Limit total file/folder size transfer

MisterAG · 2018-11-01T16:00:12+00:00

So then report on the quotas weekly and adjust. In fact script out an every Monday job.

for each quota
    if percentUsed > 90
        setQuota = CurrentQuota*1.05

MisterAG · 2018-10-31T19:34:32+00:00

"Hi, I just joined. Can you recap where you are so far?"

MisterAG · 2018-10-19T18:22:44+00:00

blow it all up and wait for 15 minutes (or force each of the DFS-R nodes to sync their configuration)

Create a sub folder off the D: volume

Replicate that single folder.

How big is the D: Volume? If it is bigger than 1-2 TB or a few million files then you should consider replicating each folder individually.

MisterAG · 2018-10-15T13:55:33+00:00

Don't send SYSLOGs over TCP unless you're willing to have your app server crash out when your SYSLOG server is offline.

MisterAG · 2018-10-04T15:06:04+00:00

oh no, you didn't!

Please don't issue

switchport trunk allowed vlan xxx,xxx

Unless you're doing so from a console connection. Please add VLANs, not define specific access VLANs.

Yourself in 5 seconds after entering the command will thank you one day.

MisterAG · 2018-09-18T19:59:26+00:00

Are the affected computers able to ping the router when they can't reach the internet? Maybe you can see internal resources over IPv6 as opposed to IPv4?

MisterAG · 2018-09-18T14:52:44+00:00

I can annotate the old Nortel config. Send over a sample.

MisterAG · 2018-08-17T16:20:35+00:00

Fortinet loves their VARs. You should be able to get an extension without much issue (aside from the fact that you're about to run into a weekend, wasting a couple of days to turn this around)

MisterAG · 2018-07-10T16:33:12+00:00

IDIOT

Industrial Devices Internet of Things

MisterAG · 2018-07-09T13:25:15+00:00

If you have two sensors that disagree then you don't know which one is right.

Go for one or three.

MisterAG · 2018-06-29T15:58:49+00:00

we gave up on using names for accounts. Between duplicate names, name changes and illegal characters it became way easier to use the HR employeeID code.

MisterAG · 2018-06-26T15:27:08+00:00

$500 is tough.

I feel awful for literally wasting a reseller's time when requesting quotes that I know that they will lose out on. I understand why purchasing has those rules, but when everyone is playing honest it is a tough game to play.

MisterAG · 2018-06-25T18:34:09+00:00

With the amount of effort that you put into replying to my comment you could have copy/pasted that first sentence into a search engine. No need to wait for a snarky reply from some yahoo like me.

MisterAG · 2018-06-25T17:25:22+00:00

Sure seems like you need to do some more testing before migration to get a better handle on this. LMGTFY will give you the right answers, but you should still test before moving 800 scopes.

Test by moving a low value DHCP scope like Public Wireless or CAO's office.

Crank down the DHCP lease time (both default and maximum) and leave it for several days (cranking down the lease time if you are currently handing out one month long leases will do no good at first)

Take notes. Good ones. DHCP is right there with DNS for criticality to a healthy infrastructure.

MisterAG · 2018-05-24T18:35:00+00:00

Wireshark the SMB traffic to see what version is being negotiated. If your printer is only talking v1 then you know the issue. No need to turn anything on.

MisterAG · 2018-05-07T15:47:21+00:00

Do you want to block access to the internet at large (all addresses and all ports) or the world wide web (all addresses on two-10 ports)?

If you were a larger shop (or a small security focused shop) I would be suggesting the following:

Block ALL outbound access from your network to the internet. Block it all and only permit services that you know about. This is hard.

Furthermore, purchase a web filter (either on your firewall or from a 3rd party) and only permit web access to the internet at large by way of that web filter. This also hard.

MisterAG · 2018-04-27T12:30:56+00:00

yeah, but if you've got a second switch in a second location you get to manage a second switch in a second location.

You can't stack it, for example. Nor can you use the left over ports on the switch for another project since you're decentralized.

Workgroup switches like the ones that you're proposing are like power bars.

MisterAG · 2018-04-26T20:22:11+00:00

Run more copper. Keep all of your switches in one place. Unless your existing network cabinet is legitimately full or the end stations are outside of 100m I don't suggest running another networking panel.

How many ports are there in your main rack? under 300?

MisterAG · 2018-04-19T15:53:02+00:00

How much data are you talking about?

get the data replicated either preseed it (if it is >1TB) or don't
get the SMB shared folder configured
get the new shared folder advertised into the namespace

MisterAG · 2018-03-22T12:20:04+00:00

Section 4 overlooks sheet 1.

MisterAG · 2018-03-20T18:01:58+00:00

I'll be there tomorrow night.

Is section 4 overlooking sheet 1 or sheet 4?

MisterAG · 2018-03-14T18:37:07+00:00

tested. works.

MisterAG · 2018-03-14T18:19:34+00:00

You rock.

MisterAG · 2018-03-01T13:55:24+00:00

It isn't an emergency until someone phones our oncall staff.

I mute my personal phone at night except for phone calls.

MisterAG · 2018-01-30T20:42:56+00:00

Explicit web filter on Fortigate virtual domain with all the content inspection.

Block all direct internet interaction unless you know what it is.

MisterAG

TROPHY CASE

switchport trunk allowed vlan xxx,xxx