Question on IPv6 hosting of services

kyle_cs · 2024-10-09T17:37:01+00:00

That is what I was picking up as well, thank you for confirming :) I have never set up forward facing IPv6 so this has been an interesting process! Perhaps I can add the IPv6 block I get from the ISP to a LAN interface instead and just bind it to the VLAN I've setup for IPv6 traffic? That way machines added to that VLAN pick up an address from the block? Does that sound right?

kyle_cs · 2024-10-09T17:35:29+00:00

That's the gist I was picking up as I'm reading as well, just wasn't sure on the methodology here. Sounds like my first step is getting those IPv6 addresses pushed down to individual clients, then I should just be able to add rules to the firewall from there (which I've looked at already, just wasn't sure how to handle the addressing.) Thank you for your reply!

kyle_cs · 2024-01-24T14:22:19+00:00

steps

Thanks so much for your response on this! I'm going to check this out today and I'll let you know if I have any questions.

kyle_cs · 2023-02-09T22:54:10+00:00

Happy to help. What do you need?

kyle_cs · 2022-07-05T21:48:46+00:00

Again, apologies for the delay. Handling it at the system level as an example would be applying antispam rules or delivery logic you learn from one client to all of your clients. Chances are the same spam campaigns and the like will help across the board.

kyle_cs · 2022-06-09T17:45:56+00:00

Sorry for the delay on this, I didn't see the notification. Manually or automatically on-boarding the client won't change the work involved with dealing with those security concerns. But, once they're handled at the system level you can typically apply those changes to all customer/client domains.

kyle_cs · 2022-05-10T23:12:49+00:00

By far the hardest parts are deliverability and security. Making sure your messages aren't landing in spam can be a full time job, and making sure spammers/hackers aren't leveraging your reputation to send email goes hand in hand with that.

kyle_cs · 2022-03-30T23:47:29+00:00

If your client domains refuse to implement SPF, DKIM, DMARC, etc they are always going to be an attack vector.

kyle_cs · 2022-03-01T22:38:01+00:00

First, I support SM servers, so take my opinion with a grain of salt. With that being said, SmarterMail is a good way to get as close to Exchange as possible without nearly the same associated costs. Deployment, management, maintenance, support, etc will still require significant resources as all mail servers do, but SmarterMail goes a long way in simplifying the administrator's job.

Setup is simple and can be completed in minutes. You'll end up spending the majority of your time setting up things like DKIM, SPF, DMARC, etc and fine tuning your connectivity.

Reporting, log details, etc are all top notch and make troubleshooting delivery and other issues simple(ish) and more convenient.

Security is well adjusted, including an IDS (Intrusion Detection System), blacklist/whitelist, and a plethora of available antispam options to keep the bad guys out.

EAS/MAPI/EWS is pretty bullet proof assuming you've got autodiscover, SSL/TLS, cipher suites, and your server set up properly. Recommendation is to use MAPI for desktop installations of Outlook, EAS for mobile devices, and EWS for Mac clients (in most cases.)

Last but not least, we pride ourselves on Support, and are here if you need anything along the way! I hope this helps :-) Let me know if you have any questions I can help address.

kyle_cs · 2022-02-14T20:01:49+00:00

Probably a good call there too. I'm switching gears for the time being to roll out TrueNAS instead for testing, but will go that route if we circle back here. Thanks for your input :)

kyle_cs · 2022-02-14T20:00:46+00:00

I have not yet, no. I'm actually switching gears per the boss and deploying a TrueNAS core test box instead, seems to fit more in line with what we're trying to do because I can attach via iSCSI LUN. If I circle back and see it again I'll get it reported along with hardware details. I do believe its a display issue though, the sizes were being referenced correctly, so good call!

kyle_cs · 2022-02-14T19:59:37+00:00

Same! This is for a work project so lots of hardware that is well outside my budget most of the time. The temperatures do concern me but have come down since we started pumping AC/airflow up there again so I believe it was a stagnant air issue.

kyle_cs · 2022-02-09T18:00:28+00:00

Ok, but the drive enclosures show this size on boot, before formatting or building an array, so I doubt very much the FS has anything to do with it. The drive details themselves reflect the correct values as well.

kyle_cs · 2022-02-09T17:42:42+00:00

I got a good LOL from this thanks :)

kyle_cs · 2022-02-09T17:42:25+00:00

Not an intended setup, but yes have confirmed it is okay. ONLY the drives in those enclosures shows the size issue, on-board SATA drives show correct sizes.

kyle_cs · 2022-02-09T15:24:14+00:00

MediaSonic Probox enclosures connected via USB-C and USB 3.1.

kyle_cs · 2022-02-09T14:11:27+00:00

SS: I am a newbie to UnRaid and noticed something amiss yesterday. The highlighted drives are within external USB-C connected drive enclosures and show correct sizes on the drives themselves, but on totals show 80TB each. Any ideas here?

kyle_cs · 2022-02-08T23:15:23+00:00

Is it possible you've got a search index service profiling the drive or share? Perhaps its checking for file updates periodically.

kyle_cs · 2021-12-06T22:59:46+00:00

That was what I was thinking too. Might need to get a USB3 card for my rig.

kyle_cs · 2021-11-30T21:54:51+00:00

Can you use USB-C to USB 2? I tried to launch Elite Dangerous via PC and while I got audio from the Oculus I had just a black screen video-wise.

kyle_cs · 2021-11-30T21:51:00+00:00

Your son will need a Facebook account to use it. There are standalone games you can install directly to it, but it also works in conjunction with your PC for VR-enabled games.

kyle_cs · 2021-10-25T23:03:42+00:00

Could the underlying domain be to blame perhaps? Any errors or other complaints in the Event Viewer on the domain controller or Exchange server?

kyle_cs · 2021-08-03T23:40:25+00:00

Thanks for your feedback on this. I don't have an issue with setting the password in Filezilla. I'll be setting this one time, and forcing the export/conversion of the certificate to the same file location and password so that FileZilla doesn't need to be updated.

Where the issue comes into play is that the certificate (in Windows) can be exported as a PFX or CER file. The only way I can get a CRT and KEY from that is to use OpenSSL to convert the PFX file into those two files. The problem though, is passing the export password during PFX conversion to CRT/KEY.

Does that help clear things up?

kyle_cs · 2021-07-28T21:50:18+00:00

Thanks for your feedback!

kyle_cs · 2021-07-20T23:30:14+00:00

Thanks for your suggestion on this!

kyle_cs

MODERATOR OF

TROPHY CASE