Site to site VPN - need help to set up several tunnels
I currently have tunnels VPN site-to-site of two remote sites with 1720s to connect to an ASA5510 on my site TOWN_HALL. (see attached diagram)
It works well, but I want to add connectivity between the 1720-A LAN (172.20.3.0/24) and LAN 1720 - B (172.22.3.0/24). What is the best way to do it? The years 1720 can be configured with direct VPN L2L tunnels or that will affect the existing tunnels is the ASA5510? If so, I'm guessing that each 1720 will have to go through the ASA first.
Thank you.
Configs below:
ASA5510
ASA Version 7.2 (2)
!
names of
name 172.18.3.19 Postal Mail Server description
name 172.18.3.33 description Helpdesk Server helpdesk
DNS-guard
!
interface Ethernet0/0
Description link Comcast
nameif ComCast_Out
security-level 0
IP 29.92.14.73 255.255.255.248
!
interface Ethernet0/1
nameif inside
security-level 100
address 192.168.10.2 255.255.255.252
!
interface Ethernet0/2
security-level 0
!
interface Ethernet0/3
Shutdown
No nameif
no level of security
no ip address
!
interface Management0/0
nameif management
security-level 100
IP 10.10.10.1 255.255.255.0
management only
!
boot system Disk0: / asa722 - k8.bin
boot system Disk0: / asa706 - k8.bin
passive FTP mode
clock timezone IS - 5
clock to summer time EDT recurring
list of allowed incoming access extended ip any host 29.92.14.74
list of extended all inbound icmp permitted access all inaccessible
list of inbound icmp permitted access extended throughout entire echo response
list of allowed inbound tcp extended access any host 29.92.14.73 eq 3000
list of allowed inbound tcp extended access any newspaper SMTP host 29.92.14.73 eq
list of allowed inbound tcp extended access any host 29.92.14.73 eq www
list of allowed inbound tcp extended access any host 29.92.14.73 eq 3389
list of allowed inbound tcp extended access any host 29.92.14.73 eq pptp
list of allowed inbound tcp extended access any host 116.204.226.42 eq 3000
list of allowed inbound tcp extended access any host 116.204.226.42 eq smtp
list of allowed inbound tcp extended access any host 116.204.226.42 eq www
list of allowed inbound tcp extended access any host 116.204.226.42 eq 3389
list of allowed inbound tcp extended access any host 116.204.226.42 eq pptp
list of inbound note FTP Server access
list of allowed inbound tcp extended access any host 29.92.14.73 eq ftp
acl_out list extended access permit tcp host 29.92.14.73 any eq smtp
acl_out list extended access permit tcp host 192.168.1.4 any eq smtp
tcp extended access list acl_out deny any any eq smtp
access ip allowed any one extended list acl_out
121 extended access-list permit ip 192.168.10.0 255.255.255.0 192.168.20.0 255.255.255.0
IP 172.18.3.0 allow Access-list extended sheep 255.255.255.0 172.22.3.0 255.255.255.0
IP 172.18.3.0 allow Access-list extended sheep 255.255.255.0 172.20.3.0 255.255.255.0
access-list extended sheep allowed ip 192.168.1.0 255.255.255.0 172.22.3.0 255.255.255.0
access-list sheep extended ip 172.30.1.0 allow 255.255.255.0 172.31.255.0 255.255.255.0
access-list sheep extended ip 192.168.10.0 allow 255.255.255.252 172.31.255.0 255.255.255.0
IP 172.17.1.0 allow Access-list extended sheep 255.255.255.0 172.31.255.0 255.255.255.0
172.18.0.0 IP Access-list extended sheep 255.255.0.0 allow 172.31.255.0 255.255.255.0
IP 172.31.3.0 allow Access-list extended sheep 255.255.255.0 172.31.255.0 255.255.255.0
access-list sheep extended ip 192.168.0.0 allow 255.255.0.0 172.31.255.0 255.255.255.0
backup_access_out of access allowed any ip an extended list
outside_access_out of access allowed any ip an extended list
Note to access list outside_access_out Barracuda
outside_access_out list extended access permit tcp host 172.18.3.8 any eq smtp inactive
Comment from outside_access_out-access SMTP Block list
outside_access_out tcp extended access list deny any any eq smtp inactive
Note to access list schools SMTP inside_access_in
inside_access_in list extended access permit tcp host postal eq smtp no matter what eq smtp
inside_access_in list extended access permit tcp host 172.18.3.8 any eq smtp
inside_access_in list extended access permit tcp host 172.18.3.30 any eq smtp
inside_access_in tcp extended access list deny any any eq smtp
inside_access_in of access allowed any ip an extended list
Access extensive list ip 172.18.3.0 ComCast_Out_20_cryptomap allow 255.255.255.0 172.22.3.0 255.255.255.0
ComCast_Out_20_cryptomap to access ip 192.168.1.0 scope list allow 255.255.255.0 172.22.3.0 255.255.255.0
Access extensive list ip 172.18.3.0 ComCast_Out_25_cryptomap allow 255.255.255.0 172.20.3.0 255.255.255.0
vpn_access list standard access allowed 192.168.10.0 255.255.255.252
standard access list vpn_access allow 172.17.1.0 255.255.255.0
standard access list vpn_access allow 172.18.0.0 255.255.0.0
standard access list vpn_access allow 172.31.3.0 255.255.255.0
vpn_access list standard access allowed 172.30.1.0 255.255.255.0
vpn_access list standard access allowed 192.168.0.0 255.255.0.0
pager lines 24
Enable logging
emergency logging monitor
logging warnings put in buffered memory
asdm of logging of information
MTU 1500 ComCast_Out
Within 1500 MTU
MTU 1500 NOT_IN_USE
management of MTU 1500
IP local pool vpnpool 192.168.20.2 - 192.168.20.254
172.31.255.1 mask - local 172.31.255.250 pool POOL VPN IP 255.255.255.0
ICMP unreachable rate-limit 1 burst-size 1
ASDM image disk0: / asdm - 522.bin
don't allow no asdm history
ARP timeout 14400
NAT-control
Global interface (ComCast_Out) 1
Global (NOT_IN_USE) 1 interface
NAT (inside) 0 access-list sheep
NAT (inside) 1 192.0.0.0 255.0.0.0
NAT (inside) 1 0.0.0.0 0.0.0.0
TCP static (inside ComCast_Out) interface 3000 172.18.3.22 3000 netmask 255.255.255.255
TCP static (inside ComCast_Out) interface smtp 172.18.3.8 smtp netmask 255.255.255.255
TCP static (inside ComCast_Out) interface www 172.18.3.30 www netmask 255.255.255.255
TCP static (inside ComCast_Out) interface 3389 172.18.3.22 3389 netmask 255.255.255.255
TCP static (inside ComCast_Out) interface 172.18.3.22 pptp pptp netmask 255.255.255.255
TCP static (inside NOT_IN_USE) interface 3000 172.18.3.22 3000 netmask 255.255.255.255
TCP static (inside NOT_IN_USE) interface smtp 172.18.3.8 smtp netmask 255.255.255.255
TCP static (inside NOT_IN_USE) interface www 172.18.3.30 www netmask 255.255.255.255
TCP static (inside NOT_IN_USE) interface 3389 172.18.3.23 3389 netmask 255.255.255.255
TCP static (inside NOT_IN_USE) interface 172.18.3.22 pptp pptp netmask 255.255.255.255
TCP static (inside ComCast_Out) interface 3101 172.18.3.8 3101 netmask 255.255.255.255
TCP static (inside ComCast_Out) ftp ftp netmask 255.255.255.255 helpdesk interface
static TCP (inside ComCast_Out) interface ftp - data helpdesk ftp - data netmask 255.255.255.255
static (inside, ComCast_Out) 29.92.14.74 172.18.3.16 netmask 255.255.255.255
Access-group entering interface ComCast_Out
Access-group interface ComCast_Out outside_access_out
inside_access_in access to the interface inside group
Access-group entering interface NOT_IN_USE
Access-group interface NOT_IN_USE backup_access_out
Route 0.0.0.0 ComCast_Out 0.0.0.0 29.92.14.78 1 track 1
Route inside 192.168.0.0 255.255.0.0 192.168.10.1 1
Route inside 172.17.1.0 255.255.255.0 192.168.10.1 1
Route inside 172.18.0.0 255.255.0.0 192.168.10.1 1
Route inside 172.31.3.0 255.255.255.0 192.168.10.1 1
Route inside 172.30.1.0 255.255.255.0 192.168.10.1 1
Timeout xlate 03:00
Timeout conn 01:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
Sunrpc timeout 0:10:00 h323 0:05:00 h225 mgcp from 01:00 0:05:00 mgcp-pat 0:05:00
Sip timeout 0:30:00 sip_media 0:02:00 prompt Protocol sip-0: 03:00 sip - disconnect 0:02:00
Timeout, uauth 0:05:00 absolute
internal group vpnclient strategy
vpnclient group policy attributes
Protocol-tunnel-VPN IPSec
Split-tunnel-policy tunnelspecified
value of Split-tunnel-network-list vpn_access
internal remote group strategy
Group remote attributes policy
Split-tunnel-policy tunnelspecified
Split-tunnel-network-list value 121
Enable http server
http 172.0.0.0 255.0.0.0 inside
http 192.0.0.0 255.0.0.0 inside
http 10.10.10.0 255.255.255.0 management
No snmp server location
No snmp Server contact
Server enable SNMP traps snmp authentication linkup, linkdown cold start
monitor SLA 123
interface type echo protocol ipIcmpEcho 168.87.71.226 ComCast_Out
NUM-package of 3
frequency 10
Annex ALS life monitor 123 to always start-time now
Crypto ipsec transform-set esp-3des esp-md5-hmac 3des
Crypto ipsec transform-set esp - esp-sha-hmac SHA3DES
Crypto ipsec transform-set ESP-DES-MD5 esp - esp-md5-hmac
Crypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac
3DES encryption dynamic-map dynmap 10 transform-set
Crypto-map dynamic outside_dyn_map 10 the value transform-set ESP-3DES-SHA
address for correspondence card crypto vpnremote 20 ComCast_Out_20_cryptomap
peer set card crypto vpnremote 20 202.13.116.209
vpnremote card crypto 20 the transform-set ESP-DES-MD5 value
address for correspondence card crypto vpnremote 25 ComCast_Out_25_cryptomap
peer set card crypto vpnremote 25 207.147.31.97
card crypto vpnremote 25 game of transformation-ESP-DES-MD5
vpnremote 30 card crypto ipsec-isakmp dynamic dynmap
map vpnremote 65535-isakmp ipsec crypto dynamic outside_dyn_map
vpnremote ComCast_Out crypto map interface
card crypto VN1530600A 663 matches the address ACL663
card crypto VN1530600A 663 set pfs
card crypto VN1530600A 663 set peer 29.92.14.73
crypto VN1530600A 663 the transform-set SHA3DES value card
card crypto VN1530600A 663 defined security-association life seconds 1800
crypto isakmp identity address
ISAKMP crypto enable ComCast_Out
crypto ISAKMP policy 10
preshared authentication
3des encryption
md5 hash
Group 2
life 86400
crypto ISAKMP policy 20
preshared authentication
3des encryption
sha hash
Group 2
life 86400
crypto ISAKMP policy 30
preshared authentication
the Encryption
md5 hash
Group 2
life 86400
Crypto isakmp nat-traversal 20
!
track 1 rtr 123 accessibility
tunnel-group type remote ipsec-ra
tunnel-group remote General attributes
address vpnpool pool
Group Policy - by default-remote control
tunnel-group remote ipsec-attributes
pre-shared-key *.
tunnel-group 29.92.14.73 type ipsec-l2l
IPSec-attributes tunnel-group 29.92.14.73
pre-shared-key *.
tunnel-group 202.13.116.209 type ipsec-l2l
IPSec-attributes tunnel-group 202.13.116.209
pre-shared-key *.
tunnel-group 207.147.31.97 type ipsec-l2l
IPSec-attributes tunnel-group 207.147.31.97
pre-shared-key *.
Telnet 192.168.0.0 255.255.0.0 inside
Telnet 172.0.0.0 255.0.0.0 inside
Telnet timeout 120
SSH timeout 5
Console timeout 0
management-access inside
management of 10.10.10.11 - dhcpd addresses 10.10.10.20
!
!
class-map inspection_default
match default-inspection-traffic
!
!
Policy-map global_policy
class inspection_default
inspect the pptp
!
global service-policy global_policy
context of prompt hostname
Cryptochecksum:82155434d3cfa69cd7217f20aaacabb7
: end
1720-A
version 12.2
horodateurs service debug datetime
Services log timestamps datetime
encryption password service
!
1720-A host name
!
logging buffered debugging 4096
!
iomem 20 memory size
clock timezone IS - 5
clock to summer time EDT recurring 2 Sun Mar 2:00 1 Sun Nov 02:00
IP subnet zero
!
!
no ip domain-lookup
name of the IP-server 172.18.3.24
DHCP excluded-address IP 172.20.3.1 172.20.3.20
!
IP dhcp pool dhcppool
network 172.20.3.0 255.255.255.0
router by default - 172.20.3.1
DNS-server 172.18.3.24 172.18.3.26
!
audit of IP notify Journal
Max-events of po verification IP 100
property intellectual ssh timeout of 120
property intellectual ssh authentication-3 retries
!
crypto ISAKMP policy 10
md5 hash
preshared authentication
Group 2
address of Cisco key crypto isakmp 29.92.14.73
!
!
Crypto ipsec transform-set esp - esp-md5-hmac TOWN_HALL
Crypto ipsec transform-set esp - esp-md5-hmac DES-MD5
Dimensions of tunnel mib crypto ipsec flowmib history 200
MIB crypto ipsec flowmib size of 200 historical failure
!
map VPNmap 10 ipsec-isakmp crypto
defined by peer 29.92.14.73
game of transformation-TOWN_HALL
match address TOWN_HALL
!
!
!
!
interface Ethernet0
IP 207.147.31.97 255.255.255.252
IP-group access to the PERIMETER of
NAT outside IP
Half duplex
card crypto VPNmap
!
interface FastEthernet0
LAN description
IP 172.20.3.1 255.255.255.0
IP nat inside
automatic speed
!
interface Serial0
no ip address
Shutdown
!
IP nat inside source list NAT_ADDRESSES interface Ethernet0 overload
IP classless
IP route 0.0.0.0 0.0.0.0 207.147.31.98
no ip address of the http server
enable IP pim Bennett
!
!
NAT_ADDRESSES extended IP access list
deny ip 172.20.3.0 0.0.0.255 172.18.3.0 0.0.0.255
IP 172.20.3.0 allow 0.0.0.255 any
PERIMETER extended IP access list
permit udp host 29.92.14.73 host 207.147.31.97 eq isakmp
esp permits 29.92.14.73 host 207.147.31.97
IP 172.18.3.0 allow 0.0.0.255 172.20.3.0 0.0.0.255
allow all all unreachable icmp
permit any any icmp echo response
allow any host 207.147.31.97 eq telnet tcp
allow any host 192.168.20.1 eq telnet tcp
permit tcp any eq www everything
permit tcp any eq 443 all
permit udp host 173.13.116.209 host 207.147.31.97 eq isakmp
esp permits 173.13.116.209 host 207.147.31.97
IP 172.22.3.0 allow 0.0.0.255 172.20.3.0 0.0.0.255
refuse an entire ip
TOWN_HALL extended IP access list
IP 172.20.3.0 allow 0.0.0.255 172.18.3.0 0.0.0.255
!
alias exec sr show run
alias exec s sh ip int br
alias exec srt show ip route
!
Line con 0
exec-timeout 0 0
Synchronous recording
line to 0
line vty 0 4
exec-timeout 60 0
Synchronous recording
local connection
transport telnet entry
!
No Scheduler allocate
NTP-period clock 17180009
end
Make sure you have the following sets of transformations in used through the tunnel:
Crypto ipsec transform-set esp - esp-md5-hmac TOWN_HALL
The tunnel seems to be failing on the negotiations of the phase 2 due to incompatibility, but depending on the configuration
It seems very well.
Are you sure that these debugs are not only a part of the negotiations and finally the established tunnel?
Check the condition of the tunnel with the commands:
HS cry isa his
HS cry ips its
In trying to establish the tunnel again and we will see the results.
Federico.
Tags: Cisco Security
Similar Questions
-
I just reinstalled windows xp sevice pack 3 in my laptop. l need help to set up the wireless modem. My laptop is IBM ThinkPad and the modem is a construction in one. would appriciate ay help
Hi bardhiboris,
You can follow the steps from the link below: set up a wireless network:http://www.microsoft.com/windowsxp/using/networking/setup/wireless.mspx
Other links, please refer to: 10 tips to help improve your wireless network:http://www.microsoft.com/athome/setup/wirelesstips.aspx
To set up automatic wireless network configuration:http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/wlan_client_configure.mspx?mfr=true
With regard to:
Samhrutha G S - Microsoft technical support.
Visit our Microsoft answers feedback Forum and let us know what you think.
-
need help to set up Linksys printserver with verizon wifi hotspot
need help to set up Linksys printserver with verizon wifi hotspot
pfsjmhall,
Configure your wireless router to use these recommended wireless router settings, I use channel 11. I would use a new SSID to connect easier.
Then configure the Linksys print server. Find your network to give your passkey (password)
Then set up the printer, choose network and follow the instructions.
Rick
-
Need help with setting up in checkbox in interactive reports
I need help with setting up in checkbox in interactive reports, I use this statement a query
SELECT apex_item.checkbox
(
1, ROLEID,
'onchange = "spCheckChange (this);". ',
: F_ROLEID_LIST,.
':'
), del.
ROLEID, ROLEDESCRIPTION
OF EBA_ROLES
When I run it I get the following
< input type = "checkbox" name = "f01" value = "1" onchange = "spCheckChange (this); ' / > instead of the checkbox
Do I need to configure anything else
Aditya Gupta wrote:
I need help with setting up in checkbox in interactive reports, I use this statement a query
SELECT apex_item.checkbox
(
1, ROLEID,
'onchange = "spCheckChange (this);". ',
: F_ROLEID_LIST,.
':'
), del.
ROLEID, ROLEDESCRIPTION
OF EBA_ROLES
When I run it I get the following
instead of the checkbox
Do I need to configure anything else
This is one of the most frequently asked questions in this forum. Set the column attribute the text to display as Standard report column and not display text (special escape characters).
Always include the information referred to in these guidelines when you ask a question and if you use APEX 5.0, State, if you develop using the pages or the view of the component designer.
-
Need help to set up parental controls
Hello
I want to set up parental controls on my son's laptop computer.
Thus, users are
His name
Director of comp.
Password protected
not monitored by family safety
I thought that I could not / would not set up on the administrator, so I created a second user
His name1
standard user - control parental on
no password
monitored by family safety
I have implemented controls, but they are not in force, I guess, because they should be on his main user? If this means that it can change the settings since this is admin? I'm confused :(
Hi Dee2537,
We are happy to help you set up parental controls in your son's laptop computer. Given the information you have provided, we see that you addressed some of the scenarios where parental control will not work correctly. One of it is implemented in your child as an administrator's account. Family safety not restrict and recognize the account as a child, if the application detects that it is using an administrator account. The other implements access to his account without password because Family Safety requires that the user has a password to secure the account. Because you have pain to configure the account correctly, we strongly recommend that you follow the instructions step by step on how to set up on behalf of the child in the family security and laptop to your son.
Here is the link where you can find the complete steps: setting up parental controls
Please let us know if you need more help and we will help you the best we can.
Thank you.
-
Need help to set up voice VLAN in SG300
Hello
I spent too much time on it now and need help. I'm trying to set up a voice switch VLAN on a SG300 - 28 p. I need to charge a phone Cisco 7965 connected to a port on SG300 - 28 p to use VLAN 100, and a workstation connected to the phone to use Cisco 7965 on VLAN 101 by SG300 - 28 p. In the common Cisco IOS switches, this task is configured as follows:
interface gi25
switchport mode access
switchport access vlan 101
switchport voice vlan 100
Trying to achieve this scenario with a Cisco SG300 switch turns into a nightmare. You will have to deal with a Dynamic of VLAN voice Auto Voice VLAN mode. Then, you must have a configured trigger and activated Automatic Smartport . I tried to do this in CLI nothing helps. Cisco 7965 receives an IP address of the access VLAN on Gi15 interface, which is 101 VLAN. I need to receive an address IP of the VLAN 100.
The current configuration under Gi15 interface is as follows:
interface gigabitethernet15
activate the storm control
broadcast storm control level kbit/s 10
Storm-control include multicast
port security throw trap 60
maximum port security by 10 points
port security mode max-addresses
spanning tree portfast
LLDP-med disable
switchport mode access
switchport access vlan 101
! next order is internal
macro auto smartport dynamic_type unknown $native_vlan 101 $voice_vlan 100
Now, I don't know how the macro auto smartport dynamic_type unknown $native_vlan 101 $voice_vlan 100 command in the config, and I do not know how to remove it.
When I try to enter the command macro auto smartport type ip_phone_desktop under Gi15 interface, I get the following error message:
The $voice_vlan macro setting is not configurable by the user
It seems that the auto attendant smartport macro ip_phone_desktop can not apply the setting $voice_vlan with a value of 100. In fact, I explicitly does not use this parameter to everything in the order of macro auto smartport type ip_phone_desktop ; However, the SG300 switch knows that the voice VLAN VLAN 100, and he's trying to use this VLAN ID as the value of the $voice_vlan parameter, the macro fails.
I tried statically configure the voice VLAN on the switch SG300 using the command id of the vlan 100 voice , but I couldn't get the ip_phone_desktop macro to configure interface Gi15 correctly. Then, I removed the command id of the vlan 100 voice and obtained SG300 to learn his voice VLAN ID of UC560 connected to the SG300 through a trunk port based on the port configuration (connected to SG300) for the trunk of the next UC560:
switchport trunk vlan 101 native
switchport mode trunk
switchport voice vlan 100
Cisco-switch macro description
This is the command switchport voice vlan 100 who announces to SG300 via CDP VLAN 100 is a voice VLAN. When I run the command show vlan local VoIP on the SG300, I get the following result:
VLAN ID - VPT DSCP Source MAC address Interface
1 5 46 default ---- ---
* 100 CDP e0:5f:b9:xx:yy:zz gi28
Thus, it is clear that the SG300 receives information from UC560 via CDP in port Gi28 VLAN 100 is the voice VLAN. However, I can not always apply the ip_phone_desktop macro to SG300 Gi15 interface.
Also, I tried to set up vState ofoithis vlan auto-déclenché as well as the commands in global configuration State vlan automatic voice activated mode. Or setting changes anything view voice VLAN announced at Cisco 7965 where Cisco 7965 continues to use VLAN101 (access the VLAN assigned to the interface Gi15).
Hello telecastle,
The Macro just get in the way most of the time. A default state on the switch a user will set the id of the vlan voice with orders
(config) #voice vlan id 100
* This will create the vlan 100
VLAN, VoIP? * You can use to change your defaults for dscp and cos a long with all the other settings.
State of vlan (config) enabled automatic #voice
(config) #interface rank fa1-24
(config-if-range) #switchport trunk vlan 101 native
trunk (config-if-range) #switchport allowed vlan add 100
* This function will define the vlan native on the trunk to 101 for the data port and vlan tagged will be 101 for the voice.
CDP is enabled automatically and should learn the features of the phone and get on the phone to the vlan 101 on this port.
CDP of the UC should automatically fill in the switch of the SG. You may need to upgrade the switch to the latest firmware however. Also make sure that the DHCP server for the voice if the CPU must be configured accordingly.
Let me know if this helps.
Cisco Small Business Support Center
Randy Manthey
CCNA, CCNA - security
-
Site to Site VPN IPsec IPv6 on issue of routers-Tunnel
Hi, I am experiencing a problem can any one address the question below and let me know the solution. I have two routers and try to build "Site to Site VPN IPsec IPv6". I followed orders from Cisco and community document but when I apply my profile of ipsec for tunnel interfaces, that the tunnel is down.
https://supportforums.Cisco.com/docs/doc-27009
Ali,
VTI tunnels are meant to be broken when there is no active negotiated spinnakers.
The tunnel will go towards up/face upwards when there is a means of transport of packages - i.e. the SPIs are present.
You can control the order spinnakers 'show peer's crypto ipsec '.
For debugging:
Debug crypto isa
Debug crypto ipsec
M.
-
Need help, cannot set references to Photoshop.Application in VBA
Hello
I've used CS5 in the past and have had a VBA program works well (running in Access 2010) which went very well, open Photoshop 32-bit and controlled photoshop CS5 normally, allowing me to manipulate photos, read metadata, etc. (It was my understanding that at least for CS5, programs including VBA script necessary to run the 32-bit version of Photoshop, not the 64-bit version).
About 6 months ago, I installed CS6 and VBA program continued to work perfectly, as it always opens the 32-bit version. (I had to be sure that I was not running 64-bit Photoshop when I started the VBA program). CS5 was still installed but not used.
I just uninstall CS5, leaving CS6 installed. For some reason, he left the program VBA disturbed in that the references (that you set in the window of the VBA code with tools > References) no longer seem to be valid. I can't set a new reference to Photoshop.Application, and the program became unusable. In other words, the "references" list is more typotheque Adobe Photoshop CS6 or Adobe Photoshop CS6 Object Library. I've traveled to the C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit) \TypeLibrary.tlb file to add this reference manually. The programs does not yet compile (for example, appRef As New Photoshop.Application Dim causes an error "User Defined Type not defined"). I get the same failure to compile if I search for and install a reference to the 32-bit version, C:\Program Files (x 86) \Adobe\Adobe Photoshop CS6\TypeLibrary.tlb. In the past, I also had a reference to the 'Adobe Photoshop CS6 Object Library". I tried manually to C:\Program Files (x 86) \Adobe\Adobe Photoshop CS6\Photoshop.exe or the 64-bit version of Photoshop.exe, but these files are not accepted and I do not otherwise know the location of the file from the object library.
I so need help from someone who knows how to solve this problem in the transition of CS5 at CS6 to use VBA.
Thank you
EGibbon
There are global keys which crushed with every version of Photoshop. Photoshop.Application gets for example set for each installation of Photoshop. When you have uninstalled CS5 these keys got deleted.
You can install CS6 again? You don't need to uninstall. Just install again if it will let you.
I have a script that wil set them, but I don't really like to use it on other machines of people as it messes with the registry and I don't want to make it worse for you.
-
Need help to set a DELETE statement.
I have a table that contains the records of files. Files come in a bouquet each week. So, we need to delete records from a table to the corresponding fields and load the table with up-to-date data.
In doing so, the DELETE statement takes a long time. Need help with this setting.
Here are the details.
(1) total number of records in the table: 23 million records.
(2) approximate records deleted each time: 500 K to 1.5 million.
(3) table is partitioned on a PERIOD key. That is, each partition will have the data for a given period.
(4) table is not indexed
(5) removal occurs on a combination of 2 fields (PERIOD + BATCH).
Here is the query and the plan:
===========================================================
SQL > EXPLAIN PLAN SET STATEMENT_ID = 'TSH' FOR
2 REMOVE / * + PARALLEL(DETAIL_UNKNOWN,10) * / u DETAIL_UNKNOWN
3 WHERE u.FLBATCHID = 'PCAFRINTERMAR1105' AND u.N_PER6 = 201214
4;
He explained.
SQL > SET LINESIZE 130
SQL > SELECT * FROM TABLE (DBMS_XPLAN. DISPLAY ('PLAN_TABLE', 'TSH', 'ALL'));
PLAN_TABLE_OUTPUT
----------------------------------------------------------------------------------------------------
Hash value of plan: 2400300449
----------------------------------------------------------------------------------------------------
| ID | Operation | Name | Lines | Bytes | Cost (% CPU). Time | Pstart. Pstop |
----------------------------------------------------------------------------------------------------
| 0 | DELETE STATEMENT. 596K | 12 M | 838 (9) | 00:00:12 |
| 1. REMOVE | DETAIL_UNKNOWN |
| 2. SIMPLE HASH PARTITION | 596K | 12 M | 838 (9) | 00:00:12 | 6. 6.
|* 3 | TABLE ACCESS FULL | DETAIL_UNKNOWN | 596K | 12 M | 838 (9) | 00:00:12 |
----------------------------------------------------------------------------------------------------
PLAN_TABLE_OUTPUT
----------------------------------------------------------------------------------------------------
Name of the query block / Alias object (identified by the operation identity card):
-------------------------------------------------------------
1 LED$ 1
3 LED$ 1 / U@DEL$1
Information of predicates (identified by the operation identity card):
---------------------------------------------------
3 - filter("U".") FLBATCHID '= 'PCAFRINTERMAR1105' AND 'U'." N_PER6 "= 201214)
PLAN_TABLE_OUTPUT
----------------------------------------------------------------------------------------------------
Projection of the column information (identified by the operation identity card):
-----------------------------------------------------------
2 - (cmp = 2, 3) "U". ROWID [ROWID, 10], "U". "N_PER6" [NO.22], 'U' "." " FLBATCHID ' [VARCHAR2, 20].
3 - « U ». ROWID [ROWID, 10], "U". "N_PER6" [NO.22], 'U' "." " FLBATCHID ' [VARCHAR2, 20].
27 selected lines.
===========================================================
Need your suggestions on how the query / table can be tuned.Hi Anand,
I wanted to check why your tkprof Watch report two executions of the statement:
call count cpu elapsed disk query current rows ------- ------ -------- ---------- ---------- ---------- ---------- ---------- Execute 2 2315.71 2480.17 0 3351 624489 611765
In fact, it there was only a single execution of the DELETE statement. The trace file begins with a call EXEC of any statement without call analysis
*** TRACE DUMP CONTINUED FROM FILE XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX_ora_241708.trc *** EXEC #1:c=20000,e=13996,p=0,cr=0,cu=0,mis=0,r=0,dep=0,og=0,tim=32472879711702 ===================== PARSING IN CURSOR #2 len=68 dep=0 uid=72 oct=42 lid=72 tim=32472883567994 hv=740818757 ad='0' ...
TKProf aggregates this EXEC call with call EXEC of the DELETE statement because they have the same location of cursor (#1), he thinks it was the same cursor.
PARSING IN CURSOR #1 len=93 dep=0 uid=72 oct=7 lid=72 tim=32472889974030 hv=1242910589 ad='e5979d80' DELETE from detail_unknown where n_per6 = 201214 and FLBATCHID = 'PCAFRINTERMAR1105' END OF STMT PARSE #1:c=0,e=11462,p=0,cr=0,cu=0,mis=1,r=0,dep=0,og=1,tim=32472889974024 ... EXEC #1:c=2315710000,e=2480213492,p=0,cr=3691,cu=624489,mis=0,r=611765,dep=0,og=1,tim=32475370187626
So, the question about two executions is closed - there was only a single run.
The performance - 2315,71 seconds of time processor is absolutely huge for such amount of work. It looks like a bug.
First, I propose to check the time without compression. If your environment allows this kind of testing try to decompress the partition and re - run on unpacking data DELETION.
10.2 find the name of the partitionselect partition_name from dba_tab_partitions where table_name = 'DETAIL_UNKNOWN' and partition_position = 6
After that
alter table DETAIL_UNKNOWN modify partition
nocompress; alter table DETAIL_UNKNOWN move partition ; and run again the button DELETE.
What is the operating system on the server?
-
I need help to set up the linksys adsl router
Hello world!
I have LINKSYS WIRELESS - N HOME ADSL2 + MODEM ROUTER (wag120n) and I connect to the internet via the cable that I took my friend who already SPEEDTOCH ADSL ROUTER, I bought the d-link wireless card and I install it in one of my PC
what I need is to set up my linksys wireless router for my two PCs, on via the wireless and another an ethernet cable, how can I do?thanks4all
Follow this link to configure the router.
-
Need help to set up AP 1142 standalone
Hi all
Need help. I am trying to configure Cisco Aironet 1142 standalone, this access point has been previously connected to WLC and the previous post, I found that we need to delete and reload the AP
private-multiple-fs, c1140-k9w8 - mx.124 - 21A .JHA
Now when I try to configure the IP address for the AP, he is in error:
Ip address of AP1142 #lwapp ap 10.61.1.151 255.255.255.0
ERROR! Command is disabled.
AP1142 #.Current flash content:
AP1142 #dir
Directory of flash: /.2 - rwx 10264 March 1, 2002 01:25:57 + 00:00 private-multiple-fs
3 - rwx 90396 March 1, 2002 01:18:04 + 00:00 event.log
drwx-5 128 1 March 2002 00:12:24 + 00:00 c1140-rcvk9w8-mx
8 - rwx 0 March 1, 2002 01:26:06 + 00:00 config.txt
9 - rwx 337 March 1, 2002 01:18:04 + 00:00 env_varstotal 32385024 bytes (30019584 bytes free)
AP1142 #.Please let me know whatelse is required for the configured in stand-alone mode access point.
Thanks in advance
The image that is on the device's LWAPP, not the autonomous... If you want to use the AP autonoous mode then the image must be W7... It's...
C1140-k9w7 - mx.124 - 21A .JHA not c1140-k9w8 - mx.124 - 21A .JHA.
Please feel free to download any image from the below link and perform the conversion of image LWAPP to stand alone...
the methos to convert is...
Download TFTPd32 of google and install it on your PC... point of the image that you downloaded on the TFTP server.
Connect a cable ethernet between your notebook and AP... both should be on the same subnet... Connect a cable from the console and access the hyperterminal console with the command...
AP > en
AP #debug lwapp console cli or debugging console cli capwap
T AP #config
AP (confg) int FA 0
AP(confg-IF) ip addr (same subnet as the laptop)
End AP(confg-IF)
Force - reload DOWNLOAD - AP #archieve sw / overwrite tftp: / /.
This will solve the problem...
Concerning
Surendra
-
need help to set the access rights of a vmware server 2.0.1 on vmware image
Hello!
I have a vmware (running ubuntu server 9.04) image that was created with a vmware server installation varsion 1.0.9. now I decided to upgrade to the host, which means that the host totally changed: new equipment, new OS, new vmware-server-version: 2.0.1
My problem atm is, I may not know, what would be the appropriate access rights (chown/chmod) for this vmware image. during the installation of vmware server 2.0.1 I was asked to specify some 'administrative user' where I took the an im working with Linux itself (lets call it "user").
so, when I copied the old vmware image in the data store (/ var/lib/vmware/VirtualMachines for me), chown-ed the folder including all files init by A, setting chmod to something like 600, the console vmware (web surface) told me that there were several problems with the image and couln can't be started etc. etc. etc...
I played with several rights to the image and the only thing that seemed to help was setting the folder and all files included in 'root' with the command chmod chown '777'... not what I would call 'secured '.
so: how to set the access rights for the virtual machines? I want that they have only minimal rights as possible and especially nothing like root: 777...
My static VM files, as in those who are not dynamically created when the virtual machine starts, are the property of root, root of group with permissions of 711. Root is the user that I have chosen as the admin user when you run vmware - config.pl. My users do not have direct access to this server, so I'm not too worried about the permissions. You can give different rights for different users to different virtual machines, creating roles and their allocation to users/groups. On that, the details are in Chapter 10 of the user guide - http://www.vmware.com/pdf/vmserver2.pdf.
Guy Leech
VMware vExpert 2009
---
If you have found this device or any other answer useful please consider the use of buttons useful or Correct to award points.
-
Need help to set up VMware Fusion 2
I am trying to configure VMware Fusion 2 and need help with the proper way, access this topic. I have a Mac Pro with XP Pro installed via Boot Camp.
One of my hard drives is 1 TB that I dedicated 300 GB to Windows and installed XP Pro with Office 2007, MS Flight Simulator and a few other programs. The rest of the disc is for Mac stuff. I intend to run MS Flight Simulator natively via Boot Camp, but want to run Office and a few other programs via VMware Fusion 2.
VMware Fusion 2 is installed on the computer, but I'm confused by how to configure. Should what steps I take to do this?
Normally, if there is a Boot Camp partition with Windows installed VMware Fusion detects it automatically and complete an entry on the library of Virtual Machine named Boot Camp partition and you simply double-click and he should be executed even if the first time it is run it through a preparatory process that takes a few minutes.
That being said there are several reasons why the Boot Camp partition might not automatically appear on the Virtual Machine library and to the solution the simplest it's Fusion of closing and reopening it however if it doesn't then it becomes more difficult to diagnose and fix if possible.
Also, there are a problem experienced during the Boot Camp partition is located on a drive more than 950 GB and a 1 TB HARD drive should show about 931 GB I don't know exactly what Fusion studies in this area to determine her size but I think that the issues that I have seen posted the deal with more than 1 TB HARD disk as in the post in this search result link: the search results for 1.5 GB Seagate.
You can also try to manually create a virtual hard disk that is then more metadata pointing to the raw disk and manually create a partition Boot Camp Virtual Machine around that but I do not have the necessary parameters to stop this Boot Camp partition manually created the Virtual Machine to take snapshots or being suspended unless someone VMware will show what these settings are for Fusion 2.x I am reluctant to give directions as it would be dangerous to run with these capabilities on a manually created partition from Boot Camp Virtual Machine.
Other reported problems treated with NTFS - 3G installing stopping the Boot Camp partition to be recognized automatically and have to temporarily uninstall NTFS - 3 G.
He had to see what he says in System Profiler for the hard disk on which you have Boot Camp. Select the target Serial - ATA drive and copy and paste the information for this drive in a response.
-
Need help to set up the VPN connection using my mobile
Title: VPN
I am running Windows Vista 32 with a NetGear WNR1000 router and need some giudance to set up a VPN with my phone Samsung Galaxy G3. Can someone help Sir with these steps?
Hello
Thannk you for the reply with the status of the issue.
I suggest you go ahead and post the same question in the Microsoft Technet forum for assistance.
-
I have the following message come upward during the visit of my mobile site, I need help!
When visiting my website on a mobile device this message, ('some files on the server may be missing or incorrect. Clear the cache of the browser, and then try again. If the problem persists please contact author Web site. »)
I talked to my hosting company and they say it's to do with the script and this must be changed. They gave me a link to a Web site with instructions. CodingForums.com as with most people using Muse the reason we use it is because there is no need to use the code. I don't really have no where to start with this.
Y at - there anyone out there that can help me.
Thank you
Very difficult for anyone to provide assistance without the URL of your site.
Maybe you are looking for
-
Need drivers for the controller ethernet and network on Tecra M2
I formatted and reinstalled Xp Pro SP2 on my Tecra m2.I installed and found all other drivers, but can't seem to find the correct drivers for the network and ethernet devices controllers. I downloaded a few different drivers that are compliant with t
-
The Omni 10 will be damaged by attaching to a powered usb hub? I need to get a micro usb hub to attach the mouse and wireless keyboard.
-
Compatibility of motherboards for HP laptop.
Agin Hello my friends HP experienced! At that time, I have a question on 2 laptops. First of all, I have a HP DV9910 us. It had Vista, which has been upgraded to win. 7. now, I had posted this question before, on the noise problem, it works well, how
-
Update of Vista is 0% complete and the computer shutsdown
Laptop of my son is cycling with the message "Configuration updates: stage 3 of 3-0% complete.". Do not turn off your computer' it then stops after a 30 seconds and automatically restarts the same message. Help please. Tom
-
Re: scanner failure hp 4280 all in one printer scanner copier
Can someone help me please? I have a HP Photosmart C4280, which will print but will not scan when you use it with my Mac from Apple. I looked at different positions and have installed, removed, re-installed. The Mac sees the printer and the scanner