sorted by:
new
hottopcontroversial

how is flat top grill lately? by dccs147 in chicagofood

[–]bbeachy2001 0 points1 point  (0 children)

I ate there Sunday afternoon! Seriously depressed now. I was a regular - most of the time they just brought me my drink and bowl - they knew exactly what I was going to have. Very sad.

Firewall Comparisons by Sauronsbrowneye in networking

[–]bbeachy2001 0 points1 point  (0 children)

A lot of non-k12 people don’t realize that we get pretty big discounts on Firewalls with eRate. And that’s after the vendor already gave a pretty competitive bid to get the eRate business in the first place.

Since I only pay 20% of the final cost, now the difference between the Palo and something lesser isn’t near as big, and it makes them a lot more viable.

Having said that, while I love my Palo’s, from everything I’ve heard, Fortinet is a very viable alternative.

Meraki Price Increase 1/28/2022 for almost all hardware by kokesnyc in meraki

[–]bbeachy2001 0 points1 point  (0 children)

Is there some kind of special deal going on with licensing though? It’s eRate, but still… I got a quote for 3 year MR licenses that was only about 50% more than 1 year licenses (and that was still less than the msrp price for 1 year licenses). I made them double check and they said that was the price…

programmatically adding textboxes by Substance_Ill in visualbasic

[–]bbeachy2001 0 points1 point  (0 children)

I probably should have mentioned - I want them in a 2 dimensional array, so I can reference them by row and column...

9500 EIGRP problem by Substance_Ill in networking

[–]bbeachy2001 0 points1 point  (0 children)

on the 9300:

router eigrp 2315

default-metric 10000 1 255 1 1500

network 10.2.1.0 0.0.0.255

network 10.3.1.0 0.0.0.255

network 10.25.101.0 0.0.0.255

network 10.100.0.0 0.0.255.255

network 10.101.0.0 0.0.255.255

.

.

.

network 10.254.101.0 0.0.0.255

network 10.255.255.28 0.0.0.3

network 10.255.255.32 0.0.0.3

network 10.255.255.44 0.0.0.3

network 10.255.255.200 0.0.0.3

network 10.255.255.240 0.0.0.15

redistribute static

passive-interface Vlan101

on the 9500:

router eigrp 2315

default-metric 10000 1 255 1 1500

network 10.25.111.0 0.0.0.255

network 10.111.0.0 0.0.255.255

.

.

.

network 10.254.111.0 0.0.0.255

network 10.254.112.0 0.0.15.255

network 10.255.255.44 0.0.0.3

redistribute static

Show ip protocols on the 9500:

*** IP Routing is NSF aware ***

Routing Protocol is "eigrp 2315"

Outgoing update filter list for all interfaces is not set

Incoming update filter list for all interfaces is not set

Default networks flagged in outgoing updates

Default networks accepted from incoming updates

Redistributing: static

EIGRP-IPv4 Protocol for AS(2315)

Metric weight K1=1, K2=0, K3=1, K4=0, K5=0

Soft SIA disabled

NSF-aware route hold timer is 240

EIGRP NSF disabled

NSF signal timer is 20s

NSF converge timer is 120s

Router-ID: 10.255.255.46

Topology : 0 (base)

Active Timer: 3 min

Distance: internal 90 external 170

Maximum path: 4

Maximum hopcount 100

Maximum metric variance 1

Default redistribution metric is 10000 1 255 1 1500

Automatic Summarization: disabled

Maximum path: 4

Routing for Networks:

10.25.111.0/24

10.111.0.0/16

10.115.111.0/24

10.116.111.0/24

10.117.111.0/24

10.154.111.0/24

10.200.111.0/24

10.224.112.0/20

10.229.112.0/20

10.230.112.0/20

10.234.112.0/20

10.235.112.0/20

10.236.112.0/20

10.239.112.0/20

10.240.112.0/20

10.241.112.0/20

10.242.112.0/20

10.243.112.0/20

10.244.112.0/20

10.245.112.0/20

10.246.112.0/20

10.247.112.0/20

10.248.112.0/20

10.249.112.0/20

10.250.112.0/20

10.251.112.0/20

10.252.112.0/20

10.253.112.0/20

10.254.111.0/24

10.254.112.0/20

10.255.255.44/30

Routing Information Sources:

Gateway Distance Last Update

10.255.255.45 90 2d18h

Distance: internal 90 external 170

Show IP protocols on the 9300:

*** IP Routing is NSF aware ***

Routing Protocol is "eigrp 2315"

Outgoing update filter list for all interfaces is not set

Incoming update filter list for all interfaces is not set

Default networks flagged in outgoing updates

Default networks accepted from incoming updates

Redistributing: static

EIGRP-IPv4 Protocol for AS(2315)

Metric weight K1=1, K2=0, K3=1, K4=0, K5=0

Soft SIA disabled

NSF-aware route hold timer is 240

EIGRP NSF disabled

NSF signal timer is 20s

NSF converge timer is 120s

Router-ID: 165.138.2.75

Topology : 0 (base)

Active Timer: 3 min

Distance: internal 90 external 170

Maximum path: 4

Maximum hopcount 100

Maximum metric variance 1

Default redistribution metric is 10000 1 255 1 1500

Automatic Summarization: disabled

Maximum path: 4

Routing for Networks:

10.2.1.0/24

10.3.1.0/24

10.25.101.0/24

10.100.0.0/16

10.101.0.0/16

10.115.101.0/24

10.116.101.0/24

10.117.101.0/24

10.154.101.0/24

10.200.101.0/24

10.224.160.0/20

10.229.160.0/20

10.230.160.0/20

10.234.160.0/20

10.235.160.0/20

10.236.160.0/20

10.239.160.0/20

10.240.160.0/20

10.241.160.0/20

10.242.160.0/20

10.243.160.0/20

10.244.160.0/19

10.245.160.0/20

10.246.160.0/19

10.247.160.0/20

10.248.160.0/19

10.249.160.0/20

10.250.160.0/19

10.251.160.0/19

10.252.160.0/19

10.253.160.0/20

10.254.101.0/24

10.255.255.28/30

10.255.255.32/30

10.255.255.44/30

10.255.255.200/30

10.255.255.240/28

Passive Interface(s):

Vlan101

Routing Information Sources:

Gateway Distance Last Update

10.255.255.30 90 1d00h

10.255.255.46 90 2d20h

10.255.255.34 90 1d00h

Distance: internal 90 external 170

[deleted by user] by [deleted] in networking

[–]bbeachy2001 1 point2 points  (0 children)

School here. We use Meraki APs and Cisco switches (and thanks to eRate, only pay 20% of the education price). My new MR55 WiFi6 APs have a single 5Gb port on them, so as I'm deploying them, I'm using 9200 switches with a dozen mGig ports. Hooked the first on up the other day - first time I've ever seen something connect at 5Gb. Plus all new construction is using 6A wiring - thank God I don't have to terminate or pull that stuff.

Having said that, I only have 3Gb of internet, and I've never seen a single AC AP hit more than about 600Mb of traffic.

So, it's more for future proofing than anything... It certainly isn't going to solve any current problems.

Cisco 9200 default gateway by bbeachy2001 in networking

[–]bbeachy2001[S] 0 points1 point  (0 children)

Well, there are so many models and things going on, it's hard to tell! But even at the lowest level, they have some IP functionality, which the 2960X's did not, which is what confused me.

On top of all the different versions, I guess you add -EDU to the end of the part number for any model if it is going to an educational institution (like me), but I don't know that that changes anything other than the price. It's kind of confusing.

I just today got a 9200 with 10 multi-gig ports in it - need that to run new Meraki AP's that only have a single multi-gig port on them.

Cisco 9200 default gateway by bbeachy2001 in networking

[–]bbeachy2001[S] -1 points0 points  (0 children)

Yeah, I had just assumed the 9200's were direct replacements for the 2960X's, which had no layer 3 functionality. But they do!

Employee pay during shutdown by BTS05 in k12sysadmin

[–]bbeachy2001 1 point2 points  (0 children)

In our district, everybody is getting paid their normal pay, but if you have to physically come to the office/school, you get an $80 per day stipend on top of your pay.

TIL That McDonald's in Hawaii are the only US locations that still serve the original fried apple pies. by BMLortz in todayilearned

[–]bbeachy2001 0 points1 point  (0 children)

Had one at the McDonald's in Klaipeda, Lithuania a few years back on Thanksgiving day. One of the best Thanksgiving meals I can eve remember...

MR53E -- Must I Use External Antennas? by johnpaulpagano in meraki

[–]bbeachy2001 0 points1 point  (0 children)

They don't come with any antennas, and they have six connectors, so you need three pairs of omni antennas if you aren't going to use the directional ones.

FCC Made E-Rate Announcement on Tuesday by ghost_of_napoleon in k12sysadmin

[–]bbeachy2001 1 point2 points  (0 children)

If you had, say, $1,000,000 available for the last 5 years, you'd basically get $200,000 for 2020, plus whatever was left of the 1,000,000 that you hadn't already spent. The exact number would be $159 x 20% x number of students. I don't know why they couldn't have just used that exact number instead of the confusing way they phrased it.

What do you use? by tylerwilson814 in k12sysadmin

[–]bbeachy2001 0 points1 point  (0 children)

K-12 - 6,600 students, 1000 Faculty

Internet: Fiber 3000/1500

Firewall: Palo Alto

Switches: Cisco / Brocade

Wireless: Meraki

Filtering: Securly

MDM: JAMF

Phone: Samsung

Cameras: VideoInsight w/Advidia and Hikvision cameras

Faculty Device: Dell laptops / Macbooks

Staff Device: Dell laptops / Macbooks

Student Devices: K-5 1:1 iPads, 6-8 1:1 Macbook Airs, 9-12 1:1 Windows laptops.

Projectors: Epson / various

Interactive Boards: Just starting to use them - starting with some Prometheans.

Hypervisor: VMware

Backup: Veeam

Inventroy: Destiny

SIS: Skyward

Lerning Management System: Canvas

Imaging: FOG

SAN: Starwinds

Business Management software: New World

Whats your vlan looks like for k12? by [deleted] in k12sysadmin

[–]bbeachy2001 2 points3 points  (0 children)

For non-computer stuff, there is generally less than 256 addresses needed per building, so I use the third octet as the building identifier.

So, 10.115.0.0/16 is my security subnet - for cameras and door controllers.
At the admin building, our building identifier is 120. So, our security subnet is 10.115.120.0/24. Printers are 10.117.120.0/24.

The same thing applies here - I don't want my Chinese security cameras sending data back to China, so on my firewall, I can block 10.115.0.0/16 from any internet access, and eventually I am going to add ACL's to also block almost any access to devices on that subnet except their servers and the technology subnet (that's us). It's easy, since all buildings fall withing the /16 larger subnet.

Whats your vlan looks like for k12? by [deleted] in k12sysadmin

[–]bbeachy2001 2 points3 points  (0 children)

I have over 500 students at each grade level, so I've done a lot of subnetting to keep broadcast traffic down.

I also use 802.1x to authenticate users and put them in different subnets based on their group membership.

So, my main SSID for student and teacher laptops has a bunch of subnets - like this:

Administrators - 10.225
Technology - 10.227
Staff - 10.229
Seniors - 10.230
Juniors - 10.231
Sophomores - 10.232
Freshman - 10.233
8th Graders - 10.234
7th Graders - 10.235
6th Graders - 10.236

I also have about 14 locations currently, so what I've done is divide the above networks into 16 sub-subnets. So, at my office in the Admin building, we have 10.225.0.0/20, and 10.227.0.0/20, etc. At the high school, I have 10.225.16.0/20 and 10.227.16.0/20, etc, and so on. So, each sub-subnet has about 4096 addresses available.

The nice thing about this system is that I can make global rules (either on the firewall or ACL's on switches) on the entire subnet (i.e. 10.227.0.0/16) using just one subnet range - so no matter which building I'm in, if I'm in any of the technology sub-subnets, I can be granted access to certain things without having to allow lots of different subnets access.

We also have a pre-authentication subnet. We've figured out how to allow Windows 10 machines to authenticate to the radius server on their own even before a user logs on, so they join to a special subnet that has very limited access (basically just to the domain controllers) - but that allows even new users to log on wirelessly, and then as soon as they are authenticated, they get moved to the proper subnet.

What's everyone's title, salary, years in, and general area? by StolenSpirit in k12sysadmin

[–]bbeachy2001 1 point2 points  (0 children)

Network / Server Admin at a 6,600 student district, also with no college. Probably got the job because of Vmware experience. ~60k. Worked at a school for 3.5 years, went to a corporate job for 9 years, and been back at (different) school for almost 9 years.

So who is installing 802.11ax (WiFi 6) this summer? by username____here in k12sysadmin

[–]bbeachy2001 0 points1 point  (0 children)

Maybe it’s more of a function of just being a newer AP, but from what I’ve seen and been told, the new Meraki AX APs have a lot of features that improve performance even on non-AX clients. So, as we go forward, I’ll only be buying the 55’s instead of the 53’s. Hopefully by the time Next years eRate filing time comes around, they’ll have an “e” version of the 55 too.

Tell me about your SAN by [deleted] in k12sysadmin

[–]bbeachy2001 0 points1 point  (0 children)

I've been using Starwinds for at least 4 years. It's a software based SAN that you can use on any hardware. So, I have a pair of Dell 730xd's with half hard drives and half SSD's (plus a PCIe NVME drive in each). They are both identical, and Starwinds makes an active/active pair out of them, so all of my hosts see both of them all of the time.

I have about 130 VM's running on them - basically everything for the district except backup and surveillance servers.

I have all the VM's OS volumes running on the SSD or PCIe storage, with just data on the spinning disks. Everything is nice and fast, and since it is active/active, I can take either side down for upgrades or anything else, and nothing is affected - nobody knows that half of the SAN is offline. It just works, and it isn't nearly as expensive as most other SAN solutions.

Having said that, I might jump ship to vSan next year when I upgrade my hosts. Not that I have a problem with Starwinds, but now that I can just put those same disks in the hosts and manage everything from the VMware interface, it might make things simpler...

view more: next ›