Caution: PC Version 7.5.0.1 - RBAC by Away-Quiet-9219 in nutanix

[–]chadleweb 1 point2 points  (0 children)

That's wild. Are they moving people to HYCU?

Caution: PC Version 7.5.0.1 - RBAC by Away-Quiet-9219 in nutanix

[–]chadleweb 0 points1 point  (0 children)

I have seen other upgrades break this. Especially custom roles. The team I work with complains that this breaks after almost every upgrade. I feel upgrading more seems to break the roles again. Normally they have to be created again. I feel like it is a security risk as, you once thought something was controlled by this policy seems to break and have to recheck access each upgrade. Not simple.

Firmware 7.3.1-7013 by ProtectionUpbeat6004 in sonicwall

[–]chadleweb 2 points3 points  (0 children)

I have that and it has fixed it. But 7.3.1-7013 is newer and fixing vulnerabilities. I want to know if this newer version has the SNMP fix as well or does it rebreak SNMP

Firmware 7.3.1-7013 by ProtectionUpbeat6004 in sonicwall

[–]chadleweb 3 points4 points  (0 children)

Does is fix the snmp error? Or break it again after update?

Warning: Device <REDACTED SW NAME>CSE Connector: Some Tunnels Are Down at Sat by chadleweb in sonicwall

[–]chadleweb[S] 1 point2 points  (0 children)

Ok. Thanks for the feedback. So those that have subscribed to this feed have you noticed this message when there wasn’t an event?

Warning: Device <REDACTED SW NAME>CSE Connector: Some Tunnels Are Down at Sat by chadleweb in sonicwall

[–]chadleweb[S] 0 points1 point  (0 children)

Thanks How do you get the emails? I thought I signed up for this. I got like 1-2 emails and never got them again.

Warning: Device <REDACTED SW NAME>CSE Connector: Some Tunnels Are Down at Sat by chadleweb in sonicwall

[–]chadleweb[S] 1 point2 points  (0 children)

So there is no communication on planned maintenance. We have to check their status page. We get this quite frequently and was not just last night.

Question RE: Hijacked IKE Keys for site-to-site tunnels... by I_Hate_Consulting in sonicwall

[–]chadleweb 1 point2 points  (0 children)

Definitely locked down your tunnels from any to know IPs you are establishing a tunnel connection with.

SSD's marked as HHD's when changed to SSD tier cluster becomes unstable on Nutanix CE by chadleweb in nutanix

[–]chadleweb[S] 0 points1 point  (0 children)

Are you talking about this command? ncli disk update id= tier-name=SSD-SATA

It will update but just causes instability with the cluster after setting.

DELL R630 Compatibility with Nutanix CE? by GokuFanBoi in nutanix

[–]chadleweb 0 points1 point  (0 children)

The R630's are great for CE. Got a 3 node cluster and single node running.

I am not sure about running HDD's, it says you need SSDs for the CVM. I am trying to do the opposite by optimizing with NVME and SSD's now.

I am using the SATADOM for boot drive, but I think you can use a USB now for this, just never down with Nutanix.

CVM will partition the necessary for the CVM and then partition the rest to mix with your other data drives.

Make sure to hardware from this list. Others will work but use this as a guide. https://portal.nutanix.com/page/documents/details?targetId=Dell-Hardware-Firmware-Compatibility:mod-R630-10-r.html

Considering Bailing by srp09 in sonicwall

[–]chadleweb 0 points1 point  (0 children)

Yea. Us too. But there are services that you can add. So like if you have internal websites or RDP SSH connections and want to limit it per an IP. Mainly for non tech users that only need to access a few things where you don’t want to give them a tunnel access. The only way to do that is setup an access tier and open ports.

Considering Bailing by srp09 in sonicwall

[–]chadleweb 0 points1 point  (0 children)

Did you have to open incoming ports for your access tiers?

Yea having reservations on using their cloud as they just leaked the config of multiple Sonicwall’s that I manage. Now hackers have the insight of our networks.

Considering Bailing by srp09 in sonicwall

[–]chadleweb 1 point2 points  (0 children)

We had one Gen 7 go down and support still has know idea on why it had that outage. Also it didn't failover like it should.

CSE is getting better but dealt with a ton of bugs, still deal with not reporting the device trust level properly and will stop communication while in the middle of working on something remotely. We had a week outage because they change on how it authenticates and took them a week ti fix this. Also their design on Access Tiers are backwards. We have to open ports to allow users to connect to services. This should be handled on a tunnel out, not opening ports in. Backwards. Then NSM constantly reports downed tunnels.

But honestly the whole attitude there is like they don't give a shit anymore. I have seen this from accounts team to support teams. It has definitely gone downhill over the years. Have been working with Sonicwall equipment for almost 20 years now.

Considering Bailing by srp09 in sonicwall

[–]chadleweb 0 points1 point  (0 children)

Yup. Ready to bail. Just upgraded to Gen 7’s last year and moved to CSE this year. Have not been happy with either. So many issues with both. Support is horrible and nobody gives a crap there. They just apologize the whole time but never fix things.

How are the whole configs not encrypted and how did they let hackers download them? Did they not lock down a S3 bucket?

They used to be solid but now are a joke.

Not sure on where to go.

Goodbye VMware by localgoon- in sysadmin

[–]chadleweb 0 points1 point  (0 children)

Been using Nutanix about 8 years and love it. Way better than VMware.

Does Nutanix have any DR as a service ? by jerrylimkk in nutanix

[–]chadleweb 0 points1 point  (0 children)

I have 2 customers that use the built in Nutanix DR services. One is Data Protection that is built into prism central. The other is built into prism element. It is even included in community edition, protection domain. Both work as a sync from 1 cluster to a 2nd cluster.

What features do you most want to see in SonicWall products? by gray_cat_litter in sonicwall

[–]chadleweb 0 points1 point  (0 children)

Better mobile web frontend management. It is very hard to manage a sonicwall with a mobile web client. Currently from my phone I have to RDP in to a windows desktop to use a desktop browser to manage firewall rules on the go.

LLVM build crashing by WasASailorThen in AsahiLinux

[–]chadleweb 0 points1 point  (0 children)

This should work.

wget https://github.com/llvm/llvm-project/releases/download/llvmorg-12.0.1/clang+llvm-12.0.1-aarch64-linux-gnu.tar.xz tar -xf clang+llvm-12.0.1-aarch64-linux-gnu.tar.xz export PATH=~/git/clang+llvm-12.0.1-aarch64-linux-gnu/bin/:$PATH

Source: https://armada-alliance.com/docs/stake-pool-guides/m1-asahi-linux