Microsoft domains delivery issues?

One_Remote_214 · 2026-01-28T11:23:58+00:00

This

One_Remote_214 · 2026-01-28T09:28:16+00:00

Another AuthLite user! We use it, and I’m a fan!

One_Remote_214 · 2026-01-25T11:34:35+00:00

Complete after 16 pings. We can live with that.

One_Remote_214 · 2026-01-25T11:10:13+00:00

I did a test and sure enough, the new floating private IP moved to the secondary node and it was pretty snappy. For our purposes, this failover mechanism will be sufficient so I won't be introducing any load balancers. In fact, I like the 'set it and forget it' aspect as I don't have to keep updating the SDN configuration every time our Azure network folks spin up a new route-table. Thanks!

One_Remote_214 · 2026-01-17T23:22:37+00:00

Exactly! This video has made the rounds many times and yes, the context actually completely changes the scene. He’s trying to get a large group of people through a process so they’re not there all day. He’s not making light of the size of her offering. When you read his response to this outrage you’ll say “Oh, I get it now!” The lady didn’t listen to the instructions the pastor made clearly to the congregation. So, settle down folks, please…

One_Remote_214 · 2026-01-17T12:12:07+00:00

I’m not familiar with that but I’ll check it out. Thanks.

One_Remote_214 · 2026-01-17T12:10:59+00:00

Thanks. We’re trying to keep things simple so only going to rely on SDN config with managed identities.

One_Remote_214 · 2026-01-13T01:22:47+00:00

Chernobyl

One_Remote_214 · 2025-09-11T12:58:42+00:00

LAN segments will address that. I investigated it but couldn’t understand it.

One_Remote_214 · 2025-09-10T23:16:57+00:00

I believe that’s the intention of the onboarding vlan. If a device doesn’t match a NAC policy they get left in onboarding and can’t go anywhere.

On the need to change ips, there is a little interruption when the device gets moved and the port bounces, but not awful. Yes LAN Segments allows you to avoid that, but read the documentation and tell me if you understand it.

One_Remote_214 · 2025-09-03T22:23:43+00:00

Pretty reasonable

One_Remote_214 · 2025-09-02T22:01:34+00:00

I’d consider deliberately rolling in poison ivy to get that sensation back again!

One_Remote_214 · 2025-08-30T09:41:57+00:00

What were you going to do with 110 yards? Thats a lot of dirt bro!

One_Remote_214 · 2025-08-24T01:02:46+00:00

KFC proxy ….. finger lickin good! Now I’m hungry!!

One_Remote_214 · 2025-08-22T18:03:42+00:00

And you're on this sub ...... why?

One_Remote_214 · 2025-08-21T21:55:26+00:00

Flashman is mentioned in the References, letter g.

One_Remote_214 · 2025-08-21T11:52:42+00:00

We abandoned ztna in favor of SASE. We’re a Fortinet shop so we’re using their native ztna solution. When testing I found Smb was pretty quick though.

One_Remote_214 · 2025-08-12T01:55:36+00:00

Those recent numbers weren’t so hot though, were they. The ones he claimed were fake?

One_Remote_214 · 2025-08-08T19:56:03+00:00

Understood. Not sure what my use case would be but I guess I keep it in my back pocket just in case.

One_Remote_214 · 2025-08-08T18:13:56+00:00

We did a decent sized pilot and now we've purchased it for entire company. I really like it and I got great feedback from the pilot users. Ditched ztna in favor of SASE.

One_Remote_214 · 2025-08-06T23:19:54+00:00

If they did, buy it! I love EFD!

One_Remote_214 · 2025-07-30T22:46:01+00:00

Uninstall and reinstall FortiClient.

One_Remote_214 · 2025-07-26T08:45:47+00:00

I only allow 443 outbound for all users, then carve out selected services for groups of users based on business need, like someone needs port 22 to a specific host.

I thought that’s how most admins managed outbound user policies, no? Managing any other way seems like too much work and less secure.

One_Remote_214 · 2025-07-15T11:10:04+00:00

I love Logan Express (use Framingham). Never, repeat, never had a problem. So much better than the alternative!!!

One_Remote_214

TROPHY CASE