RE: MSCS evicting node
Thanks Richard, we already converted one of the servers successfully to a vm, what we did was take the physical box which was using a shared DAS, and converted one box and one of the shared disks but theres a third shared disk that we had to copy (its file shares) so when I goto switch it out I get the cluster signature error. Doing any cluster tools gets me an error because there is only one server left and so Im wondering if I evict the now gone server, and just be left with 1 server in a cluster what would happen… Going to snapshot the disk tonight and try it … From: Richard Stovall [mailto:rich...@gmail.com] Sent: Wednesday, August 17, 2011 11:40 AM To: NT System Admin Issues Subject: Re: MSCS evicting node My only thought is based on an experience a few years ago moving some clustered services to a single VM. The P2V went fine and I was left with a one node cluster as you intend. The only problem I encountered was when doing snapshot-based image backups using VCB. The creation of a snapshot caused the cluster to lose its SCSI reservations on the virtual disks. At that point they would all drop offline and blow the whole thing up. I wasn't willing to give up live, snapshot-based backups, so I went through the process of recreating everything from scratch on a fresh VM. I don't know if you'll run into this issue, but it may be something look out for. On Tue, Aug 16, 2011 at 11:13 PM, Level 5 Lists li...@levelfive.usmailto:li...@levelfive.us wrote: I have a client who is downsizing and migrating from two physical MSCS 2003 servers to one vm. Rebuilding the apps is not possible and the conversion has already occurred but we removed both physical servers leaving one working vm ‘active’ and one ‘passive’ non-working vm. I cannot make any changes to the cluster without evicting this node apparently so I will end up with 1 node in the cluster. In reading around it looks like you can create one node clusters and seems viable I could evict this ‘missing’ server without issue but thought I would run by the group for any caveats.. This is primarily an SQL cluster with a couple of shares mounted on the disk that the SQL box relies on … TY ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: [OT] The infection continues to spread (HP)
Interestingly enough I just saw a very interesting investor (facebook, linked in etc) who was talking about how Apple makes so much profit in their hardware and how they basically re-wrote the entire hardware model etc etc ... and he was saying money is going back to hardware but more in tablets/devices and such and not as much in general 'box pc' type stuff ... was pretty interesting... He also predicted the demise of google with search being dead on handheld devices as compared to a pc... -Original Message- From: Ken Schaefer [mailto:k...@adopenstatic.com] Sent: Friday, August 19, 2011 12:03 AM To: NT System Admin Issues Subject: RE: [OT] The infection continues to spread (HP) It makes lots of revenue, but very little money. PSG has ~5% margin, which will probably only fall further in the future. HP Services has a margin of ~15%, HP Software around 20%, IPG is ~17% etc. Cheers Ken -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, 19 August 2011 11:41 AM To: NT System Admin Issues Subject: Re: [OT] The infection continues to spread (HP) On Thu, Aug 18, 2011 at 5:08 PM, Mike Sullivan neog...@gmail.com wrote: I can see the direction they are taking, software and services are more profitable and the PC market is not. Supposedly the margins are low, but it's still their biggest revenue generator. I don't get it. I mean, I'm sure some MBA can spew buzzwords about why, but fundamentally, I don't get it. The money is still green, regardless of how it's made. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Split Scope DHCP on 2008 R2?
Remember the delay is just so the primary DHCP ack's first. This is the work around so they don't compete. If your DHCP server is sluggish or busy you may have to up the time period a little, and at the same time make sure the clients don't give up (this is quite a while for pc's but sometimes printers/voip devices give up quicker). From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] Sent: Tuesday, August 09, 2011 2:52 PM To: NT System Admin Issues Subject: Split Scope DHCP on 2008 R2? I just want to be sure that I understand this feature correctly before I get too excited and look at upgrading our DC's to 2008 R2. I have 2 DHCP servers, let's call them PRI and SEC. I also want to use reservations but in an outage the reservations are something I could live without having available. So I setup DHCP on PRI and configure the reservations. I setup DHCP on SEC with no reservations. I then configure split-scope on PRI using the wizard, and tell it to set the delay on SEC to 1000ms. I now have two DHCP servers, but so long as PRI is running it will always service requests first? Paul MIRA Ltd Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Dell Lock Code Resource
That is odd, I recall looking those up a handful of times back in the days... I do agree with you though, we purchased a quad quad core server with 64gb of ram from dell about 8-9 months ago (model escapes me). The 2.5 sas drives didn't come in they were backordered, we overnighted hp drives from cdw, popped them in and dell wouldn't let me config them into the raid because they weren't dell. That was the first time I ever saw that too, I think it was a perc h700 card or something?? anyway I was very surprised when that happened.. one of the reasons we liked to go with dell because we could swap out parts locally in a pinch ... From: Micheal Espinola Jr [mailto:michealespin...@gmail.com] Sent: Friday, July 22, 2011 1:54 PM To: NT System Admin Issues Subject: Re: Dell Lock Code Resource It used to be more standard/published, but there does seem to be a divergence from standardization here within the past 10 years. Oh I agree I think it should be public - my lack of surprise is from Dell specifically. I love 'em, but they are getting tighter and tighter regarding their support. -- Espi On Wed, Jul 20, 2011 at 6:35 PM, Mike Gill lis...@canbyfoursquare.commailto:lis...@canbyfoursquare.com wrote: As do I. The results of your search indicate the site I listed. The other sites are other people asking the same question or are for beep codes and desktops. It surprises me that this information isn't public. They provide documentation for all their computers to allow users to disassemble them down to the components without voiding the warranty. Why not this? Who knows. Seems to be it would be a few less support phone calls at least. -- Mike From: Micheal Espinola Jr [mailto:michealespin...@gmail.commailto:michealespin...@gmail.com] Sent: Wednesday, July 20, 2011 3:37 PM To: NT System Admin Issues Subject: Re: Dell Lock Code Resource I always just search online, e.g.: http://www.google.com/search?q=dell+post+codes It doesnt surprise me that Dell has taken a position to keep details like this. They are getting more and more uptight about what they consider free support. -- Espi On Wed, Jul 20, 2011 at 2:21 PM, Mike Gill lis...@canbyfoursquare.commailto:lis...@canbyfoursquare.com wrote: Does anyone have a resource for the LED Lock codes on Dell's laptops? For example, when a laptop doesn't start up and you get the num and caps lock LED's flashing but the scroll lock LED is solid. Dell says they don't publish this, and I have found on older document on their website that shows the codes, and one resource online, I would like an up to date resource that includes Latitude's, Inspiron's and Vostro's rather than calling Dell up every time. For example: http://www.bay-wolf.com/portpostcodes.htm FYI, this info isn't provided in the manual's online either. -- Mike Gill ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
iphone multiple device ID
We recently upgraded Exchange from 03 to 10. We created a whole new domain, I happen to notice that on the CEO's mailbox there are 2 iphone connections. At first I thought maybe he added a new exchange account and hes getting mail twice, but the Apple Device ID's are different. So I went in and changed his pw, and had him change it on his phone and still 2 connections seem to be syncing with 2 diff Apple ID's .. Im assuming since I changed his pw he just keeps changing it on both accounts ... anyone know if that would make 2 different IDs? Thx ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: iphone multiple device ID
No, that’s what I thought too. We just found the culprit, we went through the list of iphone users and matched up the deviceid. Should be interesting as the ceo was very concerned about this occurring and as soon as we setup the new server this person went and attached their iphone to his account and their account. From: Sean Martin [mailto:seanmarti...@gmail.com] Sent: Saturday, July 23, 2011 9:33 PM To: NT System Admin Issues Subject: Re: iphone multiple device ID Does he have two devices? I have several ActiveSync users with iPhones and iPads. - Sean On Jul 23, 2011, at 4:16 PM, Level 5 Lists li...@levelfive.usmailto:li...@levelfive.us wrote: We recently upgraded Exchange from 03 to 10. We created a whole new domain, I happen to notice that on the CEO’s mailbox there are 2 iphone connections. At first I thought maybe he added a new exchange account and hes getting mail twice, but the Apple Device ID’s are different. So I went in and changed his pw, and had him change it on his phone and still 2 connections seem to be syncing with 2 diff Apple ID’s .. Im assuming since I changed his pw he just keeps changing it on both accounts … anyone know if that would make 2 different IDs? Thx ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
ex2k7 transport rule
What am I missing? I created a transport rule to send custom ndr and drop the message. I went and added a custom NDR 5.7.100 for both en\internal\5.7.100 and en\external\5.7.100 . However when the rule gets executed it always sends back the 5.7.0 default message. the custom text from the rule wizard does show up at the bottom of the message, but Im really trying to get the NDR to send back a fully customized message. Im wondering if I am just missing a step, I looked at several blogs and articles and everyone gave the same setup steps so seemed pretty straight forward. I also tried this by lowering the size limit of the mailboxes to 1k, but it would only work internally. externally i would get the default delivery failure not the custom text. Running exchange 2007sp3 with rollup 3. This is a single server running transport/client access/mailbox roles. Im wondering if this is the problem but I dont know why... Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Another cool tool from MS coming...
Cool, GFis mail archiver product already has this and you can deploy it over the network. I think the free mail archiva has an import tool but not a discovery tool. GFi's was far the most advanced I had used of the few products. It would deploy an agent to the desktop scan the box for pst, report it back to the archiving server and then import it according to the rulesets. From: Sam Cayze [sca...@gmail.com] Sent: Wednesday, July 06, 2011 2:49 PM To: NT System Admin Issues Subject: Another cool tool from MS coming... http://bink.nu/news/coming-soon-microsoft-pst-capture-tool.aspx?utm_source=feedburnerutm_medium=feedutm_campaign=Feed%3A+binkdotnu+%28Bink.nu%29 Be gone you horrid PSTs! Exchange Team Blog: We're excited to announce that later this year we'll be adding a new tool to our already rich portfolio of planning and deployment tools. This new tool, PST Capture, will be downloadable and free, and will enable you to discover .pst files on your network and then import them into both Exchange Online (in Office 365) and Exchange Server 2010 on-premises. PST Capture will be available later this year. It doesn’t replace the New-MailboxImportRequesthttp://technet.microsoft.com/en-us/library/ff607310.aspx cmdlet that exists already for importing known .pst files into Exchange Server, but instead works in parallel to enable you to embark on a systematic search and destroy mission to rid yourself of the dreaded .pst scourge. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Mass OOFs
As a follow up we tried to use a custom NDR message thinking it would be easier. My first attempt was to make a custom 5.2.2 (internal and external) and lower the mbox size to 1k. this works internally but not externally. Now I tried a hub transport sending a custom ndr of 5.7.10. I create the message for internal and external and send a message and I get 5.7.10 back but it's the default 5.7.0 message. Im not sure if I need to bounce the hub transport or not so will wait until after hours to test that.. Im referring to this article: http://www.msexchange.org/articles_tutorials/exchange-server-2007/management-administration/customising-delivery-status-notification-messages.html This is exchange 2007sp2 (probably a couple of roll ups with it). Thanks From: Level 5 Lists Sent: Thursday, June 30, 2011 6:52 PM To: NT System Admin Issues Subject: RE: Mass OOFs Exchange 2007, I think that's ok because the email states that they must re-send the email to a different email address for any correspondence. This way its on the sender to deliver and not them to try to handle incoming mail for 700 people. Im thinking with that method I can simply put them all in a group, apply a different email domain or whatever so that frees it up and then just add the email addy onto one account. Hopefully through powergui or the shell easily.. From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Thursday, June 30, 2011 12:20 AM To: NT System Admin Issues Subject: RE: Mass OOFs What version of Exchange? You can probably get around 1300 proxies on one account, but, you're going to only send one OOF per sender from that mailbox, so if Sender A emails Employees B and C, he'll only get one OOF. Thanks, Brian Desmond br...@briandesmond.commailto:br...@briandesmond.com c - 312.731.3132 From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Wednesday, June 29, 2011 9:56 PM To: NT System Admin Issues Subject: Mass OOFs I have a law firm that's being shut down, they are releasing about 700 employees over the upcoming months (@ 350 are gone already). I have been asked by the firm to provide a legal standing OOF for everyone who is/has left the organization. I have all the users in a disabled store and OU together (we need to keep their mail for 7 years). I was checking out PowerGUI and found a couple of scripts people wrote doing this on a massive scale. I was then thinking, maybe its easier to remove all the users email addresses, put it all on one mailbox and create one OOF for that single mailbox .. offhand I don't know what the number of aliases for 1 account are , but even if it was 10 or 20 , that might be easier then trying to do the oof on 700. Besides having a help desk person sit there and copy/paste the OOF for 700 people if theres any piece of software, script or similar I would love to save the energy :) Thanks (Still cannot post to ms-exchange, always get an attachment notice error, even sending in plain text) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Mass OOFs
Exchange 2007, I think that's ok because the email states that they must re-send the email to a different email address for any correspondence. This way its on the sender to deliver and not them to try to handle incoming mail for 700 people. Im thinking with that method I can simply put them all in a group, apply a different email domain or whatever so that frees it up and then just add the email addy onto one account. Hopefully through powergui or the shell easily.. From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Thursday, June 30, 2011 12:20 AM To: NT System Admin Issues Subject: RE: Mass OOFs What version of Exchange? You can probably get around 1300 proxies on one account, but, you're going to only send one OOF per sender from that mailbox, so if Sender A emails Employees B and C, he'll only get one OOF. Thanks, Brian Desmond br...@briandesmond.commailto:br...@briandesmond.com c - 312.731.3132 From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Wednesday, June 29, 2011 9:56 PM To: NT System Admin Issues Subject: Mass OOFs I have a law firm that's being shut down, they are releasing about 700 employees over the upcoming months (@ 350 are gone already). I have been asked by the firm to provide a legal standing OOF for everyone who is/has left the organization. I have all the users in a disabled store and OU together (we need to keep their mail for 7 years). I was checking out PowerGUI and found a couple of scripts people wrote doing this on a massive scale. I was then thinking, maybe its easier to remove all the users email addresses, put it all on one mailbox and create one OOF for that single mailbox .. offhand I don't know what the number of aliases for 1 account are , but even if it was 10 or 20 , that might be easier then trying to do the oof on 700. Besides having a help desk person sit there and copy/paste the OOF for 700 people if theres any piece of software, script or similar I would love to save the energy :) Thanks (Still cannot post to ms-exchange, always get an attachment notice error, even sending in plain text) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Anyone else seeing the Google interface changes?
I noticed it the other night we couldn't login to HBO Go after True Blood was on, and when I googled it, I saw the tweets coming in a floating window. I thought it was pretty nice and definitely relevant to what I was looking up ... From: Shauna Hensala [mailto:she...@msn.com] Sent: Thursday, June 30, 2011 11:30 PM To: NT System Admin Issues Subject: RE: Anyone else seeing the Google interface changes? http://howto.cnet.com/8301-11310_39-20075949-285/how-to-get-the-new-gmail-right-now/?ttag=fbw [cid:image001.jpg@01CC377E.7090DA50]Shauna Hensala From: asbz...@gmail.com Date: Thu, 30 Jun 2011 22:47:32 -0400 Subject: Re: Anyone else seeing the Google interface changes? To: ntsysadmin@lyris.sunbelt-software.com I like the Gmail changes as well, for the most part. Starting to get a bit cluttered, though.I haven't paid attention to the Google Search ones. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market... On Thu, Jun 30, 2011 at 8:44 PM, Micheal Espinola Jr michealespin...@gmail.commailto:michealespin...@gmail.com wrote: I'm really digging the tweaks to Gmail so far. Im still on the fence about Google web search. -- ME2 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmininline: image001.jpg
RE: Network Solutions Down?
We called and they have a recording they are under a DDNS attack .. seems we are getting nslookups working now after about an hour, but still cannot login from several different places. From: Sean Rector [mailto:sean.rec...@vaopera.org] Sent: Tuesday, June 21, 2011 8:05 AM To: NT System Admin Issues Subject: RE: Network Solutions Down? It came up for me - just very slowly. Sean Rector, MCSE From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Tuesday, June 21, 2011 7:29 AM To: NT System Admin Issues Subject: Network Solutions Down? This morning a few of us cannot get into our NSI accounts, and none of my clients public DNS is resolving we can only connect to things via IP ... anyone else? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin Information Technology Manager Virginia Opera Association E-Mail: sean.rec...@vaopera.orgmailto:sean.rec...@vaopera.org Phone:(757) 213-4548 (direct line) {+} On Sale NOW 2011-2012 Subscriptions featuring four NEW Productions Aida | Hansel And Gretel | Orphée | The Mikado Visit us online at www.VaOpera.orghttp://www.vaopera.org/ or call 1-866-OPERA-VA The vision of Virginia Opera is to enrich lives through the powerful integration of music, voice and human drama. This e-mail and any attached files are confidential and intended solely for the intended recipient(s). Unless otherwise specified, persons unnamed as recipients may not read, distribute, copy or alter this e-mail. Any views or opinions expressed in this e-mail belong to the author and may not necessarily represent those of Virginia Opera. Although precautions have been taken to ensure no viruses are present, Virginia Opera cannot accept responsibility for any loss or damage that may arise from the use of this e-mail or attachments. {*} ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: security auditing..
Shoot, your right we did deploy a gpo last week, but I bet theres a propagation error on that because we have been working through a few issues with deploying GPO's system wide. I bet that's it.. Thanks -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Monday, June 20, 2011 10:38 PM To: NT System Admin Issues Subject: Re: security auditing.. On Mon, Jun 20, 2011 at 9:53 PM, Level 5 Lists li...@levelfive.us wrote: I must be missing something .. I have a share drive w @ 400gb of user data. I enabled Delete files/folders auditing for everyone and pushed it through all sub-folders. if I go into a folder delete a file then goto event logs Im expecting to see an event but I am not seeing one. Do you also have Filesystem auditing turned on system wide? You need that or the SACLs on NTFS objects are ignored. It's an option under Group Policy Editor and/or Local Security Policy. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: file copying
Yah, maybe it was robocopy I ran through. It was odd, I did a whole shared folder that had dozens of sub folders with different ACLs. I watched it for a few minutes and then randomly spot checked a few files, it looked good. The next business day several people complained they couldn't get to files they needed and one of my techs had to go back and reset perms on a lot of them .. From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Thursday, June 16, 2011 11:32 PM To: NT System Admin Issues Subject: Re: file copying XCOPY /O ROBOCOPY ASB (Professional Biohttp://about.me/Andrew.S.Baker/bio) Harnessing the Advantages of Technology for the SMB market... On Thu, Jun 16, 2011 at 9:31 PM, Level 5 Lists li...@levelfive.usmailto:li...@levelfive.us wrote: I have a client that we need to migrate about 2tb of data. I recently used xcopy gui but it didn't seem to bring a lot of permissions over and I had to go back through and redo it. I also played with the Richcopy but it would always hang up, I couldn't just select the root folder and have it successfully copy that much data. Im willing to purchase something if anyone has anything that just works. I need permissions mainly, not overly worried about timestamps, but ACL is required. Thx ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: RE: RE: windows 7 forensics
There are a lot of things to consider. The first being chain of custody, the pulling of the pc with 2 people, and then certifying that it hasn't been tampered with is your primary requirement. After that I would let the real boys handle it (3rd party/legal team etc) I went through something similar with a company who found an employee using aol with child porn videos (not for sale or anything I guess). The FBI came in and everything, and I learned a lot during that process (he went to jail for 10 years FWIW). They worked up a huge document discussing the file timestamps, the a/v, spyware, the temp file locations, the history of different video viewing apps in the registry. this was all done with a ghosted copy of the drive to preserve the original as evidence. From: Jonathan [mailto:ncm...@gmail.com] Sent: Thursday, June 09, 2011 8:44 PM To: NT System Admin Issues Subject: Re: RE: RE: windows 7 forensics forgot to include the link: http://www.ssddfj.org/papers/SSDDFJ_V1_1_Bem_Huebner.pdf Jonathan On Thu, Jun 9, 2011 at 8:43 PM, Jonathan ncm...@gmail.commailto:ncm...@gmail.com wrote: Thanks again for the input. Next question - what about USB flash drive forensics? I briefly scanned the first part of this article, albeit form 2007 Would what you describe below still be valid for a USB flash drive? Thanks, Jonathan On Thu, Jun 9, 2011 at 6:42 PM, Ben Scott mailvor...@gmail.commailto:mailvor...@gmail.com wrote: On Thu, Jun 9, 2011 at 2:15 PM, Jonathan ncm...@gmail.commailto:ncm...@gmail.com wrote: understand and agree. However, if the boss says, do it anyway, what approach would you use? I would avoid MS Windows, as it has a tendency to want to write to the disk without asking. (Due to things like updating the MBR for various weird reasons (disk signatures, etc.), auto-mount of anything that looks like NTFS, etc.). Me, I'd boot a rescue Linux system (I like SysRescueCD) and use dd if=/dev/foo of=/mnt/bar/image, where foo is the source disk name and bar is a network server I'd mounted. Be warned that if you get the syntax wrong dd will happily overwrite your disk for you. if is input file, of is output file, not hard, just unforgiving. If you want to use MS Windows, they sell these devices that plug between the hard drive and the host adapter, and block all write commands, making the drive effectively read-only. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- Jonathan, A+, MCSA, MCSE -- Jonathan, A+, MCSA, MCSE ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Vipre/ MS Malware conflicts
Thanks dave we did that during the install of viper many months ago. In security center it shows viper is registered for virus and spyware, which is why we are confused as to why ms malware is complaining and running in automatic. From: David [mailto:blazer...@gmail.com] Sent: Friday, June 03, 2011 1:43 PM To: NT System Admin Issues Subject: Re: Vipre/ MS Malware conflicts In Vipre's control panel, if you go to the properties of the policy, then go down under Agent to Communication, there is a place to disable Windows Defender, and to incorporate Vipre into the Windows Security Center. That might solve at least some of your problems. David On Fri, Jun 3, 2011 at 7:30 AM, Level 5 Lists li...@levelfive.usmailto:li...@levelfive.us wrote: We have vipre rolled out at one of our clients, its working okay, but we recently had to turn it from medium to low because it was severly hampering internet browsing. What we also found was that MS Anti-Malware was running on several computers and even though security center is reporting vipre is in control if I turn off the MS product and goto Action Center and change the settings Im still getting popups on the desktops stating your system is not protected click Start Now ... We are 2008r2 domain with all Win7 pro desktops. Im going to see if I can deploy a GPO to handle disabling MS Malware , should be easy enough but not positive about the security center warning pop ups .. This just started happening within the past 2 weeks, possibly a viper update issue? I know we had some issues with one of the versions but thought we moved past that already... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- David _ The right to be let alone - the most comprehensive of rights and the right most valued by civilized men. - Supreme Court Justice Louis Brandeis, Olmstead v. U.S., 277 U.S. 438 (1928) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Fake antivirus
What about using open dns for a few bucks a year ? you can turn on simple blocking of known malware sites and a few other things and keep it pretty clean. -Original Message- From: Angus Scott-Fleming [mailto:angu...@geoapps.com] Sent: Friday, June 03, 2011 8:02 PM To: NT System Admin Issues Subject: Re: Fake antivirus On 3 Jun 2011 at 10:34, John Aldrich wrote: Thanks... This particular user is unlucky enough to have teenagers who use his computer. My guess is they are visiting infected/hostile/0wned sites and that's how he's getting infected. Never really had a problem when he was working here, so I'm suspecting it's some of his grandkids that are causing the problem. Have him either get the kids their own computer or set up a VirtualBox for them to run in his computer. That way they'll only trash their own stuff. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Slow dns lookups?
It seems to be just workstation related, although we are seeing some ping timeouts to the 4.2.2.2's on the T1, we took off forwarding but that didn't fix it. All the websites are external, could be anything from cnn.com to foxnews.com whatever. They all load a little, hang, load a little, hang, then finish. We are testing a few different things now by having some workstations just use an external dns of the provider. Internally pinging, nslookups , network browsing all is fast and without any issue. From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Friday, May 27, 2011 12:55 PM To: NT System Admin Issues Subject: RE: Slow dns lookups? You can check your DNS lookups via nslookup both looking internally and externally. You say going to webpage ( is this webpage internal? Or External to the organization?) I am assuming that all users are seeing the same thing ( Correct) or is it localized? What is the Network Bandwidth out the Internet Router? ( Is the available Bandwidth Pegged? Which would make everything slow?) Any issues with dropped packets at the firewall/External Router to the Internet? Any issues querying DNS Server upstream of your business like L3 communications at 4.2.2.2 and 4.2.2.1. Here is an example: C:\windows\system32nslookup Default Server: DNS Address: Internal_IP set d2 set type=A server 4.2.2.1 SendRequest(), len 38 HEADER: opcode = QUERY, id = 2, rcode = NOERROR header flags: query, want recursion questions = 1, answers = 0, authority records = 0, additional = 0 QUESTIONS: 1.2.2.4.in-addr.arpa, type = PTR, class = IN Got answer (73 bytes): HEADER: opcode = QUERY, id = 2, rcode = NOERROR header flags: response, want recursion, recursion avail. questions = 1, answers = 1, authority records = 0, additional = 0 QUESTIONS: 1.2.2.4.in-addr.arpa, type = PTR, class = IN ANSWERS: - 1.2.2.4.in-addr.arpa type = PTR, class = IN, dlen = 23 name = vnsc-pri.sys.gtei.net ttl = 84623 (23 hours 30 mins 23 secs) Default Server: vnsc-pri.sys.gtei.net Address: 4.2.2.1 .microsoft.com. Server: vnsc-pri.sys.gtei.net Address: 4.2.2.1 SendRequest(), len 36 HEADER: opcode = QUERY, id = 3, rcode = NOERROR header flags: query, want recursion questions = 1, answers = 0, authority records = 0, additional = 0 QUESTIONS: .microsoft.com, type = A, class = IN Got answer (52 bytes): HEADER: opcode = QUERY, id = 3, rcode = NOERROR header flags: response, want recursion, recursion avail. questions = 1, answers = 1, authority records = 0, additional = 0 QUESTIONS: .microsoft.com, type = A, class = IN ANSWERS: - .microsoft.com type = A, class = IN, dlen = 4 internet address = 67.215.65.132 ttl = 0 (0 secs) Non-authoritative answer: Name:.microsoft.com Address: 67.215.65.132 You can see I did a fully qualified dns lookup for Microsoft.com ( using the trailing . so that domain names aren't appended in the lookups) Came back pretty snappy ( I would defintely put Wireshark on your PC and try and see the response times, because you might be dealing with a Layer 1-2 problem at the router/switch/firewall interface or uplink on the TXX line to your ISP, rather than your DNS Servers. HTH Z Edward E. Ziots CISSP, Network +, Security + Security Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Friday, May 27, 2011 12:34 PM To: NT System Admin Issues Subject: Slow dns lookups? I have a client with a t1 and cable as a backup for about 50 users and 9 servers. The past week their internet became amazingly slow, we pulled opendns out, we pulled the proxy filter out and still same thing. Reviewing onsite it seems like when we goto a webpage we get a lot of website found waiting for reply for several seconds. I switched gateways between t1 and cable and seemed to have no effect. You eventually get there, but I cant seem to pinpoint whats causing it. We tried removing the opendns forwarders, then no forwarders, then some forwarders to some public DNS servers. Always the same thing. Internally dns seems fine, no errors, ad replication is functioning okay etc etc .. Kind of at a loss as to where to look next. Speedtest/pingtest are showing speeds as expected on both connections, latency everything there seems pretty normal (16dn/6up on cable, A rating on pingtest) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana
RE: Slow dns lookups?
Kurt - that was our finding as well, the client has a firebox and we were seeing odd latency going through the t1 , so even though clients are using the cable for their gateway rebooting the firebox seemed to fix our issue. Thanks everyone. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, May 27, 2011 4:14 PM To: NT System Admin Issues Subject: Re: Slow dns lookups? I had a similar issue with my firewall in the past couple of weeks. The base issue *looked* like DNS problems, and they were, sorta... We found that the real issue was a state table on the firewall, limiting UDP sessions. It was set at a max of 2500, and when I looked at the table, it was sitting at 2499 or 2500 for extended periods of time. So, I doubled the limit, monitored it for a while, then found it was hovering between 4500 and 5000 quite a bit, so doubled it again to 1. The timeout for sessions was also set to 300 seconds, and I turned that down to 60 seconds. Those actions cleared my problem - don't know if it's the same issue for you, but it might be worth looking at. On Fri, May 27, 2011 at 09:34, Level 5 Lists li...@levelfive.us wrote: I have a client with a t1 and cable as a backup for about 50 users and 9 servers. The past week their internet became amazingly slow, we pulled opendns out, we pulled the proxy filter out and still same thing. Reviewing onsite it seems like when we goto a webpage we get a lot of website found waiting for reply for several seconds. I switched gateways between t1 and cable and seemed to have no effect. You eventually get there, but I cant seem to pinpoint whats causing it. We tried removing the opendns forwarders, then no forwarders, then some forwarders to some public DNS servers. Always the same thing. Internally dns seems fine, no errors, ad replication is functioning okay etc etc .. Kind of at a loss as to where to look next. Speedtest/pingtest are showing speeds as expected on both connections, latency everything there seems pretty normal (16dn/6up on cable, A rating on pingtest) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
FW: Exchange autodiscover 2 domains
Anyone know why everytime I post to exchange list I get rejected for attachments? .. maybe ill unsub/resub ... From: Level 5 Lists Sent: Wednesday, May 25, 2011 10:13 PM To: 'MS-Exchange Admin Issues' Subject: Exchange autodiscover 2 domains We have 2 different domains, and rpc/https is working with valid cert etc etc. We realized the users on domainB don't get Free/Busy information but they do get the OAB. I was checking autodiscover and realized we don't have one for that domain .. so Im wondering if I need to go get a cert with 8 names on it or can I just redirect the autodiscover to domainA with a cname? Our DNS looks like this domain A - autodiscover / certificate / mx points to hosted spam server domain B - mx points to hosted spam server / clients setup as mail.domainA.com for RPC/HTTPS for domain A if I make autodiscover.domaina.com the cert will fail by name ... Im thinking a cname for autodiscover may work but thought I would run it by the list. We are going to test some options after hours on DNS but will be slow with propagation and such (maybe ill use local hosts file for cname testing??) thx ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Question on PCI compliance
you used to be able to still find it if you hit ftp.gfi.comftp://ftp.gfi.com we still use the system integrity monitor, along with a couple of their other tools now for pci compliance (event log monitor, languard). From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Wednesday, May 18, 2011 10:38 PM To: NT System Admin Issues Subject: RE: Question on PCI compliance GFI used to have a free/inexpensive SIM software ( System Integrity Monitor ) but don't think that's available anymore. But if you Google for 'system integrity monitor free' you'll get a few hits on software you can test to see if it meets your needs. You'll also need to have the web server hardened ( what version OS, what version IIS ??) and verification that you only collect card numbers under SSL connection, and that you only transmit them on to the processor also via secure channel ( ssl, ipsec, etc ) Hit me up offline if you don't find what you need. I've brought a couple SMB retail organizations into PCI compliance and presented some lectures, webinars, and workshops on PCI compliance so I've got a sense of what can be done within budget. Erik Goldoff IT Consultant Systems, Networks, Security ' Security is an ongoing process, not a one time event ! ' From: Greg Olson [mailto:olson.g...@gmail.com] Sent: Wednesday, May 18, 2011 5:01 PM To: NT System Admin Issues Subject: Question on PCI compliance Hi all, I have a quick question on pci compliance and how you guys\gals are handling it for servers you have that take credit card data? We have a small amount of servers that basically host the web code to take cc info and its then passed on directly to the processor. Nothing stays on the server at any time, but we would like to be able to pass a pci audit on these servers which requires that we have automated software that monitors and detects changes in the log files, and software that monitors key files (windows directories, and our app directories) for any changes and sends out an alert. We're looking at Tripwire product, but they seem pretty expensive for the small amount of servers we're talking about. Any thoughts? Thanks in advance. -Greg ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Sonicwall TZ100 content filtering
We connected dual Sonicwalls for a 700 client office and did AD integration, it required an app on the DC to run and sync back to the Sonicwall IIRC. It didn't just pull LDAP queries. These were Sonicwall 5000 series on 100MB fiber internet and gig metro-e ports. It did work however, and we did OpenDNS in combination with the content filtering as a backup option. I don't think we ever had an issue after the initial setup. On our smaller clients (10-50 or so) that use Sonicwall TZ devices, we found ourselves using DHCP reservations, and doing whitelisting and bypass filtering with separate logins. No real reporting so I wouldn't have much to say on that. It only took a shortcut on the desktop for the 'admins' to get to the Sonicwall login page to bypass. -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Tuesday, May 17, 2011 12:52 PM To: NT System Admin Issues Subject: RE: Sonicwall TZ100 content filtering Okay, I just got off the phone with the Sales Rep, and he assures me that the new hardware will not run the Basic filtering at all, the only option if you want filtering is the Premium. As you say, it's dirt cheap, so that's okay. He also assures me that as long as we hook up the device to an LDAP or AD, the user based security can do what we need. Thanks for all the feedback guys. This list is awesome. --Matt Ross Ephrata School District - Original Message - From: Ben Serebin [mailto:b...@reefsolutions.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 17 May 2011 09:22:37 -0700 Subject: RE: Sonicwall TZ100 content filtering Hello Matt, You can whitelist per IP ranges (school admin IPs will get youtube, while kids won't or vice versa) if you get the Premium version. I would only ever recommend the Premium version (skip Standard). Like someone else said, this is the basics, don't expect real reporting, etc. Just blocking. It works pretty well. It's also dirt cheap ($83 for the TZ100 see url below). It's almost free that that price. I'm not promoting this site (but I've bought via them before). I've also deployed WebSense one of the most full featured content filtering solutions on the market, but it sounds like you need real basic filtering which is what SonciWall offers for CF. http://www.sonicguard.com/ContentFilteringService.asp Another trick is to use DHCP MAC address reservations and allow all the computers to use DHCP but control who gets IP based and then have the filtering work that way. Or good ol' static IPs. There are different ways to deploy this. -Ben -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Tuesday, May 17, 2011 11:55 AM To: NT System Admin Issues Subject: RE: Sonicwall TZ100 content filtering The feature we really need is user based access in it's most basic form. Users are able to access sites A, B, and C, but nothing else (your basic whitelist) while letting a privileged user to also go to sites X, Y, and Z while still being filtered from xxx.com. I do not require AD integration or in depth reporting in this case. If you're trying to do more complex filtering (e.g. whitelisting per AD logged on user, skip it)... Does this mean it cannot do what I require? Thanks again for your feedback. --Matt Ross Ephrata School District - Original Message - From: Ben Serebin [mailto:b...@reefsolutions.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 17 May 2011 06:36:13 -0700 Subject: RE: Sonicwall TZ100 content filtering Hello Matt, It works well if all computers are treated equally. Simple, effective, and low cost. If you're trying to do more complex filtering (e.g. whitelisting per AD logged on user, skip it), but if you can whitelist based on IP ranges, it works well (requires CFS Premium version). -Ben REEF Solutions Technology Exchange Server Consulting -- Founder / President New York Exchange User Group 1st and Only Microsoft Exchange Server Group in NYC www.nyexug.com -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Tuesday, May 17, 2011 5:37 AM To: NT System Admin Issues Subject: Sonicwall TZ100 content filtering Sorry for the previous blank post, it was sent prematurely. I know some of you guys are fans of the SonicWalls. I'm looking at the TZ100 for a remote lab of 12 workstations. What I'd like your opinion on is the content filtering feature. I'll be getting a sales pitch tomorrow, I'm sure... But any feedback for or against the filtering will be helpful while evaluating this solution. Thanks in advance. --Matt Ross Ephrata School District ~ Finally, powerful endpoint security
RE: Encrypting Event Logs
I have 2 clients that get audited by trustwave annually onsite, and quarterly pen tests. In all the audits I have done with different auditors no one has requested us to do this. We do event log collection into an sql database that is not encrypted. No one has also ever asked that we encrypt that database either. You can look for yourself on the PCI requirements checklist and see if this is mentioned anywhere. They are updated annually at least. From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Tuesday, May 10, 2011 10:51 PM To: NT System Admin Issues Subject: Re: Encrypting Event Logs Indeed! :) ASB (Professional Biohttp://about.me/Andrew.S.Baker/bio) Harnessing the Advantages of Technology for the SMB market... On Tue, May 10, 2011 at 7:42 PM, Free, Bob r...@pge.commailto:r...@pge.com wrote: Yea, what you said. Another in a long line of totally clueless auditors Sometimes I think their only goal in life is to come up with a finding that no one else ever has before.. From: Michael B. Smith [mailto:mich...@smithcons.commailto:mich...@smithcons.com] Sent: Tuesday, May 10, 2011 3:04 PM To: NT System Admin Issues Subject: RE: Encrypting Event Logs Ttttbt. Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.com From: Sean Martin [mailto:seanmarti...@gmail.commailto:seanmarti...@gmail.com] Sent: Tuesday, May 10, 2011 3:43 PM To: NT System Admin Issues Subject: Encrypting Event Logs Good morning/afternoon, My manager has requested I look for ways to encrypt the event logs on our DCs. Apparently during one of our many audits (governing body to remain nameless) one of the auditors insisted that we should be encrypting the event logs on our DCs. I have since requested a formal finding be provided by the auditor indicating the perceived risks so that I can first identify if we have any mitigating controls already in place. With that, I thought I would start looking around for specific solutions. We're currently running Windows 2003 DCs in a Windows 2003 Native AD environment. I'm not finding a whole lot of solutions specific to encrypting event logs. We are planning on introducing Windows 2008 R2 DCs this year so I will research bit locker, but, I'm concered about the inter-operability with Symantec SIM. I'm still working with very little information so I'm probably missing a lot of content. I guess I would just like to find out if anyone else has received similiar directives from an audit and what solutions or mitigating controls helped satisfy the auditor's concerns. - Sean ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: VOIP design questions
Every voip install we have come across has had completely separate networks only merging at the edge for either multi-office connectivity (iax2 trunks) , firmware updates, and remote access by the pbx vendor. I have a client running an Asterisk box with 75 users on its own network and we still had to do QoS, which I argued about lightly .. since 99.5% of all the traffic is voice anyway whats the difference I figured? But it did make a difference ... That being said, I have a client @ 850 users that's running IP Office from Avaya, with about 500 phones all RTP/SIP/UDP, travelling the data network, with QoS/ToS on their own Vlan. All 3 pbxes at each office are connected via 1gb fiber into a datacenter. All the phones connect to the unit in their respective office, and we don't have any real issues with it. The voicemail server is vm'ed and so is the tftp/update server, in the voice and data vlan so the call center app's can connect. My biggest problem seems to not be in internal SIP/RTP type connections of the handsets to the PBX, but most of the issues I keep running into have all been carrier related if they are using SIP/IAX based providers. I do have a couple of small clients on 8x8 which is a hosted turnkey service on cable modems without issue. I also have my office on a pbx in our datacenter, we have 12 phones in the office, and an HD video conferencing unit all on Comcasts 50/10 Internet and we never have a problem FWIW. So all of our phones are connecting over the internet and then we have an IAX2 trunk with our carrier running Asterisk. I think the reason I don't have an issue really is because our pbx (vm btw) is sitting on a 20mb internet connection on the same data network as our provider. As far as your vendor, do you have managed switches? Did they come in and pull snmp data from them after a week? Without this information I wouldn't think about moving forward. If you have saturation on the network at all then you will need a separate network at best, and vlan/qos at least. From: Tom Miller [mailto:tmil...@hnncsb.org] Sent: Monday, May 02, 2011 9:39 AM To: NT System Admin Issues Subject: VOIP design questions Folks, We are planning to retire our current phone system and move to a Mitel VOIP system. Not having implemented VOIP before, I have some questions for those of you that have: - our vendor claims our current data network can easily handle VOIP traffic since it's a small amount of traffic (don't know exact amount yet, still awaiting vendor response). As such, they tell it is possible to use our current network to accommodate voice and data. I'm not sure if Im comfortable with this. I was thinking of a more segregated approach: different network and voice and data never intersect. - our vendor claims we can use the existing data jack for the phones, and plug the desktop PCs/laptops into the phone as a sort of switch. I'm thinking this would add another level of complexity: phone is broke and by the way you can't get on the network now. - the reason the vendor suggests the above is that the current voice drops (cat5) terminate to phone patch panels (in most cases). Those cables would need to be cut and re-terminated to switches. So I have some concerns about our vendor claims. The dollar figure they propose does not include network changes, new switches, etc. Looking at the cost proposal, I am thinking there are quite a few hardware and man-hours costs missing. What do you folks do for VOIP? Thanks, Tom Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: RPC/HTTPS
I redid all the set-webservicesvirtualdirectory for internal and external url. Maybe its not a big deal, but I still don't understand 100%. If I turn off rpc/https , open outlook, it re-enables rpc/https and puts in mail.server.com , the connection status shows TCP/IP but only because I have the fast/slow networks boxes unchecked. Internally our dns does not have mail.domain.com and pinging it gives not found error. In the tcp/ip settings it shows mx-exchange.domain.com (the internal dns name) so even though rpc is set to mail.domain.com it still seems to be working ok. If I enable the fast/slow network checks, then I get prompted for pw (ntlm asks me 2x for pw and then changes back to BASIC) and then it connects for https. Again odd, because mail.domain.com does not answer internally via DNS. When I run the autodiscover tests everything seems fine, I get results from the internal and external side which look accurate. Once again, internally I do *not* have an autodiscover.domain.com so pinging autodiscover.domain.com yields nothing, so all this has to be coming from AD or the Exchange server. I guess ultimately everything is working, but its not working as expected so troubleshooting down the road could become an issue. Our intial finding was that DNS scavageng had deleted the internal DNS record (it was set to static manually), external dns record, and the autodiscover records which were all set to static. We have since deleted mail.domain.com, autodiscover.domain.com and had the server register itself instead of it being in there manually. This fixed the issue as far as mail and https , but curious as to why now everyone is getting rpc/https configuration as I haven't seen that anywhere else. Thanks -Original Message- From: Level 5 Lists Sent: Friday, April 29, 2011 10:07 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS Thanks this is a small shop , 50 users inside, 30 outside ... single exchange server, behind a spam appliance, we didn't do forefront etc, just rpc/https/owa NATed with a UCC cert. I ran that and I get: Name: RPC (Default Web Site) If I run it without the name value its just blank . In the GUI I have it set to the internal/external sitenames. Maybe this got messed up in the sp3 upgrade? And now a week or so later its causing issues? -Original Message- From: Damien Solodow [mailto:damien.solo...@harrison.edu] Sent: Friday, April 29, 2011 5:55 PM To: NT System Admin Issues Subject: Re: RPC/HTTPS Run this in EMS: get-outlookanywhere |fl name,internalurl,externalurl and see what you get. In general the two url fields should be the same, especially if you're using a client access array. -- Sent using BlackBerry - Original Message - From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Friday, April 29, 2011 05:30 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: RE: RPC/HTTPS I did some poking around, it looks like my internal clients are connecting to mx-exchange.domain.com and then flipping into rpc/https mail.domain.com Im trying to figure out if all I need to do is set the outlookprovider for EXCH to MX-EXCHANGE.domain.com so they maintain that connectivity. I guess on a different issue is why this started happening ... we did upgrade to sp3 about 10 days ago but this problem just showed up today. Thanks -Original Message- From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Friday, April 29, 2011 2:26 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS No that is correct. There are substantially more properties if you pipe it to FL. You need to look at the docs and see what flags to set to control the RPC/HTTPS behavior. I don't have the docs in front of me. Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 -Original Message- From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Friday, April 29, 2011 12:34 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS Thanks Brian, the NTLM was what we had just found too, but obviously internally I don't want/need to use rpc ... I did get-outlookprovider: [PS] C:\Windows\System32get-outlookprovider NameServer CertPrincipalName TTL -- - --- EXCH1 EXPR1 WEB 1 Everything is blank, so presumably something is wrong ... will do some homework .. -Original Message- From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Friday, April 29, 2011 1:26 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS You can configure these preferences with the Set-OutlookProvider cmdlet. As far as why they're getting prompted, you probably have Basic Auth instead of NTLM enabled for Outlook Anywhere. Thanks, Brian
FW: RPC/HTTPS
Hmm, still no go on posting to exchange going to sub/unsub ... -Original Message- From: Level 5 Lists Sent: Friday, April 29, 2011 11:58 AM To: 'MS-Exchange Admin Issues' Subject: RPC/HTTPS We have a client with Exchange 2007 sp3 running for some time now. The other day a few users started flipping to rpc/https. Their internal and external dns is the same (.com) so internally I have autodiscover.domain.com mail.domain.com etc etc .. all registered with a UCC cert and pointing to the internal IP of the Exchange server. The clients were all off RPC internally, and the sales laptops obviously use rpc/https. Today the whole company flipped to rpc/https internally. While this wasn't an issue as far as functionality everyone had to put in their credentials so it caused a lot of confusion. In testing it , if I turn off rpc, outlook works, but when I close and re-open its back on rpc again. I checked GPO Results and nothing is there to push this out. Im thinking because of the autodiscover even though we are internal to the server they are getting changed automatically, just not positive how to change it back. We would like to keep it setup this way for when sales people come in they don't have to make any changes and it just works, but the whole office having to put in their credentials or store them etc will get annoying quickly. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: RPC/HTTPS
Thanks Brian, the NTLM was what we had just found too, but obviously internally I don't want/need to use rpc ... I did get-outlookprovider: [PS] C:\Windows\System32get-outlookprovider NameServer CertPrincipalName TTL -- - --- EXCH1 EXPR1 WEB 1 Everything is blank, so presumably something is wrong ... will do some homework .. -Original Message- From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Friday, April 29, 2011 1:26 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS You can configure these preferences with the Set-OutlookProvider cmdlet. As far as why they're getting prompted, you probably have Basic Auth instead of NTLM enabled for Outlook Anywhere. Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 -Original Message- From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Friday, April 29, 2011 12:05 PM To: NT System Admin Issues Subject: FW: RPC/HTTPS Hmm, still no go on posting to exchange going to sub/unsub ... -Original Message- From: Level 5 Lists Sent: Friday, April 29, 2011 11:58 AM To: 'MS-Exchange Admin Issues' Subject: RPC/HTTPS We have a client with Exchange 2007 sp3 running for some time now. The other day a few users started flipping to rpc/https. Their internal and external dns is the same (.com) so internally I have autodiscover.domain.com mail.domain.com etc etc .. all registered with a UCC cert and pointing to the internal IP of the Exchange server. The clients were all off RPC internally, and the sales laptops obviously use rpc/https. Today the whole company flipped to rpc/https internally. While this wasn't an issue as far as functionality everyone had to put in their credentials so it caused a lot of confusion. In testing it , if I turn off rpc, outlook works, but when I close and re-open its back on rpc again. I checked GPO Results and nothing is there to push this out. Im thinking because of the autodiscover even though we are internal to the server they are getting changed automatically, just not positive how to change it back. We would like to keep it setup this way for when sales people come in they don't have to make any changes and it just works, but the whole office having to put in their credentials or store them etc will get annoying quickly. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: RPC/HTTPS
I did some poking around, it looks like my internal clients are connecting to mx-exchange.domain.com and then flipping into rpc/https mail.domain.com Im trying to figure out if all I need to do is set the outlookprovider for EXCH to MX-EXCHANGE.domain.com so they maintain that connectivity. I guess on a different issue is why this started happening ... we did upgrade to sp3 about 10 days ago but this problem just showed up today. Thanks -Original Message- From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Friday, April 29, 2011 2:26 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS No that is correct. There are substantially more properties if you pipe it to FL. You need to look at the docs and see what flags to set to control the RPC/HTTPS behavior. I don't have the docs in front of me. Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 -Original Message- From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Friday, April 29, 2011 12:34 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS Thanks Brian, the NTLM was what we had just found too, but obviously internally I don't want/need to use rpc ... I did get-outlookprovider: [PS] C:\Windows\System32get-outlookprovider NameServer CertPrincipalName TTL -- - --- EXCH1 EXPR1 WEB 1 Everything is blank, so presumably something is wrong ... will do some homework .. -Original Message- From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Friday, April 29, 2011 1:26 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS You can configure these preferences with the Set-OutlookProvider cmdlet. As far as why they're getting prompted, you probably have Basic Auth instead of NTLM enabled for Outlook Anywhere. Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 -Original Message- From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Friday, April 29, 2011 12:05 PM To: NT System Admin Issues Subject: FW: RPC/HTTPS Hmm, still no go on posting to exchange going to sub/unsub ... -Original Message- From: Level 5 Lists Sent: Friday, April 29, 2011 11:58 AM To: 'MS-Exchange Admin Issues' Subject: RPC/HTTPS We have a client with Exchange 2007 sp3 running for some time now. The other day a few users started flipping to rpc/https. Their internal and external dns is the same (.com) so internally I have autodiscover.domain.com mail.domain.com etc etc .. all registered with a UCC cert and pointing to the internal IP of the Exchange server. The clients were all off RPC internally, and the sales laptops obviously use rpc/https. Today the whole company flipped to rpc/https internally. While this wasn't an issue as far as functionality everyone had to put in their credentials so it caused a lot of confusion. In testing it , if I turn off rpc, outlook works, but when I close and re-open its back on rpc again. I checked GPO Results and nothing is there to push this out. Im thinking because of the autodiscover even though we are internal to the server they are getting changed automatically, just not positive how to change it back. We would like to keep it setup this way for when sales people come in they don't have to make any changes and it just works, but the whole office having to put in their credentials or store them etc will get annoying quickly. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http
RE: RPC/HTTPS
Thanks this is a small shop , 50 users inside, 30 outside ... single exchange server, behind a spam appliance, we didn't do forefront etc, just rpc/https/owa NATed with a UCC cert. I ran that and I get: Name: RPC (Default Web Site) If I run it without the name value its just blank . In the GUI I have it set to the internal/external sitenames. Maybe this got messed up in the sp3 upgrade? And now a week or so later its causing issues? -Original Message- From: Damien Solodow [mailto:damien.solo...@harrison.edu] Sent: Friday, April 29, 2011 5:55 PM To: NT System Admin Issues Subject: Re: RPC/HTTPS Run this in EMS: get-outlookanywhere |fl name,internalurl,externalurl and see what you get. In general the two url fields should be the same, especially if you're using a client access array. -- Sent using BlackBerry - Original Message - From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Friday, April 29, 2011 05:30 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: RE: RPC/HTTPS I did some poking around, it looks like my internal clients are connecting to mx-exchange.domain.com and then flipping into rpc/https mail.domain.com Im trying to figure out if all I need to do is set the outlookprovider for EXCH to MX-EXCHANGE.domain.com so they maintain that connectivity. I guess on a different issue is why this started happening ... we did upgrade to sp3 about 10 days ago but this problem just showed up today. Thanks -Original Message- From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Friday, April 29, 2011 2:26 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS No that is correct. There are substantially more properties if you pipe it to FL. You need to look at the docs and see what flags to set to control the RPC/HTTPS behavior. I don't have the docs in front of me. Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 -Original Message- From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Friday, April 29, 2011 12:34 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS Thanks Brian, the NTLM was what we had just found too, but obviously internally I don't want/need to use rpc ... I did get-outlookprovider: [PS] C:\Windows\System32get-outlookprovider NameServer CertPrincipalName TTL -- - --- EXCH1 EXPR1 WEB 1 Everything is blank, so presumably something is wrong ... will do some homework .. -Original Message- From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Friday, April 29, 2011 1:26 PM To: NT System Admin Issues Subject: RE: RPC/HTTPS You can configure these preferences with the Set-OutlookProvider cmdlet. As far as why they're getting prompted, you probably have Basic Auth instead of NTLM enabled for Outlook Anywhere. Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 -Original Message- From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Friday, April 29, 2011 12:05 PM To: NT System Admin Issues Subject: FW: RPC/HTTPS Hmm, still no go on posting to exchange going to sub/unsub ... -Original Message- From: Level 5 Lists Sent: Friday, April 29, 2011 11:58 AM To: 'MS-Exchange Admin Issues' Subject: RPC/HTTPS We have a client with Exchange 2007 sp3 running for some time now. The other day a few users started flipping to rpc/https. Their internal and external dns is the same (.com) so internally I have autodiscover.domain.com mail.domain.com etc etc .. all registered with a UCC cert and pointing to the internal IP of the Exchange server. The clients were all off RPC internally, and the sales laptops obviously use rpc/https. Today the whole company flipped to rpc/https internally. While this wasn't an issue as far as functionality everyone had to put in their credentials so it caused a lot of confusion. In testing it , if I turn off rpc, outlook works, but when I close and re-open its back on rpc again. I checked GPO Results and nothing is there to push this out. Im thinking because of the autodiscover even though we are internal to the server they are getting changed automatically, just not positive how to change it back. We would like to keep it setup this way for when sales people come in they don't have to make any changes and it just works, but the whole office having to put in their credentials or store them etc will get annoying quickly. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body
Spamhaus Lookup
Tried to put this on exchange list, but keeps saying no attachments .. thought I would try it here: Exchange 2010 SP1 . We dropped anti-spam and put spamhaus and spamcop on and enabled. We are still seeing a lot of junk coming through, I went in to test spamhaus and no matter what I do the mail passes. I sent a test email to their system and it didn't reject it. When I do a ping or nslookup on zen.spamhaus.org I get nothing in DNS. I tried a couple of external DNS servers with the same results. Im on Spamhaus' site and don't see anything about them being down... a couple of other providers seem to be working ok (I can at least ping/nslookup) the server. Maybe Im doing something incorrect: I added the filter, did zen.spamhaus.org, said for any response code (I didn't bother setting the different codes for now) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Spamhaus Lookup
Yes, we are using multiples , when I test a few of the known IP's from Spamhaus it fails all lookups, which is why I think its not working at all. Spamhaus was the one I was testing independently, and sending the email test, and the ip lookup test from exchange shell results in false (no response) even though Spamhaus says its listed. Im testing some of the other agents now just to see if any of them are functioning. I also signed up for the free Barracuda RBL to try that one too. Thanks -Original Message- From: Bob Fronk [mailto:b...@btrfronk.com] Sent: Wednesday, April 27, 2011 1:37 PM To: NT System Admin Issues Subject: RE: Spamhaus Lookup Relying on RBL alone is not a sufficient way to combat SPAM. I use multiple RBLs, RWLs, Vipre and Barracuda. -Original Message- From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Wednesday, April 27, 2011 1:11 PM To: NT System Admin Issues Subject: Spamhaus Lookup Tried to put this on exchange list, but keeps saying no attachments .. thought I would try it here: Exchange 2010 SP1 . We dropped anti-spam and put spamhaus and spamcop on and enabled. We are still seeing a lot of junk coming through, I went in to test spamhaus and no matter what I do the mail passes. I sent a test email to their system and it didn't reject it. When I do a ping or nslookup on zen.spamhaus.org I get nothing in DNS. I tried a couple of external DNS servers with the same results. Im on Spamhaus' site and don't see anything about them being down... a couple of other providers seem to be working ok (I can at least ping/nslookup) the server. Maybe Im doing something incorrect: I added the filter, did zen.spamhaus.org, said for any response code (I didn't bother setting the different codes for now) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Spamhaus Lookup
Not sure if someone else is using spamhaus, but according to Spamhaus this test should produce a True result, as you can see I don't get any response from anyone.. maybe our firewall is blocking the traffic ? That might be something I have to check .. [PS] C:\Windows\system32Get-IPBlockListProvider | Test-IPBlockListProvider -IPAddress 192.203.178.107 RunspaceId : 34e0baed-3f61-4c6d-85dc-dfe48c31187d Provider : SpamHaus IP Block List Provider ProviderResult : {} Matched: False RunspaceId : 34e0baed-3f61-4c6d-85dc-dfe48c31187d Provider : SpamCop IP Block List Provider ProviderResult : {} Matched: False RunspaceId : 34e0baed-3f61-4c6d-85dc-dfe48c31187d Provider : Barracuda BRBL ProviderResult : {} Matched : False From: Bill Songstad [mailto:bsongs...@gmail.com] Sent: Wednesday, April 27, 2011 2:14 PM To: NT System Admin Issues Subject: Re: Spamhaus Lookup Many public DNS servers don't reply correctly about lookups at spamhaus. Make sure you are getting your DNS info from your ISP, and not the free public servers. (e.g. 8.8.8.8, 4.4.2.2. etc...) Bill On Wed, Apr 27, 2011 at 11:08 AM, Level 5 Lists li...@levelfive.usmailto:li...@levelfive.us wrote: Yes, we are using multiples , when I test a few of the known IP's from Spamhaus it fails all lookups, which is why I think its not working at all. Spamhaus was the one I was testing independently, and sending the email test, and the ip lookup test from exchange shell results in false (no response) even though Spamhaus says its listed. Im testing some of the other agents now just to see if any of them are functioning. I also signed up for the free Barracuda RBL to try that one too. Thanks -Original Message- From: Bob Fronk [mailto:b...@btrfronk.commailto:b...@btrfronk.com] Sent: Wednesday, April 27, 2011 1:37 PM To: NT System Admin Issues Subject: RE: Spamhaus Lookup Relying on RBL alone is not a sufficient way to combat SPAM. I use multiple RBLs, RWLs, Vipre and Barracuda. -Original Message- From: Level 5 Lists [mailto:li...@levelfive.usmailto:li...@levelfive.us] Sent: Wednesday, April 27, 2011 1:11 PM To: NT System Admin Issues Subject: Spamhaus Lookup Tried to put this on exchange list, but keeps saying no attachments .. thought I would try it here: Exchange 2010 SP1 . We dropped anti-spam and put spamhaus and spamcop on and enabled. We are still seeing a lot of junk coming through, I went in to test spamhaus and no matter what I do the mail passes. I sent a test email to their system and it didn't reject it. When I do a ping or nslookup on zen.spamhaus.orghttp://zen.spamhaus.org/ I get nothing in DNS. I tried a couple of external DNS servers with the same results. Im on Spamhaus' site and don't see anything about them being down... a couple of other providers seem to be working ok (I can at least ping/nslookup) the server. Maybe Im doing something incorrect: I added the filter, did zen.spamhaus.orghttp://zen.spamhaus.org/, said for any response code (I didn't bother setting the different codes for now) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Spamhaus Lookup
Thanks Bill for the lead, this was the problem. My client had manually put 4.2.2.2 into their DNS forwarder. Once I removed it, cleared dns cache Im getting TRUE results.. Appreciate the tip! From: Bill Songstad [mailto:bsongs...@gmail.com] Sent: Wednesday, April 27, 2011 2:14 PM To: NT System Admin Issues Subject: Re: Spamhaus Lookup Many public DNS servers don't reply correctly about lookups at spamhaus. Make sure you are getting your DNS info from your ISP, and not the free public servers. (e.g. 8.8.8.8, 4.4.2.2. etc...) Bill On Wed, Apr 27, 2011 at 11:08 AM, Level 5 Lists li...@levelfive.usmailto:li...@levelfive.us wrote: Yes, we are using multiples , when I test a few of the known IP's from Spamhaus it fails all lookups, which is why I think its not working at all. Spamhaus was the one I was testing independently, and sending the email test, and the ip lookup test from exchange shell results in false (no response) even though Spamhaus says its listed. Im testing some of the other agents now just to see if any of them are functioning. I also signed up for the free Barracuda RBL to try that one too. Thanks -Original Message- From: Bob Fronk [mailto:b...@btrfronk.commailto:b...@btrfronk.com] Sent: Wednesday, April 27, 2011 1:37 PM To: NT System Admin Issues Subject: RE: Spamhaus Lookup Relying on RBL alone is not a sufficient way to combat SPAM. I use multiple RBLs, RWLs, Vipre and Barracuda. -Original Message- From: Level 5 Lists [mailto:li...@levelfive.usmailto:li...@levelfive.us] Sent: Wednesday, April 27, 2011 1:11 PM To: NT System Admin Issues Subject: Spamhaus Lookup Tried to put this on exchange list, but keeps saying no attachments .. thought I would try it here: Exchange 2010 SP1 . We dropped anti-spam and put spamhaus and spamcop on and enabled. We are still seeing a lot of junk coming through, I went in to test spamhaus and no matter what I do the mail passes. I sent a test email to their system and it didn't reject it. When I do a ping or nslookup on zen.spamhaus.orghttp://zen.spamhaus.org/ I get nothing in DNS. I tried a couple of external DNS servers with the same results. Im on Spamhaus' site and don't see anything about them being down... a couple of other providers seem to be working ok (I can at least ping/nslookup) the server. Maybe Im doing something incorrect: I added the filter, did zen.spamhaus.orghttp://zen.spamhaus.org/, said for any response code (I didn't bother setting the different codes for now) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Touch screen tablets
Not sure what you guys paid, I played with the xoom at CES nice! They were talking about 1k retail. Costco had them for 580 on pre-order. Considering my 64gb ipad fetches me about 400 bucks I cant wait to make the switch .. From: Carl Houseman [mailto:c.house...@gmail.com] Sent: Friday, April 22, 2011 1:51 PM To: NT System Admin Issues Subject: RE: Touch screen tablets 64GB SSD and 12 screen account for some of that price. BestBuy is taking pre-orders for the Acer Iconia (10 Android 3.0) at $150 less than list price of a wi-fi-only Xoom. Supposed to ship by the end of the month. Let the price wars begin! From: Rod Trent [mailto:rodtr...@myitforum.com] Sent: Friday, April 22, 2011 12:48 PM To: NT System Admin Issues Subject: RE: Touch screen tablets Crazy...that's twice the price of a Xoom. From: Steven Peck [mailto:sep...@gmail.com] Sent: Friday, April 22, 2011 12:39 PM To: NT System Admin Issues Subject: Re: Touch screen tablets http://www.microsoftstore.com/store/msstore/en_US/pd/productID.228299800/parentCategoryID.44066900/categoryID.54536100/list.true A friend of mine has that. It's pretty darn nice. On Fri, Apr 22, 2011 at 9:07 AM, Rod Trent rodtr...@myitforum.commailto:rodtr...@myitforum.com wrote: Full-size laptop? Or would a mini (like the Dell) or even a netbook do? What OS? From: Tom Miller [mailto:tmil...@hnncsb.orgmailto:tmil...@hnncsb.org] Sent: Friday, April 22, 2011 12:01 PM To: NT System Admin Issues Subject: Touch screen tablets Folks, I'm in the market for a touch screen laptop tablet. We want to test e-signatures using the touch screen instead of an add-on USB signature card. Any suggestions? I see several vendors have these. Since this is just testing, nothing high-end is needed. Thanks, Tom Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: SIDs
Well the last time I accidentally connected 5 xp ghosted computers onto a domain I had all kinds of issues. We had issues with authentication, enumerating domain accounts would revert to Unknowns (like Domain Admins in the local Administrators group) and all kinds of weirdness. We troubleshot this to the help desk that did not run NewSid on the computers. We unjoined the domain, NewSid, rejoined and the problems were gone. 2 weeks ago I had a client who rolled up 2 2008r2 vms from a base image, connected them to the domain , one running exchange 2010, the other was BES 5. They both seemed to work okay for the most part, but the event logs were complaining about dupe sids all the time. We cleaned it up , but did not notice any huge issues with the machines themselves. So while I think the article is very interesting Im not going to try it anytime soon ;) From: James Rankin [mailto:kz2...@googlemail.com] Sent: Thursday, April 21, 2011 8:57 AM To: NT System Admin Issues Subject: Re: SIDs The most important point is probably the very last in that article Note that Sysprep resets other machine-specific state that, if duplicated, can cause problems for certain applications like Windows Server Update Services (WSUS), so Microsoft's support policy will still require cloned systems to be made unique with Sysprep On 21 April 2011 13:52, itli...@imcu.commailto:itli...@imcu.com itli...@imcu.commailto:itli...@imcu.com wrote: I have a new admin that believes you don't have to sysprep machines because Mark R. from systernals wrote an article saying duplicate sid's were not an issue. He doesn't have the article for me to refute so I don't know how to answer him or tell him he is wrong? Any help would and will be appreciated. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the machine wrong figures, will the right answers come out?' I am not able rightly to apprehend the kind of confusion of ideas that could provoke such a question. IMPORTANT: This email is intended for the use of the individual addressee(s) named above and may contain information that is confidential, privileged or unsuitable for overly sensitive persons with low self-esteem, no sense of humour or irrational religious beliefs. If you are not the intended recipient, any dissemination, distribution or copying of this email is not authorised (either explicitly or implicitly) and constitutes an irritating social faux pas. Unless the word absquatulation has been used in its correct context somewhere other than in this warning, it does not have any legal or no grammatical use and may be ignored. No animals were harmed in the transmission of this email, although the kelpie next door is living on borrowed time, let me tell you. Those of you with an overwhelming fear of the unknown will be gratified to learn that there is no hidden message revealed by reading this warning backwards, so just ignore that Alert Notice from Microsoft. However, by pouring a complete circle of salt around yourself and your computer you can ensure that no harm befalls you and your pets. If you have received this email in error, please add some nutmeg and egg whites, whisk and place in a warm oven for 40 minutes. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Misconfigured Apple?
No complaints, from the IIS logs this just started happening what looks like about 8 days ago.. maybe an ipad2? Im looking into it tomorrow as this was my initial thought. Its sbs2003 with all the service packs From: Rod Trent [mailto:rodtr...@myitforum.com] Sent: Thursday, April 21, 2011 6:36 PM To: NT System Admin Issues Subject: RE: Misconfigured Apple? Have those 2 attorneys reported problems with their devices? From: Mike Sullivan [mailto:neog...@gmail.com] Sent: Thursday, April 21, 2011 6:33 PM To: NT System Admin Issues Subject: Re: Misconfigured Apple? Could they both be on an early version of iOS4? http://blogs.technet.com/b/exchange/archive/2010/07/01/3410271.aspx On Thu, Apr 21, 2011 at 1:35 PM, Level 5 Lists li...@levelfive.usmailto:li...@levelfive.us wrote: I have a small law firm about 20 people. A handful of them are using ipads, iphones , macbooks etc .. So the past week we started noticing that the system partition was down about 7-8gb, a quick treefinder showed me that the iis log files for the past week or filling up 400mb + a day. I scroll through it manually, and its all from 2 of the attorneys, just in 1 minute about 1800+ iis log entries. The server seems to be operating normally , I just haven't seen this anywhere else, even with the other clients ipads/iphones we support. I am going to turn down logging obviously but we don't have much enabled, whatever iis6 defaults are... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- Thank you, Mike Sullivan ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Looking for secure video conferencing
Jim, we recently deployed vutelepresence units, they are decent and weren't very expensive (@ 1500/unit with 5 pc clients). We found them because they do 720p conferencing with about 500k of bandwidth. We deployed one to Florida, Penn , and the UK for our client and they all seem to be pretty happy with them. I think the company still has some ways to go but the product works pretty well. Their sales/support was a little slow to respond. From: Jim Holmgren [mailto:jholmg...@xlhealth.com] Sent: Wednesday, April 20, 2011 8:46 PM To: NT System Admin Issues Subject: RE: Looking for secure video conferencing No, Lync is our first foray into OCS world so I have no prior experience to which I can compare. Jim From: Steven Peck [mailto:sep...@gmail.com] Sent: Wed 4/20/2011 7:47 PM To: NT System Admin Issues Subject: Re: Looking for secure video conferencing Did you have ocs2007r2? If so are there any significant differences between them you have noitced yet? On Wed, Apr 20, 2011 at 1:49 PM, Jim Holmgren jholmg...@xlhealth.commailto:jholmg...@xlhealth.com wrote: We have deployed Lync here over the last 2-3 weeks, but we have not fully explored the Video capability beyond some internal point-to-point testing. We have it deployed internally only at this point, but it seems to be a nice application that is very integrated into Outlook and SharePoint. Jim From: Steven Peck [mailto:sep...@gmail.commailto:sep...@gmail.com] Sent: Wednesday, April 20, 2011 4:43 PM To: NT System Admin Issues Subject: Re: Looking for secure video conferencing Office Communications Server or Lynx should do it as well. On Wed, Apr 20, 2011 at 1:32 PM, Jim Holmgren jholmg...@xlhealth.commailto:jholmg...@xlhealth.com wrote: +1 we used Polycom's personal video client extensively at my previous employer. Worked great! Jim Jim Holmgren Senior Manager, Infrastructure Services XLHealth Corporation The Warehouse at Camden Yards 351 West Camden Street, Suite 100 Baltimore, MD 21201 410.625.2200 (main) 443.524.8573 (direct) 443-506.2400 (cell) www.xlhealth.comhttp://www.xlhealth.com/ -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.commailto:kurt.b...@gmail.com] Sent: Wednesday, April 20, 2011 4:16 PM To: NT System Admin Issues Subject: Re: Looking for secure video conferencing The only system I played with is the Polycom setup we have. We have a VSX 7000, which is really old, but there's a PC client for it that seems to work really well. The Polycom (software client and hardware unit) supports encryption, and the hardware unit can do multi-point communication. We decided not to go with the software client, but in my tests it performed just fine. Kurt On Wed, Apr 20, 2011 at 12:38, Tom Miller tmil...@hnncsb.orgmailto:tmil...@hnncsb.org wrote: We will soon be piloting a program whereby our staff will go to a client's location to have a video conference with our doctors who are in their offices. The laptops will have cameras on them. I'm looking for recommendations for systems. If the pilot goes well, we expect this to grow. In house system or hosted is fine. I know Cisco has some sort of teleconferencing, but that requires a large cash purchase upfront for a unit. Anything else? It needs to be secure and easy to use for our end users. I'd prefer something where our doctors have a small screen to watch next to their monitors, since they will be working withing our clinical program at the time, and I know I'd get complaints about having to toggle. Heaven forbid. Thanks, Tom Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin CONFIDENTIALITY NOTICE: This email, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and/or protected health information. Under the Federal Law (HIPAA), the intended recipient is obligated to keep this information secure
RE: Cybernetics san
Unless they are offering something out of the ordinary I would look at Nexenta's offerings, and just get support direct by either building your own or one of their channel partners. I think pogo makes decent stuff, and those new dual mobo nexenta boxes with the 10gb crossover looks pretty nice too. (I forget who makes them ... ) . Aberdeen boxes we picked up in December are decent, @ 8k , 5yr warranty, gold support w/ Nexenta (replication, snapshotting, compression, and de-duping licensed). If your running sata its hard to get 16tb unless you are dropping 2tb drives so your spindle speed isnt going to be fantastic. Depends on your needs... I have 4 esx boxes at a client running an Aberdeen box Nexenta 3.04 w/ 8 1tb drives. It runs pretty well, 24 servers (sql, exchange, storage) for about 75 users .. That unit does 4 hr replication to a secondary unit over a 10mb fiber, it took a bit to get it going but seems to be working nicely now. -Original Message- From: Glen Johnson [mailto:gjohn...@vhcc.edu] Sent: Monday, April 18, 2011 10:07 AM To: NT System Admin Issues Subject: Cybernetics san Anyone have comments about these folks. Got a call as I was leaving work on Friday and from the sales droid sphell, it sounds pretty reasonable. Off the cuff, 16tb for under $10k. Got a webex tomorrow and plan to do some reading later today, but would appreciate any advice from folks with experience. We are looking to move several vm's to a san for offsite replications and also high availability. May also move our SQL and Exchange 2010 databases to the SAN later on. Didn't see them mentioned when searching the list archives so I thought I'd ask. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Outlook 2007 credentials
Thanks, I didn't even consider the server since its only happening at 1-2 computers at each location. I was thinking it was a workstation update, we are on whitelisted patches so was guessing some of these people did their own office updates. I will take a look at that. From: Bob Fronk [mailto:b...@btrfronk.com] Sent: Monday, April 18, 2011 9:06 PM To: NT System Admin Issues Subject: RE: Outlook 2007 credentials Any recent Exchange updates? I recall a similar situation with SBS2008 after an Exchange roll up. I think the same thing can happen on Exchange 2007 after Roll Up 9. IIRC, the fix is to re-apply the roll up. BF From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Monday, April 18, 2011 9:02 PM To: NT System Admin Issues Subject: Outlook 2007 credentials Over the past couple of weeks, I have been getting user complaints at a few different sites that Outlook will always ask for credentials. These are internal desktops. The clients are all different and its not system wide its just a workstation here and there. Cant seem to find a fix for it ... nothing really pops up error wise just asks for credentials you put them in and your fine. If you close/open outlook it asks again (like rpc/https). Access to the network seems fine , rebooting, played around with disabling vipre a/v ... don't really see a reason why. Tried setting up an admin account, logged in setup outlook and it does it too so appears machine related not profile... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: USB docking for laptops
Thanks guys. I re-informed my client I had recommended the true docking stations from HP and not what the kid at Best Buy mentioned to them J Apparently Toshiba has a lot of complaints and released a bunch of new drivers but they still cant change how usb gets initialized from windows so I don't see much help.. From: Jonathan Link [mailto:jonathan.l...@gmail.com] Sent: Wednesday, April 13, 2011 9:01 AM To: NT System Admin Issues Subject: Re: USB docking for laptops We use Kensington SD100S[1], but mainly for the ability to add usb ports and stand the notebook up a bit and bring the monitor closer to eye level. We experience similar issues, I just ask all users to use the network jack on their computer. Yes, it's one more thing to plug in, but it's small potatoes. [1] http://www.cdw.com/shop/products/Kensington-Notebook-Docking-Station-with-St and-SD100S-USB-docking-station/1629940.aspx Basically a stand with an attachable port replicator. On Wed, Apr 13, 2011 at 1:07 AM, Kurt Buff kurt.b...@gmail.com wrote: Your instincts are correct. USB docking stations have not worked for my firm, across several models of docking stations and brands of laptops. Nothing but headaches. Kurt On Tue, Apr 12, 2011 at 19:35, Level 5 - Lists li...@levelfive.us wrote: Hi all, we have about 10 HP laptops that were purchased with a Toshiba USB Dock. The issue is that many times when the users come into the office and boot the laptop with the device plugged in a lot of the settings have to be redone, the login script doesn't run etc. We are figuring this is due to the USB not being initialized first. We then have to logout/logon to get the scripts to run and then have to go back and setup the dual monitors correctly. Kind of annoying . I suggested getting the real docking stations but haven't gotten approval yet. Wondering if anyone had a work around to get these devices to init before Windows comes up. Im told there are other brands that work better but cant imagine the difference . Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: OT : Rooting Android phones
I have the evo rooted, and my wife has the shift and I rooted hers too although there aren't any really good custom things for it yet. I have tried many of the different custom roms, and the wireless tether is the primary reason I rooted mine. Right now I run the MIUI custom rom, it looks sort of iphone'ish but everything is very polished, fast and the battery lasts me way longer. I was able to scrap the nascar, nfl and built in sprint items . (Most of the custom roms rip it out) Cyanogen is one of the more popular custom roms out there, but im not a huge fan. I did load cm7-grx which is a custom version of customized cyanogen heh, its running gingerbread which is what the new Google Nexus runs so I get the sip dialing and new apps .. Evo's are probably the easiest to root, and seems to be a ton of custom roms for them and I think the incredible has a lot too. From: Micheal Espinola Jr [mailto:michealespin...@gmail.com] Sent: Thursday, March 24, 2011 11:52 PM To: NT System Admin Issues Subject: Re: OT : Rooting Android phones soon to be known as the HTC Alka-Seltzer? -- ME2 On Thu, Mar 24, 2011 at 7:23 AM, Craig Sterley cster...@ostusa.com wrote: http://forum.xda-developers.com/wiki/index.php?title=HTC_Speedy From: Kelli Sterley [mailto:kjsterley.li...@gmail.com] Sent: Thursday, March 24, 2011 10:16 AM To: NT System Admin Issues Subject: Re: OT : Rooting Android phones Has anyone rooted the Evo Shift yet? On Thu, Mar 24, 2011 at 4:42 AM, Rene de Haas rene.deh...@gmail.com wrote: I'm not from the US. Mine is Tele2, but they get it from T-Mobile. When I got it, about 2 months ago it came loaded with 2.2, didn't need to do anything. On Wed, Mar 23, 2011 at 10:42 PM, Matthew Bullock mbull...@root9.com wrote: Who's your carrier? Verizon hasn't come out with 2.2 for the galaxy S yet. I rooted my S but VZ sent an update which removed the root, and sent it into a loop. I had to wipe and restore the original image. -mb From: Rene de Haas [mailto:rene.deh...@gmail.com] Sent: Thursday, March 17, 2011 5:19 AM To: NT System Admin Issues Subject: Re: OT : Rooting Android phones On my Samsung Galaxy S running android 2.2 tethering is on there already iirc. On Wed, Mar 16, 2011 at 11:57 PM, Erik Goldoff egold...@gmail.com wrote: Thanks, between here and another source, I think I've heard from about 8 folks that specifically mention the tethering benefit Erik Goldoff IT Consultant Systems, Networks, Security ' Security is an ongoing process, not a one time event ! ' From: Jimmy Tran [mailto:jt...@teachtci.com] Sent: Wednesday, March 16, 2011 5:48 PM To: NT System Admin Issues Subject: RE: OT : Rooting Android phones Erik, I rooted my Motorola Droid when I first got it. I rooted it just to have root access but then found some apps that will allow me to tether my phone as a wi-fi hotspot. I had often loaded different roms and such but that got old real quick. I can't run updates on my phone because of my rooted access but I'm ok with that. I haven't tinkered with my phone for over a year now and still on OS 2.1. The only real benefit of rooting for me is the wi-fi tethering, Hope this helps. -Jimmy From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Wednesday, March 16, 2011 12:40 PM To: NT System Admin Issues Subject: OT : Rooting Android phones Lately I've been seeing a number of articles and videos on rooting Android phones, including the HTC EVO that I use. Besides the obvious 'gaining root access', has anyone done this that can list some of the benefits from rooting your phone ? (I'm thinking maybe I could finally uninstall that Nascar app that was bundled by Sprint ) Thanks in advance Erik Goldoff IT Consultant Systems, Networks, Security ' Security is an ongoing process, not a one time event ! ' ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To
RE: OT : Rooting Android phones
if you have an HTC you can goto unrevoked and do the subradio hack which works on all upgrades forever. I use Rom Manager and run the MIUI rom which looks similar to an iphone (some love it , some hate it) but its very polished, the battery lasts forever compared to others .. and yes very important is tethering. Sprint wants 20 bucks a month more for tethering to be enabled on the phone so wireless tether is nice, and on 4g its even nicer (6dn 1up) From: Rene de Haas [mailto:rene.deh...@gmail.com] Sent: Thursday, March 17, 2011 8:19 AM To: NT System Admin Issues Subject: Re: OT : Rooting Android phones On my Samsung Galaxy S running android 2.2 tethering is on there already iirc. On Wed, Mar 16, 2011 at 11:57 PM, Erik Goldoff egold...@gmail.com wrote: Thanks, between here and another source, I think I've heard from about 8 folks that specifically mention the tethering benefit Erik Goldoff IT Consultant Systems, Networks, Security ' Security is an ongoing process, not a one time event ! ' From: Jimmy Tran [mailto:jt...@teachtci.com] Sent: Wednesday, March 16, 2011 5:48 PM To: NT System Admin Issues Subject: RE: OT : Rooting Android phones Erik, I rooted my Motorola Droid when I first got it. I rooted it just to have root access but then found some apps that will allow me to tether my phone as a wi-fi hotspot. I had often loaded different roms and such but that got old real quick. I can't run updates on my phone because of my rooted access but I'm ok with that. I haven't tinkered with my phone for over a year now and still on OS 2.1. The only real benefit of rooting for me is the wi-fi tethering, Hope this helps. -Jimmy From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Wednesday, March 16, 2011 12:40 PM To: NT System Admin Issues Subject: OT : Rooting Android phones Lately I've been seeing a number of articles and videos on rooting Android phones, including the HTC EVO that I use. Besides the obvious 'gaining root access', has anyone done this that can list some of the benefits from rooting your phone ? (I'm thinking maybe I could finally uninstall that Nascar app that was bundled by Sprint ) Thanks in advance Erik Goldoff IT Consultant Systems, Networks, Security ' Security is an ongoing process, not a one time event ! ' ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Hosted Exchange and file shares
I like intermedia myself it has sharepoint and exchange and crm if you need it. I don't like the MS online stuff because they run it through the Microsoft Messenger and if you logout of that then it drops credentials for Outlook and you have to re-login . From: Bob Fronk [mailto:b...@btrfronk.com] Sent: Thursday, March 17, 2011 9:24 AM To: NT System Admin Issues Subject: Hosted Exchange and file shares Good morning group(s) I have a small on the side client that I have been helping for a couple years. They are a small business with 5 users. They operate from their home and some remote users with an aging SBS2003 server. It is time to get them less reliant on me for support. I would like to eventually be totally out of the support picture for them. They are heavy Exchange / Outlook users. All the job information and customer requests come to them via email. They have some file share and file backup needs as well. Recent weather related extended power failures at the home (while they were away traveling for business) brought their work to a halt until I could re-route mail to a temporary server. They travel extensively while maintaining near constant contact with customers via email and cell phone. They have seen the to the cloud commercials and have begun to push for easier access to email and files from any location. I am looking at Microsoft Office 365 for them, but I am not sure they need all those services. (I signed up for a trail this morning to test it out). I know they want to keep Exchange/Outlook and want to be able to migrate current information into the hosted server and continue to use their email domain name. They want to be able to use OWA from any available PC, ActiveSync on iPhones and access important files from any PC, anywhere. I am not sure if they need something as complex as Office 365, but it seems to be the best fit from my limited research. I need to do more research on available products, however, I was hoping someone on these lists has used some similar online services or MSO 365 and could offer input from your experience. I welcome suggestions from the group. BF ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Exchange Database -- VMDK or RAW?
My larger client has 4 EQL boxes, and we have 2 running all VMDK and 2 running all RAW. Performance seemed just fine we had Exchange on the RAW and then VMDK for the o/s. We recently upgraded them to Veeam Backups, and wanted to take advantage of all that and migrated the Exchange into a vmdk and performance doesnt seem to have changed from the end user perspective. Our backup windows shrank by days not hours :) so we are pretty happy . We are running @ 750 users, 1.5TB across 4 storage groups. Exchange 2007 latest sp/hotfixes as of Dec 2010. -Original Message- From: Jon D [mailto:rekcahp...@gmail.com] Sent: Monday, March 14, 2011 10:22 AM To: NT System Admin Issues Subject: Re: Exchange Database -- VMDK or RAW? Thanks for everyones replies so far. More details: Exchange 2010(all roles). FC to SAN Around 300 users. I want to increase mailbox limits putting the total databases at around 750MB - 1TB combined. Thanks, Jon On Mon, Mar 14, 2011 at 10:06 AM, Paul Hutchings paul.hutchi...@mira.co.uk wrote: Which version of Exchange? I'm currently planning our move from 2003 to 2010 and really you want to run Jetstress to ensure you get the IOPS you want within acceptable latency etc. -Original Message- From: Kim Longenbaugh [mailto:k...@colonialsavings.com] Sent: 14 March 2011 14:04 To: NT System Admin Issues Subject: RE: Exchange Database -- VMDK or RAW? Ok, if it helps, we're using iSCSI over Ethernet, on 1 Gbps connections, with about 900 users -Original Message- From: Ken Schaefer [mailto:k...@adopenstatic.com] Sent: Monday, March 14, 2011 9:00 AM To: NT System Admin Issues Subject: RE: Exchange Database -- VMDK or RAW? Without knowing the parameters of your environment, this isn't really that useful. E.g. if you are using iSCSI over Ethernet, then it makes a big difference if you are using 1gbps vs 10gbps (depending on the environment size). If you only have 100 users, it doesn't matter if you are using VMDK vs RAW and iSCSI vs FC. If you have 100,000 users, it does. Cheers Ken -Original Message- From: Kim Longenbaugh [mailto:k...@colonialsavings.com] Sent: Monday, 14 March 2011 9:42 PM To: NT System Admin Issues Subject: RE: Exchange Database -- VMDK or RAW? We use the MS iSCSI initiator to attach all the Exchange data and log drives. There have been no observable performance issues doing so in our environment. Use Dell's extpart.exe for 2003, or the W2008 native diskpart, we've been able to grow the drives on the fly when we needed to add space for some reason. I know you can do the same with VMDK files, but don't have any experience with RAW drives. -Original Message- From: Jon D [mailto:rekcahp...@gmail.com] Sent: Monday, March 14, 2011 8:31 AM To: NT System Admin Issues Subject: Exchange Database -- VMDK or RAW? For those who have your Exchange boxes inside of VMWare, did you put your databases inside VMDK files, or did you go RAW? VMDK seems like it would be easier to manage, but I'm wondering about size issues, performance, etc. Thanks, Jon ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- MIRA Ltd Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
RE: SAN monitoring
Coming in late, a buddy of mine moved to Open NMS and he runs 7 or 8 FreeNAS SAN's with about 80TB of storage and he monitors them with this I believe .. From: Derek Johnson [mailto:djohn...@realtors.org] Sent: Thursday, December 23, 2010 9:35 AM To: NT System Admin Issues Subject: RE: SAN monitoring Nagios is free and if you need a Nagios Guru I can get you in contact with one. I wouldn't waste your time with Veeam, I would look into vFoglight from Vizioncore/Quest Derek A Johnson Sr. Systems Administrator National Association of Realtors 430 N. Michigan Ave. Chicago, IL 60611 Email: djohn...@realtors.org Cell: 262.496.9201 Desk: 312.329.8618 http://www.realtors.org From: Michael Miller [mailto:burner...@gmail.com] Sent: Thursday, December 23, 2010 8:24 AM To: NT System Admin Issues Subject: Re: SAN monitoring This is my other account. I never got these replies, on the email i created this on. I will try ops view, nagios wasn't free as far as I could tell. I'll look into opsview with cacti and see what its about. If nothing else i'll use a VMWare monitoring tool like Veeam. Thanks to all for your replies On Fri, Dec 17, 2010 at 12:18, Stringham, Steven sstri...@lrlaw.com wrote: Cacti - graphs, thresholds, etc. If you can get a check into nagios, you can get the data into cacti. -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Friday, December 17, 2010 10:10 AM To: NT System Admin Issues Subject: RE: SAN monitoring It looks like Quantastor runs on Ubuntu... Opsview? I'm not sure if you can get the Disk IO or IOPS from a nagios check... but maybe you can. --Matt Ross Ephrata School District - Original Message - From: Miller, Michael [mailto:michael.mil...@dys.ohio.gov] To: NT System Admin Issues [mailto:ntsysad...@lyris.sunbelt-software.com] Sent: Fri, 17 Dec 2010 05:43:10 -0800 Subject: RE: SAN monitoring Quantastor* From: Miller, Michael [mailto:michael.mil...@dys.ohio.gov] Sent: Friday, December 17, 2010 8:42 AM To: NT System Admin Issues Subject: SAN monitoring We are running quanta store on our SAN's. I am looking for something that is free and works well for good Disk I/O, or maybe even IOPS. Anyone have any recommendations of something that works well, that is FREE :) and the monitoring is better than a graph that does hours. Miller This message, and any response to it, may constitute a public record and thus may be publicly available to anyone who requests it in accordance with Chapter 149 of the Ohio Revised Code. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbelt software.com with the body: unsubscribe ntsysadmin This message, and any response to it, may constitute a public record and thus may be publicly available to anyone who requests it in accordance with Chapter 149 of the Ohio Revised Code. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin For more information about Lewis and Roca LLP, please go to www.lewisandroca.com. Phoenix (602) 262-5311 Tucson (520) 622-2090 Las Vegas (702) 949-8200 Reno (775) 823-2900 Minden (775) 586-9500 Albuquerque (505) 764-5400 Silicon Valley (650) 391-1380 This message is intended only for the use of the individual or entity to which it is addressed. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivering the message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this message is strictly prohibited. If you have received this communication in error, please notify us immediately by replying to the sender of this E-Mail by return E-Mail or by telephone. In accordance with Internal Revenue Service Circular 230, we advise you that if this email contains any tax advice, such tax advice was not intended or written to be used, and it cannot be used, by any taxpayer for the purpose of avoiding penalties that may be imposed on the taxpayer. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
IIS NLB
I have setup a few IIS NLB clusters but never really paid too much attention to the load balancing aspects. I currently have 2 2008r2 IIS boxes running NLB, the NLB seems to be working fine except for that it always uses the same primary server unless I reboot it. I was looking at the Multiple Host - Affinity options and even if I set it to 'none' I still see it says the connections will be load balanced but the client ip will associate with only one server. I would really like both servers to act at all times. I tried resetting the different options but am never able to accomplish what Im looking to do. We have a B2B web server that handles about 50k transactions every few minutes. The problem is that the client connection will always be coming from the same IP so the NLB in this case offers me failover , which is nice, but eventually I need to have 4 servers in this farm and all of them need to act together. The application has already been re-written for sessions etc to accommodate this setup. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Group Policy Won't Go Away
Did you try looking here on the local machine: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft There should be GUID's matching the group policy items you want to remove. From: Don Guyer [mailto:don.gu...@prufoxroach.com] Sent: Wednesday, November 03, 2010 1:57 PM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away Can't you view the settings the GPO changes, then work on figuring out where in the registry they are stored and remove them? Maybe I'm not thinking into this deep enough. J Don Guyer Systems Engineer - Information Services Prudential, Fox Roach/Trident Group 431 W. Lancaster Avenue Devon, PA 19333 Direct: (610) 993-3299 Fax: (610) 650-5306 don.gu...@prufoxroach.com From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] Sent: Wednesday, November 03, 2010 1:55 PM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away We can always reimage the machine if it comes down to it. But that shouldn't be necessary-I know there has to be a way to fix it. I'm just not knowledgeable enough about the intricacies of group policy to do it. From: Carl Houseman [mailto:c.house...@gmail.com] Sent: Wednesday, November 03, 2010 1:38 PM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away Tried a system restore back to before the policy was ever applied? Carl From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] Sent: Wednesday, November 03, 2010 10:57 AM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away It's stuck somewhere, but I don't know where. I'm not sure where to look. When the WLAN AutoConfig service starts, it clearly looks somewhere to see if group policies should be applied. But where? I have no idea. From: Don Guyer [mailto:don.gu...@prufoxroach.com] Sent: Wednesday, November 03, 2010 10:52 AM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away Wonder if it's stuck in the local registry somewhere. Don Guyer Systems Engineer - Information Services Prudential, Fox Roach/Trident Group 431 W. Lancaster Avenue Devon, PA 19333 Direct: (610) 993-3299 Fax: (610) 650-5306 don.gu...@prufoxroach.com From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] Sent: Wednesday, November 03, 2010 10:49 AM To: NT System Admin Issues Subject: Group Policy Won't Go Away I created a group policy to force some machines in a lab to connect to a particular wireless network. Unfortunately, when creating the policy I made a mistake configuring the password. So when you try to connect to the network you get a message saying, The settings saved on this computer for the network do not match the requirements of the network. So I turned the policy back off and ran gpupdate /force on the machines in the lab, and they all started working again in the sense that the policy was no longer applied and I could manually connect to the wireless network and enter the password. Except for one machine. That machine still won't connect. Still says the saved settings for the wireless network are wrong. It says it's getting its group policy updates fine, yet this policy just won't go away. We've even gone so far as to unjoin the machine from the domain. Still, no luck. I can run regedit and look under the wlansvc - GroupPolicy section and delete the key that has the SSID of the network (and, I'm assuming, is storing the wrong password info), but when I restart the WLAN AutoConfig service the key comes right back again. How the heck do I get rid of this policy once and for all? John Hornbuckle MIS Department Taylor County School District www.taylor.k12.fl.us ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin NOTICE: Florida has a broad public records law. Most written communications to or from this entity are public records that will be disclosed to the public and the media upon request. E-mail communications may be subject to public disclosure. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
RE: Group Policy Won't Go Away
Sorry I think they show up here too if they are user based: [HKEY_CURRENT_USER\Software\Policies\Microsoft] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Group Policy Objects] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies] From: Level 5 Lists [mailto:li...@levelfive.us] Sent: Wednesday, November 03, 2010 1:59 PM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away Did you try looking here on the local machine: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft There should be GUID's matching the group policy items you want to remove. From: Don Guyer [mailto:don.gu...@prufoxroach.com] Sent: Wednesday, November 03, 2010 1:57 PM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away Can't you view the settings the GPO changes, then work on figuring out where in the registry they are stored and remove them? Maybe I'm not thinking into this deep enough. J Don Guyer Systems Engineer - Information Services Prudential, Fox Roach/Trident Group 431 W. Lancaster Avenue Devon, PA 19333 Direct: (610) 993-3299 Fax: (610) 650-5306 don.gu...@prufoxroach.com From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] Sent: Wednesday, November 03, 2010 1:55 PM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away We can always reimage the machine if it comes down to it. But that shouldn't be necessary-I know there has to be a way to fix it. I'm just not knowledgeable enough about the intricacies of group policy to do it. From: Carl Houseman [mailto:c.house...@gmail.com] Sent: Wednesday, November 03, 2010 1:38 PM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away Tried a system restore back to before the policy was ever applied? Carl From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] Sent: Wednesday, November 03, 2010 10:57 AM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away It's stuck somewhere, but I don't know where. I'm not sure where to look. When the WLAN AutoConfig service starts, it clearly looks somewhere to see if group policies should be applied. But where? I have no idea. From: Don Guyer [mailto:don.gu...@prufoxroach.com] Sent: Wednesday, November 03, 2010 10:52 AM To: NT System Admin Issues Subject: RE: Group Policy Won't Go Away Wonder if it's stuck in the local registry somewhere. Don Guyer Systems Engineer - Information Services Prudential, Fox Roach/Trident Group 431 W. Lancaster Avenue Devon, PA 19333 Direct: (610) 993-3299 Fax: (610) 650-5306 don.gu...@prufoxroach.com From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] Sent: Wednesday, November 03, 2010 10:49 AM To: NT System Admin Issues Subject: Group Policy Won't Go Away I created a group policy to force some machines in a lab to connect to a particular wireless network. Unfortunately, when creating the policy I made a mistake configuring the password. So when you try to connect to the network you get a message saying, The settings saved on this computer for the network do not match the requirements of the network. So I turned the policy back off and ran gpupdate /force on the machines in the lab, and they all started working again in the sense that the policy was no longer applied and I could manually connect to the wireless network and enter the password. Except for one machine. That machine still won't connect. Still says the saved settings for the wireless network are wrong. It says it's getting its group policy updates fine, yet this policy just won't go away. We've even gone so far as to unjoin the machine from the domain. Still, no luck. I can run regedit and look under the wlansvc - GroupPolicy section and delete the key that has the SSID of the network (and, I'm assuming, is storing the wrong password info), but when I restart the WLAN AutoConfig service the key comes right back again. How the heck do I get rid of this policy once and for all? John Hornbuckle MIS Department Taylor County School District www.taylor.k12.fl.us ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin NOTICE: Florida has a broad public records law. Most written communications to or from this entity are public records that will be disclosed to the public and the media upon request. E-mail
Bandwidth problems
I have been troubleshooting a bandwidth problem where connections are dropping. We ran some different tests like speedtest and pingtest as well as a trial of visualware. Everything points to tcp max delay (300ms) being a major issue and suggests packet loss. I have run some tracerts for the ISP and they say its not their side. I tend to believe them a little because if we unplug our Sonicwall and go directly the problem goes away. As a test I rolled out a new Sonicwall 5500, reconfigured it and the problem still exists. We are jumbo framed enabled internally, and our procurve mgmt software has some intermittent issues throughout the network but nothing specific. Does anyone have any good tools they could recommend to test internal connectivity, the few tools i see just test speed which seems to be running just fine (qcheck). Thx ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~