We currently have a company network set up with a PC acting as a shared resource containing shared folders for everyone to access (approx 30 users)The network is comprised of a business internet connection to a 5 port router which is then connected to a 5 port switch connecting to 4 computers and another switch which is connected to another 4 computers and again to another switch - this continues for approx 30 - 35 computers.We have 2 shipping databases connected to the first switch (2 of the for first computers mentioned) and about 15 of the 30 clients need to access these. Because there is this many people on the network we are running really slow and losing access to the databases/shared files on the network.We do not have the expertise or time/money to set up a true server/client network.We are moving to a bigger building and potentially hiring 10-20 more people.We are thinking about having a small (5port router) and branching it off to 2 24 port gigabit switches and the business folder and having one switch contain the 2 databases and all the users who need to access it and the other switch containing all the other users.
I have a Cisco 881 setup with the following VPN config.
[code]...
The client is able to connect just fine to the network via VPN, but I am unable to gain access to any of the local resources. I know 192.168.1.1 has SSH running and 192.168.1.50 has telnet running but if I try to connect to either using the correct program they just timeout. I am really at a loss on why the vpn connection connects but I can not gain access to any of the resources on the VPN network.
I want to set up our ASA5505 firewall to allow access from the Cisco VPN Client software.I have nstalled the client software then tried using the VPN wizard to set up the connection without success, I am running Windows 7 32 bit and Cisco client 5.0.03.0530. [code]
I have just purchased and setup a vpn on my ASA5505 and now I wish to setup a Windows VPN client to use it. Does CISCO have any free vpn clients for Windows?I tried to download a client from the CISCO downloads area, but it's for some kind of purchase agreement. I would have thought that the vpn client was free to download given my ASA comes with two free vpn licenses.
I've the following scenario VPN Concentrator is connected to a router which is connected to a router and at the edge Cisco 515E PIX is connected to the internet. The problem is that the normal VPN Dial-up connection (a utility of windows) are getting connected but Cisco VPN Client throws error 412. Here's what I've tried (Initially groups and user were created):
(1) Allowed port 10000 on PIX ( access-list from-outside-coming-in permit tcp any host <public ip> eq 10000) and checked IPSec over UDP on VPN Conc. under Mode Config tab. Also checked IPSec over TCP tab under tunneling panel at port 10000. Tried connecting through VPN Client but it threw error 412 (2) In the reference guide, I read that IPSec over NAT is allowed on ports ranging from 4000 something to 40000 something.
I tried 33333, both on PIX and VPN Conc. under Mode Config tab but still no use. Same error 412.
All routing in the network is Ok My customer want to access a server @ ip 10.194.70.1 in https on the interface Interco with his nat address as 10.97.0.11 .This server must be accessible with the address 10.97.0.11:443 from interfaces inside, outside and other sites.And source address must be nated with original destination address 10.97.0.11 to be redirected on 10.194.70.1.
I have a Cisco SA520W router and needs to set up VPN. Du to major problems with the SSL VPN Client and windows 7, I had to let it go and try a different approach.
That was the QuickVPN client, but as it turs out, it simply impossible from reading the user manual to understand just how I have to set thing up. For instance, the VPN Wizard tells you to enter a preshared key. But in the QuickVPN Client, where do I enter the key?
And shall the "Enable Cisco VPN Client" be ticket off, I assumed yes, but seriously it is impossible to know.
Then in the VPN Wizard again, in the Remote & Local WAN Adress, what shall use FQDN or IP Address. The if FQDN, what shall a enter, the domain name for the router, whats the point in that? The domain name of the VPN Client, seriously, what's the point in that? I would assume that 99% of the VPN Client does NOT have a domain name. Then, if IP address, am I supposed to know the IP address of the client? Same with the "Secure Connection Remote Accessibility", what am I supposed to enter. The IP address which the Quick VPN Client network adapter shall have?
I've just installed a standard Cisco wireless install (5508, 3502i, local and flexconnect setups) all working swimmingly.
The customer has asked for a new WLAN for a particular group of staff that will route to a different gateway than the general wireless staff.
The 5508 is connected to a older Avaya L3 switch that is the customers core swtich, but it isn't capable of PBR so it routes on desitnation only and its default route is not where I need the new WLAN traffic to route to. An ASA will be connected to the Avaya switch (which is the alternate gateway I need to get the new WLAN users to). So my question is probably routing 101, but if the ASA interface, the Avaya swtich and the WLAN interface all reside in the same VLAN, can I give the wireless clients the ASA as their gateway via DHCP and successfully get their traffic to the ASA?
I setup RV042s at a clients offices for the VPN support and am now finding that multiple sip clients behind the router does not work. I found a thread on tech and it looks like there's a case open for the issue. url... How to get this working other than assigning IPs for the phones and dealing with different ports.
I'm trying to set up a 5505 (running 8.3) so that i can use the client vpn through RADIUS authentication.I have set up a new local RAIDUS windows box and used the ASDM asistant and a few other guides to setup the 5505.
Just trying to figure out how LAP manage clients in a h-reap setup.Have a setup with native vlan on 144 (switch and AP) and ssid tagging in other vlan... Got this on switch:
Jan 12 10:31:43.121: %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address 0811.9695.9b04 on port FastEthernet0/42. Jan 12 10:31:43.121: %PORT_SECURITY-2-PSECURE_VIOLATION_VLAN: Security violation on port FastEthernet0/42 due to MAC address 0811.9695.9b04 on VLAN 144 Jan 12 10:37:42.770: %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address 0811.9695.9b04 on port FastEthernet0/42. Jan 12 10:37:42.770: %PORT_SECURITY-2-PSECURE_VIOLATION_VLAN: Security violation on port FastEthernet0/42 due to MAC address 0811.9695.9b04 on VLAN 144
Wonder why clients MAC is seen on native vlan (and ofcourse also on taged vlan) ...?
We currently have a client that uses the IPSec VPN Client to remote in to their PIX 501. When they connect, it secures communication and immediately connects/minimizes and the tunnel-group name/password is sufficient so no prompt for a username/password from a local/radius database.
When setting this up on a newly purchased ASA, a username/password is prompted every time they try to connect. Is there a way to eliminate this feature or a command in the tunnel-group or group policy so that a username/password is not required after the connection profile establishes the VPN? It is ASA 8.4.
how to setup a both ends of an IPSEC VPN tunnel using a software client such as shrewsoft vpn and an 800 series router?
I've tried following the instructions on cisco's site, but I don't really understand which interface I should use? Dialer, VLAN1 or UnNumbered to a Loopback?
I'm OK with most basic features of the router, but never had any luck with VPNs?
i have a strange issue with an HSRP Setup. I have two (S1+S2) 3560 as Core/Distribution Layer. Inter-vlan routing are enabled on both Switches. S1 and S2 are connected with an ether channel over four fibre ports. S3 -S5 are the (L2) access layer.
Gi0/1 on S1 and S2 are L3 ports, connect to a Linux Firewall.
HSRP is enabled, S1 is the active router and the STP root bridge.
But, my monitoring via cacti show me, that the Gi0/1 on S2 is active, too! But it should not be active? Only if S1 fails, should S2 the active switch.A client from the access ports on S3 - 5 gets traffic from the Internet via Gi0/1 from S2. Gi0/1 on S1 is active too, but will send mostly traffic to the Internet. Why is S2 active and why route it traffic from the Internet to the client?
How can I set up a Cisco 831 router (branch location) so that it will accept inbound VPN Client connections and initiate a site-to-site IPSec tunnel to our hub location that uses a VPN 3005 Concentrator? I could get the tunnel to work by configuring it in a dynamic crypto map but interesting traffic on the Cisco 831 side would not bring the tunnel up.
I want to setup a DC++ HUB for sharing data within the university local network. We have addresses of the form 172.31.*.*. These addressed are accessible within the university bu non routable outside on the internet. My plan is to setup a local HUB for DC++ for sharing data within the university intranet. So even if internet is unavailable data can be exchanged through LAN. This HUB must not be accessable outsied the university network.how should I do this all..implementing network sharing other than DC++. My basic idea is that everybody can share their data and the data is searchable from one common interface( Web interface is better option, if possible). And data featching should prefferably be from many hosts, using multiple connections so that speed can be improved..
i'm connected to the internet through a shared internet connection through a switch,and also have 3 computers connected to the same switch,what i want to setup a local network between the 3 computers but separated from the internet network?
If I have an 802.11g client on an 802.11n network, will that 802.11g client slow down the 802.11n network simply by being connected, or only when it is transmitting data?
used to be able to access pc usieng fing now can not access used fing.Accessed a win 7 client with my android. Reset the router now i can not access the win7 but able to access 2vista a different win7 pc and able to access other devices on nerwork. Can see the win 7 machine in question but can not connect with samba client.
I am setting up the network for the computer institue I work for. We are discarding the old network and are going for a new network. There will be 2 Computer Labs with 60 computers in each Lab. The staffroom will have 20 computers. The Accounts department will have 5 computers. All the departments are in the same building with just 2 floors. It will be a wired network. All computers should have access to the Internet. There will be a printer each in the 2 Labs, staffroom & accounts department which has to be shared with their respective network. The Lab computers will run MS Office, Adobe software etc. Likewise the the staffroom and accounts department computers will also have to run MS Office and probably Adobe software as well. We will be using Windows Server 2003 and are inclined to use IBM servers due to a partnership. Cost isn't a major issue and the management is willing to spend to set this up rightly in the first place.My main question is whether we should go for a thin client network with everything running in the main servers. In that case how many servers should we have and what would be the ideal config of those servers.If we go for workstation PCs for each user if cost isn't an issue then what are the benefits over thin client computersDo we have to have a separate server for data?
I recently did a clean install of Win 7 64-bit Pro on my workstation. This was previously connected to my DNS (Windows server 2008 R2) which i use to host my files, music etc for my home network. I was previously able to see my network shares in windows explorer (client side) but now I don't. If i go to search box and \server the shared folders will then be displayed in windows explorer under network and i have access to them. I've done a small amount of digging but have so far found nothing to point me in the right direction. So while i have access i would like to be able to point windows media player to my shared music on the server, which i can't do now because I have no way to navigate to that folder. Same with other programs such as outlook, when i want to attach a file to an email i'm not able to navigate to the share. Weird as i have access to the share by search \server?
I am having problems setting up a network, recently bought a used linksys router and had to restore to default settings. Now I am trying to set it up but I cant go to the ip 192.168... it times out, but when I go online and do the same thing I get a FW-1 at checky: Access denied. error. This is obviously my first time setting up a network using a router. what am I doing wrong? I checked drivers and I have tried plugging the cat5 into both internet and the 1st and 3rd port with little success, either a timed out connection or an error.
I've installed Fortigate 60B and now need to provide access to our guests. Guests must be isolated from office infrastructure. For this configuration I've set up DMZ interface with DHCP server. Client connected to DMZ port gets DHCP configuration but can't go out to the Internet.
I have a laptop that travels alot to different networks. I go to two differnent networks where I need to enter static network settings (wireless nic). How the heck do you save these settings so I don't have to enter them all the time. I know you can save the network profiles but does this save static settings assigned to the wireless nic?
i have a little network knowledge but the tp-link wa-500g is proving quite a challenge to set up.i am trying to set it up in client mode to use with the xbox 360.thhe problem is i seem to set everything up correctly but it doesnt actually seem to work or to connect to the main router..which is a sky sagemfast router...(could this maybe be the problem? and if so how could i sort this? i have set a static ip on the tp.link and set up in client mode and "supposedly" connected to the main router in which is hard to figure out if it has or hasnt...also my sky router has wpa security and i am wondering if something has to be configured in my tp-link wa-500g to connect? but i can find no information on this needing to be done.
I have a problem with a client/server app: It is a web application that resides in C:inetpubwwwroot (aspx pages) of the server. The client is a Windows app that is installed into Program Files on the clients and when running receives commands from a webservice on the server. When I install it on a PC on our own test environment it communicates with the server perfectly, no matter how many times I re-boot the client, the connection never goes down. When I give the client to someone on a separate domain, they install it and everything is OK. However, once they reboot the PC (Windows XP) the connection to the server fails. The can still ping the server from the PC, they can even see the web service is up and running by typing into a browser but the connection now fails. If I get them to uninstall the client all and re-install, it is fine again. As I say, it is a reboot that breaks it (communication to the web service that is.) My problem is that I am completley blind to the setup on the client-side of those I give it to (I only email it to them, I have only been in the site once). The PC is obviously on a domain (with static ip addresses I assume) but other than that i know nothing. I think it is something similar to the way when you map a drive in Windows and then when you reboot it has lost the connection and you have to re-map it.
I am a real amateur here. I have configured a cisco VPN server, group and user on an SRP527W, ADSL2+ AnnexA, 802.11n ETSI, 2FXS/1FXO. I can connect from my PC with the Cicso VPN client on it (I get the banner) but I cannot ping into the local network at all. Once I do get in I will be using shares to work on files or VNC to take over a CAD workstation.I am sure I just have not set up something but I don't know where to look. My local network is 192.168.15.***
I have a Cisco ASA 5505 which is setup as an EasyVPN client to e remote VPN concentrator.The Cisco ASA has the 50 internal user license with 10 VPN peers.We just upgraded the license from the base 10 internal user to 50 user license but it has not resolved the problem and only 10 internal users still work, the 11th fails. Does each EasyVPN client on the inside network take up 1 of the 10 VPN peer licences? This seems to be the issue from what I can see, just need confirmation.
Device asa 5550 - But can a Client establish a SSL VPN to remote network and devices on the remote network access local network printers? so you got one client one network A that creates a SSL VPN to network B , can network B be configured so that automatic job come across the same ssl vpn to a Different IP?
I have two ASA5505 with a site to site VPN.One of the ASA is connected to the internal network 192.168.150.0.The other one is connected to 192.168.151.0.
I have also configured IPSec Cisco client VPN to the one which is plugged to 192.168.150.0.
I would like to know if it is possible for a client connected with the Cisco VPN to access the network 192.168.151.0 through the site to site VPN.
