I set up a connection from a laptop (Windows 7) that goes through a LAN proxy server to a secure ftp server (Windows Server 2003).The sftp server is assigned a public ip address.I opened the firewall at the destination and allowed port 22 traffic to the sftp server. Well, the connection is failing.I know for a fact the connection from the client laptop is making it to the sftp server.If I issue this command on the client laptop:
telnet sftpserver 22
The DOS screen clears and tells me the type of SSH server I'm connecting to. While this connection is still active, I logged into the destination sftp server and did a netstat command. I can see the address of the proxy server in the "Foreign Address" column of the netstat results. I also can see the proxy server address when I look at the Application Log on the sftp server, so I know the connection is making it to the sftp server.
I beleive the problem is the control port (return traffic) from the server back to the client. Something is being blocked or is misconfigured. I always thought the router negotiated the control port, and that the control port didn't need to be put into any firewalls.
To start off with, I own the network, and every system connected to it. I run and admin it, so the chances that anyone else has changed anything is essentially zero.This computer has a wired network connection (The issue) and a wireless one. They are connected to two separate networks. A few days ago the wired card stopped getting an IP address from my router, always ended up with a 169 address. Eventually I just disabled it, and installed a PCI network card.
Now what happens is that all works fine for a while, then stops. Suddenly I am "Not connected to network" despite the fact my ip address hasn't changed. I run the network troubleshooter, it tells me the "Gateway is unreachable" Resets the network card, and all is good. Then after a while the network fails again. I did already scan with malwarebytes, and everything is fine as fat as its concerned.
The connection of the computer before is activating.. after how many days of using,it losses the internet connection.. what is the possible reason for this?
I've got an application running on a Windows 2008 server that I have verified as live on port 8085 at localhost. I've also verified on the server itself that port 8085(and in fact, all ports) are open right now. Despite this, I have no connection to this port on the server. Let me back up a bit an explain the architecture I'm working with.windows_server >> Switch >> Firewall >> Firewall >> InternetEverything but my server is managed by my hosting company who is insistent that this is a server issue. Is there a way to find out at what point my connection to port 8085 is failing? I feel like it's stopping at one of the Firewalls but need proof of this theory to get something done about it
I have fitted a thomson router to my desktop coputer using an ethernet cable and all is working fine. My Sony Vaio laptop recognises the wireless connection but fails to connect at the acquiring network address. I have been into the properties section of the network connection page and am only allowed 8 characters for the network key. But the Network key on the bottom of the modem is longer than 8 digits.
I am having problems with my wireless internet. I am using windows 7 64-bit OS and am connected to a WRG614v6 Netgear router. I will be on the internet and will have superb connection then my connection will drop, when i view the network it says that i have lost IPv4 connectivity. Pulling the power to my router then powering it on again fixes the problem for a hour or two but then connection is lost again.Here is the readout when connection is stable
Microsoft Windows [Version 6.1.7600] Copyright (c) 2009 Microsoft Corporation. All rights reserved.
C:UsersKyle>ipconfig/all Windows IP Configuration Host Name . . . . . . . . . . . . : Kyles-Laptop Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid[code].....
I have a server in a DMZ behind the ASA, connections to this server work sometimes and then fail others, so I dont think i'm looking at an ACL or NAT problem here.The syslogs report a SYN Timeout,I have taken a trace on the ASA, it seems that a SYN-ACK does come from the destination server within the 30sec timeout, but its not passed through the ASA back to the source ? there is one odd thing, what seems to be an out of sequence ACK from the destination which arrives before the SYN-ACK at the ASA, i'm wondering if this might be the problem ? This only occurs on the connections which fail, the connections that work, the destination responds quickly to the initial SYN, and the 3way handshake completes.
Syslogs :
Oct 18 19:17:32 nzlsudfedsi001-pri Oct 18 2011 19:17:32 NZLSUDFEDSI001 : %ASA-6-302013: Built outbound TCP connection 42327212 for IIP-ARCHIVE-PROD:172.24.32.31/21 (172.24.32.31/21) to BPO-TRANSIT:x.x.x.x/59392 (x.x.x.x/59392) Oct 18 19:18:02 nzlsudfedsi001-pri Oct 18 2011 19:18:02 NZLSUDFEDSI001 : %ASA-6-302014: Teardown TCP connection 42327212 for IIP-ARCHIVE-PROD:172.24.32.31/21 to BPO-TRANSIT:x.x.x.x/59392 duration 0:00:30 bytes 0 SYN Timeout
I have a 1941 Cisco router with WIC-!AM-V2 card that is uning pots( regural phone ) line for data traffic.the problem I am having is the line is establishing connection but it intermittently dropos.The router is configured to dial to Centraal office and I have more that 100 other locations with the same setup that are working fine. The only differene on htis one is it is going thru a PBX line.
I am trying to configure the ACS with AD in the identity store but am running into the following issue.I enter the AD Domain Name and username and password and hit the 'Test Connection' button and receive a DNS error stating that it 'Cannot resolve network address'.I have logged into the CLI and test to the domain name from there and it works fine.
There are many software available for this but the issues is how they all function. Example: One software Synchronized FTP allows you to set a local/remote folder and sync files between them. What was never disclosed is that you need Windows Task Scheduler to run the synchronization, and you do not see a progress indicator. I also tried TurboFTP but it felt like landing a space shuttle.
how to actually run a .bat on a remote computer through ssh/sftp in a GUI. My problem is that I havent been using command lines for 15 years, I litterally have never used a command line besides using stuff like ipconfig in command prompt.I have a ssh server on my home server using FreeSSH'd and The only ssh program i can find with a gui is winscp. Though theres no option to connect through ssh everyone says it does and theres even options for it.
Though when i try to run the bat file i get this error"Current sftp -3 session does not support command you request" then something about a seperate shell session. if i click ok it goes down to starting the session then just sits there and says host is not communication for more than 15 seconds still waiting and only option is to abort.
Any problem while using SFTP option in ACS5.3.I am trying ot use host-key sync command but giving below error.
ACS/admin(config-Repository)# host-key sync % Error: First character must be a letter % Error: Invalid ip address or hostnameSOK-S12-ACS-1/admin(config-Repository)# host-key sync% Error: First character must be a letter% Error: Invalid ip address or hostname
As per documentation this command needs to be added directly.
i am running windows server 2008 with the hyper V role installed.i have installed windows 7 Professional as a guest OS. assigned 2 GB of Ram to the machine. the point behind the VM is to virtualize my FTP server and incase a format is required i have the VM file on my 2nd partition, host OS on another. i use Cerberus FTP Server on the Win7 OS. i configured the server to accept SFTP and TLS connections. on the host OS i installed Fire FTP and File Zilla, both Clients will at max download a 4 MB file at 64 KB/Sec .. i have seen both jump to about 80 KB but was only a split second and never held.. however if i login without SFTP and transfer over standard protocol, i download at 1 MB/sec. which is my normal speeds. would this be only to the encryption process?, in the Cerberus Server there are options to adjust download speeds, i have left it default, and altered it to allow its max configuration. My ISP is not limiting any connections that shouldnt be.
We have ACS 5.3, and trying to set up sftp backup on freesshd server. SSH connection works, but ACS cannot copy backup file to sftp server, we get following errors:
I am not able to backup ACS 5.x server by means of SFTP protocol. We use ACS 5-2-0-26-2. My configuration of repository is:
repository SFTP url sftp://x.x.x.x/home/user user user password hash 455ad
command 'backup acs01 repository SFTP' does not work and I receive the following error message on ACS server:
%SSH connect error
On my sftp server I can find the following error messages:
Apr 6 06:57:46 CR01 sshd[8561]: Accepted password for user from 10.20.86.72 port 47924 ssh2Apr 6 06:57:46 CR01 sshd[8563]: Received disconnect from 10.20.86.72: 11: disconnected by user
How to successfully performed backup by means of SFTP protocol? Do I need any other configuration settings except repository? Do I need to store my SSHD RSA key to ACS? I am able to copy files using SFTP from other computers, so it seems that SFTP server is set correctly.
I have an application, a solar power plant, where communication cables (Cat.6 UTP) are run close to power cables. We've had a lot of failures in the past due to multiple reasons, electrical noise, surge, etc so we decided to change to Cat.6 SFTP. The problem is that now , even with proper termination of the shielding at either one or both ends, the noise is so bad that packet loss is above 90%.
Have cisco ASA5520 on place and i want to configure it to access my webserver outside of my network throught sftp/ftp with filezila what command to add so as port/service associate to it should be able to run?
After we have installed patch 5 on several ACS 5.2 server they aren't able anymore to write their backups to the sftp servers. I tried to search on the bug tool kit, but it seems to be broken when searching for the keyword "sftp". It's the same when I try to do a "copy logs" with sftp as destination.running a debug I can see,
acs/admin# copy logs sftp://10.1.115.11/,Collecting logs...,Username: backupuser,Password: ,6 [16376]: transfer: cars_xfer.c[301] [admin]: sftp copy out of /var/tmp/ADElogs.tar.gz requested,6 [16376]: transfer: cars_xfer_util.c[412] [admin]: resolved server to 10.1.115.11,7 [16383]: transfer: sftp_copy.c[75] [daemon]: Executing SFTP command: /usr/bin/scp -o StrictHostKeyChecking=no /var/tmp/ADElogs.tabackupuser@10.1.115.11://ADElogs.tar.gz,% Error: Transfer failed3 [16376]: transfer: sftp_copy.c[230] [admin]: sftp_copy ERROR: command execution failed,3 [16376]: copy: cm_copy.c[1226] [admin]: Logs archive transfer to url sftp://10.1.115.11/ failed retcode=-306,acs/admin#
For everybody else in the house the internet works fine on their devices, however, on my laptop and ipod it will often not allow me to connect for ages, but then finally connecting (without me changing anything)
UPnP seems to be failing somewhere between a few hours and a few days. It will work as expected for a while after starting or restarting the router, but then trying to create any new UPnP mappings will fail, and the ones that have been already created usually stop working. The commandline client upnpc fails to locate the router automatically, and manually navigating to http://192.168.0.1:65530/rootDesc.xml in Chrome returns a connection reset error instead of the expected XML device description.I turned on debug messages in the logs, but there doesn't seem to be anything useful in there (though they also seem to be flooded with a bunch of IPv6 mDNS network hopping, so I'm going to try disabling that for a while and see if that works). I did update to 2.10 and still had the same issue with UPnP, however my wireless network kept going down (I guess a known issue) so I downgraded back to 2.07. After the downgrade, I reset the router and manually re-entered all my settings (i.e. I didn't import them).
I'm running a Cisco 891 it has both crypto maps and ipsec VTI's running on the external interface. The cryto maps are for sites that do not have a cisco router and the Tunnels are for the sites that use crypto maps work perfectly fine. But I much prefer using unnels as it gives a routable interface, ospf works ect.
The tunnel interfaces will periodicly fail (Line protocol down) at no set interval, they will then not come back up again. To bring them back up I either have to shutdown and then re-enable the interface or run "clear cry ses rem *.*.*.*"
Logging with isakmp and ipsec errors provides the following: 55801: *May 1 10:31:16.015: ISAKMP:(0):Can't decrement IKE Call Admission Control stat incoming_active since it's already 0.55802: *May 1 10:31:16.015: ISAKMP:
I've got a fully working 877w that I'm trying to get to boot from tftp, but I just can't seem to get that going.I have a tftp server running and can copy images back and forth without any trouble.I have this in my config:boot-start-markerboot system tftp c870-advipservicesk9-mz.124-24.T2.bin 192.168.1.200boot-end-markerDuring the boot process I get an error message that says there is a missing or illegal ip but I really don't see how that can be as my tftp server is 192.168.1.200 just like my config says.
I have recently moved in a new apartment. At the building there is something like a centralized internet. There is a huge machine which is connected to every apartment of building via a cable modem(Netsys nh-300sp). Here is an image of system. And when I first came to apartment they gave me a username and password which I made login when i firstly opened a page on safari. When I plug in an ethernet cable to my macbook-air it connects and everything s good for a moment then it starts to kick me out randomly and continuously. When I look to Network Diagnostics: ISP is red, internet and network are yellow.I tried also using a manual DHPC address, but then ISP is green but Internet and server are red or yellow. I cant even reach to modems admin panel, maybe because of the system of building.
I just put together a new computer. After putting it together I installed Windows 7 64-bit. My problem is that every "https" website I go to fails at its certificate validation. Every browser I use (Firefox 4, Chrome, IE9) warns me that the security certificate failed the validation. If I click "continue anyway" the browser shows a blank page. This happens for every https site. I have tried mail.live.com, mail.google.com, bankofamerica.com, etc. I can't even connect to windows update (which is really bad). The problem is limited to this computer. All my other computers (2 laptops with windows 7 32 bit) connect to websites using https just fine. My computer is freshly installed, but I scanned for spyware/viruses/trojans and came up empty.
I purchased the D Link 615 router initially so that I could simply use it with my Net Talk telephone which required the use of a router to simply plug into. Since then I have acquired and use a Kindle and an Acer tablet which both use Wi-Fi. My connection to the wireless service is sporadic. I have been able to connect for two or three days in a row, but inevitably I will receive a message that the connection cannot be established. On my initial post for my problem it was suggested that I do as follows:
[code]...
I have tried to do all the above, but in many cases the terms used were different and the menu choices were sometimes not available. I did adhere to any of the above advice I could like choosing WPA-Personal. However, my problem persists and I do not know what to do. Is the 615 an inferior router? It is about 2 years old. According to Cnnet the Linksys E 1200 is the best.
Any issues upgrading the IOS on a 921 router.How can i create a certificate for the new IOS? I've never had to do this for other IOS 15 upgrade?I've confirmed the IOS is not corrupt and if i upgrade the router in ROMMON the router boots correctly.
Im preparing a lab and I have 2 ASA 5520's. I have configured them for failover so the Primarys config will replicate over to the Secondary. They are connected via a 3560 switch. the switch ports are configured as access ports on vlan 1. Spanning-tree portfast is enabled
Firewall (Primary) Cisco Adaptive Security Appliance Software Version 9.1(1) Device Manager Version 7.1(2) Compiled on Wed 28-Nov-12 10:38 by buildersSystem image file is "disk0:/asa911-k8.bin"Config file at boot was "startup-config"