Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x

Network Management

13K

Solutions

14K

Contributors

Network Management involves issues that are independent of specific hardware or software, including email policies, upgrade planning, backup scheduling and working with managed service providers for Desktop-As-A-Service (DaaS), Software-As-A-Service (SaaS) and the like through the use of tools, coupled with manufacturer standards, best practice guidelines, policies and procedures plus all other relevant documentation. Network management also includes monitoring, alerting and reporting, management reporting, planning for device or service updates, the backup of configurations, the setting of key performance indicators and measures (KPIs/KPMs), associated service level agreements and problem records as part of the IT Service Management (ITSM) framework.

Share tech news, updates, or what's on your mind.

Sign up to Post

We are setting up a new domain, designated for a critical sensitive applications with its own AD/DC.

Is it Ok for the AD/DC servers to sit in same subnet as the apps servers    Or
should we segregate into separate subnets?

If separate subnets, segregate by router ACL is enough or firewall?

What's the reason & the best practices out there?
0
Cyber Threats to Small Businesses (Part 1)
Cyber Threats to Small Businesses (Part 1)

This past May, Webroot surveyed more than 600 IT decision-makers at medium-sized companies to see how these small businesses perceived new threats facing their organizations.  Read what Webroot CISO, Gary Hayslip, has to say about the survey in part 1 of this 2-part blog series.

One of the Experts here on EE suggested GFI Languard.  So, we bought it and have  had it running for a few months.  As I get further into it and want to take advantage of its capabilities, I naturally have questions.

Being a "good customer" I figured to start on the community forum.  But I can't log in and I can't set up a new account.  I have LOTS of email addresses available and can set up new ones.  Yet, no matter which one I enter for a new Registration, it says "already used".  Can't be true of course.

Telephone customer support takes one to a menu that has nothing to do with customer support and, if you politely wait after not responding, it says "Goodbye".

I may be in the market for 3rd party Q&A at least.  Or, what might you suggest?
0
Dear all,

I am an IT support for a small company consist of 5 users. I assigned a static IP address on each computer.
Around 3 weeks one of my colleague was not able to browse the connection or see the shared folder on the server until I changed his PC's IP address. This issue reoccurred again today on his PC and on another PC.
I have done a lot of troubleshooting and the last step was changing the IP address. After changing the IP address on two PCs they were able to browse the internet connection and see the shared drives.

I am wondering what is the magician with changing the IP address. Please assist me because I am looking for a solution to avoid keep changing the IP addresses form time to time.
0
Hi Guys,

We have an IP block from the ISP
Thus a couple of public IP's assigned, example:
196.31.231.80
196.31.231.81
196.31.231.82

Our NAT policies on 196.31.231.80 over X1 interface is working well.

I've been trying to setup additional NAT policies on 196.31.231.81, but experiencing a connection issue.
Which brings me to the following questions:

1.  Is it necessary to setup a Virtual Interface for 196.31.231.82 on X1?
(255.255.255.0)
Or could the NAT rules simply refer to X1?

2.  I tried setting up a Virtual Interface on X1 for 196.31.231.82, but it complains about the same subnet used,
What should the subnet for the Virtual Interface be?
0
My sonicwall is dropping my connection from a second subnet. I understand why, as it is identifying this 96... ip address as a WAN on the LAN. However I just simply want to allow all traffic from that IP to get through. How would I go about configuring the sonicwall?

I tried disabling IP Spoof Checking from the diag.html page, but it refuses to save and only says "there were no changes made".

01/15/2018 12:07:25.640      Alert      Intrusion Prevention      IP spoof dropped      96.67.165.X, 49873, X1      209.63.225.X, 80, X1      

Thanks!
0
Hello everyone,
A client of mine is having an issue with their wireless.  They have been reporting that the passwords were getting rejected so I updated the passwords and then the same thing.  I have tried rebooting it, which normally used to fix these issues but now does not.  They have two ssids, one for employees and one for guest and they are configured in a virtual access point.  There are no more firmware upgrades for this model, my next step would normally be to upgrade the firmware.  We have recommended upgrading this Sonicwall as it is no longer supported as well as having a separate access point in the past.  I honestly think that this would be the only solution at this point, but out of good customer service I am reaching out to you guys to see if there is anything else that I can try.
0
Hi,

We are running an intranet in our organization...now we are thinking to provide the access of our intranet to the users even through their mobile..How can we do this... and is this possible?

Thanks in advance,
Srikanth Nandyala.
0
Hi Here is Opengear IM4216. I could not find relative document on it. Is it layer2 or layer3 device? What kind of device is it? Thank you
0
I'm pretty bad with IP design.   is there a 172.16 /12 network? If so,  how many subnets and hosts I can do?
planning how many offices,  larger and smaller I can put there.  
Thanks bunch.
0
I am upgrading the Comware 5 firmware on HP 5120 switches HP 5120-48G-PoE+ EI Switch Product # JG237A. In the past I have upgraded them with they are offline.  I would use my laptop as a TFTP server, connect it to a port on the switch, and put my laptop IP address and switch management IP address on the same subnet. I would use the following commands (for example):

delete /unreserved flash:/<firmware>

tftp <IP Address> put flash:/<firmware>

boot-loader file flash:/<firmware>

save

reboot

Would I be able to do this with a live HP 5120 switch connected to the production network and grab the firmware off a live tftp server on the production network?

Please help. Thank you.
0
Free Backup Tool for VMware and Hyper-V
LVL 1
Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

I need to add one of our vendors IP's to our Sonicwall so they are not blocked.

How?
0
I need to update a bunch of catalyst switches from TLSv1.1 to TLSv1.2. Also need to disable older ciphers. Has anyone implemented this before?

Please share the steps as I can't seem to find anything documentation online for this.

Thank you.
0
hi guys,

I'm currently managing an IT Operations team. I've been asked by our new head to come up with a way for me/us to measure in some shape or form their progress on a weekly basis.

We use Zendesk for our ticketing system which is very comprehensive. He wants us to find a way of knowing, how many particular jobs were started, closed, including things such as 'what got in the way?'. Along with that, he wants to know a way of measuring project progress in a similar way.

Do you guys have any measuring methods that you use at your work places? Or advised others on how to better do something similar?

Thanks for helping
Yashy
0
HI
I'm just implementing a DPI inspection and I've download a key from my sonicwall firewall.
This cert. has been distributed to my PC over GPO.
How do I distribute the same cert to my MAC clients  ??
0
Where i work has a large number of DHCP scopes. must be approx 40-50 its been left that way for a good few years apparently

I have just joined in past 6 months and just getting round to look at it now

Any DHCP scope clean up plans? Whats the worst thing that can happen if some are removed that have VLAN connections (one thing we're worried about) so i plan on taking an inventory first

I know i can use powershell to look for free addresses per scope can i use this to see addresses that are taken, then i could compare using HP IMC to see whats actually being used

Any ideas appreciated domain functionality is 2008
1
Appreciate if can point me to links / URLs on patches to download & availability for
a) MS Windows 2008 R2, 2012 R2, 2016,  7, 10
b) Dell & IBM hardware
c) ESXi Ver 6.1
d) Various Cisco switches & routers (we have 2xxx, 3xxx, 4xxx models)
e) EMC VNC & VMAX
f) Solaris x86 on AMD
g) McAfee AV
h) Bluecoat Proxy
i)  F5 LTM, GTM Ver 11.7.x
0
Ping: 34 ms
Download: 16.46 Mbps
Upload: 16.63

Thanks.
0
Hey,

I am super new to phone systems and am only asking in the absence of my usual go-to phone engineer. We have a client with a FreePBX phone system and Cisco SPA525G handsets. They would like to use the Link Key 5 button (bottom button to the right of the screen) on their reception phone to pickup any internal or external calls for when other staff are away from their desk.
I've tried a few things in the config of the phone, but have not been able to get this working yet.
I don't think we should need to adjust the config in FreePBX (could be wrong), as apparently this used to be working and the PBX config hasn't changed in quite some time.

This is as far as I've been able to get with the research and reading I've done (which doesn't work):
fnc=blf+cp;nme=Call Pickup

Any assistance would be appreciated!
linekey5.png
0
I am manage active directory in window server 2016 that managed clients around 30, i know the way of lock their desktop from store anything , but is there anyway to lock but can allow shortcut to stored on desktop? so they can access there original root file from shortcut that stored on desktop, and if stand alone PC, how to do that from administrator account?

Thanks in advance
Dymang.
0
Who's Defending Your Organization from Threats?
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Working in environment with 34 switches mix of hp 5500 and 5120s over 3 locations

I suspect that the company who support our infrastructure just took the default priority for spanning tree design with switches

I intend to check each BID on each switch is there an argument for using default settings for stp would appreciate best practice on this and and also pointers on easiest way to correct it

I have login for each switch but also use HP IMC

Thanks,
0
I have been trying to work with Sonicwall support on this issue and have made no progress.  We have been using the appliance in the past with split tunnel enabled but, due to security requirements, we can no longer allow split tunnel.  If we turn it off,  remote users can access internal resources we have configured, but cannot access anything on the Internet. It seems that we need to create a resource which is "anything" on the Internet but we don't know how to do that. We don't see any kind of wild card options.  We have not given our users access to "Any" resource.  We need to specifically define the resource they have access to.  We need an "Internet" resource and then we can give them access to that.  Is this possible.  Or, is there some other way to approach this?

Sonicwall support had us upgrade the firmware to 11.40-468 with the 708 hotfixes but that did not create an options for resolving this requirement.
0
Did you know ITIL Foundation knowledge can help you develop an incident response plan? Check out member btan's article on the topic.
1
We have a connection to the Internet and now we just added another Internet connection. We want to use the new Internet connection just for Office 365. I am not sure how to go about doing this as I have a default route from my core to the FW and then from the FW to the provider router. So currently all Internet connection, including O365, is pointed to the default route and there is nothing going out of the the new Internet connection.
We have a physical connection from the provider to the FW, then from the FW to the core switch.

Any thoughts? Thanks
0
I currently have a SonicWALL TZ 200 configured with WAN connections on 2 interfaces. I recently purchased a HughesNET satellite connection and I want hook this up to the SonicWALL (And add it to the failover/load balancing). However, once I received the Modem from HughesNET (HT2000) I learned that it does not have a "Bridge" mode built into the router. I cannot disrupt my current Subnet (needs to stay the same). Does anyone know if there a way to configure the interface for the modem/router combo into the SonicWALL so it will work properly?

Thanks in advance.
0
Still learning...
Some time ago I added web logon creds to this 3750G and I cant remember them. How can I clear those creds so they aren't needed or reset them to something I will write on the darn thing?
Switch>enable
Switch#show run
Building configuration...

Current configuration : 1486 bytes
version 12.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
hostname Switch
boot-start-marker
boot-end-marker
no aaa new-model
switch 1 provision ws-c3750g-24ps
system mtu routing 1500
spanning-tree mode pvst
spanning-tree extend system-id
vlan internal allocation policy ascending
interface GigabitEthernet1/0/1
interface GigabitEthernet1/0/2
interface GigabitEthernet1/0/3
interface GigabitEthernet1/0/4
interface GigabitEthernet1/0/5
interface GigabitEthernet1/0/6
interface GigabitEthernet1/0/7
!...
interface GigabitEthernet1/0/28
!
interface Vlan1
 ip address 192.168.200.254 255.255.255.0
ip classless
ip http server
ip http secure-server
line con 0
line vty 5 15
end

Open in new window


Found a post that suggested a "Skinny" install meaning no GUI installed. If true - why a prompt? Can I add it?
Switch#dir
Directory of flash:/

    3  drwx         192   Mar 1 1993 00:19:54 +00:00  c3750-ipbasek9-mz.122-55.S         E11
  510  -rwx        1486  Mar 24 1993 20:55:35 +00:00  config.text
  511  -rwx          24  Mar 24 1993 20:55:35 +00:00  private-config.text
  512  -rwx        2072  Mar 24 1993 20:55:35 +00:00  multiple-fs

32514048 bytes total (16817152 bytes free)
Switch#

Open in new window


In addition, can this switch become a DHCP server?  I dont believe so as the doc mention considerations when the switch receives DHCP config - but nothing on creating them. But I need to ask.  I will need a simple DHCP server for this assembly (SIP Phones using Free PBX) and using the switch would be ideal if it did work like that.
0

Network Management

13K

Solutions

14K

Contributors

Network Management involves issues that are independent of specific hardware or software, including email policies, upgrade planning, backup scheduling and working with managed service providers for Desktop-As-A-Service (DaaS), Software-As-A-Service (SaaS) and the like through the use of tools, coupled with manufacturer standards, best practice guidelines, policies and procedures plus all other relevant documentation. Network management also includes monitoring, alerting and reporting, management reporting, planning for device or service updates, the backup of configurations, the setting of key performance indicators and measures (KPIs/KPMs), associated service level agreements and problem records as part of the IT Service Management (ITSM) framework.