Problem of RVS 4000 RDP

Similar Questions

• Slow download speed of RVS 4000

  I use a Cisco RVS 4000 to test a new internet connection of 10 M / 10 M.  I'm having a little problem, the test of speed of PSI (speedtest.cavtel.net).  Download test always gives me 10Mbit/s, maximum for the connection speed, but the download speed is usually about 5.5 Mbps. My ISP has been on site and checked the lines and tested directly, and we determined that if connected directly we can test to complete download speeds, but when the RVS is connected, we can get full speed.

  We tried different cables, reset to factory settings, update firmware, change the port settings and toggling the majority of the other setting on the router. Some settings have a minor effect on the speed of download, but nothing that gets me back up to 10 Mbps.

  I noticed that there seems to be no way to set parameters of speed and trading on the WAN port. Perhaps miss me him, because this seems like a possible culprit.

  Otherwise, the only one I can think of is a guarantee of return to determine if the device is defective.

  Any ideas would be appreciated.

  Hello.

  These products are processed by the Cisco Small Business Support Community.

  * If my post answered your question, please mark it as "acceptable Solution".

  * Do not forget to give a 'congratulations '. Thank you!

• How about a readme for the new signing of RVS - 4000 IPS: 1.42 in firmware 1.3.2

  Hello

  How about a readme for the new Signature IPS 1.42 inside the new firmware to version 1.3.2 RVS-4000?

  Or am I just too fast and it comes out in a bit?

  Thank you

  Bruce

  Bruce,

  You are right.  He left this time by mistake.  We will solve it.  In the meantime, here's what it will be:

  RVS4000/WRVS4400N IPS Signature Release Note

  Version: 1.42 rules Total: 1097

  In this signature, we talked about the exploits/vulnerabilities and applications
  as below:

  Supported P2P application called BitTorrent up to version 5.0.8.
  Supported P2P application named uTorrent up to version 1.7.2.

  Version: 1.41 rules Total: 1098

  In this signature, we talked about the exploits/vulnerabilities and applications
  as below:

  -EXPLOIT the MS video control ActiveX Stack Buffer Overflow
  A buffer overflow vulnerability exists in Microsoft DirectShow.
  The defect is due to the way Microsoft Video ActiveX Control parses image files.
  An attacker can convince the user target to open a malicious web page to exploit
  This vulnerability.

  -EXPLOIT the Injection SQL Oracle database Workspace Manager
  Multiple SQL injection vulnerabilities exist in Oracle database server product.
  The vulnerabilities are due to inadequate sanitation of input parameters
  in the Oracle Workspace Manager component. A remote attacker with user valid
  credentials can exploit these vulnerabilities to inject and execute SQL code
  with lift is SYS or privilegesof WMSYS.

  Supported P2P application named uTorrent up to version 1.7.2.

  Content signature for 1.41
  ========================================================================
  Added new signature:
  1053635 video MS stack buffer overflow EXPLOIT control ActiveX-1
  1053636 video MS stack buffer overflow EXPLOIT control ActiveX-2
  1053632 EXPLOIT Oracle database Workspace Manager SQL Injection-1
  1053633 EXPLOIT Oracle database Workspace Manager-2 SQL Injection
  1053634 EXPLOIT Oracle database Workspace Manager SQL Injection-3

  Updated the signature:
  1051783 P2P Gnutella Connect
  1051212-P2P Gnutella Get file
  1051785 P2P Gnutella UDP PING 2
  1051997 P2P Gnutella Bearshare with UDP file transfer
  1052039 P2P Gnutella OK
  Get Foxy P2P file 1052637

  Signature removed:
  1050521 Worm.Klez.E1 - 1
  1050522 Worm.Klez.E1 - 2
  1050523 Worm.Klez.E1 - 3
  1050524 Worm.Klez.E2 - 1
  1050525 Worm.Klez.E2 - 2
  1050526 ¡v Worm.Klez.E2 3
  1050536 Worm.Blaster.B - 1
  1050537 Worm.Blaster.B - 2
  1050538 Worm.Blaster.B - 3
  1050539 Worm.Blaster.C - 1
  1050540 Worm.Blaster.C - 2
  1050541 Worm.Blaster.C - 3

  Number of rules in each category:
  ========================================================================
  Back/DDoS 51
  Buffer overflow: 241
  Access control: 92
  Scan: 41
  Trojan horse: 62
  Misc: 3
  P2P: 40
  Instant Messaging: 121
  VRU/worm: 410
  Web attacks: 37

  Version: 1.40 rules Total: 1091

  In this signature, we talked about the exploits/vulnerabilities and applications
  as below:

  1053406 FEAT MS IE HTML Embed Tag Stack Buffer Overflow (CVE-2008-4261)
  An error of border during the processing of a too long file name extension specified
  inside a "EMBED" tag can be exploited to cause a stack-based buffer overflow.

  1053421 USE MS IE XML Handling Remote Code Execution (CVE-2008-4844)
  The vulnerability is due to a use-after-free error when composed
  HTML elements are related to the same data source. This can be exploited to
  dereference of a pointer released by a specially designed HTML document memory

  Version 1.38

  In this signature, we addressed the following exploits/vulnerabilities and
  applications:

  1. support for P2P, BitTorrent and eMule applications.

  Version 1.33

  In this signature, we addressed the following exploits/vulnerabilities and
  applications:

  1. support application IM named AIM (http://dashboard.aim.com/aim) until
  version 6.5.

  2. support application IM called MSN (http://get.live.com/messenger) until
  version 8.1.

  3 PcShare is a Trojan tool that can remotely administer an attacked computer.

  4-CVE-2007-3039: the vulnerability is due to an error of limit in the
  Microsoft Message Queuing (MSMQ) service during the treatment of MSMQ messages.
  This can be exploited to cause a buffer overflow by sending specially
  packages designed for the MSMQ service.

  Version 1.32

  In this signature, we addressed the following peer-to-peer applications:

  1. named IM application PURPOSE up to version 6.5 support.
  2. press the request of IM named MSN until version 8.1.

  Version 1.31

  In this signature, we addressed the following peer-to-peer applications:

  1 P2P application called BitTorrent up to version 5.0.8 support.

  2. support the P2P application named uTorrent up to version 1.7.2.

  Version 1.30

  In this version, we have addressed the following vulnerabilities in Microsoft
  applications:

  1 SUBMISSION-24462: dereference of a pointer Null vulnerability exists in some versions
  Microsoft Office.  Remote attackers can trick users into visiting a
  specially designed web page.  The symptom includes a denial of
  condition of service for the process in question.

  2 Microsoft Security Bulletin MS07-027: Microsoft Windows support
  Services NMSA Session Description object ActiveX control does not reach
  restrict access to dangerous methods. This vulnerability could allow
  a remote attacker to execute arbitrary code on an affected system.

  Version 1.29

  In this version, we have addressed the following exploits/vulnerabilities and
  peer-to-peer applications:

  1 Microsoft Security Advisory (935423): there is one based on the stack
  in Microsoft Windows buffer overflow. The vulnerability is due
  for insufficient format validation when handling incorrect ANI
  file cursor or icon. A remote attacker can exploit this
  vulnerability of prompting grace target user to visit a malicious
  Web site by using Internet Explorer. A successful operation would be
  allow the execution of arbitrary code with the privileges of the
  currently logged in.

  2. support a named QQ instant messaging application blocking until the
  2007 Beta1 and Beta2 version.

  Version 1.28

  In this signature, we address the following exploits/vulnerabilities:

  Microsoft Security Bulletin MS07-014: there is a buffer overflow
  vulnerability in Microsoft Word. The vulnerability is created due to
  a flaw in the Table entry of the Section within the structure of Table data flow.
  An attacker could exploit this vulnerability by tricking a user to open
  a designed Word file. Exploitation of the vulnerability may result
  injection and execution of arbitrary code in the security context
  the user target.

  Microsoft Security Bulletin MS07-016: there is an alteration of the memory
  vulnerability in Microsoft Internet Explorer. The flaw is due to a bad
  posting lines of response in the responses from the FTP server. By persuading a user
  to visit a malicious website, an attacker could run arbitrary on code
  the target system with the privileges of the currently logged in user.

  Version 1.26

  In this signature, we addressed the following exploits/vulnerabilities:

  CVE-2006-5559: there is a memory corruption vulnerability in
  the ADODB. Connection ActiveX control in Microsoft Internet Explorer.
  The flaw is due to improper validation of the data provided to the
  Execute method. By persuading target the user to visit a malicious
  Web site, an attacker can cause the application process
  to terminate or possibly divert its flow of execution to arbitrary
  code.

  Version 1.25

  In this signature, we addressed the following exploits/vulnerabilities:

  Microsoft MS06-070 security bulletin: MS Windows 2000 Workstation
  Service (WKSSVC. (DLL) has a remote code execution vulnerability. One
  unauthenticated attacker could exploit this vulnerability to run
  arbitrary code with the privileges of the level system on Windows 2000 and
  Windows XP computers.

  Version 1.24

  In this signature, we addressed the following exploits/vulnerabilities:

  1 Microsoft Data Access Components (MDAC) has a remote code execution
  vulnerability in the RDS object. DataSpace ActiveX control.  A remote attacker
  could create a specially designed and host the malicious file on a
  Web site or send it to the victim through e-mail.  When the file is opened,
  the attacker can run arbitrary code on the victim's system.

  2. control WMI Object Broker ActiveX (WmiScriptUtils.dll) in Microsoft
  Visual Studio 2005 has a vulnerability that could allow a remote
  attacker to execute arbitrary code.

  3 Microsoft Internet Explorer has a type of heap buffer overflow vulnerability.
  A remote attacker could create a malicious web page containing COM objects
  Daxctle.OCX HTML when instantiated as an ActiveX control and the thing the
  victim to open the web page. By this attack, the attacker to execute
  arbitrary code on the victim's browser.

  Version 1.23

  In this version, we have addressed the following exploits/vulnerabilities:

  The vulnerability lies in some of the engines in Microsoft XML core
  Windows. It is the result of the failure of the engine to properly manage the
  bad arguments passed to one of the methods associated with the XML
  purpose of the request.

  Version 1.22

  In this version, we discussed the exploits/vulnerabilities as follows:

  Vagaa is a P2P that supports the network BitTorrent and eDonkey software.
  It can be downloaded from the two network. The software is mainly used in people's Republic of CHINA.
  There are some problems with this software because it didn't follow the official eMule Protocol.
  The question can be referenced on the wiki (http://en.wikipedia.org/wiki/Vagaa).
  Classify us Vagaa as eDonkey2000 program and allow admin users to disable in the user Web interface.

  Version: 1.21

  In this version, we have addressed vulnerabilities exploits as below:

  Microsoft Internet Explorer WebViewFolderIcon has a buffer overflow
  Vulnerability. A remote attacker could create a malicious Web page and
  trick the victim to open. By this attack, the attacker could cause buffer
  Overflow and crash the browser of the victim.

  Version: 1.20

  In this version, we discussed the exploits/vulnerabilities and applications
  as below:

  1 foxy is a P2P application that can search and download music and movies.
  Foxy follows most public Gnutella P2P protocol but still has its own
  signature under certain conditions. After the inclusion of the file Get Foxy P2P
  rule, we can perfectly detect and block the Foxy and it will be detected as Gnutella.
  Foxy can be blocked by deactivating Gnutella.

  2 Microsoft Internet Explorer 6.0 and 6.0SP1 have impaired memory
  vulnerability in the ActiveX component.  A remote attacker can create a
  malicious Web page and trick the victim to open the web page. By this attack.
  the attacker could cause the crash of the browser of the victim or to execute arbitrary code.

  3 Microsoft Internet Explorer has heap buffer overflow vulnerabilities
  Vector Markup Language (VML).  A remote attacker can create a malicious Web site
  page and the thing the victim to open the web page. By this attack, the attacker
  could cause the buffer overflow and execute arbitrary code on the victim's browser.

  Version: 1.19

  In this version, we have added a rule to meet cross-domain redirect
  Microsoft Internet Explorer vulnerability (MS06-042). The vulnerability
  is caused by the inappropriate use of URL redirection by the object.documentElement.outer
  HTML property. A remote attacker could create a malicious web page and
  trick the victim to open the web page. With this attack, the attacker could
  run arbitrary code on the victim's browser and get sensitive information.

  Version: 1.18

  In this version, we have added the 6 rules to facilitate the blocking of QQ, the most
  popular instant Messenger in China. There are several versions of QQ on the
  official download site. Currently, we can detect and block QQ until the
  Version 2006 Sp3 beta 2.

  Version: 1.17

  In this version, we discussed the exploits/vulnerabilities below:

  1. the Server Service in Microsoft Windows 2000 SP4, XP SP1 and SP2, server
  2003 and SP1 have a buffer overflow vulnerability. A remote attacker
  could exploit a server response designed to cause the buffer overflow and run
  arbitrary code on the victim's system.

  2 hyperlink Object Library in Microsoft Windows 2000 SP4, XP SP1 and SP2,
  Server 2003 and SP1 have a code execution vulnerability. A remote control
  attacker could send a malicious Office document containing a
  specially designed hyperlink to a victim in an email or host the file on
  a web site. When the operator successfully this vulnerability, a remote control
  attacker to execute arbitrary code with the privileges of the victim.

  3 Microsoft Word XP and Word 2003 have a remote code execution vulnerability.
  A remote attacker could host a DOC file on a Web site. If successfully
  exploiting this vulnerability, remote attacker could execute arbitrary code
  with the privilege of the victim.

  Version: 1.16

  In this version, we discussed the exploits/vulnerabilities below:

  1 Microsoft Excel 2000, XP and 2003 Excel have a remote code execution
  vulnerability, due to an error in Excel when incorrect URL handling
  channels. A remote attacker could send a malicious .xls file of a victim
  in an email or host the file on a web site. When the operator successfully this
  vulnerability, a remote attacker to execute arbitrary code with the victim
  privileges.

  2 hyperlink Object Library in Microsoft Windows 2000 SP4, XP SP1 and SP2,
  Server 2003 and SP1 have a code execution vulnerability. A remote control
  attacker could send a malicious Office document containing a
  specially designed hyperlink to a victim in an email or host the file on
  a web site. When the operator successfully this vulnerability, a remote control
  attacker to execute arbitrary code with the privileges of the victim.

  3 Microsoft Windows XP/NT/2000/2003 have a denial of service vulnerability.
  A remote attacker can send a malicious SMB packet causes the victim computers
  Crash.

• Mgmt of RVS 4000 HTTP interface blocks Port 80 @ & DHCP stops working

  It's the RVS 4000

  Firmaware version 1.3.3.5

  STARS Chipset 9202

  64 MB DRAM

  8MB Flash

  BACK, Block WAN Rq, mgmt remote all OFF

  IPSec Tunnel that none used

  Internet connection is DHCP

  LAN is set to DHCP with multiple defined static devices

  DMZ is dsabled

  Functionining as a gateway

  Time is defined via NTP & NRC

  IPv4 only

  Everything is pretty much dedault with the exception of the QoS

  Trust mode is the Port, the value 4, 4, 4, 1

  (Port 4 has a Linksys ATA connected to VOIP services)

  SIP Port redirection is enabled for 5060

  **********************************************

  ¸*********************************************

  Every day or so the router becomes immune to the mgmt HTTP interface, as well as offers are no longer the DHCP services.

  When this happens the only cure is to reboot the power.

  Everthing comes back on line very well, but NEWSPAPERS are initilaized so not given to understand what is happening.

  My next step is setuo a syslog server and have copied newspapers.

  Anyone see this kind of behavior before?

  Any ideas?

  Thank you

  dalexop wrote:

  It's the RVS 4000

  Firmaware version 1.3.3.5

  STARS Chipset 9202

  64 MB DRAM

  8MB Flash

  BACK, Block WAN Rq, mgmt remote all OFF

  IPSec Tunnel that none used

  Internet connection is DHCP

  LAN is set to DHCP with multiple defined static devices

  DMZ is dsabled

  Functionining as a gateway

  Time is defined via NTP & NRC

  IPv4 only

  Everything is pretty much dedault with the exception of the QoS

  Trust mode is the Port, the value 4, 4, 4, 1

  (Port 4 has a Linksys ATA connected to VOIP services)

  SIP Port redirection is enabled for 5060

  **********************************************

  ¸*********************************************

  Every day or so the router becomes immune to the mgmt HTTP interface, as well as offers are no longer the DHCP services.

  When this happens the only cure is to reboot the power.

  Everthing comes back on line very well, but NEWSPAPERS are initilaized so not given to understand what is happening.

  My next step is setuo a syslog server and have copied newspapers.

  Anyone see this kind of behavior before?

  Any ideas?

  Thank you

  Hi dalexop,

  All new discussions of small business (which includes the model of your router) migrated to the Cisco Small Business Support Community. All small businesses existing discussions have been archived here for reference.  We made these changes to better serve all customers of Cisco now and in the future.

  Visit the Cisco Small Business Support Community Home Page created specifically for Linksys and Linksys by Cisco community members.

  Thank you!

• 3 RVS 4000 with VPN connection

  Hello

  I want to connect in a triangle 3 RVS 4000 router with VPN

  I configured 3 routers, which can connect to the Internet. Each of them are configured as the gateway.

  I created 2 tunnels on each router. But the vpn connection cannot be established.

  Here is the configuration of ROUTER1 another are configured in the same way, only the remote group configuration is different

  What I also open some ports for VPN, if yes which and were

  Thanks fpr your help and your response

  HP. Meyer

  Hi hanspetermeyer,

  Thank you for posting. You don't need to open all the ports for VPN. I noticed that your screenshot shows two routers have a common LAN subnet of 192.168.100.x. You will need a different local subnet for each router:

  1. 1 router: 192.168.1.1
  2. Router 2: 192.168.2.1
  3. Router 3: 192.168.3.1

  I think that you will find the tunnels only connect once you change the LAN IP of the routers so that they are on different subnets. Please let us know if it works.

• I have problems with the remote (RDP) desktop sessions, I can't get the session to go full screen after being reduced to a minimum.

  I can't get the session go full screen after be kept to a minimum.

  I did the following things to make this work:

  1. Updated the operating system
  2. Check my RDP options to make sure that it is set to mode full screen
  3. I tried 3 different computers that it happens on both of them have every two Windows 7 Professional and both are 64-bit (XP Machines have that happen)

  Details:

  I connect to my company TS servers and application servers (all running 2003 OS). When I reduce the view full screen, via the connection bar, I go back to enlarge the window and I get a window view not a view full-screen. I've only been able to reproduce this on two machines and tested a total of 5 machines Windows 7 Pro. I also tested on a XP Machine and impossible to duplicate. The XP and 2 of 7 machines (who both question) are on a connection, the others are all on separate connections in separate locations. Is this a bug in the program or is their environment I'm missing? Still, full screen has been selected in the display area.

  Thank you

  "There is a kind of"bug"with some resolution which could refuse to full screen.
  the only way to force full-screen mode is by pressing Ctrl + Alt + break.

  Remote Desktop does not return to full screen
  http://social.technet.Microsoft.com/forums/en-us/w7itprogeneral/thread/48d6cb3a-C743-404F-8411-6cedbb858c2c

  http://www.Google.com.au/search?q=remote+desktop+fullscreen+%22windows+7%22&SourceID=IE7&RLS=com.Microsoft:-to the: IE-address & ie = & oe = & redir_esc = & ei = oFmCTYufNIeKvQO-nNjHCA

  See if your problem is also related to video drivers?  He has other suggestions in the links, the first is XP, but the last one is Windows 7.

  "Hey Alshrim I thank you for your help. I've just updated my video driver and the remote connection started working: Dstrange and interesting! "Thank the people who helped me.

  Remote Desktop is not connecting
  http://www.Tek-Tips.com/viewthread.cfm?QID=1591106

  Issue RDP
  http://www.Tek-Tips.com/viewthread.cfm?QID=1593827

• [RVS 4000] Secure setup ACL

  I want to do an ACL that will allow traffic minum. For example, only; HTTP, DNS, SSH, FTP, TeamSpeak, Torrents.

  This doesn't seem to be possible with the ACL on my Cisco Small Business RVS4000, I can only choose predifined parameters.

  I can't configure my own source and destination IP and port. If it is not very useful.

  I may be wrong, that's why I posted this threat. Is there a way to allow a minimum circulation with the ACL?

  When I don't allow HTTP, DNS, etc. and deny the rest I can't use my TeamSpeak and Torrents, MSN more.

  That's what I have now and that works, but it is not safe... Check the screenshot below. Here's my configuration of iptables, an ACL like this would be my idea of secure

  

  #! / bin/sh
  IPTABLES = / sbin/iptables
  MODPROBE = / sbin/modprobe
  INT_NET=192.168.1.32/28
  LO=127.0.0.0/8

  #####################################################################
  # Flush existing rules and set the channel drop strategy #.
  #####################################################################
  Echo "[+] existing Flushing iptables rules...". »
  $IPTABLES F
  Filter $IPTABLES f t
  $IPTABLES X
  $IPTABLES PEI ENTRY WATERFALL
  $IPTABLES P - OUTPUT DROP
  $IPTABLES PEI BEFORE DROP

  ################################
  # The KERNEL changes #.
  ################################
  Echo "[+] implementation of the KERNEL changes... »
  Ip_conntrack $MODPROBE
  # Disable IP routing
  echo 0 >/proc/sys/net/ipv4/ip_forward
  # Enable IP spoofing protection
  I'm in/proc/sys/net/ipv4/conf / * / rp_filter; echo 1 > $i; fact
  # SYN flood attack protection
  Echo 1 >/proc/sys/net/ipv4/tcp_syncookies

  #######################
  # String input #.
  #######################
  Echo '[+] string of establishment of ENTRY... »
  # Follow the rules of State
  $IPTABLES - a INPUT-m state--State INVALID-j LOG - log-prefix 'DROP INVALID»--log-ip-options--log-tcp-options ".
  $IPTABLES - a INPUT-m state--State INVALID-j DROP
  $IPTABLES - a INPUT-m state - state ESTABLISHED, RELATED-j ACCEPT
  # ACCEPT the terms allowing connections in
  # Loopback
  $IPTABLES - an ENTRY-i lo s $LO d $LO m state - State NEW-j ACCEPTS
  # SSH
  $IPTABLES - a PEI tcp - dport 22 - syn-m state - State NEW of INPUT-m recent - set - name SSH
  $IPTABLES - a INPUT Pei tcp - dport 22 - syn m state - recent update - state NEW - m - 120 seconds - hitcount 4 - rttl - name SSH-j DROP
  $IPTABLES - a INPUT Pei tcp - dport 22 - syn-m state - State NEW-j ACCEPT
  # Anti - spoofing rules
  $IPTABLES - ENTRY d $INT_NET-j LOG - log-prefix 'SPOOFED ' PACKAGE
  $IPTABLES - d $INT_NET-j DROP ENTRY
  # Rule of JOURNAL of default ENTRIES
  $IPTABLES - AN ENTRY! -i lo-j JOURNAL - log-prefix "»--log-ip-options--log-tcp-options DROP.

  ########################
  # OUTPUT string #.
  ########################
  Echo '[+] Setup OUTPUT string.... ' »
  # Follow the rules of State
  $IPTABLES - an OUTPUT-m state--State INVALID-j LOG - log-prefix 'DROP INVALID»--log-ip-options--log-tcp-options ".
  $IPTABLES - an OUTPUT-m state--State INVALID-j DROP
  $IPTABLES - an OUTPUT-m state - state ESTABLISHED, RELATED-j ACCEPT
  # ACCEPT the terms allowing the connections on
  # Loopback
  $IPTABLES - an OUTPUT o lo s $LO d $LO m state - state NEW-j ACCEPT
  # SSH
  $IPTABLES - OUTPUT Pei tcp - dport 22 - syn-m state - State NEW-j ACCEPT
  # Whois
  $IPTABLES - OUTPUT Pei tcp - dport 43 - syn-m state - State NEW-j ACCEPT
  # DNS
  $IPTABLES - an OUTPUT Pei udp--dport 53 - m state - State NEW-j ACCEPT
  # HTTP
  $IPTABLES - OUTPUT Pei tcp - dport 80 - syn-m state - State NEW-j ACCEPT
  # NTP
  $IPTABLES - an OUTPUT Pei udp--dport 123 - m state - State NEW-j ACCEPT
  # HTTPS
  $IPTABLES - OUTPUT Pei tcp - dport 443 - syn-m state - State NEW-j ACCEPT
  # MSN
  $IPTABLES - OUTPUT Pei tcp - dport 1863 - syn-m state - State NEW-j ACCEPT
  # RWhois
  $IPTABLES - a tcp - dport 4321 Pei - OUTPUT syn-m state - State NEW-j ACCEPT
  # Google Talk
  $IPTABLES - a tcp - dport 5222 Pei - OUTPUT syn-m state - State NEW-j ACCEPT
  # KTorrent
  $IPTABLES - OUTPUT Pei tcp - dport 6881 - syn-m state - State NEW-j ACCEPT
  $IPTABLES - Pei udp--dport 6881 OUTPUT - m state - State NEW-j ACCEPT
  $IPTABLES - a tcp - dport 4444 Pei - OUTPUT syn-m state - State NEW-j ACCEPT
  $IPTABLES - Pei udp--dport 4444 OUTPUT - m state - State NEW-j ACCEPT
  # IRC
  #$IPTABLES - a tcp - dport 6667 Pei OUTPUT - m state - State NEW-j ACCEPT
  # Teamspeak voice
  $IPTABLES - Pei udp--dport 9987 OUTPUT - m state - State NEW-j ACCEPT
  # Teamspeak queries
  $IPTABLES - OUTPUT Pei tcp - dport 10011 - syn-m state - State NEW-j ACCEPT
  # Update Teamspeak Server
  #$IPTABLES - Pei udp--dport 17384 OUTPUT - m state - State NEW-j ACCEPT
  # Teamspeak Filetransfer
  $IPTABLES - OUTPUT Pei tcp - dport 30033 - syn-m state - State NEW-j ACCEPT
  # Ping
  $IPTABLES - OUTPUT s $INT_NET Pei, - icmp type icmp echo-request - j ACCEPT
  # Default OUTPUT NATURAL logarithm rule
  $IPTABLES - AN OUTPUT! o lo-j JOURNAL - log-prefix "»--log-ip-options--log-tcp-options DROP.

  #########################
  # BEFORE string #.
  #########################
  Echo '[+] string setting on the FRONT.... ' »
  # Follow the rules of State
  $IPTABLES - a m state--State INVALID-j LOG - log-prefix 'DROP INVALID»--log-ip-options--log-tcp-options ".
  $IPTABLES - a State in ADVANCE - m - State INVALID-j DROP
  $IPTABLES - a m state - state ESTABLISHED, RELATED-j ACCEPT
  # Anti - spoofing rules
  $IPTABLES - a BEFORE d $INT_NET-j LOG - log-prefix 'SPOOFED ' PACKAGE
  $IPTABLES - a BEFORE d $INT_NET-j DROP
  # Default JOURNAL FRONT rule
  $IPTABLES - A FRONT! -i lo-j JOURNAL - log-prefix "»--log-ip-options--log-tcp-options DROP.

  Once added to the table of service management, personal service should be available for a new ACL to reference. If the router does not in this way, you can call the Small Business Support Center to open a bug report, if the problem can be solved.

• Can not download the latest firmware for RVS 4000

  I tried to download the latest firmware for a few weeks.  Download simply told to leave, and then times out after a few minutes.  The download page shows that 1.2.10 version was published on 02/09/2008 and I can download the information/notes very well.

  Probble because it is on an FTP server and the RVS4000 cannot FTP at all.  Once I got to spend 1.2 FTP now works fine. I had to download it from my office, rather than at home.  I must say, now FTP works fine.  They did a really great job on this version of the firmware.

• RVS 4000

  I would like to block the IP numbers.

  When I tried with a festive router walked french right there!

  Does anyone have experience with this?

  Paddy

  Hi Patrick,

  The firewall should block inbound traffic by default, unless a port is opened to allow certain traffic. All outbound traffic is allowed by default. You have created a rule to block outbound traffic to a specific IP address. It almost looks like you have a program on the PC that is trying to access the specified site. (virus?) Because you have blocked access to this IP address, the 'programme' must be prevented from reaching the specified IP address. Personally, I like to run a firewall like Zone Alarm on my PC because it blocks the default outbound traffic and you can decide what traffic is allowed from this PC.

• RDP problem :)

  Like most RDP problems, this one is very interesting.

  I have a Server Windows 2008 R2 have no problem RDPing to.  It is functional for 2 years...

  Come to find someone I work with is unable to RDP to it.  Clearly, there seems to be a problem on his workstation, but I am unable to find a rhyme or reason.

  Facts:

  Problem workstation, win 7, can RDP to any other server in the environment.

  Workstation problem using the latest version of the RDP client.

  I can RDP to the workstation server problem (another sense) issue.

  I created a new profile on the position of the problem and tried to RDP without credentials saved... didn't work.

  Any profile on the position of the problem that I use, I can always telnet to the server on 3389

  Yes, it's listening on 3389 since I can get it from other machines

  I am unable to find a log file referring to any kind of problem (not really how to for debugging)

  While I'm trying to connect, do a netstat - ano shows a connection on the workstation to the server problem

  I ping the server by name and the ip address of the workstation problem

  I'll probably make a capture of packets at both ends, the problem is the server is the production and work station is heavily used throughout the day.

  any ideas?

  Hello

  Depending on your answer, your computer is connected to a domain network that includes various policies that govern your system and can affect the basic operation of a stand-alone system. So, I suggest you to republish your query on the TechNet forum for best expertise on this issue.

  TechNet Forum

  http://social.technet.Microsoft.com/forums/en-us/home?category=w7itpro

  All the best!

• Time synchronization problem = > there are currently no server to connect to the service connection request

  I see the following error when you run the harness; It seems to relate to the logging in vCenter.

  20120302 14:12:21	VMmark2: Verifying time synchronization Client
  20120302 14:12:21	Tile 0: Listen to Client 1330726341: the customer client0 time: 1330726341: TimeErrors: 0: Clock Skew 0
  20120302 14:12:23	Stafcmd process: vCServer: audit VXGLE2VMVC01. VXGLE2. VTG. VCE.COM synchronization time failed start/finish. Gave: RC = 10002, STAFResult = {'files list': [{"staf-map-class-name": ' STAF/Service/process/ReturnFileInfo', 'data': ' System Error 1311 has occurred.\r\n\r\nthere currently no login server available to process the logon request is. \r\n\r\n', 'rc': '0'}], 'key': None, "staf-map-class-name": 'STAF, Service, process, CompletionInfo', 'rc': '2'}
  20120302 14:12:23	Stafcmd process: vCServer: audit VXGLE2VMVC01. VXGLE2. VTG. VCE.COM synchronization time is also returned: STAFResultContext. User display job log
  20120302 14:12:23	Error! [Clients or vCServer out of Sync:]

  What is the cause and how can I solve this problem? I can RDP of the Client to the server vCenter (VXGLE2VMVC01. VXGLE2. VTG. VCE.COM). I can also staf ping virtual machines from the privileged client. I lilies on the cached credentials can cause this kind of problem in a Windows environment, but I don't know if it is applicable, or something else.

  I carried this tile over an another Vblock and have worked in recent weeks to make it work. She was running nearly on the other Vblock; I got a mail server problem to solve... but he could run everything.

  Thank you!

  Like James, I'm really not versed enough on AD to determine if the problem is there.

  Here as a test script that should help you to try out different options (credentials, ip, etc.) outside of the bundle, so you can speed up the trials.  I put it so its exactly like the VMMARK2.config that you sent, but it should be pretty easy for you to modify as needed.  Do not forget to leave orders STAF and run it from a shell.  Maybe a few different iterations will shed light on the problem.

• Maximum bandwidth RVS4000

  I just installed Comcast Ultra and I am able to get above 40 MB download speed when I connect a PC directly to the cable modem.  When I used my netgear router speed fell to 10 MB, I'm looking at a new router.  The netger is limited to 10 MB due to the WAN port.  I bought a RVS 4000 and I can't seem to get more than 19 MB to download.  Anyone know what the maximum download speed is for the RVS4000?  It cannot be the Mb 1000 light enabled Internet WAN port.  I also tried a Dlink DGL-4500, and he was also able to sustanin more than 40 MB.  I thought the RVS4000 was supposed to be a high range of home router.

  -Mitch

  It is a known problem with the RVS4000.  Most users reported a top speed "LAN WAN" of 15 to 18 Mbps.  Speed increases of 20% to 30% if you want disable the IPS feature.

  This website claims that they can measure WAN routers LAN speed:

  http://www.SmallNetBuilder.com/component/option, com_chart/Itemid, 189.

• Router-on-a-stick with RVS4000

  Hi all

  I intend to reshape our network topology and the creation of at least three VLANs using a router-on-a-stick of the installation type. We have two switches Cisco Small Business sg200-50 and a small RVS 4000 router business. I haven't implemented the configurations of router-on-a-stick in IOS, but I was unable to figure out if it is possible to do with small business of operating systems on the router and switches, we have. Does anyone have an experience with this? It is even possible with the equipment of small businesses?

  Sorry if this question is already answered elsewhere on the forums; I searched around, but can't find anything.

  See you soon,.

  Curtis

  Hi Curtis,.

  Without having the RVS4000 in front of me, it looks like you can. I suppose that you have several VLANs on your SG200 and want to route between them as the SG200 is only a layer 2 switch. You can connect the RVS 4000 via trunk on the switch and the router port (its in L2 Switch-> vlan configuration of the port on the rvs4000) and add each vlan of the trunk (under L2 switch-> belonging to a vlan on the rvs). Please note that the RVS4000 is limited to 4 virtual local networks, including the vlan by default. I think that the router will automatically create the static routes appropriate when you create them VLAN (vlan create a L2 Switch->). The default value on the RVS4000 is for intervlan routing be enabled under Setup-> routing advanced but double check if you encounter any problems. Also, check the routing table and add static routes as needed.

  You can also switch a switch to a SG300, which is a layer 3 switch.

  Best,

  David

  Do not forget to note resonses useful and identify the right answers.

• Acer Veriton N2620G/disconnect keyboard issue

  We set up recently a few new Acer Veriton N2620G thin clients in our call center.  After you have configured an ICA connection, we discovered that if a user presses NumLock and Caps Lock, it disconnects the session... This can happen at any time... login screen, after that they were recorded in during some time... at any time.  We are able to reproduce this on all of our new Acer Veriton N2620G thin clients.  All our thin clients from Wyse existing work perfectly.  We used existing keyboards, we used the keyboards that accompanies the new Acer... same problem.  We configure RDP connections as a test and these function normally... they do NOT disconnect.

  I chatted with the support of DeTOS (OS on the thin client) and their level 1 is zero help.  They tried to transfer me to level 2, but I received a message that they are not open at this time...

  Light client info below:

  Acer Veriton N2620G

  BIOS version 2.15.1229

  Operating system: DeTOS 7.2.2 20130702

  Any help would be greatly appreciated.

  -Brian

  For the record, it was a problem with the version of Citrix ICA Receiver.  Assistance provided an update to the ICA client and he resovled question.

• Remote Desktop connects then disconnects

  Hello

  We have a Terminal Server 2008 license. Customers are XP/2003/Vista. We are facing a problem of disconnection intermittent rdp. Remote Desktop connects, disconnects immediately and automatically connects again. Does ina lines, sometimes the connection continues and was it disconencts again.

  Hi VenukaTiku,
   

  Your question of Windows is more complex than what is generally answered in the Microsoft Answers forums as it is related to connect to the server. Appropriate in instances of Windows Server.

  Please post your question in the Forums of Windows Server.