[Q] ProxyDroid NTLM issues. Wingate - TWC TV - General Questions and Answers

Hello all,
I normally don't really need to ask many questions on these forums but heck, when I'm going to there are only a few places I trust.
I have the MOTO DROID MAXX, I have the TWC - TV app for watching live TV. IF you were not aware, the Time Warner Cable TV app / website allows you to watch most of your line up from a mobile device. The caveat is that you have to be on your home network otherwise you're limited to pretty much home and gardening type shows. VPN is 100% blocked via the app. You also cannot have USB debugging enabled on the current app.
I found a thread that had the apk of the app that doesn't check for these "handy" features being enabled.
My system is as follows.
Wingate is hosting a proxy service on a port that is properly forwarded and working correctly on my static assigned pc. DDNS is setup for name resolution to my server. Since Wingate will be internet facing, I set up client access rules to block access from any non authenticated users.
My issue. On PC if I connect via proxy I can properly authenticate and see an authenticated session on Wingate. On my phone, I can connect to my proxy and if access rules are off I can browse just fine. However, if I try to put in the NTLM authentication on either ProxyDroid or AutoProxyLite, I show up as an unknown user!! I have tried everything and cannot figure this out!! I know the settings CAN work because the same ones previously authenticated on my old windows install.
Thoughts?

Related

Remote Desktop Cannot Connect

Hello all:
(first of all, I apologize for the double post, I erred and replied to a thread in the diamond forum)
I'm having problems getting my remote desktop to work. Been trying to connect since I picked up my Fuze on the 11th.
I have three different computers that I can successfully administer via my desktop. I've tried using 3G to connect, no success. I've tried using Wi-fi to connect, no success. I've used local computer names, IP addresses, properly forwarded ports --
It has to be a setting I'm missing on the phone. Any ideas? TIA
What version of Windows are you trying to connect to? Do you have a Firewall? And have you done the port forwarding on the router?
But the only options you need is Computer: IP Address and the user name and password. Use a Domain if you are connecting to PCs on a domain. Also when I logged in not using 16bit color under options the PC was almost unusable.
My attempts
The things I have tried since my post:
1) attempting to connect to Windows Server 2003 machine, non-local. Used IP address with port, same IPort that works from my desktop. Left username/password blank -- filled them both in -- left the domain name blank -- filled it in. All failed. Get the error message with three possible causes listed. Connected to my home network via wifi, data connection disabled (sometimes causes problems with my internet browsing if they're both enabled)
2) attempted to connect to a local machine, running XP Pro. Again, tried all possible combinations of username/password completeness, no success. Using Wifi
My local router does have a firewall, and the remote router does as well. I can successfully navigate those using my desktop (or laptop, for that matter)
GTO: I appreciate the quick reply...thank you.
3daysaside said:
The things I have tried since my post:
1) attempting to connect to Windows Server 2003 machine, non-local. Used IP address with port, same IPort that works from my desktop. Left username/password blank -- filled them both in -- left the domain name blank -- filled it in. All failed. Get the error message with three possible causes listed. Connected to my home network via wifi, data connection disabled (sometimes causes problems with my internet browsing if they're both enabled)
2) attempted to connect to a local machine, running XP Pro. Again, tried all possible combinations of username/password completeness, no success. Using Wifi
My local router does have a firewall, and the remote router does as well. I can successfully navigate those using my desktop (or laptop, for that matter)
GTO: I appreciate the quick reply...thank you.
Click to expand...
Click to collapse
Okay its been awhile since I used 2k3 sever. Using 2k8 lately but are you trying to use Terminal Server? and if your using 2k3 and you have ISA enabled I know it can be a pain to do port forwarding with it. But let me get this stright. You have no issues using XPs Remote Desktop to log into the server machines Terminal Server/Remote Desktop? Here is an idea. Whatever port your running Terminal Server/Remote Desktop type the IP Address with a : and port. IE 192.168.0.1:3000
Also if you would like you can PM the IP address of one of the Machines and I will try from my phone that I know is working with my machine. I am pretty sure you don't need to end a user name or password and it will bring me up to the login screen or you can make a temp account. On also on the Win2k3 machine I am pretty sure you have to add the option to login with Terminal Server even if its the Administrator account.
I am able to connect to my local XP machine over wifi using the ip addy/no port. Hostname (DNS) connection attempt failed, though. My 2k3 server's power supply died or I would test that for you.
No special router config (port fwd) for my device had been done.
The fact that you can't get to your local box on your local network is where I'd start.
Local Network Issues
Thanks again to you both...
I think that might be the problem -- the local network setup. I can connect via wifi, and browse the web. However, I can't install a network printer using the WinMo app that's included, and I can't seem get to the local PC even when I use the local IP instead of the DNS name. I did check, I'm being issued an IP address by the router (obviously), but still no dice on anything relating to network based traffic.
Is there a way to ping using WinMo? I'd like to be able to use that start.
Cont..
Also, I've noticed that I don't get the same error each time. Depending on which machine I'm trying to connect to, it'll give me an error with either two or three options as to why it's not working. Trying to figure out what that's telling me.
As far as Terminal Services are concerned, when I connect from the desktop, I believe I'm using Remote Desktop there (honestly, I haven't been paying attention -- I just use whatever pops up when I type 'mstsc' from the Run dialog, lol), and I can connect to the 2003 server. However, I can't play with this anymore today, because apparently the server is down, and I won't be able to get to it till Monday.
I think I'm going to go play with the ATT proxy and see if that changes anything. I think mine is still enabled because I read that it might help with the GPS problems...
I have found some freeware app... pocketping 1.6 and microsoft has a network tool offering which I am not sure will work on WM6. I have no exp. with either tool on WM.
Can you get to your http/https router mgmt interface from the device? Check your router's client table? Does your router have any logging capabilities?
Sorry, more questions than answers.
Router
I am able to "dial" into the router from my phone -- it shows the HTCP4600 in the clients table with an IP of 192.168.2.108 ... all good.
My logging on the router was disabled, but now it is enabled. What should I be looking for?
I think i'll try the pocketping...
Now make sure inside of the router then you have all the correct ports forwarded.
It should be port 3999 to 3999 On UDP and TCP and then your PC ip behind the firewall.
Pocketping, JETCET Print 5, and success
Here's the update:
Discovered that by disabling the AT&T proxy on the Fuze, I was finally able to connect to my network printer -- the Fuze doesn't have the drivers for my printer, but that's another thread.
So I was able to make my first IN-Network contact. Installed pocketping 1.6, and it's a very useful tool. I'm able to successfully ping the computers on my network now that the proxy is disabled -- an voila...I can also connect to my laptop on my own network! The main trick was to use the network IP address and not the DNS name.
Thanks to both of you who helped out.

Remote Desktop & "Administrator" User Name?

When I go to set up RDP on my laptop, it asks for "Computer" & "User Name". Well I think I found my Computer's name - when you go to System and click the Remote tab, it displays: 'Full Computer Name' - so I *think* I'm set there (right?) My problem is that for "User Name", when click the Start button, at the top it says "Administrator". So when I fired up RDP on my phone and filled out the information, it came back with:
"Cannot connect. Likely reasons are: 1. Specified computer name or IP does not exist 2. A network error occured while establishing a connection"
I will say that I HAVE checked the Firewall Exception box that allows for Remote Access and I have also allowed users to connect via remote access through my System window on the Remote tab. What I HAVEN'T done, however, is anything in the way of port forwarding for 3389. I'm more than familiar with networking and working with routers, so that's not my issue. My issue is, if I'm supposed to forward a port to my IP address, how can I do that when all I can change is the last number:
http://img9.imageshack.us/my.php?image=portip4.jpg
1 - Is my user name being 'Administrator' a problem?
2 - How do I forward the ports, or work with this end of RDP? I've read about the DNS, but don't know exactly how to go about doing it.
I've been in my router before and changed some settings for the Xbox, so I don't think that has to do with DHCP on my local machine here, but correct me if I'm wrong. My question/problem is that this is set to "Automatic Configuration - DHCP"...
http://img232.imageshack.us/my.php?image=configbz4.jpg
...is this a problem? Do I need to change this at all, as in, get in contact with my ISP and go through this setup? Furthermore, if I DO end up having to change this, will it affect anything else on my network? Some people just said they checked the exceptions and logged in without configuring a DNS, so I'm wondering exactly what all I have left to change?
When you try to connect to your computer or laptop from the internet you'll need your public IP address. (not your computer name)
Go yo http://www.whatismyip.com/ on your computer at home.
Second, on your router you have to forward port 3389 to the local ip address from your computer.
Then from outside your home network you start RDP and connect to your public IP address. Your router then will forward that connection to your computer/laptop.
johanromijn said:
When you try to connect to your computer or laptop from the internet you'll need your public IP address. (not your computer name)
Go yo http://www.whatismyip.com/ on your computer at home.
Second, on your router you have to forward port 3389 to the local ip address from your computer.
Then from outside your home network you start RDP and connect to your public IP address. Your router then will forward that connection to your computer/laptop.
Click to expand...
Click to collapse
**EDIT**
Perfect, got it down 100%. Although as a side note.. does anyone know of a way to make the resolution/colors better? It works fine and all, but the picture is just a bit distorted with the colors all off.
I use Remote Administrator and I have found it to be the best! It will also allow you to use your native resloution that is set on the host PC you are connecting to whereas RDP won't and if you are tying to view remote camera's like I do or anything that has a specific resolution required, RDP will fail where Remote Admin will not.
The latest version is v.3.0 and it's only like $30 or even less if I remember correctly. A search of your favorite file dispensing forum may find a test version to try out and if I remember correctly, Radmin lets you use it for 30 days before you have to buy the reg key.
My original version V2.1 was upgradeable to V3.0 for free and works for Vista and allows me to connect to my PC at home which I still have v2.1 on.
It's a great app, real small and FAST!
There's also VNC which is similar to Radmin, but lacks the hidden view only mode... Great for keeping an eye on what the kids are doing on the internet without them knowing you are watching!
Hope this helps...

Android Server accessed over 3g

Hello,
I'm trying to develop a server on my android device so that I can access my phone remotely from anywhere. Right now all of the webservers only allow me to access it on my local network. This could be a carrier issue, but am not sure if there is a work around or some other service.
thanks
Remote Web. It's on th market. It's just had this feature added in the last update.
Tried it..still can't access it through Remote Web.
I don't know how "Webkey" (see Market) works, but it have a working web server in the phone and it works over 3g
Webkey has a server that acts as an intermediary. Your browser and phone connect to the server, which gets you around the 3G connection problems.
I tried LazyDroid, Remote Web, and Remote Desktop. They all have a lot of cool features, but the webserver is running on your phone. If you can't reach you phone's IP address, then you are out of luck. (BTW, all three are targeting WiFi and/or USB as your means of connection.)
Paw web server
jvalal said:
Hello,
I'm trying to develop a server on my android device so that I can access my phone remotely from anywhere. Right now all of the webservers only allow me to access it on my local network. This could be a carrier issue, but am not sure if there is a work around or some other service.
thanks
Click to expand...
Click to collapse
You can see PAW web server , which works over 3G.

[Q] Cisco IronPort blocks internet access for all apps – help?

Hi,
Here’s my situation – at my office they use Cisco IronPort to monitor and filter all internet requests. A transparent proxy is used on the network switches to direct port 80 traffic to the IronPort server. Initially only the browser on my phone would work as that is the only app that passes the correct authentication. All other apps fail to reach the internet. But the IronPort server can be configured to pass through a type of device if it can be identified. Using the IP address of my phone to filter the traffic logs, it seems that some apps pass “Windows Phone OS” in the data packets. And by adding “Windows Phone OS” to the IronPort exception list, those apps now work. But most apps still don’t work because they don’t include any windows phone identifier in the data packets. Can anyone provide any additional info on this subject or a possible solution?
Thanks.
bump... any ideas... anyone?
Use cellular data instead of your corporate network?
Use apps that use the new socket APIs, or connect to HTTP servers running on a port other than 80?
Complain to your IT people (commoditization of IT being what it is, I'm actually surprised by this restriction)?
See if you can get them using proxy authentication instead of packet inspection for authentication purposes (WP7 supports proxy authentication on WiFi)?
Find a job with an IT infrastructure that doesn't suck?

[Q] Any way to lock down to SSH/VPN traffic only?

I want to set my Mum's new tablet so that it can only access the Internet via the SSH server running on her Buffalo router (with Tomato firmware).
I've got the server working and accessible remotely and so far the only app I've found that has a Global Proxy setting to redirect everything via the SSH server is SSHTunnel, although I gather that it's not totally reliable when connections drop/change and I can't expect my Mum to cope with monitoring it and re-enabling it manually. When it's disabled, all traffic will just go over local connection unencrypted so that's a concern.
Ideally there'd be some way to setup the SSH settings at a system level, with no way to disable them and force all the traffic go out like this but I'm not sure if there is any way to achieve this.
The other part is setting a firewall (AFWall+ or Android Firewall seem to be the main ones) to only allow traffic via the SSH server. I'm not sure what whitelist rules would be required for this. For example, SSHTunnel connects to the server at x.x.x.x:x, so I presume I'd need a rule to allow connections to this address and this port (I had a quick play with the Avast firewall, which only allows creating custom rules for IP or port, so I'd need two rules with that and it doesn't allow entering the DynDNS name, only a IP address, so that's no good).
Then SSHTunnel has a Local Port (1984) and remote addressort (127.0.0.1:3128) so I presume I'd need rules to allow all of those as well (I'm not sure which of these need to be incoming/outgoing or both). Then there's the question of whether I need to allow other ports like DNS (53) and so on, or if that all goes over the SSH tunnel and doesn't require setting allow rules specifically.
It might be that a VPN server would be more suitable for what I'm trying to acheive than a SSH server and I think the Tomato firmware on the router has that facility (or if the version currently flashed doesn't, there's probably another version I could flash that does), so if that's the case, I'd appreciate advice on locking it down that way instead. Android has built-in VPN support, so it might be possible to use that but it depends on whether it will auto-connect and stay connected all the time or if it requires user intervention and I'll still need to setup firewall rules to prevent data being sent without the VPN in case it does get disabled.
Another issue is whether these firewall rules will prevent the device even being able to connect to any public Wi-Fi points before redirecting the traffic via the SSH/VPN server, which would obviously be no good.
OK, maybe there's another way
I was thinking of setting up a VPN on a Raspberry Pi installed at my parent's house, as they have reasonable broadband speeds, something like 100/10MB. Is there anyway that I could setup my Mum's tablet so that it passes everything through the VPN whether at home or away, so that she doesn't have to worry about toggling the VPN or firewall?
I can point it to the No-IP domain name I've setup but then I think every request would go out onto the Internet (albeit encrypted) before coming back in to the VPN, which would then have to go out again to retrieve whatever webpage, etc is being requested, which would obviously be stupid. If I point it to the LAN IP of 192.168.1.66, that will avoid doing that when at home but won't work when away.
So, any ideas?

Categories

Resources