vMotion fails at 9% - Source host cannot connect to the destination host
Hello
I wonder if someone could shine any light on why vmotion fails to occur between an ESXi host who has just been restarted, in order to test HA. I have the following configuration:
3 x ESXi5 DL360 G7s with two 4-way NIC
VSphere Vcenter 5
1 x cluster configured for DRS HA
2 x Procurve 2910 - 24G
The switches are not connected to each other.
Both switches are configured as such:
All ports are not marked. NO PLEASE, no routing
Each host vMotion vSwitch is connected to two switches by 1 x 1 GB nic
I configured a vswitch on each host of vMotion. There are two ports vmkernel with two IPS on the same subnet. There are two vmnic attached to the vSwitch. On each port, a Vmic is configured to be active while the other is unused. I enabled frames on the vSwitch and 2910 switches. A VLAN has been configured on the two predisposees 2910 for vmotion with frames and defined traffic on "no label". I can successfully vmkping all the ip s vmotion on all ESXi hosts. However, when I test HA by stopping an ESXi host, when I restart the ESXi host I am unable to vmotion in that ESXi host. When I test vmkping I find that the host rebooted can only vmkping itself and no other host can vmkping it. Vmotion attempt fails on 9% and errors with the source host cannot connect to the destination host. If I restart the two switches of 2910 I can then perform a vMotion and the vmkping is a success.
Help, please?
Thank you
lansley2000 wrote:
I have since read up on the various load balancing options and find that your method is preferable during the method of "ip hash.
I'll make the change to "port based" and link the two switches
Hello Simon, I think it's a good option to do, since the hash IP load balancing is a bit special and really requires both interfaces to connect to the same physical switch, which must also have a specific configuration. If you like the results after the new changes.
Tags: VMware
Similar Questions
-
I have reported this problem on my PC at home that connects to the internet. My laptop runs Vista Home Premium and I can't connect to the internet. I took my laptop on a trip, tried to connect to the wireless network that was free to the place we are. Could not connect, and after this initial test, the following is displayed after the start of "failed to connect to the Windows Service, Windows cannot connect to the system event notification service. This problem prevents limited users to logon to the system. As administratvie user, you can view the system event log to see why the service did not respond. "(have no idea how or what it means) when I go to the task bar you want to connect to a network, it is said:" the dependency service or group could not start"and if I go ahead and press"connect to a network"it says it can't find. I search for computers on the network (who I'm sitting next to) and then try to diagnose the problem and it cannot. I have limited knowledge of this type of problem. Anyone have this problem and how to fix it?
Hi ptkein,
Thanks for posting your question on the Forums of Windows Vista.
Option 1: You can download and install the latest network card drivers and see if that can solve the problem.
Option 2: Follow the link below to fix network connection problems
http://Windows.Microsoft.com/en-us/Windows-Vista/troubleshoot-network-connection-problems
Option 3: Follow the link below to solve Internet connection problems
http://Windows.Microsoft.com/en-us/Windows-Vista/troubleshoot-Internet-connection-problems
Option 4: To verify if a third party application is a cause, follow this link (http://windows.microsoft.com/en-us/windows-vista/Advanced-startup-options-including-safe-mode) for this boot to the desktop using the safe mode with networking option and try to install the network. If the problem is resolved, you will need to perform a clean boot by following the steps in the following article to refine the exact source and isolate it: http://support.microsoft.com/kb/929135
Let me know if it worked.
Hope it will be useful.
Thank you and best regards,
Kadoch - Microsoft Support
Visit our Microsoft answers feedback Forum and let us know what you think.
-
trying to access a lexmark printer installed on xp based computer from a laptop running windows7 via a local network. Although the network is configured correctly, when I run the Windows printer installation I get an error message ' Add printer. Connect to the printer. Windows cannot connect to the printer. Operation failed with error 0x0000007e"I just upgraded to Vista by using the upgrade Acer and had the problems that Windows tried to download the drivers from Lexmark-, but could not. [the same lexmark printer and the configuration worked without any problems before the upgrade on this combination of machines running vista and xp].
I had a similar problem when I tried to connect to an hp printer that used a Vista driver. Could do this test? Download Windows 7 driver from Lexmark, install it, and then try to connect to the printer again. Andre Da Costa http://adacosta.spaces.live.com http://www.activewin.com
-
Original title: printer HP LaserJet 4050 of PCL6 compatible with Windows 7?
I have a desktop windows xp pro (SP3 5.1.2600) and you have a printer HP LaserJet 4050 PCL6. The printer works fine connected to the desktop computer with a parallel port. I'm trying to share the printer on my home network so that Win 7 (6.1.7601 SP1) laptops can use its printing features. Please help.
First I tried to add it with \\hostname\printername that returned this error: windows cannot connect to the printer: operation failed with error 0x000004f1.I downloaded and installed the Win7 drivers on the HP site on my laptop Win7, that has not changed a thing: http://h20000.www2.hp.com/bizsupport/TechSupport/SoftwareIndex.jsp?lang=en&cc=us&prodNameId=18318&prodTypeId=18972&prodSeriesId=25475&swLang=8&taskId=135&swEnvOID=4063Thanks in advance for any help / support!Hello
1. the two Windows XP, Windows 7 connected in a same workgroup?
2. can you access files shared XP of Windows 7 computer?
3. check if the printer is shared or not?
I suggest you follow these methods and check.
HP LaserJet 4050 PCL6 printer is not compatible with Windows 7. Printer drivers are available for Windows XP-based computers only.
It is not in the Windows 7 Compatibility Center.
I sugegst you contact HP support for Windows 7 drivers, after you instaall drivers to check with the question.
http://WWW8.HP.com/us/en/support-drivers.html
See also: networking computers running different versions of Windows
I hope this helps!
-
Cannot connect to the XMLDB via http, ftp, webdav
I can connect to XDB through a DEV instance on the same server, but cannot connect to the instance SCIDEV. The differences are THAT DEV is nls_characterset WE8MSWIN1252. SCIDEV is AL32UTF8. DEV has ports 8080 and 2100. SCIDEV has ports 8089 and 2102. HTTP request continuously a user / password without error. Watch FTP authentication failed. WebDAV continually requires a user name and password. I've tried a few things with no luck yet. What should I do to be able to connect? It is also published in Oracle support as SR 3-3043961271 technique. Please do not share the files downloaded in this forum SR.
Follow the different SQL commands. Running Windows2003 Server and Windows XP SP2 client.
Status of the listener followsSYSTEM@scidev> select * from v$version; Oracle Database 11g Release 11.2.0.2.0 - Production PL/SQL Release 11.2.0.2.0 - Production CORE 11.2.0.2.0 Production TNS for 32-bit Windows: Version 11.2.0.2.0 - Production NLSRTL Version 11.2.0.2.0 - Production 5 rows selected. SYSTEM@scidev> select * from nls_session_parameters; PARAMETER VALUE ---------------------------------------- --------------------------------------- NLS_LANGUAGE AMERICAN NLS_TERRITORY AMERICA NLS_CURRENCY $ NLS_ISO_CURRENCY AMERICA NLS_NUMERIC_CHARACTERS ., NLS_CALENDAR GREGORIAN NLS_DATE_FORMAT DD-MON-RR NLS_DATE_LANGUAGE AMERICAN NLS_SORT BINARY NLS_TIME_FORMAT HH.MI.SSXFF AM NLS_TIMESTAMP_FORMAT DD-MON-RR HH.MI.SSXFF AM NLS_TIME_TZ_FORMAT HH.MI.SSXFF AM TZR NLS_TIMESTAMP_TZ_FORMAT DD-MON-RR HH.MI.SSXFF AM TZR NLS_DUAL_CURRENCY $ NLS_COMP BINARY NLS_LENGTH_SEMANTICS BYTE NLS_NCHAR_CONV_EXCP FALSE 17 rows selected. SYSTEM@scidev> select * from nls_database_parameters; PARAMETER VALUE ---------------------------------------- --------------------------------------- NLS_NCHAR_CHARACTERSET AL16UTF16 NLS_LANGUAGE AMERICAN NLS_TERRITORY AMERICA NLS_CURRENCY $ NLS_ISO_CURRENCY AMERICA NLS_NUMERIC_CHARACTERS ., NLS_CHARACTERSET AL32UTF8 NLS_CALENDAR GREGORIAN NLS_DATE_FORMAT DD-MON-RR NLS_DATE_LANGUAGE AMERICAN NLS_SORT BINARY NLS_TIME_FORMAT HH.MI.SSXFF AM NLS_TIMESTAMP_FORMAT DD-MON-RR HH.MI.SSXFF AM NLS_TIME_TZ_FORMAT HH.MI.SSXFF AM TZR NLS_TIMESTAMP_TZ_FORMAT DD-MON-RR HH.MI.SSXFF AM TZR NLS_DUAL_CURRENCY $ NLS_COMP BINARY NLS_LENGTH_SEMANTICS BYTE NLS_NCHAR_CONV_EXCP FALSE NLS_RDBMS_VERSION 11.2.0.2.0 20 rows selected. SYSTEM@scidev> select * from dba_errors; no rows selected SYSTEM@scidev> select count(*) from dba_objects 2 where owner='XDB' and status='INVALID'; COUNT(*) --------------- 0 1 row selected. SYSTEM@scidev> select comp_name, status, version from dba_registry 2 where comp_name='Oracle XML Database'; COMP_NAME --------------------------------------------------------------------------------- STATUS VERSION -------------------------------------------- ------------------------------ Oracle XML Database VALID 11.2.0.2.0 1 row selected. SYSTEM@scidev> show parameter dispatchers NAME TYPE VALUE ------------------------------------ ----------- ------------------------------ dispatchers string (PROTOCOL=TCP) (SERVICE=scidev XDB) max_dispatchers integer NULL SYSTEM@scidev> SYSTEM@scidev> select dbms_xdb.gethttpport from dual; GETHTTPPORT --------------- 8089 1 row selected. 1* SELECT DBMS_XDB.getaclDocument('/home/').getClobVal() FROM DUAL SYSTEM@scidev> / <acl description="Public:All privileges to PUBLIC" xmlns="http://xmlns.oracle.com/xdb/acl.xsd" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://xmlns.oracle.com/xdb/acl .xsd http://xmlns.oracle.com/xdb/acl.xsd" shared="true"> <ace> <grant>true</grant> <principal>PUBLIC</principal> <privilege> <all/> </privilege> </ace> </acl> 1 row selected. SYSTEM@scidev> 1* SELECT DBMS_XDB.getaclDocument('/home/pharma').getClobVal() FROM DUAL SYSTEM@scidev> / <acl description="Private:All privileges to OWNER only and not accessible to others" xmlns="http://xmlns.oracle.com/xdb/acl.xsd" xmlns:dav="DAV:" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://xmlns.oracle.com/xdb/acl.xsd http://xmlns.oracle.com/xdb/acl.xsd" shared="true"> <ace> <grant>true</grant> <principal>dav:owner</principal> <privilege> <all/> </privilege> </ace> </acl> 1 row selected.
Http and ftp to SCIDEV ports are resolved in Enterprise Manager at 8089 and 2102.D:\oracle>lsnrctl status LSNRCTL for 32-bit Windows: Version 11.2.0.2.0 - Production on 02-MAR-2011 12:40:57 Copyright (c) 1991, 2010, Oracle. All rights reserved. Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=localhost)(PORT=1521))) STATUS of the LISTENER ------------------------ Alias LISTENER Version TNSLSNR for 32-bit Windows: Version 11.2.0.2.0 - Production Start Date 21-FEB-2011 22:58:56 Uptime 8 days 13 hr. 42 min. 2 sec Trace Level off Security ON: Local OS Authentication SNMP OFF Listener Parameter File D:\oracle\path\network\admin\listener.ora Listener Log File D:\oracle\path\listener\alert\log.xml Listening Endpoints Summary... (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=localhost)(PORT=1521))) (DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(PIPENAME=\\.\pipe\EXTPROC0ipc))) (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=localhost)(PORT=8089))(Presentation=HTTP)(Session=RAW)) (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=localhost)(PORT=2102))(Presentation=FTP)(Session=RAW)) (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=localhost)(PORT=8080))(Presentation=HTTP)(Session=RAW)) (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=localhost)(PORT=2100))(Presentation=FTP)(Session=RAW)) Services Summary... Service "DEVXDB.aa.ad.epa.gov" has 1 instance(s). Instance "dev", status READY, has 1 handler(s) for this service... Service "PLSExtProc" has 1 instance(s). Instance "PLSExtProc", status UNKNOWN, has 1 handler(s) for this service... Service "dev" has 1 instance(s). Instance "dev", status UNKNOWN, has 1 handler(s) for this service... Service "dev.aa.ad.epa.gov" has 1 instance(s). Instance "dev", status READY, has 1 handler(s) for this service... Service "scidev.aa.ad.epa.gov" has 1 instance(s). Instance "scidev", status READY, has 1 handler(s) for this service... Service "scidevXDB.aa.ad.epa.gov" has 1 instance(s). Instance "scidev", status READY, has 1 handler(s) for this service... The command completed successfully D:\oracle>
FTP log follows. First connect you to DEV successfully. Then connect you to SCIDEV fails.
But I can log in with the same user in sql plusWINSOCK.DLL: WinSock 2.0 WS_FTP95 LE 4.60 98.03.17, Copyright © 1992-1998 Ipswitch, Inc. local chdir to c: - - connecting to localhost:2100 Connected to localhost port 2100 220- servername Unauthorised use of this FTP server is prohibited and may be subject to civil and criminal prosecution. 220 servername FTP Server (Oracle XML DB/Oracle Database) ready. USER xdb 331 pass required for XDB PASS (hidden) 230 XDB logged in PWD 257 "/" is current directory. Host type (I): UNIX (standard) PORT theIPaddress,15,15 200 PORT Command successful LIST 150 ASCII Data Connection Received 250 bytes in 0.1 secs, (20.00 Kbps), transfer succeeded 226 ASCII Transfer Complete QUIT 221 QUIT Goodbye. local chdir to c: - - connecting to localhost:2102 Connected to localhost port 2102 220- servername Unauthorised use of this FTP server is prohibited and may be subject to civil and criminal prosecution. 220 servername FTP Server (Oracle XML DB/Oracle Database) ready. USER xdb 331 pass required for XDB PASS (hidden) 530 login error ! Logon failure, so quittingSYSTEM@scidev> connect xdb@scidev Enter password: *********************** Connected. XDB@scidev> select user, sysdate from dual; USER SYSDATE ------------------------------ --------- XDB 02-MAR-11 1 row selected. XDB@scidev>This is starting to look like bug 6049194. Please open an S/R with Support of Oracle
-
Cannot connect to the Oracle 10g Enterprise Manager have Sysdba but on order
Hello experts,
In I found a problem my Oracle 10 g today (new facility to test) that I cannot connect to the Manager of the company have SYSDBA but can connect if I use command... prompt as connection system as sysdba downside... This method works.
I need to take a set of DB to the top, and I guess I need to connect to EM as sysdba for this.
Also, when I try to take all DB Backup (connected as user of norman in EM) I get the error below.
Validation error
Review and correct the following errors, and then try again:
Error - connection to the host as user dmadmin failed: ERROR: wrong password for the user
But my user name and passwords are correct.
Pls help
Kind regards
RognardHello
First you need the installation for the user credentials, you can do
Panel-->---> local security policies--> local policy--> assignment user--> the administration tools log on as batch > add the username of the BONE to the Group (if does not exist, create it).
Then use this user name to set crendentials
Concerning
-
A Windows Server 2003 Standard Edition SP2 32-bit computer is a field, the file and print server.
A computer on the domain is a machine of Windows 7 Ultimate 64 - bit with HP DesignJet 500 24 printer connected via USB. The printer is running the latest firmware. The PC is running the latest 64-bit drivers with no problems to the host machine printing. The host also has the latest drivers 32-bit (x 86) installed by downloading by other computers on the network. The printer is configured to share with the share name of HPDJ500.
Now, on a machine Windows XP Pro SP3 32 bit on the field, I'm trying to connect to the shared printer. Add a printer > click Next in the wizard of > check "a network printer or a printer attached to another computer" and then click Next > click on "Find a printer in the directory", then click Next > click Find now > HPDJ500 in the list below (the XP machine can see the shared printer on the Windows 7 computer!) and click OK. At this point, I get an error that says: "Windows cannot connect to the printer. The name of the printer has been correctly entered, or the specified printer has lost its connection to the server. For more information, click Help. »
Alternatively, if I right-click on the HPDJ500 printer listed, then click on connect, I get the same error message but I also see a separate window that says "Connecting to HPDJ500 on H2.ws.net" with the lively projector. This window also disappears as soon as I clear the error message.
Please note that this printer worked perfectly as a printer shared, hosted on a machine XP 32 bit on the field. It works perfectly for the new Windows 7 64-bit machine, but we cannot connect from anywhere else on the network (including the server which translates the same exact error message). On the server, I also preinstalled drivers thinking there was a problem with a 32-bit computer, trying to grasp the correct drivers from the host 64-bit Windows 7, but that doesn't change anything.
How connect to this printer?
Try using the path UNC path of the printer in the Add Printer Wizard.
Add a printer > network printer > connection to this printer ((deuxieme point)
Click next to browse (leave blank, the name field) or type the UNC path of the printer (i.e. \\Computername\Printername) path
-
Hello
I have a Windows XP pro (Lenovo) that I recently ran the recovery and returned to certain configurations of 1.5 years. Now I can't add a network printer and get always the message error «Windows cannot connect to the printer or the name of the printer...» ». I ping the printer and all on my network can add these printers, it's just that a machine that fails to add network printers.
I disabled the firewall, but were still unable to add the printer. Then I found some difficulties to register for a similar problem, but they were not useful... It really becomes a big headache, especially Windows restore does not work...
I strongly suspect that 1.5 years, someone has renamed the printer. Use Windows Explorer to navigate to the print server through My Network Places and see what it's callednow . Otherwise, you could ask your network/system administrator. You should know... Please vote if this has been helpful! Please, click on Brand or propose as answer if that answered your question!
-
Media Player cannot connect to the server - Original COOD2EE7 error code
Tried media player - tools - options-network. Cannot configure the Protocol / the proxy settings. Streaming proxy settings area is empty.
Hello Adelek,
Thank you for posting. It seems that you may have a firewall problem. I that you would suggest to check your firewall settings to see if it's to allow access of media player. I've also included some basic information about this error.
Please let me know if this helps you.
You got the C00D1198 error message when you use Windows Media Player. The following information can help you resolve the problem.
Unable to connect to the server
Windows Media Player cannot connect to the server that hosts the content you want to listen to. You may encounter this error message for the following reasons:
The name of the server that hosts the content is not valid. If you typed an address Uniform Resource Locator (URL) in the open URL dialog box, verify that the file name is spelled correctly and that the path to the file is correct, and then try again. If you clicked a link on a Web page, the link isn't valid.
The server is not available (for example, the server is busy or not online). Try again later.
For Windows Media Player proxy server settings are not configured correctly. Verify that your proxy server settings are correct.
To check your proxy server settings
Click the arrow below the now playing tab, and then click More Options.
Click the network tab.
Check your settings in the Streaming proxy settings area.
Note
If you don't know what your proxy server settings should be, on the network tab, select a Protocol, click on configure, then select Autodetect proxy settings or use the the proxy settings of the browser (available for HTTP protocol only).
Zack
Engineer Microsoft Support answers visit our Microsoft answers feedback Forum and let us know what you think. -
Flash Builder debugger cannot connect to the running application
I've upgraded to Flash Builder 4.5 and now I get the error - old
The Flash Builder debugger cannot connect to the running application.
Ensure that:
1. for applications in the browser, you run the debug version of Flash Player.
2. for network debugging on a mobile device, you have a reliable network of the device connection and 7935 port is open on the firewall of your machine.
Device connection helpI get both on the Simulator (which is being upgraded to the latest version) and try to debug on my real playbook. There are a few other forums of discussion about this that suggest that the default Debug host IP is the usual culprit. However, which is set up correctly. I also added port 7935 firewall.
I am able to ping ip address of my playbook without problem. Any other thoughts on what I might have configured wrong?
Flash Builder 4.5 uses Air 2.6 for iphone and Android, for the moment, we can use only Air 2.5, so the compiler needs a couple of parameters. You have in the ActionScript Preferences tab build package-advanced - forceAirVersion 2.5 and under ActionScript compiler an extra line - swf-version 10
-
SG 300-28: duplication of port: loses the network connectivity of the destination host
Hello
We have two SG 300-28. On one of them, I have configured the port mirroring because a host behaves strangely. When I create the mirror, the host connected to the destination port is not available any longer, for example, it does not meet a ping. Port source packages appears on the port of destination, but no package intended to be the host itself. East - this behaviour right? I agreed that the host on the destination port is always accessible, as it would be without the mirror.
Bernd
HE Bernd,
Yes. This behavior is just. That's how Port Mirroring works. The host connected to the Destination port loses its connectivity and it can act as a monitoring device using programs like WireShark (and monitor packages coming to and from the Source port (s)). All configurations on the destination port are substituted.
Let me know if you need assistance,
HTH,
Vijay
Please note the useful messages
-
Windows 7 Windows cannot connect to the printer error
Hi, since a few days ago I was connected to a network printer and everything was fine. Today, nothing works. I removed the printer thinking that would help (and I could go out and find him), BAD!
I click on add a printer > add a network printer > select the network printer and get a box that says: I need to install a driver from the other machine, then I make him trust, etc blah blah blah, click OK and then get this error.
Windows cannot connect to the printer.
Operation failed with error 0x000003e3
Both machines are running Windows 7 x 64.
I googled all night with no solutions. Please help, I need to be able to print! Thank you!
I solved the problem. I had to join the homegroup computer, was too attached to the printer. Once I did, he saw the printer and installed the necessary driver. I can print now!
-
The blackBerry Smartphones No. MMS option and cannot connect to the application server
Good evening
For some reason any I can not receive or send MMS on my Blackberry 9520 Storm 2. I still do not see the ability to send a picture as a text when I go on my photos. I don't know if it's the phone or my provider. I have my 9520 unlocked on AT & T with a package data unlimited talk and text unlimited. I tried to have photos I was sent as well, but it was also no chance that I NEVER received a text.
The second problem I have is that I can't access the Blackberry App Store. Try whenever I have it says that it cannot connect to the server.
Any help?
Edit: The problem of the App Store is no longer present (off the network and turned it back), but the MMS problem is still present.
Hello!
I suggest the following:
(1) registry HRT
- Homescreen > Options > Advanced Options > host Routing Table > BBKey (it matter little what line is current) > sign up now
(2) Service reference books
- KB02830 Send the directories for the BlackBerry Internet Service
(3) restart to take batt
- Each time a random strange behavior or slow creeps, the first thing to do is a battery pop reboot. With power ON, remove the hood back and remove the battery. Wait a minute, then replace the battery and cover. Power on and wait patiently through the long reboot - about 5 minutes. See if things return to functioning. Like all computing devices, BB suffers from memory leaks and others... with a hard reboot is the best remedy.
I hope that will move things again for you! But, the fact that you can't do SMS or MMS seems to indicate that they are not part of your plan service provider - that is why, if the above does not help, then contact them to see if you who are on your plan on their part.
Good luck and let us know!
-
established - VPN connection, but cannot connect to the server?
vpn connection AnyConnect is implemented - but cannot connect to the server? The server IP is 192.168.0.4
Thank you
ASA Version 8.2 (1)
!
hostname ciscoasa5505
names of
!
interface Vlan1
nameif inside
security-level 100
IP 192.168.0.3 255.255.255.0
!
interface Vlan2
nameif outside
security-level 0
IP 208.0.0.162 255.255.255.248
!
interface Vlan5
Shutdown
prior to interface Vlan1
nameif dmz
security-level 50
IP address dhcp setroute
!
interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
!
interface Ethernet0/5
!
interface Ethernet0/6
!
interface Ethernet0/7
!
passive FTP mode
clock timezone PST - 8
clock summer-time recurring PDT
DNS lookup field inside
DNS server-group DefaultDNS
192.168.0.4 server name
Server name 208.0.0.11
permit same-security-traffic intra-interface
object-group Protocol TCPUDP
object-protocol udp
object-tcp protocol
object-group service TS-780-tcp - udp
port-object eq 780
object-group service Graphon tcp - udp
port-object eq 491
Allworx-2088 udp service object-group
port-object eq 2088
object-group service allworx-15000 udp
15000 15511 object-port Beach
object-group service udp allworx-2088
port-object eq 2088
object-group service allworx-5060 udp
port-object eq sip
object-group service allworx-8081 tcp
EQ port 8081 object
object-group service web-allworx tcp
EQ object of port 8080
allworx udp service object-group
16001 16010 object-port Beach
object-group service allworx-udp
object-port range 16384-16393
object-group service remote tcp - udp
port-object eq 779
object-group service billing1 tcp - udp
EQ object of port 8080
object-group service billing-1521 tcp - udp
port-object eq 1521
object-group service billing-6233 tcp - udp
6233 6234 object-port Beach
object-group service billing2-3389 tcp - udp
EQ port 3389 object
object-group service olivia-3389 tcp - udp
EQ port 3389 object
object-group service olivia-777-tcp - udp
port-object eq 777
netgroup group of objects
network-object host 192.168.0.15
network-object host 192.168.0.4
object-group service allworx1 tcp - udp
8080 description
EQ object of port 8080
allworx_15000 udp service object-group
15000 15511 object-port Beach
allworx_16384 udp service object-group
object-port range 16384-16393
DM_INLINE_UDP_1 udp service object-group
purpose of group allworx_16384
object-port range 16384 16403
object-group service allworx-5061 udp
range of object-port 5061 5062
object-group service ananit tcp - udp
port-object eq 880
outside_access_in list extended access allowed object-group TCPUDP any host 208.0.0.164 object-group billing-6233
outside_access_in list extended access allowed object-group TCPUDP any host 208.0.0.164 object-group billing-1521
outside_access_in list extended access allowed object-group TCPUDP any host 208.0.0.164 object-group billing2-3389
outside_access_in list extended access permit tcp any host 208.0.0.164 eq https
outside_access_in list extended access permit tcp any host 208.0.0.164 eq www
outside_access_in list extended access permit tcp any host 208.0.0.164 eq ftp
outside_access_in list extended access allowed object-group TCPUDP any host 208.0.0.164 object-group billing1
outside_access_in list extended access allowed object-group TCPUDP any host 208.0.0.162 EQ field
outside_access_in list extended access permit tcp any host 208.0.0.162 eq www
outside_access_in list extended access allowed object-group TCPUDP any host 208.0.0.162 remote object-group
outside_access_in list extended access permit tcp any host 208.0.0.162 eq smtp
outside_access_in list extended access allowed object-group TCPUDP any host 208.0.0.162 object-group olivia-777
outside_access_in list extended access permit udp any host 208.0.0.162 - group Allworx-2088 idle object
outside_access_in list extended access permit udp any host 208.0.0.162 object-group inactive allworx-5060
outside_access_in list extended access permit tcp any host 208.0.0.162 object-group web-allworx inactive
outside_access_in list extended access permit tcp any host 208.0.0.162 object-group inactive allworx-8081
outside_access_in list extended access permit udp any host 208.0.0.162 object-group inactive allworx-15000
outside_access_in list extended access permit udp any host 208.0.0.162 DM_INLINE_UDP_1 idle object-group
outside_access_in list extended access permit udp any host 208.0.0.162 object-group inactive allworx-5061
outside_access_in list extended access allowed object-group TCPUDP any host 208.0.0.162 inactive ananit object-group
outside_access_in list extended access deny ip host 151.1.68.194 208.0.0.164
permit access ip 192.168.0.0 scope list inside_nat0_outbound 255.255.255.0 172.16.0.0 255.255.0.0
permit access ip 192.168.0.0 scope list inside_nat0_outbound 255.255.255.0 192.168.1.0 255.255.255.0
permit access ip 192.168.0.0 scope list outside_20_cryptomap 255.255.255.0 172.16.0.0 255.255.0.0
Ping list extended access permit icmp any any echo response
inside_access_in of access allowed any ip an extended list
permit access ip 192.168.0.0 scope list outside_cryptomap 255.255.255.0 192.168.1.0 255.255.255.0
access-list 1 standard allow 192.168.0.0 255.255.255.0
pager lines 24
Enable logging
logging buffered stored notifications
asdm of logging of information
Within 1500 MTU
Outside 1500 MTU
MTU 1500 dmz
IP local pool 192.168.100.30 - 192.168.100.60 mask 255.255.255.0 remote_pool
192.168.0.20 mask - distance local pool 255.255.255.0 IP 192.168.0.50
ICMP unreachable rate-limit 1 burst-size 1
don't allow no asdm history
ARP timeout 14400
Global 1 interface (outside)
NAT (inside) 0-list of access inside_nat0_outbound
NAT (inside) 1 0.0.0.0 0.0.0.0
NAT (outside) 1 192.168.0.0 255.255.255.0
alias (inside) 192.168.0.4 99.63.129.65 255.255.255.255
public static tcp (indoor, outdoor) interface 192.168.0.4 smtp smtp netmask 255.255.255.255
public static tcp (indoor, outdoor) interface field 192.168.0.4 netmask 255.255.255.255 area
public static tcp (indoor, outdoor) interface 192.168.0.4 www www netmask 255.255.255.255
public static tcp (indoor, outdoor) interface 777 192.168.0.15 777 netmask 255.255.255.255
public static tcp (indoor, outdoor) interface 779 192.168.0.4 779 netmask 255.255.255.255
public static (inside, outside) udp interface field 192.168.0.4 netmask 255.255.255.255 area
public static tcp (indoor, outdoor) interface 880 192.168.0.16 880 netmask 255.255.255.255
static (inside, outside) 208.0.0.164 tcp 3389 192.168.0.185 3389 netmask 255.255.255.255
inside_access_in access to the interface inside group
Access-group outside_access_in in interface outside
Route outside 0.0.0.0 0.0.0.0 208.0.0.161 1
Route inside 192.168.50.0 255.255.255.0 192.168.0.1 1
Timeout xlate 03:00
Timeout conn 01:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
Sunrpc timeout 0:10:00 h323 0:05:00 h225 mgcp from 01:00 0:05:00 mgcp-pat 0:05:00
Sip timeout 0:30:00 sip_media 0:02:00 prompt Protocol sip-0: 03:00 sip - disconnect 0:02:00
Timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
dynamic-access-policy-registration DfltAccessPolicy
Enable http server
http 192.168.0.0 255.255.255.0 inside
http 192.168.0.3 255.255.255.255 inside
No snmp server location
No snmp Server contact
Server enable SNMP traps snmp authentication linkup, linkdown cold start
Sysopt noproxyarp inside
Crypto ipsec transform-set ESP-AES-128-SHA aes - esp esp-sha-hmac
Crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
Crypto ipsec transform-set ESP-DES-MD5 esp - esp-md5-hmac
Crypto ipsec transform-set ESP-AES-256-SHA 256 - aes - esp esp-sha-hmac
Crypto ipsec transform-set ESP-AES-128-MD5-esp - aes esp-md5-hmac
Crypto ipsec transform-set ESP-DES-SHA esp - esp-sha-hmac
Crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
Crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
Crypto ipsec transform-set ESP-3DES-MD5-esp-3des esp-md5-hmac
Crypto ipsec transform-set esp-SHA-ESP-3DES-3des esp-sha-hmac
life crypto ipsec security association seconds 28800
Crypto ipsec kilobytes of life - safety 4608000 association
card crypto outside_map 1 match address outside_cryptomap
card crypto outside_map 1 set pfs
peer set card crypto outside_map 1 108.0.0.97
card crypto outside_map 1 set of transformation-ESP-3DES-SHA
card crypto outside_map 20 match address outside_20_cryptomap
card crypto outside_map 20 set pfs
peer set card crypto outside_map 20 69.0.0.54
outside_map crypto 20 card value transform-set ESP-3DES-SHA
outside_map interface card crypto outside
crypto ISAKMP allow outside
crypto ISAKMP policy 5
preshared authentication
3des encryption
sha hash
Group 2
life no
crypto ISAKMP policy 30
preshared authentication
3des encryption
sha hash
Group 1
life no
Telnet timeout 5
SSH timeout 5
Console timeout 0
identifying client DHCP-client interface dmz
dhcpd outside auto_config
!
dhcpd address 192.168.0.20 - 192.168.0.50 inside
dhcpd dns 192.168.0.4 208.0.0.11 interface inside
dhcpd allow inside
!
a basic threat threat detection
Statistics-list of access threat detection
no statistical threat detection tcp-interception
WebVPN
allow outside
SVC disk0:/anyconnect-win-2.5.2014-k9.pkg 1 image
enable SVC
tunnel-group-list activate
attributes of Group Policy DfltGrpPolicy
internal group anyconnect strategy
attributes of the strategy group anyconnect
VPN-tunnel-Protocol svc webvpn
WebVPN
list of URLS no
SVC request enable
encrypted olivia Zta1M8bCsJst9NAs password username
username of graciela CdnZ0hm9o72q6Ddj encrypted password
tunnel-group 69.0.0.54 type ipsec-l2l
IPSec-attributes tunnel-group 69.0.0.54
pre-shared-key *.
tunnel-group 108.0.0.97 type ipsec-l2l
IPSec-attributes tunnel-group 108.0.0.97
pre-shared-key *.
tunnel-group anyconnect type remote access
tunnel-group anyconnect General attributes
remote address pool
strategy-group-by default anyconnect
tunnel-group anyconnect webvpn-attributes
Group-alias anyconnect enable
!
Global class-card class
match default-inspection-traffic
!
!
World-Policy policy-map
Global category
inspect the icmp
!
service-policy-international policy global
: end
ASDM location 208.0.0.164 255.255.255.255 inside
ASDM location 192.168.0.15 255.255.255.255 inside
ASDM location 192.168.50.0 255.255.255.0 inside
ASDM location 192.168.1.0 255.255.255.0 inside
don't allow no asdm history
Right now your nat 0 (NAT exemption) follows the access list:
permit access ip 192.168.0.0 scope list inside_nat0_outbound 255.255.255.0 172.16.0.0 255.255.0.0
permit access ip 192.168.0.0 scope list inside_nat0_outbound 255.255.255.0 192.168.1.0 255.255.255.0
Traffic back from your server to 192.168.0.4 in the pool of VPN (192.168.0.20 - 50) not correspond to this access list and thus be NATted. The TCP connection will not develop due to the failure of the Reverse Path Forwarding (RPF) - traffic is asymmetric NATted.
Then try to add an entry to the list of access as:
permit access ip 192.168.0.0 scope list inside_nat0_outbound 255.255.255.0 192.168.0.0 255.255.255.0
It's a bit paradoxical but necessary that your VPN pool is cut out in your interior space network. You could also do like André offers below and use a separate network, but you would still have to add an access list entry to exempt outgoing NAT traffic.
-
Why other computers cannot connect to the internet with my ad - hoc connection?
Hi all! Here's my situation.
My friends router is dead and we are in the smack dab Middle no where with no transport and we want the internet.
We have only an Ethernet however.Here's my situation.
I want to create an ad - hoc network and share the internet connection using ICS. The problem is, when I secure my ad hoc network with WEP or WPA cannot connect to the network. The network is visible on the computers of my friends (mac and PC) and they put the password nothing is done.But here's the kicker, when I don't put no security on the network, everything works fine.
How do I create an ad hoc ICS with security network and have not really work?
Thank you guys!Hello
Thanks for posting. If I understand correctly, you experience the problem with the connection of computers using the Ad - hoc network. Correct me if I'm wrong!
Before I continue, I would like to collect some personal information on the issue.
1. what security software is installed on your computer?
2. share your protected password put on or off?
The sharing tab is not available if you have only a WLAN card.
Method 1:
Follow the link below and set the ad hoc network.
Set up a computer-to-computer (ad hoc) network
http://Windows.Microsoft.com/en-us/Windows7/set-up-a-computer-to-computer-ad-hoc-network
Set up a wireless network without router
http://www.Microsoft.com/windowsxp/using/networking/setup/adhoc.mspxMethod 2:
After you follow the steps above to set up ICS on the host computer, make the following changes on other computers (but not on the host computer).
(a) open Internet Options by clicking the Start button, clicking Control Panel, clicking network and Internet, and then clicking on Internet Options.
(b) click on the connections tab, and then click never establish a connection.
(c) click on LAN settings.
(d) in the dialog box settings of the network Local (LAN), under automatic configuration, clear the check boxes automatically detect connection settings and use automatic configuration script .
(e) under Proxy Server, clear the use a proxy server for your LAN check box, and then click on OK.
If the password protection sharing is disabled, I suggest to turn on you or so try if this can help fix the problem.
Method 3:
Follow these steps and check if that helps.
(a) click Start, type Control Panel in the search box, press ENTER.
(b) click on network and sharing Center, click change advanced sharing settings in the left pane.
(c) click on him to expand the network profile (type) that you want to turn sharing on or off for protected by Word.
(d) select (dot), turn on password protected sharing.
Visit these links for more idea on the Internet connection sharing between computers connected on an Ad - hoc network:
Set up a shared Internet connection using ICS (Internet Connection Sharing)
Change the settings for ICS (Internet Connection Sharing) Internet
More information on:
Using ICS (Internet Connection Sharing)
http://Windows.Microsoft.com/en-us/Windows7/using-ICS-Internet-connection-sharing
Reply back with the results. I'd be happy to help you further.
Maybe you are looking for
-
HP OFFICEJET 5745 AIO: PRINT FORMAT BY DEFAULT STUCK ON 4 X 6 PHOTO
I printed a photo once on my new printer and, now, the default print size is stuck on 4 X 6 photo. How can I re - set the default value to the LETTER. How to print photos without changing the default printing standard?
-
How to turn thr backlit edge keys on a computer laptop hp envy 17 t
Bought a new laptop... HP envy 17 t ser number 5CD52621VM... TWO HEALTH.1 I AM UNABLE TO TURN THE BOARD BACK ON THIS LLAPTOP BED KEY no MATTER WHAT I TRY... i S IT DRIVERS for THE BACKLOIT KEY BOARD, I DO NO THINK SO. The warranty I bought is three y
-
im not sure y I have not all games in Games Explorer, where can I find the games if I need to download. I really just want the solitaire and spider solitarie and free cell.
-
I need a little help from someone intelligent voice (or at least a little bit cleverer than me). I use the handler calls 7.1.3, with H.323 gateways. Most of my entry doors are 2800 routers with PRI and DID blocks on them. I have a special office th
-
Previous/next buttons in Windows 7 Media Player 12 disabled when there are videos in the playlist
original title: Windows 7 Media Player 12 previous/next buttons disabled when there are videos in playlist works well with music files I have 3 computers to windows 7 that all exhibit this same problem. I have playlists since older versions of media