, there is no setting for this. It's just the way it's always been since Remote Desktop was invented (formerly in the 1990s as Microsoft Terminal Services Client or MSTSC).
At the heart of the problem is that the programs that run on the desktop have no way of knowing that the display size has changed, and even if they did, they also can't know what was their previous size. It is not just stored.
-
Someone else has been able to distance in the same PC and their keyboard works very well. Any ideas?
Hello
1 did you change on your computer?
I suggest you to follow the links and check out them.
Changing remote desktop settings
http://Windows.Microsoft.com/en-us/Windows7/changing-remote-desktop-settings
Remote Desktop connection: frequently asked questions
http://Windows.Microsoft.com/en-us/Windows7/Remote-Desktop-connection-frequently-asked-questions
-
ASA 5505 Split Tunneling configured but still all traffic Tunneling
Hello
I installed an ASA 5505 running 8.3.2 and Cisco AnyConnect Client 2.5.2017.
There are the DefaultRAGroup and a newly configured Group called SplitTunnelNets.
I have 1 internal subnet (192.168.223.0/24) which has a matching ACL/AS configured on the DefaultRAGroup and the custom group policy called SSLClientPolicy.
When I start the VPN with the ASA, I can indeed reach internal resources, but when I look at the routing table, I see a new default gateway route 0.0.0.0 / 0-> 192.168.25.2 (that is in the IP pool) with a metric of 2. The default route before the start of the session AnyConnect now has a higher metric, so the 192.168.25.2 next hop is a priority.
I don't see the routes in the routing table for 192.168.223.0/24 as I expect to see. In the diagnosis of AnyConnect, I see that 0.0.0.0/0 is the policy applied to the client.
Here's my setup. Please tell me if you see something that I'm missing.
ASA 8.3 Version (2)
!
host name asanames of
!
interface Vlan1
nameif inside
security-level 100
IP 192.168.223.254 255.255.255.0
!
interface Vlan2
nameif outside
security-level 0
IP x.x.x.x 255.255.255.240
!
interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
!
interface Ethernet0/5
!
interface Ethernet0/6
!
interface Ethernet0/7
!
boot system Disk0: / asa832 - k8.bin
passive FTP mode
clock timezone IS - 5
clock to summer time EDT recurring
DNS lookup field inside
DNS server-group DefaultDNS
Server name 192.168.223.41
domain Labs.com
network obj_any object
subnet 0.0.0.0 0.0.0.0
vpn-client-net network object
255.255.255.0 subnet 192.168.25.0
network of the internal net object
192.168.223.0 subnet 255.255.255.0
the DM_INLINE_NETWORK_1 object-group network
internal-net network object
network-vpn-client-net object
the DM_INLINE_NETWORK_2 object-group network
internal-net network object
network-vpn-client-net object
SplitTunnelNets to access extensive ip list allow any 192.168.223.0 255.255.255.0
pager lines 24
Enable logging
asdm of logging of information
Within 1500 MTU
Outside 1500 MTU
mask 192.168.25.1 - 192.168.25.50 255.255.255.0 IP local pool SSLClientPool
no failover
ICMP unreachable rate-limit 1 burst-size 1
ICMP allow any inside
ASDM image disk0: / asdm - 635.bin
don't allow no asdm history
ARP timeout 14400
NAT (inside, all) static source internal-net net internal static destination vpn client vpn client-Net
!
network obj_any object
NAT dynamic interface (indoor, outdoor)
Route outside 0.0.0.0 0.0.0.0 x.x.x.x 1
Timeout xlate 03:00
Timeout conn 01:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
Sunrpc timeout 0:10:00 h323 0:05:00 h225 mgcp from 01:00 0:05:00 mgcp-pat 0:05:00
Sip timeout 0:30:00 sip_media 0:02:00 prompt Protocol sip-0: 03:00 sip - disconnect 0:02:00
Timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
dynamic-access-policy-registration DfltAccessPolicy
Labs-AAA protocol ldap LDAP-server
AAA-server Lab-LDAP (inside) host 192.168.223.41
Server-port 636
LDAP-base-dn dc = labs, dc = com
LDAP-scope subtree
LDAP-naming-attribute sAMAccountName
LDAP-login-password *.
LDAP-connection-dn [email protected] / * /
enable LDAP over ssl
microsoft server type
Enable http server
http 192.168.223.0 255.255.255.0 inside
No snmp server location
No snmp Server contact
Server enable SNMP traps snmp authentication linkup, linkdown cold start
life crypto ipsec security association seconds 28800
Crypto ipsec kilobytes of life - safety 4608000 association
Crypto ca trustpoint ASDM_TrustPoint0
registration autosslvpnkeypair key pair
Configure CRL
Crypto ca trustpoint ASDM_TrustPoint1
ASDM_TrustPoint1 key pair
Configure CRL
string encryption ca ASDM_TrustPoint0 certificatesTelnet 192.168.223.0 255.255.255.0 inside
Telnet timeout 5
SSH 192.168.223.0 255.255.255.0 inside
SSH timeout 5
Console timeout 0
dhcpd outside auto_config
!a basic threat threat detection
Statistics-list of access threat detection
no statistical threat detection tcp-interception
NTP 192.5.41.41 Server
NTP 192.5.41.40 Server
SSL-trust outside ASDM_TrustPoint1 point
WebVPN
allow outside
No anyconnect essentials
SVC disk0:/anyconnect-win-2.5.2017-k9.pkg 1 image
SVC disk0:/anyconnect-macosx-i386-3.0.0629-k9.pkg 2 image
Picture disk0:/anyconnect-linux-3.0.0629-k9.pkg 3 SVC
enable SVC
tunnel-group-list activate
internal SSLClientPolicy group strategy
attributes of Group Policy SSLClientPolicy
value of server DNS 192.168.223.41
VPN-tunnel-Protocol svc
Split-tunnel-policy tunnelspecifiedvalue of Split-tunnel-network-list SplitTunnelNets
field default value Labs
split dns value Labs.com
the address value SSLClientPool pools
WebVPN
SVC Dungeon-Installer installed
attributes of Group Policy DfltGrpPolicy
value of server DNS 192.168.223.41
Split-tunnel-policy tunnelspecified
value of Split-tunnel-network-list SplitTunnelNets
coyotelabs.com value by default-field
type of remote access service
type tunnel-group SSLClientProfile remote access
attributes global-tunnel-group SSLClientProfile
CoyoteLabs-LDAP authentication-server-group
Group Policy - by default-SSLClientPolicy
tunnel-group SSLClientProfile webvpn-attributes
allow group-alias CoyoteLabs
!
class-map inspection_default
match default-inspection-traffic
!
!
type of policy-card inspect dns preset_dns_map
parameters
maximum message length automatic of customer
message-length maximum 512
Policy-map global_policy
class inspection_default
inspect the preset_dns_map dns
inspect the ftp
inspect h323 h225
inspect the h323 ras
inspect the rsh
inspect the rtsp
inspect esmtp
inspect sqlnet
inspect the skinny
inspect sunrpc
inspect xdmcp
inspect the sip
inspect the netbios
inspect the tftp
Review the ip options
!
global service-policy global_policy
context of prompt hostname
Cryptochecksum:95b7ff58b54e02948a14b225eec1a990
: endThe split tunnel access list must be standard access-list, not extended access list.
You must change the following:
FROM: SplitTunnelNets access-list extended ip to allow all 192.168.223.0 255.255.255.0
To: SplitTunnelNets standard access list allows 192.168.223.0 255.255.255.0You should be able to reconnect again and will be able to access the Internet after you set up the standard access-list split tunnel.
Hope that helps.
-
I replaced a HP Deskjet 5150 with a HP Envy 7645. Connection via USB.
I've seen all the entries of forums about the problems/bugs to get printing to work. I tried all the... HP Print doctor (no errors reported), several re - installs, etc. all HP printing test pages.
at this point, some programs the:
- print - IE 11, Adobe Reader, MS Live Mail 2012
- do not print without message - 35 FF, Quicken 2014, MS Word 2010
- do not print with message - MS Excel 2010, IBM Notes 9
all the programs print correctly on this printer from another PC on the home network... which seems to point to some sort of shift/software conflict on my machine.
Thank you
Hello @deerPrint,
Welcome to the Forums of HP Support!
I understand that since the installation of your HP ENVY 7645 e-all-in-one printer on your Windows 7 computer that you have not been able to print successfully from several programs. I want to thank you for all the details about your troubleshooting and conclusions, including in your original post. Right now, I would like to send you an additional troubleshooting.
I understand that you have already tried several uninstalls and reinstalls nothing doesn't. At this point, I'm going to have you repeat uninstall it and reinstall the process, but there are a few additional steps that will be included. Please follow all the steps in the order below.
Please disconnect USB cable before continuing.
Step 1: Uninstall the drivers:
- Click on the Start menu
- Select all programs
- Select the HP folder
- Select your HP Envy
- Select Uninstall
Please follow the instructions on the screen to complete the uninstallation. Once the uninstall is complete, proceed to the next step.
Step 2: Hold temporary files:
- Click on the Start menu
- In the box "search programs and files" located just above to start after you click on it, type %temp% , and then press enter on your keyboard
- When the Temp folder opens, select Ctrl + A at the same time on your keyboard. Everything in this folder will highlight now.
- Select the "delete" button on your keyboard. The Temp folder contains the temporary internet files. None of the actual files or folders on your computer will be affected by deleting Temp files. A Temp file should you will automatically get the pop up to 'jump' this point.
- Close the Temp folder when it is empty
- Right-click the recycling bin on your desktop and select empty recycling bin
Step 3: Run CCLeaner:
It is possible that a malicious file or registry corruption is at the origin of the conflict of impression on this one computer. To make sure that your computer is in perfect working condition, I'll have you run a CCLeaner. Please click here to download the CCleaner tool. Once the site opens click the Free Download button at the top. Once the download is complete, please let the tool Run. Run the Scan to check out your system.
Once completed the CCLeaner, please proceed to the next step.
Step 4: Reinstall the driver:
- Please click here to download the complete driver of features for your HP Envy
- Once the site opens click on the download button at the top left
- If you are prompted, allow the download of the run
- Once the download is complete, please follow the steps on the screen to install your machine
- Do not connect the USB cable until the installation program invites you to
Once the installation is complete, test printing from several programs again to see if the problem has been resolved. If the problem persists, that another driver will have to be tested. To load the driver replacing, please follow the steps below.
Step 5: Load driver replacing:
- Click on the Start menu
- Select the devices and printers
- In the devices and printers folder right click on your DESIRE 7645 and left click on printer properties
- Left click on the Advanced tab
- Left-click on new driver
- When the new driver window just press 'Next' until you see a list of manufacturers on the left and a list of Printers on the right.
- Select HP as the manufacturer on the left
- DeskJet 9800 select the printer on the right. If Deskjet 9800 does appear to only select "Windows Update" at the bottom left and once the update is completed, you will be able to select Deskjet 9800.
- After selecting Deskjet 9800 hit Next to complete the wizard driver new
- Under the printer properties window, select 'Apply' but do not hit OK
- Select the general tab
- Rename your printer in HP ENVY 7645
- Click OK
- Finally, right click on your DESIRE 7645 one more time and left click on Printing Preferences
- Left click on the paper/quality tab
- Left click on the drop down menu 'Normal' for quality printing at the bottom right and change its normal fast
- Press apply and OK
Now that the other pilot is added in, please try again to print.
Please reply to this message with the result of your troubleshooting. I look forward to hear from you!
-
Why cfstat still poster reqs qued even when it is not all traffic to the site?
I try to use cfstat to help understand some performance issues with our production server. Its CF 10 Ent on a Windows 2008 VM. I'm also 10 ColdFusion installed on a local Windows VM.
I run cfstat with a 1 Refresh second on the local production and the VM server. The local VM Reqs Q column ' ed shows a constant 10 even if I'm not hitting all sites on the server. The production server shows a constant 20-Reqs Q'ed and some Run Reqs'g.
Is this normal? I have to make some adjustments to the CF or the JVM?
Thank you
Hi Phil,
CF10 CFSTAT seems not to be as convenient as CF9 or earlier version.
Requests queued seems to be displaying the value of tomcat for minSpareThreads connector. Tomcat minSpareThreads is the minimum number of threads still kept running. If not specified, the default value of 10 is used.
HTH, Carl.
-
The mouse does not work in Remote Desktop
I have a Win 7 64 bit Pro computer desktop that I try to run Remote Desktop to connect to my server Windows Home Server 2011. When I log in, my server's desktop is visible and I can see and move my mouse but when I left click of the mouse, nothing happens. Then if I click right, menu contextual office does not, but it is in the lower left corner, whenever I do a right-click No matter where I click. When the context menu displays and I hover over an element, it is not derivative of blue as it should. So basically just mouse doesn't work at all on the remote desktop. However, the keyboard works. I can click on the Windows key to bring up the menu start and use the arrow keys to navigate in it.
Everything works fine on the server if I connect directly into it with the mouse and keyboard. I should also mention that exactly the same thing happens if I try to use remote desktop to connect to my Win 7 notebook Home Premium 64 - bit on my Windows 7 Pro Office above.
And finally, if I use remote desktop to connect from my laptop or desktop to my Win XP Pro system at work, everything works perfectly fine. So is this something with the connection to a system Win 7 or WHS 2011? Any help appreciated. Thank you.
I thought about it. I had this program that runs on the server that reverses the mouse. This is necessary, since I use a trackball turned 180 degrees for better comfort and "sakasa" mouse to use for the release of the mouse. But I didn't need on the server and the system office.
-
Return VPN traffic flows do not on the tunnel
Hello.
I tried to find something on the internet for this problem, but am fails miserably. I guess I don't really understand how the cisco decides on the road.
In any case, I have a Cisco 837 which I use for internet access and to which I would like to be able to complete a VPN on. When I vpn (using vpnc in a Solaris box as it happens which is connected to the cisco ethernet interface), I can establish a VPN and when I ping a host on the inside, I see this package ping happen, however, the return package, the cisco 837 is trying to send via the public internet facing interface Dialer1 without encryption. I can't work for the life of me why.
(Also note: I can also establish a tunnel to the public internet, but again, I don't can not all traffic through the tunnel.) I guess I'm having the same problem, IE back of packages are not going where it should be, but I do know that for some, on the host being ping well, I can see the ping arriving packets and the host responds with a response to ICMP echo).
Here is the version of cisco:
version ADSL #show
Cisco IOS software, software C850 (C850-ADVSECURITYK9-M), Version 12.4 (15) T5, VERSION of the SOFTWARE (fc4)
Technical support: http://www.cisco.com/techsupport
Copyright (c) 1986-2008 by Cisco Systems, Inc.
Updated Friday 1 May 08 02:07 by prod_rel_teamROM: System Bootstrap, Version 12.3 (8r) YI4, VERSION of the SOFTWARE
ADSL availability is 1 day, 19 hours, 27 minutes
System to regain the power ROM
System restarted at 17:20:56 CEST Sunday, October 10, 2010
System image file is "flash: c850-advsecurityk9 - mz.124 - 15.T5.bin".Cisco 857 (MPC8272) processor (revision 0 x 300) with 59392K / 6144K bytes of memory.
Card processor ID FCZ122391F5
MPC8272 CPU Rev: Part Number 0xC, mask number 0 x 10
4 interfaces FastEthernet
1 ATM interface
128 KB of non-volatile configuration memory.
20480 bytes K of on board flash system (Intel Strataflash) processorConfiguration register is 0 x 2102
And here is the cisco configuration (IP address, etc. changed of course):
Current configuration: 7782 bytes
!
! Last configuration change at 11:57:21 CEST Monday, October 11, 2010 by bautsche
! NVRAM config updated at 11:57:22 CEST Monday, October 11, 2010 by bautsche
!
version 12.4
no service button
tcp KeepAlive-component snap-in service
a tcp-KeepAlive-quick service
horodateurs service debug datetime localtime show-timezone msec
Log service timestamps datetime localtime show-timezone msec
encryption password service
sequence numbers service
!
hostname adsl
!
boot-start-marker
boot-end-marker
!
logging buffered 4096
enable secret 5
!
AAA new-model
!
!
AAA authentication login local_authen local
AAA authentication login sdm_vpn_xauth_ml_1 local
AAA authorization exec local local_author
AAA authorization sdm_vpn_group_ml_1 LAN
!
!
AAA - the id of the joint session
clock timezone gmt 0
clock daylight saving time UTC recurring last Sun Mar 01:00 last Sun Oct 01:00
!
!
dot11 syslog
no ip source route
dhcp IP database dhcpinternal
No dhcp use connected vrf ip
DHCP excluded-address IP 10.10.7.1 10.10.7.99
DHCP excluded-address IP 10.10.7.151 10.10.7.255
!
IP dhcp pool dhcpinternal
import all
Network 10.10.7.0 255.255.255.0
router by default - 10.10.7.1
Server DNS 212.159.6.9 212.159.6.10 212.159.13.49 212.159.13.50
!
!
IP cef
property intellectual auth-proxy max-nodata-& 3
property intellectual admission max-nodata-& 3
no ip bootp Server
nfs1 host IP 10.10.140.207
name of the IP-server 212.159.11.150
name of the IP-server 212.159.13.150
!
!
!
username password cable 7
username password bautsche 7
vpnuser password username 7
!
!
crypto ISAKMP policy 1
BA 3des
md5 hash
preshared authentication
Group 2
!
crypto ISAKMP policy 2
BA aes 256
preshared authentication
Group 2
!
crypto ISAKMP policy 3
BA 3des
Prior authentication group part 2
the local address SDM_POOL_1 pool-crypto isakmp client configuration
!
ISAKMP crypto client configuration group groupname2
key
DNS 10.10.140.201 10.10.140.202
swangage.co.uk field
pool SDM_POOL_1
users of max - 3
netmask 255.255.255.0
!
ISAKMP crypto client configuration group groupname1
key
DNS 10.10.140.201 10.10.140.202
swangage.co.uk field
pool SDM_POOL_1
users of max - 3
netmask 255.255.255.0
ISAKMP crypto sdm-ike-profile-1 profile
groupname2 group identity match
client authentication list sdm_vpn_xauth_ml_1
ISAKMP authorization list sdm_vpn_group_ml_1
client configuration address respond
ISAKMP crypto profile sdm-ike-profile-2
groupname1 group identity match
ISAKMP authorization list sdm_vpn_group_ml_1
client configuration address respond
!
!
Crypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac
Crypto ipsec transform-set esp-3des esp-md5-hmac ESP_MD5_3DES
Crypto ipsec transform-set ESP-AES-256-SHA aes - esp esp-sha-hmac
!
crypto dynamic-map SDM_DYNMAP_1 1
Set the security association idle time 3600
game of transformation-ESP-AES-256-SHA
market arriere-route
crypto dynamic-map SDM_DYNMAP_1 2
Set the security association idle time 3600
game of transformation-ESP-AES-256-SHA
market arriere-route
!
!
card crypto SDM_CMAP_1 client authentication list sdm_vpn_xauth_ml_1
map SDM_CMAP_1 isakmp authorization list sdm_vpn_group_ml_1 crypto
map SDM_CMAP_1 65535-isakmp dynamic SDM_DYNMAP_1 ipsec crypto
!
Crypto ctcp port 10000
Archives
The config log
hidekeys
!
!
synwait-time of tcp IP 10
!
!
!
Null0 interface
no ip unreachable
!
ATM0 interface
no ip address
no ip redirection
no ip unreachable
no ip proxy-arp
route IP cache flow
No atm ilmi-keepalive
PVC 0/38
aal5mux encapsulation ppp Dialer
Dialer pool-member 1
!
DSL-automatic operation mode
waiting-224 in
!
interface FastEthernet0
!
interface FastEthernet1
!
interface FastEthernet2
!
interface FastEthernet3
!
interface Vlan1
Description $FW_INSIDE$
10.10.7.1 IP address 255.255.255.0
IP access-group 121 to
no ip redirection
no ip unreachable
no ip proxy-arp
IP nat inside
IP virtual-reassembly
route IP cache flow
map SDM_CMAP_1 crypto
Hold-queue 100 on
!
interface Dialer1
Description $FW_OUTSIDE$
the negotiated IP address
IP access-group 121 to
no ip redirection
no ip unreachable
no ip proxy-arp
NAT outside IP
IP virtual-reassembly
encapsulation ppp
route IP cache flow
No cutting of the ip horizon
Dialer pool 1
Dialer idle-timeout 0
persistent Dialer
Dialer-Group 1
No cdp enable
Authentication callin PPP chap Protocol
PPP chap hostname
PPP chap password 7
map SDM_CMAP_1 crypto
!
local IP SDM_POOL_1 10.10.148.11 pool 10.10.148.20
IP local pool public_184 123.12.12.184
IP local pool public_186 123.12.12.186
IP local pool public_187 123.12.12.187
IP local pool internal_9 10.10.7.9
IP local pool internal_8 10.10.7.8
IP local pool internal_223 10.10.7.223
IP local pool internal_47 10.10.7.47
IP forward-Protocol ND
IP route 0.0.0.0 0.0.0.0 Dialer1
IP route 10.10.140.0 255.255.255.0 10.10.7.2
!
no ip address of the http server
no ip http secure server
IP nat inside source overload map route SDM_RMAP_1 interface Dialer1
IP nat inside source static 10.10.7.9 123.12.12.184
IP nat inside source static tcp 10.10.7.8 22 123.12.12.185 22 Expandable
IP nat inside source static tcp 10.10.7.8 25 123.12.12.185 25 expandable
IP nat inside source static tcp 10.10.7.8 80 123.12.12.185 80 extensible
IP nat inside source static tcp 10.10.7.8 443 123.12.12.185 443 extensible
IP nat inside source static tcp 10.10.7.8 993 123.12.12.185 993 extensible
IP nat inside source static tcp 10.10.7.8 123.12.12.185 1587 1587 extensible
IP nat inside source static tcp 10.10.7.8 8443 123.12.12.185 8443 extensible
IP nat inside source static 10.10.7.223 123.12.12.186
IP nat inside source static 10.10.7.47 123.12.12.187
!
record 10.10.140.213
access-list 18 allow one
access-list 23 permit 10.10.140.0 0.0.0.255
access-list 23 permit 10.10.7.0 0.0.0.255
Access-list 100 category SDM_ACL = 2 Note
access-list 100 deny ip any 10.10.148.0 0.0.0.255
access ip-list 100 permit a whole
Note access-list 121 SDM_ACL category = 17
access-list 121 deny udp any eq netbios-dgm all
access-list 121 deny udp any eq netbios-ns everything
access-list 121 deny udp any eq netbios-ss all
access-list 121 tcp refuse any eq 137 everything
access-list 121 tcp refuse any eq 138 everything
access-list 121 tcp refuse any eq 139 all
access ip-list 121 allow a whole
access-list 125 permit tcp any any eq www
access-list 125 permit udp any eq isakmp everything
access-list 125 permit udp any any eq isakmp
access-list 194 deny udp any eq isakmp everything
access-list 194 deny udp any any eq isakmp
access-list 194 allow the host ip 123.12.12.184 all
IP access-list 194 allow any host 123.12.12.184
access-list 194 allow the host ip 10.10.7.9 all
IP access-list 194 allow any host 10.10.7.9
access-list 195 deny udp any eq isakmp everything
access-list 195 deny udp any any eq isakmp
access-list 195 allow the host ip 123.12.12.185 all
IP access-list 195 allow any host 123.12.12.185
access-list 195 allow the host ip 10.10.7.8 all
IP access-list 195 allow any host 10.10.7.8
not run cdp
public_185 allowed 10 route map
corresponds to the IP 195
!
public_184 allowed 10 route map
corresponds to the IP 194
!
allowed SDM_RMAP_1 1 route map
corresponds to the IP 100
!
!
control plan
!
!
Line con 0
connection of authentication local_authen
no activation of the modem
preferred no transport
telnet output transport
StopBits 1
line to 0
connection of authentication local_authen
telnet output transport
StopBits 1
line vty 0 4
access-class 23 in
privilege level 15
authorization exec local_author
connection of authentication local_authen
length 0
preferred no transport
transport input telnet ssh
!
max-task-time 5000 Planner
Scheduler allocate 4000 1000
Scheduler interval 500
130.88.202.49 SNTP server
130.88.200.98 SNTP server
130.88.200.6 SNTP server
130.88.203.64 SNTP server
endAny help would be appreciated.
Thank you very much.
Ciao,.
Eric
Hi Eric,.
(Sorry for the late reply - needed some holidays)
So I see that you have a few steps away now. I think that there are 2 things we can try:
1)
I guess you have provided that:
IP nat inside source overload map route SDM_RMAP_1 interface Dialer1
Since the routemap refers to ACL 100 to define the traffic to be translated, we can exclude traffic that initiates the router:
Access-list 100 category SDM_ACL = 2 Note
access-list 100 deny ip 123.12.12.185 host everything
access-list 100 deny ip any 10.10.148.0 0.0.0.255
access ip-list 100 permit a wholeWhich should prevent the source udp 4500 to 1029 changing port
OR
2)
If you prefer to use a different ip address for VPN,
Then, you can use a loop like this:
loopback interface 0
123.12.12.187 the IP 255.255.255.255
No tap
map SDM_CMAP_1 crypto local-address loopback 0
I don't think you should apply card encryption to the loopback interface, but it's been a while since I have configured something like that, so if you have problems first try and if still does not get the crypto debugs new (isakmp + ipsec on the vpn, nat router on the router of the client package).
HTH
Herbert
-
Weired problem with Remote desktop and WLan on Tecra M7
Hello
I regularly use Microsoft Office remote to connect to my work PC to my laptop (TOSHIBA TECRA M7 Tablet) home.
However, since buying (not had long), the remote desktop connection drops and I can't reconnect to the Toshiba laptop.It seems that when I connect to the start via Remote Desktop and the connection start screen appears after a short time 10-25mins laptop Toshiba Wifi connection drops.
When I try to reconnect it does not allow me to do.
I have to physically come back home and logon to windows XP and then re - activate the wifi.I did the following to here.
1 UPDATE the latest BIOS
2 UPDATE WIFI INTEL PRO ADAPTER TO THE LATEST DRIVERS
3. NOT MY BROADBAND, AS PREVIOUSLY, HE WORKED WITH HAPPINESS ON MY OLD LAPTOP.
4. NOT MY WORKING BROADBAND CONNECTION WORKED FINE BEFORE AND IS STILL WORKING ON THE OLD INSTALLATION
5. HAVE YOU TURNED OFF ALL THE POWER ON THE LAPTOP AND WIFI PROPERTIES MANAGEMENT, WHERE HE WOULD SLEEP.PLEASE HELP, IT IS NECESSARY FOR EMERGENCY
Hello
Do you use the Intel Proset utility to configure the WiFi connection?
Try to configure the WiFi network using this tool and check if the WiFi network would disconnect again.I m also interesting this driver Wlan did you use?
Did you use one page of Intel?
If this is not the case, check the Intel page for the new WLan driver version. -
Cannot print from remote desktop
Original title "Printing problem" remote
I work over the desktop connection remote for another company. Recently, all of a sudden, I can't print when I am connected remotely (I've selected the "Printers" checkbox on the Options/Local tab resources before opening the Office remotely.)
When I bought a new Kodak printer it started while I got the Kodak printer. I have a HP officejet 4500 and it worked fine (I still have it at home and it prints fine from my laptop) so when I went to replace I bought the same machine only a slightly newer version. When I am connected remotely, it recognizes the new printer and acts like it sends but nothing happens and it has no build up in the Q.
Hello
1. you receive an error message when you try to print from the remote desktop?
Resolution:
To do: Important This section, method, or task contains steps that tell you how to modify the registry. However, serious problems can occur if you modify the registry incorrectly. Therefore, make sure that you proceed with caution. For added protection, back up the registry before you edit it. Then you can restore the registry if a problem occurs. For more information about how to back up and restore the registry, click on the number below to view the article in the Microsoft Knowledge Base:
How to back up and restore the registry in Windows
http://support.Microsoft.com/kb/322756
You can run the fix it or follow the steps provided in the link below to solve the problem with the printer prints don't for the remote connection.
Printers that use ports that do not begin with COM, LPT, or USB are not redirected in a remote desktop or Terminal services Server session
http://support.Microsoft.com/default.aspx?scid=kb;en-us;302361
See also:
Network printer problems
http://Windows.Microsoft.com/en-us/Windows-Vista/troubleshoot-network-printer-problems
Print from a remote computer to your printer
http://Windows.Microsoft.com/en-us/Windows-Vista/print-from-a-remote-computer-to-your-printer
-
setting up office and remote desktop
After that I have use remote layout on my PC desktop (my workstation is configured as my server for remote desktop access) becomes blurred. the width of the start bar is shortened, the icons are rearranged and applications that I keep on the second monitor are moved to the primary monitor.
while I am connected to my workstation, or if I only access the files so I do not run Remote Desktop, the arrangement is never altered.
This is probably because the screen resolution was changed when the remote desktop connection via. If you right click on your desktop and select 'Screen Resolution' change for something small (or other) like 800 x 600, you'll probably see the same effect as blurs Windows to rearrange the icons so that they fit on the desktop.
When you run the Remote Desktop of the remote computer application
(Start-> all programs-> Accessories-> Remote Desktop connection)
until you click on the 'Connect' button, click on the button 'Options', then select the 'View' tab and ensure that the resolution of the screen in the box "Display Configuration" corresponds to that of the computer target. Click on the button "use" all of my monitors... If the serving machine has more than one monitor and therefore not the machine connection. Otherwise, the connection will look like a single monitor and everything on the 2nd computer monitor host will be re-arranged to the monitor so that you can see all of the icons of the remote connection.
HTH,
JW
-
Windows 7 remote desktop configuration
Try to set up my Samsung Galaxy Tab 3 for remote access to my desktop PC. Downloaded the MS Remote Desktop Android app to Tab Galaxy 3.
On the PC (Windows 7 Home Premium) click on "Start", right click "computer", then click on 'Properties', then click on "remote settings". In the pop-up in the section "at a distance", I see only the section to "remote assistance".
The problem I have is that I see not the choice of 'remote desktop' section allow remote connections.
Is there another sector in the system that I need to activate for the section to appear? Software windows 7 provided with the computer (Lenovo H415). I am able to access the files of windows media player etc. of the Samsung Tab 3... and the PC sees the Tablet from Samsung on the network, but that's all.
Does anyone have a solution for this?Try to set up my Samsung Galaxy Tab 3 for remote access to my desktop PC. Downloaded the MS Remote Desktop Android app to Tab Galaxy 3.
On the PC (Windows 7 Home Premium) click on "Start", right click "computer", then click on 'Properties', then click on "remote settings". In the pop-up in the section "at a distance", I see only the section to "remote assistance".
The problem I have is that I see not the choice of 'remote desktop' section allow remote connections.
Is there another sector in the system that I need to activate for the section to appear? Software windows 7 provided with the computer (Lenovo H415). I am able to access the files of windows media player etc. of the Samsung Tab 3... and the PC sees the Tablet from Samsung on the network, but that's all.
Does anyone have a solution for this?Solve the mystery of myself. Found this little note that after much research online.
"Important note: Remote Desktop is no longer included in the versions professional, enterprise or ultimate edition of Windows." Editions do not have Office remotely. »
It seems that Microsoft "cat experts" would have mentioned this small detail when I worked with them or help line experts when I call them on the phone. Instead, they tried to sell me a support service for $99, which I think now just tried to trick me into buying one edition more expensive Microsoft windows without really anything to solve the problem which would itself be fixed with an update they would have sold in addition to the support service for $99 that I really don't need to.
-
I have an Asus laptop with a widescreen running Windows 7 and I often connect in my desktop computer with a standard view that is also running Windows 7. Everything works well EXCEPT that... the differences of means of screen sizes that I have to scroll up or down or sideways in order to be able to read all of the remote desktop view. I tried to change the resolution on my laptop but it does not help. My laptop resolution is 1366 x 768, and I think that the normal resolution on my desktop is 1280 x 768. RDP works well between the two computers, but having to Ahmed constantly down the desktop to see the set of program and then having to scroll to the top and right scrolling of the screen to see the different menus or 'X' as a result of a program gets really annoying. Any suggestions? Thanks for your help.
RDP should not be dependent on the resolution of the remote desktop, it is it's own display on the remote computer, so by default will be rendered by the remote computer in the resolution of your local computer. This is because you do not normally take on real remote desktop but create a separate. If you right click on the shortcut to connect remotely and go to properties > view tab, you can select a lower resolution on the resolution of your local office to distance a window.
The symptom you describe is more a desktop installation shadow such as indicated by VNC or Log Me In.
-
Remote Desktop Web Apps stopped not opening on all multiple monitors
We have 2012 R2 Remote Desktop Services server. Last week, we open applications in all 6 screens that we are ok. If I have all 6 active screens it will not pass the different screens of the main screen. If I turn off three of the monitors it allows me to move my apps on all three screens ok. What is happening on pc Windows 7, so I tried the update to Windows 10 with the same results.
Hello
Thank you for being part of the Microsoft Community.
The question you posted would be better suited in the TechNet Forums. I would recommend posting your query in the link below.
General Forum(Windows Server) Technet
Back to us for any issues in the future. We will be happy to help you.
Maybe you are looking for
-
Is there an Apple TV 4 in PDF user guide?
Is there an Apple TV 4 in PDF user guide?
-
Make the icon cancel execution Invisible
Is there a way to make the invisible abort execution icon, when I deploy an application, I want the user to use only the STOP button I provide without the option to stop the program with the execution of the demolition at the top.
-
Hi I need the BIOS password for mi hp 2140 Serial number (deleted content) PN:fp523av Thanks for the help
-
I want to ask questions about all kinds of drivers Format?
Welcome to all here and sorry for my bad language in English I want to ask questions about format player a full format and quick format like this Format X:/q and format X:/s because I format my hard drive a lot of time I heard that it's in trouble an
-
Error on Outlook express. Also can only receive emails but unable to send them.
Original title: outlook express Hello, I have outlook express and after I received my emails that I get the error message indicating, also I can not send e-mails only to receive them. Can any one help thanks Diane