Router ignores the policies configured for VPN

Similar Questions

• Can the NAT of ASA configuration for vpn local pool

  We have a group of tunnel remote ipsec, clients address pool use 172.18.33.0/24 which setup from command "ip local pool. The remote cliens must use full ipsec tunnel.

  Because of IP overlap or route number, we would like to NAT this local basin of 172.18.33.0 to 192.168.3.0 subnet when vpn users access certain servers or subnet via external interface of the ASA.  I have nat mapping address command from an interface to another interface of Armi. The pool local vpn is not behind any physical interface of the ASA. My question is can ASA policy NAT configuration for vpn local pool.  If so, how to set up this NAT.

  Thank you

  Haiying

  Elijah,

  NAT_VPNClients ip 172.18.33.0 access list allow 255.255.255.0 10.1.1.0 255.255.255.0

  public static 192.168.33.0 (external, outside) - NAT_VPNClients access list

  The above configuration will be NAT 172.18.33.0/24 to 192.168.33.0/24 when you go to 10.1.1.0/24 (assuming that 10.1.1.0/24 is your subnet of servers).

  To allow the ASA to redirect rewritten traffic the same interface in which he receive, you must also order:

  permit same-security-traffic intra-interface

  Federico.

• LAPN300 - the best configuration for 3 access points, while using the same SSID

  Hi all

  What is the best configuration for 3 x LAPN300 located in various places around my house of 3 floors, access points if I want just one SSID?

  I did some initial research which suggests that I can use the same SSID on all three, as long as they are on different channels. 1, 6 and 11 for example. In theory, then, as I wander around the House the client machine must auto swap to the AP with the signal stronger.

  What do you think? What is the best way or do, or could suggest you something else?

  As an aside... If I decided to create a second SSID for the guests at home, I would also want to add wireless isolation to this SSID. How would that be managing the DHCP server on the local network? How would be asked to connect to the SSID has never get an IP if they have been isolated from other clients on the local network?  Besides, how they see the router? The ANNUAL lets you specify exceptions to this isolation for this feature?  Alternatively, as I suspect, is the right isolation feature isolate them from other WLAN, not the LAN clients customers?

  I did some testing and configuration of the AP with the same SSID and security will do what you want. Don't worry about setting the channel because the auto channel setting works with these devices and automatically adjusts the spacing between the appropriate channels.

  Recommendation of the VPN_user is what you need if you want to isolate the SSID comments from the rest of your network clients.

  Isolation of SSID of the AP will guard only wireless devices to communicate with each other on the same SSID on which it is enabled.

• How I increase and maintain the police increased for an another ikons/websites?

  If I swing fonts in an ikon the police for another ikons remains low. It is necessary to maintain the size of the fonts for all client icons.

  It is on the fonts in the UI (the toolbar area) or on web pages?

  You can use an extension to set a page zoom and the size of the default font on the web pages.

  • Default FullZoom Level: https://addons.mozilla.org/firefox/addon/default-fullzoom-level/
  • NoSquint: https://addons.mozilla.org/firefox/addon/nosquint/

• How to set the police page for a reason that my page is showing at 16 pxl and im half blind. I need resized.

  somehow, the police of the page has changed and it is wayyy too small. I just need to know how to go and resize pixels for the page appears just or normal rental.

  You can use an extension to set a page zoom and the size of the default font on the web pages.

  • NoSquint: https://addons.mozilla.org/firefox/addon/nosquint/
  • Default FullZoom Level: https://addons.mozilla.org/firefox/addon/default-fullzoom-level/

• How to make the Apache configuration for two different areas

  Hello
  
  I was trying just a few clustering on weblogic workshop. I was facing a problem... Here's the scenario:
  
  I have two clusters:
  
  CLUSTER1: 3 managed servers (server1, server2, serveur3)
  Cluster2: 2managed servers (server4, Server5)
  
  I have two examples of applications I have made on these two clusters i.e on cluster1 app1 and app2 on cluster2.
  
  These two applications are deployed all as I am able to open these browser applications by calling the individual run as server port: http://localhost:7003 / app1.
  
  Now, I have installed an apache server on my laptop and configured the http.conf file.
  
  
  Question: I am not able to call the application of apache. If there is only a single cluster then it works very well and for an application two that a single cluster (application) only works too which port is set in the last.
  
  Here are the contents of my httpd.conf file:
  
  #
  # This is the main Apache HTTP server configuration file. It contains the
  configuration directives # that give the server its instructions.
  # See < URL: http://httpd.apache.org/docs/2.2 > for more information.
  # See especially
  # < URL: http://httpd.apache.org/docs/2.2/mod/directives.html >
  # for an analysis of each configuration directive.
  #
  # Do NOT simply read the instructions here without understanding
  # what they do. They are there only as advice or reminders. If you do not know
  # consult the online documentation. You have been warned.
  #
  # Configuration and logfile names: If the file names that you specify for a lot
  number of files in server control begin by "/" (or "drive: / 'for Win32 '), the
  # server uses this explicit path. If the file names do not start
  # with "/", the value of ServerRoot directive is preceded by - so "logs/foo.log.
  # with ServerRoot set to "C:/Program Files/Apache Software Foundation/Apache2. 2' will be interpreted by the
  # Server as "C:/Program Files/Apache Software Foundation/Apache2.2/logs/foo.log".
  #
  # NOTE: Where file names are specified, you must use forward slashes
  # instead of backslashes (e.g. "c:/apache" instead of "c:\apache").
  # If a drive letter is omitted, the drive on which httpd.exe is located
  # will be used by default. It is recommended that you always provide
  # an explicit drive letter in absolute paths to avoid confusion.
  
  #
  # ServerRoot: The top of the directory under which the server tree
  # configuration, error and the log files are kept.
  #
  # Do not add a bar slash at the end of the directory path. If you point
  # ServerRoot to non-local disk, remember to point the LockFile directive
  # to a local disk. If you want to share the same multiple ServerRoot
  demons of # httpd, you will need to change at least the LockFile and PidFile.
  #
  ServerRoot "C:/Program Files/Apache Software Foundation/Apache2. 2. "
  
  #
  # Listen: Allows you to bind Apache to specific IP addresses and/or
  ports #, instead of the default value. See also the < VirtualHost >
  directive #.
  #
  # Change this to listen on specific IP addresses below for
  # prevent Apache glomming on all related IP addresses.
  #
  #Listen 12.34.56.78:80
  Listen 80
  
  #
  # Dynamic Shared Object (DSO) Support
  #
  # To be able to use the features of a module that was built as a DSO you
  # duty place corresponding 'LoadModule' lines at this location until the
  # the directives that it contained are actually available before their use.
  # Modules statically compiled (those listed by "httpd-l") is not necessary
  # to be responsible here.
  #
  # Example:
  # LoadModule foo_module modules/mod_foo.so
  #
  LoadModule modules/mod_actions.so actions_module
  LoadModule alias_module modules/mod_alias.so
  LoadModule modules/mod_asis.so asis_module
  LoadModule auth_basic_module modules/mod_auth_basic.so
  #LoadModule auth_digest_module modules/mod_auth_digest.so
  #LoadModule authn_alias_module modules/mod_authn_alias.so
  #LoadModule authn_anon_module modules/mod_authn_anon.so
  #LoadModule authn_dbd_module modules/mod_authn_dbd.so
  #LoadModule authn_dbm_module modules/mod_authn_dbm.so
  LoadModule modules/mod_authn_default.so authn_default_module
  LoadModule authn_file_module modules/mod_authn_file.so
  #LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
  #LoadModule authz_dbm_module modules/mod_authz_dbm.so
  LoadModule modules/mod_authz_default.so authz_default_module
  LoadModule modules/mod_authz_groupfile.so authz_groupfile_module
  LoadModule modules/mod_authz_host.so authz_host_module
  #LoadModule authz_owner_module modules/mod_authz_owner.so
  LoadModule modules/mod_authz_user.so authz_user_module
  LoadModule autoindex_module modules/mod_autoindex.so
  #LoadModule cache_module modules/mod_cache.so
  #LoadModule cern_meta_module modules/mod_cern_meta.so
  LoadModule modules/mod_cgi.so cgi_module
  #LoadModule charset_lite_module modules/mod_charset_lite.so
  #LoadModule dav_module modules/mod_dav.so
  #LoadModule dav_fs_module modules/mod_dav_fs.so
  #LoadModule dav_lock_module modules/mod_dav_lock.so
  #LoadModule dbd_module modules/mod_dbd.so
  Modules/mod_deflate.so deflate_module #LoadModule
  LoadModule modules/mod_dir.so dir_module
  #LoadModule disk_cache_module modules/mod_disk_cache.so
  #LoadModule dumpio_module modules/mod_dumpio.so
  LoadModule env_module modules/mod_env.so
  #LoadModule modules/mod_expires.so expires_module
  #LoadModule ext_filter_module modules/mod_ext_filter.so
  #LoadModule file_cache_module modules/mod_file_cache.so
  #LoadModule filter_module modules/mod_filter.so
  #LoadModule modules/mod_headers.so headers_module
  #LoadModule ident_module modules/mod_ident.so
  #LoadModule imagemap_module modules/mod_imagemap.so
  LoadModule modules/mod_include.so include_module
  #LoadModule info_module modules/mod_info.so
  LoadModule modules/mod_isapi.so isapi_module
  #LoadModule ldap_module modules/mod_ldap.so
  #LoadModule logio_module modules/mod_logio.so
  LoadModule log_config_module modules/mod_log_config.so
  #LoadModule log_forensic_module modules/mod_log_forensic.so
  #LoadModule mem_cache_module modules/mod_mem_cache.so
  LoadModule mime_module modules/mod_mime.so
  #LoadModule mime_magic_module modules/mod_mime_magic.so
  LoadModule negotiation_module modules/mod_negotiation.so
  #LoadModule modules/mod_proxy.so proxy_module
  #LoadModule proxy_ajp_module modules/mod_proxy_ajp.so
  Proxy_balancer_module modules/mod_proxy_balancer.so #LoadModule
  Modules/mod_proxy_connect.so proxy_connect_module #LoadModule
  Proxy_ftp_module modules/mod_proxy_ftp.so #LoadModule
  Modules/mod_proxy_http.so proxy_http_module #LoadModule
  #LoadModule proxy_scgi_module modules/mod_proxy_scgi.so
  #LoadModule reqtimeout_module modules/mod_reqtimeout.so
  #LoadModule rewrite_module modules/mod_rewrite.so
  LoadModule setenvif_module modules/mod_setenvif.so
  Modules/mod_speling.so speling_module #LoadModule
  Modules/mod_ssl.so ssl_module #LoadModule
  #LoadModule modules/mod_status.so status_module
  #LoadModule substitute_module modules/mod_substitute.so
  #LoadModule unique_id_module modules/mod_unique_id.so
  #LoadModule userdir_module modules/mod_userdir.so
  #LoadModule usertrack_module modules/mod_usertrack.so
  #LoadModule version_module modules/mod_version.so
  #LoadModule vhost_alias_module modules/mod_vhost_alias.so
  LoadModule modules/mod_wl.so weblogic_module
  
  
  
  * < IfModule mod_weblogic.c > *.
  WebLogicCluster 127.0.0.1:7005, 127.0.0.1:7007, 127.0.0.1:7003, 127.0.0.1:7103, 127.0.0.1:7104
  MatchExpression /app1
  * < / IfModule > *.
  * < location /weblogic > *.
  SetHandler weblogic-Manager
  WebLogicCluster 127.0.0.1:7003, 127.0.0.1:7005, 127.0.0.1:7007, 127.0.0.1:7103, 127.0.0.1:7104
  DebugConfigInfo WE
  PathTrim /weblogic
  * < / location >. *
  
  * < IfModule mod_weblogic.c > *.
  WebLogicCluster 127.0.0.1:7003, 127.0.0.1:7005, 127.0.0.1:7007
  MatchExpression /app2
  * < / IfModule > *.
  * < location /weblogic > *.
  SetHandler weblogic-Manager
  WebLogicCluster 127.0.0.1:7003, 127.0.0.1:7005, 127.0.0.1:7007
  DebugConfigInfo WE
  PathTrim /weblogic
  * < / location >. *
  
  
  < IfModule! mpm_netware_module >
  < IfModule! mpm_winnt_module >
  #
  # If you want httpd to run as a different user or group, you must run
  # httpd as root initially and it will pass.
  #
  # Group / user: the name (or #number) of the user/group to run httpd as.
  # It is generally advisable to create a dedicated and aggregatable for user
  # httpd, as with most system services are running.
  #
  Demon of the user
  Daemon group
  
  < / IfModule >
  < / IfModule >
  
  Server configuration # 'hand '.
  #
  # The directives in this section implement the values used by the 'hand '.
  # Server, which meets all demands that are not managed by a
  definition of # < VirtualHost >. These values also provide defaults for
  # all < VirtualHost > containers you can set later in the file.
  #
  # All these directives may appear inside containers < VirtualHost >,.
  # in which case the value default parameters will be substituted for the
  virtual host of # being defined.
  #
  
  #
  # ServerAdmin: Your address, where problems with the server should be
  # e-mail. This address appears on some generated by the page server, such
  # as error documents. for example [email protected]
  #
  ServerAdmin < adminurl >
  #
  # ServerName gives the name and the port used by the server to identify itself.
  # This can often be determined automatically, but we recommend that you specify
  # explicitly to avoid problems during startup.
  #
  # If your host doesn't have a registered DNS name, enter its IP address here.
  #
  #ServerName < servername >
  # DocumentRoot: The directory you are going to use your
  documents #. By default, all requests are taken from this directory, but
  aliases and symlinks # can be used to point to other locations.
  #
  DocumentRoot "C:/Program Files/Apache Software Foundation/Apache2.2/htdocs".
  
  #
  # Each directory that Apache has access can be configured in respect
  # to which services and features are allowed and/or disabled in this
  # Directory (and its subdirectories).
  #
  # Everything first, we configure the 'default' to be a very restrictive of game
  features #.
  #
  < directory / >
  Options FollowSymLinks
  AllowOverride None
  Order deny, allow
  Refuse to all the
  < / Book >
  
  #
  # Note that, from this point forward you must precisely enable
  features special # to be enabled - so if something doesn't work not as
  # you might expect, make sure that you have specifically enabled it
  # below.
  #
  
  #
  # This should be replaced by what you set DocumentRoot.
  #
  < directory "C:/Program Files/Apache Software Foundation/Apache2.2/htdocs" >
  #
  # Possible values for the Options directive are "None", "All."
  # or any combination of:
  # Indexes includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
  #
  # Note that "MultiViews" must be named explicitly -'all Options '.
  # is not give it to you.
  #
  # The Options directive is complex and important. Please see
  # http://httpd.apache.org/docs/2.2/mod/core.html#options
  # For more information.
  #
  Options Indexes FollowSymLinks
  
  #
  # AllowOverride controls what directives may be placed in .htaccess files.
  # It can be 'All', 'None', or any combination of key words:
  # Options FileInfo AuthConfig Limit
  #
  AllowOverride None
  
  #
  # Controls who can get stuff from this server.
  #
  Order allow, deny
  Allow all the
  
  < / Book >
  
  #
  # DirectoryIndex: sets the file Apache will serve if a directory
  # is requested.
  #
  < IfModule dir_module >
  DirectoryIndex index.html
  < / IfModule >
  
  #
  # The following lines prevent the .htaccess and .htpasswd files to be
  # seen by customers of the Web.
  #
  < FilesMatch "^ \.ht" > "".
  Order allow, deny
  Refuse to all the
  Meet all
  < / FilesMatch >
  
  #
  # ErrorLog: The location of the error log file.
  # If you do not specify an ErrorLog directive in a < VirtualHost >
  # container, error messages related to this virtual host will be
  # logged here. If you do define a for a < VirtualHost > error log
  container of #, that host errors will be logged there and not here.
  #
  ErrorLog logs / 'error.log '.
  
  #
  # LogLevel: Control the number of messages in the error_log.
  # Possible values include: debug, info, notice, warn, error, crit,.
  # emerg, alert.
  #
  LogLevel warn
  
  < IfModule log_config_module >
  #
  # The following directives define some nicknames format for use with
  # a directive CustomLog (see below).
  #
  "LogFormat '%%u %t \"%r\ hour' % > s \"%{Referer}i\ %b" \"%{User-Agent}i\" "handset"
  "LogFormat '%%u %t \"%r\ hour' % > s %b "commune
  
  < IfModule logio_module >
  # You must enable mod_logio.c use %I and frequency
  "" LogFormat '%%u %t \"%r\ hour' % > s %b \"%{Referer}i\ "\"%{User-Agent}i\ "%I %o "combinedio
  < / IfModule >
  
  #
  # The location and format of the access (Common Log Format) log file.
  # If you do not have any logfiles access set in a < VirtualHost >
  container of #, they will be saved here. On the other hand, if you the do
  # define per - < VirtualHost > access logfiles, transactions will be
  # logged there and not in this file.
  #
  Common CustomLog "logs/access.log.
  
  #
  # If you prefer a log file of access, agent, and referer information
  # (Combined logfile format) you can use the following directive.
  #
  #CustomLog "logs/access.log' combined
  < / IfModule >
  
  < IfModule alias_module >
  #
  # Redirect: Allows to tell clients the documents used for
  # exist in your server's namespace, but no more. The customer
  # make a new request for the document at its new location.
  # Example:
  # Redirect permanent/foo http:// < url >/bar
  
  #
  # Alias: Maps web paths into paths of file system and is used to
  # access content that don't live under the DocumentRoot directive.
  # Example:
  # Alias /webpath/full/filesystem/path
  #
  # If you include a trailing / on /webpath, then the server will be
  # require that he be present in the URL. It is also likely that
  # duty provide a < Directory > section to allow access to
  # the path to the file system.
  
  #
  # ScriptAlias: This controls which directories contain server scripts.
  # ScriptAliases are essentially the same as assumed names, except that
  # documents in the target directory are treated as applications and
  # executed by the server on demand, rather than as documents sent to the
  client of #. The same regulation on flight "/" applies to the ScriptAlias
  # as for the Alias directives.
  #
  ScriptAlias/cgi-bin / "C:/Program Files/Apache Software Foundation/Apache2.2/cgi-bin/".
  
  < / IfModule >
  
  < IfModule cgid_module >
  #
  # ScriptSock: On threaded servers, refers to the access path to the UNIX
  decision # used to communicate with the CGI mod_cgid daemon.
  #
  Newspapers/cgisock #Scriptsock
  < / IfModule >
  
  #
  # "C:/Program Files / Apache Software Foundation/Apache2.2/cgi-bin" should be replaced by everything that your ScriptAlias
  # CGI directory exists, if you have set up.
  #
  < directory "C:/Program Files/Apache Software Foundation/Apache2.2/cgi-bin" >
  AllowOverride None
  None of the options
  Order allow, deny
  Allow all the
  < / Book >
  
  #
  # DefaultType: Server default MIME type used for a document
  # If it cannot establish also as file name extensions.
  # If your server contains mainly text or HTML documents, it is "text/plain".
  # a good value. If your content is binary, such as applications
  # or images, you can use "application/octet-stream" instead of
  # Keep browsers try to view binary files, as if they were
  # text.
  #
  DefaultType text/plain
  
  < IfModule mime_module >
  #
  # TypesConfig points to the file containing the list of mappings from
  # MIME file extension - type.
  #
  TypesConfig conf/mime.types
  
  #
  # AddType allows you to add or replace the MIME configuration
  # the file specified in TypesConfig for specific file types.
  #
  #AddType application/x-gzip .tgz
  #
  # AddEncoding allows you to have certain browsers uncompress
  # information on the fly. Note: Not all browsers support this.
  #
  #AddEncoding x-compress. Z
  #AddEncoding x-gzip .gz .tgz
  #
  # If the AddEncoding directives above are commented out, then you
  # should probably define these extensions to indicate media types:
  #
  AddType application/x-compress. Z
  AddType application/x-gzip .gz .tgz
  
  #
  # AddHandler allows you to map certain "manipulators": file extensions
  # No actions associated with the file type. It can be either integrated into the server
  # or added to the directive of the Action (see below)
  #
  # To use CGI outside of ScriptAlias directories scripts:
  # (You will also need to add "ExecCGI" to the "Options" directive.)
  #
  #AddHandler cgi-script .cgi
  
  # For maps of type (negotiated resources):
  #AddHandler type-plan of the var
  
  #
  # Filters allow you to process content before sending it to the client.
  #
  # To parse .shtml for server-side includes (SSI) files:
  # (You will also need to add "Includes" the "Options" directive.)
  #
  #AddType text/html .shtml
  #AddOutputFilter INCLUDES .shtml
  < / IfModule >
  
  #
  # The mod_mime_magic module allows the server to use various boards of the
  content of the file itself to determine its type. The MIMEMagicFile
  # directive tells the module where the definitions of suspicion.
  #
  #MIMEMagicFile conf/magic
  
  #
  # Customizable error responses come in three flavors:
  ((# 1) text 2) local redirects 3) external redirects
  #
  # Examples:
  #Error Document 500 "The server made a boo boo".
  #Error Document 404 Missing.html
  #Error Document 404 "/cgi-bin/missing_handler.pl"
  #Error Document 402 subscription_info.html < url >
  #
  
  #
  # EnableMMAP and EnableSendfile: on systems that support.
  projection in memory # or the sendfile syscall is used to deliver
  # files. Usually, this improves the performance of the server, but must
  # turn off when mounted network is served
  # file systems or if support for these functions is also
  # broken on your system.
  #
  #EnableMMAP off
  #EnableSendfile off
  
  # Additional configuration
  #
  # The configuration files in the conf/extra/directory can be
  # included to add additional features or change the default configuration
  # the server, or you can simply copy their content here and change as
  # necessary.
  
  # Server-pool management (MPM specific)
  #Include conf/extra/httpd-mpm.conf
  
  # Multilingual error messages
  #Include conf/extra/httpd-multilang-errordoc.conf
  
  # Entries to the fancy directory
  #Include conf/extra/httpd-autoindex.conf
  
  # Language settings
  #Include conf/extra/httpd-languages.conf
  
  # User directories
  #Include conf/extra/httpd-userdir.conf
  
  # Info in real time on the applications and configuration
  #Include conf/extra/httpd-info.conf
  
  # Virtual hosts
  #Include conf/extra/httpd-vhosts.conf
  
  # Local access to the manual for the Apache HTTP Server
  #Include conf/extra/httpd-manual.conf
  
  # Distributed authoring and versioning (WebDAV)
  #Include conf/extra/httpd-dav.conf
  
  # Various default settings
  #Include conf/extra/httpd-default.conf
  
  # Secure connections (SSL/TLS)
  #Include conf/extra/httpd-ssl.conf
  #
  # Note: The following text should be present to support
  # start without SSL on platforms without equivalent/dev/random
  but # a statically compiled in mod_ssl.
  #
  < IfModule ssl_module >
  SSLRandomSeed startup builtin
  SSLRandomSeed connect builtin
  < / IfModule >
  
  This is so for the app2 only configuration above, I am able to call and app1 his adage "404 page not found".
  
  Can soomebody help me cofiguring apache so that I can call the two applications.
  
  
  Thank you
  Ankit

  >
  
  WebLogicCluster 127.0.0.1:7005, 127.0.0.1:7007, 127.0.0.1:7003, 127.0.0.1:7103, 127.0.0.1:7104
  MatchExpression /app1
  
  
  SetHandler weblogic-Manager
  WebLogicCluster 127.0.0.1:7003, 127.0.0.1:7005, 127.0.0.1:7007, 127.0.0.1:7103, 127.0.0.1:7104
  DebugConfigInfo WE
  PathTrim /weblogic
  

  
  WebLogicCluster 127.0.0.1:7003, 127.0.0.1:7005, 127.0.0.1:7007
  MatchExpression /app2
  
  
  SetHandler weblogic-Manager
  WebLogicCluster 127.0.0.1:7003, 127.0.0.1:7005, 127.0.0.1:7007
  DebugConfigInfo WE
  PathTrim /weblogic
  
  >

  This configuration is a little weird. He has /app1 MatchExpression and MatchExpression /app2 and at the same time two sections . Are you sure you understand what means that the configuration?

  Try something like this...

  
  SetHandler weblogic-Manager
  WebLogicCluster 127.0.0.1:7003, 127.0.0.1:7005, 127.0.0.1:7007, 127.0.0.1:7103, 127.0.0.1:7104
  DebugConfigInfo WE
  

  
  SetHandler weblogic-Manager
  WebLogicCluster 127.0.0.1:7003, 127.0.0.1:7005, 127.0.0.1:7007
  DebugConfigInfo WE
  

  where /app1 and /app2 are your weblogic applications contexts.

  http://download.Oracle.com/docs/CD/E11035_01/WLS100/plugins/Apache.html
  http://httpd.Apache.org/docs/2.0/mod/core.html#location

• What is the ideal configuration for a new Mac

  Hi all

  First: the reason for this post

  For awhile, I'm faced with a problem on the Adobe software could not be resolved by all the good people at Adobe.

  The problem is that I can't use CC libraries to its full potential. All I can do is save the shades of colors to a library, but no matter what other assets (chart, type specifications etc.).

  Whenever I try to add an asset in a CC library of in Illustrator, I get an error saying "the file may be read-only or another user can open. Please save the document under a different name or in a different folder. Well, there is no one else and saving to a different location or with a different name does nothing. I got the Adobe employee watching my iMac (remotely) to find out what goes wrong. But despite all good intentions, no one was able to solve this problem. And I left it this way for almost a year. OK, so far, for the reason...

  But today, I created a new user on my iMac with the same admin privileges as account when I first set up my iMac, I created. And guess what? Connect with newly created account and using Illustrator on it to add assets to a CC library works without any problem.

  Why? What is the difference in these accounts, I wondered. And after watching the activity monitor in both accounts, I think I know why, but I do not understand.

  My new account is the user name 'Test', and my old account first (first) when I created my iMac is "Letsgo.

  On the account of 'Test' in the activity monitor all the I see is the user 'Test' for all running processes.

  But 'Letsgo' account I see, of course, a lot of process for "Letsgo" but I also see other users as 'root' or '_spotlight' or '_appleevents '. The way I see it, these additional users are very similar to "default" OSX system accounting.

  Press 'CMD + S' to soon... Sorry... This should be added...

  And now the question:

  It is advisable to set up a Mac with the account of user by default when you first set up the Mac and keep this for purposes of administration and create a new account for day-to-day work? I want to upgrade to El captain in the coming weeks and want to do a clean install, if the implementation of different accounts is the best way.

• How to reset the default configuration for the ATG Applications layer

  Hi all
  
  If we change the properties through the ACC files, they will be copied to default configuration (localconfig) layers. If I have several servers how can change the default configuration in the directory someother layer in my file system.
  
  
  Thank you
  Neya

  Create the CONFIG.properties in the configuration layer where you need ACCESS to make the changes.
  defaultForUpdates = true

  Peace
  Shaik

• Cannot access my router through the Explorer configuration page

  I need to do a port forwarding on my router. My internet connection works (even if she falls occasionally) and I can also connect to other computers on my network. However, I cannot access my router through IE page (I get a message saying: page not found). When I go see the map in the options Vista network, the router is not displayed and when I clikc on "See the whole map", I get a message saying that Windows cannot detect any computer or devices.

  My connection to the router is connected, and it is a WRT54G Lyinksys. Any ideas how I can see my router or go to its page layout? Another thing, I went to CMD and the ping command returns a default gateway 192.168.1.1, which is what I have my using the address of the webb page.

  Thanks for any help.

  Hi JBHPUser,
  
  (a) other router configuration page, you are able to access other Web sites?
   
  (b) what operating system and Internet Explorer version do you use?
   
  This article can be very useful.
   
  You receive an error message in Internet Explorer: "Internet Explorer cannot display the webpage".
  http://support.Microsoft.com/kb/956196
   
  You can also access these links, which is primarily for Windows Vista, but are also applies to Windows 7
   
  
  Solve problems with computers not appearing is not in the network map
  http://Windows.Microsoft.com/en-us/Windows-Vista/troubleshoot-problems-with-computers-not-appearing-on-the-network-map
   
  Network connection problems
  http://Windows.Microsoft.com/en-us/Windows-Vista/troubleshoot-network-connection-problems
   
   
  
  Aziz Nadeem - Microsoft Support

• Cannot access the internal resources for VPN site-to-site

  We have two ASA.  We set up just VPN site-to-site.  For some reason, we are not able to access internal resources at the main office of the remote office.  Do you have any suggestions?  Thank you.

  as wu suggested, please first confirm that the tunnel is mounted correctly

  "sh cry isa his '-> will tell u if the phase 1 is in place

  "sh cry ips its '-> say if phase 2 is in place

  now once they r upward, when you ping from site to site b

  program in the site, you should see one and decaps site b for traffic from a to b and vice versa for return transportation

  Now we have to see where it is a failure

  could be tht package is coming up to the asa but not getting is not encrypted or that the package does not come to the asa itself

  You can run tracer package to see if it's getting wrapped, or in other words hits vpn tunnel

  It might be a nat problem, and sometimes if it is a new configuration probably ISP may have blocked the esp traffic in one direction or in the other direction

  the best approach, that it is turn on "management of access to the inside" on the firewall and make a ping of source of asa

  inside ping

• Error in the SMTP Configurations for File Server Resource Manager

  Hello

  Please help me how to configure SMTP for file server resource manager, when I have set up SMTP for gmail and godady e-mail I got the error.

  This issue is beyond the scope of this site (for consumers) and to be sure, you get the best (and fastest) reply, we have to ask either on Technet (for IT Pro) or MSDN (for developers)

  *

  http://social.technet.Microsoft.com/forums/en-us/home s/fr-U.S./Accueil
  http://social.msdn.Microsoft.com/Forum

• Strange orders in the log Configuration for VCS Expressway

  Check my journal of VCS configuration, I found hundreds (perhaps many) of these commands:

  2015 04-28 T 16: 14:23 - 03:00	"Elements UTCTime =" 2015-04-28 19:14:23, 928"Event ='System Configuration changed" node = "[email protected] / * /" detail ="xconfiguration fail2banJailStatus uuid 2abe7197-a824-4a47-9079-2b16db1410f2 prison: sip-auth current_fails - changed: 0 to: 1"
  2015 04-28 T 16: 14:23 - 03:00	"Elements UTCTime =" 2015-04-28 19:14:23, 928"event ='System Configuration changed" node = "[email protected] / * /" detail ="xconfiguration fail2banJailStatus uuid 2abe7197-a824-4a47-9079-2b16db1410f2 prison: sip-auth total_fails - past slot: 4 in: 5"
  2015 04-28 T 16: 13:23 - 03:00	"Elements UTCTime =" 2015-04-28 19:13:23, 900"Event ='System Configuration changed" node = "[email protected] / * /" detail ="xconfiguration fail2banJailStatus uuid 09637cfe-b0af-4d6f-9bab-6f59ba305156 prison: current_fails http this intrusion - passed: 0 to: 1"
  2015 04-28 T 16: 13:23 - 03:00	"Elements UTCTime =" 2015-04-28 19:13:23, 900"Event ='System Configuration changed" node = "[email protected] / * /" detail ="xconfiguration fail2banJailStatus uuid 09637cfe-b0af-4d6f-9bab-6f59ba305156 prison: total_fails http this intrusion - last: 4 in: 5"
  2015 04-28 T 16: 12:23 - 03:00	"Elements UTCTime =" 2015-04-28 19:12:23, 868"Event ='System Configuration changed" node = "[email protected] / * /" detail ="xconfiguration fail2banJailStatus uuid 09637cfe-b0af-4d6f-9bab-6f59ba305156 prison: current_fails http this intrusion - past: 1 to: 0"
  2015 04-28 T 16: 02:23 - 03:00	"" Elements UTCTime = "2015-04-28 19:02:23, 515" Event = 'System Configuration changed"node ="[email protected] / * /"detail =".

  ?all_text=RGV0YWlsPSJ4Y29uZmlndXJhdGlvbiBmYWlsMmJhbkphaWxTdGF0dXMgdXVpZCAwOTYzN2NmZS1iMGFmLTRkNmYtOWJhYi02ZjU5YmEzMDUxNTYgamFpbDogaHR0cC1jZS1pbnRydXNpb24gY3VycmVudF9mYWlscyAtIGNoYW5nZWQgZnJvbTogMCB0bzogMSI=">xconfiguration fail2banJailStatus uuid 09637cfe-b0af-4d6f-9bab-6f59ba305156 jail: http-ce-intrusion current_fails - changed from: 0 to: 1" 2015 04-28 T 16: 02:23 - 03:00 "Elements UTCTime =" 2015-04-28 19:02:23, 515"Event ='System Configuration changed" node = "[email protected] / * /" detail ="xconfiguration fail2banJailStatus uuid 09637cfe-b0af-4d6f-9bab-6f59ba305156 prison: total_fails http this intrusion - last: 3 to: 4"

  What is c? A hacker trying to invade my VCS?

  This highway of VCS is in a public IP address, with the disabled SSH, HTTPS is only allowed.

  In a manner of speaking, possibly.  These are due to having you activated automatic detection.  The IP address 127.0.0.1 is always "self."  The VCS is simply the recording of hack attempts.  You can see the numbers from 0 to 1, 4 or 5, etc., as attempted access failures are recorded.  It depends on what you have set up in the automated detection of which is controlled, and eventually be blocked in case of several events in the detection window.  You will need to look at your configuration and possibly other newspapers to determine if a real intrusion event occurs.

• How to make a template or duplicate the police etc for title sup

  Hi all

  I know how to create (size and font color) and to have a title of sup or text on my video.

  But I n ' t know how to duplicate all this template to work quickly. "

  When I copy and paste is just a clone.

  I would like to copy the text and just change it without worrying.

  Because I don't want to have to choose font, size, color and placement every time.

  Thanks a lot if you have an answer

  Olivier

  You need to duplicate rather than copy a title. When you copy a title, you produce a clone of your original title, and all changes made to a title will be made also to the clone.

  When you right click on a title in your media project Panel and select duplicate, you duplicate your title - and this creates a separate title that can be customized independently.

• What is the best configuration for stereoscopic editing in Premiere Pro cc 2015?

  After the native 3D with Red epics shoot, now I want to change ofline, 1080, using Premiere Pro.  What plug-ins is recommend Adobe?  That poster?

  Hello

  Please see system requirements | Adobe Premiere Pro

  Kind regards

  Sheena

• VPN connection OK but not soumana ping on the ROUTER before the VPN ROUTER

  Hello

  In my test harness, that I am able to connect my CISCO ROUTER with VPN CLIENT and I can ping it also, but when I try to ping something thing on the other router, don't worry, I may be an isue ACL?

  Any help is welcome

  Here below the script and configuration:

  PC (VPN CLIENT)-> C2691 (IPSec VPN)-> C1841(IP 192.168.10.1)

  Router ipsec crypto #sh her

  Interface: FastEthernet0/0
  Tag crypto map: clientmap, local addr 172.18.124.1

  protégé of the vrf: (none)
  local ident (addr, mask, prot, port): (0.0.0.0/0.0.0.0/0/0)
  Remote ident (addr, mask, prot, port): (14.1.1.106/255.255.255.255/0/0)
  current_peer 172.18.124.2 port 500
  LICENCE, flags is {}
  #pkts program: encrypt 0, #pkts: 0, #pkts digest: 0
  #pkts decaps: 59, #pkts decrypt: 59, #pkts check: 59
  compressed #pkts: 0, unzipped #pkts: 0
  #pkts uncompressed: 0, #pkts compr. has failed: 0
  #pkts not unpacked: 0, #pkts decompress failed: 0
  Errors #send 0, #recv 0 errors

  local crypto endpt. : 172.18.124.1, remote Start crypto. : 172.18.124.2
  Path mtu 1500, ip mtu 1500
  current outbound SPI: 0xE9640C2B (3915648043)

  SAS of the esp on arrival:
  SPI: 0xE23C352 (237224786)
  transform: esp-3des esp-sha-hmac.
  running parameters = {Tunnel}
  Conn ID: 2002, flow_id: SW:2, crypto card: clientmap
  calendar of his: service life remaining (k/s) key: (4462659/3582)
  Size IV: 8 bytes
  support for replay detection: Y
  Status: ACTIVE

  the arrival ah sas:

  SAS of the CFP on arrival:

  outgoing esp sas:
  SPI: 0xE9640C2B (3915648043)
  transform: esp-3des esp-sha-hmac.
  running parameters = {Tunnel}
  Conn ID: 2003, flow_id: SW:3, crypto card: clientmap
  calendar of his: service life remaining (k/s) key: (4462669/3579)
  Size IV: 8 bytes
  support for replay detection: Y
  Status: ACTIVE

  outgoing ah sas:

  outgoing CFP sas:
  Router #.

  Router #sh card crypto
  "Clientmap" ipsec-isakmp crypto map 10
  Dynamic map template tag: dynmap

  "Clientmap" 65536 ipsec-isakmp crypto map
  Peer = 172.18.124.2
  Extended IP access list
  ip access list allow any host 14.1.1.106
  dynamic (created from dynamic dynmap/10 map)
  Current counterpart: 172.18.124.2
  Life safety association: 4608000 Kbytes / 3600 seconds
  PFS (Y/N): N
  Transform sets = {}
  RIGHT,
  }
  Interfaces using map clientmap crypto:
  FastEthernet0/0

  Router #.

  Router #sh arp
  Protocol of age (min) address Addr Type Interface equipment
  Internet 192.168.10.1 37 ARPA FastEthernet0/1 0024.c4eb.6600
  Internet 192.168.10.20 6 0024.2b4d.0c5a ARPA FastEthernet0/1
  Internet 192.168.10.200 36 0025.9c39.57e2 ARPA FastEthernet0/1
  Internet 172.18.124.2 1 0022.4135.3f5e ARPA FastEthernet0/0
  Internet 172.18.124.1 - 0013.191f.ac00 ARPA FastEthernet0/0
  Internet 192.168.10.166 - 0013.191f.ac01 ARPA FastEthernet0/1
  Router #.

  Current configuration: 2320 bytes
  !
  version 12.4
  horodateurs service debug datetime msec
  Log service timestamps datetime msec
  no password encryption service
  !
  router host name
  !
  boot-start-marker
  boot system flash: c2691-adventerprisek9 - mz.124 - 5a .bin
  boot-end-marker
  !
  !
  AAA new-model
  !
  !
  AAA authentication login userauthen local
  AAA authorization groupauthor LAN
  !
  AAA - the id of the joint session
  !
  resources policy
  !
  IP cef
  !
  !
  No dhcp use connected vrf ip
  DHCP excluded-address IP 172.18.124.1
  !
  dhcp VPN IP pool
  import all
  network 172.18.124.0 255.255.255.0
  router by default - 172.18.124.1
  lease 5
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  !
  Fax fax-mail interface type
  0 username cisco password Cisco
  !
  !
  !
  crypto ISAKMP policy 3
  BA 3des
  preshared authentication
  Group 2
  !
  ISAKMP crypto client configuration group 3000client
  key cisco123
  DNS 8.8.8.8
  domain cisco.com
  pool ippool
  !
  !
  Crypto ipsec transform-set esp-3des esp-sha-hmac RIGHT
  !
  Crypto-map dynamic dynmap 10
  Set transform-set RIGHT
  !
  !
  map clientmap client to authenticate crypto list userauthen
  card crypto clientmap isakmp authorization list groupauthor
  client configuration address map clientmap crypto answer
  10 ipsec-isakmp crypto map clientmap Dynamics dynmap
  !
  !
  !
  !
  interface FastEthernet0/0
  IP 172.18.124.1 255.255.255.0
  automatic speed
  Half duplex
  clientmap card crypto
  !
  interface Serial0/0
  no ip address
  Shutdown
  !
  interface FastEthernet0/1
  IP 192.168.10.166 255.255.255.0
  automatic speed
  Half duplex
  !
  interface Serial1/0
  no ip address
  Shutdown
  series 0 restart delay
  No terminal-dce-enable-calendar
  !
  interface Serial1/1
  no ip address
  Shutdown
  series 0 restart delay
  No terminal-dce-enable-calendar
  !
  interface Serial1/2
  no ip address
  Shutdown
  series 0 restart delay
  No terminal-dce-enable-calendar
  !
  interface Serial1/3
  no ip address
  Shutdown
  series 0 restart delay
  No terminal-dce-enable-calendar
  !
  IP local pool ippool 14.1.1.100 14.1.1.200
  IP route 0.0.0.0 0.0.0.0 192.168.10.1
  !
  !
  IP http server
  no ip http secure server
  !
  TEST extended IP access list
  allow an ip
  TEST2 extended IP access list
  allow an ip
  !
  !
  !
  !
  !
  control plan
  !
  !
  !
  !
  !
  !
  Dial-peer cor custom
  !
  !
  !
  !
  !
  !
  Line con 0
  transportation out all
  Speed 115200
  line to 0
  transportation out all
  line vty 0 4
  transport of entry all
  transportation out all
  !
  !
  end

  Hello

  You have this Setup:

  PC (VPN CLIENT)-> C2691 (IPSec VPN)-> C1841(IP 192.168.10.1)

  When it is connected with the VPN client, can you PING the LAN IP of the C2961?

  This communication should go through the tunnel and you should see encrypted packets on the "sh cry ips its"

  In order to do a PING of the C1841, the C1841 needs a route back to the C2961 when the traffic is for VPN client (assuming that there is not a default gateway in place).

  Federico.