Stuck in troubleshooting (VPN's UP, ping the ethernet router (side lan) works but OTHER SERVERS...)

Similar Questions

• Main server cannot ping the server 2 to another location, but the 2nd Server can ping the backend

  I have 3 servers: server and 2 servers to files in another country.

  My main server can only ping the 2nd file server.

  But both of our servers in 2 files from another country can ping on the principal server.

  In short, I can not away to the first file server.

  The settings on both servers of files are the same. And I don't have access to the 2nd file server issues using the main server.

  If someone has the patience to help me understand the question?

  This issue is beyond the scope of this site and must be placed on Technet or MSDN

  http://social.technet.Microsoft.com/forums/en-us/home

  http://social.msdn.Microsoft.com/forums/en-us/home

• I just installed an airport extreme router and WiFi works, but the status light still flashes.

  I just installed an airport extreme router and WiFi works, but the status light still flashes.

  Open airport utility... Click EI... and see what the cause of the problem. It will give the list of questions on the summary page. Click on each of them and he will offer you even solutions.

  for example the firmware needs to be updated... nothing major... or DNS is wrong or double NAT...

  Without our crystal ball, we do not know what is the issue.

• all the site went "not found HTTP 404 error. The requested resource is not found. "and the"Firefox cannot load Web sites but other programs can"page is not helping

  all the site went "not found HTTP 404 error. The requested resource is not found. "and the"Firefox cannot load Web sites but other programs can"page is not help somehow

  One possible cause is security software (firewall, antivirus) that prevents or limits Firefox or plugin-container process without informing you, possibly after the detection of changes (update) for the Firefox program.

  Delete all rules for Firefox and the plugin-container in the permissions list in the firewall and leave your firewall again ask permission to get full unlimited access to the internet for Firefox and the plugin-container and the update process.

  See:

  • https://support.Mozilla.org/KB/server+not+found
  • https://support.Mozilla.org/KB/firewalls
  • http://KB.mozillazine.org/Error_loading_websites

  You can try to reset (power off / on) of the router.

• Site to site VPN tunnel - cannot ping the second interface of the firewall peer inside2

  I have two ASA 5505 firewall each with a basic license: FWa and FWb. currently there is a VPN tunnel between them work. I added a second (inside2) interface to the firewall, FWb, but I can't ping firewall FWa, so that I can ping the inside interface of FWa.

  I can ping the FWb inside interface 192.168.20.1 from the FWa inside 172.16.1.1 interface, but I can not ping to the 10.52.100.10 of the FWa FWb inside2 interface. I can not ping the gateway host FWa 10.52.100.1.

  I show the essential configuration of two firewalls as well as the debug icmp output on the two firewalls that I ping the internal interfaces and of FWa FWb inside2.
  =========================================================

  Here is a skeleton of the FWa configuration:

  name 172.16.1.0 network-inside
  name 192.168.20.0 HprCnc Thesys
  name 10.52.100.0 ring52-network
  name 10.53.100.0 ring53-network
  name S.S.S.S outside-interface

  interface Vlan1
  nameif inside
  security-level 100
  IP 172.16.1.1 255.255.255.0
  !
  interface Vlan2
  Description Connection to 777 VLAN to work around static Comast external Modem and IP address.
  nameif outside
  security-level 0
  outside interface IP address 255.255.255.240

  the DM_INLINE_NETWORK_5 object-group network
  network-object HprCnc Thesys 255.255.255.0
  ring52-network 255.255.255.0 network-object
  ring53-network 255.255.255.0 network-object

  the DM_INLINE_NETWORK_3 object-group network
  ring52-network 255.255.255.0 network-object
  network-object HprCnc Thesys 255.255.255.0
  ring53-network 255.255.255.0 network-object

  outside-interface of the access-list extended permitted Outside_5_cryptomap ip host object-group DM_INLINE_NETWORK_3
  inside_nat_outbound list extended access allowed inside-network ip, 255.255.255.0 DM_INLINE_NETWORK_5 object-group
  permit access list extended ip host 173.162.149.72 Outside_nat0_outbound aus_asx_uat 255.255.255.0

  NAT (inside) 0 access-list sheep
  NAT (inside) 101-list of access inside_nat_outbound
  NAT (inside) 101 0.0.0.0 0.0.0.0
  NAT (outside) 0-list of access Outside_nat0_outbound

  card crypto VPN 5 corresponds to the address Outside_5_cryptomap
  card crypto VPN 5 set pfs Group1
  VPN 5 set peer D.D.D.D crypto card
  VPN 5 value transform-set VPN crypto card
  tunnel-group D.D.D.D type ipsec-l2l
  IPSec-attributes tunnel-Group D.D.D.D
  pre-shared key *.

  =========================================================

  FWb:

  name 10.52.100.0 ring52-network
  name 10.53.100.0 ring53-network
  name 10.51.100.0 ring51-network
  name 10.54.100.0 ring54-network

  interface Vlan1
  nameif inside
  security-level 100
  address 192.168.20.1 255.255.255.0
  !
  interface Vlan2
  nameif outside
  security-level 0
  address IP D.D.D.D 255.255.255.240
  !
  interface Vlan52
  prior to interface Vlan1
  nameif inside2
  security-level 100
  IP 10.52.100.10 255.255.255.0

  the DM_INLINE_NETWORK_3 object-group network
  ring52-network 255.255.255.0 network-object
  ring53-network 255.255.255.0 network-object

  the DM_INLINE_NETWORK_2 object-group network
  ring52-network 255.255.255.0 network-object
  object-network 192.168.20.0 255.255.255.0
  ring53-network 255.255.255.0 network-object

  inside_nat0_outbound to access extended list ip 192.168.20.0 allow 255.255.255.0 host S.S.S.S
  inside2_nat0_outbound list extended access allowed object-group DM_INLINE_NETWORK_3 S.S.S.S ip host

  outside_1_cryptomap list extended access allowed object-group DM_INLINE_NETWORK_2 S.S.S.S ip host

  NAT (inside) 0-list of access inside_nat0_outbound
  NAT (inside) 1 0.0.0.0 0.0.0.0
  inside2_nat0_outbound (inside2) NAT 0 access list
  NAT (inside2) 1 0.0.0.0 0.0.0.0

  Route inside2 network ring51 255.255.255.0 10.52.100.1 1
  Route inside2 network ring53 255.255.255.0 10.52.100.1 1
  Route inside2 network ring54 255.255.255.0 10.52.100.1 1

  card crypto outside_map 1 match address outside_1_cryptomap
  card crypto outside_map 1 set pfs Group1
  outside_map game 1 card crypto peer S.S.S.S
  card crypto outside_map 1 set of transformation-ESP-3DES-SHA
  outside_map interface card crypto outside

  tunnel-group S.S.S.S type ipsec-l2l
  IPSec-attributes tunnel-group S.S.S.S
  pre-shared key *.

  =========================================================================
  I'm Tournai on icmp trace debugging on both firewalls and could see the traffic arriving at the inside2 interface, but never return to FWa.

  Ping Successul FWa inside the interface on FWb

  FWa # ping 192.168.20.1
  Type to abort escape sequence.
  Send 5, echoes ICMP 100 bytes to 192.168.20.1, time-out is 2 seconds:
  Echo request ICMP from outside-interface to 192.168.20.1 ID = 32068 seq = 23510 len = 72
  ! ICMP echo reply to 192.168.20.1 in outside-interface ID = 32068 seq = 23510 len = 72
  ....

  FWb #.
  Echo ICMP of S.S.S.S to 192.168.20.1 ID request = 32068 seq = 23510 len = 72
  ICMP echo reply 192.168.20.1 S.S.S.S ID = 32068 seq = 23510 len = 72
  ==============================================================================
  Successful ping of Fwa on a host connected to the inside interface on FWb

  FWa # ping 192.168.20.15
  Type to abort escape sequence.
  Send 5, echoes ICMP 100 bytes to 192.168.20.15, wait time is 2 seconds:
  Echo request ICMP from outside-interface to 192.168.20.15 ID = seq 50862 = 18608 len = 72
  ! ICMP echo reply to 192.168.20.15 in outside-interface ID = seq 50862 = 18608 len = 72
  ...

  FWb #.
  Inside outside:S.S.S.S ICMP echo request: 192.168.20.15 ID = seq 50862 = 18608 len = 72
  ICMP echo reply to Interior: 192.168.20.15 outside:S.S.S.S ID = seq 50862 = 18608 len = 72

  ===========================
  Unsuccessful ping of FWa to inside2 on FWb interface

  FWa # ping 10.52.100.10
  Send 5, echoes ICMP 100 bytes to 10.52.100.10, wait time is 2 seconds:
  Echo request ICMP from outside-interface to 10.52.100.10 ID = 19752 seq = 63173 len = 72
  ? Echo request ICMP from outside-interface to 10.52.100.10 ID = 19752 seq = 63173 len = 72
  ...

  FWb #.
  10.52.100.10 ID of S.S.S.S ICMP echo request = 19752 seq = 63173 len = 72
  10.52.100.10 ID of S.S.S.S ICMP echo request = 19752 seq = 63173 len = 72
  ....

  ==================================================================================

  Unsuccessful ping of Fwa to a host of related UI inside2 on FWb

  FWa # ping 10.52.100.1
  Type to abort escape sequence.
  Send 5, echoes ICMP 100 bytes to 10.52.100.1, wait time is 2 seconds:
  Echo request ICMP from outside-interface to 10.52.100.1 ID = 11842 seq = 15799 len = 72

  FWb #.
  Echo request ICMP outside:S.S.S.S to inside2:10.52.100.1 ID = 11842 seq = 15799 len = 72
  Echo request ICMP outside:S.S.S.S to inside2:10.52.100.1 ID = 11842 seq = 15799 len = 72

  =======================

  Thank you

  Hi odelaporte2,

  Is very probably the "access management" command is not applied in the second inside, only inside primary (see the race management) which will confirm.

  This command can be applied to an interface at a time, for example, if the law is now applied to the inside, it can not be applied to the inside2 at the same time.

  It may be useful

  -Randy-

• My local network works, but why I can't ping? LAN works but not internet. A simple quest to the Jedi.

  Hi all!

  I have weird problem and I hope some of you can enlighten us if necessary.

  The background:

  My OS is Windows Vista Home Premium SP 2.   One day, I installed an application proxy - ProxyCap - as a free trial for 30 days.  The application installed a few dll Winsock provider.  After the 30 day trial, I uninstalled the app.  Then the problems started.  Even if the application proxy has been disabled, regular internet links have been completely normal and not affected.  It was only after uninstalling the app that I have problems.

  The problem:

  • The computer is unable to connect one more to any website using the browser.
  • My local network seems to be fully functional, which involves a problem of setting the software.  I say that my LAN is functional if I am going to sign--> Network and Sharing Center--> view status and look under the "Activity" section, I see the link send and receive packets without problem.
  • If I go into control panel of--> Network and Sharing Center--> view status of--> diagnosis, I get the message: "cannot communicate with DNS Server (xxx.xx.xxx.xxx) Network Diagnostics ping to the remote host, but has not received a response."
  • Indeed, if go to start--> cmd and ping my DNS server, I get a general failure for all 4 packets sent.
  • However, I am able to ping my localhost to 127.0.0.1

  My settings:

  • My ipconfig/all output: http://pastebin.com/Ksn2k2ja
  • DHCP is enabled.
  • For the properties of connection LAN--> Internet Protocol Version 4 (TCP/IPv4)--> properties, I 'IP automatically get an address' and "Obtain DNS server address automatically" selected.
  • The same goes for--> Internet Protocol Version 6 (TCP/IPv6)--> properties.
  • The Sysinternal autoruns--> tab providers Winsock application, tells me that I have the "Hello Namespace Provider' active as a WinSock2 registry entry. It is mdnsNSP.dll and published by Apple Inc..  Who was present before installation of the proxy, and this is for iTunes.  Screenshot: http://i1300.photobucket.com/albums/ag86/applemeetworm/winsock_zpsb41ca872.jpg

  What I tried:

  • I tried to reset Winsock for Vista by clicking Start--> cmd and type netsh winsock reset , and restart the computer.
  • I tried to reset the TCP/IP stack by clicking Start--> cmd and type netsh int ip reset c:\resetlog.txt and restart the computer.
  • Restart my router.
  • Deactivation and activation then my connection to the local network.

  Thank you all for helping me with my problem.  I would be happy to provide more information as needed.  Thanks for the research and thanks offering solutions.

  See you soon!

  Hi all!

  I contacted ProxyCap and support staff has been able to solve the problem.

  Apparently, one of my entries in registry Winsock2 (Winsock2, Namespace Catalog5, 5 catalog entries) has been disabled somehow, uninstalling or in my first attempts to address issues after uninstall.

  Thanks to ProxyCap and for other people who have tried to help.

  ~ Congratulations ~.

• When I'm on Facebook and playing Fish World, send gifts no longer works, the drop-down list does not open enough to see the button 'send '. This works in other games, but not in the world of fish, and I contacted global fish who said it was a browser issu

  starting yesterday I can't decline to the bottom of the box open to send gifts to my friends. Fish world told me a few weeks ago, it was because of some updates on Facebook, but now that has been set and I can't get the inFB game to work. It works with other browsers - Chrome and IE9. Is there something I have to do on my end to fix this? Other facebook games works perfectly with drop-down boxes, it is only in fish world.

  problem solved

• Firefox 6 is a disaster, not only the google toolbar does not work but also yahoo toolbar

  I've updated to firefox 6 and now my yahoo toolbar does not work. It was first the google toolbar is not compatible with firefox 5 now the yahoo toolbar does not work HELP?

  See this - http://help.yahoo.com/l/us/yahoo/toolbar/toolbar2ff/troubleshootff/;_ylt=Akw3jVWwVDlujfQI3kFVqduJsHdG

  Check and tell if you are able to solve the problem.

• My Dell laptop refered me article 871122 # to fix the wifi feature. It works but I have to apply the fix, every time that I reboot my system. How can I make permanent?

  This solution worked, but when the computer is restarted, it disconnects and I need to run the fix it reconnects.  How to make the correction permanent?

  Hello

  Check the startup folder and make sure utility wireless a provider is not "kicking" and disable the Utility (WZC) Windows each time you start the computer.

• My computer crashed so could not remove CS5. Uploaded my CS5 disk to the new computer. Download worked but no update won't work and my raw files from my Canon 5 d Mark 111 is more open (they did previously).

  My computer crashed while I couldn't remove my CS5 Master Collection. I used my disk to load the program on my new computer. It worked but updates don't work nor bridge will recognize the raw files from my Canon 5 d Mark111. He acknowledged previously. Now, he says to convert to DNG, so I tried this but bridge is not to convert photos (even if it does not convert the raw files from my previous cameras).

  Try direct updates
  https://www.Adobe.com/downloads/updates/

• I am trying to reinstall Flash CS4 professional as the script action does not work, but now I get an error: 2 message when I use the original CD to reinstall

  I can't get the original disc work on resettlement.  I get the message

  AdobeColorCommonSetRGB

  Error:

  Error 2.

  I'm teaching a class using this program on Macintoshes running 10.9.5 and action script does not work.  It will work on any program designed by using the 10.8, but if you create an animation on 10.9.5 the action script will not work for buttons

  You must manually remove the color in question profiles... Run the cleanup tool and see if it's to help you get started.

  http://www.Adobe.com/support/contact/cscleanertool.html

  Mylenium

• Java script not working not not in 1 pdf, but the same script does NOT work in other

  Dear Experts,

  I have a problem with java script.

  I created 2 PDF files with the same name under the names of form and shape.

  I wrote a javascript script and the script seems to work in a (Demand2.pdf) and DOES not work in others (exemple.pdf).

  The link for Demand2.pdf is
  https://Acrobat.com/#d=XIydWx1RIU4oNdTySHtHfg

  and the link for exemple.pdf is
  https://Acrobat.com/#d=sKPRs2dtDY57RSvMVtnh3w

  Can you please guide me on this.

  Thank you very much

  BookFans

  Hello

  The second file (exemple.pdf) is saved as Static. The script changes the visual appearance of the form (show and hide objects). This requires the file to save dynamic PDF format. This option is available for registration - as the dialog under the file name.

  

  Good luck

  Niall

• a way vpn with asa to the 800 router

  people

  I have a site to site vpn set up between a asa 5540 and a 800 router

  I want only the vpn to be initiated from the asa with the 800 remote listen incoming connections

  I know that I can define the type of connection on the asa as only come but I can find an equivalent command to answer only for the 800 remote

  can anyone point me in the right direction or is it enough to simply configure the asa as are created only for this encryption card

  Thanks to anyone who takes the time to answer

  Hello

  I recommend you configure the tunnel as a dynamic to static tunnel VPN, the ASA will be the static counterpart, so it will be the initiator and the router will never be able to establish the connection.

  The ASA will be a common L2L configuration, but the router will use a dynamic encryption card.

  http://www.Cisco.com/en/us/Tech/tk583/TK372/technologies_configuration_example09186a008051a69a.shtml

  The PIX in the example is old, then you can simply adjust the controls to your current version, the important thing is to understand the concept.

  Please let me know if that answers your question,

  Thank you.

• Command to check the tunnel VPN S2S awhile in the cisco router

  Dear all,

  Please share the command check S2S tunnel of time that is configured on the router.

  There are commands that define the lifetimes of (his) IPSec Security Associations, ISAKMP.

  For example:

  crypto ISAKMP policy 1
  BA 3des
  preshared authentication
  Group 2
  life 3600

  life 3599 seconds crypto ipsec security association

  ... and you can determine the remaining lifetime for these SAs with the following commands:

  SH detail session crypto

  SH in detail its crypto isakmp

  SH crypto ipsec his

  The delta between the lifetime (s) configured and remaining life will tell you how much time has passed since the last regeneration, but that is as close you are likely to have to determine when the tunnel came first.

  You could use other means as States of syslog for you say when a Tunnel is a transitioning upwards or downwards.

  Best regards

  Mike

• How can you make Firefox the default browser when the normal route does not work?

  Im trying entirely chrome once a friend showed how my firefox got his act together. However I can't for the life of me set it as default browser. I tried the 'make firefox the default browser' button in firefox, making that opens the windows default programs Panel. Whenever I try to use the Panel she simply sets the Protocol http for every night, which is not yet installed! ( http://puu.sh/2vJHM ) I think that a possible solution would be to change the registry manually, but I don't know where to start.

  Thank you for your help, but I managed to fix it by myself. The registry key for the associations of html and URLs of firefox have been corrupted so I scoured their in regedit (at HKEY_CLASSES_ROOT\FirefoxHTML and HKEY_CLASSES_ROOT\FirefoxURL) and them deleted entirely, then redid them by clicking on the make default firefox button in the options.