Cisco VPN :: 881 - OSX Mountain Lion And IPSec Rules
Nov 20, 2012
I am currently have a Cisco 881 router running EasyVPN server. I recently created come IPSec rules that allow trafiic to specific IP's for a specific security group:
access-list 105 permit ip host 10.1.0.5 any
access-list 105 permit ip host 10.1.0.15 any
access-list 105 permit ip host 10.1.0.16 any
access-list 105 permit ip host 10.1.0.32 any
This works as expected with our Windows users, however our Mac users (using native VPN Client) can only reach the FIRST ip in the string of access statements. When I was torubleshooting this, I moved .32 as the first statement and I could only reach it and none of the others.
View 2 Replies
ADVERTISEMENT
Jan 25, 2013
I've been developing Node.js apps on my localhost on port 1337 for last two years with no problem as shown below.
$ node app
App started on port 1337
Today I wanted to test how things go with default port 80, so I did:
$ sudo node app
App started on port 80
But after that my network went crazy. Now I can't access any local address including localhost. When I ping to localhost it points to some weird public IP address (218.38.137.125) instead of 127.0.0.1.
[code]....
View 1 Replies
View Related
Feb 20, 2012
Running an E4200 with Mac OS X Mountain Lion?
View 3 Replies
View Related
Aug 3, 2012
The latest Mountain Lion (OSX 10.8) update somehow broke the Cisco VUSB software. I downloaded and installed Mountain Lion yesterday, and now the VUSB software is not working correctly. When I try to connect to my printer, an error appears saying the connection failed, but the dashboard shows it's connected. When I try to print, the printer is shown as unavailable. I have Cisco VUSB version 1.0.0 for OSX and the EA3500 Router.
View 9 Replies
View Related
Jul 25, 2012
I have a repating 2901 router failure when people attempt to download Apple Mac OS X Moutnain Lion upgrade from App Store.
The 2901 just hangs following getting a series of ZBFW packet drop failures:
001928: Jul 26 22:37:18.783 UTC: %APPFW-4-HTTP_PROTOCOL_VIOLATION: HTTP protocol violation (0) detected - session 192.168.223.109:49310 184.25.254.67:80 on zone-pair ZP-PRIVATE-OUT class ccp-protocol-http appl-class ccp-http-blockparam
[Code].....
View 9 Replies
View Related
Aug 25, 2012
I'm working with an ACS 5.3 and ASA 8.2.5 and i've configured several access services for webvpn and ipsec remote access profiles but i haven't found which radius attribute can differentiate among them in the service selection rules.
View 5 Replies
View Related
Aug 1, 2012
I just bought EA4500. The CD come with it does not support Mac OS 10.8.
View 9 Replies
View Related
Jul 30, 2012
I have a E3000 and just upgraded my Mac with the OS X Mountain Lion. I can't access my external HD anymore, although when I go to the router set up, on the storage tab, the router appears to recognize the HD.
View 9 Replies
View Related
Mar 14, 2012
We have a problem with a manager who has upgrades his Mac to the latest Lion OS (64 bit), before uograding he could connect without any problem with his mac to our network and work on the terminal server. Since the upgrade he's not able to get it working in 64 bit (normal) mode.
This our setup
Cisco PIX 515
RSA Cisco Pix security Apliance.
View 1 Replies
View Related
Nov 24, 2011
does lion support hp 6840 can i install on mac i have lion
View 1 Replies
View Related
Feb 12, 2012
I have a Cisco ASA 5510 8.2 (3) with clientless SSL VPN portal enabled with some bookmarks pointing to internal servers. I just installed a new Mac OS Lion Server 10.7 box and have a share on it using both AFP and SMB. My old Mac server is 10.6 with a similar share with both AFP and SMB enabled. When using the Portal browser (or bookmarks pointing to cifs://example/server), I get an error "Error contacting host" to the the 10.7 box, but browsing to the 10.6 box works fine.
I have double checked all settings on the 10.7 and permissions, everything appears correct. I can also browse internally via SMB from Windows XP/Windows 7 using default UNC paths \exampleserver, etc., to the 10.7 box.
From what I have read, the 10.7 has a completely different design to the SMB versus the earlier 10.6. [URL].
View 0 Replies
View Related
Dec 3, 2012
I'm using the Cisco AnyConnect VPN Client (2.5.3055) to connect to a server "A". It has worked fine. Then I tried to connect to the server "B" from the free university of Berlin and then this installed (3.0.08057) automatically without asking. Connecting to server "A" does not work any more. The error message is: "The AnyConnect package on the secure gateway could not be located. You may be experiencing network connectivity issues. Please try again." So I tried to de-install the client with the shipped uninstaller and installed the previous 2.5 client again. but the Error message is still the same.so which files should I remove/edit to get it working as before. The network is OK, I tried it on a other computer under Windows Vista and there the freshly installed Client works fine. So I guess ther must be some files or configurations from the newer version in the way.
View 0 Replies
View Related
Sep 19, 2011
so i have a printer attatched to my mom's computer and it's set up for sharing. i can get to the printer through my macbook, but it's asking for a username and password to the network (which it didn't ask me to do when setting up the sharing settings on the windows pc) what do i need to do?
View 11 Replies
View Related
Oct 30, 2011
I recently bought a dell v313w and I finally managed to configure the printer with my mac via wifi.
I'm still very disappointed because I just can't figure out how to scan from my v313w to the mac as it doesn't appear in the possible destination hosts.
View 1 Replies
View Related
Jul 16, 2012
I'm with one problem, my OS Lion don't authentication in the Secure ACS Version: 5.2.0.26.10.For the Mac Lion operating system to work you must put in execeção the MAC Address of your computer. I wonder how it could cause the OS to authenticate the ACS Lion.
View 1 Replies
View Related
Dec 5, 2011
802.1x authentication on their Cisco Wifi network using Macbook Pro/Airs running Lion.
We have.. 2x Controllers with WiSMs running 7.0.116.0 A mixture of 1131 and 1142 APs.. ( APs mainly in HREAP mode with some APs located on the same local network as the Controller in Local Mode ) Macbook Airs/ Pro running Lion
[URL]
In summary, we are finding that when our MacBooks are coming out of sleep/standby or roaming between APs, the devices get stuck during the 802.1x authentication process and will either get the self assigned 169 address or continuously try to authenticate.
This can occasionally be solved by turning the wifi interface off and on or manually stopping and starting the 802.1x process on the Mac
From reading various online forums, we have tried the following to resolve this..
- Disabled WPA across our wifi network as we don't use it anymore.. We now just use WPA2 with AES and Dot1x authentication.
- Disabled Client Load Balancing on the SSID configuration… this does not seem to have made things any better or worse although we are seeing more Load Profile threshold notification alerts for some of our APs which are used heavily.
- The 802.1x time out is currently set at 20secs.
- Some APs which are in Local mode ( due to them being on the same local network as our wifi controllers ) have been changed to HREAP mode and assigned a static IP address.. We found that this was required at our spoke sites where we were originally experiencing issues with our old Windows based devices.. Incidentally, we have not experienced any of these delayed authentication issues with our Window laptops, all our problems seem to be with our MacBooks running Lion..
As I mentioned earlier, there seems to be many discussions online regarding problems with the Lion OS and 802.1x authentication..
View 4 Replies
View Related
Dec 12, 2011
get a status on Mac Lion and/or Windows 7 64-bit SSL VPN support for the RV220W? QuickVPN (for Windows 7 64-bit users) and IPSecuritas (for Mac Lion users) are our current workarounds, but for folks that use/own their own equipment we prefer SSL VPN. This is why we retired our WRVS4400N v2 for the RV220W.
View 3 Replies
View Related
Aug 3, 2011
I've just bought an E2000 and I Cisco Connect doesn't run on OSX-Lion, and I was unable to find it on support downloads. But this is only a comment, my concern is that I'm not able to see on main menu how many DHCP clients are connected nor of course to check their traffic. Other routers usually provide at least DHCP clients
View 4 Replies
View Related
Sep 23, 2011
Apparently the setup cd does not work with Mac OS Lion. Anyone else out there is using this router on a Mac running Lion...if so, how did you set up the router.
View 3 Replies
View Related
Jan 10, 2012
I just purchased a new E4200 router. When I try to set it up, , it says that my software (Lion v. 10.7.2) is unsupported. Is there a download that will allow me to use this router?
View 2 Replies
View Related
May 29, 2012
The USB storage drive is not found when I attempt to map the drive on my Mac Mini Lion OS, it is not found. My question is, does the wrt160nl storage feature work with Mac OS? I have upgraded firmware to 1.0.0.3 and latest version of Lion
View 2 Replies
View Related
Dec 29, 2011
I just purchased a new E4200 router. When I try to set it up, , it says that my software (Lion v. 10.7.2) is unsupported. Is there a download that will allow me to use this router?
View 2 Replies
View Related
Dec 21, 2011
Since lion is there for a while, it is still not possible to make a time machine backup on an USB hdd that's connected to the router. is Cisco coming with an firmware update?
View 9 Replies
View Related
Aug 10, 2011
After a ugrade from Snow Leopard to Lion on my Imac, the software witch i have by mine E3000 router, works not longer anymore
View 1 Replies
View Related
Apr 29, 2013
I tried any type of combination and just couldn't make it works. Only PPTP works well. Whether Apple iOS IPSec VPN is supported or not?
View 11 Replies
View Related
Dec 5, 2011
Is it possible to provision 3 different public IP addresses to the same DMZ IP (Web server) on an ASA running ver 8.2(4)? Unfortunately, the way the server was provisioned Static or Dynamic PAT will not work. I have read that ver 8.3 and up supports natively one-to-many NAT translations, but at this point the client is not ready for an upgrade. Is there anything else I could do to overcome this challenge?
Outside --------> DMZ
200.1.1.1------> 10.1.1.1
200.1.1.2------> 10.1.1.1
200.1.1.3------> 10.1.1.1
View 16 Replies
View Related
Jun 24, 2011
I'm having some troubles with NAT, packets does not match nat rule (that i think it should) and is not choosing the right egress interface. So crypto map never starts
this is the relevant config:
interface Port-channel2.4
description Public TESA ADSL internet connection
vlan 7
[Code].....
View 7 Replies
View Related
Oct 5, 2011
I have a Pix 501 vs. 6.3(3). I have made changes to some Access Rules that made other rules disappear. When I try to recreate them I get an error that includes "Possible duplicate entry" statement.
The rule appears to be active, so how can I resurrect it in my Access Rule list?
View 16 Replies
View Related
May 17, 2012
Boss wants a listing of the firewall rules only. What's a command I can run that will give me a listing of this?If I can get an output of firewall rules only, via GUI, that'll work too. It just needs to end up with a printout on a piece of paper telling me what the firewall is doing.
View 17 Replies
View Related
Oct 18, 2011
I installed a new SA540 and configured some NAT rules for my Exchange server. Everything worked fine untill I did a firmware upgrade.Now the NAT rules won't work on my dedicated WAN.On the Optional WAN (load balancing) the NAT rules work fine.
View 1 Replies
View Related
Jul 5, 2012
I have a problem with firewall rules. If I set some rules for open communication and some for closed, so I cannot reorder from the end to begin.
Last rules are at the end of all. So I can only reorder in one pages.(I have about 33 rules = 3 pages of rules)
View 4 Replies
View Related
Mar 23, 2012
Ive migrated from my lab pix to a lab asa and am trying to open certain ports to my internal network.
in my confg on my pix i had acls to open port 51413 to an inside host along with the static nat rule.
what i am trying to accomplish is same on my asa, however the nat rules seem to be slightly different, and i'm not completely sure how to do it.
My ACL and nat rule is below. I'm pretty certain my acl is correct,but i am not sure as to what to do with my NAT rules to allow a translation for the tcp service.
access-list outside-in extended permit object tcp51413 any object outside nat (inside,outside) source dynamic all-inside-nat interface
View 3 Replies
View Related
Sep 26, 2011
I have a question about the new nat implementation in an ASA 8.4. when I perform a "show nat" I get the following result:
1 (outside) to (inside) source dynamic any NAT-SSL-VPN_172.30.100.250 destination static 00B_172.30.100.0_24 00B_172.30.100.0_24
translate_hits = 26, untranslate_hits = 0
2 (inside) to (outside) source static LAN-HOST_172.30.100.11_LNX01 WAN-HOST_84.199.44.2_32_LNX01 service TCP-80-HTTP TCP-80-HTTP
translate_hits = 0, untranslate_hits = 0
Is it possible to change the order of the nat rules without removing and reapplying the rule on position 1 ? (both rules have to stay in section 1)
View 3 Replies
View Related
