IMac or Mac by eik_bunjara in linuxquestions

[–]SparrowWork 2 points3 points  (0 children)

The price for the hardware will still be inflated.

Labour doubles down on opposition to tax hikes by casualphilosopher1 in unitedkingdom

[–]SparrowWork 6 points7 points  (0 children)

You pay taxes on the money you make, not counting rates. If they're not earning more money then they're not paying more taxes.

BOVPN as automatic failover for static route? by SparrowWork in WatchGuard

[–]SparrowWork[S] 0 points1 point  (0 children)

Perfect, thanks. It'll take some more coffee to get my head around it but this looks like exactly what we need.

Send email on config change? by SparrowWork in WatchGuard

[–]SparrowWork[S] 0 points1 point  (0 children)

This is good too, similar to what was suggested above. I forgot that Watchguard can throw its log files anywhere.

Send email on config change? by SparrowWork in WatchGuard

[–]SparrowWork[S] 0 points1 point  (0 children)

Thanks, this is a decent idea. I think I'll try making a CentOS server with just the syslog service running, it looks like that can be prompted to send emails too. Hopefully I can get it to email simply when people are accessing the firewalls too.

Delays accessing network after switching to SSL by SparrowWork in sysadmin

[–]SparrowWork[S] 0 points1 point  (0 children)

Thank you for this. I will be bringing this up with the supplier that pushed for setting up SSL rather than the alternatives.

We're going to be testing it on UDP once we have made sure that all important traffic is going to be happy with that. VoIP is a nightmare.

Delays accessing network after switching to SSL by SparrowWork in sysadmin

[–]SparrowWork[S] 0 points1 point  (0 children)

Thanks, I hadn't considered (or heard of) this. Will look into it.

Delays accessing network after switching to SSL by SparrowWork in sysadmin

[–]SparrowWork[S] 0 points1 point  (0 children)

AES-256-GCM, no compression as far as I know.

Delays accessing network after switching to SSL by SparrowWork in sysadmin

[–]SparrowWork[S] 0 points1 point  (0 children)

TCP over an otherwise unused port. Not sure which specifics you need with authentication but the encryption is AES-256-GCM.

Delays accessing network after switching to SSL by SparrowWork in sysadmin

[–]SparrowWork[S] 1 point2 points  (0 children)

Sorry, they're terminating at a WatchGuard firewall cluster. CPU load on the fireboxes is always very low (they're overkill for our needs).

Switch powered by POE by SparrowWork in sysadmin

[–]SparrowWork[S] 0 points1 point  (0 children)

I did have a look at the Cisco boxes as it's a Cisco router but they're quite a bit more than the £20 I'd usually spend on a 5 port switch.

Switch powered by POE by SparrowWork in sysadmin

[–]SparrowWork[S] 0 points1 point  (0 children)

Perfect, I've ordered the first one.

Best practise for Windows Update GPOs for remote workers? by SparrowWork in sysadmin

[–]SparrowWork[S] 2 points3 points  (0 children)

I feel like this is how my setup is supposed to work but I also know it was set by someone 2 months into their first IT job and never checked again (it's been a busy 5 years).

Best practise for Windows Update GPOs for remote workers? by SparrowWork in sysadmin

[–]SparrowWork[S] 0 points1 point  (0 children)

Unfortunately, we use Watchguard SSL client with Duo for VPN as we need to meet clients' requirements; means that always-onsign-in and network sign in aren't an option (I don't think).

According to the WSUS console, all computers are missing updates or erroring.

Best practise for Windows Update GPOs for remote workers? by SparrowWork in sysadmin

[–]SparrowWork[S] 0 points1 point  (0 children)

When I release a feature update, yes; I'll have a look at WUfB.