Re: RE: Redirect folders to network

[Stephen Wimberly]

With Windows 2000 yes. Although with Windows 2003 R2 the quota system is set
by File Server Resource Manager (FSRM) on a folder rather than per file
owner on a volume.  This alone is a great reason to upgrade a file server.

I forget when FSRM was introduced, I know it is in 2003R2 but may have been
in 2003 as well.

With Windows 2000, you'd have to use a different volume for your roaming
profiles.
 On Dec 31, 2010 10:44 PM, VIPCS vi...@stny.rr.com wrote:
 It was Jeffrey's understanding that a server file quota applies to ALL
files
 owned by a user on that server, not whether they are in a home folder or a
 roaming profile folder.



 Sincerely,



 Jeffrey and Mary Jane Harris

 VIPCS



 _

 From: Stephen Wimberly [mailto:riverside...@gmail.com]
 Sent: Friday, December 31, 2010 1:31 PM
 To: NT System Admin Issues
 Subject: Re: Redirect folders to network



 I love both roaming profiles and folder redirection, but have been burned
by
 offline files in the past (Windows 2000 server and pro) and just don't
want
 to go there again even though improvements have been made!

 We like the Keep It Simple principal, we redirect the My Documents folder
to
 the user's mapped home directory found on the profiles tab within their
 Active Directory object. (This way we can offer server space for normal
 employees, but not contractors). Our users can always look to see if
their
 My Documents match the contents of their mapped drive, this way it
 instills in them that these files are not on the local computer.

 We suggest that our Laptop users create a Local Folder for files that
they
 need to travel with. It is up to them to keep these in sync with server
 copies so there is a backed up version.

 If you do roaming profiles without redirecting the My Documents folder,
you
 may find yourself 'roaming' a good many files at login or logoff which
could
 slow things down considerably. Plus you can put a quota on the user's
 shared drive, but not on a roaming profile share!

 Food for thought.

 My next goal is to understand and implement Microsoft Direct Access so our
 laptop users aren't really far from a server copy at any time, of course
 this means I'll be able to get to them for support as well. ;)

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~

 ---
 To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Small/Mid Firewall?

[Erik Goldoff]

Port forward ?

 

Create the port forward in the network interface VIP ( using an existing
service, or create a custom service first )

Create a policy allowing that traffic port from anywhere external to the VIP

done

 

Erik Goldoff

IT  Consultant

Systems, Networks,  Security 

'  Security is an ongoing process, not a one time event ! '

From: Ben Schorr [mailto:b...@rolandschorr.com] 
Sent: Friday, December 31, 2010 12:42 PM
To: NT System Admin Issues
Subject: RE: Small/Mid Firewall?

 

Well I think part of the frustration is that appears that to create a simple
port forward that sends all incoming traffic on a specific port to an
internal server (for example) requires 17 different “policies” and
“interfaces” and “zones”.  I’m exaggerating a bit, yes, but the Juniper
seems very powerful and ridiculously complex.  We’re not trying to do
anything fancy and it’s taken more than 2 days to get it even half working
and that’s with more than an hour of a Juniper support engineer remoting
into it and working on it themselves.

 

The old SnapGear 580s (before McAfee bought SnapGear at least) could be set
up for this in 15 minutes or so.  Even a newbie could figure out how to set
up a basic port forward fairly quickly.

 

I suspect we’ll like the Juniper…once we get a thousand pages or so deeper
into the documentation and figure out how to actually make the damned thing
do anything useful.  

 

We have one IPSEC tunnel created with it (created by the Juniper engineer).
The dashboard on the “Home” Screen says it’s “Inactive/Unused” but the VPN
monitor lists it as “Active”.   Ummm….o.k.

 

This morning my day started with a phone call from one of the local users
telling me they can’t even get on the web.  Good grief.

 

Ben M. Schorr
Chief Executive Officer
__
Roland Schorr  Tower
 http://www.rolandschorr.com/ www.rolandschorr.com
 mailto:b...@rolandschorr.com b...@rolandschorr.com

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Friday, December 31, 2010 5:20 AM
To: NT System Admin Issues
Subject: RE: Small/Mid Firewall?

 

I agree with Andrew … I’ve been configuring the Juniper ‘screens for years
now, including the 5GT and SSG 5 that replaced it.

Granted, the Juniper is very different from a Cisco PIX/ASA firewall, and
different from Checkpoint.

I wonder if extensive knowledge of some other brand of firewall is what is
causing your minions problems with the Juniper.

 

Erik Goldoff

IT  Consultant

Systems, Networks,  Security 

'  Security is an ongoing process, not a one time event ! '


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin