RE: MSCS evicting node

[Level 5 Lists]

Thanks Richard, we already converted one of the servers successfully to a vm, 
what we did was take the physical box which was using a shared DAS, and 
converted one box and one of the shared disks but theres a third shared disk 
that we had to copy (its file shares) so when I goto switch it out I get the 
cluster signature error.

Doing any cluster tools gets me an error because there is only one server left 
and so Im wondering if I evict the now gone server, and just be left with 1 
server in a cluster what would happen…

Going to snapshot the disk tonight and try it …

From: Richard Stovall [mailto:rich...@gmail.com]
Sent: Wednesday, August 17, 2011 11:40 AM
To: NT System Admin Issues
Subject: Re: MSCS evicting node

My only thought is based on an experience a few years ago moving some clustered 
services to a single VM.  The P2V went fine and I was left with a one node 
cluster as you intend.

The only problem I encountered was when doing snapshot-based image backups 
using VCB.  The creation of a snapshot caused the cluster to lose its SCSI 
reservations on the virtual disks.  At that point they would all drop offline 
and blow the whole thing up.  I wasn't willing to give up live, snapshot-based 
backups, so I went through the process of recreating everything from scratch on 
a fresh VM.

I don't know if you'll run into this issue, but it may be something look out 
for.
On Tue, Aug 16, 2011 at 11:13 PM, Level 5 Lists 
li...@levelfive.usmailto:li...@levelfive.us wrote:
I have a client who is downsizing and migrating from two physical MSCS 2003 
servers to one vm. Rebuilding the apps is not possible and the conversion has 
already occurred but we removed both physical servers leaving one working vm 
‘active’ and one ‘passive’ non-working vm. I cannot make any changes to the 
cluster without evicting this node apparently so I will end up with 1 node in 
the cluster. In reading around it looks like you can create one node clusters 
and seems viable I could evict this ‘missing’ server without issue but thought 
I would run by the group for any caveats..

This is primarily an SQL cluster with a couple of shares mounted on the disk 
that the SQL box relies on …

TY

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: [OT] The infection continues to spread (HP)

[Level 5 Lists]

Interestingly enough I just saw a very interesting investor (facebook, linked 
in etc) who was talking about how Apple makes so much profit in their hardware 
and how they basically re-wrote the entire hardware model etc etc ... and he 
was saying money is going back to hardware but more in tablets/devices and such 
and not as much in general 'box pc' type stuff ... was pretty interesting...

He also predicted the demise of google with search being dead on handheld 
devices as compared to a pc...

-Original Message-
From: Ken Schaefer [mailto:k...@adopenstatic.com] 
Sent: Friday, August 19, 2011 12:03 AM
To: NT System Admin Issues
Subject: RE: [OT] The infection continues to spread (HP)

It makes lots of revenue, but very little money. PSG has ~5% margin, which will 
probably only fall further in the future. HP Services has a margin of ~15%, HP 
Software around 20%, IPG is ~17% etc.

Cheers
Ken

-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Friday, 19 August 2011 11:41 AM
To: NT System Admin Issues
Subject: Re: [OT] The infection continues to spread (HP)

On Thu, Aug 18, 2011 at 5:08 PM, Mike Sullivan neog...@gmail.com wrote:
 I can see the direction they are taking, software and services are 
 more profitable and the PC market is not.

  Supposedly the margins are low, but it's still their biggest revenue 
generator.  I don't get it.  I mean, I'm sure some MBA can spew buzzwords about 
why, but fundamentally, I don't get it.  The money is still green, regardless 
of how it's made.



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Split Scope DHCP on 2008 R2?

[Level 5 Lists]

Remember the delay is just so the primary DHCP ack's first. This is the work 
around so they don't compete. If your DHCP server is sluggish or busy you may 
have to up the time period a little, and at the same time make sure the clients 
don't give up (this is quite a while for pc's but sometimes printers/voip 
devices give up quicker).

From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]
Sent: Tuesday, August 09, 2011 2:52 PM
To: NT System Admin Issues
Subject: Split Scope DHCP on 2008 R2?

I just want to be sure that I understand this feature correctly before I get 
too excited and look at upgrading our DC's to 2008 R2.

I have 2 DHCP servers, let's call them PRI and SEC.  I also want to use 
reservations but in an outage the reservations are something I could live 
without having available.

So I setup DHCP on PRI and configure the reservations.  I setup DHCP on SEC 
with no reservations.

I then configure split-scope on PRI using the wizard, and tell it to set the 
delay on SEC to 1000ms.

I now have two DHCP servers, but so long as PRI is running it will always 
service requests first?

Paul

MIRA Ltd

Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
Registered in England and Wales No. 402570
VAT Registration  GB 100 1464 84

The contents of this e-mail are confidential and are solely for the use of the 
intended recipient.  If you receive this e-mail in error, please delete it and 
notify us either by e-mail, telephone or fax.  You should not copy, forward or 
otherwise disclose the content of the e-mail as this is prohibited.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Dell Lock Code Resource

[Level 5 Lists]

That is odd, I recall looking those up a handful of times back in the days...

I do agree with you though, we purchased a quad quad core server with 64gb of 
ram from dell about 8-9 months ago (model escapes me). The 2.5 sas drives 
didn't come in they were backordered, we overnighted hp drives from cdw, popped 
them in and dell wouldn't let me config them into the raid because they weren't 
dell. That was the first time I ever saw that too, I think it was a perc h700 
card or something?? anyway I was very surprised when that happened.. one of the 
reasons we liked to go with dell because we could swap out parts locally in a 
pinch ...


From: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
Sent: Friday, July 22, 2011 1:54 PM
To: NT System Admin Issues
Subject: Re: Dell Lock Code Resource

It used to be more standard/published, but there does seem to be a divergence 
from standardization here within the past 10 years.

Oh I agree I think it should be public - my lack of surprise is from Dell 
specifically.  I love 'em, but they are getting tighter and tighter regarding 
their support.

--
Espi




On Wed, Jul 20, 2011 at 6:35 PM, Mike Gill 
lis...@canbyfoursquare.commailto:lis...@canbyfoursquare.com wrote:
As do I. The results of your search indicate the site I listed. The other sites 
are other people asking the same question or are for beep codes and desktops. 
It surprises me that this information isn't public. They provide documentation 
for all their computers to allow users to disassemble them down to the 
components without voiding the warranty. Why not this? Who knows. Seems to be 
it would be a few less support phone calls at least.

--
Mike

From: Micheal Espinola Jr 
[mailto:michealespin...@gmail.commailto:michealespin...@gmail.com]
Sent: Wednesday, July 20, 2011 3:37 PM
To: NT System Admin Issues
Subject: Re: Dell Lock Code Resource

I always just search online, e.g.:
http://www.google.com/search?q=dell+post+codes

It doesnt surprise me that Dell has taken a position to keep details like this. 
 They are getting more and more uptight about what they consider free support.

--
Espi



On Wed, Jul 20, 2011 at 2:21 PM, Mike Gill 
lis...@canbyfoursquare.commailto:lis...@canbyfoursquare.com wrote:
Does anyone have a resource for the LED Lock codes on Dell's laptops? For 
example, when a laptop doesn't start up and you get the num and caps lock LED's 
flashing but the scroll lock LED is solid. Dell says they don't publish this, 
and I have found on older document on their website that shows the codes, and 
one resource online, I would like an up to date resource that includes 
Latitude's, Inspiron's and Vostro's rather than calling Dell up every time. For 
example:

http://www.bay-wolf.com/portpostcodes.htm

FYI, this info isn't provided in the manual's online either.

--
Mike Gill


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

iphone multiple device ID

[Level 5 Lists]

We recently upgraded Exchange from 03 to 10. We created a whole new domain, I 
happen to notice that on the CEO's mailbox there are 2 iphone connections. At 
first I thought maybe he added a new exchange account and hes getting mail 
twice, but the Apple Device ID's are different. So I went in and changed his 
pw, and had him change it on his phone and still 2 connections seem to be 
syncing with 2 diff Apple ID's ..

Im assuming since I changed his pw he just keeps changing it on both accounts 
... anyone know if that would make 2 different IDs?

Thx


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: iphone multiple device ID

[Level 5 Lists]

No, that’s what I thought too. We just found the culprit, we went through the 
list of iphone users and matched up the deviceid. Should be interesting as the 
ceo was very concerned about this occurring and as soon as we setup the new 
server this person went and attached their iphone to his account and their 
account.

From: Sean Martin [mailto:seanmarti...@gmail.com]
Sent: Saturday, July 23, 2011 9:33 PM
To: NT System Admin Issues
Subject: Re: iphone multiple device ID

Does he have two devices? I have several ActiveSync users with iPhones and 
iPads.

- Sean

On Jul 23, 2011, at 4:16 PM, Level 5 Lists 
li...@levelfive.usmailto:li...@levelfive.us wrote:
We recently upgraded Exchange from 03 to 10. We created a whole new domain, I 
happen to notice that on the CEO’s mailbox there are 2 iphone connections. At 
first I thought maybe he added a new exchange account and hes getting mail 
twice, but the Apple Device ID’s are different. So I went in and changed his 
pw, and had him change it on his phone and still 2 connections seem to be 
syncing with 2 diff Apple ID’s ..

Im assuming since I changed his pw he just keeps changing it on both accounts … 
anyone know if that would make 2 different IDs?

Thx


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

ex2k7 transport rule

[Level 5 Lists]

What am I missing? I created a transport rule to send custom ndr and drop the 
message. I went and added a custom NDR 5.7.100 for both en\internal\5.7.100 and 
en\external\5.7.100 . However when the rule gets executed it always sends back 
the 5.7.0 default message. the custom text from the rule wizard does show up at 
the bottom of the message, but Im really trying to get the NDR to send back a 
fully customized message. Im wondering if I am just missing a step, I looked at 
several blogs and articles and everyone gave the same setup steps so seemed 
pretty straight forward.

I also tried this by lowering the size limit of the mailboxes to 1k, but it 
would only work internally. externally i would get the default delivery failure 
not the custom text.

Running exchange 2007sp3 with rollup 3. This is a single server running 
transport/client access/mailbox roles. Im wondering if this is the problem but 
I dont know why...

Thanks


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Another cool tool from MS coming...

[Level 5 Lists]

Cool, GFis mail archiver product already has this and you can deploy it over 
the network. I think the free mail archiva has an import tool but not a 
discovery tool. GFi's was far the most advanced I had used of the few products. 
It would deploy an agent to the desktop scan the box for pst, report it back to 
the archiving server and then import it according to the rulesets.


From: Sam Cayze [sca...@gmail.com]
Sent: Wednesday, July 06, 2011 2:49 PM
To: NT System Admin Issues
Subject: Another cool tool from MS coming...


http://bink.nu/news/coming-soon-microsoft-pst-capture-tool.aspx?utm_source=feedburnerutm_medium=feedutm_campaign=Feed%3A+binkdotnu+%28Bink.nu%29

Be gone you horrid PSTs!

Exchange Team Blog: We're excited to announce that later this year we'll be 
adding a new tool to our already rich portfolio of planning and deployment 
tools. This new tool, PST Capture, will be downloadable and free, and will 
enable you to discover .pst files on your network and then import them into 
both Exchange Online (in Office 365) and Exchange Server 2010 on-premises. PST 
Capture will be available later this year. It doesn’t replace the 
New-MailboxImportRequesthttp://technet.microsoft.com/en-us/library/ff607310.aspx
 cmdlet that exists already for importing known .pst files into Exchange 
Server, but instead works in parallel to enable you to embark on a systematic 
search and destroy mission to rid yourself of the dreaded .pst scourge.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Mass OOFs

[Level 5 Lists]

As a follow up we tried to use a custom NDR message thinking it would be 
easier. My first attempt was to make a custom 5.2.2 (internal and external) and 
lower the mbox size to 1k. this works internally but not externally.

Now I tried a hub transport sending a custom ndr of 5.7.10. I create the 
message for internal and external and send a message and I get 5.7.10 back but 
it's the default 5.7.0 message. Im not sure if I need to bounce the hub 
transport or not so will wait until after hours to test that..  Im referring to 
this article:  
http://www.msexchange.org/articles_tutorials/exchange-server-2007/management-administration/customising-delivery-status-notification-messages.html

This is exchange 2007sp2 (probably a couple of roll ups with it).

Thanks


From: Level 5 Lists
Sent: Thursday, June 30, 2011 6:52 PM
To: NT System Admin Issues
Subject: RE: Mass OOFs

Exchange 2007, I think that's ok because the email states that they must 
re-send the email to a different email address for any correspondence. This way 
its on the sender to deliver and not them to try to handle incoming mail for 
700 people.

Im thinking with that method I can simply put them all in a group, apply a 
different email domain or whatever so that frees it up and then just add the 
email addy onto one account. Hopefully through powergui or the shell easily..

From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Thursday, June 30, 2011 12:20 AM
To: NT System Admin Issues
Subject: RE: Mass OOFs

What version of Exchange?

You can probably get around 1300 proxies on one account, but, you're going to 
only send one OOF per sender from that mailbox, so if Sender A emails Employees 
B and C, he'll only get one OOF.

Thanks,
Brian Desmond
br...@briandesmond.commailto:br...@briandesmond.com

c   - 312.731.3132

From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Wednesday, June 29, 2011 9:56 PM
To: NT System Admin Issues
Subject: Mass OOFs


I have a law firm that's being shut down, they are releasing about 700 
employees over the upcoming months (@ 350 are gone already).

I have been asked by the firm to provide a legal standing OOF for everyone who 
is/has left the organization.

I have all the users in a disabled store and OU together (we need to keep their 
mail for 7 years).

I was checking out PowerGUI and found a couple of scripts people wrote doing 
this on a massive scale. I was then thinking, maybe its easier to remove all 
the users email addresses, put it all on one mailbox and create one OOF for 
that single mailbox .. offhand I don't know what the number of aliases for 1 
account are , but even if it was 10 or 20 , that might be easier then trying to 
do the oof on 700.

Besides having a help desk person sit there and copy/paste the OOF for 700 
people if theres any piece of software, script or similar I would love to save 
the energy :)

Thanks



(Still cannot post to ms-exchange, always get an attachment notice error, even 
sending in plain text)



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Mass OOFs

[Level 5 Lists]

Exchange 2007, I think that's ok because the email states that they must 
re-send the email to a different email address for any correspondence. This way 
its on the sender to deliver and not them to try to handle incoming mail for 
700 people.

Im thinking with that method I can simply put them all in a group, apply a 
different email domain or whatever so that frees it up and then just add the 
email addy onto one account. Hopefully through powergui or the shell easily..

From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Thursday, June 30, 2011 12:20 AM
To: NT System Admin Issues
Subject: RE: Mass OOFs

What version of Exchange?

You can probably get around 1300 proxies on one account, but, you're going to 
only send one OOF per sender from that mailbox, so if Sender A emails Employees 
B and C, he'll only get one OOF.

Thanks,
Brian Desmond
br...@briandesmond.commailto:br...@briandesmond.com

c   - 312.731.3132

From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Wednesday, June 29, 2011 9:56 PM
To: NT System Admin Issues
Subject: Mass OOFs


I have a law firm that's being shut down, they are releasing about 700 
employees over the upcoming months (@ 350 are gone already).

I have been asked by the firm to provide a legal standing OOF for everyone who 
is/has left the organization.

I have all the users in a disabled store and OU together (we need to keep their 
mail for 7 years).

I was checking out PowerGUI and found a couple of scripts people wrote doing 
this on a massive scale. I was then thinking, maybe its easier to remove all 
the users email addresses, put it all on one mailbox and create one OOF for 
that single mailbox .. offhand I don't know what the number of aliases for 1 
account are , but even if it was 10 or 20 , that might be easier then trying to 
do the oof on 700.

Besides having a help desk person sit there and copy/paste the OOF for 700 
people if theres any piece of software, script or similar I would love to save 
the energy :)

Thanks



(Still cannot post to ms-exchange, always get an attachment notice error, even 
sending in plain text)



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Anyone else seeing the Google interface changes?

[Level 5 Lists]

I noticed it the other night we couldn't login to HBO Go after True Blood was 
on, and when I googled it, I saw the tweets coming in a floating window. I 
thought it was pretty nice and definitely relevant to what I was looking up ...

From: Shauna Hensala [mailto:she...@msn.com]
Sent: Thursday, June 30, 2011 11:30 PM
To: NT System Admin Issues
Subject: RE: Anyone else seeing the Google interface changes?

http://howto.cnet.com/8301-11310_39-20075949-285/how-to-get-the-new-gmail-right-now/?ttag=fbw

[cid:image001.jpg@01CC377E.7090DA50]Shauna Hensala




From: asbz...@gmail.com
Date: Thu, 30 Jun 2011 22:47:32 -0400
Subject: Re: Anyone else seeing the Google interface changes?
To: ntsysadmin@lyris.sunbelt-software.com

I like the Gmail changes as well, for the most part.

Starting to get a bit cluttered, though.I haven't paid attention to the 
Google Search ones.

ASB

http://about.me/Andrew.S.Baker

Harnessing the Advantages of Technology for the SMB market...



On Thu, Jun 30, 2011 at 8:44 PM, Micheal Espinola Jr 
michealespin...@gmail.commailto:michealespin...@gmail.com wrote:
I'm really digging the tweaks to Gmail so far.  Im still on the fence about 
Google web search.

--
ME2


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmininline: image001.jpg

RE: Network Solutions Down?

[Level 5 Lists]

We called and they have a recording they are under a DDNS attack .. seems we 
are getting nslookups working now after about an hour, but still cannot login 
from several different places.

From: Sean Rector [mailto:sean.rec...@vaopera.org]
Sent: Tuesday, June 21, 2011 8:05 AM
To: NT System Admin Issues
Subject: RE: Network Solutions Down?

It came up for me - just very slowly.

Sean Rector, MCSE

From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Tuesday, June 21, 2011 7:29 AM
To: NT System Admin Issues
Subject: Network Solutions Down?

This morning a few of us cannot get into our NSI accounts, and none of my 
clients public DNS is resolving we can only connect to things via IP ... anyone 
else?


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
Information Technology Manager
Virginia Opera Association

E-Mail: sean.rec...@vaopera.orgmailto:sean.rec...@vaopera.org
Phone:(757) 213-4548 (direct line)
{+}

On Sale NOW 2011-2012 Subscriptions featuring four NEW Productions
Aida | Hansel And Gretel | Orphée | The Mikado
Visit us online at www.VaOpera.orghttp://www.vaopera.org/ or call 
1-866-OPERA-VA

The vision of Virginia Opera is to enrich lives through the powerful 
integration of music, voice and human drama.



This e-mail and any attached files are confidential and intended solely for the 
intended recipient(s). Unless otherwise specified, persons unnamed as 
recipients may not read, distribute, copy or alter this e-mail. Any views or 
opinions expressed in this e-mail belong to the author and may not necessarily 
represent those of Virginia Opera. Although precautions have been taken to 
ensure no viruses are present, Virginia Opera cannot accept responsibility for 
any loss or damage that may arise from the use of this e-mail or attachments.

{*}

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: security auditing..

[Level 5 Lists]

Shoot, your right we did deploy a gpo last week, but I bet theres a propagation 
error on that because we have been working through a few issues with deploying 
GPO's system wide. I bet that's it..

Thanks


-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com] 
Sent: Monday, June 20, 2011 10:38 PM
To: NT System Admin Issues
Subject: Re: security auditing..

On Mon, Jun 20, 2011 at 9:53 PM, Level 5 Lists li...@levelfive.us wrote:
 I must be missing something .. I have a share drive w @ 400gb of user data.
 I enabled Delete files/folders auditing for everyone and pushed it 
 through all sub-folders. if I go into a folder delete a file then goto 
 event logs Im expecting to see an event but I am not seeing one.

  Do you also have Filesystem auditing turned on system wide?  You need that or 
the SACLs on NTFS objects are ignored.  It's an option under Group Policy 
Editor and/or Local Security Policy.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: file copying

[Level 5 Lists]

Yah, maybe it was robocopy I ran through. It was odd, I did a whole shared 
folder that had dozens of sub folders with different ACLs. I watched it for a 
few minutes and then randomly spot checked a few files, it looked good. The 
next business day several people complained they couldn't get to files they 
needed and one of my techs had to go back and reset perms on a lot of them ..

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Thursday, June 16, 2011 11:32 PM
To: NT System Admin Issues
Subject: Re: file copying

XCOPY /O

ROBOCOPY





ASB (Professional Biohttp://about.me/Andrew.S.Baker/bio)
Harnessing the Advantages of Technology for the SMB market...


On Thu, Jun 16, 2011 at 9:31 PM, Level 5 Lists 
li...@levelfive.usmailto:li...@levelfive.us wrote:
I have a client that we need to migrate about 2tb of data. I recently used 
xcopy gui but it didn't seem to bring a lot of permissions over and I had to go 
back through and redo it.

I also played with the Richcopy but it would always hang up, I couldn't just 
select the root folder and have it successfully copy that much data.

Im willing to purchase something if anyone has anything that just works. I need 
permissions mainly, not overly worried about timestamps, but ACL is required.

Thx




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: RE: RE: windows 7 forensics

[Level 5 Lists]

There are a lot of things to consider. The first being chain of custody, the 
pulling of the pc with 2 people, and then certifying that it hasn't been 
tampered with is your primary requirement.
After that I would let the real boys handle it (3rd party/legal team etc)

I went through something similar with a company who found an employee using aol 
with child porn videos (not for sale or anything I guess). The FBI came in and 
everything, and I learned a lot during that process (he went to jail for 10 
years FWIW). They worked up a huge document discussing the file timestamps, the 
a/v, spyware, the temp file locations, the history of different video viewing 
apps in the registry.

this was all done with a ghosted copy of the drive to preserve the original as 
evidence.

From: Jonathan [mailto:ncm...@gmail.com]
Sent: Thursday, June 09, 2011 8:44 PM
To: NT System Admin Issues
Subject: Re: RE: RE: windows 7 forensics

forgot to include the link:

http://www.ssddfj.org/papers/SSDDFJ_V1_1_Bem_Huebner.pdf

Jonathan
On Thu, Jun 9, 2011 at 8:43 PM, Jonathan 
ncm...@gmail.commailto:ncm...@gmail.com wrote:
Thanks again for the input.

Next question - what about USB flash drive forensics? I briefly scanned the 
first part of this article, albeit form 2007

Would what you describe below still be valid for a USB flash drive?

Thanks,

Jonathan

On Thu, Jun 9, 2011 at 6:42 PM, Ben Scott 
mailvor...@gmail.commailto:mailvor...@gmail.com wrote:
On Thu, Jun 9, 2011 at 2:15 PM, Jonathan 
ncm...@gmail.commailto:ncm...@gmail.com wrote:
 understand and agree.  However, if the boss says, do it anyway, what
 approach would you use?
 I would avoid MS Windows, as it has a tendency to want to write to
the disk without asking.  (Due to things like updating the MBR for
various weird reasons (disk signatures, etc.), auto-mount of
anything that looks like NTFS, etc.).

 Me, I'd boot a rescue Linux system (I like SysRescueCD) and use dd
if=/dev/foo of=/mnt/bar/image, where foo is the source disk name
and bar is a network server I'd mounted.  Be warned that if you get
the syntax wrong dd will happily overwrite your disk for you.  if
is input file, of is output file, not hard, just unforgiving.

 If you want to use MS Windows, they sell these devices that plug
between the hard drive and the host adapter, and block all write
commands, making the drive effectively read-only.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


--
Jonathan, A+, MCSA, MCSE



--
Jonathan, A+, MCSA, MCSE

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Vipre/ MS Malware conflicts

[Level 5 Lists]

Thanks dave we did that during the install of viper many months ago. In 
security center it shows viper is registered for virus and spyware, which is 
why we are confused as to why ms malware is complaining and running in 
automatic.

From: David [mailto:blazer...@gmail.com]
Sent: Friday, June 03, 2011 1:43 PM
To: NT System Admin Issues
Subject: Re: Vipre/ MS Malware conflicts

In Vipre's control panel, if you go to the properties of the policy, then go 
down under Agent to Communication, there is a place to disable Windows 
Defender, and to incorporate Vipre into the Windows Security Center.  That 
might solve at least some of your problems.

David
On Fri, Jun 3, 2011 at 7:30 AM, Level 5 Lists 
li...@levelfive.usmailto:li...@levelfive.us wrote:
We have vipre rolled out at one of our clients, its working okay, but we 
recently had to turn it from medium to low because it was severly hampering 
internet browsing. What we also found was that MS Anti-Malware was running on 
several computers and even though security center is reporting vipre is in 
control if I turn off the MS product and goto Action Center and change the 
settings Im still getting  popups on the desktops stating your system is not 
protected click Start Now ...

We are 2008r2 domain with all Win7 pro desktops. Im going to see if I can 
deploy a GPO to handle disabling MS Malware , should be easy enough but not 
positive about the security center warning pop ups ..

This just started happening within the past 2 weeks, possibly a viper update 
issue? I know we had some issues with one of the versions but thought we moved 
past that already...



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



--
David

_

The right to be let alone - the most comprehensive of rights and the right 
most valued by civilized men.

- Supreme Court Justice Louis Brandeis, Olmstead v. U.S., 277 U.S. 438 (1928)

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Fake antivirus

[Level 5 Lists]

What about using open dns for a few bucks a year ? you can turn on simple 
blocking of known malware sites and a few other things and keep it pretty clean.

-Original Message-
From: Angus Scott-Fleming [mailto:angu...@geoapps.com] 
Sent: Friday, June 03, 2011 8:02 PM
To: NT System Admin Issues
Subject: Re: Fake antivirus

On 3 Jun 2011 at 10:34, John Aldrich wrote:  

 Thanks... This particular user is unlucky enough to have teenagers who 
 use his computer. My guess is they are visiting infected/hostile/0wned 
 sites and that's how he's getting infected. Never really had a problem 
 when he was working here, so I'm suspecting it's some of his grandkids 
 that are causing the problem.

Have him either get the kids their own computer or set up a VirtualBox for them 
to run in his computer.  That way they'll only trash their own stuff.



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Slow dns lookups?

[Level 5 Lists]

It seems to be just workstation related, although we are seeing some ping 
timeouts to the 4.2.2.2's on the T1, we took off forwarding but that didn't fix 
it. All the websites are external, could be anything from cnn.com to 
foxnews.com whatever. They all load a little, hang, load a little, hang, then 
finish.

We are testing a few different things now by having some workstations just use 
an external dns of the provider. Internally pinging, nslookups , network 
browsing all is fast and without any issue.

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Friday, May 27, 2011 12:55 PM
To: NT System Admin Issues
Subject: RE: Slow dns lookups?

You can check your DNS lookups via nslookup both looking internally and 
externally.

You say going to webpage ( is this webpage internal? Or External to the 
organization?)

I am assuming that all users are seeing the same thing ( Correct) or is it 
localized?

What is the Network Bandwidth out the Internet Router? ( Is the available 
Bandwidth Pegged? Which would make everything slow?)

Any issues with dropped packets at the firewall/External Router to the Internet?

Any issues querying DNS Server upstream of your business like L3 communications 
at 4.2.2.2 and 4.2.2.1.

Here is an example:
C:\windows\system32nslookup
Default Server:  DNS
Address:  Internal_IP

 set d2
 set type=A
 server 4.2.2.1

SendRequest(), len 38
HEADER:
opcode = QUERY, id = 2, rcode = NOERROR
header flags:  query, want recursion
questions = 1,  answers = 0,  authority records = 0,  additional = 0

QUESTIONS:
1.2.2.4.in-addr.arpa, type = PTR, class = IN



Got answer (73 bytes):
HEADER:
opcode = QUERY, id = 2, rcode = NOERROR
header flags:  response, want recursion, recursion avail.
questions = 1,  answers = 1,  authority records = 0,  additional = 0

QUESTIONS:
1.2.2.4.in-addr.arpa, type = PTR, class = IN
ANSWERS:
-  1.2.2.4.in-addr.arpa
type = PTR, class = IN, dlen = 23
name = vnsc-pri.sys.gtei.net
ttl = 84623 (23 hours 30 mins 23 secs)


Default Server:  vnsc-pri.sys.gtei.net
Address:  4.2.2.1

 .microsoft.com.
Server:  vnsc-pri.sys.gtei.net
Address:  4.2.2.1


SendRequest(), len 36
HEADER:
opcode = QUERY, id = 3, rcode = NOERROR
header flags:  query, want recursion
questions = 1,  answers = 0,  authority records = 0,  additional = 0

QUESTIONS:
.microsoft.com, type = A, class = IN



Got answer (52 bytes):
HEADER:
opcode = QUERY, id = 3, rcode = NOERROR
header flags:  response, want recursion, recursion avail.
questions = 1,  answers = 1,  authority records = 0,  additional = 0

QUESTIONS:
.microsoft.com, type = A, class = IN
ANSWERS:
-  .microsoft.com
type = A, class = IN, dlen = 4
internet address = 67.215.65.132
ttl = 0 (0 secs)


Non-authoritative answer:
Name:.microsoft.com
Address:  67.215.65.132

You can see I did a fully qualified dns lookup for Microsoft.com ( using the 
trailing . so that domain names aren't appended in the lookups)

Came back pretty snappy ( I would defintely put Wireshark on your PC and try 
and see the response times, because you might be dealing with a Layer 1-2 
problem at the router/switch/firewall interface or uplink on the TXX line to 
your ISP, rather than your DNS Servers.

HTH
Z


Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505

From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Friday, May 27, 2011 12:34 PM
To: NT System Admin Issues
Subject: Slow dns lookups?

I have a client with a t1 and cable as a backup for about 50 users and 9 
servers.

The past week their internet became amazingly slow, we pulled opendns out, we 
pulled the proxy filter out and still same thing.

Reviewing onsite it seems like when we goto a webpage we get a lot of website 
found waiting for reply for several seconds.

I switched gateways between t1 and cable and seemed to have no effect. You 
eventually get there, but I cant seem to pinpoint whats causing it.

We tried removing the opendns forwarders, then no forwarders, then some 
forwarders to some public DNS servers. Always the same thing.

Internally dns seems fine, no errors, ad replication is functioning okay etc 
etc .. Kind of at a loss as to where to look next.

Speedtest/pingtest are showing speeds as expected on both connections, latency 
everything there seems pretty normal (16dn/6up on cable, A rating on pingtest)



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana

RE: Slow dns lookups?

[Level 5 Lists]

Kurt - that was our finding as well, the client has a firebox and we were 
seeing odd latency going through the t1 , so even though clients are using the 
cable for their gateway rebooting the firebox seemed to fix our issue.

Thanks everyone.

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Friday, May 27, 2011 4:14 PM
To: NT System Admin Issues
Subject: Re: Slow dns lookups?

I had a similar issue with my firewall in the past couple of weeks.

The base issue *looked* like DNS problems, and they were, sorta...

We found that the real issue was a state table on the firewall, limiting UDP 
sessions. It was set at a max of 2500, and when I looked at the table, it was 
sitting at 2499 or 2500 for extended periods of time. So, I doubled the limit, 
monitored it for a while, then found it was hovering between 4500 and 5000 
quite a bit, so doubled it again to 1.

The timeout for sessions was also set to 300 seconds, and I turned that down to 
60 seconds.

Those actions cleared my problem - don't know if it's the same issue for you, 
but it might be worth looking at.

On Fri, May 27, 2011 at 09:34, Level 5 Lists li...@levelfive.us wrote:
 I have a client with a t1 and cable as a backup for about 50 users and 
 9 servers.



 The past week their internet became amazingly slow, we pulled opendns 
 out, we pulled the proxy filter out and still same thing.



 Reviewing onsite it seems like when we goto a webpage we get a lot of 
 website found waiting for reply for several seconds.



 I switched gateways between t1 and cable and seemed to have no effect. 
 You eventually get there, but I cant seem to pinpoint whats causing it.



 We tried removing the opendns forwarders, then no forwarders, then 
 some forwarders to some public DNS servers. Always the same thing.



 Internally dns seems fine, no errors, ad replication is functioning 
 okay etc etc .. Kind of at a loss as to where to look next.



 Speedtest/pingtest are showing speeds as expected on both connections, 
 latency everything there seems pretty normal (16dn/6up on cable, A 
 rating on
 pingtest)





 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

FW: Exchange autodiscover 2 domains

[Level 5 Lists]

Anyone know why everytime I post to exchange list I get rejected for 
attachments? .. maybe ill unsub/resub ...

From: Level 5 Lists
Sent: Wednesday, May 25, 2011 10:13 PM
To: 'MS-Exchange Admin Issues'
Subject: Exchange autodiscover 2 domains

We have 2 different domains, and rpc/https is working with valid cert etc etc. 
We realized the users on domainB don't get Free/Busy information but they do 
get the OAB. I was checking autodiscover and realized we don't have one for 
that domain .. so Im wondering if I need to go get a cert with 8 names on it or 
can I just redirect the autodiscover to domainA with a cname?

Our DNS looks like this

domain A - autodiscover / certificate / mx points to hosted spam server

domain B - mx points to hosted spam server / clients setup as mail.domainA.com 
for RPC/HTTPS

for domain A if I make autodiscover.domaina.com the cert will fail by name ... 
Im thinking a cname for autodiscover may work but thought I would run it by the 
list. We are going to test some options after hours on DNS but will be slow 
with propagation and such (maybe ill use local hosts file for cname testing??)

thx


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Question on PCI compliance

[Level 5 Lists]

you used to be able to still find it if you hit ftp.gfi.comftp://ftp.gfi.com 
we still use the system integrity monitor, along with a couple of their other 
tools now for pci compliance (event log monitor, languard).



From: Erik Goldoff [mailto:egold...@gmail.com]
Sent: Wednesday, May 18, 2011 10:38 PM
To: NT System Admin Issues
Subject: RE: Question on PCI compliance

GFI used to have a free/inexpensive SIM software ( System Integrity Monitor ) 
but don't think that's available anymore.  But if you Google for 'system 
integrity monitor free' you'll get a few hits on software you can test to see 
if it meets your needs.  You'll also need to have the web server hardened ( 
what version OS, what version IIS ??) and verification that you only collect 
card numbers under SSL connection, and that you only transmit them on to the 
processor also via secure channel ( ssl, ipsec, etc )

Hit me up offline if you don't find what you need.  I've brought a couple SMB 
retail organizations into PCI compliance and presented some lectures, webinars, 
and workshops on PCI compliance so I've got a sense of what can be done within 
budget.

Erik Goldoff
IT  Consultant
Systems, Networks,  Security
'  Security is an ongoing process, not a one time event ! '
From: Greg Olson [mailto:olson.g...@gmail.com]
Sent: Wednesday, May 18, 2011 5:01 PM
To: NT System Admin Issues
Subject: Question on PCI compliance

Hi all,
I have a quick question on pci compliance and how you guys\gals are handling it 
for servers you have that take credit card data?
We have a small amount of servers that basically host the web code to take cc 
info and its then passed on directly to the processor. Nothing stays on the 
server at any time, but we would like to be able to pass a pci audit on these 
servers which requires that we have automated software that monitors and 
detects changes in the log files, and software that monitors key files (windows 
directories, and our app directories) for any changes and sends out an alert.
We're looking at Tripwire product, but they seem pretty expensive for the small 
amount of servers we're talking about.
Any thoughts?

Thanks in advance.
-Greg


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Sonicwall TZ100 content filtering

[Level 5 Lists]

We connected dual Sonicwalls for a 700 client office and did AD integration, it 
required an app on the DC to run and sync back to the Sonicwall IIRC. It didn't 
just pull LDAP queries. These were Sonicwall 5000 series on 100MB fiber 
internet and gig metro-e ports. It did work however, and we did OpenDNS in 
combination with the content filtering as a backup option. I don't think we 
ever had an issue after the initial setup. 

On our smaller clients (10-50 or so) that use Sonicwall TZ devices, we found 
ourselves using DHCP reservations, and doing whitelisting and bypass filtering 
with separate logins. No real reporting so I wouldn't have much to say on that. 
 It only took a shortcut on the desktop for the 'admins' to get to the 
Sonicwall login page to bypass. 

-Original Message-
From: Matthew W. Ross [mailto:mr...@ephrataschools.org] 
Sent: Tuesday, May 17, 2011 12:52 PM
To: NT System Admin Issues
Subject: RE: Sonicwall TZ100 content filtering

Okay, I just got off the phone with the Sales Rep, and he assures me that the 
new hardware will not run the Basic filtering at all, the only option if you 
want filtering is the Premium. As you say, it's dirt cheap, so that's okay.

He also assures me that as long as we hook up the device to an LDAP or AD, the 
user based security can do what we need.

Thanks for all the feedback guys. This list is awesome.


--Matt Ross
Ephrata School District


- Original Message -
From: Ben Serebin
[mailto:b...@reefsolutions.com]
To: NT System Admin Issues
[mailto:ntsysadmin@lyris.sunbelt-software.com]
Sent: Tue, 17 May 2011
09:22:37 -0700
Subject: RE: Sonicwall TZ100 content filtering


 Hello Matt,
 
   You can whitelist per IP ranges (school admin IPs will get youtube, 
 while kids won't or vice versa) if you get the Premium version. I 
 would only ever recommend the Premium version (skip Standard). Like 
 someone else said, this is the basics, don't expect real reporting, 
 etc. Just blocking. It works pretty well. It's also dirt cheap ($83 
 for the TZ100 see url below). It's almost free that that price. I'm 
 not promoting this site (but I've bought via them before). I've also 
 deployed WebSense one of the most full featured content filtering 
 solutions on the market, but it sounds like you need real basic filtering 
 which is what SonciWall offers for CF.
 
 http://www.sonicguard.com/ContentFilteringService.asp
 
   Another trick is to use DHCP MAC address reservations and allow all 
 the computers to use DHCP but control who gets IP based and then have 
 the filtering work that way. Or good ol' static IPs. There are 
 different ways to deploy this.
 
 -Ben
 
 -Original Message-
 From: Matthew W. Ross [mailto:mr...@ephrataschools.org]
 Sent: Tuesday, May 17, 2011 11:55 AM
 To: NT System Admin Issues
 Subject: RE: Sonicwall TZ100 content filtering
 
 The feature we really need is user based access in it's most basic form.
 Users are able to access sites A, B, and C, but nothing else (your 
 basic
 whitelist) while letting a privileged user to also go to sites X, Y, 
 and Z while still being filtered from xxx.com. I do not require AD 
 integration or in depth reporting in this case.
 
  If you're trying to do more complex filtering (e.g. whitelisting per 
  AD logged on user, skip it)...
 
 Does this mean it cannot do what I require? Thanks again for your feedback.
 
 
 --Matt Ross
 Ephrata School District
 
 
 - Original Message -
 From: Ben Serebin
 [mailto:b...@reefsolutions.com]
 To: NT System Admin Issues
 [mailto:ntsysadmin@lyris.sunbelt-software.com]
 Sent: Tue, 17 May 2011
 06:36:13 -0700
 Subject: RE: Sonicwall TZ100 content filtering
 
 
  Hello Matt,
  
  It works well if all computers are treated equally. Simple, 
  effective, and low cost. If you're trying to do more complex 
  filtering (e.g. whitelisting per AD logged on user, skip it), but if 
  you can whitelist based on IP ranges, it works well (requires CFS 
  Premium
 version).
  
  -Ben
  
  REEF Solutions
  Technology  Exchange Server Consulting
  --
  Founder / President
  New York Exchange User Group
  1st and Only Microsoft Exchange Server Group in NYC www.nyexug.com
  
  -Original Message-
  From: Matthew W. Ross [mailto:mr...@ephrataschools.org]
  Sent: Tuesday, May 17, 2011 5:37 AM
  To: NT System Admin Issues
  Subject: Sonicwall TZ100 content filtering
  
  Sorry for the previous blank post, it was sent prematurely. 
  
  I know some of you guys are fans of the SonicWalls. I'm looking at 
  the
  TZ100 for a remote lab of 12 workstations. What I'd like your 
  opinion on is the content filtering feature. I'll be getting a sales 
  pitch tomorrow, I'm sure... But any feedback for or against the 
  filtering will be helpful while evaluating this solution.
  
  Thanks in advance. 
  
  
  --Matt Ross
  Ephrata School District
  
  
  ~ Finally, powerful endpoint security 

RE: Encrypting Event Logs

[Level 5 Lists]

I have 2 clients that get audited by trustwave annually onsite, and quarterly 
pen tests. In all the audits I have done with different auditors no one has 
requested us to do this. We do event log collection into an sql database that 
is not encrypted. No one has also ever asked that we encrypt that database 
either.

You can look for yourself on the PCI requirements checklist and see if this is 
mentioned anywhere. They are updated annually at least.

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, May 10, 2011 10:51 PM
To: NT System Admin Issues
Subject: Re: Encrypting Event Logs

Indeed!  :)




ASB (Professional Biohttp://about.me/Andrew.S.Baker/bio)
Harnessing the Advantages of Technology for the SMB market...




On Tue, May 10, 2011 at 7:42 PM, Free, Bob r...@pge.commailto:r...@pge.com 
wrote:
Yea, what you said. Another in a long line of totally clueless auditors

Sometimes I think their only goal in life is to come up with a finding that no 
one else ever has before..

From: Michael B. Smith 
[mailto:mich...@smithcons.commailto:mich...@smithcons.com]
Sent: Tuesday, May 10, 2011 3:04 PM

To: NT System Admin Issues
Subject: RE: Encrypting Event Logs

Ttttbt.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: Sean Martin [mailto:seanmarti...@gmail.commailto:seanmarti...@gmail.com]
Sent: Tuesday, May 10, 2011 3:43 PM
To: NT System Admin Issues
Subject: Encrypting Event Logs

Good morning/afternoon,

My manager has requested I look for ways to encrypt the event logs on our 
DCs. Apparently during one of our many audits (governing body to remain 
nameless) one of the auditors insisted that we should be encrypting the event 
logs on our DCs. I have since requested a formal finding be provided by the 
auditor indicating the perceived risks so that I can first identify if we have 
any mitigating controls already in place.

With that, I thought I would start looking around for specific solutions. We're 
currently running Windows 2003 DCs in a Windows 2003 Native AD environment. I'm 
not finding a whole lot of solutions specific to encrypting event logs. We 
are planning on introducing Windows 2008 R2 DCs this year so I will research 
bit locker, but, I'm concered about the inter-operability with Symantec SIM.

I'm still working with very little information so I'm probably missing a lot of 
content. I guess I would just like to find out if anyone else has received 
similiar directives from an audit and what solutions or mitigating controls 
helped satisfy the auditor's concerns.

- Sean



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: VOIP design questions

[Level 5 Lists]

Every voip install we have come across has had completely separate networks 
only merging at the edge for either multi-office connectivity (iax2 trunks) , 
firmware updates, and remote access by the pbx vendor.  I have a client running 
an Asterisk box with 75 users on its own network and we still had to do QoS, 
which I argued about lightly .. since 99.5% of all the traffic is voice anyway 
whats the difference I figured? But it did make a difference ...
That being said, I have a client @ 850 users that's running IP Office from 
Avaya, with about 500 phones all RTP/SIP/UDP, travelling the data network, with 
QoS/ToS on their own Vlan. All 3 pbxes at each office are connected via 1gb 
fiber into a datacenter. All the phones connect to the unit in their respective 
office, and we don't have any real issues with it. The voicemail server is 
vm'ed and so is the tftp/update server, in the voice and data vlan so the call 
center app's can connect.
My biggest problem seems to not be in internal SIP/RTP type connections of the 
handsets to the PBX, but most of the issues I keep running into have all been 
carrier related if they are using SIP/IAX based providers. I do have a couple 
of small clients on 8x8 which is a hosted turnkey service on cable modems 
without issue. I also have my office on a pbx in our datacenter, we have 12 
phones in the office, and an HD video conferencing unit all on Comcasts 50/10 
Internet and we never have a problem FWIW. So all of our phones are connecting 
over the internet and then we have an IAX2 trunk with our carrier running 
Asterisk. I think the reason I don't have an issue really is because our pbx 
(vm btw) is sitting on a 20mb internet connection on the same data network as 
our provider.
As far as your vendor, do you have managed switches? Did they come in and pull 
snmp data from them after a week? Without this information I wouldn't think 
about moving forward. If you have saturation on the network at all then you 
will need a separate network at best, and vlan/qos at least.
From: Tom Miller [mailto:tmil...@hnncsb.org]
Sent: Monday, May 02, 2011 9:39 AM
To: NT System Admin Issues
Subject: VOIP design questions

Folks,

We are planning to retire our current phone system and move to a Mitel VOIP 
system.  Not having implemented VOIP before, I have some questions for those of 
you that have:

- our vendor claims our current data network can easily handle VOIP traffic 
since it's a small amount of traffic (don't know exact amount yet, still 
awaiting vendor response).  As such, they tell it is possible to use our 
current network to accommodate voice and data.  I'm not sure if Im comfortable 
with this.  I was thinking of a more segregated approach:  different network 
and voice and data never intersect.
- our vendor claims we can use the existing data jack for the phones, and plug 
the desktop PCs/laptops into the phone as a sort of switch.  I'm thinking this 
would add another level of complexity:  phone is broke and by the way you can't 
get on the network now.
- the reason the vendor suggests the above is that the current voice drops 
(cat5) terminate to phone patch panels (in most cases). Those cables would need 
to be cut and re-terminated to switches.

So I have some concerns about our vendor claims.  The dollar figure they 
propose does not include network changes, new switches, etc.  Looking at the 
cost proposal, I am thinking there are quite a few hardware and man-hours costs 
missing.

What do you folks do for VOIP?

Thanks,
Tom


Confidentiality Notice: This e-mail message, including attachments, is for the 
sole use of the intended recipient(s) and may contain confidential and 
privileged information. Any unauthorized review, use, disclosure, or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: RPC/HTTPS

[Level 5 Lists]

I redid all the set-webservicesvirtualdirectory for internal and external url. 
Maybe its not a big deal, but I still don't understand 100%. If I turn off 
rpc/https , open outlook, it re-enables rpc/https and puts in mail.server.com , 
the connection status shows TCP/IP but only because I have the fast/slow 
networks boxes unchecked. Internally our dns does not have mail.domain.com and 
pinging it gives not found error. In the tcp/ip settings it shows 
mx-exchange.domain.com (the internal dns name) so even though rpc is set to 
mail.domain.com it still seems to be working ok. 

If I enable the fast/slow network checks, then I get prompted for pw (ntlm asks 
me 2x for pw and then changes back to BASIC) and then it connects for https. 
Again odd, because mail.domain.com does not answer internally via DNS. 

When I run the autodiscover tests everything seems fine, I get results from the 
internal and external side which look accurate. Once again, internally I do 
*not* have an autodiscover.domain.com so pinging autodiscover.domain.com yields 
nothing, so all this has to be coming from AD or the Exchange server. 

I guess ultimately everything is working, but its not working as expected so 
troubleshooting down the road could become an issue. Our intial finding was 
that DNS scavageng had deleted the internal DNS record (it was set to static 
manually), external dns record, and the autodiscover records which were all set 
to static. We have since deleted mail.domain.com, autodiscover.domain.com and 
had the server register itself instead of it being in there manually. This 
fixed the issue as far as mail and https , but curious as to why now everyone 
is getting rpc/https configuration as I haven't seen that anywhere else. 

Thanks


-Original Message-
From: Level 5 Lists 
Sent: Friday, April 29, 2011 10:07 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

Thanks this is a small shop , 50 users inside, 30 outside ... single exchange 
server, behind a spam appliance, we didn't do forefront etc, just rpc/https/owa 
NATed with a UCC cert. 

I ran that and I get:

Name: RPC (Default Web Site)


If I run it without the name value its just blank . In the GUI I have it set to 
the internal/external sitenames. Maybe this got messed up in the sp3 upgrade? 
And now a week or so later its causing issues?


-Original Message-
From: Damien Solodow [mailto:damien.solo...@harrison.edu]
Sent: Friday, April 29, 2011 5:55 PM
To: NT System Admin Issues
Subject: Re: RPC/HTTPS

Run this in EMS: get-outlookanywhere |fl name,internalurl,externalurl and see 
what you get. 
In general the two url fields should be the same, especially if you're using a 
client access array. 
--
Sent using BlackBerry


- Original Message -
From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Friday, April 29, 2011 05:30 PM
To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
Subject: RE: RPC/HTTPS

I did some poking around, it looks like my internal clients are connecting to 
mx-exchange.domain.com and then flipping into rpc/https mail.domain.com Im 
trying to figure out if all I need to do is set the outlookprovider for EXCH to 
MX-EXCHANGE.domain.com so they maintain that connectivity.

I guess on a different issue is why this started happening ... we did upgrade 
to sp3 about 10 days ago but this problem just showed up today.

Thanks


-Original Message-
From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Friday, April 29, 2011 2:26 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

No that is correct. There are substantially more properties if you pipe it to 
FL. You need to look at the docs and see what flags to set to control the 
RPC/HTTPS behavior. I don't have the docs in front of me. 

Thanks,
Brian Desmond
br...@briandesmond.com

c   - 312.731.3132


-Original Message-
From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Friday, April 29, 2011 12:34 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

Thanks Brian, the NTLM was what we had just found too, but obviously internally 
I don't want/need to use rpc ...

I did get-outlookprovider:

[PS] C:\Windows\System32get-outlookprovider

NameServer  CertPrincipalName   TTL
--  -   ---
EXCH1
EXPR1
WEB 1

Everything is blank, so presumably something is wrong ...  will do some 
homework ..


-Original Message-
From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Friday, April 29, 2011 1:26 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

You can configure these preferences with the Set-OutlookProvider cmdlet.

As far as why they're getting prompted, you probably have Basic Auth instead of 
NTLM enabled for Outlook Anywhere. 

Thanks,
Brian

FW: RPC/HTTPS

[Level 5 Lists]

Hmm, still no go on posting to exchange going to sub/unsub ... 

-Original Message-
From: Level 5 Lists 
Sent: Friday, April 29, 2011 11:58 AM
To: 'MS-Exchange Admin Issues'
Subject: RPC/HTTPS

We have a client with Exchange 2007 sp3 running for some time now. The other 
day a few users started flipping to rpc/https. Their internal and external dns 
is the same (.com) so internally I have autodiscover.domain.com mail.domain.com 
etc etc .. all registered with a UCC cert and pointing to the internal IP of 
the Exchange server. 

The clients were all off RPC internally, and the sales laptops obviously use 
rpc/https. Today the whole company flipped to rpc/https internally. While this 
wasn't an issue as far as functionality everyone had to put in their 
credentials so it caused a lot of confusion. 

In testing it , if I turn off rpc, outlook works, but when I close and re-open 
its back on rpc again. I checked GPO Results and nothing is there to push this 
out. Im thinking because of the autodiscover even though we are internal to the 
server they are getting changed automatically, just not positive how to change 
it back. We would like to keep it setup this way for when sales people come in 
they don't have to make any changes and it just works, but the whole office 
having to put in their credentials or store them etc will get annoying quickly.

Thanks






~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: RPC/HTTPS

[Level 5 Lists]

Thanks Brian, the NTLM was what we had just found too, but obviously internally 
I don't want/need to use rpc ...

I did get-outlookprovider:

[PS] C:\Windows\System32get-outlookprovider

NameServer  CertPrincipalName   TTL
--  -   ---
EXCH1
EXPR1
WEB 1

Everything is blank, so presumably something is wrong ...  will do some 
homework ..


-Original Message-
From: Brian Desmond [mailto:br...@briandesmond.com] 
Sent: Friday, April 29, 2011 1:26 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

You can configure these preferences with the Set-OutlookProvider cmdlet.

As far as why they're getting prompted, you probably have Basic Auth instead of 
NTLM enabled for Outlook Anywhere. 

Thanks,
Brian Desmond
br...@briandesmond.com

c   - 312.731.3132


-Original Message-
From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Friday, April 29, 2011 12:05 PM
To: NT System Admin Issues
Subject: FW: RPC/HTTPS

Hmm, still no go on posting to exchange going to sub/unsub ... 

-Original Message-
From: Level 5 Lists
Sent: Friday, April 29, 2011 11:58 AM
To: 'MS-Exchange Admin Issues'
Subject: RPC/HTTPS

We have a client with Exchange 2007 sp3 running for some time now. The other 
day a few users started flipping to rpc/https. Their internal and external dns 
is the same (.com) so internally I have autodiscover.domain.com mail.domain.com 
etc etc .. all registered with a UCC cert and pointing to the internal IP of 
the Exchange server. 

The clients were all off RPC internally, and the sales laptops obviously use 
rpc/https. Today the whole company flipped to rpc/https internally. While this 
wasn't an issue as far as functionality everyone had to put in their 
credentials so it caused a lot of confusion. 

In testing it , if I turn off rpc, outlook works, but when I close and re-open 
its back on rpc again. I checked GPO Results and nothing is there to push this 
out. Im thinking because of the autodiscover even though we are internal to the 
server they are getting changed automatically, just not positive how to change 
it back. We would like to keep it setup this way for when sales people come in 
they don't have to make any changes and it just works, but the whole office 
having to put in their credentials or store them etc will get annoying quickly.

Thanks






~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: RPC/HTTPS

[Level 5 Lists]

I did some poking around, it looks like my internal clients are connecting to 
mx-exchange.domain.com and then flipping into rpc/https mail.domain.com Im 
trying to figure out if all I need to do is set the outlookprovider for EXCH to 
MX-EXCHANGE.domain.com so they maintain that connectivity.

I guess on a different issue is why this started happening ... we did upgrade 
to sp3 about 10 days ago but this problem just showed up today.

Thanks


-Original Message-
From: Brian Desmond [mailto:br...@briandesmond.com] 
Sent: Friday, April 29, 2011 2:26 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

No that is correct. There are substantially more properties if you pipe it to 
FL. You need to look at the docs and see what flags to set to control the 
RPC/HTTPS behavior. I don't have the docs in front of me. 

Thanks,
Brian Desmond
br...@briandesmond.com

c   - 312.731.3132


-Original Message-
From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Friday, April 29, 2011 12:34 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

Thanks Brian, the NTLM was what we had just found too, but obviously internally 
I don't want/need to use rpc ...

I did get-outlookprovider:

[PS] C:\Windows\System32get-outlookprovider

NameServer  CertPrincipalName   TTL
--  -   ---
EXCH1
EXPR1
WEB 1

Everything is blank, so presumably something is wrong ...  will do some 
homework ..


-Original Message-
From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Friday, April 29, 2011 1:26 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

You can configure these preferences with the Set-OutlookProvider cmdlet.

As far as why they're getting prompted, you probably have Basic Auth instead of 
NTLM enabled for Outlook Anywhere. 

Thanks,
Brian Desmond
br...@briandesmond.com

c   - 312.731.3132


-Original Message-
From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Friday, April 29, 2011 12:05 PM
To: NT System Admin Issues
Subject: FW: RPC/HTTPS

Hmm, still no go on posting to exchange going to sub/unsub ... 

-Original Message-
From: Level 5 Lists
Sent: Friday, April 29, 2011 11:58 AM
To: 'MS-Exchange Admin Issues'
Subject: RPC/HTTPS

We have a client with Exchange 2007 sp3 running for some time now. The other 
day a few users started flipping to rpc/https. Their internal and external dns 
is the same (.com) so internally I have autodiscover.domain.com mail.domain.com 
etc etc .. all registered with a UCC cert and pointing to the internal IP of 
the Exchange server. 

The clients were all off RPC internally, and the sales laptops obviously use 
rpc/https. Today the whole company flipped to rpc/https internally. While this 
wasn't an issue as far as functionality everyone had to put in their 
credentials so it caused a lot of confusion. 

In testing it , if I turn off rpc, outlook works, but when I close and re-open 
its back on rpc again. I checked GPO Results and nothing is there to push this 
out. Im thinking because of the autodiscover even though we are internal to the 
server they are getting changed automatically, just not positive how to change 
it back. We would like to keep it setup this way for when sales people come in 
they don't have to make any changes and it just works, but the whole office 
having to put in their credentials or store them etc will get annoying quickly.

Thanks






~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http

RE: RPC/HTTPS

[Level 5 Lists]

Thanks this is a small shop , 50 users inside, 30 outside ... single exchange 
server, behind a spam appliance, we didn't do forefront etc, just rpc/https/owa 
NATed with a UCC cert. 

I ran that and I get:

Name: RPC (Default Web Site)


If I run it without the name value its just blank . In the GUI I have it set to 
the internal/external sitenames. Maybe this got messed up in the sp3 upgrade? 
And now a week or so later its causing issues?


-Original Message-
From: Damien Solodow [mailto:damien.solo...@harrison.edu] 
Sent: Friday, April 29, 2011 5:55 PM
To: NT System Admin Issues
Subject: Re: RPC/HTTPS

Run this in EMS: get-outlookanywhere |fl name,internalurl,externalurl and see 
what you get. 
In general the two url fields should be the same, especially if you're using a 
client access array. 
--
Sent using BlackBerry


- Original Message -
From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Friday, April 29, 2011 05:30 PM
To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
Subject: RE: RPC/HTTPS

I did some poking around, it looks like my internal clients are connecting to 
mx-exchange.domain.com and then flipping into rpc/https mail.domain.com Im 
trying to figure out if all I need to do is set the outlookprovider for EXCH to 
MX-EXCHANGE.domain.com so they maintain that connectivity.

I guess on a different issue is why this started happening ... we did upgrade 
to sp3 about 10 days ago but this problem just showed up today.

Thanks


-Original Message-
From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Friday, April 29, 2011 2:26 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

No that is correct. There are substantially more properties if you pipe it to 
FL. You need to look at the docs and see what flags to set to control the 
RPC/HTTPS behavior. I don't have the docs in front of me. 

Thanks,
Brian Desmond
br...@briandesmond.com

c   - 312.731.3132


-Original Message-
From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Friday, April 29, 2011 12:34 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

Thanks Brian, the NTLM was what we had just found too, but obviously internally 
I don't want/need to use rpc ...

I did get-outlookprovider:

[PS] C:\Windows\System32get-outlookprovider

NameServer  CertPrincipalName   TTL
--  -   ---
EXCH1
EXPR1
WEB 1

Everything is blank, so presumably something is wrong ...  will do some 
homework ..


-Original Message-
From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Friday, April 29, 2011 1:26 PM
To: NT System Admin Issues
Subject: RE: RPC/HTTPS

You can configure these preferences with the Set-OutlookProvider cmdlet.

As far as why they're getting prompted, you probably have Basic Auth instead of 
NTLM enabled for Outlook Anywhere. 

Thanks,
Brian Desmond
br...@briandesmond.com

c   - 312.731.3132


-Original Message-
From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Friday, April 29, 2011 12:05 PM
To: NT System Admin Issues
Subject: FW: RPC/HTTPS

Hmm, still no go on posting to exchange going to sub/unsub ... 

-Original Message-
From: Level 5 Lists
Sent: Friday, April 29, 2011 11:58 AM
To: 'MS-Exchange Admin Issues'
Subject: RPC/HTTPS

We have a client with Exchange 2007 sp3 running for some time now. The other 
day a few users started flipping to rpc/https. Their internal and external dns 
is the same (.com) so internally I have autodiscover.domain.com mail.domain.com 
etc etc .. all registered with a UCC cert and pointing to the internal IP of 
the Exchange server. 

The clients were all off RPC internally, and the sales laptops obviously use 
rpc/https. Today the whole company flipped to rpc/https internally. While this 
wasn't an issue as far as functionality everyone had to put in their 
credentials so it caused a lot of confusion. 

In testing it , if I turn off rpc, outlook works, but when I close and re-open 
its back on rpc again. I checked GPO Results and nothing is there to push this 
out. Im thinking because of the autodiscover even though we are internal to the 
server they are getting changed automatically, just not positive how to change 
it back. We would like to keep it setup this way for when sales people come in 
they don't have to make any changes and it just works, but the whole office 
having to put in their credentials or store them etc will get annoying quickly.

Thanks






~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body

Spamhaus Lookup

[Level 5 Lists]

Tried to put this on exchange list, but keeps saying no attachments .. thought 
I would try it here:



Exchange 2010 SP1 . We dropped anti-spam and put spamhaus and spamcop on and 
enabled. We are still seeing a lot of junk coming through, I went in to test 
spamhaus and no matter what I do the mail passes. I sent a test email to their 
system and it didn't reject it.

When I do a ping or nslookup on zen.spamhaus.org I get nothing in DNS. I tried 
a couple of external DNS servers with the same results. Im on Spamhaus' site 
and don't see anything about them being down... a couple of other providers 
seem to be working ok (I can at least ping/nslookup) the server.

Maybe Im doing something incorrect:

I added the filter, did zen.spamhaus.org, said for any response code (I didn't 
bother setting the different codes for now)




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Spamhaus Lookup

[Level 5 Lists]

Yes, we are using multiples , when I test a few of the known IP's from Spamhaus 
it fails all lookups, which is why I think its not working at all. Spamhaus was 
the one I was testing independently, and sending the email test, and the ip 
lookup test from exchange shell results in false (no response) even though 
Spamhaus says its listed. Im testing some of the other agents now just to see 
if any of them are functioning.

I also signed up for the free Barracuda RBL to try that one too. 

Thanks

-Original Message-
From: Bob Fronk [mailto:b...@btrfronk.com] 
Sent: Wednesday, April 27, 2011 1:37 PM
To: NT System Admin Issues
Subject: RE: Spamhaus Lookup

Relying on RBL alone is not a sufficient way to combat SPAM.  I use multiple 
RBLs, RWLs, Vipre and Barracuda.

-Original Message-
From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Wednesday, April 27, 2011 1:11 PM
To: NT System Admin Issues
Subject: Spamhaus Lookup

Tried to put this on exchange list, but keeps saying no attachments .. thought 
I would try it here:



Exchange 2010 SP1 . We dropped anti-spam and put spamhaus and spamcop on and 
enabled. We are still seeing a lot of junk coming through, I went in to test 
spamhaus and no matter what I do the mail passes. I sent a test email to their 
system and it didn't reject it.

When I do a ping or nslookup on zen.spamhaus.org I get nothing in DNS. I tried 
a couple of external DNS servers with the same results. Im on Spamhaus' site 
and don't see anything about them being down... a couple of other providers 
seem to be working ok (I can at least ping/nslookup) the server.

Maybe Im doing something incorrect:

I added the filter, did zen.spamhaus.org, said for any response code (I didn't 
bother setting the different codes for now)




~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Spamhaus Lookup

[Level 5 Lists]

Not sure if someone else is using spamhaus, but according to Spamhaus this test 
should produce a True result, as you can see I don't get any response from 
anyone.. maybe our firewall is blocking the traffic ? That might be something I 
have to check ..

[PS] C:\Windows\system32Get-IPBlockListProvider | Test-IPBlockListProvider 
-IPAddress 192.203.178.107


RunspaceId : 34e0baed-3f61-4c6d-85dc-dfe48c31187d
Provider   : SpamHaus IP Block List Provider
ProviderResult : {}
Matched: False

RunspaceId : 34e0baed-3f61-4c6d-85dc-dfe48c31187d
Provider   : SpamCop IP Block List Provider
ProviderResult : {}
Matched: False

RunspaceId : 34e0baed-3f61-4c6d-85dc-dfe48c31187d
Provider   : Barracuda BRBL
ProviderResult : {}
Matched  : False

From: Bill Songstad [mailto:bsongs...@gmail.com]
Sent: Wednesday, April 27, 2011 2:14 PM
To: NT System Admin Issues
Subject: Re: Spamhaus Lookup

Many public DNS servers don't reply correctly about lookups at spamhaus.  Make 
sure you are getting your DNS info from your ISP, and not the free public 
servers. (e.g. 8.8.8.8, 4.4.2.2. etc...)

Bill
On Wed, Apr 27, 2011 at 11:08 AM, Level 5 Lists 
li...@levelfive.usmailto:li...@levelfive.us wrote:
Yes, we are using multiples , when I test a few of the known IP's from Spamhaus 
it fails all lookups, which is why I think its not working at all. Spamhaus was 
the one I was testing independently, and sending the email test, and the ip 
lookup test from exchange shell results in false (no response) even though 
Spamhaus says its listed. Im testing some of the other agents now just to see 
if any of them are functioning.

I also signed up for the free Barracuda RBL to try that one too.

Thanks

-Original Message-
From: Bob Fronk [mailto:b...@btrfronk.commailto:b...@btrfronk.com]
Sent: Wednesday, April 27, 2011 1:37 PM
To: NT System Admin Issues
Subject: RE: Spamhaus Lookup

Relying on RBL alone is not a sufficient way to combat SPAM.  I use multiple 
RBLs, RWLs, Vipre and Barracuda.

-Original Message-
From: Level 5 Lists [mailto:li...@levelfive.usmailto:li...@levelfive.us]
Sent: Wednesday, April 27, 2011 1:11 PM
To: NT System Admin Issues
Subject: Spamhaus Lookup

Tried to put this on exchange list, but keeps saying no attachments .. thought 
I would try it here:



Exchange 2010 SP1 . We dropped anti-spam and put spamhaus and spamcop on and 
enabled. We are still seeing a lot of junk coming through, I went in to test 
spamhaus and no matter what I do the mail passes. I sent a test email to their 
system and it didn't reject it.

When I do a ping or nslookup on zen.spamhaus.orghttp://zen.spamhaus.org/ I 
get nothing in DNS. I tried a couple of external DNS servers with the same 
results. Im on Spamhaus' site and don't see anything about them being down... a 
couple of other providers seem to be working ok (I can at least ping/nslookup) 
the server.

Maybe Im doing something incorrect:

I added the filter, did zen.spamhaus.orghttp://zen.spamhaus.org/, said for 
any response code (I didn't bother setting the different codes for now)




~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Spamhaus Lookup

[Level 5 Lists]

Thanks Bill for the lead, this was the problem. My client had manually put 
4.2.2.2 into their DNS forwarder. Once I removed it, cleared dns cache Im 
getting TRUE results..

Appreciate the tip!


From: Bill Songstad [mailto:bsongs...@gmail.com]
Sent: Wednesday, April 27, 2011 2:14 PM
To: NT System Admin Issues
Subject: Re: Spamhaus Lookup

Many public DNS servers don't reply correctly about lookups at spamhaus.  Make 
sure you are getting your DNS info from your ISP, and not the free public 
servers. (e.g. 8.8.8.8, 4.4.2.2. etc...)

Bill
On Wed, Apr 27, 2011 at 11:08 AM, Level 5 Lists 
li...@levelfive.usmailto:li...@levelfive.us wrote:
Yes, we are using multiples , when I test a few of the known IP's from Spamhaus 
it fails all lookups, which is why I think its not working at all. Spamhaus was 
the one I was testing independently, and sending the email test, and the ip 
lookup test from exchange shell results in false (no response) even though 
Spamhaus says its listed. Im testing some of the other agents now just to see 
if any of them are functioning.

I also signed up for the free Barracuda RBL to try that one too.

Thanks

-Original Message-
From: Bob Fronk [mailto:b...@btrfronk.commailto:b...@btrfronk.com]
Sent: Wednesday, April 27, 2011 1:37 PM
To: NT System Admin Issues
Subject: RE: Spamhaus Lookup

Relying on RBL alone is not a sufficient way to combat SPAM.  I use multiple 
RBLs, RWLs, Vipre and Barracuda.

-Original Message-
From: Level 5 Lists [mailto:li...@levelfive.usmailto:li...@levelfive.us]
Sent: Wednesday, April 27, 2011 1:11 PM
To: NT System Admin Issues
Subject: Spamhaus Lookup

Tried to put this on exchange list, but keeps saying no attachments .. thought 
I would try it here:



Exchange 2010 SP1 . We dropped anti-spam and put spamhaus and spamcop on and 
enabled. We are still seeing a lot of junk coming through, I went in to test 
spamhaus and no matter what I do the mail passes. I sent a test email to their 
system and it didn't reject it.

When I do a ping or nslookup on zen.spamhaus.orghttp://zen.spamhaus.org/ I 
get nothing in DNS. I tried a couple of external DNS servers with the same 
results. Im on Spamhaus' site and don't see anything about them being down... a 
couple of other providers seem to be working ok (I can at least ping/nslookup) 
the server.

Maybe Im doing something incorrect:

I added the filter, did zen.spamhaus.orghttp://zen.spamhaus.org/, said for 
any response code (I didn't bother setting the different codes for now)




~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Touch screen tablets

[Level 5 Lists]

Not sure what you guys paid, I played with the xoom at CES nice! They were 
talking about 1k retail. Costco had them for 580 on pre-order. Considering my 
64gb ipad fetches me about 400 bucks I cant wait to make the switch ..

From: Carl Houseman [mailto:c.house...@gmail.com]
Sent: Friday, April 22, 2011 1:51 PM
To: NT System Admin Issues
Subject: RE: Touch screen tablets

64GB SSD and 12 screen account for some of that price.

BestBuy is taking pre-orders for the Acer Iconia (10 Android 3.0) at $150 less 
than list price of a wi-fi-only Xoom. Supposed to ship by the end of the month. 
 Let the price wars begin!


From: Rod Trent [mailto:rodtr...@myitforum.com]
Sent: Friday, April 22, 2011 12:48 PM
To: NT System Admin Issues
Subject: RE: Touch screen tablets

Crazy...that's twice the price of a Xoom.

From: Steven Peck [mailto:sep...@gmail.com]
Sent: Friday, April 22, 2011 12:39 PM
To: NT System Admin Issues
Subject: Re: Touch screen tablets

http://www.microsoftstore.com/store/msstore/en_US/pd/productID.228299800/parentCategoryID.44066900/categoryID.54536100/list.true
A friend of mine has that.  It's pretty darn nice.
On Fri, Apr 22, 2011 at 9:07 AM, Rod Trent 
rodtr...@myitforum.commailto:rodtr...@myitforum.com wrote:
Full-size laptop?  Or would a mini (like the Dell) or even a netbook do?
What OS?

From: Tom Miller [mailto:tmil...@hnncsb.orgmailto:tmil...@hnncsb.org]
Sent: Friday, April 22, 2011 12:01 PM
To: NT System Admin Issues
Subject: Touch screen tablets

Folks,

I'm in the market for a touch screen laptop tablet.  We want to test 
e-signatures using the touch screen instead of an add-on USB signature card.

Any suggestions?  I see several vendors have these.  Since this is just 
testing, nothing high-end is needed.

Thanks,
Tom


Confidentiality Notice: This e-mail message, including attachments, is for the 
sole use of the intended recipient(s) and may contain confidential and 
privileged information. Any unauthorized review, use, disclosure, or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: SIDs

[Level 5 Lists]

Well the last time I accidentally connected 5 xp ghosted computers onto a 
domain I had all kinds of issues. We had issues with authentication, 
enumerating domain accounts would revert to Unknowns (like Domain Admins in the 
local Administrators group) and all kinds of weirdness. We troubleshot this to 
the help desk that did not run NewSid on the computers. We unjoined the domain, 
NewSid, rejoined and the problems were gone.

2 weeks ago I had a client who rolled up 2 2008r2 vms from a base image, 
connected them to the domain , one running exchange 2010, the other was BES 5. 
They both seemed to work okay for the most part, but the event logs were 
complaining about dupe sids all the time. We cleaned it up , but did not notice 
any huge issues with the machines themselves.

So while I think the article is very interesting Im not going to try it anytime 
soon ;)



From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Thursday, April 21, 2011 8:57 AM
To: NT System Admin Issues
Subject: Re: SIDs

The most important point is probably the very last in that article

Note that Sysprep resets other machine-specific state that, if duplicated, can 
cause problems for certain applications like Windows Server Update Services 
(WSUS), so Microsoft's support policy will still require cloned systems to be 
made unique with Sysprep
On 21 April 2011 13:52, itli...@imcu.commailto:itli...@imcu.com 
itli...@imcu.commailto:itli...@imcu.com wrote:
I have a new admin that believes you don't have to sysprep machines because 
Mark R. from systernals wrote an article saying duplicate sid's were not an 
issue.
He doesn't have the article for me to refute so I don't know how to answer him 
or tell him he is wrong?
Any help would and will be appreciated.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



--
On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the 
machine wrong figures, will the right answers come out?' I am not able rightly 
to apprehend the kind of confusion of ideas that could provoke such a question.

IMPORTANT: This email is intended for the use of the individual addressee(s) 
named above and may contain information that is confidential, privileged or 
unsuitable for overly sensitive persons with low self-esteem, no sense of 
humour or irrational religious beliefs. If you are not the intended recipient, 
any dissemination, distribution or copying of this email is not authorised 
(either explicitly or implicitly) and constitutes an irritating social faux pas.

Unless the word absquatulation has been used in its correct context somewhere 
other than in this warning, it does not have any legal or no grammatical use 
and may be ignored. No animals were harmed in the transmission of this email, 
although the kelpie next door is living on borrowed time, let me tell you. 
Those of you with an overwhelming fear of the unknown will be gratified to 
learn that there is no hidden message revealed by reading this warning 
backwards, so just ignore that Alert Notice from Microsoft.

However, by pouring a complete circle of salt around yourself and your computer 
you can ensure that no harm befalls you and your pets. If you have received 
this email in error, please add some nutmeg and egg whites, whisk and place in 
a warm oven for 40 minutes.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Misconfigured Apple?

[Level 5 Lists]

No complaints, from the IIS logs this just started happening what looks like 
about 8 days ago.. maybe an ipad2?

Im looking into it tomorrow as this was my initial thought.

Its sbs2003 with all the service packs

From: Rod Trent [mailto:rodtr...@myitforum.com]
Sent: Thursday, April 21, 2011 6:36 PM
To: NT System Admin Issues
Subject: RE: Misconfigured Apple?

Have those 2 attorneys reported problems with their devices?

From: Mike Sullivan [mailto:neog...@gmail.com]
Sent: Thursday, April 21, 2011 6:33 PM
To: NT System Admin Issues
Subject: Re: Misconfigured Apple?

Could they both be on an early version of iOS4?

http://blogs.technet.com/b/exchange/archive/2010/07/01/3410271.aspx
On Thu, Apr 21, 2011 at 1:35 PM, Level 5 Lists 
li...@levelfive.usmailto:li...@levelfive.us wrote:
I have a small law firm about 20 people.  A handful of them are using ipads, 
iphones , macbooks etc ..

So the past week we started noticing that the system partition was down about 
7-8gb, a quick treefinder showed me that the iis log files for the past week or 
filling up 400mb + a day.

I scroll through it manually, and its all from 2 of the attorneys, just in 1 
minute about 1800+ iis log entries. The server seems to be operating normally , 
I just haven't seen this anywhere else, even with the other clients 
ipads/iphones we support.

I am going to turn down logging obviously but we don't have much enabled, 
whatever iis6 defaults are...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



--
Thank you,
Mike Sullivan

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Looking for secure video conferencing

[Level 5 Lists]

Jim, we recently deployed vutelepresence units, they are decent and weren't 
very expensive (@ 1500/unit with 5 pc clients). We found them because they do 
720p conferencing with about 500k of bandwidth. We deployed one to Florida, 
Penn , and the UK for our client and they all seem to be pretty happy with them.

I think the company still has some ways to go but the product works pretty 
well. Their sales/support was a little slow to respond.

From: Jim Holmgren [mailto:jholmg...@xlhealth.com]
Sent: Wednesday, April 20, 2011 8:46 PM
To: NT System Admin Issues
Subject: RE: Looking for secure video conferencing

No, Lync is our first foray into OCS world so I have no prior experience to 
which I can compare.

Jim



From: Steven Peck [mailto:sep...@gmail.com]
Sent: Wed 4/20/2011 7:47 PM
To: NT System Admin Issues
Subject: Re: Looking for secure video conferencing
Did you have ocs2007r2?  If so are there any significant differences between 
them you have noitced yet?
On Wed, Apr 20, 2011 at 1:49 PM, Jim Holmgren 
jholmg...@xlhealth.commailto:jholmg...@xlhealth.com wrote:
We have deployed Lync here over the last 2-3 weeks, but we have not fully 
explored the Video capability beyond some internal point-to-point testing.

We have it deployed internally only at this point, but it seems to be a nice 
application that is very integrated into Outlook and SharePoint.

Jim

From: Steven Peck [mailto:sep...@gmail.commailto:sep...@gmail.com]
Sent: Wednesday, April 20, 2011 4:43 PM

To: NT System Admin Issues
Subject: Re: Looking for secure video conferencing

Office Communications Server or Lynx should do it as well.
On Wed, Apr 20, 2011 at 1:32 PM, Jim Holmgren 
jholmg...@xlhealth.commailto:jholmg...@xlhealth.com wrote:
+1 we used Polycom's personal video client extensively at my previous employer. 
 Worked great!

Jim


Jim Holmgren
Senior Manager, Infrastructure Services
XLHealth Corporation
The Warehouse at Camden Yards
351 West Camden Street, Suite 100
Baltimore, MD 21201
410.625.2200 (main)
443.524.8573 (direct)
443-506.2400 (cell)
www.xlhealth.comhttp://www.xlhealth.com/



-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.commailto:kurt.b...@gmail.com]
Sent: Wednesday, April 20, 2011 4:16 PM
To: NT System Admin Issues
Subject: Re: Looking for secure video conferencing

The only system I played with is the Polycom setup we have. We have a VSX 7000, 
which is really old, but there's a PC client for it that seems to work really 
well. The Polycom (software client and hardware
unit) supports encryption, and the hardware unit can do multi-point 
communication.

We decided not to go with the software client, but in my tests it performed 
just fine.

Kurt

On Wed, Apr 20, 2011 at 12:38, Tom Miller 
tmil...@hnncsb.orgmailto:tmil...@hnncsb.org wrote:
 We will soon be piloting a program whereby our staff will go to a
 client's location to have a video conference with our doctors who are
 in their offices.  The laptops will have cameras on them.

 I'm looking for recommendations for systems.  If the pilot goes well,
 we expect this to grow.  In house system or hosted is fine.  I know
 Cisco has some sort of teleconferencing, but that requires a large
 cash purchase upfront for a unit.  Anything else?  It needs to be
 secure and easy to use for our end users.  I'd prefer something where
 our doctors have a small screen to watch next to their monitors, since
 they will be working withing our clinical program at the time, and I
 know I'd get complaints about having to toggle.  Heaven forbid.

 Thanks,
 Tom

 Confidentiality Notice: This e-mail message, including attachments, is
 for the sole use of the intended recipient(s) and may contain
 confidential and privileged information. Any unauthorized review, use,
 disclosure, or distribution is prohibited. If you are not the intended
 recipient, please contact the sender by reply e-mail and destroy all
 copies of the original message.

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to 
 listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

CONFIDENTIALITY NOTICE: This email, including attachments, is for the sole use 
of the intended recipient(s) and may contain confidential and/or protected 
health information. Under the Federal Law (HIPAA), the intended recipient is 
obligated to keep this information secure 

RE: Cybernetics san

[Level 5 Lists]

Unless they are offering something out of the ordinary I would look at 
Nexenta's offerings, and just get support direct by either building your own or 
one of their channel partners. I think pogo makes decent stuff, and those new 
dual mobo nexenta boxes with the 10gb crossover looks pretty nice too. (I 
forget who makes them ... ) . Aberdeen boxes we picked up in December are 
decent, @ 8k , 5yr warranty, gold support w/ Nexenta (replication, 
snapshotting, compression, and de-duping licensed). 

If your running sata its hard to get 16tb unless you are dropping 2tb drives so 
your spindle speed isnt going to be fantastic. Depends on your needs... I have 
4 esx boxes at a client running an Aberdeen box Nexenta 3.04 w/ 8 1tb drives. 
It runs pretty well, 24 servers (sql, exchange, storage) for about 75 users .. 
That unit does 4 hr replication to a secondary unit over a 10mb fiber, it took 
a bit to get it going but seems to be working nicely now.



-Original Message-
From: Glen Johnson [mailto:gjohn...@vhcc.edu] 
Sent: Monday, April 18, 2011 10:07 AM
To: NT System Admin Issues
Subject: Cybernetics san

Anyone have comments about these folks.
Got a call as I was leaving work on Friday and from the sales droid sphell, it 
sounds pretty reasonable.  Off the cuff, 16tb for under $10k.
Got a webex tomorrow and plan to do some reading later today, but would 
appreciate any advice from folks with experience.
We are looking to move several vm's to a san for offsite replications and also 
high availability.
May also move our SQL and Exchange 2010 databases to the SAN later on.
Didn't see them mentioned when searching the list archives so I thought I'd ask.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Outlook 2007 credentials

[Level 5 Lists]

Thanks, I didn't even consider the server since its only happening at 1-2 
computers at each location. I was thinking it was a workstation update, we are 
on whitelisted patches so was guessing some of these people did their own 
office updates. I will take a look at that.


From: Bob Fronk [mailto:b...@btrfronk.com]
Sent: Monday, April 18, 2011 9:06 PM
To: NT System Admin Issues
Subject: RE: Outlook 2007 credentials

Any recent Exchange updates?  I recall a similar situation with SBS2008 after 
an Exchange roll up.  I think the same thing can happen on Exchange 2007 after 
Roll Up 9.

IIRC, the fix is to re-apply the roll up.

BF

From: Level 5 Lists [mailto:li...@levelfive.us]
Sent: Monday, April 18, 2011 9:02 PM
To: NT System Admin Issues
Subject: Outlook 2007 credentials

Over the past couple of weeks, I have been getting user complaints at a few 
different sites that Outlook will always ask for credentials. These are 
internal desktops. The clients are all different and its not system wide its 
just a workstation here and there. Cant seem to find a fix for it ... nothing 
really pops up error wise just asks for credentials you put them in and your 
fine. If you close/open outlook it asks again (like rpc/https).

Access to the network seems fine , rebooting, played around with disabling 
vipre a/v ... don't really see a reason why. Tried setting up an admin account, 
logged in setup outlook and it does it too so appears machine related not 
profile...



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: USB docking for laptops

[Level 5 - Lists]

Thanks guys. I re-informed my client I had recommended the true docking
stations from HP and not what the kid at Best Buy mentioned to them J

 

Apparently Toshiba has a lot of complaints and released a bunch of new
drivers but they still cant change how usb gets initialized from windows so
I don't see much help..

 

From: Jonathan Link [mailto:jonathan.l...@gmail.com] 
Sent: Wednesday, April 13, 2011 9:01 AM
To: NT System Admin Issues
Subject: Re: USB docking for laptops

 

We use Kensington SD100S[1], but mainly for the ability to add usb ports and
stand the notebook up a bit and bring the monitor closer to eye level.  We
experience similar issues, I just ask all users to use the network jack on
their computer.  Yes, it's one more thing to plug in, but it's small
potatoes.

 

[1]
http://www.cdw.com/shop/products/Kensington-Notebook-Docking-Station-with-St
and-SD100S-USB-docking-station/1629940.aspx Basically a stand with an
attachable port replicator.

 

 



 

On Wed, Apr 13, 2011 at 1:07 AM, Kurt Buff kurt.b...@gmail.com wrote:

Your instincts are correct.

USB docking stations have not worked for my firm, across several
models of docking stations and brands of laptops.

Nothing but headaches.

Kurt


On Tue, Apr 12, 2011 at 19:35, Level 5 - Lists li...@levelfive.us wrote:
 Hi all, we have about 10 HP laptops that were purchased with a Toshiba USB
 Dock. The issue is that many times when the users come into the office and
 boot the laptop with the device plugged in a lot of the settings have to
be
 redone, the login script doesn't run etc. We are figuring this is due to
the
 USB not being initialized first. We then have to logout/logon to get the
 scripts to run and then have to go back and setup the dual monitors
 correctly. Kind of annoying . I suggested getting the real docking
stations
 but haven't gotten approval yet. Wondering if anyone had a work around to
 get these devices to init before Windows comes up. Im told there are other
 brands that work better but cant imagine the difference .



 Thanks



 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: OT : Rooting Android phones

[Level 5 - Lists]

I have the evo rooted, and my wife has the shift and I rooted hers too
although there aren't any really good custom things for it yet.

 

I have tried many of the different custom roms, and the wireless tether is
the primary reason I rooted mine.  Right now I run the MIUI custom rom, it
looks sort of iphone'ish but everything is very polished, fast and the
battery lasts me way longer. I was able to scrap the nascar, nfl and built
in sprint items . (Most of the custom roms rip it out)

 

Cyanogen is one of the more popular custom roms out there, but im not a huge
fan. I did load cm7-grx which is a custom version of customized cyanogen
heh, its running gingerbread which is what the new Google Nexus runs so I
get the sip dialing and new apps ..

 

Evo's are probably the easiest to root, and seems to be a ton of custom roms
for them and I think the incredible has a lot too.

 

 

 

From: Micheal Espinola Jr [mailto:michealespin...@gmail.com] 
Sent: Thursday, March 24, 2011 11:52 PM
To: NT System Admin Issues
Subject: Re: OT : Rooting Android phones

 

soon to be known as the HTC Alka-Seltzer?

--
ME2

 

 





On Thu, Mar 24, 2011 at 7:23 AM, Craig Sterley cster...@ostusa.com wrote:

http://forum.xda-developers.com/wiki/index.php?title=HTC_Speedy

 

From: Kelli Sterley [mailto:kjsterley.li...@gmail.com] 
Sent: Thursday, March 24, 2011 10:16 AM


To: NT System Admin Issues
Subject: Re: OT : Rooting Android phones

 

Has anyone rooted the Evo Shift yet?

On Thu, Mar 24, 2011 at 4:42 AM, Rene de Haas rene.deh...@gmail.com wrote:

I'm not from the US. Mine is Tele2, but they get it from T-Mobile.

When I got it, about 2 months ago it came loaded with 2.2, didn't need to do
anything.

On Wed, Mar 23, 2011 at 10:42 PM, Matthew Bullock mbull...@root9.com
wrote:

Who's your carrier?  Verizon hasn't come out with 2.2 for the galaxy S yet.
I rooted my S but VZ sent an update which removed the root, and sent it into
a loop.  I had to wipe and restore the original image.

 

-mb

 

From: Rene de Haas [mailto:rene.deh...@gmail.com] 
Sent: Thursday, March 17, 2011 5:19 AM 


To: NT System Admin Issues

Subject: Re: OT : Rooting Android phones

 

On my Samsung Galaxy S running android 2.2 tethering is on there already
iirc.

On Wed, Mar 16, 2011 at 11:57 PM, Erik Goldoff egold...@gmail.com wrote:

Thanks, between here and another source, I think I've heard from about 8
folks that specifically mention the tethering benefit

 

Erik Goldoff

IT  Consultant

Systems, Networks,  Security 

'  Security is an ongoing process, not a one time event ! '

From: Jimmy Tran [mailto:jt...@teachtci.com] 
Sent: Wednesday, March 16, 2011 5:48 PM


To: NT System Admin Issues

Subject: RE: OT : Rooting Android phones

 

Erik, 

 

I rooted my Motorola Droid when I first got it.  I rooted it just to have
root access but then found some apps that will allow me to tether my phone
as a wi-fi hotspot.  I had often loaded different roms and such but that got
old real quick.  I can't run updates on my phone because of my rooted access
but I'm ok with that.  I haven't tinkered with my phone for over a year now
and still on OS 2.1.  The only real benefit of rooting for me is the wi-fi
tethering,  Hope this helps.

 

-Jimmy 

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Wednesday, March 16, 2011 12:40 PM
To: NT System Admin Issues
Subject: OT : Rooting Android phones

 

Lately I've been seeing a number of articles and videos on rooting Android
phones, including the HTC EVO that I use.

 

Besides the obvious 'gaining root access', has anyone done this that can
list some of the benefits from rooting your phone ?

(I'm thinking maybe I could finally uninstall that Nascar app that was
bundled by Sprint )

 

Thanks in advance

 

Erik Goldoff

IT  Consultant

Systems, Networks,  Security 

'  Security is an ongoing process, not a one time event ! '

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To 

RE: OT : Rooting Android phones

[Level 5 - Lists]

if you have an HTC you can goto unrevoked and do the subradio hack which
works on all upgrades forever.

 

I use Rom Manager and run the MIUI rom which looks similar to an iphone
(some love it , some hate it) but its very polished, the battery lasts
forever compared to others .. and yes very important is tethering.

 

Sprint wants 20 bucks a month more for tethering to be enabled on the phone
so wireless tether is nice, and on 4g its even nicer  (6dn 1up)

 

From: Rene de Haas [mailto:rene.deh...@gmail.com] 
Sent: Thursday, March 17, 2011 8:19 AM
To: NT System Admin Issues
Subject: Re: OT : Rooting Android phones

 

On my Samsung Galaxy S running android 2.2 tethering is on there already
iirc.

On Wed, Mar 16, 2011 at 11:57 PM, Erik Goldoff egold...@gmail.com wrote:

Thanks, between here and another source, I think I've heard from about 8
folks that specifically mention the tethering benefit

 

Erik Goldoff

IT  Consultant

Systems, Networks,  Security 

'  Security is an ongoing process, not a one time event ! '

From: Jimmy Tran [mailto:jt...@teachtci.com] 
Sent: Wednesday, March 16, 2011 5:48 PM


To: NT System Admin Issues

Subject: RE: OT : Rooting Android phones

 

Erik, 

 

I rooted my Motorola Droid when I first got it.  I rooted it just to have
root access but then found some apps that will allow me to tether my phone
as a wi-fi hotspot.  I had often loaded different roms and such but that got
old real quick.  I can't run updates on my phone because of my rooted access
but I'm ok with that.  I haven't tinkered with my phone for over a year now
and still on OS 2.1.  The only real benefit of rooting for me is the wi-fi
tethering,  Hope this helps.

 

-Jimmy 

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Wednesday, March 16, 2011 12:40 PM
To: NT System Admin Issues
Subject: OT : Rooting Android phones

 

Lately I've been seeing a number of articles and videos on rooting Android
phones, including the HTC EVO that I use.

 

Besides the obvious 'gaining root access', has anyone done this that can
list some of the benefits from rooting your phone ?

(I'm thinking maybe I could finally uninstall that Nascar app that was
bundled by Sprint )

 

Thanks in advance

 

Erik Goldoff

IT  Consultant

Systems, Networks,  Security 

'  Security is an ongoing process, not a one time event ! '

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Hosted Exchange and file shares

[Level 5 - Lists]

I like intermedia myself it has sharepoint and exchange and crm if you need
it. 

 

I don't like the MS online stuff because they run it through the Microsoft
Messenger and if you logout of that then it drops credentials for Outlook
and you have to re-login . 

 

From: Bob Fronk [mailto:b...@btrfronk.com] 
Sent: Thursday, March 17, 2011 9:24 AM
To: NT System Admin Issues
Subject: Hosted Exchange and file shares

 

Good morning group(s)

 

I have a small on the side client that I have been helping for a couple
years.  They are a small business with 5 users.  They operate from their
home and some remote users with an aging SBS2003 server.  It is time to get
them less reliant on me for support.  I would like to eventually be totally
out of the support picture for them.

 

They are heavy Exchange / Outlook users.  All the job information and
customer requests come to them via email.  They have some file share and
file backup needs as well. Recent weather related extended power failures at
the home (while they were away traveling for business) brought their work to
a halt until I could re-route mail to a temporary server.  They travel
extensively while maintaining near constant contact with customers via email
and cell phone.  They have seen the to the cloud commercials and have
begun to push for easier access to email and files from any location.

 

I am looking at Microsoft Office 365 for them, but I am not sure they need
all those services. (I signed up for a trail this morning to test it out).

 

I know they want to keep Exchange/Outlook and want to be able to migrate
current information into the hosted server and continue to use their email
domain name.  They want to be able to use OWA from any available PC,
ActiveSync on iPhones and access important files from any PC, anywhere.  

 

I am not sure if they need something as complex as Office 365, but it seems
to be the best fit from my limited research. 

 

I need to do more research on available products, however, I was hoping
someone on these lists has used some similar online services or MSO 365 and
could offer input from your experience.  I welcome suggestions from the
group.

 

 

BF

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Exchange Database -- VMDK or RAW?

[Level 5 - Lists]

My larger client has 4 EQL boxes, and we have 2 running all VMDK and 2
running all RAW. Performance seemed just fine we had Exchange on the RAW and
then VMDK for the o/s. We recently upgraded them to Veeam Backups, and
wanted to take advantage of all that and migrated the Exchange into a vmdk
and performance doesn’t seem to have changed from the end user perspective.
Our backup windows shrank by days not hours :) so we are pretty happy .

We are running @ 750 users, 1.5TB across 4 storage groups. Exchange 2007
latest sp/hotfixes as of Dec 2010.

-Original Message-
From: Jon D [mailto:rekcahp...@gmail.com] 
Sent: Monday, March 14, 2011 10:22 AM
To: NT System Admin Issues
Subject: Re: Exchange Database -- VMDK or RAW?

Thanks for everyones replies so far.

More details:
Exchange 2010(all roles).
FC to SAN
Around 300 users.

I want to increase mailbox limits putting the total databases at around
750MB - 1TB combined.



Thanks,
Jon



On Mon, Mar 14, 2011 at 10:06 AM, Paul Hutchings paul.hutchi...@mira.co.uk
wrote:
 Which version of Exchange?

 I'm currently planning our move from 2003 to 2010 and really you want 
 to run Jetstress to ensure you get the IOPS you want within acceptable 
 latency etc.

 -Original Message-
 From: Kim Longenbaugh [mailto:k...@colonialsavings.com]
 Sent: 14 March 2011 14:04
 To: NT System Admin Issues
 Subject: RE: Exchange Database -- VMDK or RAW?

 Ok, if it helps, we're using iSCSI over Ethernet, on 1 Gbps 
 connections, with about 900 users

 -Original Message-
 From: Ken Schaefer [mailto:k...@adopenstatic.com]
 Sent: Monday, March 14, 2011 9:00 AM
 To: NT System Admin Issues
 Subject: RE: Exchange Database -- VMDK or RAW?

 Without knowing the parameters of your environment, this isn't really 
 that useful. E.g. if you are using iSCSI over Ethernet, then it makes 
 a big difference if you are using 1gbps vs 10gbps (depending on the 
 environment size). If you only have 100 users, it doesn't matter if 
 you are using VMDK vs RAW and iSCSI vs FC. If you have 100,000 users, 
 it does.

 Cheers
 Ken

 -Original Message-
 From: Kim Longenbaugh [mailto:k...@colonialsavings.com]
 Sent: Monday, 14 March 2011 9:42 PM
 To: NT System Admin Issues
 Subject: RE: Exchange Database -- VMDK or RAW?

 We use the MS iSCSI initiator to attach all the Exchange data and log 
 drives.  There have been no observable performance issues doing so in 
 our environment.

 Use Dell's extpart.exe for 2003, or the W2008 native diskpart, 
 we've been able to grow the drives on the fly when we needed to add 
 space for some reason.  I know you can do the same with VMDK files, 
 but don't have any experience with RAW drives.



 -Original Message-
 From: Jon D [mailto:rekcahp...@gmail.com]
 Sent: Monday, March 14, 2011 8:31 AM
 To: NT System Admin Issues
 Subject: Exchange Database -- VMDK or RAW?

 For those who have your Exchange boxes inside of VMWare, did you put 
 your databases inside VMDK files, or did you go RAW?
 VMDK seems like it would be easier to manage, but I'm wondering about 
 size issues, performance, etc.



 Thanks,
 Jon

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 --
 MIRA Ltd

 Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered 
 in England and Wales No. 402570 VAT Registration  GB 100 1464 84

 The contents of this e-mail are confidential and are solely for the use of
the intended recipient.  If you receive this e-mail in error, please delete
it and notify us either by e-mail, telephone or fax.  You should not copy,
forward or otherwise disclose the content of the e-mail as this is
prohibited.

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 

RE: SAN monitoring

[Level 5 - Lists]

Coming in late, a buddy of mine moved to Open NMS and he runs 7 or 8 FreeNAS
SAN's with about 80TB of storage and he monitors them with this I believe ..


 

From: Derek Johnson [mailto:djohn...@realtors.org] 
Sent: Thursday, December 23, 2010 9:35 AM
To: NT System Admin Issues
Subject: RE: SAN monitoring

 

Nagios is free and if you need a Nagios Guru I can get you in contact with
one. I wouldn't waste your time with Veeam, I would look into vFoglight from
Vizioncore/Quest

 

Derek A Johnson

Sr. Systems Administrator

 

National Association of Realtors

430 N. Michigan Ave.

Chicago, IL 60611

 

Email: djohn...@realtors.org

 

Cell: 262.496.9201

Desk: 312.329.8618

 

http://www.realtors.org

 

From: Michael Miller [mailto:burner...@gmail.com] 
Sent: Thursday, December 23, 2010 8:24 AM
To: NT System Admin Issues
Subject: Re: SAN monitoring

 

This is my other account. I never got these replies, on the email i created
this on. I will try ops view, nagios wasn't free as far as I could tell.
I'll look into opsview with cacti and see what its about. If nothing else
i'll use a VMWare monitoring tool like Veeam.

Thanks to all for your replies

On Fri, Dec 17, 2010 at 12:18, Stringham, Steven sstri...@lrlaw.com wrote:

Cacti - graphs, thresholds, etc. If you can get a check into nagios, you
can get the data into cacti.


-Original Message-
From: Matthew W. Ross [mailto:mr...@ephrataschools.org]
Sent: Friday, December 17, 2010 10:10 AM
To: NT System Admin Issues

Subject: RE: SAN monitoring

It looks like Quantastor runs on Ubuntu...

Opsview? I'm not sure if you can get the Disk IO or IOPS from a nagios
check... but maybe you can.


--Matt Ross
Ephrata School District


- Original Message -
From: Miller, Michael
[mailto:michael.mil...@dys.ohio.gov]
To: NT System Admin Issues
[mailto:ntsysad...@lyris.sunbelt-software.com]
Sent: Fri, 17 Dec 2010
05:43:10 -0800
Subject: RE: SAN monitoring


 Quantastor*

 From: Miller, Michael [mailto:michael.mil...@dys.ohio.gov]
 Sent: Friday, December 17, 2010 8:42 AM
 To: NT System Admin Issues
 Subject: SAN monitoring

 We are running quanta store on our SAN's. I am looking for something
 that is free and works well for good Disk I/O, or maybe even IOPS.
 Anyone have any recommendations of something that works well, that is
 FREE :) and the monitoring is better than a graph that does hours.

 Miller

 
 This message, and any response to it, may constitute a public record
 and thus may be publicly available to anyone who requests it in
 accordance with Chapter 149 of the Ohio Revised Code.

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to
 listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbelt
 software.com
 with the body: unsubscribe ntsysadmin

 
 This message, and any response to it, may constitute a public record
 and thus may be publicly available to anyone who requests it in
 accordance with Chapter 149 of the Ohio Revised Code.

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


For more information about Lewis and Roca LLP, please go to
www.lewisandroca.com.
Phoenix (602) 262-5311
Tucson (520) 622-2090
Las Vegas (702) 949-8200
Reno (775) 823-2900
Minden (775) 586-9500
Albuquerque (505) 764-5400
Silicon Valley (650) 391-1380

This message is intended only for the use of the individual or entity to
which it is addressed. If the reader of this message is not the intended
recipient, or the employee or agent responsible for delivering the message
to the intended recipient, you are hereby notified that any dissemination,
distribution or copying of this message is strictly prohibited. If you have
received this communication in error, please notify us immediately by
replying to the sender of this E-Mail by return E-Mail or by telephone.

In accordance with Internal Revenue Service Circular 230, we advise you that
if this email contains any tax advice, such tax advice was not intended or
written to be used, and it cannot be used, by any taxpayer for the purpose
of avoiding penalties that may be imposed on the taxpayer.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ 

IIS NLB

[Level 5 Lists]

I have setup a few IIS NLB clusters but never really paid too much attention
to the load balancing aspects. I currently have 2 2008r2 IIS boxes running
NLB, the NLB seems to be working fine except for that it always uses the
same primary server unless I reboot it. I was looking at the Multiple Host -
Affinity options and even if I set it to 'none' I still see it says the
connections will be load balanced but the client ip will associate with only
one server. I would really like both servers to act at all times. I tried
resetting the different options but am never able to accomplish what Im
looking to do.

 

We have a B2B web server that handles about 50k transactions every few
minutes. The problem is that the client connection will always be coming
from the same IP so the NLB in this case offers me failover , which is nice,
but eventually I need to have 4 servers in this farm and all of them need to
act together. The application has already been re-written for sessions etc
to accommodate this setup. 

 

Thanks

 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Group Policy Won't Go Away

[Level 5 Lists]

Did you try looking here on the local machine:

 

HKEY_LOCAL_MACHINE\Software\Policies\Microsoft

 

There should be GUID's matching the group policy items you want to remove. 

 

From: Don Guyer [mailto:don.gu...@prufoxroach.com] 
Sent: Wednesday, November 03, 2010 1:57 PM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

Can't you view the settings the GPO changes, then work on figuring out where
in the registry they are stored and remove them?

 

Maybe I'm not thinking into this deep enough.

 

J

 

Don Guyer

Systems Engineer - Information Services

Prudential, Fox  Roach/Trident Group

431 W. Lancaster Avenue

Devon, PA 19333

Direct: (610) 993-3299

Fax: (610) 650-5306

don.gu...@prufoxroach.com

 

From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] 
Sent: Wednesday, November 03, 2010 1:55 PM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

We can always reimage the machine if it comes down to it. But that shouldn't
be necessary-I know there has to be a way to fix it. I'm just not
knowledgeable enough about the intricacies of group policy to do it.

 

 

 

From: Carl Houseman [mailto:c.house...@gmail.com] 
Sent: Wednesday, November 03, 2010 1:38 PM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

Tried a system restore back to before the policy was ever applied?

 

Carl

 

From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] 
Sent: Wednesday, November 03, 2010 10:57 AM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

It's stuck somewhere, but I don't know where. I'm not sure where to look.

 

When the WLAN AutoConfig service starts, it clearly looks somewhere to see
if group policies should be applied. But where? I have no idea.

 

 

From: Don Guyer [mailto:don.gu...@prufoxroach.com] 
Sent: Wednesday, November 03, 2010 10:52 AM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

Wonder if it's stuck in the local registry somewhere.

 

Don Guyer

Systems Engineer - Information Services

Prudential, Fox  Roach/Trident Group

431 W. Lancaster Avenue

Devon, PA 19333

Direct: (610) 993-3299

Fax: (610) 650-5306

don.gu...@prufoxroach.com

 

From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] 
Sent: Wednesday, November 03, 2010 10:49 AM
To: NT System Admin Issues
Subject: Group Policy Won't Go Away

 

I created a group policy to force some machines in a lab to connect to a
particular wireless network. Unfortunately, when creating the policy I made
a mistake configuring the password. So when you try to connect to the
network you get a message saying, The settings saved on this computer for
the network do not match the requirements of the network.

 

So I turned the policy back off and ran gpupdate /force on the machines in
the lab, and they all started working again in the sense that the policy was
no longer applied and I could manually connect to the wireless network and
enter the password.

 

Except for one machine. That machine still won't connect. Still says the
saved settings for the wireless network are wrong. It says it's getting its
group policy updates fine, yet this policy just won't go away.

 

We've even gone so far as to unjoin the machine from the domain. Still, no
luck.

 

I can run regedit and look under the wlansvc - GroupPolicy section and
delete the key that has the SSID of the network (and, I'm assuming, is
storing the wrong password info), but when I restart the WLAN AutoConfig
service the key comes right back again.

 

How the heck do I get rid of this policy once and for all?

 

 

 

John Hornbuckle

MIS Department

Taylor County School District

www.taylor.k12.fl.us

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 
 
NOTICE: Florida has a broad public records law. Most written communications
to or from this entity are public records that will be disclosed to the
public and the media upon request. E-mail communications may be subject to
public disclosure.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ 

RE: Group Policy Won't Go Away

[Level 5 Lists]

Sorry I think they show up here too if they are user based:

 

[HKEY_CURRENT_USER\Software\Policies\Microsoft]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Group Policy
Objects]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies]

 

 

From: Level 5 Lists [mailto:li...@levelfive.us] 
Sent: Wednesday, November 03, 2010 1:59 PM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

Did you try looking here on the local machine:

 

HKEY_LOCAL_MACHINE\Software\Policies\Microsoft

 

There should be GUID's matching the group policy items you want to remove. 

 

From: Don Guyer [mailto:don.gu...@prufoxroach.com] 
Sent: Wednesday, November 03, 2010 1:57 PM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

Can't you view the settings the GPO changes, then work on figuring out where
in the registry they are stored and remove them?

 

Maybe I'm not thinking into this deep enough.

 

J

 

Don Guyer

Systems Engineer - Information Services

Prudential, Fox  Roach/Trident Group

431 W. Lancaster Avenue

Devon, PA 19333

Direct: (610) 993-3299

Fax: (610) 650-5306

don.gu...@prufoxroach.com

 

From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] 
Sent: Wednesday, November 03, 2010 1:55 PM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

We can always reimage the machine if it comes down to it. But that shouldn't
be necessary-I know there has to be a way to fix it. I'm just not
knowledgeable enough about the intricacies of group policy to do it.

 

 

 

From: Carl Houseman [mailto:c.house...@gmail.com] 
Sent: Wednesday, November 03, 2010 1:38 PM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

Tried a system restore back to before the policy was ever applied?

 

Carl

 

From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] 
Sent: Wednesday, November 03, 2010 10:57 AM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

It's stuck somewhere, but I don't know where. I'm not sure where to look.

 

When the WLAN AutoConfig service starts, it clearly looks somewhere to see
if group policies should be applied. But where? I have no idea.

 

 

From: Don Guyer [mailto:don.gu...@prufoxroach.com] 
Sent: Wednesday, November 03, 2010 10:52 AM
To: NT System Admin Issues
Subject: RE: Group Policy Won't Go Away

 

Wonder if it's stuck in the local registry somewhere.

 

Don Guyer

Systems Engineer - Information Services

Prudential, Fox  Roach/Trident Group

431 W. Lancaster Avenue

Devon, PA 19333

Direct: (610) 993-3299

Fax: (610) 650-5306

don.gu...@prufoxroach.com

 

From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] 
Sent: Wednesday, November 03, 2010 10:49 AM
To: NT System Admin Issues
Subject: Group Policy Won't Go Away

 

I created a group policy to force some machines in a lab to connect to a
particular wireless network. Unfortunately, when creating the policy I made
a mistake configuring the password. So when you try to connect to the
network you get a message saying, The settings saved on this computer for
the network do not match the requirements of the network.

 

So I turned the policy back off and ran gpupdate /force on the machines in
the lab, and they all started working again in the sense that the policy was
no longer applied and I could manually connect to the wireless network and
enter the password.

 

Except for one machine. That machine still won't connect. Still says the
saved settings for the wireless network are wrong. It says it's getting its
group policy updates fine, yet this policy just won't go away.

 

We've even gone so far as to unjoin the machine from the domain. Still, no
luck.

 

I can run regedit and look under the wlansvc - GroupPolicy section and
delete the key that has the SSID of the network (and, I'm assuming, is
storing the wrong password info), but when I restart the WLAN AutoConfig
service the key comes right back again.

 

How the heck do I get rid of this policy once and for all?

 

 

 

John Hornbuckle

MIS Department

Taylor County School District

www.taylor.k12.fl.us

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 
 
NOTICE: Florida has a broad public records law. Most written communications
to or from this entity are public records that will be disclosed to the
public and the media upon request. E-mail

Bandwidth problems

[Level 5 Lists]

I have been troubleshooting a bandwidth problem where connections are dropping. 
We ran some different tests like speedtest and pingtest as well as a trial of 
visualware. Everything points to tcp max delay (300ms) being a major issue and 
suggests packet loss. I have run some tracerts for the ISP and they say its not 
their side. I tend to believe them a little because if we unplug our Sonicwall 
and go directly the problem goes away. As a test I rolled out a new Sonicwall 
5500, reconfigured it and the problem still exists.

We are jumbo framed enabled internally, and our procurve mgmt software has some 
intermittent issues throughout the network but nothing specific. Does anyone 
have any good tools they could recommend to test internal connectivity, the few 
tools i see just test speed which seems to be running just fine (qcheck).

Thx

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~