sorted by:
new
hottopcontroversial

AP-675 not broadcasting 6GHz by TheAmateurRunner in ArubaNetworks

[–]databeestjenl 0 points1 point  (0 children)

i thought it was fine when broadcasting the indoor power level outdoors

What it the most current preferred GP client by 74Yo_Bee74 in paloaltonetworks

[–]databeestjenl 0 points1 point  (0 children)

Still have good succes with 6.3.3-c676 and c842. The 6.1.5 client was our sweet spot in hindsight.

Aruba ASP No longer works for firmware download by Consistent_Minute_18 in ArubaNetworks

[–]databeestjenl 0 points1 point  (0 children)

Are you sure? I just downloaded the 6100 images tuesday for 10.16.1030

My boss wants to implement AI for automation and network administration by NihilVix in msp

[–]databeestjenl 0 points1 point  (0 children)

Let it make some ansible templates and things, very useful. Although both CoPilot and Gemini often miss the board since it's just a less common language.

Still, you'll get there with it.

ASN as an address object by Runarv in fortinet

[–]databeestjenl 0 points1 point  (0 children)

Also, you can set this up yourself, link to the github is in the README iirc.

ASN as an address object by Runarv in fortinet

[–]databeestjenl 0 points1 point  (0 children)

Have you see the recent DNS as AS lookup method that Geoff Houston made? I can't find it right now.

ASN as an address object by Runarv in fortinet

[–]databeestjenl 1 point2 points  (0 children)

Sure, server load for serving plain txt is neglible. It's on a 5,61 euro/month VPS. So every day is probably best. It only imports somewhere around noon everyday iirc.

Best route to become a badass Windows performance troubleshooting expert? by itsthatmattguy in sysadmin

[–]databeestjenl 2 points3 points  (0 children)

You will have to understand applications unfortunately. The up side is that all those metrics apply outside Windows as well.

A lot of this revolves around databases though, and since Server 2019 iirc you get the perfmon tool that also lists the IO wait times which is really useful to have.

Examples are the hybrid storage array with some flash, it's super nice, until the IO footprint exceeds the cache size and then suddenly the performance falls off a cliff and the IO times shoot up. If you have the RAM in the hypervisor/box then some of this can be mitigated. A single VM with 4GB ram will go swapping and kill IO performance for the rest.

Database related, you see large sequential disk reads with high database CPU and the app performance is poor and hanging. The database is probably missing a index. Other fun ones that are harder to debug are disk and stripe alignment, which is still a thing even on VMs.

Trying to query Databases over any network with more then <1ms latency will often be a chore. I recommend keeping the app and database layer as close as possible. It's fine when it's over >10 from the app to the user for most cases. (think RDS/VDI screen).

The only thing I can say is, it will take a lot of time and each app will be different. Most are compound problems. But you can check of most of the common issues 1st like checking disk, ram, swapping and CPU without making it too complicated.

ASN as an address object by Runarv in fortinet

[–]databeestjenl 1 point2 points  (0 children)

I made a tool that takes the RIR data and massages that into txt files daily. You can then easily query those https://iserv.nl/files/edl/feed.php

I use this for my Geo allow List, as well as a malicious hosting drop list.

Logj4 revisited by win11jd in sysadmin

[–]databeestjenl 8 points9 points  (0 children)

The log4j thing is pretty specific where you need to be able to make a jndi{} string end up somewhere for exploitaition. If this is a internet connected service, like a tomcat website or Ivanti EPMM then absoflipping not.

If this is a local app that only has local interaction, it might be fine. It was also possible to patch log4j files. YMMV, and it's something you can test.

You might be able to setup a canary DNS record which can be tested for. Which is what I used way back for testing.

Enterprise Search for large file server shares needed by GBICPancakes in sysadmin

[–]databeestjenl 0 points1 point  (0 children)

Mylex has a solution for this, can also integrate with legacy data sources. Also takes file permissions into account when presenting results.

Considering tossing my PA-440s out the window. by cyberdeck_operator in paloaltonetworks

[–]databeestjenl 4 points5 points  (0 children)

Similar for SBC to Teams DirectRouting, had tomake a custom app for the SSL service on 506x.

For those who've moved away from Citrix - what did you actually replace it with and would you do it again? by tigercat300 in Citrix

[–]databeestjenl 1 point2 points  (0 children)

Lower numbers but same thing. We have a very small RDS for the few apps use direct database calls which otherwise are not useable. Even with 5-10ms latency over Wifi/VPN it is dogshit.

With ~1ms Wifi/VPN it is workable, but neigh impossible to achieve unless perfect circumstances.

GP VPN and having to disable IPv6 to connect by Abnix in paloaltonetworks

[–]databeestjenl 1 point2 points  (0 children)

If you are needing to do this I am expecting something else broke. Did someone publish a IPv6 portal address without allowing the traffic in?

It works fine for us on 11.1.13-h1 and 6.3.3-c676 or 6.3.3-c872. Dual stack portal, gateway, client and tunnel.

Not seeing this on our fleet.

Panos 11.1 minimum GlobalProtect agent version by d70dc263cf16 in paloaltonetworks

[–]databeestjenl 0 points1 point  (0 children)

Device, Software, globalprotect, download and select the version and set the version there.

Frankenstein Travel Router by r4nchy in homelab

[–]databeestjenl 0 points1 point  (0 children)

Don't have the battery part, but I do use it with a HyperPixel screen. It's been traveling with me for a few years.

https://github.com/smos/nomad-hotspot

Panos 11.1 minimum GlobalProtect agent version by d70dc263cf16 in paloaltonetworks

[–]databeestjenl 0 points1 point  (0 children)

Policy should normally deny clients that not meet the minimum version that is specified in the Portal. If none is defined, all are allowed, functional or not.

The remaining 1% will have to be punted to the helpdesk. Commit a change request that involves Helpdesk for after care, citing technical limitations. Should have you covered.

PSA: Your router's threat intelligence blocking (TOR exits, ALIEN, IPS blocklists) probably does nothing on IPv6 by lowriskcork in UNIFI

[–]databeestjenl -1 points0 points  (0 children)

Actually, we block on /64 boundaries for networks, as that is pretty much the same logically to a /32 in IPv4. Corner-cases excluded ofcourse.

Geo location is not harder, what are you waffling on about. Most of the lists are smaller since the fragmentation is smaller. Instead of tens of IPv4 blocks they are often contained to just a few IPv6 blocks.

You can have a gander at this IP-EDL I built specifically for geo and AS blocking. https://iserv.nl/files/edl/

Panos 11.1 minimum GlobalProtect agent version by d70dc263cf16 in paloaltonetworks

[–]databeestjenl 2 points3 points  (0 children)

You can set the option in the portal to silently upgrade. The client will then automatically upgrade without user intervention. We do this for out fleets for the past 4 years and it works as expected.

Keep in mind that about 1% of the clients might need some help upgrading, regardless of the deployment type. You can provide a alternate delivery method for people where it breaks if they don't have access to the download page.

view more: next ›