RSS

Category Archives: Uncategorized

SEP File-sharing fails “Default Block Microsoft Windows 2000 SMB”

We use Symantec Endpoint Protection (SEP) Small Business Edition across most of our clients’ PC. Sometimes a PC is acting as a file-server, whether for general file sharing or because of multi-user Sage Accounts access.

Normally we just create a new EP Policy and enable rule “Allow File and Printer Sharing”.
sep rule allow-file-a-p-sharing

However that’s not been enough in some cases. Then PCs on the same network still could not access the file-share. We turned on logging with “Report Blocked Events”.

sep firewall report-blocked-events

The logging showed that port 445 was being hit for rule:

Default Block Microsoft Windows 2000 SMB

The network had IPv6 internet connection, so five different addresses were tried: two different IPv6 ULA destination address, one IPv4 address, and two IPv6 global addresses. Initially I thought it was a Symantec IPv6 bug, but then the IPv4 attempt should have worked.

We contacted Symantec support and they quickly came back asking us to try the solution in TECH213284 (https://support.symantec.com/en_US/article.TECH213284.html). That’s to add a new rule enabling more ports for the shared network.

That solved the problem.

Advertisements
 
Leave a comment

Posted by on January 19, 2018 in Uncategorized

 

Ricoh printer scan-to-email “No Privilege”

Scan-to-email is a very useful feature on multi-function printers. That’s where you give the printer the SMTP details for your email server, and users can then scan to their inbox. That’s better than scan to a network share for many reasons including many businesses now longer having a file-server, instead using cloud storage; and it’s better for data-protection as the scan goes one recipient rather than sitting in a share folder that anyone can access.

Setting up scan-to-email is always a bundle of laughs however!

This is mostly because the printers that I’ve used do not give useful troubleshooting or debugging help. When the scan-to-email fails normally you get a not very useful error message. It’s even worse when doing the set-up, whether through the printer’s console or through its admin web page. The communications with the email server can fail in various ways. You’d hope that the printer would tell you at which stage it failed and give you information from that failure. Within the SMTP connection the SMTP server will return a specific error code and more importantly an error message that often includes very useful details. The printer sadly doesn’t report those details.

There are many places it can fail:

  1. No network cable connected
  2. No IP address etc assigned
  3. No response from DNS server
  4. Non-successful result from DNS server for the given SMTP server name
  5. No TCP connection to the SMTP server
  6. TLS or SSL connection fails to the SMTP server
  7. Then within the SMTP session, there are various steps:
    1. Initial handshake failed
    2. Authentication if used, failed
    3. Sender address not accepted
    4. Recipient address not accepted. For instance, if the email server thinks you are spamming then it will generally return an error here.
    5. Email sending failed

On a Ricoh printer, there is no test facility when using the admin web pages to do set-up. The only way to check it is working is to do a test scan and hope that the error message guides you. If you’re doing this remotely you of course have to ask someone near the printer to do the scan for you.

Through the printer’s console, there is a Test button on the page where you set-up the SMTP server name/address. It reports only a success or fail and gives no further information. Worse it is slightly misleading. According to an expert in these printers that test is simply an ICMP ping. So, it’s not any use in checking most of the stages in the SMTP connection where it can fail as listed above and does not give the error reason.

Perhaps there is a whole series or article on this subject, but for now I just want to cover one case where the error code the Ricoh device case was unlisted in any Ricoh manuals I could find on the internet and Google didn’t find anything.

This case: “No Privilege

In this case the email server was Office 365. We had used that successfully elsewhere. The Test button on the SMTP server page returned success (as had the DNS Test, and pinging remote destination etc). On a scan the only error message it provided was “Error” which is not useful!  The help in the scan logging screen showed that it would report some SMTP failure e.g. failure to connect, authenticate, etc.

There were no job logs through the admin web page, but I did eventually find related logging in the Download Logs feature. Analysis of them took some time as they contain multiple lines per job. I eventually found this bunch of logging for each failure:

2017-11-13T14:12:02.0 Scanner: Sending Failed Control Panel Failed Output Failure 0x00000022 1 0x00000000000003e0
Succeeded Completed 0x00000000000003e0 Scan File 2017-11-13T14:11:40.0 2017-11-13T14:11:56.0
Failed Failed No Privilege 0x00000000000003e0 Send 2017-11-13T14:11:57.0 2017-11-13T14:12:02.0 Abi abi@example.com

I’ve removed tens of columns from the middle of that, so if looking at those logs yourself expect to do lots and lots of horizontal scrolling!

As noted above there is no information I can fine on “No Privilege“.

For comparison a failure when the network is down, it gives this error logging (I’ve removed most right-hand columns) and two rows only:

2017-12-21T14:41:34.0 Scanner: Sending Failed Control Panel Failed Output Failure
Failed Failed Connection Failed with Destination

After much investigation, as an educated guess we turned on SMTP Authentication. The initial set-up had been done without that as the previous model could not authenticate to Office 365. (The SSL/TLS implementation was far too old and insecure to be accepted by Office 365, and without encryption Office 365 won’t accept authentication).

Authentication fixed the problem. Scanning was working! So, it was something about the SMTP connection that was going wrong.

Why?

Job done? No, there’s the why still hanging! Since the printer doesn’t give us any help we need to look at other SMTP debugging methods. One is to use a terminal client (e.g. telnet) to speak to the printer which allows us to the see the email server response — those which the printer sadly does no show us!

This is the SMTP session I did by hand. The indented lines are my commands to the server.

220 DB5EUR03FT015.mail.protection.outlook.com Microsoft ESMTP MAIL Service ready at Thu, 11 Jan 2018 18:43:27 +0000
   HELO printer1.example.com
250 DB5EUR03FT015.mail.protection.outlook.com Hello [192.0.2.181] 
   MAIL FROM:printer1@example.com
250 2.1.0 Sender OK
   RCPT TO:itstaff@example.com
550 5.7.606 Access denied, banned sending IP [192.0.2.181]. To request removal from this list please visit https://sender.office.com/ and follow the directions. For more information please go to  http://go.microsoft.com/fwlink/?LinkID=526655 (AS16012609) [DB5EUR03FT015.eop-EUR03.prod.protection.outlook.com]
   QUIT
221 2.0.0 Service closing transmission channel

So, we can immediately see why the email is not sending. If only the printer had shown us that error message we would have been save hours of troubleshooting,

550 5.7.606 Access denied, banned sending IP [192.0.2.181]. To request removal from this list please visit https://sender.office.com/ and follow the directions. For more information please go to  http://go.microsoft.com/fwlink/?LinkID=526655 (AS16012609) [DB5EUR03FT015.eop-EUR03.prod.protection.outlook.com]

So, we’re on a shared IP address range from our ISP and other are apparently sending spam then the address range is barred from sending. Hence why authentication fixes it: we prove to Office 365 we’re authenticated permitted senders.

Please please printer manufacturers start including better troubleshooting. For instance, please have a test feature that sends a scan email and includes full information as to where it fails, and if it fails during the SMTP session please include the full error message from the SMTP server.

 
Leave a comment

Posted by on January 12, 2018 in Uncategorized

 

Sage install update error Ox800704DD

Sage Software Updates  An error has occurred.  Error Adding File (The operation being requested was not performed because the user has not logged on to the new.ork. The specified service does not exist. (Exception from RESULT: Ox800704DD)).   Please contact Sage Customer Services

Error Adding File (The operation being requested was not performed because the user has not logged on to the new.ork. The specified service does not exist. (Exception from RESULT: Ox800704DD)).

 I upgraded a small charity’s Sage installation recently and got the above error on two out of three machine. After the upgrade completed the update dialog appeared but it failed with the above error. One the one machine the update process installed (Service Pack 4) successfully.

On the other two machines, a bit later I just reopened and closed Sage, then the update re-ran and was successful on both PCs.

 
Leave a comment

Posted by on June 1, 2015 in Uncategorized

 

Yahoo email import CSV

When importing contacts from a csv file into Yahoo there is no help given on the screen.

yahoo csv dialogI spent much time trying to get the import to work. Was it a filename extension issue (I started with .txt), what it a charset issue (I started with UTF-8+BOM), or what??? By trial and error I discovered that there is a single particular data column format that Yahoo expects. If you don’t use that format this will fail with the following.

yahoo csv dialog NOT-csv

So a rubbish error message and no link to a help page that describes what format is required!

As there’s no help link, I tried googling and could find no information. I only found the required format by guessing that it would be same as the export format, doing a dummy export and copying the header line. After massaging my file into those columns the import worked.

The headers from the export file are:

First Middle Last Nickname Email Category Distribution Lists Messenger ID Home Work Pager Fax Mobile Other Yahoo! Phone Primary Alternate Email 1 Alternate Email 2 Personal Website Business Website Title Company Work Address Work City Work County Work ZIP Work Country Home Address Home City Home State Home ZIP Home Country Birthday Anniversary Custom 1 Custom 2 Custom 3 Custom 4 Comments Messenger ID1 Messenger ID2 Messenger ID3 Messenger ID4 Messenger ID5 Messenger ID6 Messenger ID7 Messenger ID8 Messenger ID9 Skype ID IRC ID ICQ ID Google ID MSN ID AIM ID QQ ID

i.e.

"First","Middle","Last","Nickname","Email","Category","Distribution Lists","Messenger ID","Home","Work","Pager","Fax","Mobile","Other","Yahoo! Phone","Primary","Alternate Email 1","Alternate Email 2","Personal Website","Business Website","Title","Company","Work Address","Work City","Work County","Work ZIP","Work Country","Home Address","Home City","Home State","Home ZIP","Home Country","Birthday","Anniversary","Custom 1","Custom 2","Custom 3","Custom 4","Comments","Messenger ID1","Messenger ID2","Messenger ID3","Messenger ID4","Messenger ID5","Messenger ID6","Messenger ID7","Messenger ID8","Messenger ID9","Skype ID","IRC ID","ICQ ID","Google ID","MSN ID","AIM ID","QQ ID"

That’s appears to be what’s documented at http://help.yahoo.com/kb/index?locale=en_US&page=content&id=SLN5840 which I managed to track down after all that manual effort.

 
Leave a comment

Posted by on November 6, 2013 in Uncategorized

 

PC DevMgr when NIC missing/ok

  • NIC not present when resuming.

Screen clipping taken: 12/02/2012 22:47

Screen clipping taken: 09/02/2012 20:10

 

Screen clipping taken: 22/02/2012 19:26

Broadcom Control Suite

Driver Information

Driver Status Loaded
Driver Name k5lhd6Oa.sys
Driver Version 14.2.0.7
Driver Date 6/8/2010

Resources

Bus Type Unknown
Bus Speed (MHz) Unknown
Bus Width (bit) Unknown
Bus Number 4
Device Number 0
Function Number 0

Hardware

ASIC Version BCM57788 A0
Firmware Version N/A
Firmware Family Version N/A
Vendor ID 0x14E4
Device ID 0x1691
Subsystem Vendor ID 0x1028
Subsystem ID 0x4AA

Screen clipping taken: 13/02/2012 10:33

 
Leave a comment

Posted by on February 23, 2012 in Uncategorized