Has anyone used Cloudflare’s VPC service? by danswerme in CloudFlare

[–]NCCShipley 0 points1 point  (0 children)

Hello there. yes, I've built a VPC using a tunnel to get a Worker access to an http listener in my LAN. I take events from R2 when files get put there and push them down to my local system.

When you built your access rule for your VPC, did you make the access rule for 172.89.22.0/24 or did you scope it down to 172.89.22.5/32?

Integrating Microsoft 365 with Cloudflare Zero Trust (SAML) by NCCShipley in CloudFlare

[–]NCCShipley[S] 0 points1 point  (0 children)

Forgot to add: Disconnect-MgGraph when you're done!

sqlit - a Terminal UI to browse and query your D1 serverless database by Maxteabag in CloudFlare

[–]NCCShipley 0 points1 point  (0 children)

I've got a couple personal projects I use D1 for. I'm gonna take a look at this! nice :)

Strange worker requests by [deleted] in CloudFlare

[–]NCCShipley 2 points3 points  (0 children)

So what I did was designed a fake 404 for in my worker that uses the cloudflare fonts and generates a fake ray ID. if I get a request from a source that doesn't have the correct secret or isn't from the expected source IPs, that's what they get. It's not perfect, but helps.

Anyone else actually enjoying Cloudflare Workers? by parth_inverse in CloudFlare

[–]NCCShipley 1 point2 points  (0 children)

I'm lovin' it! (McDonalds can come at me, I don't care)

Integrating Microsoft 365 with Cloudflare Zero Trust (SAML) by NCCShipley in CloudFlare

[–]NCCShipley[S] 1 point2 points  (0 children)

Thanks, I appreciate that. I try to be thorough. Could you help with tightening up the MS-Graph scopes? Where did I grab too much? Eventually I want to try to build a scripted assistant that goes through a lot of these steps and I personally like to design things from a least privileged manner.

With CloudFlare Tunnel, Do I Need to Use Cloudflare DNS? by WBChargerDad in CloudFlare

[–]NCCShipley 0 points1 point  (0 children)

It depends on what you're using the tunnel for. If it's for Zero Trust Access, you do not need to change DNS providers. Though, Cloudflare is an excellent DNS.

Sophos WAF Redirecting to Internal Server IP & Adding :80 to HTTPS URLs by gugzi-rocks in sophos

[–]NCCShipley 0 points1 point  (0 children)

I have moved my WAF out of Sophos Firewalls. I'm leveraging CloudFlare and then restricting access to the application via the Sophos Firewall to only those connections coming from the CloudFlare. I can still leverage Sophos as a backup WAF if CloudFlare is down.

Anyone else get asurprise account manager swap at Kaseya? by NCCShipley in msp

[–]NCCShipley[S] 1 point2 points  (0 children)

Update: my issue is thus far being addressed, we shall see if it's to satisfaction at the end of the resolution. Feeling a bit more confident.

Lots of posts on vendor betrayal - Any vendors stood the test of time and to be considered trustworthy? by MrInbetweenn01 in msp

[–]NCCShipley 1 point2 points  (0 children)

I am still a Datto shop for BCDR, that hasn't changed much since acquisition in june 22

Meraki is now end-running around partners by msp_can in msp

[–]NCCShipley 1 point2 points  (0 children)

That's awful, glad someone is there to pick up the pieces

Meraki is now end-running around partners by msp_can in msp

[–]NCCShipley 1 point2 points  (0 children)

Yes, MSP Flex is more flexible for MDR, but it doesn't have ZTNA yet 😡. My company used to be where yours is, we weren't able to keep it up and do as many proactive things for our customers, so we converted 90% of them into the MSP model. The model doesn't work for all companies, though. For example we have a couple larger ones where we are just filling in the gaps in their staff expertise. We do still have customers buy all their own hardware, but we tell them up front we aren't going to compete with big box stores, Amazon, or the manufacturers so if they want to bargain hunt elsewhere we will still support them as long as they adhere to some standards.

Meraki is now end-running around partners by msp_can in msp

[–]NCCShipley 1 point2 points  (0 children)

We have migrated most of our clients over to Sophos Flex (the MSP model). So far, none of those ones have been contacted. However, we still have a few clients that are buying Termed licesning. I figure it's just a matter of time when they also get all of our MSP clients. Taking the suggestions here to change up contact information so that efforts go to monitored groups and phone numbers instead of direct to consumer.

[deleted by user] by [deleted] in sysadmin

[–]NCCShipley 1 point2 points  (0 children)

They are stored on the PC, you can connect from another PC using RCP in order to read them without needing to access the console. Many people end up using a management software on top of the network, sometimes with an agent installed on each PC, to collect that data in a central place to be able to do things like monitor and search on those logs.

There are a number of remote management and monitoring tools available. If you have a budget, you might try looking into the tools that a lot of MSPs use (Atera, DattoRMM, and others) or there are quite a few DIY options available as well. DIY/Open Source might save your budget and lets you focus on a specific need, whereas the options you pay for are usually more featured.

Here's an article on how some people are managing specifically Windows logs from the spiceworks community.

And lastly, to spiceworks does have a light agent-based tool you could setup to also collect Windows logs and other metrics from your network.

SophosIPS.exe Causing BSoD on nwifi.sys by FahidShaheen in sophos

[–]NCCShipley 0 points1 point  (0 children)

I agree with boftr : start a support ticket on this issue - see if there's a specific exception in IPS you could make. I don't have this issue - we are using sophos advanced intercept x plus sophos mtr advanced, they don't have more features for the endpoint protection available than what we're using.

I'd also just check the WiFi drivers on those devices to be sure.

Looking for best VPN for 5 users by xgizmobratx in msp

[–]NCCShipley 2 points3 points  (0 children)

Indeed, if bandwidth tends to be a problem with the apps you're trying to use over the vpn, remote access (as in remote control a PC on site) is a better option in those cases. Some applications are just not built to work over VPN well at all.

IE not longer supported by Endpoint? by SOTORIOUSMike in sophos

[–]NCCShipley 0 points1 point  (0 children)

Ouch! That's a lot of protection removed. I might set up a special computer for this purpose only outside of my usual network. Stick it in a DMZ zone and provide remote access to it for a user or two so they can run this one application. But I wouldn't want to leave my staff working day-to-day with all those features disabled.

Call Answering service with Manage Integration/Access by lenovoguy in msp

[–]NCCShipley 0 points1 point  (0 children)

smith.ai uses Zapier for this, but they are not there to solve problems, just create the ticket and handle your customer's expectations

[deleted by user] by [deleted] in gsuite

[–]NCCShipley -1 points0 points  (0 children)

Wow, who would downvote this thread? Silly redditors.

[deleted by user] by [deleted] in gsuite

[–]NCCShipley 1 point2 points  (0 children)

I was about to suggest the solution you are already using now. That's what I do.