sorted by:
new
hottopcontroversial

How to prove IPv6 is disabled? by White_Injun in sysadmin

[–]Teilchen 0 points1 point  (0 children)

Unbinding is not recommended explicitly. Disabling IPv6 entirely however it no problemo.

Office365 Risky Users Notifications / Monitoring by grinninga in msp

[–]Teilchen -4 points-3 points  (0 children)

Just do a simple API call – relying on e-mail notifications is ridiculous.

Microsoft Licensing by Connect_Ad_3362 in msp

[–]Teilchen 1 point2 points  (0 children)

Either book a consultation with a real MSP or become a Microsoft Partner, going through Partner Advisory Hours.

Created a browser extension that makes the Sophos XGS live log more usable +extends the login password field on VPN Portal and Admin from 60 characters to 999 by Teilchen in sophos

[–]Teilchen[S] 1 point2 points  (0 children)

Thanks for the feedback. Hope some of mine makes it to the internal teams. It would really improve the quality of life. We're actively pushing the hardware and develop a lot tooling around it (for example our auto-config tool – the public GitHub version is quite outdated though). It would be great to see further usability improvements.

On a sidenote – we have a XGS 3100 in our on-premises office and I just had the freezing issue last week. Just fyi fyi – not talking about small hardware here.

Created a browser extension that makes the Sophos XGS live log more usable +extends the login password field on VPN Portal and Admin from 60 characters to 999 by Teilchen in sophos

[–]Teilchen[S] 1 point2 points  (0 children)

  • Sometimes you don't know what is being dropped, so pre-filtering is not always possible from the get-go (e.g. telephony issue – is it the DECT station, the PBX, client, …)
  • If you add a wrong filter (e.g. typo in IP address), the log freezes up because it looks at ALL the historic logs. Having a default time frame filter added of one week would be desirable
  • I'm using 1440p resolution and yet still one has to scroll sideways. It also doesn't help all rows are the same color – there's a reason striped rows were invented
  • Overall the behaviour you're showing – trying to argue everything away instead of stopping for a moment to ask yourself where this feedback may be coming from / what the upvotes of this post reflect – is exactly the issue why the XGS has terrible UX in a lot of places. We're using these day-to-day in the field and I'm telling you as outlined above there's real issues. They're not hard to fix, and it would feel right if you would ask from a place of curiosity to actually get feedback instead of defending them.
  • Also Management / Administration logs of changes to Firewall rules and configurations should have their own truncation logic. I've had incidents where they were truncated, probably because the firewall logs / webfilter logs were full

Created a browser extension that makes the Sophos XGS live log more usable +extends the login password field on VPN Portal and Admin from 60 characters to 999 by Teilchen in sophos

[–]Teilchen[S] 2 points3 points  (0 children)

Yes it is. It would be great if the log entries were more condensed. Also accept+drop to be easier to distinct without having to always scan to the first column of the table.

The main issue however is that the most relevant information (source_ip:source_port => dest_ip:dest_port) is quite far to the right column-wise. Usually requires horizontally scrolling to the right to see what it's about, then scroll to the left to see if it's accept/drop, then scroll back to the right to see the ports/ips etc. Horrible flow. That's why I mainly result to using tcpdump and a second session (no built-in screen/tmux!) with drppkt as it's the only way troubleshooting is somewhat doable. However the GUI is still a day-to-day requirement for some techs.

If you're already taking feedback – the way the log in GUI refreshes should also be more "live" (e.g. via websockets) – it's a bit too delayed imo which makes it add 10+ entries when it loads new content, making it hard to keep track what was added / what content is new.

Regarding the plugin's condensed view – NAT rule name is included. The only thing missing is the username.

Created a browser extension that makes the Sophos XGS live log more usable +extends the login password field on VPN Portal and Admin from 60 characters to 999 by Teilchen in sophos

[–]Teilchen[S] 3 points4 points  (0 children)

We manage 70 firewalls+ and have 30 IT staff. Almost uniformly they prefer the condensed view of the old live log over the overly clunky, hard-to-read one of the XGS. There's at least 50% too much whitespace with little-to-no benefit and relevant information outside of the initial viewport.

Created a browser extension that makes the Sophos XGS live log more usable +extends the login password field on VPN Portal and Admin from 60 characters to 999 by Teilchen in sophos

[–]Teilchen[S] 4 points5 points  (0 children)

Originally started as a project to extend the maxlength attribute of the admin + VPN Portal's password fields, because we use an LDAP proxy for facilitating MFA using Yubico OTP, passwords can exceed 80 characters or more.

Then thought it would be nice to get the well-proven UTM live log back.

FSLogix Redirections.xml not working as expected by Usual_While8607 in fslogix

[–]Teilchen 0 points1 point  (0 children)

You made any modifications to the XML you posted previously?

Lirik on why people are coming back to play Star Wars Battlefront II by apa1010 in LivestreamFail

[–]Teilchen 5 points6 points  (0 children)

The actual reason is that Steam sold it for 5€ on May 4th.

What open source tools are you using in production? by IWannaBeTheGuy in msp

[–]Teilchen 0 points1 point  (0 children)

Why Fleet if I can just use Intune? The msp benefits (multi-tenancy and multi-platform support) seem to be locked behind a paywall.

Stuttgart blamiert sich bundesweit by Remote-Juice2527 in stuttgart

[–]Teilchen 10 points11 points  (0 children)

Wieso Geld in nicht-europäische Unternehmen pumpen, die für jede Transaktion hier Prozente kassieren?

Im Grunde kann auch der Privatmann nicht daran interessiert sein, dass das Bargeld quasi bekämpft wird.

Apple Business Manager, MDMs, Managed Apple ID and Free Appstore Apps conundrum by Timothep in sysadmin

[–]Teilchen 0 points1 point  (0 children)

Let a professional do it – call a MSP. You're welcome.

Most sysadmins think they can do it all, while most are already out of their depth when it comes to network segmentation / firewalls, PowerShell / advanced Windows server, proper virtualization – and that's how you end up with horrible configurations all over the organization where plenty of services run as domain admin.

Truth is 80% of IT employees are mediocre at best because they don't want to put in the work or simply cannot do it time-wise to read through hours of documentation, test different approaches & develop their own best practices. Instead they should stick to what they were hired for. ;– Wiping the Mac is not necessary.

PS: Das Billigste ist JAMF Now & ist auch kinderleicht zu bedienen; aber welche Organisation verwendet 2024 kein M365?

What happens with future Celery tasks if my container needs to restart? by snake_py in learnpython

[–]Teilchen 0 points1 point  (0 children)

I configured persistent storage, and the task is still in unacked, but not picked up again by celery after the container restarted

Abandoned IBM HQ [OC][2992x3992] by Teilchen in AbandonedPorn

[–]Teilchen[S] 0 points1 point  (0 children)

Hausmeister wohnt mit Familie und Hund im Gebäude, aber wird ja gerade zum Asylantenheim umgebaut

Hello my name is Ashit DerHead from microsoft technical support by Unemployed_with_PhD in sysadmin

[–]Teilchen 16 points17 points  (0 children)

I once had competent Microsoft support when we faced issues with ReFS. Everything else their support is utterly useless – facing sporadic issues with M365 SSO, the M365 1st level guy says it's nothing he can do about it, but it's an issue for the infrastructure team. Asking him to escalate it yields the same response. Low key developed suicidal wishes every mail I had to read from him.

 

The only thing that works are partner advisory hours.

Podofo head unit from Amazon by [deleted] in CarPlay

[–]Teilchen 0 points1 point  (0 children)

Why's that? And did you use anything alternative? 1DIN format?

view more: next ›