Routers / Switches :: Communication Administratively Filtered Error?
Aug 9, 2012
I have 2 different network topology - network A and network B Both of them are connecting to the same gateway (a firewall) to the net. they're using the same range of public IP pool to NAT the private IPs. in shorts, all setup is almost the same except the devices' brand between A and B.I have no problem to access the webpage using network A. But whenever I attach the same laptop to network B, the same page won't display at all.I've done wiresharking to network B and the result shows "ICMP destination unreacheable (Communication administratively filtered)" which reported by unknown device (suspected to be the webpage's gateway).
I have a 2 router and each one have separate network with DHCP and IP of the two routers are 10.4.251.1 and 10.4.252.1. I am using linksys WRT54gl router with tomato firmware.how can i make communication between these two networks. I want access files from 10.4.251.x to 10.4.252.x and vice versa.
I'm trying to open certain websites but the browser gives me this message: "Network Error (tcp_error) A communication error occurred: "Operation timed out" The Web Server may be down, too busy, or experiencing other problems preventing it from responding to requests. You may wish to try again at a later time.
Following instructions on How to add a 2nd router to network.This error will not let me complete and save the definition. Changed 2nd router IP address to 192.168.1.2 static, disabled DHCP, added 1st router IP as default gateway, set subnet mask to same as 1st router. Problem occurs in next frame called 'Network Setup' it is requiring a 'router IP' & subnet mask again and will not accept either the 1st or 2nd router IP address - gives the "IP equals subnet please correct" error or "LAN & WAN IP addresses are identical.
I've been trying to set up my TP-Link WR740N router but it always give the error "Failed to Verify router settings" on the last step of the set up screen. Broadband: Globe broadband (Wired)Modem: Siemen Gigaset SE260 I'm also confused on the 2nd Set up screen, it gives the option to select Dynamic IP Static IP PPoEI've tried using the Dynamic IP and PPoE but still getting the same error message
I have a stack of SGE2010P switches with 3 vlans (1, 10 and 255) on it. Connected to it via a trunk port, I have a SF300-24P.On the trunk ports, I have vlan 1 untagged, vlans 10 and 255 tagged (on both sides, obviously).On the SGE2010 stack, I can set a ports primary vlan id to vlan 10, and workstations work correctly.On the SF300, if I set a port to type general, and the ports default vlan to 10 (on the port to vlan page), I cannot get any communication to work.This is my first time with a non-CLI switch, and am having real problems figuring out how to troubleshoot this problem.
Trying to connect two systems together but was giving error that contact network administrator,one system is laptop with wireless and other is desktop but connect through cable but running windows XPSamson
I am able to connect to corporate VPN with no issues when connecting directly to ISP modem. When I try to complete the same VPN connection via a Wireless Router (Linksys WRT160Nv3) i get the following message: "Network error. Unable to look up host names"I have tried connecting and it will initially connect, but 15-30 seconds it will drop and connection can't be re-established.Is there a setting on the Linksys WRT160Nv3 that needs to be changed?
we have an SG300 latest 1.3 firmware, we have it acting as our DHCP server, we have a 10.10.1.x range, 10.10.3.x range, and 192.168.24.x range, they are all on seperate VLANs and all can talk to each other which is what we want. However we have someone who wants to use the 192.168.1.x range to add IP cameras to our network using there own switch. I figured I'd just setup our server to do DHCP etc and it would communicate with the 10.10.1.x range of IP addresses no problem. It turns out the SG300s can't do DHCP for that range, so if he has all static address on the 192.168.1.x range how can i setup inter VLAN communication so we can talk to that range?
LMS 4.2. I am receiving the alert below in my email inbox. It was my understanding that DFM would not send alerts for interfaces that are shut down. Is this a bug? [code]
I have three routers and 2 ISPs but I'd like to focus for now on a configuration with only one ISP provider. Here is my environment:
Netgear Cable (CBVG834G) wireless routerON the cable router are connected multimedia type equipments (TV/ IP set top box/ IP amp ) located on the family room DHCP ON (because I can't get internet connectivity when I assigned Fix IP address I come to that later) IP Adress:192.168.1.2 DHCP range:192.168.1.10/ 19 Reserved IP : 1292.168.1.10 for the Dlink 4 DEV a connected D-LINK ( DIR-855) wireless router.mainly PCs, NAS (x2) located on the first floor. DHCP ON Lan IP Adress: 192.168.0.1 DHCP range:
192.168.0.100 / 120 WAN Ip address : 192.168.1.10 6 PCs are connected
Everything works fine from an internet connectivity standpoint:
DEVx can connect to internet fine PCx can connect to internet PCx can access DEVx
Now the issue DEVx can't access resources from PCx!
I have RV 120W Wireless-N VPN Firewall and having issues with connectivity and communication between PCs within the same LAN. I tried the following to check connections:
1. Finding the computers within the workgroup using wondows network or (finding the computer) without avail. 2. Pinging the IP address of the PCs within the LAN. Request Timeout is given. 3. Pinter Network is working fine.
read the posts regarding vlans that are administratively down, they suggested that they are down if no ports are assigned to them, however I do have a switchport assigned, and the interface is still down. This is on the vtp server and on the clients. The vlan is not listed when issuing show vlan brief. Other vlans configured in a similar way do show and their interfaces are up. These are two Catalyst 4948-10G.Cisco IOS Software, Catalyst 4500 L3 Switch Software (cat4500-IPBASEK9-M), Version 12.2(53)SG5, RELEASE SOFTWARE (fc1).
I recently bought this router for its great throughput and V LAN capabilities. It replaced a standard Linksys DIR-655.But now I am having trouble connecting my Samsung Galaxy2 (Android 4.0.3) telephone to my computer. Telephone is connected to WI-fi and computer is connected to wired LAN. When starting Kies on my telephone (this is a web server app) it tells me to connect to http://192.168.1.202:8080/ on my computer. This is the correct IP address for the telephone (I have reserved it on the router) and firewall is OFF in windows 7. But there is no response with Firefox or IE8. I have not changed anything on either the computer or the telephone since I replaced the router, so the problem must somehow be linked to the router.
Both telephone and computer are connected to the internet OK. I can even remote control the computer from the telephone using the VNC app on the telephone!So the network IS working. The problem is only related to the communication with the Kies app.
I have a problem with the Cisco 881 router at one of our customers.It seems that after a "no shutdown" has been given on the Vlan interface, it still goes back to "administratevly down" after a reboot.So when I restart the router I always have to manually "no shutdown" the Vlan interface to come back up.While rebooting the router it also gives the following info in the console screen every time which is strange:
new interface Vlan1 placed in "shutdown" state.We tried several different firmware releases.
Replacing the router with a new Cisco 881 router did not work either. After they sent back the old Cisco 881 router we tested it here and there were no problems, we weren't able to replicate the problem.The configuration we use for the router is correct, we use it for hundreds of customers, so that can't be it either.The customer uses a fortinet firewall behind the router. Could it be that something inside the LAN of the customer that triggers the Vlan to shut down?
My home WiFi network security is set up with MAC filtering and WPA-PSK encryptionAll my WiFi devices, ( Laptops, Android, Internet Radio, TV Streamer connect and work ok . However I cannot connect my Ipod to this WiFi network. When I try to connect I get " Unable to Join Network " . When I disable the Mac filtering on my WiFi it connects OK. My router is a Netopia 2247NWG and my Ipod is an Ipod Touch 4th generation running Ios 6.0.1 and is up to date.I've checked and double checked the MAC address in the MAC filtering table and I've deleted it and added it again but to no avail. The easy answer is " Disable the mac filtering, its not needed " but I have a specific reason for using it.
I have a RV082 router that is currently in prod. I have a Dell Powerconnect 5424 switch that I'd like to use in place of the unmanaged switches I am currently using.
I have the switch configured with it's IP, subnet, gateway, etc. I can plug devices into it and communicate with no problems. However, when I attempt to plug in the router, nothign will communicate to or from the switch. The devices I plugged in will not talk to each outer, ping the switch, or the router. Also cannot ping to the switch from a device plugged into the router. If I unplug the router, comm opens back up.
All 3 previous wireless routers I've had were all LinkSys routers and I had to overcome a learning curve since configuring this DIR-655 is slightly different..What I want to do is allow only the WiFi MAC addresses that I choose to access the network. It seems to me that in order to accomplish this I have to include all of my wired LAN devices' MAC filters as well. I can see having MAC filtering for WiFi devices, however why do I need to add my wired LAN devices MAC addresses? I'm not going to allow just anyone to walk into my home off the street and plug a computer into the network via CAT-5 ethernet cable, so isn't there a way to accomplish just the WiFi allow list and the heck with the wired nodes? The LinkSys routers I used in the past allowed me to allow the MAC filter for WiFi devices only. Is there a way around having to allow all MAC's and just allowing the wifi's?
I am having trouble with a DAP-1522 in AP mode dropping IPv6 packets. It is running in AP mode to supply connectivity to a number of laptops + a 2nd DAP-1522 in bridge mode. The laptops are able to get IPv6 router advertisements from the same wired network the DAP-1522 is plugged into, but they get nothing when connection to the wireless. Tcpdump sees no router adv's coming over the wireless interfaces when sniffing.This appears to be something others have hit as well url...
I have recently purchased a WD My Book Live and connected to my E4200 Router. I am trying to access this device using FTP from outside my local network. I did all required setting but with no success. I am able to connect to this using FTP from within my Local network. I used nmap to find scan the ports and it says port 21 filtered.
I have a Cisco 2921 configured with both DMVPN for remote sites and point-to-point isakmp ipsec VPN for smaller residential end-points.
The issue is, any ports that are NAT'd from the external appear filtered on the point-to-point vpn endpoints, but work fine over the dmvpn. Everything else seems to work correctly over the vpn. I have the nonat acl set up and the port forwards work fine from the external, but I'm not sure what's happening.
I have the configuration on the 2921 for reference.
We have several SG300 Series Switches (8, 20, 28 and 52-Port Versions) running. All Switches do reboot from time to time: Some after a week or so, others several times a day and then run again happily. In the log I see:
%SYSLOG-F-OSFATAL: FATAL ERROR: tExcTask: ABORT DATA exception ***** FATAL ERROR ***** SW Version: 1.2.7.76 Version Date: 19-Jul-2012 Version Time: 17:54:43
[code]....
This happens with FW Version 1.2.7.76 as well as under Version 1.1.1.8.I do not know if this is related to FUGU, but it usually happens, when I try to open a connection with FUGU to some other host in the network?
I want to setup an home network with a wireless router and use multiple switches for wired connections through out my home. I currently have an Airport extreme hooked up to a cable modem and a leviton gateway hooked up to the Airport. The 2 computers connected to the Leviton are on a windows 7 homegroup and share fine, but won't share or discover any wireless device connected to Airport. My main goal is to have a wireless/wired network with all computers sharing information with each other. I want 2-3 wired switches/gateways with a min of 2 devices connected to each, connected to my wireless router whiich is connected to cable modem.
I managed to create VLAN 30 (mgmt) and VLAN 888 (blackhole) on this SG 300 switch. Now I've configured ports 1-6 untagged on VLAN 30 and left ports 7-8 untagged in VLAN 1. Port 10 is my uplink to my router, which config looks like this:
If I connect a device into port 7 or 8, I get no IP address from the relevant DHCP server on my router. Thus, I thought I could add VLAN 1 to the trunk, but here's the surprise:
swi01-zg-#configure t swi01-zg(config)#int gi10 swi01-zg(config-if)#switchport trunk allowed vlan add 1 VLAN 1 : VLAN was not created by user.
Is it possible to daisy chain 3 switches and not have ip conflict? I am running a public access network for a library. For certain library software I need for all workstations to see each other. I have 25 workstations in total and two separate management consoles. I have all workstations on two switches but one of the management consoles is on the third switch because when joined with the others it has an ip conflict. I need this console for the digital sender that is connected as well as to act as a server for go print software.
It seems that I can add a pool for any subnet except the 192.168.1.1/24. I have successfully added a pool for 192.168.0.1/24, 172.16.16.1/24, etc. But when I use the same commands to add a 192.168.1.1/24 pool, I get:
sw(config)#ip dhcp pool network Device sw(config-dhcp)#address low 192.168.1.20 high 192.168.1.250 255.255.255.0 Illegal IP addresses range or subnet configuration Trying to configure a network pool on default IP interface
VLAN 1 IP was changed from default 192.168.1.254 to a static of 192.168.0.1.
Last week and just yesterday, our switch SG200 50/50 logged an error like this:
%CDP-E-MALFORMED_TLV: CDP message from 88:43:e1:ab:66:f8 cached with illegal Appliance VLAN-ID TLV
At the time of the error, the SA520 router's LAN Port 1 where the SG200 Port 49 connected went down. (Light is OFF) So internet is down and other V LAN are disconnected. The MAC address on the log is the SA520 router. This happens 2x now and it needs for me to reboot both switch and router. and goes back again online.
SG200 50/50 Port Firmware 1.1.1.8 SA 520 Firmware (Primary/Sec):2.1.51/2.1.18
If your wireless indicator is flashing red when you discover the smurf, it can mean that someone has tried to logon with an incorrect password. this is not necessarily an attack, it could be someone you have allowed access too, who has forgotten the password? In this case entering the correct password will solve the problem.However putting your own MAC address into the filter will simply block your own machine.