• RELEVANCY SCORE 5.05

    DB:5.05:Odd Natd Message d9





    So here's what I get:
    Oct 11 07:52:58 domain.name natd[185]: failed to write packet back (Permission denied)

    Any hints on what this may be? Thanks.

    James

  • RELEVANCY SCORE 4.70

    DB:4.70:Natd Survives Dhcp? mz





    One of our servers had the DHCP service removed a while ago. However the system log keeps reporting "natd[199]: failed to write packet back (No route to host)", I'd assume because DHCP isn't there anymore. Trying to kill natd took the server offline completely.

    Does anybody know why natd is still running and whether it needs to? What is the best way to remove/disable it?

    Thanks.

    DB:4.70:Natd Survives Dhcp? mz

    I'd like to continue this thread....

    I have a 10.5.8 Server that has the NAT/DHCP/Firewall hiccup-misconfiguration of the nature....

    Here's the log

    4/27/10 7:50:28 AM natd[317] failed to write packet back (No route to host)
    4/27/10 7:50:28 AM natd[317] failed to write packet back (No route to host)
    4/27/10 7:50:30 AM natd[317] failed to write packet back (Host is down)
    4/27/10 7:50:30 AM natd[317] failed to write packet back (Host is down)
    4/27/10 7:50:34 AM natd[317] failed to write packet back (Host is down)
    4/27/10 7:50:34 AM natd[317] failed to write packet back (Host is down)
    4/27/10 7:50:42 AM natd[317] failed to write packet back (Host is down)
    4/27/10 7:50:42 AM natd[317] failed to write packet back (Host is down)
    4/27/10 8:01:22 AM bootpd[4841] can't open /etc/bootptab
    4/27/10 8:01:22 AM bootpd[4841] server name myLeopardServer.myDomain.com
    4/27/10 8:01:22 AM bootpd[4841] interface en0: ip 10.0.3.100 mask 255.255.255.0
    4/27/10 8:01:22 AM bootpd[4841] interface en1: ip 10.0.4.1 mask 255.255.255.0
    4/27/10 8:01:22 AM bootpd[4841] DHCP REQUEST [en0]: 1,0:1e:c2:d1:e2:c8
    4/27/10 8:01:22 AM bootpd[4841] ACK sent Anybody's iPhone 10.0.3.40 pktsize 318
    4/27/10 8:01:22 AM bootpd[4841] ACK sent Anybody's iPhone 10.0.3.40 pktsize 318
    4/27/10 8:11:54 AM bootpd[4873] can't open /etc/bootptab
    4/27/10 8:11:54 AM bootpd[4873] server name myLeopardServer.myDomain.com
    4/27/10 8:11:54 AM bootpd[4873] interface en0: ip 10.0.3.100 mask 255.255.255.0
    4/27/10 8:11:54 AM bootpd[4873] interface en1: ip 10.0.4.1 mask 255.255.255.0
    4/27/10 8:11:54 AM bootpd[4873] DHCP REQUEST [en0]: 1,0:22:41:75:6a:69 iPod-touch
    4/27/10 8:11:54 AM bootpd[4873] ACK sent MyCompany's iPod Touch 10.0.3.4 pktsize 318
    4/27/10 8:11:54 AM bootpd[4873] DHCP DISCOVER [en0]: 1,0:22:41:75:6a:69 iPod-touch
    4/27/10 8:11:54 AM bootpd[4873] OFFER sent MyCompany's iPod Touch 10.0.3.4 pktsize 318
    4/27/10 8:11:55 AM bootpd[4873] DHCP REQUEST [en0]: 1,0:22:41:75:6a:69 iPod-touch
    4/27/10 8:11:55 AM bootpd[4873] ACK sent MyCompany's iPod Touch 10.0.3.4 pktsize 318
    4/27/10 8:11:55 AM bootpd[4873] ACK sent MyCompany's iPod Touch 10.0.3.4 pktsize 318
    4/27/10 8:11:55 AM bootpd[4873] ACK sent MyCompany's iPod Touch 10.0.3.4 pktsize 318
    4/27/10 8:13:55 AM mDNSResponder[32] DNS Message too short
    4/27/10 8:13:55 AM mDNSResponder[32] DNS Message too short
    4/27/10 8:14:23 AM bootpd[4873] DHCP REQUEST [en0]: 1,0:1e:c2:d1:e2:c8
    4/27/10 8:14:23 AM bootpd[4873] ACK sent Anybody's iPhone 10.0.3.40 pktsize 318
    4/27/10 8:14:23 AM bootpd[4873] ACK sent Anybody's iPhone 10.0.3.40 pktsize 318
    4/27/10 8:20:49 AM natd[317] failed to write packet back (No route to host)
    4/27/10 8:20:49 AM natd[317] failed to write packet back (No route to host)
    4/27/10 8:20:51 AM natd[317] failed to write packet back (Host is down)
    4/27/10 8:20:51 AM natd[317] failed to write packet back (Host is down)

    This pattern repeats and repeats on a newly rebuild 10.5.8 Server. Could this be caused by a Airport Base Station Gateway/DHCP and Leopard Server DHCP fighting on the same subnet? I know this is a silly question but I've had my AirportBaseStation doing port forwarding and serving as the gateway router with a LeopardServer as the target for most of the forwarded traffic.... This server has two interfaces serving as another NAT Gateway for my private IP space on a different subnet.

    Can anyone tell me it that could cause this problem and if so, how can I prove to myself this is the issue? I'd like "proof" because this has been my general setup for this double NATed network for a few years and I think it works.... It has worked pretty well if not perfectly.... I have a fair but not absolute confidence that this works but I can't say that the log entries are not because of DHCP fighting....

    I believe there is a problem but the configuration of something.....

  • RELEVANCY SCORE 4.45

    DB:4.45:Plugging In A Usb Device Causes Everything Else To Stop Working? ck





    Hi there.

    I have an iMac 17" Core 2 Duo 2.00Ghz with 1GB RAM. I also have the new wired aluminium keyboard.

    When plugging in my printer, with a memory card in - on occasions all other USB devices stop working; this is the keyboard and anything else, such as my iPod Shuffle dock or any other peripheral.

    This is really annoying, as the only way to get use of my keyboard back - is to restart the machine! I can't replug in the keyboard, or sleep the machine. Nothing works except a reboot.

    I will post a copy of the log file underneath - I tried to google for this, but didn't come out with any results. Please help! This is such an annoying thing! Thanks!

    P.S - Sorry if I have pasted too much info underneath, just trying to be as helpful as possible!!

    LOG FILE:
    Oct 17 23:20:05 dans-iMac kernel[0]: SMC::setPowerState ERROR: smcPublishSleepCause failed (kSMCKeyNotFound)
    Oct 17 23:20:05 dans-iMac kernel[0]: AppleYukon - en0 link active, 100-Mbit, full duplex, symmetric flow control enabled
    Oct 17 23:20:05 dans-iMac natd[335]: failed to write packet back (Network is down)
    Oct 17 23:20:07 dans-iMac bootpd[1223]: interface en0: ip 192.168.1.12 mask 255.255.255.0
    Oct 17 23:20:07 dans-iMac bootpd[1223]: interface en1: ip 10.0.2.1 mask 255.255.255.0
    Oct 17 23:20:08 dans-iMac kernel[0]: USBF: 51059.213 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:20:08 dans-iMac mDNSResponder: Repeated transitions for interface en0 (192.168.1.12); delaying packets by 5 seconds
    Oct 17 23:20:08 dans-iMac mDNSResponder: Repeated transitions for interface en1 (10.0.2.1); delaying packets by 5 seconds
    Oct 17 23:20:14 dans-iMac kernel[0]: USBF: 51065.213 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:20:20 dans-iMac kernel[0]: USBF: 51071.213 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:20:26 dans-iMac kernel[0]: USBF: 51077.214 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:20:32 dans-iMac kernel[0]: USBF: 51083.214 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:20:39 dans-iMac kernel[0]: USBF: 51090.214 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:20:39 dans-iMac kernel[0]: AFPSleepWakeHandler: waking up
    Oct 17 23:20:45 dans-iMac kernel[0]: USBF: 51096.214 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:20:51 dans-iMac kernel[0]: USBF: 51102.214 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:20:57 dans-iMac kernel[0]: USBF: 51108.214 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:03 dans-iMac kernel[0]: USBF: 51114.215 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:09 dans-iMac kernel[0]: USBF: 51120.215 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:15 dans-iMac kernel[0]: USBF: 51126.215 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:21 dans-iMac kernel[0]: USBF: 51132.215 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:27 dans-iMac kernel[0]: USBF: 51138.215 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:33 dans-iMac kernel[0]: USBF: 51144.215 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:33 dans-iMac kernel[0]: disk1s1: I/O error.
    Oct 17 23:21:39 dans-iMac kernel[0]: USBF: 51150.215 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:44 dans-iMac loginwindow[72]: sendQuitEventToApp (LastFMHelper): AESendMessage returned error -1712
    Oct 17 23:21:45 dans-iMac kernel[0]: USBF: 51156.216 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:48 dans-iMac launchd[85]: com.logmein.logmeinguiagent: exited with exit code: 1
    Oct 17 23:21:48 dans-iMac launchd[85]: com.logmein.logmeinguiagent: 9 more failures without living at least 60 seconds will cause job removal
    Oct 17 23:21:52 dans-iMac kernel[0]: USBF: 51163.216 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:21:52 dans-iMac bootpd[1223]: server name dans-iMac.local
    Oct 17 23:21:52 dans-iMac bootpd[1223]: DHCP DISCOVER [en1]: 1,0:d:93:ec:a0:c4
    Oct 17 23:21:53 dans-iMac bootpd[1223]: DHCP DISCOVER [en1]: 1,0:d:93:ec:a0:c4
    Oct 17 23:21:54 dans-iMac launchd[85]: fm.last.lastfmhelper: exited: Killed
    Oct 17 23:21:55 dans-iMac ARDAgent [1235]: ******ARDAgent Launched******
    Oct 17 23:21:56 dans-iMac ARDAgent [1235]: ******ARDAgent Ready******
    Oct 17 23:21:56 dans-iMac bootpd[1223]: DHCP DISCOVER [en1]: 1,0:d:93:ec:a0:c4
    Oct 17 23:21:56 dans-iMac bootpd[1223]: OFFER sent no hostname 10.0.2.2 pktsize 300
    Oct 17 23:21:57 dans-iMac bootpd[1223]: DHCP REQUEST [en1]: 1,0:d:93:ec:a0:c4
    Oct 17 23:21:57 dans-iMac bootpd[1223]: ACK sent no hostname 10.0.2.2 pktsize 300
    Oct 17 23:21:58 dans-iMac kernel[0]: USBF: 51169.216 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:22:02 dans-iMac natd[335]: failed to write packet back (No route to host)
    Oct 17 23:22:04 dans-iMac kernel[0]: USBF: 51175.216 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!
    Oct 17 23:22:10 dans-iMac kernel[0]: USBF: 51181.216 AppleUSBEHCI[0x2641000]::Found a transaction past the completion deadline on bus 253, timing out!

    DB:4.45:Plugging In A Usb Device Causes Everything Else To Stop Working? ck

    whip67,
    Please start a new post. Your problem is a bit different than this one and you may not get the help you want just trying to add it to this thread.

  • RELEVANCY SCORE 4.28

    DB:4.28:Does Default Gateway Need To Be Allowed In Ip Acl?? p3



    Hello,

    Have someting strange happening.  Have a VLAN, we will call this subnet 1 VLAN1.  Have a remote  network that a device on subnet 1 needs to get to.

    The device on subnet 1 is a NAT'd VPN box.  On one side is a private network, we will say 192.168.x.x.  So the public side of the NATd VPN box has an IP address on VLAN1 Subnet 1. It tunnels the traffic to the remote network via EIGRP published routes.  Lets call the remote network 10.1.1.0/24

    So on the port that the NATd VPN box plugs into on VLAN1 Subnet 1 (the entire swith is configured at VLAN1 Subnet1) which has a trunk port to a Layer 3 switch that handles the routing)  I add an extended IP ACL that Allows the static IP address assigned to the NATd VPN box to ping the far side VPN box on the 10.1.1.0/24 network and allow any packet it sends to go to there also (so host VLAN1 IP address host remote network IP address ANY)

    Inherint block on all other traffic.

    The issue is the VPN tunnel between the VLAN1 box and the 10.1.1.0 network VPN box comes up for about 20 seconds, then dies.   I remove the ACL and it works fine.  I put it back on, same 20 seconds, then dies.

    So, in the ACL I put a permit from host VLAN 1 IP address (the NATd VPN box) to host IP address of VLAN1 default gateway ANY and the tunnel comes up for good, no issues.

    The funny thing is, that the original setup was up and working for days, then decided to stop and nothing was changed.  I had to add the default gateway of the VLAN1 IP to the ACL to get it working again and it has been up for a few days.

    Does not make sense to me so any insight?    I don't know why as the arp for the remote IP address would return the layer 2 mac of the default gateway, whihc is layer 2 and the acl should not affect this traffic.    Can't see it being a proxy arp issue either. 

    Any insight??

    Thanks

    Gene

    DB:4.28:Does Default Gateway Need To Be Allowed In Ip Acl?? p3


    Hello,

    Have someting strange happening.  Have a VLAN, we will call this subnet 1 VLAN1.  Have a remote  network that a device on subnet 1 needs to get to.

    The device on subnet 1 is a NAT'd VPN box.  On one side is a private network, we will say 192.168.x.x.  So the public side of the NATd VPN box has an IP address on VLAN1 Subnet 1. It tunnels the traffic to the remote network via EIGRP published routes.  Lets call the remote network 10.1.1.0/24

    So on the port that the NATd VPN box plugs into on VLAN1 Subnet 1 (the entire swith is configured at VLAN1 Subnet1) which has a trunk port to a Layer 3 switch that handles the routing)  I add an extended IP ACL that Allows the static IP address assigned to the NATd VPN box to ping the far side VPN box on the 10.1.1.0/24 network and allow any packet it sends to go to there also (so host VLAN1 IP address host remote network IP address ANY)

    Inherint block on all other traffic.

    The issue is the VPN tunnel between the VLAN1 box and the 10.1.1.0 network VPN box comes up for about 20 seconds, then dies.   I remove the ACL and it works fine.  I put it back on, same 20 seconds, then dies.

    So, in the ACL I put a permit from host VLAN 1 IP address (the NATd VPN box) to host IP address of VLAN1 default gateway ANY and the tunnel comes up for good, no issues.

    The funny thing is, that the original setup was up and working for days, then decided to stop and nothing was changed.  I had to add the default gateway of the VLAN1 IP to the ACL to get it working again and it has been up for a few days.

    Does not make sense to me so any insight?    I don't know why as the arp for the remote IP address would return the layer 2 mac of the default gateway, whihc is layer 2 and the acl should not affect this traffic.    Can't see it being a proxy arp issue either. 

    Any insight??

    Thanks

    Gene

  • RELEVANCY SCORE 4.11

    DB:4.11:Pcie And Dma. c7



    I generated a PCIe module by using coregen for Kintex 7 FPGA. The sample test (generated by coregen) shows an example of how a memory write packet sends from root complex to PCIe endpoint. Also, it shows how the completer packet (with data) sends from PCIe endpoint to the root complex.

    My question- is there a way to send a memory write packet to the root complex model? The root complex model seems to work fine when the received packet is a completer packet. But it doesn't seem to work when the received packet is a memory write packet.

    Thank you very much.

    DB:4.11:Pcie And Dma. c7


    Yes, it is solved. Thank you very much kotir.

  • RELEVANCY SCORE 3.94

    DB:3.94:Netware Backup With Arcserve Agent Fails ap



    After migration of a Netware 5.1 SP8 system to ESX 2.5.0 the backup using the Arcserve Backup Agent for Netware 9.01 fails after some time. I get the following error messages in the log of the agent:

    E16519: Failed to send packet, Orderly release indication

    E3120 Failed to back up

    DATA:\GRPWISE\P_POHAM\OFFILES\FD14\43726A1F.000, 10

    E16521: Failed to send command 6 to BrightStor, no error

    specified

    E16521: Failed to send command 33 to BrightStor, no error

    specified

    Does anyone know how to fix the problem?

    DB:3.94:Netware Backup With Arcserve Agent Fails ap


    After migration of a Netware 5.1 SP8 system to ESX 2.5.0 the backup using the Arcserve Backup Agent for Netware 9.01 fails after some time. I get the following error messages in the log of the agent:

    E16519: Failed to send packet, Orderly release indication

    E3120 Failed to back up

    DATA:\GRPWISE\P_POHAM\OFFILES\FD14\43726A1F.000, 10

    E16521: Failed to send command 6 to BrightStor, no error

    specified

    E16521: Failed to send command 33 to BrightStor, no error

    specified

    Does anyone know how to fix the problem?

  • RELEVANCY SCORE 3.71

    DB:3.71:Process Chain c8



    Hi All,

    We have a process chain which loads the data into ods and activates it.

    This chain has failed at the Loading step. When I digged thru the monitor, there were 2 data packets one of which has failed due to referential intigrity error with some of the records. The other packet processed successfuly. I need to resolve this and schedule it back.

    Can someone help me with clear steps?

    rgds

    AP

    DB:3.71:Process Chain c8


    Hi Ganesh,

    I don't have authorizations to correct them manually...its a junk data...i have to delete the data and process the chain...in the monitor i can see 2 data packets out of which one is showing red...when i dig thru it, it is showing ref. intigrity error for some records. pls let me know how can i go abt it..

    rgds

    AP

  • RELEVANCY SCORE 3.35

    DB:3.35:Delayed Re-Write Failed zc


    I constantly get Windows delayed re-write failed messages coming up on my computer. What do they mean, what are the consequences and how do I resolve the problem? Often refers to back-ups but not always. Driving me nuts!! Please help!!

    DB:3.35:Delayed Re-Write Failed zc

    http://support.microsoft.com/kb/330174

  • RELEVANCY SCORE 3.35

    DB:3.35:What Is The Reason For Below Ib Error, kk


    ib0: dev_queue_xmit failed to requeue packet

  • RELEVANCY SCORE 2.84

    DB:2.84:Rv042 Gateway To Gateway Vpn Via Natd Dsl jz



    Hello,

    I have been trying for some time now to establish a site to site VPN using two RV042s and DSL at each end. I have the same IPSec setup at each end and the same PSK. UDP500 is forwarded at both ends.

    I get the following log messages in the local router:

    (g2gips0) #44096: responding to Main Mode

    (g2gips0) #44096: You should NOT use insecure IKE algorithms (OAKLEY_DES_CBC)!

    (g2gips0) #44096: You should NOT use insecure IKE algorithms (OAKLEY_DES_CBC)!

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Send Main Mode 2nd packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Send Main Mode 2nd packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 3rd packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 3rd packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder send Main Mode 4th packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder send Main Mode 4th packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 5th packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 5th packet

    (g2gips0) #44096: Peer ID is ID_IPV4_ADDR: '192.168.2.1'

    (g2gips0) #44096: no suitable connection for peer '192.168.2.1'

    (g2gips0) #44096: no suitable connection for peer '192.168.2.1'

    (g2gips0) #44096: sending encrypted notification INVALID_ID_INFORMATION to xxx.xxx.xxx.xxx:500

    Initiating Main Mode

    [Tunnel Negotiation Info] Initiator Send Main Mode 1st packet

    Ignoring Vendor ID payload [1ef283f83549b5ff...]

    Received Vendor ID payload Type = [Dead Peer Detection]

    [Tunnel Negotiation Info] Initiator Received Main Mode 2nd packet

    [Tunnel Negotiation Info] Initiator send Main Mode 3rd packet

    [Tunnel Negotiation Info] Initiator Received Main Mode 4th packet

    [Tunnel Negotiation Info] Initiator Send Main Mode 5th packet

    encrypted Informational Exchange message is invalid because it is for incomplete ISAKMP SA

    (g2gips0) #44096: responding to Main Mode(g2gips0) #44096: You should NOT use insecure IKE algorithms (OAKLEY_DES_CBC)!(g2gips0) #44096: You should NOT use insecure IKE algorithms (OAKLEY_DES_CBC)!(g2gips0) #44096: [Tunnel Negotiation Info] Responder Send Main Mode 2nd packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Send Main Mode 2nd packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 3rd packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 3rd packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder send Main Mode 4th packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder send Main Mode 4th packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 5th packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 5th packet(g2gips0) #44096: Peer ID is ID_IPV4_ADDR: '192.168.2.1'(g2gips0) #44096: no suitable connection for peer '192.168.2.1'(g2gips0) #44096: no suitable connection for peer '192.168.2.1'(g2gips0) #44096: sending encrypted notification INVALID_ID_INFORMATION to xxx.xxx.xxx.xxx:500

    I get the following log messages in my remote router:

    Initiating Main Mode[Tunnel Negotiation Info] Initiator Send Main Mode 1st packetIgnoring Vendor ID payload [1ef283f83549b5ff...]Received Vendor ID payload Type = [Dead Peer Detection][Tunnel Negotiation Info] Initiator Received Main Mode 2nd packet[Tunnel Negotiation Info] Initiator send Main Mode 3rd packet[Tunnel Negotiation Info] Initiator Received Main Mode 4th packet[Tunnel Negotiation Info] Initiator Send Main Mode 5th packetencrypted Informational Exchange message is invalid because it is for incomplete ISAKMP SA

    DB:2.84:Rv042 Gateway To Gateway Vpn Via Natd Dsl jz


    Hello,

    I have been trying for some time now to establish a site to site VPN using two RV042s and DSL at each end. I have the same IPSec setup at each end and the same PSK. UDP500 is forwarded at both ends.

    I get the following log messages in the local router:

    (g2gips0) #44096: responding to Main Mode

    (g2gips0) #44096: You should NOT use insecure IKE algorithms (OAKLEY_DES_CBC)!

    (g2gips0) #44096: You should NOT use insecure IKE algorithms (OAKLEY_DES_CBC)!

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Send Main Mode 2nd packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Send Main Mode 2nd packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 3rd packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 3rd packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder send Main Mode 4th packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder send Main Mode 4th packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 5th packet

    (g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 5th packet

    (g2gips0) #44096: Peer ID is ID_IPV4_ADDR: '192.168.2.1'

    (g2gips0) #44096: no suitable connection for peer '192.168.2.1'

    (g2gips0) #44096: no suitable connection for peer '192.168.2.1'

    (g2gips0) #44096: sending encrypted notification INVALID_ID_INFORMATION to xxx.xxx.xxx.xxx:500

    Initiating Main Mode

    [Tunnel Negotiation Info] Initiator Send Main Mode 1st packet

    Ignoring Vendor ID payload [1ef283f83549b5ff...]

    Received Vendor ID payload Type = [Dead Peer Detection]

    [Tunnel Negotiation Info] Initiator Received Main Mode 2nd packet

    [Tunnel Negotiation Info] Initiator send Main Mode 3rd packet

    [Tunnel Negotiation Info] Initiator Received Main Mode 4th packet

    [Tunnel Negotiation Info] Initiator Send Main Mode 5th packet

    encrypted Informational Exchange message is invalid because it is for incomplete ISAKMP SA

    (g2gips0) #44096: responding to Main Mode(g2gips0) #44096: You should NOT use insecure IKE algorithms (OAKLEY_DES_CBC)!(g2gips0) #44096: You should NOT use insecure IKE algorithms (OAKLEY_DES_CBC)!(g2gips0) #44096: [Tunnel Negotiation Info] Responder Send Main Mode 2nd packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Send Main Mode 2nd packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 3rd packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 3rd packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder send Main Mode 4th packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder send Main Mode 4th packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 5th packet(g2gips0) #44096: [Tunnel Negotiation Info] Responder Received Main Mode 5th packet(g2gips0) #44096: Peer ID is ID_IPV4_ADDR: '192.168.2.1'(g2gips0) #44096: no suitable connection for peer '192.168.2.1'(g2gips0) #44096: no suitable connection for peer '192.168.2.1'(g2gips0) #44096: sending encrypted notification INVALID_ID_INFORMATION to xxx.xxx.xxx.xxx:500

    I get the following log messages in my remote router:

    Initiating Main Mode[Tunnel Negotiation Info] Initiator Send Main Mode 1st packetIgnoring Vendor ID payload [1ef283f83549b5ff...]Received Vendor ID payload Type = [Dead Peer Detection][Tunnel Negotiation Info] Initiator Received Main Mode 2nd packet[Tunnel Negotiation Info] Initiator send Main Mode 3rd packet[Tunnel Negotiation Info] Initiator Received Main Mode 4th packet[Tunnel Negotiation Info] Initiator Send Main Mode 5th packetencrypted Informational Exchange message is invalid because it is for incomplete ISAKMP SA

  • RELEVANCY SCORE 2.63

    DB:2.63:Ntstatus_Data_Not_Accepted When Adding Ip Options To Ip Header (Includes Code) xx


    After working on my problem for a while, I thought I hit upon a solution for adding IP options into the IP header. Here is the code that is contained in a WPF callout helper function. Packets are queued to the helper function from my OUTBOUND_TRANSPORT_V4
    classification function, with flow information and such included in the packet structure. I've used DebugPrint to verify that the ip packets generated are valid, and even exported them into wireshark to ensure they get parsed properly. All
    packets submitted to this function have been cloned in the classifyFn, and have been appropriately referenced.

    Here's the problem - even packet injected by the function returns status NTSTATUS_DATA_NOT_ACCEPTED (0xC000021B) in the completion function. No data appears on the wire. If I remove the portion of this function that performs the NDIS_REWIND and
    IP option insertion, packets flow just fine, with no errors (NTSTATUS_SUCCESS in completion function).

    Based on other posts here, I suspect there's an offset problem, but I have no idea how to deal with it. anyone have an idea what may be causing the problem? Changing the Injection function from TRANSPORT to NETWORK does not fix the issue. Are
    there any other suggestions?

    void
    TaggingHelper(
    _In_ void* StartContext
    )
    /*

    This worker thread waits for the packet queue event when the queue is
    empty; and it will be woken up when there are packets queued needing to
    be tagged with username information. Once awaking, It will run in a loop
    to modify-reinject packets until the packet queue is exhausted
    (and it will go to sleep waiting for more work).

    The worker thread will end once it detected the driver is unloading.

    -- */
    {
    TAGGING_PENDED_PACKET* packet;
    LIST_ENTRY* listEntry;
    KLOCK_QUEUE_HANDLE packetQueueLockHandle;
    NTSTATUS status;
    UCHAR *tmpBuffer = NULL;
    UCHAR *bufferPointer = NULL;
    UINT8 versionIHL = 0;
    UINT16 totalLength = 0;
    UINT8 packetHeaderWords = 0;
    UINT8 optionStringLength = 0;
    UCHAR *optionString = NULL;
    UINT8 headerLength = 0;
    UINT16 checksum = 0;
    INT i = 0;
    UCHAR *abuffer = NULL;
    WSACMSGHDR ipOption;
    WSACMSGHDR *enhancedControlData = NULL;
    UINT enhancedControlDataLength = 0;

    UNREFERENCED_PARAMETER(StartContext);
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_INFO_LEVEL,Starting Up Helper Thread\n);

    for(;;)
    {
    KeWaitForSingleObject(
    gPacketQueueEvent,
    Executive,
    KernelMode,
    FALSE,
    NULL
    );

    if (gDriverUnloading)
    {
    break;
    }

    NT_ASSERT(!IsListEmpty(gPacketQueue));

    KeAcquireInStackQueuedSpinLock(
    gPacketQueueLock,
    packetQueueLockHandle
    );

    listEntry = RemoveHeadList(gPacketQueue);

    KeReleaseInStackQueuedSpinLock(packetQueueLockHandle);

    packet = CONTAINING_RECORD(
    listEntry,
    TAGGING_PENDED_PACKET,
    listEntry
    );
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_INFO_LEVEL,Processing Packet.\n);

    //create the option string.
    CreateOptionString(optionString,optionStringLength,0xdeadbeef,0xdeadbeef);

    // DebugPrintByteString(optionString,optionStringLength,0x04);

    //add the IP header to the net buffer list.
    status = FwpsConstructIpHeaderForTransportPacket0(packet-netBufferList,
    packet-ipHeaderSize,
    AF_INET,
    packet-localAddr,
    packet-remoteAddr,
    (IPPROTO) packet-protocol,
    packet-endpointHandle,
    packet-controlData,
    packet-controlDataLength,
    0,
    NULL,
    packet-interfaceIndex,
    packet-subInterfaceIndex);
    if (!NT_SUCCESS(status))
    {
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_ERROR_LEVEL,Failed to create IP header, return status was %x.\n,status);
    //if we can't backup the option header distance in the inbound net buffer list, block the packet.
    goto Exit;
    }

    //rewind the nbl to fit the option header and IP header. This apparently creates contiguous space.
    bufferPointer = NULL;
    status = NdisRetreatNetBufferDataStart(NET_BUFFER_LIST_FIRST_NB(packet-netBufferList),optionStringLength,0,NULL);
    if (!NT_SUCCESS(status))
    {
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_ERROR_LEVEL,Failed to back up the option header.\n);
    //if we can't backup the option header distance in the inbound net buffer list, block the packet.
    goto Exit;
    }

    headerLength = IP_HEADER_LENGTH;
    //Get a pointer to the beginning of the NBL data.
    bufferPointer = (UCHAR *)NdisGetDataBuffer(NET_BUFFER_LIST_FIRST_NB(packet-netBufferList),IP_HEADER_LENGTH optionStringLength,NULL,1,0);
    if (bufferPointer == NULL)
    {
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_ERROR_LEVEL,could not get buffer pointer to packet.\n);
    goto Exit;
    }

    //allocate temporary buffer
    tmpBuffer = (UCHAR *)ExAllocatePoolWithTag(NonPagedPool,headerLength, IP_TAGGING_POOL_TAG);
    if (tmpBuffer == NULL)
    {
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_ERROR_LEVEL,Out of memory getting tmpBuffer.\n);
    goto Exit;
    }

    //copy the original header to a temporary buffer.
    RtlCopyMemory(tmpBuffer,bufferPointer optionStringLength,headerLength);

    //copy the IP header to tbe beginning of the data space.
    RtlCopyMemory(bufferPointer,tmpBuffer,headerLength);

    //now add in the option string
    RtlCopyMemory(bufferPointer headerLength, optionString, optionStringLength);

    //change the packet fields

    totalLength = RtlUshortByteSwap(*((UINT16 *)(bufferPointer 2)));
    versionIHL = ((headerLength optionStringLength) / 4) | 0x40;
    totalLength = optionStringLength;
    *(UINT8 *)bufferPointer = versionIHL;
    *((UINT16 *)(bufferPointer 2)) = RtlUshortByteSwap(totalLength);
    *((UINT16 *)(bufferPointer 10)) = 0x0000; //reset checksum

    //Try to use FwpsconstructIpHeader to fix checksum.
    status = FwpsConstructIpHeaderForTransportPacket0(packet-netBufferList,
    headerLength optionStringLength,
    AF_INET,
    packet-localAddr,
    packet-remoteAddr,
    (IPPROTO) packet-protocol,
    packet-endpointHandle,
    packet-controlData,
    packet-controlDataLength,
    0,
    NULL,
    packet-interfaceIndex,
    packet-subInterfaceIndex);
    if (!NT_SUCCESS(status))
    {
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_ERROR_LEVEL,Failed to validate IP header, return status was %x.\n,status);
    //if we can't backup the option header distance in the inbound net buffer list, block the packet.
    goto Exit;
    }

    //packet modification done. Reinject.
    //print ICMP packets to debug for check
    /* if (packet-protocol == IPPROTO_ICMP)
    {

    abuffer = (UCHAR *)ExAllocatePoolWithTag(NonPagedPool,totalLength,IP_TAGGING_POOL_TAG);
    bufferPointer = (UCHAR *)NdisGetDataBuffer(NET_BUFFER_LIST_FIRST_NB(packet-netBufferList),totalLength,abuffer,1,0);
    for (i = 0; i totalLength ; i)
    {
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_INFO_LEVEL,%.2x ,bufferPointer[i]);
    if (((i 1) % 4) == 0)
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_INFO_LEVEL,\n);
    }

    }
    */
    //Store the rewind length for later.
    packet-totalRewind = optionStringLength;

    //packet modification done. Reinject.

    status = FwpsInjectTransportSendAsync0(
    gInjectionHandle,
    NULL,
    packet-endpointHandle,
    0,
    NULL,
    AF_INET,
    packet-compartmentId,
    packet-netBufferList,
    TaggingHelperInjectComplete,
    packet);

    if (!NT_SUCCESS(status))
    {
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_INFO_LEVEL,Packet Inject Failed.\n);
    }
    else
    {
    DbgPrintEx(DPFLTR_IHVNETWORK_ID,DPFLTR_INFO_LEVEL,Packet Inject succeeded.\n);
    packet = NULL;
    }
    Exit:

    if (packet != NULL)
    {
    if (packet-netBufferList != NULL)
    FwpsFreeCloneNetBufferList0(packet-netBufferList, 0);
    FreeTaggingPendedPacket(packet);
    }

    //free the temp buffer
    if (optionString != NULL)
    {
    ExFreePoolWithTag(optionString,IP_TAGGING_POOL_TAG);
    optionString = NULL;
    optionStringLength = 0;
    }

    //reset counting variables
    bufferPointer = NULL;
    versionIHL = 0;
    totalLength = 0;
    packetHeaderWords = 0;

    KeAcquireInStackQueuedSpinLock(
    gPacketQueueLock,
    packetQueueLockHandle
    );

    if (IsListEmpty(gPacketQueue) !gDriverUnloading)
    {
    KeClearEvent(gPacketQueueEvent);
    }

    KeReleaseInStackQueuedSpinLock(packetQueueLockHandle);

    } //closes the infinite loop

    NT_ASSERT(gDriverUnloading);

    //
    // Discard all the pended packets if driver is being unloaded.
    //

    KeAcquireInStackQueuedSpinLock(
    gPacketQueueLock,
    packetQueueLockHandle
    );

    while (!IsListEmpty(gPacketQueue))
    {
    listEntry = RemoveHeadList(gPacketQueue);

    packet = CONTAINING_RECORD(
    listEntry,
    TAGGING_PENDED_PACKET,
    listEntry
    );

    FreeTaggingPendedPacket(packet);
    }

    KeReleaseInStackQueuedSpinLock(packetQueueLockHandle);
    PsTerminateSystemThread(STATUS_SUCCESS);

    return;
    }

    DB:2.63:Ntstatus_Data_Not_Accepted When Adding Ip Options To Ip Header (Includes Code) xx

    Dusty -
    Thank you very much for the response. just to make sure I get this right, are these the steps you'd recommend?
    1) Allocate a NBL pool using NdisAllocateNetBufferListPool with the NET_BUFFER_LIST_POOL_PARAMETERS Datasize = 0, fAllocateNetBuffer = TRUE.
    2) Allocate an MDL using NetAllocateMDL that contains enough space for the original packet, plus IP header, plus my option
    3) Allocate the NBL and NB using NetAllocateNetBufferAndNetBufferList and the MDL initialized in step 2.
    4) Copy all transport layer data from the old packet to the new
    5) Add IP header and Options to the new packet
    6) Adjust checksums, header lengths, total length, etc, in the new packet.
    7) Reference the new NBL
    8) Inject the new packet, free the old (clone) NBL.
    Does that sound about right?
    Thanks!
    Alex

  • RELEVANCY SCORE 2.61

    DB:2.61:Session.Close Should Use Aftercompletion? 9c



    I thought about this last week, while on the beach enjoying my vacations :-)...

    And I just came back, looked at the code and confirmed what I thought....

    Session.close is immediately closing the session without waiting any pending requests.

    Say, if another thread close the session, any waiting response will never return.. and that's currently (occasionally) happening in some of the MultiThread tests.

    To fix that, I would need to change Serversession::handleClose to:

    public void handleClose(final Packet packet) { storageManager.afterCompleteOperations(new IOAsyncTask() { public void onError(int errorCode, String errorMessage) { } public void done() { doHandleClose(packet); } }); }

    private void doHandleClose(final Packet packet) { Packet response = null;

    try { close();

    response = new NullResponseMessage(); } catch (Exception e) { ServerSessionImpl.log.error("Failed to close", e);

    if (e instanceof HornetQException) { response = new HornetQExceptionMessage((HornetQException)e); } else { response = new HornetQExceptionMessage(new HornetQException(HornetQException.INTERNAL_ERROR)); } }

    sendResponse(packet, response, true, true);

    }

    I know the Session is supposed to be single threaded, but I believe some of the MultiThreadReattachTests are failing because of this.

    the fix is simple, but I don't know if I should do it now since I don't have much time to test this. Any ideas?

  • RELEVANCY SCORE 2.57

    DB:2.57:Probleme Bei Vpn Verbindung Mit Wrvs4400n jj


    Möchte per VPN von einem Remotestandort auf meinen Heim Router per VPN zugreifen.Habe einen VPN User (test) erstellt und für Testzwecke sogar die Fireall am 4400N deaktiviert, an meinem zugreifenden PC ist die Firewall ebenfalls unten.Der Router hat die feste IP 10.10.10.1 bekommen Firmware ist V1.1.03.Verbindung mit QuickVPN (aktuelle Version) kann soweit hergestellt werden, Zertifikat habe ich noch nicht erstellt, es kommt also die Frage, ob Verbindung trotzdem hergestellt werden soll, connecting... activating policy... verifying network und hier bleibt er dann mit remotegateway is not responding stehen. Kann noch so oft auf warten klicken, kommt nicht weiter.Am Log sehe ich folgendes (Quote ab Zertifikatsabfrage)Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: I did not send a certificate because I do not have one.Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_sha group=modp1024}Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: retransmitting in response to duplicate packet; already STATE_MAIN_R3Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: responding to Quick Mode {msgid:194c7114}Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: transition from state STATE_QUICK_R0 to state STATE_QUICK_R1Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2Sep 11 13:04:25 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2Sep 11 13:04:25 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: STATE_QUICK_R2: IPsec SA established {ESP=0x35ecc068 0x3e4eaf5e xfrm=3DES_0-HMAC_MD5 NATD=80.140.245.x:64678 DPD=none}Sep 11 13:04:48 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: received Delete SA(0x35ecc068) payload: deleting IPSEC State #4Sep 11 13:04:49 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: received and ignored informational messageSep 11 13:04:49 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: received Delete SA payload: deleting ISAKMP State #3Sep 11 13:04:49 - [VPN Log]: packet from 80.140.245.x:64678: received and ignored informational messageHier breche ich dann ab:Sep 11 13:04:50 - [VPN Log]: "test_rw_rw": deleting connectionSep 11 13:04:50 - [VPN Log]: ERROR: "test_rw_rw": pfkey write() of SADB_X_DELFLOW message 23 for flow int.0@0.0.0.0 failed. Errno 14: Bad addressSep 11 13:04:50 - [VPN Log]: "test_rw_rw": unroute-client output: 0Sep 11 13:04:50 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x: deleting connection "test_rw_rw" instance with peer 80.140.245.x {isakmp=#0/ipsec=#0}Sep 11 13:04:50 - [VPN Log]: "test_rw_rw" #2: deleting state (STATE_QUICK_R2)Bei den VPN Einstellungen kann ich sehen, dass der Benutzer auch sauber abgemeldet ist, also was läuft hier schief?Was habe ich übersehen?

    Nachricht wurde am 09-11-2008 04:18 AM von Chrisso bearbeitet.

    Nachricht wurde am 09-11-2008 04:20 AM von Chrisso bearbeitet.

    DB:2.57:Probleme Bei Vpn Verbindung Mit Wrvs4400n jj

    Möchte per VPN von einem Remotestandort auf meinen Heim Router per VPN zugreifen.Habe einen VPN User (test) erstellt und für Testzwecke sogar die Fireall am 4400N deaktiviert, an meinem zugreifenden PC ist die Firewall ebenfalls unten.Der Router hat die feste IP 10.10.10.1 bekommen Firmware ist V1.1.03.Verbindung mit QuickVPN (aktuelle Version) kann soweit hergestellt werden, Zertifikat habe ich noch nicht erstellt, es kommt also die Frage, ob Verbindung trotzdem hergestellt werden soll, connecting... activating policy... verifying network und hier bleibt er dann mit remotegateway is not responding stehen. Kann noch so oft auf warten klicken, kommt nicht weiter.Am Log sehe ich folgendes (Quote ab Zertifikatsabfrage)Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: I did not send a certificate because I do not have one.Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_sha group=modp1024}Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: retransmitting in response to duplicate packet; already STATE_MAIN_R3Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: responding to Quick Mode {msgid:194c7114}Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: transition from state STATE_QUICK_R0 to state STATE_QUICK_R1Sep 11 13:04:24 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2Sep 11 13:04:25 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2Sep 11 13:04:25 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #4: STATE_QUICK_R2: IPsec SA established {ESP=0x35ecc068 0x3e4eaf5e xfrm=3DES_0-HMAC_MD5 NATD=80.140.245.x:64678 DPD=none}Sep 11 13:04:48 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: received Delete SA(0x35ecc068) payload: deleting IPSEC State #4Sep 11 13:04:49 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: received and ignored informational messageSep 11 13:04:49 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x #3: received Delete SA payload: deleting ISAKMP State #3Sep 11 13:04:49 - [VPN Log]: packet from 80.140.245.x:64678: received and ignored informational messageHier breche ich dann ab:Sep 11 13:04:50 - [VPN Log]: "test_rw_rw": deleting connectionSep 11 13:04:50 - [VPN Log]: ERROR: "test_rw_rw": pfkey write() of SADB_X_DELFLOW message 23 for flow int.0@0.0.0.0 failed. Errno 14: Bad addressSep 11 13:04:50 - [VPN Log]: "test_rw_rw": unroute-client output: 0Sep 11 13:04:50 - [VPN Log]: "test_rw_rw"[2] 80.140.245.x: deleting connection "test_rw_rw" instance with peer 80.140.245.x {isakmp=#0/ipsec=#0}Sep 11 13:04:50 - [VPN Log]: "test_rw_rw" #2: deleting state (STATE_QUICK_R2)Bei den VPN Einstellungen kann ich sehen, dass der Benutzer auch sauber abgemeldet ist, also was läuft hier schief?Was habe ich übersehen?

    Nachricht wurde am 09-11-2008 04:18 AM von Chrisso bearbeitet.

    Nachricht wurde am 09-11-2008 04:20 AM von Chrisso bearbeitet.

  • RELEVANCY SCORE 2.56

    DB:2.56:What Is "Natd" And Why Is It Using 80% Of Cpu? xk


    I noticed last night that my CPU seems way too active. I found the process "natd" in the activity viewer, and it's running at a fairly consistent 80% of CPU usage. What the heck is it? I searched for it and it's parent process "launchd", but everything it came back with was a bunch of networking stuff that's over my head...

    Can anyone help?

    Screenshot:
    http://homepage.mac.com/ltcarter47/images/natd.png

    DB:2.56:What Is "Natd" And Why Is It Using 80% Of Cpu? xk

    Well, everything seems normal still, I guess I know what to do if I see it again

    Thanks for everyones help!

    -Sean

  • RELEVANCY SCORE 2.55

    DB:2.55:Which One Is The Better Way (Jvm Setting) pz


    Hi,

    Anyone experienced setting the JVM for java start up? My processes are below

    1. Receives TCP Packet (probably 50 per sec), each packet around 100 bytes
    2. Store the packets into a file (write 5120 bytes per sec)3. Read from the file and store packet by packet into JMS JBOSSMQ, (write to queue[b] 5120 bytes per sec)
    4. Spawn thread for each JMS durable client, receives packet from queue and distribute out packet by packet as TCP (15 durable clients) (write 5120 bytes per sec)

    Server Spec
    Xeon 2.2 Ghz, 2GB RAM, 4 processors

    My suggestion of setting...anyway to make this better?
    -Xms=512M -Xmx=1024M -XX:UseParallelGC -XX:ParallelGCThreads=4

    DB:2.55:Which One Is The Better Way (Jvm Setting) pz

    Hi,

    Anyone experienced setting the JVM for java start up? My processes are below

    1. Receives TCP Packet (probably 50 per sec), each packet around 100 bytes
    2. Store the packets into a file (write 5120 bytes per sec)3. Read from the file and store packet by packet into JMS JBOSSMQ, (write to queue[b] 5120 bytes per sec)
    4. Spawn thread for each JMS durable client, receives packet from queue and distribute out packet by packet as TCP (15 durable clients) (write 5120 bytes per sec)

    Server Spec
    Xeon 2.2 Ghz, 2GB RAM, 4 processors

    My suggestion of setting...anyway to make this better?
    -Xms=512M -Xmx=1024M -XX:UseParallelGC -XX:ParallelGCThreads=4

  • RELEVANCY SCORE 2.55

    DB:2.55:Tracer: Np Failed Tracing Packet 7a



    Hi all, I have a problem with a PIX-535 IOS 7.2(2), when we try to use the packet tracer for ASDM or CLI it dont work. On console display "TRACER: NP failed tracing packet"

    DB:2.55:Tracer: Np Failed Tracing Packet 7a


    Briefly, here it is

    Packet-tracer fails to trace after about 800 packet traces. I ran a script which will execute packet-tracer command continuously. It is observed that after about 800 traces following error is seen.

    asa(config)# packet-tracer input inside tcp 10.60.1.100 1800 10.60.2.72 21

    asa(config)# : NP failed tracing packet

    asa(config)# sh ver

    Cisco Adaptive Security Appliance Software Version 8.0(1)16

    Device Manager Version 5.2(2)

    It happens also for 7.2.2.

    Are you in multi-context ASA? If you are there is one more defect for packet tracer.

    PK

  • RELEVANCY SCORE 2.54

    DB:2.54:Can't Send Sms Use Packet Data 9f


    When I send sms to the number their shown "Could not sent"..for example I sent sms Advance to 28882..When i press send their sent back that write "Could not sent"..






    Solved!
    Go to Solution.

    DB:2.54:Can't Send Sms Use Packet Data 9f


    Make sure that the SMS center number is correct. Go to messaging menu button settings SMS center number. Control that the number is correct with your network provider.

    Otherwise I suggest that you try with another SIM card in your phone.





    What are your thoughts about this forum?Let us know by doing this short survey.

  • RELEVANCY SCORE 2.48

    DB:2.48:Accessing Outside Natd Ip Address From Inside cm



    We have a full class C subnet on the PIX outside interface, part of this range is being used for static NAT for various www servers. Our intranet servers are accessed using the ouside NAT'd IP address rather than the real IP and we're having problems accessing the www servers. The problem isn't be caused by an ACL as I have permit all at the moment.

    Interestingly if I change the subnetting so the NAT ranges are in a different subnet to the PIX outside interface the www servers become available.

    Obviously changing the subnetting like this means all traffic goes out to the ISP router then comes back into the PIX which seems a little messy to me, is there any other way around this other than changing the IP addresses the intranet is accessed on?

    Thanks in advance

  • RELEVANCY SCORE 2.47

    DB:2.47:Ntp: Packet From Xxx.Xxx.170.5 Failed Validity Tests A0 zj



                       Does anyone know what Validity test A0 is or what would cause this error?

    DB:2.47:Ntp: Packet From Xxx.Xxx.170.5 Failed Validity Tests A0 zj


                       Does anyone know what Validity test A0 is or what would cause this error?

  • RELEVANCY SCORE 2.45

    DB:2.45:Api Rpc Add Ftp User Broken pm





    Im writting an app against the API RPC, and am trying to create a new FTP user.
    The documention says to write the packet like:



    packet version=1.6.3.0
    ftp-user
    add
    nameftpuser1/name
    passwordjdnHHbe6Gc/password
    home/
    webspace-id48/webspace-id
    /add
    /ftp-user
    /packet

    DB:2.45:Api Rpc Add Ftp User Broken pm




    ok, seems to be fixed with 1.6.3.5 ...

    Guys.. You really should keep your docs up2date!

  • RELEVANCY SCORE 2.44

    DB:2.44:Failed (Command Write Failed (Invalid Argument)) sa


    hello there any one knows why getting this errors

    FAILED (command write failed (Invalid argument))

  • RELEVANCY SCORE 2.44

    DB:2.44:Quickvpn In Windows 7 Not Connecting To Rvs4000 31



    When I use QuickVPN under XP, I connect to my RVS4000 without problems.  When I switch to new computer running Windows 7 and V4.2.1 QuickVPN I can get all the way to Verifying Network.   Then I get the message that: "The remote gateway is not responding.  Do you want to wait?"  - repeatedly.  The icon in the tool bar remains with a red slash and I am unable to ping devices on the lan side of the router.  However, when I check the VPN Summary on the router, I see that it thinks I'm connected.  When I check the VPN log I see that I am not:

    Oct 12 10:27:53 - Configuration changed!

    Oct 12 10:28:33 - Configuration changed!

    Oct 12 10:28:34 - [VPN Log]: added connection description "ValR_rw_rw"

    Oct 12 10:28:34 - [VPN Log]: listening for IKE messages

    Oct 12 10:28:34 - [VPN Log]: adding interface ipsec0/ppp0 69.161.30.166:500

    Oct 12 10:28:34 - [VPN Log]: adding interface ipsec0/ppp0 69.161.30.166:4500

    Oct 12 10:28:34 - [VPN Log]: loading secrets from "/etc/ipsec.secrets"

    Oct 12 10:28:46 - [VPN Log]: packet from 65.74.6.130:23434: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000008]

    Oct 12 10:28:46 - [VPN Log]: packet from 65.74.6.130:23434: ignoring Vendor ID payload [RFC 3947]

    Oct 12 10:28:46 - [VPN Log]: packet from 65.74.6.130:23434: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]

    Oct 12 10:28:46 - [VPN Log]: packet from 65.74.6.130:23434: ignoring Vendor ID payload [FRAGMENTATION]

    Oct 12 10:28:46 - [VPN Log]: packet from 65.74.6.130:23434: ignoring unknown Vendor ID payload [fb1de3cdf341b7ea16b7e5be0855f120]

    Oct 12 10:28:46 - [VPN Log]: packet from 65.74.6.130:23434: ignoring Vendor ID payload [Vid-Initial-Contact]

    Oct 12 10:28:46 - [VPN Log]: packet from 65.74.6.130:23434: ignoring unknown Vendor ID payload [e3a5966a76379fe707228231e5ce8652]

    Oct 12 10:28:46 - [VPN Log]: "ValR_rw_rw"[1] 65.74.6.130 #1: responding to Main Mode from unknown peer 65.74.6.130

    Oct 12 10:28:46 - [VPN Log]: "ValR_rw_rw"[1] 65.74.6.130 #1: transition from state STATE_MAIN_R0 to state STATE_MAIN_R1

    Oct 12 10:28:46 - [VPN Log]: "ValR_rw_rw"[1] 65.74.6.130 #1: STATE_MAIN_R1: sent MR1, expecting MI2

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[1] 65.74.6.130 #1: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[1] 65.74.6.130 #1: STATE_MAIN_R2: sent MR2, expecting MI3

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[1] 65.74.6.130 #1: Main mode peer ID is ID_IPV4_ADDR: '172.22.30.11'

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #1: deleting connection "ValR_rw_rw" instance with peer 65.74.6.130 {isakmp=#0/ipsec=#0}

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #1: I did not send a certificate because I do not have one.

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #1: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #1: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1024}

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #2: responding to Quick Mode {msgid:01000000}

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #2: transition from state STATE_QUICK_R0 to state STATE_QUICK_R1

    Oct 12 10:28:47 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #2: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2

    Oct 12 10:28:49 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #2: route-client output: 0

    Oct 12 10:28:49 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #2: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2

    Oct 12 10:28:49 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #2: STATE_QUICK_R2: IPsec SA established {ESP=0xd7f3050c 0xe98d074f xfrm=3DES_0-HMAC_MD5 NATD=none DPD=none}

    Oct 12 10:33:48 - [VPN Log]: | NAT-T: new mapping 65.74.6.130:23434/44824)

    Oct 12 10:33:48 - [VPN Log]: | pfkey_lib_debug:pfkey_msg_parse: satype 0 conversion to proto failed for msg_type 2 (update).

    Oct 12 10:33:48 - [VPN Log]: | pfkey_lib_debug:pfkey_msg_build: Trouble parsing newly built pfkey message, error=-22.

    Oct 12 10:33:48 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #2: pfkey_msg_build of Add SA esp.e98d074f@69.161.30.166 failed, code -22

    Oct 12 10:33:48 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #1: received Delete SA(0xd7f3050c) payload: deleting IPSEC State #2

    Oct 12 10:33:48 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130 #1: terminating SAs using this connection

    Oct 12 10:33:48 - [VPN Log]: "ValR_rw_rw" #2: deleting state (STATE_QUICK_R2)

    Oct 12 10:33:48 - [VPN Log]: "ValR_rw_rw" #1: deleting state (STATE_MAIN_R3)

    Oct 12 10:33:48 - [VPN Log]: "ValR_rw_rw"[2] 65.74.6.130: deleting connection "ValR_rw_rw" instance with peer 65.74.6.130 {isakmp=#0/ipsec=#0}

    Oct 12 10:33:49 - [VPN Log]: "ValR_rw_rw": unroute-client output: 0

    Oct 12 10:33:49 - [VPN Log]: packet from 65.74.6.130:44824: received and ignored informational message

    Oct 12 11:45:11 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000008]

    Oct 12 11:45:11 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [RFC 3947]

    Oct 12 11:45:11 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]

    Oct 12 11:45:11 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [FRAGMENTATION]

    Oct 12 11:45:11 - [VPN Log]: packet from 65.74.6.130:8426: ignoring unknown Vendor ID payload [fb1de3cdf341b7ea16b7e5be0855f120]

    Oct 12 11:45:11 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [Vid-Initial-Contact]

    Oct 12 11:45:11 - [VPN Log]: packet from 65.74.6.130:8426: ignoring unknown Vendor ID payload [e3a5966a76379fe707228231e5ce8652]

    Oct 12 11:45:11 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #3: responding to Main Mode from unknown peer 65.74.6.130

    Oct 12 11:45:11 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #3: transition from state STATE_MAIN_R0 to state STATE_MAIN_R1

    Oct 12 11:45:11 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #3: STATE_MAIN_R1: sent MR1, expecting MI2

    Oct 12 11:45:13 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000008]

    Oct 12 11:45:13 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [RFC 3947]

    Oct 12 11:45:13 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]

    Oct 12 11:45:13 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [FRAGMENTATION]

    Oct 12 11:45:13 - [VPN Log]: packet from 65.74.6.130:8426: ignoring unknown Vendor ID payload [fb1de3cdf341b7ea16b7e5be0855f120]

    Oct 12 11:45:13 - [VPN Log]: packet from 65.74.6.130:8426: ignoring Vendor ID payload [Vid-Initial-Contact]

    Oct 12 11:45:13 - [VPN Log]: packet from 65.74.6.130:8426: ignoring unknown Vendor ID payload [e3a5966a76379fe707228231e5ce8652]

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #4: responding to Main Mode from unknown peer 65.74.6.130

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #4: transition from state STATE_MAIN_R0 to state STATE_MAIN_R1

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #4: STATE_MAIN_R1: sent MR1, expecting MI2

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #3: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #3: STATE_MAIN_R2: sent MR2, expecting MI3

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #3: Main mode peer ID is ID_IPV4_ADDR: '172.22.30.11'

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[4] 65.74.6.130 #3: I did not send a certificate because I do not have one.

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[4] 65.74.6.130 #3: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[4] 65.74.6.130 #3: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1024}

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[4] 65.74.6.130 #5: responding to Quick Mode {msgid:01000000}

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[4] 65.74.6.130 #5: transition from state STATE_QUICK_R0 to state STATE_QUICK_R1

    Oct 12 11:45:13 - [VPN Log]: "ValR_rw_rw"[4] 65.74.6.130 #5: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2

    Oct 12 11:45:15 - [VPN Log]: "ValR_rw_rw"[4] 65.74.6.130 #5: route-client output: 0

    Oct 12 11:45:15 - [VPN Log]: "ValR_rw_rw"[4] 65.74.6.130 #5: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2

    Oct 12 11:45:15 - [VPN Log]: "ValR_rw_rw"[4] 65.74.6.130 #5: STATE_QUICK_R2: IPsec SA established {ESP=0xe15a35e6 0xe98d0750 xfrm=3DES_0-HMAC_MD5 NATD=none DPD=none}

    Oct 12 11:46:23 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130 #4: max number of retransmissions (2) reached STATE_MAIN_R1

    Oct 12 11:46:23 - [VPN Log]: "ValR_rw_rw"[3] 65.74.6.130: deleting connection "ValR_rw_rw" instance with peer 65.74.6.130 {isakmp=#0/ipsec=#0}

    I've disabled MS Security Essentials and made sure the Firewall is on.  IPSec  Policy Agent and IKE and AuthIP IPSec Keying Modules services are both started.  I've created a rule to allow QuickVPN throught the firwall in and out and a rule to let traffic on 443 and 60443 UDP and TCP through the Firewall.  Still no luck.  Perhaps someone with more experience reading the logs can help me understand what is happening. 

    Thanks,

    -ValR

    DB:2.44:Quickvpn In Windows 7 Not Connecting To Rvs4000 31


    Hi All,

    I have tried adding the Path variable but still get the same error - "remote gateway not responding". At this stage the RV082 is goiung back to the supplier as it is not fit for purpose - so much wasted time already spent on such a simple connection!

    Question: is there any other method of connecting to "VPN Client Access" without using the Cisco QuickVPN s/w?

    Many thanks and good luck if you have a problem.

    Regards

    Duncan

  • RELEVANCY SCORE 2.43

    DB:2.43:Debug Download Failed To Sp601 Board c9



    I´m working with EDK 12.1 and a Spartan SP601 board. I worked for a while with small c-Projects with SDK and debugging via the on-board USB-JTAG. With another (bigger) project I can not download the elf-file to the board.

    I get the following message (if I try it the first time after downloading the bitstream (this works always):

    (mb-gdb console)

    .gdbinit: No such file or directory.Ignoring packet error, continuing...Ignoring packet error, continuing...

    (after that in a message box)

    Unexpected error while launching program: Error downloading program to target: Target is not responding (timed out)

    Trying it more times I get the message:

    (mb-gdb console)

    .gdbinit: No such file or directory.
    Ignoring packet error, continuing...
    Ignoring packet error, continuing...

    (after that in a message box)

    Unexpected error while launching program: target selection failed

    I already tried a .gdbinit file with the following entries:

    set download-write-size 4096set remote memory-write-packet-size 4096set remote memory-write-packet-size fixedset remote memory-read-packet-size 4096set remote memory-read-packet-size fixed

    Got the same result...

    Any ideas?

    Regards,

    Thomas







    Solved!
    Go to Solution.

    DB:2.43:Debug Download Failed To Sp601 Board c9


    You can use the hostname instead of the IP address.

  • RELEVANCY SCORE 2.43

    DB:2.43:Internet Connection Fails jm


    Just received my satio back from repair
    and was sent the vodafone txts with internat settings (PAYT WAP) and mms settings (PAYT MMS)
    However when i try to connect i get a failed internet connection

    Error is Packet Data connection not available and then internet could not perform action

    Any ideas?
    Thanks

    DB:2.43:Internet Connection Fails jm

    THIS SEEMS TO HAVE DONE THE TRICK
    THANKS

  • RELEVANCY SCORE 2.43

    DB:2.43:Nat Error Message ak


    Hi,

    I have following error message in my system log.

    Anyone knows where the problem is coming from??

    Apr 18 22:03:43 athena natd[23886]: failed to write packet back (No route to host)

    Cheers
    Ben

    DB:2.43:Nat Error Message ak

    en0 is on top of the interfacelist in Network config?

    Router IP (your Internet router LAN IP, 10.0.0.1 ?) is only filled in in en0 config (I know the assistant fills in both interfaces but leave en1 router field empty) ?

    In your Internet router (if NAT is OFF in OS X server) you need a static route back to 192.168.1.0/24 network (or whatever 192.168.xxx.xxx net it was you used) with 10.0.0.10 as gw.

    Why do you need this routing anyway?
    You already have a NAT router between your server and Internet.

  • RELEVANCY SCORE 2.43

    DB:2.43:Strange Error In Error.Log Possibly Internet-Sharing Related fj


    I recently got this error message repeating every 2 Seconds or so (date and hostname clipped):

    +InternetSharing[524]: Internet Sharing shutting down+
    +com.apple.launchd[1] (com.apple.InternetSharing[524]): Exited with exit code: 1+
    +com.apple.launchd[1] (com.apple.InternetSharing): Throttling respawn: Will start in 10 seconds+

    Internet-Sharing was disabled. After enabling and disabling InternetSharing. The error stopped. Only to be replaced by:

    +natd[542]: failed to write packet back (No route to host)+
    +natd[542]: failed to write packet back (Host is down)+

    No IP-Adress is shown.

    Occasionally I get:

    +mDNSResponder[16]: setsockopt - IPMULTICASTIF error 169.254.98.218 -1 errno 49 (Can't assign requested address)+

    Anyone any Clue what's wrong?

    Message was edited by: shorshe

    DB:2.43:Strange Error In Error.Log Possibly Internet-Sharing Related fj

    I recently got this error message repeating every 2 Seconds or so (date and hostname clipped):

    +InternetSharing[524]: Internet Sharing shutting down+
    +com.apple.launchd[1] (com.apple.InternetSharing[524]): Exited with exit code: 1+
    +com.apple.launchd[1] (com.apple.InternetSharing): Throttling respawn: Will start in 10 seconds+

    Internet-Sharing was disabled. After enabling and disabling InternetSharing. The error stopped. Only to be replaced by:

    +natd[542]: failed to write packet back (No route to host)+
    +natd[542]: failed to write packet back (Host is down)+

    No IP-Adress is shown.

    Occasionally I get:

    +mDNSResponder[16]: setsockopt - IPMULTICASTIF error 169.254.98.218 -1 errno 49 (Can't assign requested address)+

    Anyone any Clue what's wrong?

    Message was edited by: shorshe

  • RELEVANCY SCORE 2.43

    DB:2.43:%Nvram-3-Eeprom_Write_Failed: Read Back After Write Failed mj



    Hi,

    I have 2900 router, when I type wr, it gives the below error

    %NVRAM-3-EEPROM_WRITE_FAILED: Read back after write failed

    DB:2.43:%Nvram-3-Eeprom_Write_Failed: Read Back After Write Failed mj


    Its a definative Hardware issue ..you need to contact TAC and replace the router

  • RELEVANCY SCORE 2.41

    DB:2.41:Windows - Delayed Write Failed 1j



    Hi,

    I keep getting these errors when I try to back up using my WD passport.

    Can anyone help. Its not saving to cache and I have tried both my USB ports.

    Thanks

    Louisa

    DB:2.41:Windows - Delayed Write Failed 1j


    Hi,

    I keep getting these errors when I try to back up using my WD passport.

    Can anyone help. Its not saving to cache and I have tried both my USB ports.

    Thanks

    Louisa

  • RELEVANCY SCORE 2.40

    DB:2.40:Multiple Vmnet-Natd Processes xp



    Is it normal to have this many vmnet-natd processes running? I am running 64-bit Windows 7 on VMware Fusion 3.1.


    DB:2.40:Multiple Vmnet-Natd Processes xp


    The netmast (subnet) for vmnet1 and vmnet8 is the same on the work network as it is on the home network (0xffffff00, which is 255.255.255.0).

  • RELEVANCY SCORE 2.40

    DB:2.40:How To Reinject Packet Into Loopback Address At Transport Layer ? mk


    Hi,

    I am trying to write a Local TCP Packet Proxy Driver, Which Redirect Common Packets to Loopback address and new port
    (eg. 192.168.1.30:80 -- 127.0.0.1:200).
    I am doing this on the Machine Which runs a user mode Server Program, and that Program listens on port 200.
    Following is What I do:

    1. [SYN]
    Layer: FWPM_LAYER_INBOUND_TRANSPORT_V4
    Original Packet:
    [192.168.1.24:4875] -- [192.168.1.30:80]
    Change source/destination IP and destination port, Reinject to loopback,
    New Packet:
    [127.0.0.1:4875] -- [127.0.0.1:200]

    2. [SYN-ACK]
    Layer: FWPM_LAYER_OUTBOUND_TRANSPORT_V4
    Original Packet:
    [127.0.0.1:200] --- [127.0.0.1:4875]
    Change source/destination IP and destination port, Reinject,
    New Packet:
    [192.168.1.30:80] --- [192.168.1.24:4875]

    Unfortunately, I Failed in Step 1. Here is the Code Snippet:

    static const UINT8 IPV4_LOOPBACK_ADDRESS[] = {0x01, 0x00, 0x00, 0x7F};

    netBuffer = NET_BUFFER_LIST_FIRST_NB(clonedNetBufferList);

    // Advance to the beginning of the transport header (i.e. TCP header).
    NdisAdvanceNetBufferDataStart(
    netBuffer,
    packet-ipHeaderSize,
    FALSE,
    NULL
    );

    tcpHeader = (TCP_HEADER*)NdisGetDataBuffer(
    netBuffer,
    sizeof(TCP_HEADER),
    NULL,
    sizeof(UINT16),
    0
    );
    if (NULL == tcpHeader)
    {
    goto Exit;
    }
    tcpHeader-destPort = packet-newPort; // Change the dst port

    NdisRetreatNetBufferDataStart(
    netBuffer,
    packet-ipHeaderSize,
    0,
    NULL
    );

    status = FwpsConstructIpHeaderForTransportPacket(clonedNetBufferList,
    packet-headerIncludeSize,
    AF_INET,
    (UCHAR*)IPV4_LOOPBACK_ADDRESS, // when I use Local address as src addr dst addr,
    (UCHAR*)IPV4_LOOPBACK_ADDRESS, // the driver works fine (192.168.1.30)
    IPPROTO_TCP,
    packet-endpointHandle,
    0,
    0,
    0,
    0,
    packet-interfaceIndex, // try set to 1, NOT working
    packet-subInterfaceIndex // try set to -1, NOT working
    );

    // the return value is OK, NOT A ERROR.
    if (!NT_SUCCESS(status))
    {
    goto Exit;
    }

    status = FwpsInjectTransportReceiveAsync0(
    gInjectionHandle,
    NULL,
    NULL,
    0,
    AF_INET,
    packet-compartmentId,
    packet-interfaceIndex, // try set to 1, NOT working
    packet-subInterfaceIndex, // try set to -1, NOT working
    clonedNetBufferList,
    DDProxyInjectComplete,
    (HANDLE)packet
    );

    // Again, the return value is OK.
    if (!NT_SUCCESS(status))
    {
    goto Exit;
    }

    Those two Function return OK, but I Can't Get any thing in the FWPM_LAYER_OUTBOUND_TRANSPORT_V4 Layer, No SYN-ACK Packet.
    And in the DDProxyInjectComplete Function, netBufferList-Status is OK too.

    To Find out What is going on, I Add several Filter to the Following Layer:

    FWPM_LAYER_INBOUND_TRANSPORT_V4_DISCARD
    FWPM_LAYER_INBOUND_IPPACKET_V4
    FWPM_LAYER_INBOUND_IPPACKET_V4_DISCARD

    But I can't get any thing about That [SYN] packet. I can capture other Loopback Packets, so I thought the code works.

    In the SYN Reinjection, I try to Change Packet interfaceIndex subInterfaceIndex to Loopback value(1 -1), but I Get the
    same result.

    I am aware that someone encounters the similar problem (http://social.msdn.microsoft.com/Forums/en-US/wfp/thread/cc8ef307-9e1c-4c26-b46a-d31cdaaff8c5),
    But the solution is unclear and it doesn't work here.
    TIA.

    Best regards,
    Jake

    DB:2.40:How To Reinject Packet Into Loopback Address At Transport Layer ? mk

    Recv: inject from/to a loopback address will not be accepted by the tcpip stack as if such an packet arrives from the wire.
    Is that true ?

  • RELEVANCY SCORE 2.40

    DB:2.40:Creating Client / Server p7


    Hello, I am trying to write a small engine that I can base my game off of.

    I have been looking over the use of Datagram, and I've done the examples / modified them. Now what I am trying to do is have the client send packets, lets say packet 15, then have the server recieve '15' and send the client back information on what to do, such as allow a player to log-in ect.

    So, I believe what I have is backwords, and it is having the server send information not recieve it, and the client recieving information and not sending it. Without further rambling I will post the code that I have, please let me know what / how I can modify it so that the client sends / recieves information, and the server interprets the packet and sends information back based on the packet Id.

    Thank you; code below.

    /**
    *@Author Mark LeBlanc
    *@Date March 07, 08
    */

    public class Server {

    public static void main(String[] args) throws java.io.IOException {
    new GameEngineThread().start();
    }
    }/**
    *@Author Mark LeBlanc
    *@Date March 07, 08
    */

    import java.io.*;

    import java.net.*;

    import java.util.*;

    public class GameEngineThread extends Thread {
    protected DatagramSocket socket = null;
    protected BufferedReader in = null;
    private long HALF_SECOND = 500;

    public GameEngineThread() throws IOException {
    this("GameEngineThread");
    }

    public GameEngineThread(String name) throws IOException {
    super(name);
    socket = new DatagramSocket(5555);
    }

    public void run() {
    try {
    byte[] buf = new byte[256];
    DatagramPacket packet = new DatagramPacket(buf, buf.length);
    socket.receive(packet);
    String dString = null;
    if (in == null)
    dString = "Welcome back mark";
    else
    dString = "Invalid packet";
    buf = dString.getBytes();
    InetAddress address = packet.getAddress();
    int port = packet.getPort();
    packet = new DatagramPacket(buf, buf.length, address, port);
    socket.send(packet);

    try {
    sleep((long)(Math.random() * HALF_SECOND));
    } catch (InterruptedException e) {}
    } catch (IOException e) {
    e.printStackTrace();
    }
    socket.close();
    }
    }CLIENT:

    /**
    *@Author Mark LeBlanc
    *@Date March 07, 08
    */

    import java.io.*;
    import java.net.*;
    import java.util.*;

    public class ChaosIsles {

    public static void main(String[] args) throws IOException {
    try {
    DatagramSocket socket = new DatagramSocket();
    byte[] buf = new byte[256];
    InetAddress address = InetAddress.getByName("localhost");
    DatagramPacket packet = new DatagramPacket(buf, buf.length, address, 5555);
    socket.send(packet);

    packet = new DatagramPacket(buf, buf.length);
    socket.receive(packet);

    String received = new String(packet.getData(), 0, packet.getLength());
    System.out.println(received);
    if (received == "Logout") {
    socket.close();
    }
    } catch (IOException e) {}
    }
    }

    DB:2.40:Creating Client / Server p7

    Hello, I am trying to write a small engine that I can base my game off of.

    I have been looking over the use of Datagram, and I've done the examples / modified them. Now what I am trying to do is have the client send packets, lets say packet 15, then have the server recieve '15' and send the client back information on what to do, such as allow a player to log-in ect.

    So, I believe what I have is backwords, and it is having the server send information not recieve it, and the client recieving information and not sending it. Without further rambling I will post the code that I have, please let me know what / how I can modify it so that the client sends / recieves information, and the server interprets the packet and sends information back based on the packet Id.

    Thank you; code below.

    /**
    *@Author Mark LeBlanc
    *@Date March 07, 08
    */

    public class Server {

    public static void main(String[] args) throws java.io.IOException {
    new GameEngineThread().start();
    }
    }/**
    *@Author Mark LeBlanc
    *@Date March 07, 08
    */

    import java.io.*;

    import java.net.*;

    import java.util.*;

    public class GameEngineThread extends Thread {
    protected DatagramSocket socket = null;
    protected BufferedReader in = null;
    private long HALF_SECOND = 500;

    public GameEngineThread() throws IOException {
    this("GameEngineThread");
    }

    public GameEngineThread(String name) throws IOException {
    super(name);
    socket = new DatagramSocket(5555);
    }

    public void run() {
    try {
    byte[] buf = new byte[256];
    DatagramPacket packet = new DatagramPacket(buf, buf.length);
    socket.receive(packet);
    String dString = null;
    if (in == null)
    dString = "Welcome back mark";
    else
    dString = "Invalid packet";
    buf = dString.getBytes();
    InetAddress address = packet.getAddress();
    int port = packet.getPort();
    packet = new DatagramPacket(buf, buf.length, address, port);
    socket.send(packet);

    try {
    sleep((long)(Math.random() * HALF_SECOND));
    } catch (InterruptedException e) {}
    } catch (IOException e) {
    e.printStackTrace();
    }
    socket.close();
    }
    }CLIENT:

    /**
    *@Author Mark LeBlanc
    *@Date March 07, 08
    */

    import java.io.*;
    import java.net.*;
    import java.util.*;

    public class ChaosIsles {

    public static void main(String[] args) throws IOException {
    try {
    DatagramSocket socket = new DatagramSocket();
    byte[] buf = new byte[256];
    InetAddress address = InetAddress.getByName("localhost");
    DatagramPacket packet = new DatagramPacket(buf, buf.length, address, 5555);
    socket.send(packet);

    packet = new DatagramPacket(buf, buf.length);
    socket.receive(packet);

    String received = new String(packet.getData(), 0, packet.getLength());
    System.out.println(received);
    if (received == "Logout") {
    socket.close();
    }
    } catch (IOException e) {}
    }
    }

  • RELEVANCY SCORE 2.39

    DB:2.39:Named Running Out Of Memory During Internet Sharing sf


    From the logs on the system providing the connection;

    Nov 5 12:03:03 Macintosh named[59]: internal_send: 192.168.2.6#49197: Cannot allocate memory
    Nov 5 12:03:03 Macintosh named[59]: client 192.168.2.6#49197: error sending response: out of memory
    Nov 5 12:03:08 Macintosh natd[76]: failed to write packet back (Network is unreachable)
    Nov 5 12:03:18: --- last message repeated 1 time ---
    Nov 5 12:03:18 Macintosh named[59]: /SourceCache/bind9/bind9-24/bind9/lib/isc/unix/socket.c:1173: unexpected error:
    Nov 5 12:03:18 Macintosh named[59]: internal_send: 192.168.2.6#49197: Cannot allocate memory
    Nov 5 12:03:18 Macintosh named[59]: client 192.168.2.6#49197: error sending response: out of memory
    Nov 5 12:03:23 Macintosh natd[76]: failed to write packet back (Network is unreachable)

    This is a Leopard Macbook sharing it's Airport connection to a G5 desktop plugged in via ethernet running 10.4.10. This arrangement worked just fine before upgrading the laptop to Leopard. All updates have been run on both systems. Needless to say, the desktop is unable to connect. No errors on the 10.4.10 side.

    DB:2.39:Named Running Out Of Memory During Internet Sharing sf

    Still happens after upgrading the desktop to Leopard.

  • RELEVANCY SCORE 2.39

    DB:2.39:Mig User Interface Back-To-Back Write Timing af



    I have been working on a user design for writing to ddr3 memory using the MIG. One of the timing diagrams provided is a back-to-back write timing. It sends the commands and addresses at a different speed than the data. I would think to provide more control, but be just as efficient, the command and address could be sent at the same time as one of the 256 bit data packets and app_en would be set low on the other packet. Is this approach just as valid as sending the commands back-to-back?

    DB:2.39:Mig User Interface Back-To-Back Write Timing af


    You can refer to back-to-back write timing and monitor the full flag of address/data FIFO.

  • RELEVANCY SCORE 2.37

    DB:2.37:Asa5505 Unable To Vpn Over A Natd Address d9



    Hi

    I am trying to migrate to a ASA5505 from our pix.

    Most of our network uses PAT on our outside interface but I have a small pool of address which I NAT to on the inside, but when I do this they are unable to VPN out to remote sites.

    This worked great on the Pix but not on the ASA. I can see port udp 500 coming back to the client but port udp 4500 disappears on its return journey between the two ASA interfaces.

    Regards

    Chris

    DB:2.37:Asa5505 Unable To Vpn Over A Natd Address d9


    Hi

    It did work. I checked whatsmyip to confirm it was translating ok.

    I can see udp 500 coming back to the client but udp 4500 only gets back as far as the outside interface but never exits the internal interface to reach the client.

    So the NAT is definately working but it just does not pass back the udp 4500.

  • RELEVANCY SCORE 2.36

    DB:2.36:Inbound Packet Failed Validation zx


    OK, I am connecting to my FVS336G and I keep getting this message every few minutes in my log and would like to know what it means.

    12-13: 22:31:31.992 Inbound packet failed validation: 10.10.1.5 - 10.10.2.255

    12-13: 22:31:32.635 Inbound packet failed validation: 10.10.1.10 - 10.10.2.255

    12-13: 22:42:20.260 Inbound packet failed validation: 10.10.1.2 - 10.10.2.255

    12-13: 22:42:22.211 Inbound packet failed validation: 10.10.1.2 - 10.10.2.255

    12-13: 22:43:56.438 Inbound packet failed validation: 10.10.1.10 - 10.10.2.255

    12-13: 22:54:20.228 Inbound packet failed validation: 10.10.1.2 - 10.10.2.255

    12-13: 22:54:53.889 Inbound packet failed validation: 10.10.1.2 - 10.10.2.255

    12-13: 22:54:54.839 Inbound packet failed validation: 10.10.1.2 - 10.10.2.255

    12-13: 22:54:55.499 Inbound packet failed validation: 10.10.1.2 - 10.10.2.255

    12-13: 22:57:22.154 Inbound packet failed validation: 10.10.1.2 - 10.10.2.255

    10.10.1.0 is my network that Is at my home site. 10.10.2.0 is my latops network when it is connected VPN to home.

  • RELEVANCY SCORE 2.36

    DB:2.36:Airport Connection Problems Between Leopard And Tiger pk


    Hi all,

    I have the following problem with Airport Internet Sharing:

    When I enable Airport Internet Sharing on my iMac with Leopard (10.5.3) and want to use it with a Macbook running Tiger, one of the following things will happen:

    1. A connection is made, but no IP address is received by my MacBook, so the Macbook is left with a self assigned IP address with no internet connection (of course). This was the case before the latest update of Leopard. Sometimes, it worked without a problem, but after a while the DHCP refreshed and left the MacBook without an IP address, and using the renew button in the Network Preferences did not seem to accomplish anything.

    2. A connection is made, an IP address is received but traffic is extremely slow. This behaviour seems to be new since the latest Leopard update.
    In the log files of the iMac the following messages appeared:

    natd\[2454\]: failed to write packet back (No route to host)
    natd\[2454\]: failed to write packet back (Host is down)

    Firewall is turned off on the macbook and set to "allow all incoming connections" on the iMac.

    Anyone an idea how to solve this? I also tried using a different Macbook with Tiger and got the same results.
    Moreover, when I use an old G4 AGP Graphics machine running Tiger to share the internet connection, it works flawlessly.

    Thanks in advance!

    DB:2.36:Airport Connection Problems Between Leopard And Tiger pk

    Hi all,

    I have the following problem with Airport Internet Sharing:

    When I enable Airport Internet Sharing on my iMac with Leopard (10.5.3) and want to use it with a Macbook running Tiger, one of the following things will happen:

    1. A connection is made, but no IP address is received by my MacBook, so the Macbook is left with a self assigned IP address with no internet connection (of course). This was the case before the latest update of Leopard. Sometimes, it worked without a problem, but after a while the DHCP refreshed and left the MacBook without an IP address, and using the renew button in the Network Preferences did not seem to accomplish anything.

    2. A connection is made, an IP address is received but traffic is extremely slow. This behaviour seems to be new since the latest Leopard update.
    In the log files of the iMac the following messages appeared:

    natd\[2454\]: failed to write packet back (No route to host)
    natd\[2454\]: failed to write packet back (Host is down)

    Firewall is turned off on the macbook and set to "allow all incoming connections" on the iMac.

    Anyone an idea how to solve this? I also tried using a different Macbook with Tiger and got the same results.
    Moreover, when I use an old G4 AGP Graphics machine running Tiger to share the internet connection, it works flawlessly.

    Thanks in advance!

  • RELEVANCY SCORE 2.35

    DB:2.35:Icap Read Stalls And Disconnects Microblaze cs



    Hello,

    I'm trying to read-back the captured state of my Virtex-6 FPGA mounted on the ML-605 board. I'm trying to read this configuration via the ICAP AXI module in combination with the ICAP Linux driver. I've set the ICAP Fifo size to 256 for both the read and write FIFO as stated in the datasheet.

    I've updated the Linux driver for the Virtex-6 by adding the correct configuration register and the assignment of this register.

    static const struct config_registers v6_config_registers = {

    .CRC = 0,

    .FAR = 1,

    .FDRI = 2,

    .FDRO = 3,

    .CMD = 4,

    .CTL = 5,

    .MASK = 6,

    .STAT = 7,

    .LOUT = 8,

    .COR = 9,

    .MFWR = 10,

    .FLR = UNIMPLEMENTED,

    .KEY = UNIMPLEMENTED,

    .CBC = 11,

    .IDCODE = 12,

    .AXSS = 13,

    .C0R_1 = 14,

    .CSOB = 15,

    .WBSTAR = 16,

    .TIMER = 17,

    .BOOTSTS = 22,

    .CTL_1 = 24,

    };

    and

    } else if (!strcmp(family, "virtex6")) {

    regs = v6_config_registers;

    I connect to the board using the Xilinx SDK - XDS console. I program the board with my bit-file and then load Linux using the dow command. Linux boots and all goes well here.

    Using a litte program I've written I've opened the \dev\icap0 device node and start writing commands to this components. I cannot use the ICAP read-back sequence from the datasheet directly since this shuts down the FPGA. This stops the Microblaze and results in a failure.

    The program I've written is able to readback exacly 7055 configuration words and then the program hangs and XDS debugger disconnects.

    - Does anyone have any idea what could be going wrong?

    The command sequence I use to perform the readback is;

    0xffffffff // Packet::Dummy, 0x000000BB, // Bus width sync 0x11220044, // bus width detect 0xffffffff // Packet::Dummy, 0xaa995566 // Packet::Sync, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x30008001 // ( ( 1 29 ) | ( 4 13 ) | ( 2 27 ) | 1 ), 0x00000004 // Packet::Rcfg, 0x20000000 // Packet::Noop, 0x30002001, // Type 2 packet to write FAR in next packet 0x00000000, // FAR = 0 0x28006000, // 001 01 RRRRRRRRRxxxxx RR 0 TYPE 1 0x48000000 + ( 147600 ), // 010 RR 147600 TYPE 2 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop, 0x20000000 // Packet::Noop,

    After this sequence I start reading 147600 configuration words from the read FIFO. After printing 7055 words the program jumps to undefined memory (I think).

    Thanks,

    Luke

    DB:2.35:Icap Read Stalls And Disconnects Microblaze cs


    Hello Austin,

    Thank you for you quick response.

    There is only one configuration interface, so the JTAG used for the debugger can't be running at the same time you are trying to use ICAP.

    Ok! I already assumed this would be the case. For that reason I disconnected XDS after downloading Linux "disconnect 0". But this generates exactly the same behavior. Is it enough to just simply disconnect the JTAG connection or do I need to close the SDK and disconnect the USB cable?

    To safely capture everything, one needs to stop all clocks…perfectly safe).

    I'm aware of the BRAM limitation, only I thought that the readback would not include BRAM content since I'm not reading BlockType 001 (in the FAR register). The idea was to read-back the entire FPGA logic except BRAM content and then manually read the relevant BRAMs which have their clocks disabled. The CAPTURE_VIRTEX6 can always be enabled right? This has nothing to do with the read-back limitation.

    I'm only interested to capture sub-part of my design. The MicroBlaze is only introduced as a monitoring unit of a stand-alone design.

    Luke

  • RELEVANCY SCORE 2.35

    DB:2.35:Java Packet Filtering kj


    Anybody know how to write source code for packet filtering ?
    starting from scratch?
    if anybody have it plz post it
    thank u

    DB:2.35:Java Packet Filtering kj

    Anybody know how to write source code for packet filtering ?
    starting from scratch?
    if anybody have it plz post it
    thank u

  • RELEVANCY SCORE 2.35

    DB:2.35:Solution For Natd Process 1d


    Hi,

    the NATD process is ruining my system.

    It takes up 100% of cpu.

    How could i solve it....?

    Please help me...

    using Mac OS X (10.6.5).

    DB:2.35:Solution For Natd Process 1d

    Hi

    Perhaps that's where the problem lies? You could try using something else? One that does not consume Resources the way this one does. Alternatively purchase a Wireless Router and use that instead.

    Tony

  • RELEVANCY SCORE 2.34

    DB:2.34:Packet Acknowledge Failed After Failover s1


    Hello,

    We're running MQ 3.5 SP1 EE and we are wondering how to deal with the following problem. We have a client that consists of 2 producers and 1 consumer. There is a single connection for the client. Each producer creates its own session with:createSession(TRANSACTED_SESSION,Session.AUTO_ACKNOWLEDGE) The consumer creates its session with:
    createSession(TRANSACTED_SESSION,Session.DUPS_OK_ACKNOWLEDGE) We have the following reconnect settings:imqReconnectEnabled = true
    imqReconnectAttempts = 1
    imqAddressListIterations = -1
    imqReconnectInterval = 30000
    imqAddressListBehavior = RANDOMSometimes when we kill one of our cluster servers, the client threads begin throwing exceptions as follows. From the send() method from one of the producers:
    com.sun.messaging.jms.JMSException: [C4000]: Packet acknowledge failed.From the send() method of the other producer (a few seconds later):com.sun.messaging.jms.JMSException: [C4001]: Write packet failed. - cause: java.net.SocketException: Socket is closedFinally, an exception is caught by the consumer's exception listener:
    JMSException caught: [C4002]: Read packet failed. - cause: java.net.SocketException: Socket is closedWhat is the best way to recover from this? We were thinking of closing the connection, reopening, and starting all sessions again. Is there anything smarter we can do?

    Kernel: 2.4.21-9.0.3.ELsmp
    Dist: RedHat ES 3.0

    Thanks,
    Aaron

    DB:2.34:Packet Acknowledge Failed After Failover s1

    Hi,

    Yes, to fail over to another broker, it's important to ensure that imqReconnectAttempts != -1 since it'll never move onto the next broker address in the list. We actually use 1 for imqReconnectAttempts:

    imqReconnectEnabled=true
    imqReconnectAttempts=1
    imqAddressListIterations=-1
    imqAddressList=xxx1:1093,yyy1:1093
    imqAddressListBehaviour=PRIORITY

    Looking through the MQ dump that we got when the problem was happening, I see that there were no active consumers and 1 backup consumer on the channel. I think the issue is related to this post here (http://forums.sun.com/thread.jspa?threadID=5053196). My guess would be that there's some kind of race condition that means the old (active) consumer is removed around the same time that the new one is created...making the new one become backup...then for some reason (again, perhaps a race condition?), the new consumer never becomes active.

    We have our maxNumBackupConsumers set to 50, but it's not required so I'm going to set it to 0 and see what happens.

    Cheers.

  • RELEVANCY SCORE 2.34

    DB:2.34:Catalyst 3560 Poe Port Asic Port Loopback Test Issue jm



    Hi,

    We have a switchports issue in this specific switch, wherein some switchports cannot be

    turned on.  Whenever we try to perform a (shut/no shut) on the interface, it shows this

    message:----------------Fa0/1 can't be brought up because it failed POST in loopback test----------------We also tried to 'reload' this switch, but still those switchports remains down. When we

    transfer a device from a defective switchport to a working switchport, the device is working

    fine.  Thus, the phsyical connection or host set-up is OK.

    Here's the output from "sh post" command:

    ----------------Stored system POST messages:

    Switch 1---------

    POST: CPU MIC register Tests : BeginPOST: CPU MIC register Tests : End, Status Passed

    POST: PortASIC Memory Tests : BeginPOST: PortASIC Memory Tests : End, Status Passed

    POST: CPU MIC PortASIC interface Loopback Tests : BeginPOST: CPU MIC PortASIC interface Loopback Tests : End, Status Passed

    POST: PortASIC RingLoopback Tests : BeginPOST: PortASIC RingLoopback Tests : End, Status Passed

    POST: Inline Power Controller Tests : BeginPOST: Inline Power Controller Tests : End, Status Passed

    POST: PortASIC CAM Subsystem Tests : BeginPOST: PortASIC CAM Subsystem Tests : End, Status Passed

    POST: PortASIC Port Loopback Tests : BeginPOST: Failed PortMacLoopback Packet Receive asic_index 1 port_hardware_index 2POST: Failed PortMacLoopback Packet Receive asic_index 1 port_hardware_index 3POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 2POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 3POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 4POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 5POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 10POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 11POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 12POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 13POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 18POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 19POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 20POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 21POST: PortASIC Port Loopback Tests : End, Status Passed----------------

    Thanks in advance for your replies.

    Brgds,

    DB:2.34:Catalyst 3560 Poe Port Asic Port Loopback Test Issue jm


    Looks like a hardware failure and you should open a TAC case for an RMA.

    Hope it helps.

  • RELEVANCY SCORE 2.33

    DB:2.33:Dhcppktsendhook And Memory Management fa


    I'm using callout api to implement a plugin which would append specific option to the end of each packet leaving to clients. I've managed to write a few bits, which suppose to deal with but in my case all works find untill client sends request packet. dhcp server crases when ny callout is loaded, but it works ok for discover-offer pair. I think there is something wrong with memory management, i.e. in allocating/moving/free memory for old and new packets. Anyone knows how to correctly free memory of old packet and place a new one there?DWORD CALLBACK DhcpPktSendHook(LPBYTE * Packet,                               DWORD *PacketSize,                               DWORD ControlCode,                               DWORD IpAddress,                                LPVOID Reserved,                               LPVOID PktContext){    LPBYTE lpPacket = *Packet;    DWORD dwPacketSize = *PacketSize;...    //get ipaddress of client    char clientIpAddr[15];    _snprintf(clientIpAddr, 15, %d.%d.%d.%d, lpPacket[16], lpPacket[17], lpPacket[18], lpPacket[19]);    //addresses in dhcp mgmt api are expected to be in network order (no info in msdn...)    DHCP_IP_ADDRESS clientIp = htonl(inet_addr(clientIpAddr));    //FIXME: do not set netmask as default, instead read client info from dhcp    DHCP_IP_ADDRESS netmask = htonl(inet_addr(255.255.255.0));    DHCP_IP_ADDRESS subnet = clientIp netmask;        //log some info about client    fprintf(g_CalloutFile, Building packet for client %x[%s], netmask %x, subnet %x\n,         clientIp,        clientIpAddr,        netmask,        subnet);    fflush(g_CalloutFile);    //search scope    DHCP_OPTION_SCOPE_INFO scope;    scope.ScopeType = DhcpReservedOptions;    scope.ScopeInfo.ReservedScopeInfo.ReservedIpAddress = clientIp;    scope.ScopeInfo.ReservedScopeInfo.ReservedIpSubnetAddress = subnet;    //make room for returned value    char * rpStr;    LPDHCP_OPTION_VALUE lpValue = (LPDHCP_OPTION_VALUE)HeapAlloc(GetProcessHeap(),         HEAP_ZERO_MEMORY,         sizeof(DHCP_OPTION_VALUE));    //get value of root path option for client    DWORD readRc = DhcpGetOptionValue(L127.0.0.1, ROOT_PATH_OPT_ID, scope, lpValue);    if( readRc != ERROR_SUCCESS)    {        fprintf(g_CalloutFile, Failed to read option for client code %d, ignoring packet\n, readRc);        fflush(g_CalloutFile);                HeapFree(GetProcessHeap(), 0, lpValue);        fprintf(g_CalloutFile, DhcpPktSendHook end\n);        fflush(g_CalloutFile);        return ERROR_SUCCESS;    }    else    {        size_t convertedChars = 0;        rpStr = ConvertWStrToStr(lpValue-Value.Elements[0].Element.StringDataOption, convertedChars);        fprintf(g_CalloutFile, Returned root path: %s [%d]\n, rpStr, convertedChars);        fflush(g_CalloutFile);    }    //free returned value, since we have a copy in rpStr    HeapFree(GetProcessHeap(), 0, lpValue);        //    //build new packet    //    //bytes for option consist of two bytes for id and side plus strlen*sizeof(byte) for value    DWORD totalOptionSize = strlen(rpStr) * sizeof(BYTE) + 2 * sizeof(BYTE);    LPBYTE rpOptBytes = (LPBYTE)malloc( totalOptionSize );    //copy option value to buffer    memcpy(rpOptBytes + 2, rpStr, strlen(rpStr));    //set option id    rpOptBytes[0] = ROOT_PATH_OPT_ID;    //set option value size    rpOptBytes[1] = strlen(rpStr);    fprintf(g_CalloutFile, Built option %d total size %d\n, ROOT_PATH_OPT_ID, totalOptionSize);    fflush(g_CalloutFile);        //reallocate memory for new packet equal to old packet + full size of new option    //according to http://social.technet.microsoft.com/Forums/en-US/winserverNIS/thread/38384c3d-3a05-4ef1-ac72-ddd05c9359fd/    LPBYTE lpNewPacket;    DWORD dwNewPacketSize = dwPacketSize + totalOptionSize;    lpNewPacket = (LPBYTE)HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, dwNewPacketSize);    lpNewPacket= (LPBYTE)HeapReAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, *Packet, dwNewPacketSize);    if( lpNewPacket == NULL )    {        fprintf(g_CalloutFile, Failed to reallocate memory!\n);        fflush(g_CalloutFile);        return -1;    }    fprintf(g_CalloutFile, Allocated new packet total size %d\n, dwNewPacketSize);    fflush(g_CalloutFile);    //now copy rp option to new packet    memmove(lpNewPacket + dwPacketSize - 1, rpOptBytes, totalOptionSize);    free(rpOptBytes);    free(rpStr);    //last octet of packet is 255 - sign of end-option, we need to keep it at the end    //of new packet    lpNewPacket[dwNewPacketSize - 1] = 255;    //set size of packet to new value    *PacketSize = dwNewPacketSize;    //realloc memory back to packet    //HeapFree(GetProcessHeap(), HEAP_ZERO_MEMORY, *Packet);    *Packet = (LPBYTE)HeapReAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, lpNewPacket, dwNewPacketSize);......    return ERROR_SUCCESS;} Quilibet fortunae suae faber

    DB:2.33:Dhcppktsendhook And Memory Management fa

    Hi there,sorry for delayed response,have you enabled debbuger at your setup ?it is time consuming to go through the entire code, but i would recommend the followinga) enabled windbg wth appropriate symbols and pdb files for your codeb) apply break point c) and tell us the exact code point where the memory / heap is having issues.sainath
    Windows Driver Development

  • RELEVANCY SCORE 2.33

    DB:2.33:Vmnet-Natd Hangs During Tcp Port Scan (Fusion 3.1.2) z1



    Background: I'm building Linux-based Virtual Appliance that scans IP networks for vulnerabilities. The scan engine, amongst lots of other things, runs highly parallel TCP/UDP port scanner. The only one virtual network adapter in guest is configured in NAT mode. Scanning just a couple IPs in parallel locks up vmnet-natd completely, all networking functions in guest are dead and the only remedy is to restart all Fusion network services.

    How to reproduce: The problem, as it turned out after much debugging and packet tracing, could be easily reproduced with one simple nmap command:

    nmap -sS -p1-65535 -d -T3 IP

    IP must be a dead (firewalled) host with no TCP/ICMP responces coming back from it. It is definitely possible to hit this error condition with live hosts as well, it just requires a small batch of them (~10) and more aggressive scan timing. Checking xmnet-natd process with:

    sudo lsof -n -c vmnet-natd

    shows ~1000 TCP sockets in SYN_SENT state. Since I had to restart vmnet-natd manually many times and run it in foreground in terminal window, I was able to see this error message that it starts spitting at insane rate once the error condition is triggered:

    DB:2.33:Vmnet-Natd Hangs During Tcp Port Scan (Fusion 3.1.2) z1


    Background: I'm building Linux-based Virtual Appliance that scans IP networks for vulnerabilities. The scan engine, amongst lots of other things, runs highly parallel TCP/UDP port scanner. The only one virtual network adapter in guest is configured in NAT mode. Scanning just a couple IPs in parallel locks up vmnet-natd completely, all networking functions in guest are dead and the only remedy is to restart all Fusion network services.

    How to reproduce: The problem, as it turned out after much debugging and packet tracing, could be easily reproduced with one simple nmap command:

    nmap -sS -p1-65535 -d -T3 IP

    IP must be a dead (firewalled) host with no TCP/ICMP responces coming back from it. It is definitely possible to hit this error condition with live hosts as well, it just requires a small batch of them (~10) and more aggressive scan timing. Checking xmnet-natd process with:

    sudo lsof -n -c vmnet-natd

    shows ~1000 TCP sockets in SYN_SENT state. Since I had to restart vmnet-natd manually many times and run it in foreground in terminal window, I was able to see this error message that it starts spitting at insane rate once the error condition is triggered:

  • RELEVANCY SCORE 2.33

    DB:2.33:Windows Raw Sockets Capturing Packets In Wrong Order 8k


    I am developing a packet sniffer based on windows raw socket on windows 7. The program captures packet from IP layer. The issue
    i am facing here is, Program captures all packets but some of them are captured in wrong order, for eg. for a tcp connection establishment phase, instead of getting packets in SYN , SYN-ACK, ACK order i get it as SYN, ACK, SYN-ACK. Instead of capturing ACK
    after SYN-ACK(from remote), pgm gets ACK before SYN-ACK packet. Same thing is happening some times during data transfer phase also. Program captures the ACK packet of a data packet before the actual data packet. If i run a wireshark in parallel, it displays
    properly. I am using Visual Studio 2005 as the IDE.

    #include stdio.h
    #include winsock2.h
    #include ws2tcpip.h
    #include pcap.h
    #include MSTcpIP.h

    int main(int argc, char **argv)
    {
    struct in_addr addr;
    int in, optval=1;
    struct hostent *local;
    WSADATA wsa;
    char *Buffer;

    //Initialise Winsock
    if (WSAStartup(MAKEWORD(2,2), wsa) != 0)
    {
    printf(WSAStartup() failed.\n);
    return 1;
    }

    //Create a RAW Socket
    sniffer = socket(AF_INET, SOCK_RAW, IPPROTO_IP);
    if (sniffer == INVALID_SOCKET)
    {
    printf(Failed to create raw socket.\n);
    return 1;
    }

    memset(dest, 0, sizeof(dest));
    memcpy(dest.sin_addr.s_addr,argv[1], sizeof(argv[1]));
    dest.sin_family = AF_INET;
    dest.sin_port = 0;

    printf(\nBinding socket to local system and port 0 ...);
    if (bind(sniffer,(struct sockaddr *)dest,sizeof(dest)) == SOCKET_ERROR)
    {
    printf(bind(%s) failed.\n, inet_ntoa(addr));
    return 1;
    }
    printf(Binding successful);

    //Enable this socket with the power to sniff : SIO_RCVALL is the key Receive ALL ;)
    j=1;
    printf(\nSetting socket to sniff...);
    if (WSAIoctl(sniffer, SIO_RCVALL, j, sizeof(j), 0, 0, (LPDWORD) in , 0 , 0) == SOCKET_ERROR)
    {
    printf(WSAIoctl() failed.\n);
    wprintf(LIOCTL failed with error %d\n, WSAGetLastError());
    if (WSAIoctl(sniffer, SIO_RCVALL, j, sizeof(j), 0, 0, (LPDWORD) in , 0 , 0) == SOCKET_ERROR) {
    printf(Failed again\n);
    wprintf(LIOCTL failed again with error %d\n, WSAGetLastError());
    return 1;
    }
    }
    printf(Socket set.);
    if(setsockopt(sniffer, IPPROTO_IP, IP_HDRINCL, (char *)optval, sizeof(optval))==SOCKET_ERROR)
    {
    printf(failed to set socket in raw mode.);
    return 0;
    }
    char *Buffer = (char *)malloc(65536); //Its Big!65536
    do
    {
    mangobyte = recvfrom(sniffer , Buffer , 2000 , 0 , 0 , 0); //Eat as much as u can

    if(mangobyte 0)
    {
    writeCaptofile(Buffer, mangobyte); //write the captured packet to file in pcap format
    }
    else
    {
    printf( recvfrom() failed.\n);
    }
    }
    while ((mangobyte 0) (!StopSniffing));
    free(Buffer);

    closesocket(sniffer);
    WSACleanup();
    return 0;
    }

    DB:2.33:Windows Raw Sockets Capturing Packets In Wrong Order 8k

    Hi,

    I do not know if you found it by yourself, but just a comment from my part, based on similar behavoirs I observed.
    You are using a raw protocol, that means, you do not have any protocol filtering in the socket. And exactly that is what you get from the socket: arriving packages without any filtering or order, and in this case, the socket let you get first the most
    recent message. Remember, using the socket in that way means, it is not garanteed that the order is the right one, it is not garanteed that the IP Layer answered in that way, it is not garanteed anything at all.
    Why do they appear right in Wireshark? Well, the order on the wire is the right one, but then, as you read the information from the socket, the IP layer gives you the most recent information. And in that layer, nothing is garanteed...

  • RELEVANCY SCORE 2.33

    DB:2.33:Unable To Access Web Ui (Vmware-Authd To Blame?) 18



    Hello everyone,

    I'm in the process of attempting to get vmware 2.0.1 functional on a CentOS 5 box.

    I've installed from the tarball, all the normal installation defaults, but I changed where it stores the VM's themselves.

    I had to make 1 small adjustment to the vmware-config.pl file so it would stop trying to launch its perl script from /tmp as exec is not allow from /tmp, with this adjustment everything installed just fine.

    On loading up a browser and going to http://localhost:8222/ or https://localhost:8333/ I'm presented with

    503 Service Unavailable

    I've tried the following:

    edit /etc/systems and added vmware-authd 902/tcp, removed the existing 902 entry

    In /var/log/vmware/hostd.log I see the following:

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    SSL Handshake on client connection failed: SSL Exception: error:140D9115:SSL routines:SSL_GET_PREV_SESSION:session id context uninitialized

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Exception while processing request: Connection refused

    PendingRequest: HTTP Transaction failed, closing connection. Reason: Broken pipe, class type is: N7Vmacore15SystemExceptionE

    On further review of ps -auxw | grep vmware

    ps auxw | grep vmware

    root 14749 0.0 0.0 5400 400 ? Ss 17:29 0:00 /usr/bin/vmnet-dhcpd -cf /etc/vmware/vmnet1/dhcpd/dhcpd.conf -lf /etc/vmware/vmnet1/dhcpd/dhcpd.leases -pf /var/run/vmnet-dhcpd-vmnet1.pid vmnet1

    root 14766 0.0 0.0 5404 400 ? Ss 17:29 0:00 /usr/bin/vmnet-dhcpd -cf /etc/vmware/vmnet8/dhcpd/dhcpd.conf -lf /etc/vmware/vmnet8/dhcpd/dhcpd.leases -pf /var/run/vmnet-dhcpd-vmnet8.pid vmnet8

    root 14771 0.0 0.0 5352 600 ? Ss 17:29 0:00 /usr/bin/vmnet-natd -d /var/run/vmnet-natd-8.pid -m /var/run/vmnet-natd-8.mac -c /etc/vmware/vmnet8/nat/nat.conf

    root 15032 0.0 0.0 5392 652 ? Ss 17:29 0:00 /usr/sbin/vmware-authdlauncher

    root 15165 0.1 1.5 82440 31220 ? Ssl 17:29 0:02 /usr/lib/vmware/bin/vmware-hostd -a -d -u /etc/vmware/hostd/config.xml

    I see that /usr/sbin/vmware-authd is not running

    #/usr/sbin/vmware-authd

    gives me

    599 vmware-authd PANIC: getpeername failed: Socket operation on non-socket

    I'm assuming this is where my problem sits, and I've tried everything I can think of to attempt tp repair this. Any ideas?

    DB:2.33:Unable To Access Web Ui (Vmware-Authd To Blame?) 18


    Hello everyone,

    I'm in the process of attempting to get vmware 2.0.1 functional on a CentOS 5 box.

    I've installed from the tarball, all the normal installation defaults, but I changed where it stores the VM's themselves.

    I had to make 1 small adjustment to the vmware-config.pl file so it would stop trying to launch its perl script from /tmp as exec is not allow from /tmp, with this adjustment everything installed just fine.

    On loading up a browser and going to http://localhost:8222/ or https://localhost:8333/ I'm presented with

    503 Service Unavailable

    I've tried the following:

    edit /etc/systems and added vmware-authd 902/tcp, removed the existing 902 entry

    In /var/log/vmware/hostd.log I see the following:

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    SSL Handshake on client connection failed: SSL Exception: error:140D9115:SSL routines:SSL_GET_PREV_SESSION:session id context uninitialized

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Connection to server localhost:8308 failed with error Connection refused. Retrying...

    Exception while processing request: Connection refused

    PendingRequest: HTTP Transaction failed, closing connection. Reason: Broken pipe, class type is: N7Vmacore15SystemExceptionE

    On further review of ps -auxw | grep vmware

    ps auxw | grep vmware

    root 14749 0.0 0.0 5400 400 ? Ss 17:29 0:00 /usr/bin/vmnet-dhcpd -cf /etc/vmware/vmnet1/dhcpd/dhcpd.conf -lf /etc/vmware/vmnet1/dhcpd/dhcpd.leases -pf /var/run/vmnet-dhcpd-vmnet1.pid vmnet1

    root 14766 0.0 0.0 5404 400 ? Ss 17:29 0:00 /usr/bin/vmnet-dhcpd -cf /etc/vmware/vmnet8/dhcpd/dhcpd.conf -lf /etc/vmware/vmnet8/dhcpd/dhcpd.leases -pf /var/run/vmnet-dhcpd-vmnet8.pid vmnet8

    root 14771 0.0 0.0 5352 600 ? Ss 17:29 0:00 /usr/bin/vmnet-natd -d /var/run/vmnet-natd-8.pid -m /var/run/vmnet-natd-8.mac -c /etc/vmware/vmnet8/nat/nat.conf

    root 15032 0.0 0.0 5392 652 ? Ss 17:29 0:00 /usr/sbin/vmware-authdlauncher

    root 15165 0.1 1.5 82440 31220 ? Ssl 17:29 0:02 /usr/lib/vmware/bin/vmware-hostd -a -d -u /etc/vmware/hostd/config.xml

    I see that /usr/sbin/vmware-authd is not running

    #/usr/sbin/vmware-authd

    gives me

    599 vmware-authd PANIC: getpeername failed: Socket operation on non-socket

    I'm assuming this is where my problem sits, and I've tried everything I can think of to attempt tp repair this. Any ideas?

  • RELEVANCY SCORE 2.33

    DB:2.33:What Am I Doing Wrong With Iocp? 1x


    Not sure if this is the right forum, but I'm trying to write an IOCP based server w/ VC.
    EDIT: My problem wasn't quite what I thought it was. In my sample program, after I AcceptEx a new socket, dequeue
    my first packet, and post the first WSARecv, I start getting a rather strange response from GetQueuedCompletionStatus. Here's an example. Say the client sends me two packets at once, a string teststring, followed by a cr/lf pair. I
    get the following responses from GQCS:

    Packet 1: buffer: teststring, numbytes=10, OVERLAPPED.InternalHigh=10.
    Packet 2: buffer: (cr)(lf), numbytes = 2, OVERLAPPED.InternalHigh=2.
    Packet 3: buffer: (all nulls), numbytes =2, OVERLAPPED.InternalHigh=0, OVERLAPPED.Internal = 259.
    The first two are what I would expect. The third is the strange one. An empty buffer, InternalHigh (which I thought was supposed to match the # of bytes transferred) is zero, and the Internal member = 259, which is apparently the code
    STATUS_PENDING.
    If I ignore this packet entirely, everything seems to work OK, but I'm confused why the port is even sending it to me? I've already gotten a WSA_IO_PENDING result back from the initial WSARecv, so why does the port need to do a kernel transition
    just to tell me nothing is ready for me yet?

    DB:2.33:What Am I Doing Wrong With Iocp? 1x

    I'd guess this is a race condition in your code, and you're overwriting the Internal member before you're finished with it. The easiest way to check is to initialize it to something different, like 260 when setting up the overlapped IO request.

  • RELEVANCY SCORE 2.32

    DB:2.32:Natd[Pid]: Failed To Write Packet Back (No Route To Host) 7s


    Hello,

    I have a client version of 10.6.4, acting as a gateway server with IPFW2, NATD, DHCP3, DNS services running. I've had this setup working reliably for many years now (with all different versions of Mac OS X Client). My server has two ethernet interfaces:

    en3: for the LAN (192.168.0.x)
    en4: for the WAN (static IP from ISP)

    [for the record en0 is the ethernet jack - which is fried, en1 is the airport which I don't use, en2 is lost in the ether somewhere (pun intended) from when I had a different USB-Ethernet adapter]

    It seems that I have a natd problem. I constantly get this error in the /var/log/system.log:

    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)

    And neither the gateway, nor the clients that it serve can connect to the internet.

    When I run the Network Utility.app and view the en4 interface, I can see that there are many more (magnitudes more) received packets than sent packets. Traffic on the LAN (and on the en3 interface) is fine (as long as the traffic is LAN only).

    I have solved the problem with the following script:

    #!/bin/sh
    killall natd
    sleep 15
    /usr/sbin/natd -f /etc/natd.conf
    exit 0

    But I have to manually run this script after every restart. I've tried to load it at startup automatically, but that doesn't work (maybe because services load in parallel, and natd is starting too soon).

    Anyone know how I can fix this so that it doesn't happen anymore? This situation makes off-site restarting of the server impossible (as infrequent as that may be).

    Thank you in advance.

    DB:2.32:Natd[Pid]: Failed To Write Packet Back (No Route To Host) 7s

    Hello,

    I have a client version of 10.6.4, acting as a gateway server with IPFW2, NATD, DHCP3, DNS services running. I've had this setup working reliably for many years now (with all different versions of Mac OS X Client). My server has two ethernet interfaces:

    en3: for the LAN (192.168.0.x)
    en4: for the WAN (static IP from ISP)

    [for the record en0 is the ethernet jack - which is fried, en1 is the airport which I don't use, en2 is lost in the ether somewhere (pun intended) from when I had a different USB-Ethernet adapter]

    It seems that I have a natd problem. I constantly get this error in the /var/log/system.log:

    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)
    natd[PID]: failed to write packet back (No route to host)

    And neither the gateway, nor the clients that it serve can connect to the internet.

    When I run the Network Utility.app and view the en4 interface, I can see that there are many more (magnitudes more) received packets than sent packets. Traffic on the LAN (and on the en3 interface) is fine (as long as the traffic is LAN only).

    I have solved the problem with the following script:

    #!/bin/sh
    killall natd
    sleep 15
    /usr/sbin/natd -f /etc/natd.conf
    exit 0

    But I have to manually run this script after every restart. I've tried to load it at startup automatically, but that doesn't work (maybe because services load in parallel, and natd is starting too soon).

    Anyone know how I can fix this so that it doesn't happen anymore? This situation makes off-site restarting of the server impossible (as infrequent as that may be).

    Thank you in advance.

  • RELEVANCY SCORE 2.32

    DB:2.32:Pptp Failure Following Firmware Upgrade a8



    Dear all i have a PPTP VPN runing after upgrading the firmware i start the following error my PPTP is not working anymore...

    5:35:06 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.158 DST=121.54.64.27 LEN=48 TOS=0x00 PREC=0x00 TTL=126 ID=4117 DF PROTO=TCP SPT=49706 DPT=25100 WINDOW=8192 SYN URGP=0 Jun 19 15:35:06 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.123 DST=172.16.13.140 LEN=78 TOS=0x00 PREC=0x00 TTL=126 ID=9006 DF PROTO=UDP SPT=137 DPT=137 LEN=58 Jun 19 15:35:07 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.158 DST=77.223.192.30 LEN=48 TOS=0x00 PREC=0x00 TTL=126 ID=4214 DF PROTO=TCP SPT=49704 DPT=12336 WINDOW=8192 SYN URGP=0 Jun 19 15:35:07 pppd[1207]: LCP: timeout sending Config-Requests Jun 19 15:35:07 pppd[1207]: Connection terminated. Jun 19 15:35:07 pppd[1207]: Modem hangup Jun 19 15:35:07 pppd[1207]: Exit.

    Jun 19 15:35:07 pptpd[1206]: GRE: read(fd=7,buffer=1fb10,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs Jun 19 15:35:07 pptpd[1206]: CTRL: PTY read or GRE write failed (pty,gre)=(7,8) Jun 19 15:35:07 pptpd[1206]: CTRL: Reaping child PPP[1207]

    Jun 19 15:35:07 pptpd[1206]: CTRL: Client 41.93.128.193 control connection finished

    Jun 19 15:35:07 pptpd[1206]: CTRL: Couldn't write packet to client. Jun 19 15:35:07 last message repeated 1 time(s) Jun 19 15:35:07 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.158 DST=87.56.237.131 LEN=58 TOS=0x00 PREC=0x00 TTL=126 ID=4277 PROTO=UDP SPT=20165 DPT=6881 LEN=38 Jun 19 15:35:07 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.158 DST=80.59.97.234 LEN=48 TOS=0x00 PREC=0x00 TTL=126 ID=4279 DF PROTO=TCP SPT=49707 DPT=26085 WINDOW=8192 SYN URGP=0 Jun 19 15:35:07 packet[255]: PF A

    Message was edited by: tonyb99
    Gave meaningfull title on 20/06/11 09:57:21 IST

    DB:2.32:Pptp Failure Following Firmware Upgrade a8


    Dear all i have a PPTP VPN runing after upgrading the firmware i start the following error my PPTP is not working anymore...

    5:35:06 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.158 DST=121.54.64.27 LEN=48 TOS=0x00 PREC=0x00 TTL=126 ID=4117 DF PROTO=TCP SPT=49706 DPT=25100 WINDOW=8192 SYN URGP=0 Jun 19 15:35:06 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.123 DST=172.16.13.140 LEN=78 TOS=0x00 PREC=0x00 TTL=126 ID=9006 DF PROTO=UDP SPT=137 DPT=137 LEN=58 Jun 19 15:35:07 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.158 DST=77.223.192.30 LEN=48 TOS=0x00 PREC=0x00 TTL=126 ID=4214 DF PROTO=TCP SPT=49704 DPT=12336 WINDOW=8192 SYN URGP=0 Jun 19 15:35:07 pppd[1207]: LCP: timeout sending Config-Requests Jun 19 15:35:07 pppd[1207]: Connection terminated. Jun 19 15:35:07 pppd[1207]: Modem hangup Jun 19 15:35:07 pppd[1207]: Exit.

    Jun 19 15:35:07 pptpd[1206]: GRE: read(fd=7,buffer=1fb10,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs Jun 19 15:35:07 pptpd[1206]: CTRL: PTY read or GRE write failed (pty,gre)=(7,8) Jun 19 15:35:07 pptpd[1206]: CTRL: Reaping child PPP[1207]

    Jun 19 15:35:07 pptpd[1206]: CTRL: Client 41.93.128.193 control connection finished

    Jun 19 15:35:07 pptpd[1206]: CTRL: Couldn't write packet to client. Jun 19 15:35:07 last message repeated 1 time(s) Jun 19 15:35:07 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.158 DST=87.56.237.131 LEN=58 TOS=0x00 PREC=0x00 TTL=126 ID=4277 PROTO=UDP SPT=20165 DPT=6881 LEN=38 Jun 19 15:35:07 packet[255]: PF Accept any-any: IN=eth0 OUT=eth1 MAC=10:8c:cf:4a:12:81 SRC=10.10.0.158 DST=80.59.97.234 LEN=48 TOS=0x00 PREC=0x00 TTL=126 ID=4279 DF PROTO=TCP SPT=49707 DPT=26085 WINDOW=8192 SYN URGP=0 Jun 19 15:35:07 packet[255]: PF A

    Message was edited by: tonyb99
    Gave meaningfull title on 20/06/11 09:57:21 IST

  • RELEVANCY SCORE 2.32

    DB:2.32:Java Packet Capturing Libraries ... ? d9


    HI All,

    actually i need to write some packet capturing code on solaris i have tried Jpcap library but there are some compilation issues on solaris .

    is there any other library which i can use for packet capturing except Jpcap ?

    thanks

  • RELEVANCY SCORE 2.32

    DB:2.32:Mig 3.7 - Modelsim Simulation 1z



    Hi,

    I'm having a strange behavior while simulating my Design including a DDR3 Memory interface (MIG 3.7).

    I'm using the follofwing confiduration of the ddr3_model:

    vlog +incdir+. +define+x2Gb +define+sg15E +define+x8 "../../vlog/tb/ddr3_model.v"

    My design has a 32 bit communication bus from where I can talk to the design. So I'm able to write 32 Bit parallel.

    I have some internal Logic which allows me to initiate a 32 bit wide ddr3 read or write access.

    What I try to do:

    I have to write 2 data packets (each 320 bytes wide) to the DDR3 memory.

    I'm writing the entire 2 frames (together 640 bytes) one by one into the DDR3 Memory.

    The first data packet reaches from Address 0 to 316 and the second data packet from 320 to 636.

    After writing the data into the DDR3 memory i want to read it back. If I read the data one by one without pause I get back all data correctly. But if I insert a pause of 1us between the read of the last 32 bit from packet one (ddr address 316) and the begining of the read of packet two (ddr address 320) all data from packet two are invalid.

    To Make this more clear:

    The working algorithm:

    1: DDR3-Write all 640 byte (packet one and two) from address 0 to address 636 (4 byte per transfer)

    2: DDR3-Read all 640 byte (packet one and two)from address 0 to address 636 (4 byte per transfer) -- data is valid

    The NOT-Working algorithm:

    1: DDR3-Write all 640 byte from address 0 to address 636 (4 byte per transfer)

    2: DDR3-Read all 320 byte from address 0 to address 316 (4 byte per transfer) (first packet) -- Data is valid

    3: Wait 1 us - do nothing

    4: DDR3-Read all 320 byte from address 320 to address 636 (4 byte per transfer) (second packet) -- Data is invalid

    I know this hard to describe but I hope someone can understand the problem.

    What I already tried:

    1: Increase the MEM_BITS value in the ddr3_model_parameters.vh -- no change

    2: set the MAX_MEM define in the ddr3_model.v -- Simulator exits with an error that "argument 1 of $fseek is invalid". In the log I can see that there are "X" during the DDR3 initialisation

    3: Set the read start address from the second data packet to 0: -- following algorithm:

    1: DDR3-Write all 640 byte from address 0 to address 636 (4 byte per transfer)

    2: DDR3-Read all 320 byte from address 0 to address 316 (4 byte per transfer) (first packet) -- Data is valid

    3: Wait 1 us - do nothing

    4: DDR3-Read all 320 byte from address 0 to address 316 (4 byte per transfer) again

    -- Now I'm getting the data from packet twoeven though the start address is the same as the one of data packet one

    Is there any known bug in the Micron Simulation Model which is causing this behavior?

    Could this be a limitation of the simulation model?

    Iamgratefulforanysuggestions.

    Best regards,

    Volker

    DB:2.32:Mig 3.7 - Modelsim Simulation 1z


    I doubt there is a problem with the memory model but I could be wrong. Can you provide a waveform or screen shot illustrating how you are driving the User Interface for the invalid case?

  • RELEVANCY SCORE 2.31

    DB:2.31:Fresh Leopard Install Grinds To A Halt - Please Help! kd


    Hi all,

    I'm having some serious problems with Leopard server on a new Xserve and this latest issue I can't figure out. Fresh install of Leopard, connected to Active Directory, running the AD-OD 'magic triangle'. All that is working well.

    However, the longer the server is up for, the slower it becomes - and this is without anyone using it! Over the course of a day, shell access in the terminal from my admin machine goes from being instantaneous to sluggish, then after returning from the weekend there was no response after 20 minutes of trying. DHCP service also seemed to be dead - no new addresses were being handed out. Server had to be rebooted and then access was instant again.

    I get the feeling that there's something not quite right with my network setup, but I don't know what. The server is connected by link aggregate (4x 1Gbps connections) to the local network, while the two ports on the Xserve motherboard are connected to the university system for internet access. I used the Gateway Setup Assistant to configure the networking (internal 192.168.1.x) for NAT, DHCP, Firewall, VPN, DNS...

    Looking back through the log files, this is what starts to appear:

    Dec 5 14:43:21 mh-novst01 com.apple.DirectoryServices[25]: Enter machine password:
    Dec 5 14:43:21 mh-novst01 com.apple.KerberosAutoConfig[23069]: Kerberos configuration is up to date
    Dec 5 14:43:37 mh-novst01 bootpd[23078]: re-reading /etc/bootptab
    Dec 5 14:43:37 mh-novst01 bootpd[23078]: Loaded 0 entries from bootptab (0 bad)
    Dec 5 14:43:38 mh-novst01 com.apple.DirectoryServices[25]: DNS update failed!
    Dec 5 14:46:40 mh-novst01 natd[142]: failed to write packet back (No route to host)
    Dec 5 14:46:42 mh-novst01 natd[142]: failed to write packet back (Host is down)
    Dec 5 14:46:49: --- last message repeated 1 time ---
    Dec 5 14:46:49 mh-novst01 sshd[21328]: DEAD_PROCESS: 21342 ttys001
    Dec 5 14:46:53 mh-novst01 natd[142]: failed to write packet back (Host is down)
    Dec 5 14:47:10: --- last message repeated 7 times ---
    Dec 5 14:47:10 mh-novst01 natd[142]: failed to write packet back (No route to host)
    Dec 5 14:47:28 mh-novst01 /usr/sbin/ocspd[23139]: starting
    Dec 5 14:47:50 mh-novst01 /Applications/Server/Server Monitor.app/Contents/MacOS/Server Monitor[23084]: [23084] ServerManager session failed in connect(130.88.61.189,130.88.61.189,311): 60
    Dec 5 14:47:54 mh-novst01 natd[142]: failed to write packet back (No route to host)
    Dec 5 14:47:55 mh-novst01 natd[142]: failed to write packet back (Host is down)
    Dec 5 14:48:19: --- last message repeated 21 times ---
    Dec 5 14:48:19 mh-novst01 natd[142]: failed to write packet back (No route to host)
    Dec 5 14:48:20 mh-novst01 natd[142]: failed to write packet back (Host is down)
    Dec 5 14:48:44: --- last message repeated 19 times ---
    Dec 5 14:48:44 mh-novst01 natd[142]: failed to write packet back (No route to host)
    Dec 5 14:48:45 mh-novst01 natd[142]: failed to write packet back (Host is down)
    Dec 5 14:49:02: --- last message repeated 17 times ---
    Dec 5 14:49:02 mh-novst01 Server Admin[20075]: * -[GroupTextField windowDidResignKey:]: unrecognized selector sent to instance 0x4d0be60
    Dec 5 14:49:02: --- last message repeated 1 time ---
    Dec 5 14:49:02 mh-novst01 ARDAgent [1495]: Front Process:Couldn't get front process.. error: -600.
    Dec 5 14:49:02 mh-novst01 natd[142]: failed to write packet back (Host is down)
    Dec 5 14:49:03 mh-novst01 loginwindow[550]: DEAD_PROCESS: 0 console
    Dec 5 14:49:03 mh-novst01 shutdown[23169]: reboot by andy:
    Dec 5 14:49:03 mh-novst01 com.apple.loginwindow[550]: Shutdown NOW!
    Dec 5 14:49:03 mh-novst01 shutdown[23169]: SHUTDOWN_TIME: 1196866143 135837
    Dec 5 14:49:03 mh-novst01 com.apple.loginwindow[550]: System shutdown time has arrived^G^G
    Dec 5 14:49:03 mh-novst01 com.apple.SystemStarter[46]: Stopping IP Failover services
    Dec 5 14:49:03 mh-novst01 com.apple.SystemStarter[46]: Disabling Network Address Translation
    Dec 5 14:49:03 mh-novst01 com.apple.SystemStarter[46]: cat: /var/run/failoverd.pid: No such file or directory
    Dec 5 14:49:03 mh-novst01 com.apple.SystemStarter[46]: kill: usage: kill [-s sigspec | -n signum | -sigspec] pid | jobspec ... or kill -l [sigspec]
    Dec 5 14:49:03 mh-novst01 com.apple.SystemStarter[46]: cat: /var/run/heartbeatd.pid: No such file or directory
    Dec 5 14:49:03 mh-novst01 SystemStarter[46]: IP Failover (23172) did not complete successfully
    Dec 5 14:49:03 mh-novst01 com.apple.SystemStarter[46]: kill: usage: kill [-s sigspec | -n signum | -sigspec] pid | jobspec ... or kill -l [sigspec]
    Dec 5 14:49:03 mh-novst01 com.apple.SystemStarter[46]: net.inet.ip.forwarding: 1 - 0
    Dec 5 14:49:03 mh-novst01 SystemStarter[46]: The following StartupItems failed to properly start:
    Dec 5 14:49:03 mh-novst01 SystemStarter[46]: /System/Library/StartupItems/IPFailover
    Dec 5 14:49:03 mh-novst01 SystemStarter[46]: - execution of Startup script failed

    Looking back at the weekend logs I'm confronted with a whole load of:

    Dec 10 13:28:56 mh-novst01 mDNSResponder[30]: Could not write data to client 24 after 60 seconds - aborting connection
    Dec 10 13:28:56 mh-novst01 Unknown[30]: 24: DNSServiceCreateConnection
    Dec 10 13:30:09 mh-novst01 natd[154]: failed to write packet back (No route to host)
    Dec 10 13:30:17 mh-novst01 natd[154]: failed to write packet back (Host is down)
    Dec 10 13:31:58 mh-novst01 natd[154]: failed to write packet back (No route to host)
    Dec 10 13:33:34 mh-novst01 natd[154]: failed to write packet back (No route to host)
    Dec 10 13:35:31 mh-novst01 natd[154]: failed to write packet back (No route to host)
    Dec 10 13:38:01 mh-novst01 natd[154]: failed to write packet back (No route to host)
    Dec 10 13:40:51 mh-novst01 natd[154]: failed to write packet back (No route to host)
    Dec 10 13:43:16 mh-novst01 natd[154]: failed to write packet back (No route to host)
    Dec 10 13:43:16 mh-novst01 natd[154]: failed to write packet back (Host is down)
    Dec 10 13:43:46: --- last message repeated 1 time ---
    Dec 10 13:45:31 mh-novst01 natd[154]: failed to write packet back (No route to host)
    Dec 10 13:45:46 mh-novst01 natd[154]: failed to write packet back (Host is down)
    Dec 10 13:46:16: --- last message repeated 1 time ---
    Dec 10 13:48:16 mh-novst01 natd[154]: failed to write packet back (No route to host)
    Dec 10 13:48:16 mh-novst01 natd[154]: failed to write packet back (Host is down)
    Dec 11 00:00:00 mh-novst01 newsyslog[12484]: logfile turned over

    Does anyone have any clues? There's a DNS system running on the university network, which is what the DHCP clients are pointing towards, but of course this will have no knowledge of our internal 192.168.1.x network. Should I be configuring the server in the DNS service in Server Admin? Or is this looking like an entirely different kind of problem?

    Any suggestions would be very gratefully received!

    Thanks,

    Andy.

    DB:2.31:Fresh Leopard Install Grinds To A Halt - Please Help! kd

    Update #2...

    I've managed to come up with a workaround for all these problems, although it's a bit long-winded. I shifted our network onto the 172.16.10.* range (didn't help the problem, just better practice as I'm running a VPN too) and pointed the client machines to look at our gateway box for DNS resolution.

    I then configured BIND on the gateway to use OpenDNS servers, but revert to using the university DNS service should any requests come in for the Active Directory domain (using the primary / secondary DNS features). This prevents the lock-ups, but retains the ability to connect to AD correctly when required.

    All working very well so far - a whole classes of AD / OD mixed users are logging in simultaneously and not having any problems.

    Hope this helps someone else out! Please ask if you require any further details.

    Andy.

  • RELEVANCY SCORE 2.31

    DB:2.31:Packet Filtering In Rtpserver. 7c


    Good morning all...

    I created a rtp server receives packets from 2 or more clients and for this I used RTPConnector. When new stream is received at the server I created a corresponding sendStream. The basic thing works
    but not elegant (I am sure I can't celebrate now). My problem is in my write method I copy packets to all clients in this process but I was trying to eliminate sending back rtp packet to the original client.
    To do this I stored IP, PORT and SSRC and thought SSRC will help me to identify the originator during write() method. My unfortunate thing was I didn't realize my server has created SSRC for its sendStream.
    What are the ways to identify the originator ?

    Thanks in advance.
    lbana

    DB:2.31:Packet Filtering In Rtpserver. 7c

    Please ignore this post. I was able to find the wayout...if you want to know how here it is.

    1. For every getDataOutputStream created a SocketOutputStream for the remote address.
    2. To do step 1 you need to do the following.
    a. On read Store IP address, port and SSRC in your local data.
    b. On NewReceiveStreamEvent get SSRC and use the address corresponding to it.

    I didn't verify this using external tools but at the same time I didn't hear my echo. So I am happy
    with my server.
    -lb

  • RELEVANCY SCORE 2.31

    DB:2.31:Endpoint Block Pci Express V1.11 Testbanch Fail aa



    I'm trying to verify the design using 'Endpoint Block PCI Express' test environment (vhdl version).

    I add simple write-readback test to the 'tests.vhd' (source code is in attachment - 'test0.txt').

    Test failed on seventh read transaction. 'Downstream Port' doesn't receive a completion packet

    while the Endpoint Block back-end logic sent it like previous six. (Modelsim log is in attachment also - 'test0.txt')

    What can be wrong?







    Solved!
    Go to Solution.

    DB:2.31:Endpoint Block Pci Express V1.11 Testbanch Fail aa


    The problem is Solved!

    I'm accidentally use Endpoint Block model v1.9 with test enviroment v1.11

    I forgot to change reference link after the last IP_Update installation.

    Now everything works!

    Be careful!

  • RELEVANCY SCORE 2.31

    DB:2.31:Ap1602 Cant Join The Wlc5670 Anymore 9j



    Hi,

    I have an issue with my WLC 5670 and AP1602.

    AP first joined the WLC. Then I performed a reboot on the WLC. 

    After the reboot, the AP were no longer able to join the WLC. I found that the Wireless Management IP were "169.254.1.1", but I configured "192.168.20.210". I don't understand why this address changed. I re-configured the right address.

    Also, the AP are still no longer able to join the WLC. They are blinking green / red / amber.

    Here are some of the logs :

    AP (console cable) :

    *May 13 09:08:26.383: %CAPWAP-3-ERRORLOG: Could Not resolve CISCO-CAPWAP-CONTROLLER

    *May 13 09:08:36.383: %CAPWAP-3-ERRORLOG: Go join a capwap controller*May 13 09:08:37.000: %CAPWAP-5-DTLSREQSEND: DTLS connection request sent peer_ip: 192.168.20.210 peer_port: 5246*May 13 09:08:37.279: %CAPWAP-5-DTLSREQSUCC: DTLS connection created sucessfully peer_ip: 192.168.20.210 peer_port: 5246*May 13 09:08:37.279: %CAPWAP-5-SENDJOIN: sending Join Request to 192.168.20.210*May 13 09:08:37.459: %DTLS-5-ALERT: Received WARNING : Close notify alert from 192.168.20.210*May 13 09:08:40.451: %CAPWAP-3-ERRORLOG: DTLS connection not found Failed to encrypt and send packet.*May 13 09:08:40.451: %CAPWAP-3-ERRORLOG: Failed to encrypt and send packet.*May 13 09:08:40.451: %CAPWAP-3-ERRORLOG: Failed to send packet from queue

    *May 13 09:08:40.451: %CAPWAP-3-ERRORLOG: SM handler: Failed to process timer message. Event 43, state 8*May 13 09:08:40.451: %CAPWAP-3-ERRORLOG: Failed to handle timer message.*May 13 09:08:40.451: %CAPWAP-3-ERRORLOG: Failed to process Message timer message.*May 13 09:08:43.451: %CAPWAP-3-ERRORLOG: DTLS connection not found Failed to encrypt and send packet.*May 13 09:08:43.451: %CAPWAP-3-ERRORLOG: Failed to encrypt and send packet.*May 13 09:08:43.451: %CAPWAP-3-ERRORLOG: Failed to send packet from queue

    *May 13 09:08:43.451: %CAPWAP-3-ERRORLOG: SM handler: Failed to process timer message. Event 43, state 8*May 13 09:08:43.451: %CAPWAP-3-ERRORLOG: Failed to handle timer message.*May 13 09:08:43.451: %CAPWAP-3-ERRORLOG: Failed to process Message timer message.*May 13 09:08:46.451: %CAPWAP-3-ERRORLOG: DTLS connection not found Failed to encrypt and send packet.*May 13 09:08:46.451: %CAPWAP-3-ERRORLOG: Failed to encrypt and send packet.*May 13 09:08:46.451: %CAPWAP-3-ERRORLOG: Failed to send packet from queue

    *May 13 09:08:46.451: %CAPWAP-3-ERRORLOG: SM handler: Failed to process timer message. Event 43, state 8*May 13 09:08:46.451: %CAPWAP-3-ERRORLOG: Failed to handle timer message.*May 13 09:08:46.451: %CAPWAP-3-ERRORLOG: Failed to process Message timer message.*May 13 09:08:49.451: %CAPWAP-3-ERRORLOG: DTLS connection not found Failed to encrypt and send packet.*May 13 09:08:49.451: %CAPWAP-3-ERRORLOG: Failed to encrypt and send packet.*May 13 09:08:49.451: %CAPWAP-3-ERRORLOG: Failed to send packet from queue

    *May 13 09:08:49.451: %CAPWAP-3-ERRORLOG: SM handler: Failed to process timer message. Event 43, state 8*May 13 09:08:49.451: %CAPWAP-3-ERRORLOG: Failed to handle timer message.*May 13 09:08:49.451: %CAPWAP-3-ERRORLOG: Failed to process Message timer message.*May 13 09:08:52.451: %CAPWAP-3-ERRORLOG: DTLS connection not found Failed to encrypt and send packet.*May 13 09:08:52.451: %CAPWAP-3-ERRORLOG: Failed to encrypt and send packet.*May 13 09:08:52.451: %CAPWAP-3-ERRORLOG: Failed to send packet from queue

    *May 13 09:08:52.451: %CAPWAP-3-ERRORLOG: SM handler: Failed to process timer message. Event 43, state 8*May 13 09:08:52.451: %CAPWAP-3-ERRORLOG: Failed to handle timer message.*May 13 09:08:52.451: %CAPWAP-3-ERRORLOG: Failed to process Message timer message.., 1)13 09:08:55.451: %CAPWAP-3-ERRORLOG: Retransmission count for packet exceeded max(UNKNOWN_MESSAGE_TYPE (5)*May 13 09:08:55.451: %CAPWAP-3-ERRORLOG: GOING BACK TO DISCOVER MODETranslating "CISCO-CAPWAP-CONTROLLER"...domain server (255.255.255.255)*May 13 09:09:00.507: %LWAPP-3-CLIENTERRORLOG: LWAPP LED Init: incorrect led state 255*May 13 09:09:00.539: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down*May 13 09:09:00.539: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to administratively down*May 13 09:09:00.543: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up*May 13 09:09:00.583: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up*May 13 09:09:01.543: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down*May 13 09:09:01.599: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to down*May 13 09:09:01.607: %LINK-5-CHANGED: Interface Dot11Radio1, changed state to reset*May 13 09:09:02.591: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up*May 13 09:09:02.599: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to down*May 13 09:09:02.631: %LINK-6-UPDOWN: Interface Dot11Radio1, changed state to up*May 13 09:09:02.639: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to down*May 13 09:09:02.647: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to reset*May 13 09:09:03.631: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio1, changed state to up*May 13 09:09:03.639: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to down*May 13 09:09:03.695: %LINK-6-UPDOWN: Interface Dot11Radio0, changed state to up*May 13 09:09:04.695: %LINEPROTO-5-UPDOWN: Line protocol on Interface Dot11Radio0, changed state to up

     

    Can someone help me to find the solution?

     

    Edit : Also, i found that AP are sometimes visible in the WLC (Configuration / Wireless / Access Point / All APs) but they only stay a few time. I really don't understand the issue :-(

     

    DB:2.31:Ap1602 Cant Join The Wlc5670 Anymore 9j


    Hello thanks all,

     

    My problem is solved.

     

    Thanks,

    Alcides

  • RELEVANCY SCORE 2.31

    DB:2.31:Leopard Failing To Shut Down j1


    Intermittently, I have been getting this message when I try to shut down my Core2Duo Macbook running Leopard 10.5.1: "Logout has timed out because the application 'X' failed to quit. Try again, quit 'X' and choose Log Out from the Apple menu," where "X" is a random program (although most of the time it is Preview). The problem is is that "X" application is not open or is running when I look at the Console. When I open application "X," quit the application, then try to Shut Down, I get the same message but with a different application. These applications are not running when I look at the Activity Monitor. I haven't found what the cause is and it doesn't occur every time. I have noticed that it will do it when I've had a problem waking up my Macbook from sleep mode (it will give me a black screen after logging-in but will awake from sleep if I close my Macbook and try again).

    My event log shows the following:

    12/24/07 9:34:15 AM com.apple.dyld[820] updatedyld_sharedcache: warning can't use root /Applications/Safari.app/Contents/MacOS/Safari: can't open file, errno=2
    12/24/07 9:34:15 AM com.apple.dyld[820] updatedyld_sharedcache: warning can't use root /Applications/Mail.app/Contents/MacOS/Mail: can't open file, errno=2
    12/24/07 9:34:15 AM com.apple.dyld[820] updatedyld_sharedcache: warning can't use root /Applications/iChat.app/Contents/MacOS/iChat: can't open file, errno=2
    12/24/07 9:34:19 AM loginwindow[39] ERROR | WSActivateApp | SetFrontProcess({0, 352342}) returned error -600. Unable to activate process.
    12/24/07 9:34:24 AM com.apple.launchd[1] (com.apple.dyld) Throttling respawn: Will start in 51 seconds
    12/24/07 9:35:02 AM loginwindow[39] ERROR | WSActivateApp | SetFrontProcess({0, 352342}) returned error -600. Unable to activate process.
    12/24/07 9:35:09 AM bootpd[171] can't open /etc/bootptab
    12/24/07 9:35:09 AM bootpd[171] server name Macbook.local
    12/24/07 9:35:09 AM bootpd[171] interface en0: ip 192.168.2.1 mask 255.255.255.0
    12/24/07 9:35:09 AM bootpd[171] interface fw0: ip 192.168.3.1 mask 255.255.255.0
    12/24/07 9:35:09 AM bootpd[171] interface en1: ip 192.168.0.104 mask 255.255.255.0
    12/24/07 9:35:09 AM bootpd[171] interface en2: ip 192.168.4.1 mask 255.255.255.0
    12/24/07 9:35:09 AM bootpd[171] interface en2: ip 169.254.9.247 mask 255.255.0.0
    12/24/07 9:35:09 AM bootpd[171] interface en3: ip 10.211.55.2 mask 255.255.255.0
    12/24/07 9:35:09 AM bootpd[171] dhcp: re-reading lease list
    12/24/07 9:35:15 AM com.apple.dyld[823] updatedyld_sharedcache: warning can't use root /Applications/Safari.app/Contents/MacOS/Safari: can't open file, errno=2
    12/24/07 9:35:15 AM com.apple.dyld[823] updatedyld_sharedcache: warning can't use root /Applications/Mail.app/Contents/MacOS/Mail: can't open file, errno=2
    12/24/07 9:35:15 AM com.apple.dyld[823] updatedyld_sharedcache: warning can't use root /Applications/iChat.app/Contents/MacOS/iChat: can't open file, errno=2
    12/24/07 9:35:15 AM com.apple.launchd[1] (com.apple.dyld) Throttling respawn: Will start in 60 seconds
    12/24/07 9:36:04 AM natd[789] failed to write packet back (No route to host)
    12/24/07 9:36:16 AM com.apple.dyld[824] updatedyld_sharedcache: warning can't use root /Applications/Safari.app/Contents/MacOS/Safari: can't open file, errno=2
    12/24/07 9:36:16 AM com.apple.dyld[824] updatedyld_sharedcache: warning can't use root /Applications/Mail.app/Contents/MacOS/Mail: can't open file, errno=2
    12/24/07 9:36:16 AM com.apple.dyld[824] updatedyld_sharedcache: warning can't use root /Applications/iChat.app/Contents/MacOS/iChat: can't open file, errno=2

    Anyone else with this problem or know why it is doing this?

    Message was edited by: pup975

    DB:2.31:Leopard Failing To Shut Down j1

    I've been experiencing some similar issues (occasional inability to shut down/wake from sleep etc.) with the same warnings from updatedyld_sharedcache showing up in Terminal, a bit of Googling and I found a terminal command which forces the update, and then got the exact same warning from it about not being able to open the files.

    Then it hit me, all of the applications that it was having trouble updating the caches for weren't in the root of the Applications folder as I'd moved them, so I dragged them back, re-ran the command, and it worked fine. It's too early to tell if this is going to fix it, but it does at least make some sense, and as an aside, Safari and Mail are launching way more quickly now.

    "sudo updatedyld_sharedcache" Is the command I used in Terminal, via Sun Baked's second reply in this thread: http://forums.macrumors.com/showthread.php?t=404147.

  • RELEVANCY SCORE 2.31

    DB:2.31:Esx Natd - Is There A How-To Or A Readme? f1



    tried to configure the vmnet-natd, but found no document on how to configure things up

    any help ...

    Thx, MXmi

  • RELEVANCY SCORE 2.31

    DB:2.31:Problem With Simple Timeserver App Using Udp d8


    We have a Server setup in my Distributed apps class which we are meant to write a client program that sends a DatagramPacket to the server and then receives back a packet that has the time and date. We seem to be doing everything correctly but the behavior we are receiving is not what we want. We send a packet that has a 512 byte buffer, and receive back data of length 512 bytes, we then try to make that buffer a string and then simply display it. Here is what we have:

    my Declarations:
    ......
    private DatagramSocket socket;
    private byte[] data;
    private DatagramPacket packet;
    .....

    Constructor:
    ....
    address = InetAddress.getByName(ipTextField.getText());
    try{
    socket = new DatagramSocket();
    packet = new DatagramPacket(data,512,address,port);
    //socket.connect(address, port);
    }catch(IOException e){};
    .......

    //THIS IS WHERE THE ACTUAL WORK IS PERFORMED//

    public void actionPerformed(ActionEvent e){
    if(e.getSource()==goButton){
    try{

    socket.send(packet);
    byte[] buffer = new byte[512];
    DatagramPacket receivePacket = new DatagramPacket(buffer,512);
    socket.receive(packet);
    buffer = packet.getData();
    String date = new String(buffer);
    System.out.println("buffer: " + date);
    addressInformation.setText(date);
    }catch(IOException ex){System.out.println("Error" + ex);};
    }
    }

    This is what the System.out.println fo the date gives us:
    buffer: Fri Feb 09 11:59:05 CST 2007[FROM HERE ON IS JUNK CHARACTERS REPEATING]

    The GUI output is nothing but the square ascii character, no date is shown (this might be because it is filled with these squares).

    DB:2.31:Problem With Simple Timeserver App Using Udp d8

    You're almost there. A UDP packet contains a fixed length buffer, but the data does not necessarily fill the entire buffer. See the [url http://java.sun.com/j2se/1.5.0/docs/api/java/net/DatagramPacket.html]API documentation to see the methods needed to get both the offset and the length of the received data. Once you know the offset and length, use the correct String constructor to create a String.

  • RELEVANCY SCORE 2.31

    DB:2.31:Natd Server Pinging Its Own Fqdn 7j


    Can someone explain this to me.
    I have a W2k12 server that is nat'd behind a Cisco ASA firewall. From all my internal clients I can ping the FQDN such as test2.internetdomain.com and it replies back. Yet from the server itself, if I ping test2.internetdomain.com the replies fail. Firewall
    service is running, but turned off.

    Why is that.

    DB:2.31:Natd Server Pinging Its Own Fqdn 7j

    1. Some more info is needed. Which device is providing NAT, ASA of server? Is server single or multihome? Which additional roles are on server (AD, DNS, DHCP,...)
    2. Basic diagnostics begins with nslookup, ipconfig /all,...
    3. Network monitor would help you to resolve your problem. Wireshark will do the job.
    HTH
    Milos

  • RELEVANCY SCORE 2.31

    DB:2.31:Raw Socket + Tcp 8f


    Hello, i try to write a program which will send TCP packet with SYN bit set and in respone it will receive TCP packet with SYN+ACK bits set. I use raw socket, but windows change my TCP packet. Is it posssible to manage TCP packets using raw socket ??

    DB:2.31:Raw Socket + Tcp 8f

    Hello, i try to write a program which will send TCP packet with SYN bit set and in respone it will receive TCP packet with SYN+ACK bits set. I use raw socket, but windows change my TCP packet. Is it posssible to manage TCP packets using raw socket ??

  • RELEVANCY SCORE 2.31

    DB:2.31:Socket.Close() On Both Sides? 7c


    Hello

    i'm creating a server-client application, but i came at a problem:

    i currently testing the logging out or disconnection.

    The protocol does this: client sends packet to server with request for logout, server pushes response back and ?closes socket?, client reads response and ?closes socket?

    now this is where i don't understand what i should do... should i close the socket on server side, or at client side ?

    the thing is after the server received that packet, it sends packet back for confirmation and then unregisters the client, this means removing it from the client list (where it holds all clients for updating purposes at server side etc) and it closes its read/write thread, so stopping the thread from running. but should i also close the socket then?

    or should i let the client close the socket? because while i send my packet of logout and receiving it, im also pinging (sending empty packet) the server to make sure the server is still online and server writes response back (this is a default operation, every 600ms), and when i close the socket on server side this will give offcourse an exception at clientside before i received the packet, so what should i do ??

    Thanks in advnace!

    DB:2.31:Socket.Close() On Both Sides? 7c

    both answerrs helped me alot thank you :)

  • RELEVANCY SCORE 2.30

    DB:2.30:Load An Xmp Packet mk


    How can I load a XMP Packet from a PDF file?

    I'm using JempBox API for Java but I did'nt find any metod to load an XMP packet from PDF file... only to write new XMP Packet.

    DB:2.30:Load An Xmp Packet mk

    How can I load a XMP Packet from a PDF file?

    I'm using JempBox API for Java but I did'nt find any metod to load an XMP packet from PDF file... only to write new XMP Packet.

  • RELEVANCY SCORE 2.30

    DB:2.30:%Daemon-2-System_Msg: Fatal: Write Failed: Broken Pipe 7c



    Hi,

    On our Nexus 5000 we are getting the following syslog messages

    2011 Mar 17 19:53:23 switch_name %DAEMON-2-SYSTEM_MSG: fatal: Write failed: Broken pipe .Client is 10.x.x.x,length of packet causing error 736 736  - sshd[18922]

    10.x.x.x is our Ciscoworks server (LMS 3.2)

    I can't find any info on this message.

    Thanks,

    Ian

  • RELEVANCY SCORE 2.30

    DB:2.30:Problems With Xml Rpc c7





    Im starting to learn XML PRC. Everything is working except domain creation. Whenever I send XML request to create domain, I receive the following response back:



    packet version=1.3.1.0
    domain
    add
    result
    statuserror/status
    errcode2308/errcode
    errtextDomain adding was failed. Error: Unable to create Domain object: Unable to query database: Unknown column dl.passwd in field list/errtext
    /result
    /add
    /domain
    /packet

    DB:2.30:Problems With Xml Rpc c7




    It works

    Thanks jhony192!

    That works great.

    Just wanted to post a quick comment about deleting domains through RPC. Anybody whos trying to do that should be extremely careful. If accidentally skipped filter/filter node, i.e. submitted delid101/id/del without the filter between del and id. Plesk misread my request and started deleting all accounts one by one. I was able to stop it and minimize the damage but in general you should be very careful when working with deleting. I know it sounds obvious but I thought Id still post it.

  • RELEVANCY SCORE 2.30

    DB:2.30:Packet Installation Failed Unable To Install Office 2010 ja


    when i install my office 2010 on the new laptop that i have just bought it says packet installation failed but the same setup managed to install in a different computer. please help me guys

    DB:2.30:Packet Installation Failed Unable To Install Office 2010 ja

    Hi Calvis,
    Welcome to Microsoft Community and thank you for posting the question. I will assist you with the installation of Office 2010 suite.

    In order to troubleshoot the issue related to Office, try the step below:
    Step 1:
    Run the fix it from the link below to ensure all the Office traces are removed from the computer:
    http://support.microsoft.com/kb/290301

    Note: If you have issues in running the fix it directly, you may save the file to the desktop and then run the fix it tool.

    Once the Office traces areremoved, restart the computer.

    Step 2:
    Try to manually extract the Office setup file and then install the program.

    Check the link below for troubleshooting steps on the error you get while installing Office 2010 suite and how to extract the setup file to install the program:
    http://support.microsoft.com/kb/926946

    Note: The link is for Office 2007; however you use the same steps for Office 2010.

    I hope the above steps helps. If you need further assistance on this particular issue or any other Office related issues let us know and we will be glad to assist you.
    Thank you.

  • RELEVANCY SCORE 2.30

    DB:2.30:Triggers Running Everyday....... xc


    1. I want to write a trigger which can run every day at specific time or at logon time.....

    Please let me know how to do that......

    2. I tried to Install Oracle 9.0.1 database over Windows2000 server.... but that installation failed due to electricity failure.... Then I restarted the installation but this time of Oracle Enterprise 8.1.7.

    While Starter database configuration I came to an error

    TNS-15269 Packet Write Failure

    AND

    TNS-15269 Packet Write Failure

    So I am not able to connect to database..Please let me know how to get rid of this
    error

    Thanx in advance
    farooq

    DB:2.30:Triggers Running Everyday....... xc

    Trigger running every day? How about a procedure, read about DBMS_JOB, which lets you schedule PL/SQL jobs.

  • RELEVANCY SCORE 2.30

    DB:2.30:Access Another Host On Same Subnet Through Natd Ip Address 7s



    I appreciate any help in advance, I have a requirement to monitor a host's external IP address, the monitoring host (host A) initiating the request is located in the same DMZ subnet as the destination host (host B) I want to monitor, both are NAT'd to external IP addresses, I was expecting to see a request going out from host A, getting NAT'd to its respective external IP address and then coming back in through the external interface to reach the Nat'd IP address of host B. is this how NAT will be handled by the ASA or am I missing something here? thanks again.

    DB:2.30:Access Another Host On Same Subnet Through Natd Ip Address 7s


    Thanks for the detailed explanation Maykol, I'll try this, thanks.

  • RELEVANCY SCORE 2.30

    DB:2.30:Cisco 2811 Router Ipsec(Crypto_Decrypt_Ipsec_Sa_Check): Failed To Coalesce aj



    Scenario:

    1.) Workstation from my end sends UDP request to a server through IPSEC tunnel

    running between 2 Cisco devices

    2.) Packet hits the server and server responds back with a reply.

    3.) This reply packet traverses through the VPN device at Location B Client side

    (Remote end).

    4.) But no traffic seen after decryption on the VPN device at

    Location A (local end, my side). We are running a sniffer on the inside interface of

    the VPN device.

    5.) We suspected some issue on the local VPN router and did an IPSEC

    debug. We get the attached output when ever a request is initiated

    by the client. This output may be specifying the packets from the server.

    It seems like the VPN device at Location A (local end, my end) is unable to decrypt

    the packet.

    “IPSEC(crypto_decrypt_ipsec_sa_check): failed to coalesce

    DB:2.30:Cisco 2811 Router Ipsec(Crypto_Decrypt_Ipsec_Sa_Check): Failed To Coalesce aj


    This document demonstrates how to configure IPsec between two Cisco routers and the Cisco VPN Client 4.x. Cisco IOS? Software Releases 12.2(8)T and later support connections from Cisco VPN Client 3.x and later.

    http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080094685.shtml

  • RELEVANCY SCORE 2.30

    DB:2.30:Tcp? Issues s8



    Hi All,

    Sorry if this is in the wrong spot.

    I have a couple of Arch VMs running on a vmware host somewhere. I dont have control over this host at present, so I cant give a lot of details on it.

    How I have it set up:Public interface on a /26 connects to a packet filter VM (not Arch) on .77. .72 through .76 are bound to the same interface and 1:1 NATd to a specific Arch VM behind it. 1 Arch VM does not have a 1:1 NATd IP, but TCP 22 on .77 is forwarded to it.2 Private networks exist (10.xxx.xxx.0/24 and 192.168.0/24) and are bound to each VM that has a 1:1 NATd IP. The VM that does not have a 1:1 NATd IP is only attached to the 10.xxx.xxx.0/24 network.The packet filter box is only involved in egress traffic (traffic destined to the internet), and does not interact with traffic between VMs.

    The Arch VMs had been running perfectly fine until this last weekend. Since then most TCP connections do not function. If I try to SSH into .77 (port 22 forwarded to the singular VM) from my two workstations on my desk I succeed. If I try from home or the workstation under my desk (different internet connection), the SSH process stalls at debug1: SSH2_MSG_KEXINIT sent. This means that the TCP handshake has succeeded and we shouldnt be dealing with any routing issues. Simultaneously, the teamspeak server running on this host is functional. If, on the other hand, I open a console to ANY VM, I experience the following:

    - CAN ping out to any destination (in virtual environment, or on the internet) - CAN resolve any hostname via DNS - CAN manually simulate an SMTP delivery to an external mail server - CANNOT ssh between VMs on either network - CANNOT ssh into the packet filter machine - CANNOT perform a package update (pacman aborts after seeing Less than 1 bytes/sec transferred the last 10 seconds) - CANNOT ssh out to hosts on the internet

    NFS is wonky too (the singular VM acts as NFS LDAP host for the others). I can work with mounts that have 2 small files in them (less than 900bytes total) without issue, but anything larger will stall. For some reason Im also seeing ports far greater than 65535 in use for NFS:

    18:52:55.089174 IP 10.xxx.xxx.40.2653835080 10.xxx.xxx.3.2049: 152 getattr fh 0,0/22

    In all cases I see the TCP handshake occurring without issue, and netstat will show the connection as ESTABLISHED

    Has anyone had similar issues, or have any ideas on how to proceed?

    Thanks

    DB:2.30:Tcp? Issues s8


    Moving to Networking, Server, and Protection

  • RELEVANCY SCORE 2.30

    DB:2.30:Connect Vmare With Windows 8 To Windows 7 Pc fm


    Hi,
    I have installed vmware with windows8 on my windows 7 Pc.
    I am trying to connect the vmware to my PC using the bcdedit /dbgsettings NET HOSTIP:hostip PORT:port num
    In host Pc, in kernel debugging if I connect with the NET and port number i get the following error:
    Wrote 0 of 1 bytes of the breakin packet.
    Failed to write breakin packet to target. Win32 error 0n87
    WARNING: The HOST cannot communicate with the TARGET!
    Pls help me out with this.

    DB:2.30:Connect Vmare With Windows 8 To Windows 7 Pc fm

    Hi,
    Thanks a lot. It worked. Seems like we need to give bcdedit /debug on before rebooting the vmware so that it stores the changes made.

  • RELEVANCY SCORE 2.30

    DB:2.30:Packet Reverse Route ms



    I have a network that a packet reaches put has a diffrent return route to the source (default route). the packet fails. the source has a route to the destionation and the destionation network has a default route back to the source but thy are over diffrent paths. why wont this work ? any ideas?

    DB:2.30:Packet Reverse Route ms


    Thanks for your response the path to the network is a mpls network and the path back is a vpn tunnel. I am thinking that the asa5510 is maybe using unicast revers path forwarding by defualt? it would see a internal route to the destination out one interface and returning on another.

    Scott

  • RELEVANCY SCORE 2.30

    DB:2.30:Has Anybody Had This Problem And If So What The Fix Natd Problem Failed To Write Packet Back (No Route To Host) z1


    this problem is eating my sys log up, all my services seem to be working it would seem that this problem has happened to others i have seen no realgood answers to the question it would seem like a configuration problem here are the services i am runningaddress bookafpdhcpdnsfirewallicalichatnatopen directoryprintpush notificationsmbwebsoftware just installed and the system was just setup as a gate waynet config :Automatic: Active Location: Yes Services:Ethernet 1: Type: Ethernet BSD Device Name: en0 Hardware (MAC) Address: 00:17:f2:02:75:22 IPv4: Addresses: 173.11.2*0.*** Configuration Method: Manual Router: 173.11.210.210 Subnet Masks: 255.255.255.252 IPv6: Configuration Method: Automatic DNS: Server Addresses: 68.87.**.98, 68.**.69.** Proxies: Exceptions List: *.local, 169.254/16 FTP Passive Mode: Yes SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPEthernet 2: Type: Ethernet BSD Device Name: en1 Hardware (MAC) Address: 00:17:f2:02:75:23 IPv4: Addresses: 192.168.1.1 Configuration Method: Manual Subnet Masks: 255.255.255.0 IPv6: Configuration Method: Automatic DNS: Server Addresses: 192.168.1.1 Proxies: Exceptions List: *.local, 169.254/16 FTP Passive Mode: Yes SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPAirPort: Type: IEEE80211 BSD Device Name: en2 Hardware (MAC) Address: 00:17:f2:96:76:60 IPv4: Configuration Method: DHCP IPv6: Configuration Method: Automatic Proxies: Exceptions List: *.local, 169.254/16 FTP Passive Mode: Yes IEEE80211: Join Mode: Automatic PowerEnabled: 0 PreferredNetworks: SecurityType: WPA2 Personal SSID_STR: Airport Extreme Unique Network ID: F3922B59-58B2-4E25-8BFA-8924012125FD Unique Password ID: A2F3E2B9-DE2F-4B1F-960E-9F740F30F392 SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPBluetooth DUN: Type: PPP IPv4: Configuration Method: PPP IPv6: Configuration Method: Automatic Proxies: FTP Passive Mode: Yes PPP: ACSP Enabled: No Display Terminal Window: No Redial Count: 1 Redial Enabled: Yes Redial Interval: 5 Use Terminal Script: No Dial on Demand: No Disconnect on Fast User Switch: Yes Disconnect on Idle: Yes Disconnect on Idle Timer: 600 Disconnect on Logout: Yes Disconnect on Sleep: Yes Idle Reminder: No Idle Reminder Time: 1800 IPCP Compression VJ: Yes LCP Echo Enabled: No LCP Echo Failure: 4 LCP Echo Interval: 10 Log File: /var/log/ppp.log Verbose Logging: No SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPFireWire: Type: FireWire BSD Device Name: fw0 Hardware (MAC) Address: 00:16:cb:ff:fe:6e:28:18 IPv4: Configuration Method: DHCP IPv6: Configuration Method: Automatic Proxies: Exceptions List: *.local, 169.254/16 FTP Passive Mode: Yes SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPsyslog:Jul 4 17:18:49 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:18:54 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:19:25: --- last message repeated 5 times ---Jul 4 17:19:25 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:19:30 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:20:01: --- last message repeated 5 times ---Jul 4 17:20:01 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:20:06 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:20:38: --- last message repeated 5 times ---Jul 4 17:20:49 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:20:52 extremenet com.apple.wikid.mailinglists[41461]: mail:status = "list-updated"Jul 4 17:20:54 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:21:25: --- last message repeated 5 times ---Jul 4 17:21:25 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:21:30 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:22:01: --- last message repeated 5 times ---Jul 4 17:22:01 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:22:06 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:22:37: --- last message repeated 5 times ---Jul 4 17:22:37 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:22:42 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:23:12: --- last message repeated 5 times ---Jul 4 17:23:13 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:23:18 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:23:49: --- last message repeated 5 times ---Jul 4 17:23:49 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:23:54 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:24:25: --- last message repeated 5 times ---Jul 4 17:24:25 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:24:30 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:25:01: --- last message repeated 5 times ---Jul 4 17:25:01 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:25:06 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:25:38: --- last message repeated 5 times ---Jul 4 17:25:49 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:25:54 extremenet natd[38056]: failed to write packet back (Host is down)

    DB:2.30:Has Anybody Had This Problem And If So What The Fix Natd Problem Failed To Write Packet Back (No Route To Host) z1

    this problem is eating my sys log up, all my services seem to be working it would seem that this problem has happened to others i have seen no realgood answers to the question it would seem like a configuration problem here are the services i am runningaddress bookafpdhcpdnsfirewallicalichatnatopen directoryprintpush notificationsmbwebsoftware just installed and the system was just setup as a gate waynet config :Automatic: Active Location: Yes Services:Ethernet 1: Type: Ethernet BSD Device Name: en0 Hardware (MAC) Address: 00:17:f2:02:75:22 IPv4: Addresses: 173.11.2*0.*** Configuration Method: Manual Router: 173.11.210.210 Subnet Masks: 255.255.255.252 IPv6: Configuration Method: Automatic DNS: Server Addresses: 68.87.**.98, 68.**.69.** Proxies: Exceptions List: *.local, 169.254/16 FTP Passive Mode: Yes SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPEthernet 2: Type: Ethernet BSD Device Name: en1 Hardware (MAC) Address: 00:17:f2:02:75:23 IPv4: Addresses: 192.168.1.1 Configuration Method: Manual Subnet Masks: 255.255.255.0 IPv6: Configuration Method: Automatic DNS: Server Addresses: 192.168.1.1 Proxies: Exceptions List: *.local, 169.254/16 FTP Passive Mode: Yes SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPAirPort: Type: IEEE80211 BSD Device Name: en2 Hardware (MAC) Address: 00:17:f2:96:76:60 IPv4: Configuration Method: DHCP IPv6: Configuration Method: Automatic Proxies: Exceptions List: *.local, 169.254/16 FTP Passive Mode: Yes IEEE80211: Join Mode: Automatic PowerEnabled: 0 PreferredNetworks: SecurityType: WPA2 Personal SSID_STR: Airport Extreme Unique Network ID: F3922B59-58B2-4E25-8BFA-8924012125FD Unique Password ID: A2F3E2B9-DE2F-4B1F-960E-9F740F30F392 SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPBluetooth DUN: Type: PPP IPv4: Configuration Method: PPP IPv6: Configuration Method: Automatic Proxies: FTP Passive Mode: Yes PPP: ACSP Enabled: No Display Terminal Window: No Redial Count: 1 Redial Enabled: Yes Redial Interval: 5 Use Terminal Script: No Dial on Demand: No Disconnect on Fast User Switch: Yes Disconnect on Idle: Yes Disconnect on Idle Timer: 600 Disconnect on Logout: Yes Disconnect on Sleep: Yes Idle Reminder: No Idle Reminder Time: 1800 IPCP Compression VJ: Yes LCP Echo Enabled: No LCP Echo Failure: 4 LCP Echo Interval: 10 Log File: /var/log/ppp.log Verbose Logging: No SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPFireWire: Type: FireWire BSD Device Name: fw0 Hardware (MAC) Address: 00:16:cb:ff:fe:6e:28:18 IPv4: Configuration Method: DHCP IPv6: Configuration Method: Automatic Proxies: Exceptions List: *.local, 169.254/16 FTP Passive Mode: Yes SMB: NetBIOSName: extremenet WINSAddresses: Workgroup: WORKGROUPsyslog:Jul 4 17:18:49 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:18:54 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:19:25: --- last message repeated 5 times ---Jul 4 17:19:25 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:19:30 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:20:01: --- last message repeated 5 times ---Jul 4 17:20:01 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:20:06 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:20:38: --- last message repeated 5 times ---Jul 4 17:20:49 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:20:52 extremenet com.apple.wikid.mailinglists[41461]: mail:status = "list-updated"Jul 4 17:20:54 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:21:25: --- last message repeated 5 times ---Jul 4 17:21:25 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:21:30 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:22:01: --- last message repeated 5 times ---Jul 4 17:22:01 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:22:06 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:22:37: --- last message repeated 5 times ---Jul 4 17:22:37 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:22:42 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:23:12: --- last message repeated 5 times ---Jul 4 17:23:13 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:23:18 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:23:49: --- last message repeated 5 times ---Jul 4 17:23:49 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:23:54 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:24:25: --- last message repeated 5 times ---Jul 4 17:24:25 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:24:30 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:25:01: --- last message repeated 5 times ---Jul 4 17:25:01 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:25:06 extremenet natd[38056]: failed to write packet back (Host is down)Jul 4 17:25:38: --- last message repeated 5 times ---Jul 4 17:25:49 extremenet natd[38056]: failed to write packet back (No route to host)Jul 4 17:25:54 extremenet natd[38056]: failed to write packet back (Host is down)

  • RELEVANCY SCORE 2.29

    DB:2.29:Packet Failures - Ora-12571 And Tns-12637 d1


    Hello there -

    I've received several packet type errors for a Remedy application running Oracle 11g. Two of the errors are as follows - ORA-12571: TNS:PACKET WRITER FAILURE and TNS-12637: Packet receive failed. Apparently the DB seems to come down for a few moments and than come back up again. Anyone have any ideas on solutions?

    DB:2.29:Packet Failures - Ora-12571 And Tns-12637 d1

    Anyone have any ideas on solutions?I see Oracle as victim; not culprit.

    bcm@bcm-laptop:~$ oerr ora 12571
    12571, 00000, "TNS:packet writer failure"
    // *Cause: An error occurred during a data send.
    // *Action: Not normally visible to the user. For further details, turn
    // on tracing and reexecute the operation. If error persists, contact
    // Oracle Customer Support.
    bcm@bcm-laptop:~$ oerr ora 12637
    12637, 00000, "Packet receive failed"
    // *Cause: A process was unable to receive a packet from another process.
    // Possible causes are:
    // 1. The other process was terminated.
    // 2. The machine on which the other process is running went down.
    // 3. Some other communications error occurred.
    // *Action: If the cause is not obvious, contact Oracle Customer Support.

  • RELEVANCY SCORE 2.29

    DB:2.29:Dynamic Vlans Management Over Snmp za


    Hi,

    I have tried to do some configuration changes on the switch GSM7224 using SNMP and some of these changes work. But I don't know how to convert dynamic VLAN to static VLAN. In the command line (serial or telnet) there is a command vlan makestatic in the vlan database which convert dynamic VLAN to static.

    I would like to do same thing over SNMP. Is it possible and how?

    I have tried to write VLAN Name using

    snmpset -c private -v1 switch .1.3.6.1.2.1.17.7.1.4.3.1.1.98 s 'VlanName'

    this generates error

    Error in packet.

    Reason: (genError) A general failure occured

    Failed object: SNMPv2-SMI::mib-2.17.7.1.4.3.1.1.98

    for version 2c it generates

    Error in packet.

    Reason: commitFailed

    Failed object: SNMPv2-SMI::mib-2.17.7.1.4.3.1.1.98

    Setting the value of VlanStatus generates another error

    snmpset -c private -v1 switch .1.3.6.1.2.1.17.7.1.4.2.1.6.0.98 i 2

    Error in packet.

    Reason: (noSuchName) There is no such variable name in this MIB.

    Failed object: SNMPv2-SMI::mib-2.17.7.1.4.2.1.6.0.98

    but snmpget returns a value

    snmpwalk -Of -On -c public -v1 switch Q-BRIDGE-MIB::dot1qVlanStatus.0.98

    .1.3.6.1.2.1.17.7.1.4.2.1.6.0.98 = INTEGER: dynamicGvrp(3)

    Does anyone have an idea, how to convert dynamic VLAN to static VLAN over SNMP?

    Thank you very much for help.

    DB:2.29:Dynamic Vlans Management Over Snmp za

    Hi,

    I have tried to do some configuration changes on the switch GSM7224 using SNMP and some of these changes work. But I don't know how to convert dynamic VLAN to static VLAN. In the command line (serial or telnet) there is a command vlan makestatic in the vlan database which convert dynamic VLAN to static.

    I would like to do same thing over SNMP. Is it possible and how?

    I have tried to write VLAN Name using

    snmpset -c private -v1 switch .1.3.6.1.2.1.17.7.1.4.3.1.1.98 s 'VlanName'

    this generates error

    Error in packet.

    Reason: (genError) A general failure occured

    Failed object: SNMPv2-SMI::mib-2.17.7.1.4.3.1.1.98

    for version 2c it generates

    Error in packet.

    Reason: commitFailed

    Failed object: SNMPv2-SMI::mib-2.17.7.1.4.3.1.1.98

    Setting the value of VlanStatus generates another error

    snmpset -c private -v1 switch .1.3.6.1.2.1.17.7.1.4.2.1.6.0.98 i 2

    Error in packet.

    Reason: (noSuchName) There is no such variable name in this MIB.

    Failed object: SNMPv2-SMI::mib-2.17.7.1.4.2.1.6.0.98

    but snmpget returns a value

    snmpwalk -Of -On -c public -v1 switch Q-BRIDGE-MIB::dot1qVlanStatus.0.98

    .1.3.6.1.2.1.17.7.1.4.2.1.6.0.98 = INTEGER: dynamicGvrp(3)

    Does anyone have an idea, how to convert dynamic VLAN to static VLAN over SNMP?

    Thank you very much for help.

  • RELEVANCY SCORE 2.29

    DB:2.29:Vmnet-Natd Consuming 98% Of The Cpu With Vmware Fusion 2.0.5 Snow Leopard xc


    First of all I would like to thank VMWare team for developing VMWare Fusion and already having experimental support for Snow Leopard.

    I have recently upgraded to Snow Leopard (fresh install) on my MacBook Pro. Before upgrading, I was already running VMWare Fusion 2.0.5 and I already had some VMs stored on my external HDD. I have changed nothing about the way VMWare Fusion was configured, including Guest OS configuration and its software settings.

    What happens is that I have started noticing that vmnet-natd consumes about 100% of both CPUs. The fans start to fan and the CPU utilization hits 100% (on the Host) right when I turn on utorrent on my Windows XP machine and wait for torrents to get connections (nevermind asking me why I am virtualizing utorrent anyway) though vmware-vmx is behaving normally.

    When I try to get a "netstat -anp tcp" on the host, I have about 250 connections, where 80 are in the ESTABLISHED state. Network throughput is about 500KByte/s download and 700KByte/s upload.

    After I used Activity Monitor to take samples on what vmnet-natd was doing I got the following:

    -

    Analysis of sampling vmnet-natd (pid 85) every 1 millisecond

    Call graph:

    807 Thread_511 DispatchQueue_1: com.apple.main-thread (serial)

    807 start

    807 _start

    807 main

    693 select

    693 select$DARWIN_EXTSN$NOCANCEL

    57 NatWatchPollProcess

    31 NatTcpinDataReadyHandler

    30 accept

    30 accept$NOCANCEL$UNIX2003

    1 NatTcpinDataReadyHandler

    16 NatTcpDataReadyHandler

    11 NatTcpTrySend

    10 NatIpSendFast

    9 NatMainEthSend

    9 write

    1 NatIpSendFast

    1 NatTcpTrySend

    2 NatTcpDataXmit

    1 NatTcpMustAckHandler

    1 NatTcpSendSegment

    1 NatIpSendFast

    1 NatMainEthSend

    1 write

    1 write

    2 NatTcpRead

    2 read$NOCANCEL$UNIX2003

    1 NatTcpDataReadyHandler

    10 NatMainVmnetDataReadyHandler

    6 NatIpProcessNonFragment

    6 NatTcpProcessTCP

    4 NatTcpDataXmit

    4 write

    2 NatTcpLookupTCP

    2 read$NOCANCEL$UNIX2003

    1 NatMainVmnetDataReadyHandler

    1 free

    1 szone_size

    29 NatWatchSelectToPoll

    15 NatWatchPollToSelect

    13 NatWatchPollToSelect

    2 __bzero

    7 NatWatchPollActive

    3 NatTimerExecute

    2 NatTimerExecute

    1 NatTcpMustAckHandler

    1 NatTcpSendSegment

    1 NatIpSendFast

    1 NatMainEthSend

    1 write

    2 NatTimerUpdate

    2 NatTimerGetTimeOfDay

    2 gettimeofday

    1 __gettimeofday

    1 __nanotime

    1 gettimeofday

    1 main

    Total number in stack (recursive counted multiple, when gt;=5):

    5 write

    Sort by top of stack, same collapsed (when gt;= 5):

    select$DARWIN_EXTSN$NOCANCEL 693

    accept$NOCANCEL$UNIX2003 30

    NatWatchSelectToPoll 29

    write 16

    NatWatchPollToSelect 13

    NatWatchPollActive 7

    -

    As you can see, "select" function is taking about 85% of vmnet-natd CPU time just for itself.

    utorrent on the Guest machine however is taking simply 10% of the CPU.

    Can you please help me solving out this issue?

    Thanks!

    -

    Host Environment:

    Snow Leopard (Mac OS X 10.6)

    MacBook Pro 2.2 GHz Intel core 2 Duo

    2 GB 667 MHz DDR2 SDRAM

    1TB external HDD

    VMWare Fusion 2.0.5

    Guest Environment:

    Windows XP SP3 (fully up to date)

    utorrent v1.8.3 installed

    No Antivirus software or similar software installed

    1 CPU, 512 MB RAM, 40GB virtual hard disk (stored on the external HDD)

    Network sharing type: NAT

    DB:2.29:Vmnet-Natd Consuming 98% Of The Cpu With Vmware Fusion 2.0.5 Snow Leopard xc

    I have just ran netstat on the Host OS again and found out that I have about 10 TCP connections in the ESTABLISHED state for the port I am portmapping with VMWare NAT for uTorrent.

    Additionally, the Host OS has 250 TCP connections being NATed to the Guest OS that are in other states (i.e., not ESTABLISHED).

    In the Guest OS side however, I have a just 2 TCP connections in the ESTABLISHED state. This is even more intriguing because I can see several more ESTABLISHED connections that vmnet-natd is portmapping to my uTorrent port.

  • RELEVANCY SCORE 2.29

    DB:2.29:Natd Stopped Working After Software Updates: Bogus Vlan Injections? fm


    Software Update installed three packages on the iMac today:

    Safari 3.1 Update (Universal)
    Security Update 2008-002 (Universal)
    AirPort Extreme Update 2008-001

    This machine (running 10.4.11, fully updated now) is my connection-sharing gateway the internet for my wife's MacBook, a Linux box and a TiVo unit.

    Comcast ==(ethernet)== public-IP iMac ==(wireless)== private IP MacBook, Linux, TiVo

    I ran my usual firewall + Internet sharing script after the mandatory reboot.
    The iMac's broadband connection worked fine for local programs (Safari, ssh) but none of the machines with private IP addresses on the LAN could see the outside world. The machines on the home LAN could see each other fine -- ping, ssh, etc. Time to start testing!

    When I pinged an external machine from the Linux machine, the DNS lookup succeeded after a delay, but it seemed that no ICMP responses came back. Actually, packet tracing with Wireshark showed that the responses had come in with an extra four-byte header field I had not seen before: something called "802.1Q Virtual Lan" inserted between the Ethernet II header and the Internet Protocol header. Sample packet dump (slightly edited):

    --
    No.:20
    Time:00:04:56.746703
    Source:64.233.187.99
    Destination:192.168.1.2
    Protocol:ICMP
    Info:Echo (ping) reply

    Frame 20 (102 bytes on wire, 102 bytes captured)
    Ethernet II, Src: AppleCom_54:1b:30 (00:17:f2:54:1b:30), Dst: FirstInt_94:75:8f (00:40:ca:94:75:8f)
    *802.1Q Virtual LAN*
    *001. .... .... .... = Priority: 1*
    *...0 .... .... .... = CFI: 0*
    *.... 0000 0000 0000 = ID: 0*
    *Type: IP (0x0800)*
    Internet Protocol, Src: 64.233.187.99 (64.233.187.99), Dst: 192.168.1.2 (192.168.1.2)
    Internet Control Message Protocol
    --

    Looking further back in the trace, it turned out that the DNS delay had the same oddity. The Linux machine sent out a request to the primary DNS server, got back an immediate response with the extra "802.1Q" field, waited 5 seconds, sent out a DNS request to the secondary server, got an immediate normal response (without "802.1Q"), then immediately used the returned numeric address for the pings. It's as if the Linux machine ignored the packet with the extra, interposed header.

    I traced HTTP traffic to google.com and saw a similar pattern:
    1. bogus 1st DNS response
    2. delay
    3. good second DNS response
    4. sent HTTP SYN packet
    5. got back HTTP SYN/ACK with extra "802.1Q" field
    6. multiple retries of steps 4 and 5.

    I suspect that one or more of the software updates is inserting this VLAN stuff into NAT-ed packets over Airport. The receiving machines drop the packets because they expect the Ethernet II header to be followed by the IP header, not 802.1Q data.

    An old discussion thread ([VOIP VLAN using 802.1q frames causing massive dropped packets|http://discussions.apple.com/thread.jspa?threadID=378673#1833386]) talked about a similar problem.

    Here are the NAT-related commands from my firewall script:
    natd -u -dynamic -interface en0
    /sbin/ipfw add divert natd all from not me to any via en0
    sysctl -w net.inet.ip.forwarding=1

    Question: is there a known workaround to get the MacOSX network drivers not to insert 802.1Q VLAN headers?
    Thanks in advance!
    --GCL

    DB:2.29:Natd Stopped Working After Software Updates: Bogus Vlan Injections? fm

    Software Update installed three packages on the iMac today:

    Safari 3.1 Update (Universal)
    Security Update 2008-002 (Universal)
    AirPort Extreme Update 2008-001

    This machine (running 10.4.11, fully updated now) is my connection-sharing gateway the internet for my wife's MacBook, a Linux box and a TiVo unit.

    Comcast ==(ethernet)== public-IP iMac ==(wireless)== private IP MacBook, Linux, TiVo

    I ran my usual firewall + Internet sharing script after the mandatory reboot.
    The iMac's broadband connection worked fine for local programs (Safari, ssh) but none of the machines with private IP addresses on the LAN could see the outside world. The machines on the home LAN could see each other fine -- ping, ssh, etc. Time to start testing!

    When I pinged an external machine from the Linux machine, the DNS lookup succeeded after a delay, but it seemed that no ICMP responses came back. Actually, packet tracing with Wireshark showed that the responses had come in with an extra four-byte header field I had not seen before: something called "802.1Q Virtual Lan" inserted between the Ethernet II header and the Internet Protocol header. Sample packet dump (slightly edited):

    --
    No.:20
    Time:00:04:56.746703
    Source:64.233.187.99
    Destination:192.168.1.2
    Protocol:ICMP
    Info:Echo (ping) reply

    Frame 20 (102 bytes on wire, 102 bytes captured)
    Ethernet II, Src: AppleCom_54:1b:30 (00:17:f2:54:1b:30), Dst: FirstInt_94:75:8f (00:40:ca:94:75:8f)
    *802.1Q Virtual LAN*
    *001. .... .... .... = Priority: 1*
    *...0 .... .... .... = CFI: 0*
    *.... 0000 0000 0000 = ID: 0*
    *Type: IP (0x0800)*
    Internet Protocol, Src: 64.233.187.99 (64.233.187.99), Dst: 192.168.1.2 (192.168.1.2)
    Internet Control Message Protocol
    --

    Looking further back in the trace, it turned out that the DNS delay had the same oddity. The Linux machine sent out a request to the primary DNS server, got back an immediate response with the extra "802.1Q" field, waited 5 seconds, sent out a DNS request to the secondary server, got an immediate normal response (without "802.1Q"), then immediately used the returned numeric address for the pings. It's as if the Linux machine ignored the packet with the extra, interposed header.

    I traced HTTP traffic to google.com and saw a similar pattern:
    1. bogus 1st DNS response
    2. delay
    3. good second DNS response
    4. sent HTTP SYN packet
    5. got back HTTP SYN/ACK with extra "802.1Q" field
    6. multiple retries of steps 4 and 5.

    I suspect that one or more of the software updates is inserting this VLAN stuff into NAT-ed packets over Airport. The receiving machines drop the packets because they expect the Ethernet II header to be followed by the IP header, not 802.1Q data.

    An old discussion thread ([VOIP VLAN using 802.1q frames causing massive dropped packets|http://discussions.apple.com/thread.jspa?threadID=378673#1833386]) talked about a similar problem.

    Here are the NAT-related commands from my firewall script:
    natd -u -dynamic -interface en0
    /sbin/ipfw add divert natd all from not me to any via en0
    sysctl -w net.inet.ip.forwarding=1

    Question: is there a known workaround to get the MacOSX network drivers not to insert 802.1Q VLAN headers?
    Thanks in advance!
    --GCL

  • RELEVANCY SCORE 2.29

    DB:2.29:Decoder Packet Drops And Throttling aa



    I've been getting a lot of questions lately about how to prevent Decoder packet drops when a Spectrum is added to the environment. If the Decoder does not drop when Spectrum is not running, but starts dropping when Spectrum (or even Visualize) requests content from that Decoder, then there is a setting that will help.

    /sdk/config/packet.read.throttle

    This setting is normally off (zero). But if Spectrum is causing drops, it should be enabled (a value of 1). The change takes effect on the next Spectrum request. If a value of 1 does not prevent drops, try increasing the value until it does work, up to the maximum of 100.

    FAQ

    Will this setting prevent drops? There's no guarantee it can prevent all drops. If the Decoder packet writes are already pushing the hardware (disk spindles) to the limit, this setting will probably not prevent all packet drops. But it should help. Spectrum naturally wants to read packets from the disk, which will cause the platter heads to seek to other locations on disk. This naturally will cause the next packet write to take longer as the disk head will seek back to the place it originally was to write the next packet. Normally, this kind of churn does not cause writes to back up because of buffering, but if the write speeds are so fast that it doesn't leave a lot of room for the additional seek time, the write thread will start to back up and eventually it will cause packets to drop in the capture thread. Even if it doesn't prevent all drops, it will help.

    Will enabling this slow Spectrum? To some degree yes. Throttling does not take place unless it detects the packet write thread is backing up. However, when throttling happens, it slows down packet reads and it will take longer to respond to Spectrum's content requests.

    Is there a downside to just setting it all the way to 100? Yes, do not enable it if you are not having issues. Any non-zero value will cause all packet requests to enter a queue to be serviced one at a time, *even* if the write thread is not backed up. So just enabling it will slow down concurrent content requests regardless if packet writes are backing up. The difference between a value of 1 and a value of 100 is higher numbers cause slower packet reads. If a value of 1 suffices to prevent drops, then Spectrum will run somewhat faster than if it is set to 100, assuming throttling is happening.

    Does it affect query speeds? No. Queries are normally handled by a Concentrator, not a Decoder. Regardless, queries do not touch the packet db and are not affected by packet throttling.

    What SDK calls are affected? There are only 3 SDK calls that are effected by throttling: packets, content and search. Search is only affected if you want to do a regex on a session's packets.

    Hope this helps. Feel free to ask any questions or ask for clarification on anything I've written by responding to this post.

    Thanks,

    Scott

    DB:2.29:Decoder Packet Drops And Throttling aa


    Great info! As a best practice, you can properly tune your Spectrum too so it doesn't hammer the decoders extracting all the packets. One way you can tune is to simply let Spectrum run for a few hours, then disconnect from the stack while analysis is performed and internal servers are filtered and whitelisted. Then when the Spectrum is readded, the impact will be much less.

  • RELEVANCY SCORE 2.29

    DB:2.29:Router Cant Sent Packet Back To The User Pc 9k



    i had create a planning amp; design using packet tracer 6.0 but the pc just only can sent packet to the router and the router cant send packet to pc back....i need someone that cant troubleshoot my problem..pm me a email so i can sent my save file...URGENT!!

    ---

    Posted by WebUser ???? ?????????? from Cisco Support Community App

    DB:2.29:Router Cant Sent Packet Back To The User Pc 9k


    Hello,

    If you are not able to ping then please enable debug ip icmp on your router and paste the debug logs in this forum, so that we can come to know what exactly is the issue.

    and please check if you have disabled your PC firewall.

  • RELEVANCY SCORE 2.29

    DB:2.29:[Solved] Problem While Installing Jdk From Aur 8f



    Hello

    Im trying to install jdk for AUR but I get this error:
    jdk1.7.0_09/db/bin/NetworkServerControl: Write failed
    jdk1.7.0_09/db/bin/setEmbeddedCP: Write failed
    jdk1.7.0_09/db/bin/ij.bat: Write failed
    jdk1.7.0_09/db/bin/dblook.bat: Write failed
    jdk1.7.0_09/db/bin/setNetworkClientCP.bat: Write failed
    jdk1.7.0_09/db/bin/sysinfo: Write failed
    jdk1.7.0_09/db/bin/setEmbeddedCP.bat: Write failed
    jdk1.7.0_09/db/bin/stopNetworkServer.bat: Write failed
    jdk1.7.0_09/db/bin/startNetworkServer.bat: Write failed
    jdk1.7.0_09/db/bin/stopNetworkServer: Write failed
    jdk1.7.0_09/db/bin/sysinfo.bat: Write failed
    jdk1.7.0_09/db/bin/ij: Write failed
    jdk1.7.0_09/db/bin/NetworkServerControl.bat: Write failed
    jdk1.7.0_09/release: Write failed
    jdk1.7.0_09/COPYRIGHT: Write failed
    jdk1.7.0_09/include/classfile_constants.h: Write failed
    jdk1.7.0_09/include/linux/jawt_md.h: Write failed
    jdk1.7.0_09/include/linux/jni_md.h: Write failed
    jdk1.7.0_09/include/jdwpTransport.h: Write failed
    jdk1.7.0_09/include/jvmti.h: Write failed
    jdk1.7.0_09/include/jvmticmlr.h: Write failed
    jdk1.7.0_09/include/jni.h: Write failed
    jdk1.7.0_09/include/jawt.h: Write failed
    bsdtar: Error exit delayed from previous errors.
    == ERRORE: Impossibile estrarre jdk-7u9-linux-i586.tar.gz
    Loperazione sta per essere interrotta...
    == ERRORE: Makepkg non è riuscito a compilare jdk.

    DB:2.29:[Solved] Problem While Installing Jdk From Aur 8f


    I solved in this way: https://bbs.archlinux.org/viewtopic.php … 9#p1058749

  • RELEVANCY SCORE 2.28

    DB:2.28:Thread: Packet Trace: Lots Of Duplicate Ack Or Acked Lost Segment dc


    I was playing with ethereal by doing some tests on our network and I realised that when I read a big file from a NW6.5SP5 server I get a lot of Duplicate Ack and when I write the same file back to the server I get a lot of Bad checksum/Detected New server session. When I disable the checksum verification in ethereal the error transforms in Acked lost segment.

    Is that something to worry about ?

    Thanks,

    Antonio

    DB:2.28:Thread: Packet Trace: Lots Of Duplicate Ack Or Acked Lost Segment dc

    A figure that low probably means that there is no issue on the server,

    but that some clients connected to the server have a problem.

    Example 100 PCs attach to the server.

    99 PCs have no problems and do not drop packets.

    1 PC losses 1/2 its packets and they must be retransmitted.

    As a result 0.5% of the packets are retransmitted.

    Try copying a large file to and from the server a few different times on

    some workstations. In general, the speed will be far greater on PCs w/o

    issues than PCs with issues. This is a test I often have front-line

    techs do since they are not trained enough for higher level analysis.

    Antonio Saraca wrote:

    By doing some more research, I realized that on one server (using

    tcpcon) I have 0.4% of packets that are retransmitted (this is our main

    server). On other servers, this percentage can go as low as 0.06%. Is

    0.4% a problem ? What can I do to decrease this value ?

    -' + '-

    Craig Wilson

    Novell Product Support Forum Sysop

    Master CNE, MCSE 2003, CCN

  • RELEVANCY SCORE 2.28

    DB:2.28:How To Send My Buffer With Wfp? fp


    I want to monitor the tcp/udp packet, when i got a packet is dns request.
    i will send a packet back for respond the dns request.
    my quest is: i dont know how to send back the dns request packet by WFP.

    DB:2.28:How To Send My Buffer With Wfp? fp

    You will need to implement a callout driver. Essentially you will have a filter which references the callout @ FWPM_LAYER_INBOUND_TRANSPORT_V{4 / 6}. this filter should be specific to DNS request packets (port 53). In your callout you will
    drop this packet, allocate a new NBL, populate it with all of the DNS information, call FwpsConstructIPHeaderForTransportPacket0() to create the IPHeader and calculate the checksums, then call FwpsInjectNetworkSendAsync, to inject the new packet back out.
    Hope this helps,Dusty Harper [MSFT]
    Microsoft Corporation
    ------------------------------------------------------------
    This posting is provided AS IS, with NO warranties and confers NO rights
    ------------------------------------------------------------

  • RELEVANCY SCORE 2.28

    DB:2.28:Readfile For Serial Port Coms Returning 0 Bytes Read 8m


    Hi guys,Initially apologies if this thread is in the wrong place, my bad. The ReadFile function is currently causing me a massive head ache so I hope someone can point out what I'm doing wrong, no doubt a school boy error. I am currently in the process of producing a DLL which will either read/write from/to a specified Special Funtions Register(s) within my uprocessor. I have succcessfully created the handle to a com port:handle_to_com_port = CreateFile( pcCommPort,GENERIC_READ | GENERIC_WRITE,0,NULL,OPEN_EXISTING,0,NULL);through which I am able to write the necessary packet (1byte write instruction, 2bytes SFR address, 2bytes data):tx_res = WriteFile(handle_to_com_port,bit_array,data_bytes_to_write,data_bytes_written,NULL);and have confirmed that the data that I have written has been loaded into the specified address on the uprocessor, happy days so far, my issue is when I try and read data back from the uprocessor as I am having to emulate an SPI bus. Therefore to get data out of the chip I need to provide the chip select and clock lines, therefore requiring me to perform a write (1byte read instruction, 2bytes SFR address, 2bytes dont care) prior to my read in order to clock out the required response (2bytes dont care, 1byte read instruction echo, 1byte SFR address, 1byte data @ address).  I have a legacy GUI written in VB which I have used to verify my embedded code and can confirm that it reads back the value at the specified address. I have also scoped up the relivant lines and can confirm that the traces are identical using the VB GUI and my DLL thus the data is being clocked out correctly unfotunately however once I've performed the ReadFile, the lpNumberOfBytesRead variable == 0 as is every element within the array that I've specified as the buffer to receive my data despite rx_res == 1;/* code to encapsulate data into SPI emulator protocol included here */tx_res = WriteFile(handle_to_com_port,bit_array,data_bytes_to_write,data_bytes_written,NULL);if(!tx_res){        printf (WriteFile failed with error %d.\n, GetLastError());        // Handle the error.}else{            rx_res = ReadFile(handle_to_com_port,rx_data,dwToRead,dwRead,NULL);      if(!rx_res)        {            printf (ReadFile failed with error %d.\n, GetLastError());        // Handle the error.        }        else        {            printf (Data received %d.\n, res);        // Handle the error.        }}where data_bytes_to_write dwToRead == 126.Any suggestions would be gratefully recieved as I'm rapidly running out of ideas. Many thanks digi

    DB:2.28:Readfile For Serial Port Coms Returning 0 Bytes Read 8m

    Hi,I am glad to hear you problem has been resolved!!Thanks,Suman

  • RELEVANCY SCORE 2.28

    DB:2.28:Plesk Api Issue 8a





    Hello, Im sending this XML:

    packet version=1.6.3.0
    webspace
    add
    gen_setup
    nameBasic.com/name
    owner-loginstevelow/owner-login
    htypevrt_hst/htype
    ip_address20.14.25.2/ip_address
    status0/status
    /gen_setup
    hosting
    vrt_hst
    property
    nameftp_login/name
    valueftp16se4fdf0/value
    /property
    property
    nameftp_password/name
    valueqweqwe/value
    /property
    ip_address20.14.25.2/ip_address
    /vrt_hst
    /hosting
    plan-nameBasic/plan-name
    /add
    /webspace
    /packet

    And getting this back:

    ?xml version=1.0 encoding=UTF-8?packet version=1.6.3.0webspaceaddresultstatuserror/statuserrcode1023/errcodeerrtextUnable to accept the template: the following limitations are exceeded.
    Description Requested Allowed
    Webmail Horde IMP None
    Retain web and traffic statistics 3 6/errtext/result/add/webspace/packet

    How should I write my XML to set webmail to horde and web stats to 6?

    DB:2.28:Plesk Api Issue 8a




    PPadron, I was thinking I could do that, but of course using the XML API seems like the right way.

  • RELEVANCY SCORE 2.28

    DB:2.28:Authentication Failed 11014 Radius Packet Contain Invalid Attribute 9x



    Hello

    I have a failed authentication between SW 2960 and ISE 1.1.1 so when i put show authentication session on Switch all port are successfully authenticated (mab and 802.1x) but on ISE Monitor its display that The Authentication failed

    Regards

    DB:2.28:Authentication Failed 11014 Radius Packet Contain Invalid Attribute 9x


    Hello

    I have a failed authentication between SW 2960 and ISE 1.1.1 so when i put show authentication session on Switch all port are successfully authenticated (mab and 802.1x) but on ISE Monitor its display that The Authentication failed

    Regards

  • RELEVANCY SCORE 2.28

    DB:2.28:Sending Message From Server To Client (In Nio) 8d


    Hi All,
    Through NIO, i am able to receive a packet from the device and change the ops key from read to write, to respond back to the device. But the problem starts when i ve to send a packet to the device after processing it. After some time if i don recive a message, i m suppose to send a message back to the device. But this architecture only supports when v receive a message. So could anyone help me out, even if i don receive any message from the device, how can i send a message back to device.
    Thanks
    Sunil A K

    DB:2.28:Sending Message From Server To Client (In Nio) 8d

    Use a select timeout of the appropriate length. If it expires, OP_READ hasn't fired, and select(timeout) will return with a zero value.

  • RELEVANCY SCORE 2.28

    DB:2.28:(Sp-Security-Failed) ms



    Hi Folks

    I Used the the packet tracer command line interface, i have seen the below line,what is mean?

    Drop-reason: (sp-security-failed) Slowpath security checks failed

  • RELEVANCY SCORE 2.27

    DB:2.27:Cisco Asa (8.3) - Packet Tracer / Multi Context Classification 9x



    Hi,

    I've been using packet-tracer for some time on and off with mixed results.

    I'm running a multi context firewall with over 10 of the contexts sharing the same outside interface / network.

    All interfaces obviously have valid, unique IPs and also unique MAC addresses as mac-address auto is enabled in the system context.

    This is an ASA 5550 running 8.3(2.10) interim so includes the fix for the well known packet-tracer classication failed bug.

    So in theory, with firewall contexts on a shared interface the ASA should use the firewall MAC address to classify incoming traffic to the correct firewall and as far as I am aware, only fall back on using NAT to classify if the interface MACs are the same. In reality on my platform this doesn't seem to be happening and the classifier is using NAT to determine the destination context. I'm seeing this with live traffic (i.e. not generated by packet-tracer) in logs and can prove it by disabling certain NAT rules (there is some overlap with the IP addressing behind each firewall).

    My question regarding packet tracer is this - in the above scenario with a shared outside interface, does packet tracer ALWAYS use NAT to determine the destination context? Or does packet tracer look up the MAC address of the ingress interface according to what context you are running packet tracer from? It appears that packet-tracer is using NAT in my case which could be just symptomatic of the potential bug I've described above rather than by design.

    I've trawled the forums for an answer to this and haven't found one - not sure if this is a question for TAC/Developers?

    Cheers

    Paul

    DB:2.27:Cisco Asa (8.3) - Packet Tracer / Multi Context Classification 9x


    Thanks Mike

    Good to get confirmation of my suspicions. I wasn't aware of the 'any' NAT bug so that's good to know.

    Cheers

    Paul

    Sent from Cisco Technical Support iPhone App

  • RELEVANCY SCORE 2.27

    DB:2.27:Thread: 420 Tcp Write Errors On Emails With Attachments pf


    I really need help on this one.

    We\'re running GW7SP1 on NetWare 6.5 SP6 and about 3 weeks ago I had to

    reinstall our GWIA due to other ongoing issues. Since then, we have

    noticed a lot of emails that get bounced back to the user with 420 TCP

    Write errors. I\'ve discovered that there is a pattern to it. For example,

    yesterday I tried sending emails to my home account. They all went through

    except the one with a 3MB attachment. In researching this issue, it sounds

    like most 420\'s are due to network connectivity/communication issues. I

    think I have ruled out our infrastructure (switches, routers, ISP, etc.)

    from being the culprit. Today I ran up the SMTP service on a M$ server

    that is on the same subnet as the server that runs our GWIA and was able

    to successfully send the email with the 3MB attachment. (I also tried

    resending the same attachment from GW at the same time and it again failed

    again with the 420). Our server has the latest LAN driver (which came with

    SP6) and I\'ve compared the max physical packet size to our other NetWare

    servers and they are the same.

    What else can I do to troubleshoot this problem???

    Help!!!

    -Marc Johnson

    DB:2.27:Thread: 420 Tcp Write Errors On Emails With Attachments pf

    Hi,

    Marc Johnson wrote:

    Massimo,

    I ran a trace using PKTSCAN, but I am at a loss on how to interpret

    the results. I looked at the readme but it simply explains how to run

    it. Looks like you can get quite a bit of detail, but unfortunately, I

    can make sense of it.

    Can you upload it somewhere?

    CU,

    -' + '-

    Massimo Rosen

    Novell Product Support Forum Sysop

    No emails please!

    http://www.cfc-it.de

  • RELEVANCY SCORE 2.27

    DB:2.27:Dag And Firewall: Can Inbound Traffic Be Natd To Ip Of Dag In Absence Of A Nlb? za


    I have two EX2010 servers in my lab. They are both running MB/HU/CAS. I have an ASA 5505 firewall connecting them to the Web. I do not have any kind of a load balance device setup at all. My question is around what to NAT on the firewall? Right now
    I have inbound smtp and https NAT'd to the current active server. But if that failed then Internet based mail delivery would fail also until I changed the target of the NAT. So I thought maybe I could just NAT to the ip of the DAG? I set it up, and it didn't
    work, so I quickly changed it back. But one thing I did notice was that I was able to use the ip of the DAG on an internal OWA browser connection with no issue. So now I am thinking maybe I just did something wrong and it might work after all. Having
    to change the firewall each time I fail the db around would be kind of annoying.

    Thanks

    DB:2.27:Dag And Firewall: Can Inbound Traffic Be Natd To Ip Of Dag In Absence Of A Nlb? za


    That sounds like it would work great internally, but I cannot use a fqdn in a ASA NAT command.

    And I think with my setup, that WNLB is not an option. If I understand correctly WNLB cannot be used when the Hub Transport and Mailbox roles exist on the same server?

    So that means then if I had one server die, then I would need to change my NAT commands on the firewall.

    WNLB can not be installed on any server that is also in the DAG, correct.
    IF you separate the CAS roles from the MBX, then you can install WNLB on the CAS
    Twitter!: Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied.

  • RELEVANCY SCORE 2.27

    DB:2.27:Port Forward (Pat) Version 8.6 - Public Ip Is Presented To Server Insted Of Natd Ip dp



    I All

    I'm trying to do a simple port forward on an ASA 5515-x software version 8.6(1)

    Outside interface:

    name-if: outside-gc

    ip: 77.243.x.x

    Inside interface:

    name-if: inside

    ip: 10.31.45.4

    inside lan = 10.31.0.0/16

    route table:

    route outside-gc 0.0.0.0 0.0.0.0 77.243..x.x 1 1

    route inside 10.31.0.0 255.255.0.0 10.31.45.1 1

    Inside server:

    Ip: 10.31.48.96 - ASA can ping this server (routing is working)

    ----

    Nat/pat setup:

    object network JV-LAN-WWW

    subnet 10.31.0.0 255.255.0.0

    nat (inside,outside-gc) dynamic interface (inside hosts overload outside-gc interface ip - its working..)

    Port Forwarding:

    object network obj-10.31.48.96

    nat (any,outside-gc) static interface service tcp 3389 3389

    access-list Outside_access_in extended permit tcp any host 10.31.48.96 eq 3389

    The above configuration should port forward tcp 3389 to inside server 10.31.48.96 - but insted of showing the asa inside IP (10.31.45.4) to the server - it shows the public ip of the client trying to access outside-gc:3389 - since the inside server don't know how to route back to the requester public ip there will be a SYN timeout on the syslog on the ASA.

    Why is the ASA show the public ip of the requester insted of it inside interface with a randon port number to the inside server??

    SYSLOG:

    6    Oct 10 2012    03:48:50    302013    2.128.149.39    39499    10.31.48.96    3389    Built inbound TCP connection 27750 for outside-gc:2.128.149.39/39499 (2.128.149.39/39499) to inside:10.31.48.96/3389 (77.243.x.x/3389)

    6    Oct 10 2012    03:49:20    302014    2.128.149.39    39499    10.31.48.96    3389    Teardown TCP connection 27750 for outside-gc:2.128.149.39/39499 to inside:10.31.48.96/3389 duration 0:00:30 bytes 0 SYN Timeout

    Capture from server:

    92    12:35:39 10-10-2012    1.9467066       2.128.149.39    10.31.48.96    TCP    TCP:Flags=......S., SrcPort=46898, DstPort=MS WBT Server(3389), PayloadLen=0, Seq=3177959598, Ack=0, Win=8192 ( Negotiating scale factor 0x8 ) = 8192    {TCP:17, IPv4:37}

    93    12:35:39 10-10-2012    1.9467647        10.31.48.96    2.128.149.39    TCP    TCP:Flags=...A..S., SrcPort=MS WBT Server(3389), DstPort=46898, PayloadLen=0, Seq=2002762895, Ack=3177959599, Win=8192 ( Negotiated scale factor 0x8 ) = 2097152    {TCP:17, IPv4:37}

    If the TCP 3389 packet to the server was comming from 10.31.45.4:xxx the server would know how to route back and it would work..

    What do I do wrong?

    Regards, Steffen

  • RELEVANCY SCORE 2.26

    DB:2.26:Mds-9513 Error Message Daemon-2-System_Msg: Fatal: Write Failed: pa



    Hello all,

    I was hoping someone out there might have seen this error before that I'm seeing on my switch running at 4.2(3).

    In the show logging log:

    2013 Jun 27 10:58:43 dldn0804psw %DAEMON-2-SYSTEM_MSG: fatal: Write failed: Connection reset by peer length of packet causing error 136 136  - sshd[19771]

    I cannot find an explination for the cause of this alert or what the implications are.

    Any input would be much appreciated.

    Peter

    DB:2.26:Mds-9513 Error Message Daemon-2-System_Msg: Fatal: Write Failed: pa


    Hello,

    the bug I have mentioned is for Product Nexus 7000 and not MDS but the errors are almost exact

    CSCta10776 Bug Details
    Status

    Fixed

    (Resolved)

    Severity

    3 - moderate

    Last Modified

    In Last Year

    Product

    Cisco Nexus 7000 Series Switches

    Technology

    1st Found-In

    4.1(4)

    Fixed-In

    4.2(1)

    5.0(0.153)

    5.0(0.156)

    5.0(1)

    4.2(0.247)

    4.2(1)N1(1)

    Component(s)

    security

    Syslog message displayed when sshd session to NXOS platform is abruptlyinterrupted and NXOS fails to record the IP address for the syslog function.

    Symptom:%DAEMON-2-SYSTEM_MSG: fatal: Write failed: Broken pipe length of packet causingerror 140 140 - sshd[14913]

    Workaround(s):

    None at this time. The log message is not indicative of any known serious issue.

    My MDS is running at NX-OS 4.2(3)

    I

  • RELEVANCY SCORE 2.26

    DB:2.26:Catalyst 3560 Poe Port Asic Port Loopback Test Issue 3j



    Hi,

    We have a switchports issue in this specific switch, wherein some switchports cannot be

    turned on.  Whenever we try to perform a (shut/no shut) on the interface, it shows this

    message:----------------Fa0/1 can't be brought up because it failed POST in loopback test----------------We also tried to 'reload' this switch, but still those switchports remains down. When we

    transfer a device from a defective switchport to a working switchport, the device is working

    fine.  Thus, the phsyical connection or host set-up is OK.

    Here's the output from "sh post" command:

    ----------------Stored system POST messages:

    Switch 1---------

    POST: CPU MIC register Tests : BeginPOST: CPU MIC register Tests : End, Status Passed

    POST: PortASIC Memory Tests : BeginPOST: PortASIC Memory Tests : End, Status Passed

    POST: CPU MIC PortASIC interface Loopback Tests : BeginPOST: CPU MIC PortASIC interface Loopback Tests : End, Status Passed

    POST: PortASIC RingLoopback Tests : BeginPOST: PortASIC RingLoopback Tests : End, Status Passed

    POST: Inline Power Controller Tests : BeginPOST: Inline Power Controller Tests : End, Status Passed

    POST: PortASIC CAM Subsystem Tests : BeginPOST: PortASIC CAM Subsystem Tests : End, Status Passed

    POST: PortASIC Port Loopback Tests : BeginPOST: Failed PortMacLoopback Packet Receive asic_index 1 port_hardware_index 2POST: Failed PortMacLoopback Packet Receive asic_index 1 port_hardware_index 3POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 2POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 3POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 4POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 5POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 10POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 11POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 12POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 13POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 18POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 19POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 20POST: Failed PortPhiLoopback Packet Test asic_index 1 port_hardware_index 21POST: PortASIC Port Loopback Tests : End, Status Passed----------------

    Thanks in advance for your replies.

    Brgds,

    DB:2.26:Catalyst 3560 Poe Port Asic Port Loopback Test Issue 3j


    Hi Frank,

    By Mistake posted in wrong forum. Any ways, opened a TAC case for the RMA. Thanks for your reply.

    B.Rgds

  • RELEVANCY SCORE 2.26

    DB:2.26:Wrvs4400n And Quickvpn Problem ms



    Hi!

    I bought a router Cisco WRVS4400N Wireless-N Gigabit Security Router - VPN v2.0 with the intention of using with the QuickVPN Clien for connecting to my home network.

    My home network is connected to a pre provide by my ISP Thomson TG784 and is connected to it but all my main network is controlled by the WRVS4400N, I have forward all the doors, as you can see by the log part below, and by analysing the log you can see that I can't get any PING to complete the VPN connection, can you help me?

    OS is windows 7

    QuickVPN Clien is 1.4.2.1

    WRVS4400N firmware is v2.0.2.1

    Thomson TG784 firmware is 8.4.2.Q

    I would appreciate the help you could give me since this works or should work as my support way from home and i have important documents and programs to accessed, I thought this would be easier.

    Any more details please just ask.

    Log from QuickVPN

    2012/01/11 19:44:03 [STATUS]One network interface detected with IP address 192.165.0.196

    2012/01/11 19:44:03 [STATUS]Connecting...

    2012/01/11 19:44:03 [DEBUG]Input VPN Server Address = husportugal.dnsalias.com

    2012/01/11 19:44:03 [STATUS]OS Version: Windows 7

    2012/01/11 19:44:03 [STATUS]Windows Firewall Domain Profile Settings:  OFF

    2012/01/11 19:44:03 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:44:03 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:44:05 [STATUS]Connecting to remote gateway with IP address: 188.82.148.228

    2012/01/11 19:44:11 [STATUS]Remote gateway was reached by https ...

    2012/01/11 19:44:11 [STATUS]Provisioning...

    2012/01/11 19:44:23 [STATUS]Success to connect.

    2012/01/11 19:44:23 [STATUS]Tunnel is configured. Ping test is about to start.

    2012/01/11 19:44:23 [STATUS]Verifying Network...

    2012/01/11 19:44:29 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:32 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:35 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:38 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:41 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:46 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:45:04 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:07 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:10 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:13 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:16 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:23 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:45:25 [STATUS]Disconnecting...

    2012/01/11 19:45:33 [STATUS]Success to disconnect.

    2012/01/11 19:48:05 [STATUS]OS Version: Windows 7

    2012/01/11 19:48:05 [STATUS]Windows Firewall Domain Profile Settings: ON

    2012/01/11 19:48:05 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:48:05 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:48:06 [STATUS]One network interface detected with IP address 192.165.0.196

    2012/01/11 19:48:06 [STATUS]Connecting...

    2012/01/11 19:48:06 [DEBUG]Input VPN Server Address = husportugal.dnsalias.com

    2012/01/11 19:48:08 [STATUS]Connecting to remote gateway with IP address: 188.82.148.228

    2012/01/11 19:48:13 [STATUS]Remote gateway was reached by https ...

    2012/01/11 19:48:13 [STATUS]Provisioning...

    2012/01/11 19:48:26 [STATUS]Success to connect.

    2012/01/11 19:48:26 [STATUS]Tunnel is configured. Ping test is about to start.

    2012/01/11 19:48:26 [STATUS]Verifying Network...

    2012/01/11 19:48:32 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:35 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:38 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:41 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:44 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:49 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:50:13 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:16 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:19 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:22 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:25 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:31 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:50:35 [STATUS]Disconnecting...

    2012/01/11 19:50:44 [STATUS]Success to disconnect.

    2012/01/11 19:51:40 [STATUS]OS Version: Windows 7

    2012/01/11 19:51:40 [STATUS]Windows Firewall Domain Profile Settings: ON

    2012/01/11 19:51:40 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:51:40 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:51:40 [STATUS]One network interface detected with IP address 192.165.0.196

    2012/01/11 19:51:40 [STATUS]Connecting...

    2012/01/11 19:51:40 [DEBUG]Input VPN Server Address = husportugal.dnsalias.com

    2012/01/11 19:51:41 [STATUS]Connecting to remote gateway with IP address: 188.82.148.228

    2012/01/11 19:51:45 [STATUS]Remote gateway was reached by https ...

    2012/01/11 19:51:45 [STATUS]Provisioning...

    2012/01/11 19:51:57 [STATUS]Success to connect.

    2012/01/11 19:51:57 [STATUS]Tunnel is configured. Ping test is about to start.

    2012/01/11 19:51:57 [STATUS]Verifying Network...

    2012/01/11 19:52:02 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:05 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:08 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:11 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:14 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:20 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:54:29 [STATUS]Disconnecting...

    2012/01/11 19:54:38 [STATUS]Success to disconnect.

    Final message

    Log from WRVS4400N

    Jan 15 10:12:53 - [VPN Log]: added connection description "Casa_rw_rw"

    Jan 15 10:12:54 - [VPN Log]: listening for IKE messages

    Jan 15 10:12:54 - [VPN Log]: forgetting secrets

    Jan 15 10:12:54 - [VPN Log]: loading secrets from "/etc/ipsec.secrets"

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000008]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [RFC 3947]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [FRAGMENTATION]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring unknown Vendor ID payload [fb1de3cdf341b7ea16b7e5be0855f120]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [Vid-Initial-Contact]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring unknown Vendor ID payload [e3a5966a76379fe707228231e5ce8652]

    Jan 15 10:13:06 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: responding to Main Mode from unknown peer 81.166.45.217

    Jan 15 10:13:06 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: transition from state STATE_MAIN_R0 to state STATE_MAIN_R1

    Jan 15 10:13:06 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: STATE_MAIN_R1: sent MR1, expecting MI2

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: STATE_MAIN_R2: sent MR2, expecting MI3

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: Main mode peer ID is ID_IPV4_ADDR: '192.165.0.181'

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: deleting connection "Casa_rw_rw" instance with peer 81.166.45.217 {isakmp=#0/ipsec=#0}

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: I did not send a certificate because I do not have one.

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1024}

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: responding to Quick Mode {msgid:01000000}

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: transition from state STATE_QUICK_R0 to state STATE_QUICK_R1

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2

    Jan 15 10:13:09 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: route-client output: 0

    Jan 15 10:13:09 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2

    Jan 15 10:13:09 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: STATE_QUICK_R2: IPsec SA established {ESP=0xbc07c0e1 0xd7ef396d xfrm=3DES_0-HMAC_MD5 NATD=none DPD=none}

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: received Delete SA(0xbc07c0e1) payload: deleting IPSEC State #6

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: terminating SAs using this connection

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw" #6: deleting state (STATE_QUICK_R2)

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw" #5: deleting state (STATE_MAIN_R3)

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217: deleting connection "Casa_rw_rw" instance with peer 81.166.45.217 {isakmp=#0/ipsec=#0}

    Jan 15 10:13:30 - [VPN Log]: "Casa_rw_rw": unroute-client output: 0

    Jan 15 10:13:30 - [VPN Log]: packet from 81.166.45.217:50827: received and ignored informational message

    Jan 15 10:13:30 - [VPN Log]: packet from 81.166.45.217:50827: Informational Exchange is for an unknown (expired?) SA

    Jan 15 10:13:31 - [VPN Log]: "Casa_rw_rw": deleting connection 

    If someone could help me...

    Thank you,

    Alex

    DB:2.26:Wrvs4400n And Quickvpn Problem ms


    Hi!

    I bought a router Cisco WRVS4400N Wireless-N Gigabit Security Router - VPN v2.0 with the intention of using with the QuickVPN Clien for connecting to my home network.

    My home network is connected to a pre provide by my ISP Thomson TG784 and is connected to it but all my main network is controlled by the WRVS4400N, I have forward all the doors, as you can see by the log part below, and by analysing the log you can see that I can't get any PING to complete the VPN connection, can you help me?

    OS is windows 7

    QuickVPN Clien is 1.4.2.1

    WRVS4400N firmware is v2.0.2.1

    Thomson TG784 firmware is 8.4.2.Q

    I would appreciate the help you could give me since this works or should work as my support way from home and i have important documents and programs to accessed, I thought this would be easier.

    Any more details please just ask.

    Log from QuickVPN

    2012/01/11 19:44:03 [STATUS]One network interface detected with IP address 192.165.0.196

    2012/01/11 19:44:03 [STATUS]Connecting...

    2012/01/11 19:44:03 [DEBUG]Input VPN Server Address = husportugal.dnsalias.com

    2012/01/11 19:44:03 [STATUS]OS Version: Windows 7

    2012/01/11 19:44:03 [STATUS]Windows Firewall Domain Profile Settings:  OFF

    2012/01/11 19:44:03 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:44:03 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:44:05 [STATUS]Connecting to remote gateway with IP address: 188.82.148.228

    2012/01/11 19:44:11 [STATUS]Remote gateway was reached by https ...

    2012/01/11 19:44:11 [STATUS]Provisioning...

    2012/01/11 19:44:23 [STATUS]Success to connect.

    2012/01/11 19:44:23 [STATUS]Tunnel is configured. Ping test is about to start.

    2012/01/11 19:44:23 [STATUS]Verifying Network...

    2012/01/11 19:44:29 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:32 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:35 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:38 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:41 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:44:46 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:45:04 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:07 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:10 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:13 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:16 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:45:23 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:45:25 [STATUS]Disconnecting...

    2012/01/11 19:45:33 [STATUS]Success to disconnect.

    2012/01/11 19:48:05 [STATUS]OS Version: Windows 7

    2012/01/11 19:48:05 [STATUS]Windows Firewall Domain Profile Settings: ON

    2012/01/11 19:48:05 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:48:05 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:48:06 [STATUS]One network interface detected with IP address 192.165.0.196

    2012/01/11 19:48:06 [STATUS]Connecting...

    2012/01/11 19:48:06 [DEBUG]Input VPN Server Address = husportugal.dnsalias.com

    2012/01/11 19:48:08 [STATUS]Connecting to remote gateway with IP address: 188.82.148.228

    2012/01/11 19:48:13 [STATUS]Remote gateway was reached by https ...

    2012/01/11 19:48:13 [STATUS]Provisioning...

    2012/01/11 19:48:26 [STATUS]Success to connect.

    2012/01/11 19:48:26 [STATUS]Tunnel is configured. Ping test is about to start.

    2012/01/11 19:48:26 [STATUS]Verifying Network...

    2012/01/11 19:48:32 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:35 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:38 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:41 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:44 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:48:49 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:50:13 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:16 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:19 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:22 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:25 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:50:31 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:50:35 [STATUS]Disconnecting...

    2012/01/11 19:50:44 [STATUS]Success to disconnect.

    2012/01/11 19:51:40 [STATUS]OS Version: Windows 7

    2012/01/11 19:51:40 [STATUS]Windows Firewall Domain Profile Settings: ON

    2012/01/11 19:51:40 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:51:40 [STATUS]Windows Firewall Private Profile Settings: ON

    2012/01/11 19:51:40 [STATUS]One network interface detected with IP address 192.165.0.196

    2012/01/11 19:51:40 [STATUS]Connecting...

    2012/01/11 19:51:40 [DEBUG]Input VPN Server Address = husportugal.dnsalias.com

    2012/01/11 19:51:41 [STATUS]Connecting to remote gateway with IP address: 188.82.148.228

    2012/01/11 19:51:45 [STATUS]Remote gateway was reached by https ...

    2012/01/11 19:51:45 [STATUS]Provisioning...

    2012/01/11 19:51:57 [STATUS]Success to connect.

    2012/01/11 19:51:57 [STATUS]Tunnel is configured. Ping test is about to start.

    2012/01/11 19:51:57 [STATUS]Verifying Network...

    2012/01/11 19:52:02 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:05 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:08 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:11 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:14 [WARNING]Failed to ping remote VPN Router!

    2012/01/11 19:52:20 [WARNING]Ping was blocked, which can be caused by an unexpected disconnect.

    2012/01/11 19:54:29 [STATUS]Disconnecting...

    2012/01/11 19:54:38 [STATUS]Success to disconnect.

    Final message

    Log from WRVS4400N

    Jan 15 10:12:53 - [VPN Log]: added connection description "Casa_rw_rw"

    Jan 15 10:12:54 - [VPN Log]: listening for IKE messages

    Jan 15 10:12:54 - [VPN Log]: forgetting secrets

    Jan 15 10:12:54 - [VPN Log]: loading secrets from "/etc/ipsec.secrets"

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [MS NT5 ISAKMPOAKLEY 00000008]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [RFC 3947]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [draft-ietf-ipsec-nat-t-ike-02_n]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [FRAGMENTATION]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring unknown Vendor ID payload [fb1de3cdf341b7ea16b7e5be0855f120]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring Vendor ID payload [Vid-Initial-Contact]

    Jan 15 10:13:06 - [VPN Log]: packet from 81.166.45.217:50827: ignoring unknown Vendor ID payload [e3a5966a76379fe707228231e5ce8652]

    Jan 15 10:13:06 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: responding to Main Mode from unknown peer 81.166.45.217

    Jan 15 10:13:06 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: transition from state STATE_MAIN_R0 to state STATE_MAIN_R1

    Jan 15 10:13:06 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: STATE_MAIN_R1: sent MR1, expecting MI2

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: transition from state STATE_MAIN_R1 to state STATE_MAIN_R2

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: STATE_MAIN_R2: sent MR2, expecting MI3

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[1] 81.166.45.217 #5: Main mode peer ID is ID_IPV4_ADDR: '192.165.0.181'

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: deleting connection "Casa_rw_rw" instance with peer 81.166.45.217 {isakmp=#0/ipsec=#0}

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: I did not send a certificate because I do not have one.

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: transition from state STATE_MAIN_R2 to state STATE_MAIN_R3

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: STATE_MAIN_R3: sent MR3, ISAKMP SA established {auth=OAKLEY_PRESHARED_KEY cipher=oakley_3des_cbc_192 prf=oakley_md5 group=modp1024}

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: responding to Quick Mode {msgid:01000000}

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: transition from state STATE_QUICK_R0 to state STATE_QUICK_R1

    Jan 15 10:13:07 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: STATE_QUICK_R1: sent QR1, inbound IPsec SA installed, expecting QI2

    Jan 15 10:13:09 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: route-client output: 0

    Jan 15 10:13:09 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: transition from state STATE_QUICK_R1 to state STATE_QUICK_R2

    Jan 15 10:13:09 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #6: STATE_QUICK_R2: IPsec SA established {ESP=0xbc07c0e1 0xd7ef396d xfrm=3DES_0-HMAC_MD5 NATD=none DPD=none}

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: received Delete SA(0xbc07c0e1) payload: deleting IPSEC State #6

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217 #5: terminating SAs using this connection

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw" #6: deleting state (STATE_QUICK_R2)

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw" #5: deleting state (STATE_MAIN_R3)

    Jan 15 10:13:29 - [VPN Log]: "Casa_rw_rw"[2] 81.166.45.217: deleting connection "Casa_rw_rw" instance with peer 81.166.45.217 {isakmp=#0/ipsec=#0}

    Jan 15 10:13:30 - [VPN Log]: "Casa_rw_rw": unroute-client output: 0

    Jan 15 10:13:30 - [VPN Log]: packet from 81.166.45.217:50827: received and ignored informational message

    Jan 15 10:13:30 - [VPN Log]: packet from 81.166.45.217:50827: Informational Exchange is for an unknown (expired?) SA

    Jan 15 10:13:31 - [VPN Log]: "Casa_rw_rw": deleting connection 

    If someone could help me...

    Thank you,

    Alex

  • RELEVANCY SCORE 2.26

    DB:2.26:Windows Raw Sockets Capturing Packets In Wrong Order 9z


    I
    am developing a packet sniffer based on windows raw socket on windows 7. The program captures packet from IP layer. The issue i am facing here is, Program captures all packets but some of them are captured in wrong order, for eg. for a tcp connection establishment
    phase, instead of getting packets in SYN , SYN-ACK, ACK order i get it as SYN, ACK, SYN-ACK. Instead of capturing ACK after SYN-ACK(from remote), pgm gets ACK before SYN-ACK packet. Same thing is happening some times during data transfer phase also. Program
    captures the ACK packet of a data packet before the actual data packet. If i run a wireshark in parallel, it displays properly. I am using Visual Studio 2005 as the IDE.

    #include stdio.h
    #include winsock2.h
    #include ws2tcpip.h
    #include pcap.h
    #include MSTcpIP.h

    int main(int argc, char **argv)
    {
    struct in_addr addr;
    int in, optval=1;
    struct hostent *local;
    WSADATA wsa;
    char *Buffer;

    //Initialise Winsock
    if (WSAStartup(MAKEWORD(2,2), wsa) != 0)
    {
    printf(WSAStartup() failed.\n);
    return 1;
    }

    //Create a RAW Socket
    sniffer = socket(AF_INET, SOCK_RAW, IPPROTO_IP);
    if (sniffer == INVALID_SOCKET)
    {
    printf(Failed to create raw socket.\n);
    return 1;
    }

    memset(dest, 0, sizeof(dest));
    memcpy(dest.sin_addr.s_addr,argv[1], sizeof(argv[1]));
    dest.sin_family = AF_INET;
    dest.sin_port = 0;

    printf(\nBinding socket to local system and port 0 ...);
    if (bind(sniffer,(struct sockaddr *)dest,sizeof(dest)) == SOCKET_ERROR)
    {
    printf(bind(%s) failed.\n, inet_ntoa(addr));
    return 1;
    }
    printf(Binding successful);

    //Enable this socket with the power to sniff : SIO_RCVALL is the key Receive ALL ;)
    j=1;
    printf(\nSetting socket to sniff...);
    if (WSAIoctl(sniffer, SIO_RCVALL, j, sizeof(j), 0, 0, (LPDWORD) in , 0 , 0) == SOCKET_ERROR)
    {
    printf(WSAIoctl() failed.\n);
    wprintf(LIOCTL failed with error %d\n, WSAGetLastError());
    if (WSAIoctl(sniffer, SIO_RCVALL, j, sizeof(j), 0, 0, (LPDWORD) in , 0 , 0) == SOCKET_ERROR) {
    printf(Failed again\n);
    wprintf(LIOCTL failed again with error %d\n, WSAGetLastError());
    return 1;
    }
    }
    printf(Socket set.);
    if(setsockopt(sniffer, IPPROTO_IP, IP_HDRINCL, (char *)optval, sizeof(optval))==SOCKET_ERROR)
    {
    printf(failed to set socket in raw mode.);
    return 0;
    }
    char *Buffer = (char *)malloc(65536); //Its Big!65536
    do
    {
    mangobyte = recvfrom(sniffer , Buffer , 2000 , 0 , 0 , 0); //Eat as much as u can

    if(mangobyte 0)
    {
    writeCaptofile(Buffer, mangobyte); //write the captured packet to file in pcap format
    }
    else
    {
    printf( recvfrom() failed.\n);
    }
    }
    while ((mangobyte 0) (!StopSniffing));
    free(Buffer);

    closesocket(sniffer);
    WSACleanup();
    return 0;
    }

    DB:2.26:Windows Raw Sockets Capturing Packets In Wrong Order 9z

    Post this question in the Windows Desktop Winsock Kernel Forum at the following address
    http://social.msdn.microsoft.com/Forums/en-us/wsk/threads
    Bye.Luigi Bruno - Microsoft Community Contributor 2011 Award

  • RELEVANCY SCORE 2.26

    DB:2.26:Read Packet Fifo And Write Packet Fifo px



    hi

    iam aware of synchronous fifo and asynchronous fifo and its working

    i need to know how exactly a read packet fifo and write packet fifo differs in functionality

    can any one help me ???? please

    DB:2.26:Read Packet Fifo And Write Packet Fifo px


    If the question was for Read / Write packet fifo that comes with IPIF in EDK then

    The Read Packet FIFO is used to buffer data from the IP that needs to be sent to the Host Bus. The Write Packet FIFO is used to buffer data from the Host Bus that needs to be sent to the IP.

    You can refer to the datasheet that comes with IPIF for more info




    RegardsArchu

  • RELEVANCY SCORE 2.26

    DB:2.26:Discarding Retransmitted Packet zk


    Hey all, I am using a FVS318 and the GB VPN client.. the tunnel gets established, but I cannot access ir ping anything on the remote side. Logs below:

    --

    20110121 092829 Default (SA NobleCS-P1) SEND phase 1 Aggressive Mode [SA] [KEY_EXCH] [NONCE] [ID] [VID] [VID] [VID] [VID] [VID]

    20110121 092833 Default (SA NobleCS-P1) RECV phase 1 Aggressive Mode [HASH] [SA] [KEY_EXCH] [NONCE] [ID] [NAT_D] [NAT_D] [NAT_D] [VID]

    20110121 092833 Default (SA NobleCS-P1) SEND phase 1 Aggressive Mode [HASH] [NAT_D] [NAT_D]

    20110121 092833 Default phase 1 done: initiator id vpnNobleCS, responder id noble

    20110121 092833 Default (SA NobleCS-NobleCS-P2) SEND phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]

    20110121 092833 Default (SA NobleCS-NobleCS-P2) RECV phase 2 Quick Mode [HASH] [SA] [NONCE] [ID] [ID]

    20110121 092833 Default (SA NobleCS-NobleCS-P2) SEND phase 2 Quick Mode [HASH]

    20110121 092838 Default (SA NobleCS-NobleCS-P2) SEND phase 2 Quick Mode [HASH]

    20110121 092843 Default (SA NobleCS-NobleCS-P2) SEND phase 2 Quick Mode [HASH]

    20110121 092849 Default (SA NobleCS-NobleCS-P2) SEND phase 2 Quick Mode [HASH]

    --

    [2011-01-21 07:28:07]POLICY: PAYLOADS: SA,PROP,TRANS,VID,VID,VID,VID,VID,KE,NONCE,ID

    [2011-01-21 07:28:07]LocalRID Type=ID_FQDN,ID DATA=vpnNobleCS

    [2011-01-21 07:28:07]RemoteLID Type=ID_FQDN,ID DATA=vpnNobleCS

    [2011-01-21 07:28:10]POLICY: NobleCS PAYLOADS: SA,PROP,TRANS,KE,NONCE,ID,HASH,VID,NATD,NATD,NATD

    [2011-01-21 07:28:10]**** SENT OUT SECOND MESSAGE OF AGGR MODE ****

    [2011-01-21 07:28:10]**** RECEIVED THIRD MESSAGE OF AGGR MODE ****

    [2011-01-21 07:28:10]POLICY: NobleCS PAYLOADS: HASH,NATD,NATD

    [2011-01-21 07:28:10]**** AGGR MODE COMPLETED ****

    [2011-01-21 07:28:10][==== IKE PHASE 1 ESTABLISHED====]

    [2011-01-21 07:28:10][==== IKE PHASE 2(from x.x.x.x) START (responder) ====]

    [2011-01-21 07:28:10]**** RECEIVED FIRST MESSAGE OF QUICK MODE ****

    [2011-01-21 07:28:10]POLICY: NobleCS PAYLOADS: HASH,SA,PROP,TRANS,NONCE,ID,ID

    [2011-01-21 07:28:10]**** FOUND IDs,EXTRACT ID INFO ****

    [2011-01-21 07:28:10]Initiator IPADDR=192.168.100.10

    [2011-01-21 07:28:10]Responder IPADDR=192.168.1.0 MASK=255.255.255.0

    [2011-01-21 07:28:10]**** SENT OUT SECOND MESSAGE OF QUICK MODE ****

    [2011-01-21 07:28:10]**** RECEIVED THIRD MESSAGE OF QUICK MODE ****

    [2011-01-21 07:28:10]POLICY: NobleCS PAYLOADS: HASH

    [2011-01-21 07:28:10]**** QUICK MODE COMPLETED ****

    [2011-01-21 07:28:10][==== IKE PHASE 2 ESTABLISHED====]

    [2011-01-21 07:28:15]DISCARDING RETRANSMITTED PACKET...

    [2011-01-21 07:28:20]DISCARDING RETRANSMITTED PACKET...

    [2011-01-21 07:28:25]DISCARDING RETRANSMITTED PACKET...

    DB:2.26:Discarding Retransmitted Packet zk

    I figured it out.. on the phase2 page I had a single address selected in the drop-down instead of subnet.

  • RELEVANCY SCORE 2.26

    DB:2.26:A Question About Awt Cache Groups x9


    I have a question about AWT cache groups. The AWT cache group cant propagate the data to oracle. And it receives the error 16060: Failed to read data from the network. select() timed out. And we dont know what cause this happen. I set up a new dsn and test the cache group, it can propagate the data to oracle. and we see the session on emc, it shows the session times out.
    bash-3.2$ ttRepAdmin -showstatus ESCP_CACHE

    Replication Agent Status as of: 2007-07-18 15:14:49

    DSN : ESCP_CACHE

    Process ID : 6010 (Started)

    Replication Agent Policy : manual

    Host : CX_PDSCP2

    RepListener Port : 58627 (AUTO)

    Last write LSN : 743.16653296

    Last LSN forced to disk : 743.16653296

    Replication hold LSN : 35.26774304

    Replication Peers:

    Name : _ORACLE

    Host : CX_PDSCP2

    Port : 58627 (AUTO) (Connected)

    Replication State : STARTED

    Communication Protocol : 23

    Name : OCSDATA

    Host : CX_PDSCP2

    Port : 0 (AUTO)

    Replication State : STARTED

    Communication Protocol : 23

    TRANSMITTER thread(s):

    For : _ORACLE

    Start/Restart count : 11

    Send LSN : 35.26774304

    Transactions sent : 0

    Total packets sent : 5950

    Tick packets sent : 5917

    MIN sent packet size : 64

    MAX sent packet size : 143

    AVG sent packet size : 64

    Last packet sent at : 15:03:52

    Total Packets received: 5940

    MIN rcvd packet size : 64

    MAX rcvd packet size : 120

    AVG rcvd packet size : 119

    Last packet rcvd'd at : 15:03:52

    Most recent errors (max 5):

    TT16122 in transmitter.c (line 2762) at 13:43:16 on 07-18-2007

    TT16060 in transmitter.c (line 4476) at 14:19:59 on 07-18-2007

    TT16122 in transmitter.c (line 2762) at 14:19:59 on 07-18-2007

    TT16060 in transmitter.c (line 4476) at 14:56:41 on 07-18-2007

    TT16122 in transmitter.c (line 2762) at 14:56:41 on 07-18-2007

    RECEIVER thread(s):

    For : OCSDATA

    Start/Restart count : 1

    Transactions received : 0

    Total packets sent : 540

    Tick packets sent : 0

    MIN sent packet size : 64

    MAX sent packet size : 120

    AVG sent packet size : 119

    Last packet sent at : 15:03:52

    Total Packets received: 540

    MIN rcvd packet size : 64

    MAX rcvd packet size : 143

    AVG rcvd packet size : 64

    Last packet rcvd'd at : 15:03:52

    Most recent errors (max 5):

    TT16060 in receiver.c (line 1725) at 15:05:52 on 07-18-2007

    the message about tterrors.log:

    00:52:50.35 Warn: REP: 5514: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    00:55:58.91 Warn: REP: 5905: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. TimesTen daemon is stopping

    01:05:56.93 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    01:31:40.96 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    01:31:40.96 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    01:40:35.12 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    02:06:34.32 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    02:06:34.32 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    02:15:26.06 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    02:42:06.98 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    02:42:06.98 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    02:51:06.82 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    03:18:05.84 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    03:18:05.84 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    03:27:10.24 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    03:54:22.03 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    03:54:22.03 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    04:03:25.33 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    04:30:35.52 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    04:30:35.52 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    04:39:41.30 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    05:06:57.87 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    05:06:57.87 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    05:16:01.76 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    05:43:16.55 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    05:43:16.55 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    05:52:24.21 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    06:19:59.39 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    06:19:59.39 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    06:29:06.96 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    06:50:36.74 Warn: : 1958: 21115 exited while connected to data store '/timesten/DataStore/GPRS/ocsdata' shm 277090028 count=1

    06:56:41.94 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    06:56:41.94 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    07:05:52.71 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    ttstatus :
    TimesTen status report as of Wed Jul 18 17:21:13 2007

    Daemon pid 3685 port 17001 instance tt70

    No TimesTen server running

    TimesTen webserver pid 3690 started on port 17005

    ------------------------------------------------------------------------

    Data store /timesten/DataStore/GPRS/ocsdata

    There are 45 connections to the data store

    Data store is in shared mode

    Shared Memory KEY 0x22840f23 ID 65541

    Type PID Context Connection Name ConnID

    Cache Agent 4778 0x6000000000182180 Handler 2

    Cache Agent 4778 0x60000000003482e0 Timer 3

    Cache Agent 4778 0x60000000003682e0 Aging 4

    Process 8577 0x60000000000543c0 escp_cache 39

    Replication 4779 0x60000000001760e0 LOGFORCE 7

    Replication 4779 0x6000000000283ff0 REPHOLD 6

    Replication 4779 0x6000000000303ff0 REPLISTENER 5

    Subdaemon 3688 0x60000000000a6440 Worker 2042

    Subdaemon 3688 0x6000000000120080 Monitor 2045

    Subdaemon 3688 0x6000000000243ff0 Flusher 2043

    Subdaemon 3688 0x60000000002a3ff0 Checkpoint 2046

    Subdaemon 3688 0x6000000000323ff0 Aging 2044

    Subdaemon 3688 0x6000000000383ff0 HistGC 2047

    Replication policy : Manual

    Replication agent is running.

    Cache agent policy : Manual

    TimesTen's Cache agent is running for this data store

    ------------------------------------------------------------------------

    End of report

    DB:2.26:A Question About Awt Cache Groups x9

    I have a question about AWT cache groups. The AWT cache group cant propagate the data to oracle. And it receives the error 16060: Failed to read data from the network. select() timed out. And we dont know what cause this happen. I set up a new dsn and test the cache group, it can propagate the data to oracle. and we see the session on emc, it shows the session times out.
    bash-3.2$ ttRepAdmin -showstatus ESCP_CACHE

    Replication Agent Status as of: 2007-07-18 15:14:49

    DSN : ESCP_CACHE

    Process ID : 6010 (Started)

    Replication Agent Policy : manual

    Host : CX_PDSCP2

    RepListener Port : 58627 (AUTO)

    Last write LSN : 743.16653296

    Last LSN forced to disk : 743.16653296

    Replication hold LSN : 35.26774304

    Replication Peers:

    Name : _ORACLE

    Host : CX_PDSCP2

    Port : 58627 (AUTO) (Connected)

    Replication State : STARTED

    Communication Protocol : 23

    Name : OCSDATA

    Host : CX_PDSCP2

    Port : 0 (AUTO)

    Replication State : STARTED

    Communication Protocol : 23

    TRANSMITTER thread(s):

    For : _ORACLE

    Start/Restart count : 11

    Send LSN : 35.26774304

    Transactions sent : 0

    Total packets sent : 5950

    Tick packets sent : 5917

    MIN sent packet size : 64

    MAX sent packet size : 143

    AVG sent packet size : 64

    Last packet sent at : 15:03:52

    Total Packets received: 5940

    MIN rcvd packet size : 64

    MAX rcvd packet size : 120

    AVG rcvd packet size : 119

    Last packet rcvd'd at : 15:03:52

    Most recent errors (max 5):

    TT16122 in transmitter.c (line 2762) at 13:43:16 on 07-18-2007

    TT16060 in transmitter.c (line 4476) at 14:19:59 on 07-18-2007

    TT16122 in transmitter.c (line 2762) at 14:19:59 on 07-18-2007

    TT16060 in transmitter.c (line 4476) at 14:56:41 on 07-18-2007

    TT16122 in transmitter.c (line 2762) at 14:56:41 on 07-18-2007

    RECEIVER thread(s):

    For : OCSDATA

    Start/Restart count : 1

    Transactions received : 0

    Total packets sent : 540

    Tick packets sent : 0

    MIN sent packet size : 64

    MAX sent packet size : 120

    AVG sent packet size : 119

    Last packet sent at : 15:03:52

    Total Packets received: 540

    MIN rcvd packet size : 64

    MAX rcvd packet size : 143

    AVG rcvd packet size : 64

    Last packet rcvd'd at : 15:03:52

    Most recent errors (max 5):

    TT16060 in receiver.c (line 1725) at 15:05:52 on 07-18-2007

    the message about tterrors.log:

    00:52:50.35 Warn: REP: 5514: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    00:55:58.91 Warn: REP: 5905: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. TimesTen daemon is stopping

    01:05:56.93 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    01:31:40.96 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    01:31:40.96 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    01:40:35.12 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    02:06:34.32 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    02:06:34.32 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    02:15:26.06 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    02:42:06.98 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    02:42:06.98 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    02:51:06.82 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    03:18:05.84 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    03:18:05.84 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    03:27:10.24 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    03:54:22.03 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    03:54:22.03 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    04:03:25.33 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    04:30:35.52 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    04:30:35.52 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    04:39:41.30 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    05:06:57.87 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    05:06:57.87 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    05:16:01.76 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    05:43:16.55 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    05:43:16.55 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    05:52:24.21 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    06:19:59.39 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    06:19:59.39 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    06:29:06.96 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    06:50:36.74 Warn: : 1958: 21115 exited while connected to data store '/timesten/DataStore/GPRS/ocsdata' shm 277090028 count=1

    06:56:41.94 Warn: REP: 6010: OCSDATA:transmitter.c(4476): TT16060: Failed to read data from the network. recv() failed with error c

    ode 232

    06:56:41.94 Err : REP: 6010: OCSDATA:transmitter.c(2762): TT16122: Failed to send heartbeat to peer. Restarting log read loop

    07:05:52.71 Warn: REP: 6010: OCSDATA:receiver.c(1725): TT16060: Failed to read data from the network. select() timed out

    ttstatus :
    TimesTen status report as of Wed Jul 18 17:21:13 2007

    Daemon pid 3685 port 17001 instance tt70

    No TimesTen server running

    TimesTen webserver pid 3690 started on port 17005

    ------------------------------------------------------------------------

    Data store /timesten/DataStore/GPRS/ocsdata

    There are 45 connections to the data store

    Data store is in shared mode

    Shared Memory KEY 0x22840f23 ID 65541

    Type PID Context Connection Name ConnID

    Cache Agent 4778 0x6000000000182180 Handler 2

    Cache Agent 4778 0x60000000003482e0 Timer 3

    Cache Agent 4778 0x60000000003682e0 Aging 4

    Process 8577 0x60000000000543c0 escp_cache 39

    Replication 4779 0x60000000001760e0 LOGFORCE 7

    Replication 4779 0x6000000000283ff0 REPHOLD 6

    Replication 4779 0x6000000000303ff0 REPLISTENER 5

    Subdaemon 3688 0x60000000000a6440 Worker 2042

    Subdaemon 3688 0x6000000000120080 Monitor 2045

    Subdaemon 3688 0x6000000000243ff0 Flusher 2043

    Subdaemon 3688 0x60000000002a3ff0 Checkpoint 2046

    Subdaemon 3688 0x6000000000323ff0 Aging 2044

    Subdaemon 3688 0x6000000000383ff0 HistGC 2047

    Replication policy : Manual

    Replication agent is running.

    Cache agent policy : Manual

    TimesTen's Cache agent is running for this data store

    ------------------------------------------------------------------------

    End of report

  • RELEVANCY SCORE 2.26

    DB:2.26:Newbie Socket Read Write Question xc


    Hello all,

    I need to develop a simple client application in java using socket
    programming. The client will connect to a server implemented in VC++.
    The server part has been implemented so I need to develop only the
    client part.

    Could anybody help me with a simple program that sends data to the
    server and then prints out whatever the server sends back for the
    given request.

    The client and the server communicate using a specified format of bytes as shown below. I do not know how to read those bytes using the sizes as the token.

    I know how to connect to the server but I do not know the proper way of sending and receiving data.

    connection = new Socket(destination, port);
    ....

    outStream = new DataOutputStream connection.getOutputStream());
    ....

    //send the ID 1 to the server
    outStream.writeByte(1);

    //send the total packet size
    ??
    //send the data
    ??

    Thanks in advance
    Pertheli

    The client and server communicates with the following packet format
    shown below. Each packet will have header, size and data as shown

    PACKET
    offset(byte) contents
    ------------- -------------
    0 byte PACKET ID
    ------------- -------------
    1 byte PACKET length (motolora format)
    2 byte
    ------------- -------------
    3 byte DATA * n (motolora format)
    4 byte
    ------------- -------------
    5 byte ~ DATA
    n byte
    ------------- -------------

    Now for a For say PACKET ID = 1
    we send the data to the server like
    ------------- -------------
    0 byte (motolora format)
    3 byte
    ------------- -------------

    Then from the VC server we recieve the data in the format such as
    ------------- -------------
    0 byte Name
    43 byte
    ------------- -------------
    44 byte Status
    ------------- -------------

    DB:2.26:Newbie Socket Read Write Question xc

    Hi!

    Try this...

    Socket connection = new Socket(server,port);

    // use a Buffered*Stream as often as possible, because
    // of the IP Packet Lengths...It Increases the
    // network performance (but you DON'T need it)

    // you'll send bytes or messages to the server in
    // the OutputStream and receive answers from the
    // server in the InputStream
    int packetOutputBufferSize = connection.getSendBufferSize();
    int packetInputBufferSize = connection.getReceiveBufferSize();
    BufferedOutputStream bos = new BufferedOutputStream(connection.getOutputStream(),packetOutputBufferSize);
    BufferedInputStream bis = new BufferedInputStream(connection.getInputStream(),packetInputBufferSize);

    // sending data through the socket
    // create your packet in a byte array
    byte[] output = new byte[packet-lenght];
    output[0]=packet ID
    output[1]=....
    ....

    bos.write(output,0,output.length);

    // receiving data from the socket
    byte[] input = new byte[max-packet-length];
    int read=0;
    int length=0;
    while ((read=bis.read(input,length,(input.length-length)) 0) {
    length+=read;
    if (length=input.length) break;
    }

    // now your server output is in the bytearray 'input'

    If it isn't possible to set a max packet size, use a bytearray as buffer and write it content into a ByteArrayOutputStream, thats something like a resizable write-only byte array. (you'll get the full content of it by calling the method ByteArrayOutputStream.toByteArray())

    Maybe you want to check the packet content during receiving the bytes from the socket: Then you should use some read() method from the InputStream, but thats not very powerful.

  • RELEVANCY SCORE 2.26

    DB:2.26:Forticlient To Fwag114 ks


    Did any body get this combination working (both sides dynamic)

    June, thanks for all your help.

    What am i doing wrong here?

    forticlient log - after these message a window pops up with failed msg

    -------------------------------------------------------------------

    Oct 13 22:35:35: Initiator: sent 69.155.77.69 aggressive mode message #1 (OK)

    Oct 13 22:35:36: Initiator: sent 69.155.77.69 aggressive mode message #2 (DONE)

    Oct 13 22:35:36: Initiator: sent 69.155.77.69 quick mode message #1 (OK)

    FWAG114 logs

    --------------

    [2007-10-13 22:41:51]**** RECEIVED FIRST MESSAGE OF AGGR MODE ****

    [2007-10-13 22:41:51]POLICY: PAYLOADS: SA,PROP,TRANS,TRANS,TRANS,TRANS

    [2007-10-13 22:41:52]POLICY: vpn PAYLOADS: SA,PROP,TRANS,KE,NONCE,ID,HASH,VID,NATD,NATD,NATD

    [2007-10-13 22:41:52]**** SENT OUT SECOND MESSAGE OF AGGR MODE ****

    [2007-10-13 22:41:57]**** RECEIVED THIRD MESSAGE OF AGGR MODE ****

    [2007-10-13 22:41:57]POLICY: vpn PAYLOADS: NATD,NATD,HASH,NOTIFY

    [2007-10-13 22:42:02]**** RECEIVED THIRD MESSAGE OF AGGR MODE ****

    [2007-10-13 22:42:02]POLICY: vpn PAYLOADS: NATD,NATD,HASH,NOTIFY

    [2007-10-13 22:42:07]**** RECEIVED THIRD MESSAGE OF AGGR MODE ****

    [2007-10-13 22:42:07]POLICY: vpn PAYLOADS: NATD,NATD,HASH,NOTIFY

    [2007-10-13 22:42:10]**** RECEIVED INFORMATIONAL EXCHANGE MESSAGE ****

    [2007-10-13 22:42:12]**** SENT OUT INFORMATIONAL EXCHANGE MESSAGE ****

    [2007-10-13 22:42:12]POLICY: vpn PAYLOADS: DEL

    DB:2.26:Forticlient To Fwag114 ks

    I would still think you should able to use specified IP on remote IP...

  • RELEVANCY SCORE 2.26

    DB:2.26:'Read Write Failure. Null Packet To Return' - Event Id Error xa


    Help!

  • RELEVANCY SCORE 2.26

    DB:2.26:Looped-Back Packet Not Received On Controller 1 sz



    Hi,

    Following lines are observed on a "WS-C3550-48-SMI".. Pls suggest.

    Also, Fa0/1-Fa0/8 are showing as administratively down. Does this means the port are hardware faulty?

    Ethernet-controller 1 has 12 Fast Ethernet/IEEE 802.3 interfaces

    FastEthernet0/1 failed POST

    FastEthernet0/2 failed POST

    FastEthernet0/3 failed POST

    FastEthernet0/4 failed POST

    FastEthernet0/5 failed POST

    FastEthernet0/6 failed POST

    FastEthernet0/7 failed POST

    FastEthernet0/8 failed POST

    POST: Loopback Tests : Begin

    looped-back packet not received on controller 1, channel 1

    looped-back packet not received on controller 1, channel 2

    looped-back packet not received on controller 1, channel 3

    looped-back packet not received on controller 1, channel 4

    looped-back packet not received on controller 1, channel 5

    looped-back packet not received on controller 1, channel 6

    looped-back packet not received on controller 1, channel 7

    looped-back packet not received on controller 1, channel 8

    POST: Loopback Tests : End, Status Passed

    Stored system POST messages:

    Fa0/8 can't be brought up because it failed POST in loopback test

    Fa0/8 can't be brought up because it failed POST in loopback test

    Fa0/8 can't be brought up because it failed POST in loopback test

    Fa0/8 can't be brought up because it failed POST in loopback test

    Fa0/8 can't be brought up because it failed POST in loopback test

    DB:2.26:Looped-Back Packet Not Received On Controller 1 sz


    Hi Satya,

    Yes, this switch is faulty. Whenever a device fails POST (Power On Self Test), it is an indication of hardware failure, and the device should be replaced.

    HTH,

    Bobby

  • RELEVANCY SCORE 2.26

    DB:2.26:Direction Of Nat From Destination To Source x8



    Hi Everyone,

    When  on ASDM  we have  this under  

    Original Packet 

    Source  Inside_hosts     

    Destination  Outside_hosts

    Then we have

    Translated Packet  with

    Source  Inside_hosts_natted

    Destination Outside_hosts_natted

    So NAT is bidirectional  and when packet comes       back from Destination to source then Source IP  which is Destination Real source will be

    Outside_hosts_natted?

    We can also write this in format below

    inside_ hosts  inside_hosts_natted    Outside_hosts  Outside_hosts_natted

    which is equal to

    inside local  inside global   outside gloabl  outside local?

           Regards

    MAhesh                            

    DB:2.26:Direction Of Nat From Destination To Source x8


    Hi Jouni,

    You expalined everything very good.

    Got it now.

    Best regards

    MAhesh