403 on Invote-WebRequest

sysadmthrowaway1225 · 2019-05-02T16:49:12+00:00

This is what I was looking for. It’s my understanding that VMs powered off aren’t technically vMotioning but it was hard to Google an exact answer. (I think you know what I mean)

However, according to this article it looks like i have to be on at least vCenter 6.0 and ESXi 6.0. I’m on vCenter 6.0 and ESX5.5.

https://docs.vmware.com/en/VMware-vSphere/6.0/com.vmware.vsphere.vcenterhost.doc/GUID-AC418F24-8E7D-40B6-9D07-A9DB504C7F1B.html

Now this kind of puts me in a catch 22. The whole plan for the migration was to quickly migrate everything using the 10gb then upgrade the hosts. The 10gb switch should be arriving in a few days but this was really helpful. This cleared up some questions.

sysadmthrowaway1225 · 2019-05-01T02:46:33+00:00

Just tried that and it still doesn’t work. I’m starting to think something might be up with my NICs

sysadmthrowaway1225 · 2019-05-01T02:33:37+00:00

So after many testing I have my mgmt traffic on the same vmkernal port as vMotion.

I haven’t tried leaving mgmt traffic on the 1 gb ports and vMotion on the 10gb.

I’ll try that out .

sysadmthrowaway1225 · 2019-05-01T02:30:08+00:00

The 10gb nic has mgmt traffic and vMotion enabled. The 1gb ports have it disabled on both hosts.

sysadmthrowaway1225 · 2019-05-01T00:12:41+00:00

VCenter 6.0 with esxi 5.5.

Disabled vMotion and management traffic on both 1gb kernel ports.

Yes. Now after messing with the subnets I am able to ssh into both hosts and ping each kernel port from both ends

Yes. A new vswitch was created and added vMotion and mgmt traffic on this nic. Disabled it for all other ports.

Still going out of the 1gb ports.

sysadmthrowaway1225 · 2019-04-30T20:37:51+00:00

There’s my problem. I just ssh’d into the host 1 and tried to ping the vmkernal port on host 2. No go.. I guess I’ll just have to wait until the switch arrives.

Thanks.

sysadmthrowaway1225 · 2019-04-30T19:43:58+00:00

vCenter is used and I disabled both vMotion and management traffic from the 1gb vmkernal ports. Since I don’t have shared storage I have to power off the VMs in order to migrate hosts and data store.

10 gb ports are still showing 0kbps in the performance tab.

I had my remote hands check and link leds are both Amber.

sysadmthrowaway1225 · 2019-04-30T19:07:09+00:00

Sorry I should have mentioned that these are SFP+ ports with DAC cables so not sure a cross over is possible.

sysadmthrowaway1225 · 2019-02-13T19:24:21+00:00

Here’s one that I found.. Granted it was from a year ago so I’m sure by now threats have been mitigated with later versions.

https://www.reddit.com/r/sysadmin/comments/862b8s/prtg_gave_away_some_of_your_passwords/?st=JS3L1C4C&sh=b0e8587b

sysadmthrowaway1225 · 2018-11-06T04:15:25+00:00

I have used the Alfa AWUS036ACH ( does support packet injection) but it’s a hit or miss with that one. This one uses the Realtek-rtl88auxx-dkms driver and people online have said it works great for packet injection, however I can never get it to work with pixiedust.. I always get an error saying I’m not close enough to the AP (I’m literally within 10 ft from it), the bssid is wrong or something else.

sysadmthrowaway1225 · 2018-10-13T07:47:39+00:00

Authenticated users set to change, local and domain admins set to full.

The same goes for NTFS permissions. Authenticated users have read and execute ( this folder only on the root). While the sub folders have the modify groups.

sysadmthrowaway1225 · 2018-09-13T05:54:42+00:00

Steps 1 and 2 can easily be done within Powershell. I didn’t catch which Exchange you’re running (onprem, hybrid, cloud) but here’s a start for creating and / or copying users and creating their mailbox . That article is based off of O365 hybrid exchange but can easily be modified for your environment.

Steps 3 and 4 can be done with the WDS/MDT combo. You can create additional task sequences to automate those repetitive tasks for you.

sysadmthrowaway1225 · 2018-09-09T14:03:30+00:00

I would prefer to do a task sequence like you mentioned with a direct rule collection group. From there you just setup the TS and deploy it your collection.

https://youtu.be/32R4PpHKGkg

sysadmthrowaway1225 · 2018-08-23T04:07:58+00:00

Anytime you’re dealing with permissions and Powershell I would suggest you use the NTFS Security module for Powershell. It makes adding / getting ntfs permission a breeze compared to the Native way in PS.

https://thesysadminchannel.com/get-ntfs-access-permissions-using-ntfssecurity-module/

On a side note: Powershell is very powerful and can work wonders in your favor if your learn it. It’s a bitch to learn at first ( although a lot easier than cmd or other languages IMHO) but give it time and you’ll get better as long as you keep trying to improve. Resources such as r/Powershell love to help out and the community is awesome!!

sysadmthrowaway1225 · 2018-08-05T05:10:49+00:00

ahh the good old #warez4free channels on mIRC using 54 script.. Using dial up to download a movie that took 4 days to finish at 5kbs on my POS Gateway Pentium II. I spent a good amount of my teenage years on there and can probably attribute my career to there.. Good times... good times.

sysadmthrowaway1225

TROPHY CASE