Passed the port, conflict with VPN

Similar Questions

• How to increase the speed of work and avoid the "Server timeouts" with VPN and?

  Hello!

  I am faced with slow work and delays in Thunderbird to my Linux.

  I have 4 accounts (3 are connected via IMAP) and two of them runs very slowly. Fear that every time I see annoying message at end of the period of the server and each message (same old) opens very slowly and sometimes doesn't open.

  It maybe the problem in services postal themselves, or illustrated by the 4th account is Exchange (which work much faster in fact), but I need to manage that somehow. I think I had a fast enough internet connection.

  I know that the server timeout could be increased, but I have not found this option in the settings. I have 31 TB, and all the settings, I found in Google seems to be linked to the old version with the old interfaces. I went to advanced settings, I'm not sure that it's settings and what value it must contain.

  In addition, has something like 'caching 'mail TB? I mean, during the reception of the new letter - it is "cached" locally, so when I try to read - local version is used until "cache" is cleaned. But when I delete or move the letter to another folder - happening also at the level of the server. I think that if TB could sync all mails and store their values locally this will work much faster.

  Thanks for any possible solution to this.

  It seems to me that I found the root cause of the problem)

  Problem is not in TB, but in these 2 mail services itself. They work poorly when vpn works.

  Will address this issue for messaging services.

• Is it possible to use the port replicator with the Satellite Pro series?

  Hello
  Is it possible to use the port replicator (Docking Stations) for Tecra series laptop with the Satellite Pro series?

  Hello

  No, as far as I know it of not possible to use a port on laptops Satellite Pro Replicator.
  All laptops that support the Port Replicator has a port extension at the bottom of the unit.
  To my knowledge, the Satellite Pro series don t have this port.
  For now only the Tecra and some units Protégé(ie: S100) supports this feature.

• Serial bus - bytes to the Port returns with the disabled character of endpoint 0

  I'm new to labview...

  I am trying to connect PC to a hardware device that is customized with a UART (9600 baud, 8 bits, no parity, 1 stop bit, flowcontrol HW). The device works as follows: when a data packet)<256 bytes)="" is="" sent="" to="" it="" via="" serial="" port,="" each="" byte="" is="" echoed="" by="" the="" uart.="" after="" the="" packet="" is="" completely="" received="" the="" device="" verifies that="" the="" packet="" is="" correcly="" received,="" and="" after="" a="" delay="" (~="" 200="" msec="" or="" more),="" sends="" 2="" bytes to="" the="" host indicating="" whether="" the="" packet="" was="" ok="" or="" not.="" this="" works="" perfectly="" when="" i="" use="" hyperterminal="" to="" communicate="" with="" the="">

  I designed a simple vi to manage it. As each byte is sent, I use the "Byte to Port" property and read the byte of the echo. The problem is after all bytes are sent, I get 0 instead of 2 for the 2 bytes that I'm supposed to get. I tried to do it with the read-write property-reading vi in order, but it does not work. As you can see in the attached vi, I therefore separated this in 2 cases;

  (Real deal) during the time the package is sent and (false case) where I just (trying) to read the 2 bytes. I get 0 bytes to the port and the VISA Read vi gives me a timeout error! .... Increase the time to 1000 ms did not help either.

  Can someone take a look at the vi and suggest what is wrong and what can be done?

  It will be much appreciated.

  Franck Tulpule

  Franck,

  I agree with crossrulz.  You must set the time-out period based on the behavior of the device.

  Consider reading 1 byte at a time - all the time - and comparing the result with what you sent.  From the echoes of the unit it receives, you can use this to check communication. Once all bytes sent found an echo, then start the search for "Y" follow-up by "." follow-up by "?" to see if you get the acknowledgement of receipt. With the timeout VISA has some value based on how long you want the program to be unresponsive to user input or any other activity, you can manage the knids of crossrulz errors mentioned.

  Lynn

• How to pass the value calculated with the method of the Application Module?

  I am a newbie to ADF. IThink I'm missing something very basic:
  
  
  
  In JDeveloper 10.1.3.3 ADF, I'm trying to pass the session ID to a method in my App Mod, but the method receives a null value. I think I have a session ID getting too late in the process, but don't know where else to get it.
  
  
  
  Here are the details:
  
  
  
  I'm passing 3 argument to a method called ProcessReport:
  
  
  
  public String ProcessReport (Number reportNumber, Double caratWeight, String sessionID)
  
  
  
  In my PageDef I have:
  
  
  
  < p >
  & lt; executables & gt;
  
  & lt; variableIterator id = 'variables' & gt;
  
  & lt; Type = "oracle.jbo.domain.Number" variable
  
  Name = "ProcessReport_reportNumber" IsQueriable = "false" / & gt;
  
  & lt; Type = "variable java.lang.Double" name = "ProcessReport_caratWeight" "
  
  IsQueriable = "false" / & gt;
  
  & lt; Type = "java.lang.String variable" name = "ProcessReport_sessionID" "
  
  IsQueriable = "false" / & gt;
  
  & lt; / variableIterator & gt;
  
  & lt; / executables & gt;
  
  
  
  & lt; links & gt;
  < /p >
  < p >
  & lt; methodAction id = "ProcessReport" MethodName = "ProcessReport."
  
  RequiresUpdateModel = "true" Action = "999".
  
  IsViewObjectMethod = 'false' DataControl = "RC2DataControl."
  
  InstanceName = "RC2DataControl.dataProvider"
  
  ReturnName = "RC2DataControl.methodResults.RC2DataControl_dataProvider_ProcessReport_result" & gt;
  
  & lt; NamedData NDName = "reportNumber" NDType = "oracle.jbo.domain.Number"
  
  NDValue = "${bindings." ProcessReport_reportNumber} "/ & gt;
  
  & lt; NamedData NDName = "caratWeight" NDType = "java.lang.Double"
  
  NDValue = "${bindings." ProcessReport_caratWeight} "/ & gt;
  
  & lt; NamedData NDName = "sessionID" NDType = "java.lang.String"
  
  NDValue = "${bindings." ProcessReport_sessionID} "/ & gt;
  
  & lt; / methodAction & gt;
  
  
  
  & lt; attributeValues id = "reportNumber' IterBinding = 'variables' & gt;
  
  & lt; AttrNames & gt;
  
  & lt; Item Value = "ProcessReport_reportNumber" / & gt;
  
  & lt; / AttrNames & gt;
  
  & lt; / attributeValues & gt;
  
  & lt; attributeValues id = 'caratWeight' IterBinding = 'variables' & gt;
  
  & lt; AttrNames & gt;
  
  & lt; Item Value = "ProcessReport_caratWeight" / & gt;
  
  & lt; / AttrNames & gt;
  
  & lt; / attributeValues & gt;
  
  & lt; attributeValues id = 'sessionID' IterBinding = 'variables' & gt;
  
  & lt; AttrNames & gt;
  
  & lt; Item Value = "ProcessReport_sessionID" / & gt;
  
  & lt; / AttrNames & gt;
  
  & lt; / attributeValues & gt;
  
  
  
  & lt; / links & gt;
  < /p >
  
  
  
  
  On my page, I added an outputText control called sessionID to contain the session ID.
  
  In my command button submit the page I have and the action to invoke a method in my grain of support:
  
  
  
  The code is:
  
  
  
  FacesContext ctx = FacesContext.getCurrentInstance ();
  
  ExternalContext ectx = ctx.getExternalContext ();
  
  HttpSession mySession = ectx.getSession (false) (HttpSession);
  
  String theSessionID = mySession.getId ();
  
  
  
  sessionID.setValue (theSessoinID) / / I hope she fills the outputText control and is added to the binding must be passed to the ProcessReport method
  
  
  
  BindingContainer links = getBindings();
  
  OperationBinding operationBinding = bindings.getOperationBinding("ProcessReport");
  
  Object result = operationBinding.execute ();
  
  If (! operationBinding.getErrors () .isEmpty ()) {}
  
  Returns a null value.
  
  }
  
  
  
  String resultStr = (String) result;
  
  Return resultStr;
  
  
  
  No chance! I think I should get the sesson ID earlier, during the loading of the page, but I don't know where to put the code.
  
  
  
  Any suggestion would be appreciated.
  
  
  
  John

  Hello

  Here's what I'd do

  1. create a bean managed as follows

  import javax.faces.context.ExternalContext;
  import javax.faces.context.FacesContext;
  
  import javax.servlet.http.HttpSession;
  
  public class HTTPSessionAccessBean {
  
      public HTTPSessionAccessBean() {
      }
  
      public void setHttpSessionId(String httpSessionId) {
      }
  
      public String getHttpSessionId() {
  
          FacesContext ctx = FacesContext.getCurrentInstance();
          ExternalContext ectx = ctx.getExternalContext();
          HttpSession mySession = (HttpSession) ectx.getSession(false);
          String sessionId = mySession.getId();
          return sessionId;
      }
  }
  

  2. in the ApplicationModule Impl class to create the following method and expose it as a clientInterface

      public void setSession(String sessionId){
         ((SessionImpl)this.getSession()).getEnvironment().put("http_session",sessionId);
      }
  

  (3) in the file for pageDef create method as binding

  (4) in the same file for pageDef create an invokeAction

  The session ID is now accessible from the ApplicationModule as

          Hashtable env = ((SessionImpl)this.getSession()).getEnvironment();
          String sessonId =(String) env.get("session);
  
          }
  

  This keeps the layer of model/view separation

  Frank

• Unable to access the local network with VPN with some ISPS

  Hello

  We have a VPN Remote Access IPSEC with an ASA5505. Install VPN it correctly but can not access the inside or the ASA to my office.

  But at home with another Internet service provider, it works! You can access inside.

  We are trying with other ISP and it works with 2 and does not work with the other 2!

  Office we also have an ASA5505, but we have another VPN other sites that work properly.

  Any ideas?

  Thank you and sorry for my English.

  Add...

  ISAKMP nat-traversal crypto

  That should do the trick! Please rate if this can help.

• How the ports opened with a WRTG45 wireless router

  I need ports 44405 and 55901 is open for UDP and TCP traffic coming in and out.  How can I do this and Im sure Ive opened on my computers firewall so I just need to do it on my router, can someone help me please

  Open an Internet Explorer browser page. In the address bar type - 192.168.1.1
  Let the empty user name & password use admin lowercase...

  Click on the tab "Games and Applications" and then click the sub-tab "Port Range Forwarding"...

  (1) on the first line in the box, type Application in ABC, in the start box, type in 44405 and type of box in 44405, leave the Protocol as and under type 192.168.1.20 ip address and check the box to enable...

  (2) on the second line in the box of the Application in the PQR, in the start box, type type in 55901 and type of box in 55901, leave the Protocol as and under type 192.168.1.20 ip address and check the box to enable...

  Assign the IP on your computer where you need to run Applications...

• Direct specific ports down a VPN L2L

  I have a client who is trying to use an ISP hosted web filtering and content management a gateway, the ISP wants to use and L2L ISPEC VPN on site at their front door to control the traffic. Today we have the tunnel with an ACL test for peripheral test side customer down the tunnel, but that it blocks all traffic that is not being analyzed. The problem is that they are on an ASA 5510 with 8.2.2. You cannot add ports tcp in the ACL sheep, it error when you try to apply the nat 0 access-list statement sheep (inside). We can define the ports to go down the VPN traffic interesting ACL with number, but there is no way to send just the web ports down the VPN and allow the other ports on regular overflow interface NAT I was look in 8.4 and see if it allows a policy NAT (twice the NAT for virtual private networks) to set a port to a range of IPS (IE (: nat static destination WEBINSPECT-WEBINSPECT (indoor, outdoor) static source a whole) but who only define as web ports.

  I do not have an ASA test to use, but I guess that vpn l2l will be only by IP and I can not define a port tunnel.

  In any case, it is a strange, but the ideas are welcome. I don't think it's possible, but I thought I'd see if anyone encountered at the front.

  Hello

  Well to give you a simple example where we use the double NAT / manual transmission NAT to handle traffic

  For example a configuration example I just did on my 8.4 (5) ASA

  The following configuration will

  • Set the 'object' that contains the source network for NAT
  • Set the 'object' that contains the service for NAT
  • Define the real NAT

  The real NAT is going to make any connection from the network under 'Wireless' network object to the destination port TCP/80 will be sent 'WAN' interface without NAT

  Of course it is the next step with VPN L2L network under 'network wireless of the object' would correspond to the ACL of VPN L2L. But that seemed straight forward for you already

  the subject wireless network

  10.0.255.0 subnet 255.255.255.0

  service object WWW

  Service tcp destination eq www

  NAT (WLAN, WAN) static source without WIRE WIRELESS WWW WWW service

  The following configuration will

  • Define the "object-group", that defines networks of the source of the rule by default PAT for Internet traffic
  • Set the 'object' for the PAT address (could just use 'interface' instead of the 'object')
  • Define the real NAT

  The NAT configuration will just make a rule by default PAT for the wireless network. The key thing to note here is that we use the setting "auto after." This basically inserts the NAT rule to the priority of the very bottom of the ASA.

  object-group, network WIRELESS-network

  object-network 10.0.255.0 255.255.255.0

  network of the PAT object - 1.1.1.1

  host 1.1.1.1

  NAT (WLAN, WAN) after the automatic termination of wireless - NETWORK PAT dynamic source - 1.1.1.1

  Now we can use the command "packet - trace" to confirm that the NAT works as expected.

  WWW TEST-TRAFFIC

  ASA (config) # packet - trace 12355 1.2.3.4 entry WLAN tcp 10.0.255.100 80

  Phase: 1

  Type: UN - NAT

  Subtype: static

  Result: ALLOW

  Config:

  NAT (WLAN, WAN) static source without WIRE WIRELESS WWW WWW service

  Additional information:

  NAT divert on the output WAN interface

  Untranslate 1.2.3.4/80 to 1.2.3.4/80

  Phase: 2

  Type: IP-OPTIONS

  Subtype:

  Result: ALLOW

  Config:

  Additional information:

  Phase: 3

  Type: NAT

  Subtype:

  Result: ALLOW

  Config:

  NAT (WLAN, WAN) static source without WIRE WIRELESS WWW WWW service

  Additional information:

  Definition of static 10.0.255.100/12355 to 10.0.255.100/12355

  Phase: 4

  Type: HOST-LIMIT

  Subtype:

  Result: ALLOW

  Config:

  Additional information:

  Phase: 5

  Type: NAT

  Subtype: rpf check

  Result: ALLOW

  Config:

  NAT (WLAN, WAN) static source without WIRE WIRELESS WWW WWW service

  Additional information:

  Phase: 6

  Type: USER-STATISTICS

  Subtype: user-statistics

  Result: ALLOW

  Config:

  Additional information:

  Phase: 7

  Type: IP-OPTIONS

  Subtype:

  Result: ALLOW

  Config:

  Additional information:

  Phase: 8

  Type: USER-STATISTICS

  Subtype: user-statistics

  Result: ALLOW

  Config:

  Additional information:

  Phase: 9

  Type: CREATING STREAMS

  Subtype:

  Result: ALLOW

  Config:

  Additional information:

  New workflow created with the 1727146 id, package sent to the next module

  Result:

  input interface: WLAN

  entry status: to the top

  entry-line-status: to the top

  the output interface: WAN

  the status of the output: to the top

  output-line-status: to the top

  Action: allow

  TEST FTP - TRAFFIC

  ASA (config) # packet - trace entry tcp 10.0.255.100 WLAN 12355 1.2.3.4 21

  Phase: 1

  Type:-ROUTE SEARCH

  Subtype: entry

  Result: ALLOW

  Config:

  Additional information:

  in 0.0.0.0 0.0.0.0 WAN

  Phase: 2

  Type: IP-OPTIONS

  Subtype:

  Result: ALLOW

  Config:

  Additional information:

  Phase: 3

  Type: INSPECT

  Subtype: inspect-ftp

  Result: ALLOW

  Config:

  class-map inspection_default

  match default-inspection-traffic

  Policy-map global_policy

  class inspection_default

  inspect the ftp

  global service-policy global_policy

  Additional information:

  Phase: 4

  Type: NAT

  Subtype:

  Result: ALLOW

  Config:

  NAT (WLAN, WAN) after the automatic termination of wireless - NETWORK PAT dynamic source - 1.1.1.1

  Additional information:

  Definition of dynamic 10.0.255.100/12355 to 1.1.1.1/12355

  Phase: 5

  Type: HOST-LIMIT

  Subtype:

  Result: ALLOW

  Config:

  Additional information:

  Phase: 6

  Type: NAT

  Subtype: rpf check

  Result: ALLOW

  Config:

  NAT (WLAN, WAN) after the automatic termination of wireless - NETWORK PAT dynamic source - 1.1.1.1

  Additional information:

  Phase: 7

  Type: USER-STATISTICS

  Subtype: user-statistics

  Result: ALLOW

  Config:

  Additional information:

  Phase: 8

  Type: IP-OPTIONS

  Subtype:

  Result: ALLOW

  Config:

  Additional information:

  Phase: 9

  Type: USER-STATISTICS

  Subtype: user-statistics

  Result: ALLOW

  Config:

  Additional information:

  Phase: 10

  Type: CREATING STREAMS

  Subtype:

  Result: ALLOW

  Config:

  Additional information:

  New workflow created with the 1727154 id, package sent to the next module

  Result:

  input interface: WLAN

  entry status: to the top

  entry-line-status: to the top

  the output interface: WAN

  the status of the output: to the top

  output-line-status: to the top

  Action: allow

  As you can see traffic TCP/80 corresponds to rule on the other. And the FTP used for example corresponds to rule by default PAT as expected.

  If you want to know a little more about the new NAT 8.3 format + you can check a document I created

  https://supportforums.Cisco.com/docs/doc-31116

  Hope this helps you, please mark it as answered in the affirmative or rate of answer.

  Naturally ask more if necessary

  -Jouni

• Adobe Acrobat Reader 9.0 mistake is in conflict with another application.

  Original title: SideBySide errors Win7 on Dell Optiplex 980 (all Intel)
   
  Getting this error since the "day 1".
  Log name: Application

  Source: SideBySide

  Date: 02/06/2013-01:21:37

  Event ID: 80

  Task category: no

  Level: error

  Keywords: Classic

  User: n/a

  Computer: Irwin-PC

  Description:

  Activation context generation failed for "c:\program files (x 86) \Adobe\acrobat 9.0\designer 8.2\FormDesigner.exe". Error in manifest or policy file "" online. A component version required by the application conflicts with another version of the component already active. Contradictory elements are: Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

  The event XML:

   

     

      80

      2

      0

      0 x 80000000000000

     

      41258

      Application

      xxx

     

   

   

      C:\Windows\WinSxS\manifests\amd64_microsoft.Windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest

      C:\Windows\WinSxS\manifests\x86_microsoft.Windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

      c:\Program files (x 86) \Adobe\acrobat 9.0\designer 8.2\FormDesigner.exe

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

     

   

  Technician said this isn't a problem, but it seems to be involved in some problems of Adobe applications and continuously fills my mistakes (not warnings) event viewer. Can we do an action to eliminate these errors?

  Hi Irwin,

  Thanks for the updates.

  I would like to inform you that if all Microsoft services are unchecked, then restore points will be deleted; However, it is perfectly safe to hide Microsoft services. When you check the option Hide all Microsoft Services, while the third-party services are shown.

  I wish to inform you that amd64 has been seen in most of the newspapers of the events of similar problems.

  However, you can try the following steps:

  Step 1: I ask you to execute the following automated troubleshooting and uninstall Adobe Acrobat Reader.

  Solve problems with programs that cannot be installed or uninstalled
  http://support.Microsoft.com/mats/program_install_and_uninstall/

  Step 2: Install the latest Microsoft Visual c++.

  Package redistributable Microsoft Visual C++ 2010 (x 86)
  http://www.Microsoft.com/en-in/Download/details.aspx?ID=5555

  Please let us know the status of the issue.

• Open the ports for the operating system from siebel

  Hello

  I would like to know how can I find all the port associated with Siebel in any environment. I would also like to know whether or not they are listening.

  Thank you

  Abhishek

  Hi Abhishek,

  Please see the following article of knowledge for more information:

  Information about Siebel need Ports. (Doc ID 1629529.1)

  netstat - year gives all ports with the status of those are listening or inactive.

  I hope it helps.

  Best regards

  Chetan

• Problem with VPN client connecting the PIX of IPSec.

  PIX # 17 Sep 14:58:51 [IKEv1 DEBUG]: IP = Y, IKE Peer included IKE fragmentation capability flags: Main Mode: real aggressive Mode: false

  Sep 17 14:58:51 [IKEv1]: IP = Y, landed on tunnel_group connection

  Sep 17 14:58:51 [IKEv1 DEBUG]: Group = X, IP = Y, IKE SA proposal # 1, transform # 13 entry overall IKE acceptable matches # 1

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, IP = Y, the authenticated user (X).

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, IP = Y, mode of transaction attribute not supported received: 5

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, Y = IP, Type of customer: Client Windows NT Version of the Application: 5.0.06.0160

  Sep 17 14:58:58 [IKEv1]: Group = Xe, Username = X, IP = Y, assigned private IP 10.0.1.7 remote user address

  Sep 17 14:58:58 [IKEv1 DEBUG]: Group = X, Username = X, IP = Y, fast Mode resumed treatment, Cert/Trans Exch/RM IDDM

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, IP = Y, PHASE 1 COMPLETED

  Sep 17 14:58:58 [IKEv1]: IP = Y, Keep-alive type for this connection: DPD

  Sep 17 14:58:58 [IKEv1 DEBUG]: Group = X, Username = X, Y = IP, timer to generate a new key to start P1: 6840 seconds.

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, Y = IP, data received in payload ID remote Proxy Host: address 10.0.1.7, protocol 0, Port 0

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, IP = Y, received data IP Proxy local subnet in payload ID: address 0.0.0.0 Mask 0.0.0.0, protocol 0, Port 0

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, IP = Y, his old QM IsRekeyed not found addr

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, Y = IP, remote peer IKE configured crypto card: outside_dyn_map

  Sep 17 14:58:58 [IKEv1 DEBUG]: Group = X, Username = X, Y = IP, IPSec processing SA payload

  Sep 17 14:58:58 [IKEv1 DEBUG]: Group = X, Username = X, Y = IP, IPSec SA proposal # 14, turn # 1 entry overall SA IPSec acceptable matches # 20

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, IP = Y, IKE: asking SPI!

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, Y = IP, IPSec initiator of the substitution of regeneration of the key duration to 2147483 to 7200 seconds

  Sep 17 14:58:58 [IKEv1 DEBUG]: Group = X, Username = X, IP = Y, passing the Id of the Proxy:

  Remote host: 10.0.1.7 Protocol Port 0 0

  Local subnet: 0.0.0.0 mask 0.0.0.0 Protocol Port 0 0

  Sep 17 14:58:58 [IKEv1 DEBUG]: Group = X, Username = X, IP = notification sending answering MACHINE service LIFE of the initiator

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, IP = Y, the security negotiation is complete for the user (slalanne) answering machine, Inbound SPI = 0 x 6

  044adb5, outbound SPI = 0xcd82f95e

  Sep 17 14:58:58 [IKEv1 DEBUG]: Group = X, Username = X, Y = IP, timer to generate a new key to start P2: 6840 seconds.

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, IP = Y, adding static route to the customer's address: 10.0.1.7

  Sep 17 14:58:58 [IKEv1]: Group = X, Username = X, IP = Y, PHASE 2 COMPLETED (msgid = c4d80320)

  PIX # 17 Sep 14:59:40 [IKEv1]: Group = X, Username = X, Y = IP, Connection over for homologous X.  Reason: Peer terminate remote Proxy 10.0.1.7, 0.0.0.0Sep Proxy Local 17 14:59:40 [IKEv1 DEBUG]: Group = X, Username = X, IP = Y, IKE removing SA: 10.0.1.7 Remote Proxy, Proxy Local 0.0.0.0

  Sep 17 14:59:40 [IKEv1]: IP = Y, encrypted packet received with any HIS correspondent, drop

  Then debugging IPSec are also normal.

  Now this user is a disconnect and other clients to connect normally. the former user is trying to connect to the site and here is the difference in debugging:

  Sep 17 14:25:22 [IKEv1]: Group = X, Username = X, Y = IP, tunnel IPSec rejecting: no entry card crypto for remote proxy proxy 10.0.1.8/255.255.255.255/0/0 local 0.0.0.0/0.0.0.0/0/0 on the interface outside
  Sep 17 14:25:22 [IKEv1]: Group = X, Username = X, IP = Y, error QM WSF (P2 struct & 0x2a5fd68, mess id 0x16b59315).
  Sep 17 14:25:22 [IKEv1 DEBUG]: Group = X, Username = X, IP = O, case of mistaken IKE responder QM WSF (struct & 0x2a5fd68) , :
  QM_DONE, EV_ERROR--> QM_BLD_MSG2, EV_NEGO_SA--> QM_BLD_MSG2, EV_IS_REKEY--> QM_BL
  D_MSG2, EV_CONFIRM_SA--> QM_BLD_MSG2, EV_PROC_MSG--> QM_BLD_MSG2, EV_HASH_OK--> QM_
  BLD_MSG2, NullEvent--> QM_BLD_MSG2, EV_COMP_HASH
  Sep 17 14:25:22 [IKEv1]: Group = X, Username = X, IP = Y, peer table correlator withdrawal failed, no match!
  Sep 17 14:25:22 [IKEv1]: IP = Y, encrypted packet received with any HIS correspondent, drop

  Here is the config VPN... and I don't see what the problem is:

  Dynamic crypto map outside_dyn_map 20 match address outside_cryptomap_dyn_20
  Crypto-map dynamic outside_dyn_map 20 the transform-set ESP-DES-MD5 value
  life together - the association of security crypto dynamic-map outside_dyn_map 20 seconds 7200
  map outside_map 65535-isakmp ipsec crypto dynamic outside_dyn_map
  outside_map interface card crypto outside
  ISAKMP crypto identity hostname
  crypto ISAKMP allow outside
  crypto ISAKMP policy 20
  preshared authentication
  the Encryption
  md5 hash
  Group 2
  life 7200
  crypto ISAKMP policy 65535
  preshared authentication
  the Encryption
  sha hash
  Group 2
  life 86400

  outside_cryptomap_dyn_20 list of allowed ip extended access any 10.0.1.0 255.255.255.248

  attributes global-tunnel-group DefaultRAGroup
  authentication-server-group (outside LOCAL)
  Type-X group tunnel ipsec-ra
  tunnel-group X general attributes
  address pool addresses
  authentication-server-group (outside LOCAL)
  Group Policy - by default-X
  tunnel-group X ipsec-attributes
  pre-shared-key *.
  context of prompt hostname

  mask of 10.0.1.6 - 10.0.1.40 IP local pool 255.255.255.0

  Please remove the acl of the dynamic encryption card crypto, it causes odd behavior

  try to use split instead of the acl acl in dynamic crypto map, and let me know how it goes

• Portege R500: external monitor does not work with the Port Replicator Port 2 and DVI

  I have a Portege R500 running Vista with a slim Port Replicator II and digital monitor Viewsonic.
  I connected the monitor to the DVI port on the port replicator and got it to work OK.
  Press fn + F5 would switch between the computer screen and the external monitor.

  Then it stopped working, and I can't make it work at all. F5 recognizes just the laptop screen.

  If I connect an analog display, it is fine, and I can pass between the two screens without difficulty.

  The strangest thing is that, if I reboot when the Portege R500 is docked, the digital monitor begins by displaying the boot sequence, but then the signal is lost as soon as the screen stops the display of the progress (in low resolution) bar.

  I spent an hour on the phone to support Friday, and he made me nowhere.
  They finished by saying that he should never have worked! So what is the DVI port because then?

  Any ideas?

  David

  Connect your monitor directly to your laptop and see if it is recognized and you can go through FN + F5 between the two views.
  If it works, then connect with port replicator, and then try again.

  It's probably best if you reinstall display drivers. Maybe there are new too on the download page.

• Receive "the IP is in conflict with the WAN IP subnet" when changes of LAN

  Hello

  I have the following features:

  ProSafe FVS336Gv3
  Router R6300v2

  The static IP setting for the LAN on the Prosafe is 192.168.1.1/255.255.255.0
  The static IP setting for the router WAN is 192.168.1.101/255.255.255.0
  The static IP setting for the router's local network is 10.9.8.1/255.255.255.0

  The settings of the router LAN, if I try to disable the DHCP server, I get the message:

  The IP address with the IP WAN subnet conflicts. Please enter a different IP address.

  Any ideas?

  Please notify.

  Have a great day,

  Don

  Eventually be a DNS setting on the WAN port on the router.

• Problems with my 4 port Gigabit Security Router with VPN

  OK, I got a wireless router and I have a Web site hosted by 1and1.com and I could connect my fine site. But recently I got the 4 port Gigabit Security Router with VPN and since then I have not been able to connect to it even, I started my own ftp server it always blocks and it will capture everything until she tries to recover the files, then it expires just after a while

  What is the model number of your device? If you have a Web server and an FTP server behind the router, you will need to transfer the ports used by the said request. Ports TCP 80 and TCP 21.

• NAT Ports inaccessible over the site to site VPN

  We have a series of 2900 SRI at HQ and several of Cisco WRVS4400N VPN routers to small branch offices. The branch offices are connected to HQ via IPSec site-to-site. Everything seems to work fine, except users in the box executive offices not access all the services on servers HQ where the port was NAT'd to the outside. For example, we organize Office services remotely via https, port 443 is NAT made appeal to the outside, but users in the branch offices cannot access this port. They receive a time-out error. I tried searching but all I can find is info on crossing IPSec NAT. thank you...

  With this config-NAT, your router ensures that the internal server has to be accessible by the public IP address. You can add a roadmap to your NAT static entry exempt of NAT VPN traffic. Which might look like the following:

  ip nat inside source static tcp 10.0.0.11 443 xxx.xxx.xxx.165 443 route-map SERVER-NAT extendable!ip access-list extended SERVER-NAT-ACL deny ip 10.0.0.0 0.255.255.255 10.0.0.0 0.255.255.255 permit ip any any!route-map SERVER-NAT permit 10 match ip address SERVER-NAT-ACL