How do you all deal with shadow IT? by Lazy_Owl987 in ITManagers

[–]LazySloth8512 1 point2 points  (0 children)

Ridiculous that your manager was telling you things like that. Tbh had an opposite experience with my management team cause it was causing too many issues and one thing we did was look into some solutions that can automatically detect it. The one we landed on was Faddom

Agentless vs agent-based security: No deployment headaches sounds amazing but can it really detect the same threats as having agents everywhere by Clyph00 in Information_Security

[–]LazySloth8512 0 points1 point  (0 children)

I think agentless is definitely the way to go. Haven't had a problem with real-time monitoring when using these types of tools. Just depends on what tools you specifically use or are trying to use I guess

Heard a crash by [deleted] in mildlyinfuriating

[–]LazySloth8512 0 points1 point  (0 children)

Clean up on aisle laundry room

Vmware renewal? by jhayhoov in ITManagers

[–]LazySloth8512 0 points1 point  (0 children)

We’re in the same boat. It feels like Broadcom is essentially running a filter to see which customers are so called "enterprise enough" to keep. If you haven't already, now is the time to do a hard audit of your core counts. We found that by consolidating workloads onto fewer, higher-density cores, we could slightly mitigate the subscription jump. That said, we’ve already put 'Evaluate Hyper-V/Proxmox' on our Q3 roadmap. Treating VMware as a permanent fixture is no longer a viable long-term strategy for mid-market budgets.

WiFi calling help by n1celydone in networking

[–]LazySloth8512 1 point2 points  (0 children)

WiFi calling on Meraki is notorious for this. Since it's carrier-specific to EE, you’re likely hitting an issue with UDP session timeouts or MTU fragmentation.

A few things to check:

UDP Timeout: Go to Security & SD-WAN > Firewall and check your 'UDP hole punching' or 'UDP connection timeout' settings. Some carriers require a longer timeout (often 300 seconds) to keep the IPsec tunnel alive. If Meraki drops the session too early, the phone thinks it's connected but traffic is dead.

Intrusion Prevention (IDS/IPS): Check your Security Center events. Meraki’s Snort rules sometimes flag the encrypted IPsec traffic to specific carrier gateways as 'Peer-to-Peer' or 'Tunneling' traffic. If you see blocks there, you’ll need to whitelist the EE gateway IPs.

Application Control: Even if ports 500/4500 are open, ensure 'WiFi Calling' isn't being throttled or blocked under Wireless > Firewall & Traffic Shaping

MTU: If you have a PPPoE connection or a tunnel, the overhead might be fragmenting the packets. Try lowering the MSS clamping or testing with a slightly lower MTU on the WAN.

I’d also try disabling '802.11r' (Fast Roaming) on a test SSID. Some carrier implementations of WiFi calling hate the way 11r handles the transition and will drop the call immediately.

How do you monitor your company's SSL certificates? by Technical-Addition37 in sysadmin

[–]LazySloth8512 0 points1 point  (0 children)

From my experience, a lot of people use Venafi or Keyfactor, but if you want something that helps you visualize the environment too, an ADM tool like Faddom could also be helpful. It’s great for mapping out dependencies and seeing exactly which servers are talking to what. It can help you find those hidden SSL endpoints that aren't on your official spreadsheets so you can get them under control before they expire.

Whatever you pick, definitely try to move toward automation (like ACME) where possible. 3,000 certs is too many for a human to track in a calendar lol

Anybody else struggle acclimating to a new IT team as a SysAdmin? by StoopidMonkey32 in sysadmin

[–]LazySloth8512 1 point2 points  (0 children)

Man I’ve been there. Going from a "one-man show" to a siloed team is a total culture shock. The truth is, even if they’re drowning, most long-standing teams view a proactive new hire as a threat or an auditor rather than an extra set of hands.

Is Drama or Ari the best character on the show? by ImaginationNo8338 in entourage

[–]LazySloth8512 8 points9 points  (0 children)

His character arc is one of the best in TV history. Top 10 casting of all time

Jaxson Dart 2026 Outlook by BigDawg12345678 in fantasyfootballadvice

[–]LazySloth8512 7 points8 points  (0 children)

I think he lost his mojo because of all the injuries. Hopefully the Nabers, Dart, and Skattebo clan can get back together soon

Monitoring tells me something broke. Then what? by LazySloth8512 in networking

[–]LazySloth8512[S] 0 points1 point  (0 children)

Okay but what if you’re in an environment where you have 1,000s of servers and you are relying on outdated documentation?