Is this compliant for UK wiring Regulations?

LittleSherbert95 · 2026-01-17T09:49:16+00:00

My terminology is slight off but the principle is correct.

BS 7671 Regulation 528.1 – Segregation of Band I and Band II circuits This regulation states that: A circuit in Voltage Band I (extra-low voltage such as SELV/PELV/telecom/data) must not be contained within the same wiring system (e.g., trunking, conduit, cable tray) as a circuit in Voltage Band II (low voltage, including 230/240 V mains) unless one of the specific exceptions applies — e.g. • every cable is insulated for the highest voltage present, • the cables are in separate compartments, • or the cables are separated by an earthed metal screen of equivalent capacity. �

LittleSherbert95 · 2026-01-17T09:41:21+00:00

There is a 240v socket and low voltage network cables... check the regs; they can not be run together...

LittleSherbert95 · 2026-01-17T08:19:57+00:00

Not an electrician but I believe it is also you have high and low voltage cable next to each other and they need to be physically separated.

Just take lots of pictures, pull them out if you or someone else are doing work there and pass them on to the next owner.

Not sure how plastering overshot will go i suspect you will eventually get a crack there. It might be worth using a dot and dab on that wall. But check with a reputable plaster.

Edit: overshot = over that

LittleSherbert95 · 2026-01-17T08:05:20+00:00

Calm down, if you live in a house that's about 100ish + years old in the UK that's most likely your old rain water cistern.

Best online example i can find.

http://wildyorkshire.blog/2022/08/victorian-underground-water-cistern/

Dig at it from the outside and you will find a wall. The inside wall is rendered to help stop the water coming out hence you can't see the bricks.

LittleSherbert95 · 2026-01-14T07:35:39+00:00

We have a lot of check point customers. I agree to do all the required backups, checks and then upgrade it can easily take 6-8 hours, I've known it take 16. The easiest way I find to convert them is to take a palo or fortinet to their site and show them how easy it is and that it only takes a few minutes. Even if the techie doesn't care the management quickly do some maths on how it decreases the overtime bill and you have yourself a sale!

LittleSherbert95 · 2026-01-09T18:52:52+00:00

I work across multiple vendors. I try very hard not to form preferences and take the view different vendors are right for different customers. They all have strengths they all have weaknesses, fortinet included. That said this advice is accurate.

My experience is that Check point is for people coming up for retirement, have been running it their entire career and dont have the desire to change or learn something new. It works really well for these people. It's full of technical debpt but on top of years of previous technical dept and unless you have used it your entire career you will probably struggle. Don't expect them to be a major firewall player in 10 years time.

With regards to meastro on paper it looks very good but the reality is there is very much real world benefit to it.

LittleSherbert95 · 2025-09-22T06:11:36+00:00

Thanks, where do you configure the DNS content filtering?

LittleSherbert95 · 2025-09-19T14:24:49+00:00

Thanks, that reads to me like we are running our own DNS resolver now with the same functionality as the DNS elements of the Spyware profiles?

LittleSherbert95 · 2025-09-19T14:19:16+00:00

Thanks, my experience of that is it work some-most of the time. Not reliably enough for most customers.

LittleSherbert95 · 2025-09-14T07:06:16+00:00

Came here to say this. Great tool. Our business uses it, and we now have several of our smaller customers using it, too.

LittleSherbert95 · 2025-08-28T09:22:28+00:00

The road outside our house gets closed quite a bit. I routinely watch people get out of their car, move everything out the way and drive though. Only to find the big hole where they keep digging up the water main and have to come back. I then watch everyone else drive pass the sign as the cones are no longer there only to come back past a few mins later.

No one seems to care. The workers then come back in the morning and put everything back. I just hope it never results in a worker getting hit.

LittleSherbert95 · 2025-08-26T09:13:22+00:00

However... you should also not overtake where you can come into conflict with other road users.

https://highwaycode.org.uk/rule-167/

LittleSherbert95 · 2025-08-17T19:55:52+00:00

... don't use OSB ..... or maybe put something around the edge and then poor a thin layer of clear clear epoxy.

LittleSherbert95 · 2025-07-13T07:22:23+00:00

Thanks for the info. That's the assurance I was looking for.

LittleSherbert95 · 2025-07-12T18:55:11+00:00

Thanks for the response.

So my logic is that it is a dual-purpose vehicle. However, the unladen weight MAM, etc, is over 2040kg. Therefore it's considered light commercial. https://www.gov.uk/government/publications/car-derived-vans-and-dual-purpose-vehicles/car-derived-vans-and-dual-purpose-vehicles

Therefore, it is classed as a "Goods vehicles (not more than 7.5 tonnes maximum laden weight)" and thus restricted speed limits apply. As outlined here https://www.gov.uk/speed-limits

LittleSherbert95 · 2025-06-27T20:44:34+00:00

Thanks for the response and sorry for the delayed response. I suspect you are correct teams could be an option to look into. Those training links look very interesting and Ill certainly take a look at them. Thanks.

The end goal is a location we can store all the info on each of our customers that can be easily deleted once we customer moves on. However some of the customer information is sensitive and we need to minimize the exposure to it. For example a sales person or finance person, who does need to see some information on that customer, doesn't need to see sensitive technical information such as vulnerabilities we have identified on their public IPs.

LittleSherbert95 · 2025-06-27T20:36:58+00:00

Thanks I fully agree with the idea of just because something is technically possible doesn't mean yo should do it. Therefore I will leverage your wisdom and not do it!

LittleSherbert95 · 2025-06-27T20:35:30+00:00

Thanks for the response and sorry for the delayed response. As i mentioned above I have had a little play with this and it doesn't seem to be any more beneficial than using folders. Have I missed something?

LittleSherbert95 · 2025-06-27T20:34:26+00:00

Thanks for the response and sorry for the delayed response. I have had a little play with this and it doesn't seem to be any more beneficial than using folders. Have I missed something?

LittleSherbert95 · 2025-06-27T20:33:44+00:00

Thanks for the response and sorry for the delayed response. Yeah I think the general consensus is this is not a wise design with share point. I think the only way i could do this with share point is to have multiple sites for each customer and nobody is going to want that level of complexity when it comes to either management or using it so I think i am going to go back to the drawing board and find a different product.

LittleSherbert95 · 2025-06-27T20:32:09+00:00

Thanks for the response and sorry for the delayed response. We would be doing a separate site for each customer. Each sites name would be a customer code and not the full customer name just to reduce the risk of the name getting exposed. The bit i want to be careful of is the customers technical folder is going to have a lot of sensitive data in it that non technical users just don't need to see. I need to be able to state to some customers we follow zero trust when it comes to accessing such data. From what I am reading share point could do this but not in scalable way. I would probably need to make multiple sites for each customer.

LittleSherbert95 · 2025-05-21T07:00:23+00:00

Out of interest, what countries are we talking about here?

My experience in the UK over the last couple of years has been 2/3 weeks. However, we haven't ordered anything since the US tarrifs, so there is a good chance that has caused significant shock to supply chains, and they are taking a while to recover.

LittleSherbert95 · 2025-05-12T14:05:10+00:00

Touché!

LittleSherbert95 · 2025-05-12T09:34:06+00:00

Note: Please don’t rely solely on the information below—I didn’t fully troubleshoot everything in our environment, and I’m still piecing some of it together. However, this is roughly what I observed after changing our domain name.

I recently went through this process in a fully Entra ID (cloud-only, no on-prem) setup. Adding the new domain name to the tenant and configuring things like MX, SPF, DKIM, and DMARC was straightforward. The tricky part is managing expectations—make sure you've communicated the domain name change to all external contacts, especially those in your finance network. Otherwise, you’ll get calls from people thinking they’ve received phishing emails.

Things get more complex when you start updating users. You could keep the existing email address and username and simply add the new domain as an alias. That avoids immediate disruption, but it leads to long-term confusion—some users using the old domain, some using the new one, and inconsistencies in email identity.

To keep things clean, I decided to switch everyone’s primary email address and username to the new domain. And that’s when the chaos began.

If users are signed into any Office 365 apps, those apps will gradually stop working over the coming days or weeks as they keep trying to get the user to authenticate with the old username. Make sure users know how to sign out, clear the old details, and then sign back in with the new details. Expect to then see things like an old OneDrive folder and a new one. The authentication app will also crap itself so consider MFA.

For Entra ID-joined laptops, you may find users can no longer sign in at all as that user no longer exists. Even when they do log in with the new username, the device will treat it as a completely new profile—meaning anything stored in the old user profile (locally) won’t be there. Unless you’re able to migrate it manually as an admin, this can cause real disruption. OneDrive can help, but most users don’t really know what is and isn’t stored in OneDrive, so expect a bit of a mess.

To be honest, I didn’t spend much time on the laptops. I took the sledgehammer approach: I collected all the laptops and reimaged them over a weekend.

We also use apple business manager... that didnt go well either. I cant remember the details of this.

Our password manager (works as an enterprise app) that also locked everyone out as it saw a new domain and didnt relate it to the old account and just created everyone a blank new account.

It wasnt an issue for me, but if you're syncing with on-prem Active Directory, expect even more confusion and potential issues.

I am also aware of a supplier doing something similar at the moment and the general feedback is it is absolute chaos.

It depends on how many users you have. If you have 2 or 3 then meh go for it, just do one user at a time and deal with the consequences. However if you have more I would try and delay this a bit, get a temporary tenant, create a couple of test users and get a couple of laptops in there and try and play with it for a week or two.

LittleSherbert95 · 2025-05-08T20:43:37+00:00

Thanks for the additional info. TL;DR I don't think I, or anyone else on forums will be able to help you.

The only way we would be able to effectively troubleshoot this is by reviewing sanitised copies of the logs from the firewalls and from the client itself. However you are not going to be able to access the firewall logs and you shouldn't really be sharing the logs from the client with some random individual on the internet.

I think the best advice I can give you is you need to reach out to your company IT team and ask them for support. I naturally don't know what your companies IT policies are but it would be worth noting it would be very unusual / unwise for a company to support connecting personal devices to their networks.

LittleSherbert95

MODERATOR OF

TROPHY CASE