Active Directory custom fields
I would strongly suggest looking at creating custom MMC templates that you can then deploy to the helpdesk personnel. The framework is already in place and eliminates the development time required in building a web front-end to AD. It can certainly be done, I’ve done it myself at the company I used to work at, [...]
View Answer
| January 3, 2006 6:40 PM
Altiris, DataCenter, Desktop management applications, Desktops, Intel, LANDesk, Management, Microsoft Windows, OS, Security, Servers, SQL Server
I would strongly suggest looking at creating custom MMC templates that you can then deploy to the helpdesk personnel. The framework is already in place and eliminates the development time required in building a web front-end to AD. It can certainly be done, I’ve done it myself at the company I used to work at, [...]
View Answer
| January 3, 2006 6:40 PM
Altiris, DataCenter, Desktop management applications, Desktops, Intel, LANDesk, Management, Microsoft Windows, OS, Security, Servers, SQL Server
Composing a network-switches and routers
Sounds like you might have more of a software config problem to me. But for a network of that size I would suggest having your Satellite hookup go into a switch (like a netgear or linksys) and config that as the uplink then plug all other node into the small switch. I would stay away [...]
View Answer
| January 3, 2006 4:11 PM
Cabling, DataCenter, Desktop management applications, Hardware, Hubs, Network monitoring, Networking, Printers, Routers, Servers, Switches, Tech support
Sounds like you might have more of a software config problem to me. But for a network of that size I would suggest having your Satellite hookup go into a switch (like a netgear or linksys) and config that as the uplink then plug all other node into the small switch. I would stay away [...]
View Answer
| January 3, 2006 4:11 PM
Cabling, DataCenter, Desktop management applications, Hardware, Hubs, Network monitoring, Networking, Printers, Routers, Servers, Switches, Tech support
Vlans and seting them up
I think you need to be clearer on your requirements. By definition, a switch automatically creates separate collision domains for each physical port (assuming that there are multiple systems connected to a given port). So if that’s all you want to do, just leave the switch in its default state (VLAN1 is everywhere). Bear in [...]
View Answer
| January 3, 2006 1:27 PM
Cisco 3750, VLAN, VLAN hardware
I think you need to be clearer on your requirements. By definition, a switch automatically creates separate collision domains for each physical port (assuming that there are multiple systems connected to a given port). So if that’s all you want to do, just leave the switch in its default state (VLAN1 is everywhere). Bear in [...]
View Answer
| January 3, 2006 1:27 PM
Cisco 3750, VLAN, VLAN hardware
Need for Intrusion Detection System (IDS) or Intursion Prevention System (IPS)
First as a Bank they are not in compliance with PCI requirements if they do not have an IDS system. They really need to have an IDS. As for the first part of your question, can a well configured firewall act as an IDS, it depends on the Firewall and your IDS needs. Most Firewalls [...]
View Answer
| January 2, 2006 2:21 PM
Compliance, Firewalls, Forensics, Incident response, Intrusion management, Laws, Network security, Regulations, Security, standards, VPN, Wireless
First as a Bank they are not in compliance with PCI requirements if they do not have an IDS system. They really need to have an IDS. As for the first part of your question, can a well configured firewall act as an IDS, it depends on the Firewall and your IDS needs. Most Firewalls [...]
View Answer
| January 2, 2006 2:21 PM
Compliance, Firewalls, Forensics, Incident response, Intrusion management, Laws, Network security, Regulations, Security, standards, VPN, Wireless
Security & Digital Certificates
There are many services that can pose problems. It also depends on the underlying operating system that you are using. NIST has a good publication that should help you out on this “Guidelines on Securing Public Web Servers” http://csrc.nist.gov/publications/nistpubs/800-44/sp800-44.pdf I would also recommend that you look into a penetration test for your server. Let me [...]
View Answer
| January 2, 2006 11:22 AM
Biometrics, Digital certificates, Firewalls, Forensics, Identity & Access Management, Incident response, Intrusion management, Network security, provisioning, Security, Security tokens, Single sign-on, VPN, Wireless
There are many services that can pose problems. It also depends on the underlying operating system that you are using. NIST has a good publication that should help you out on this “Guidelines on Securing Public Web Servers” http://csrc.nist.gov/publications/nistpubs/800-44/sp800-44.pdf I would also recommend that you look into a penetration test for your server. Let me [...]
View Answer
| January 2, 2006 11:22 AM
Biometrics, Digital certificates, Firewalls, Forensics, Identity & Access Management, Incident response, Intrusion management, Network security, provisioning, Security, Security tokens, Single sign-on, VPN, Wireless
Different Network with One Domain Controller
Very sparse question – we probably need much more info for a great answer – so I will try for a good answer. A – if 5 nework locally is 5 client machines and one server, then you need a 8 port switch to connect them and the appropriate cabling between systems and switch. B [...]
View Answer
| January 1, 2006 12:48 PM
Networking
Very sparse question – we probably need much more info for a great answer – so I will try for a good answer. A – if 5 nework locally is 5 client machines and one server, then you need a 8 port switch to connect them and the appropriate cabling between systems and switch. B [...]
View Answer
| January 1, 2006 12:48 PM
Networking
Configuring local stroage network
1 Gb would equal 1024 Kb. If you subtract 10-15% for overhead, you’d be right in the ballpark for your transmission speed. Steve
View Answer
| December 30, 2005 9:16 PM
NAS, NIC, Storage network, TCP/IP, Windows XP, Ximeta Netdisks
1 Gb would equal 1024 Kb. If you subtract 10-15% for overhead, you’d be right in the ballpark for your transmission speed. Steve
View Answer
| December 30, 2005 9:16 PM
NAS, NIC, Storage network, TCP/IP, Windows XP, Ximeta Netdisks
Postfix and DNS
I did some lookups on your hingedmind.com. Is shows your reverse DNS pointing to an IP provided by charter.com. If you haven’t already, I’d check with charter to ensure tthey are not blocking port 25 for your outgoing mail. Your MX record looks to be OK, so I’m not sure why you are having a [...]
View Answer
| December 30, 2005 12:07 AM
Availability, Bind, DHCP, DNS, Enterprise Desktop, Linux, Network applications management, Network management software, Network protocols, Networking, Networking services, Protocol analysis, TCP
I did some lookups on your hingedmind.com. Is shows your reverse DNS pointing to an IP provided by charter.com. If you haven’t already, I’d check with charter to ensure tthey are not blocking port 25 for your outgoing mail. Your MX record looks to be OK, so I’m not sure why you are having a [...]
View Answer
| December 30, 2005 12:07 AM
Availability, Bind, DHCP, DNS, Enterprise Desktop, Linux, Network applications management, Network management software, Network protocols, Networking, Networking services, Protocol analysis, TCP
NMAP IN WIRELESS
NMAP is a network scanner for IT security administrators, but could also be used for evil. Here is a fairly detailed tutorial: http://linuxfocus.org/English/July2001/article170.shtml
View Answer
| December 29, 2005 11:57 PM
3Com, Active Directory, Availability, Avaya, Bandwidth, Benchmarking, Bind, Cabling, Cisco, DataCenter, Desktop management applications, DHCP, DNS, Fault isolation, General Directories, Hardware, Hubs, Interoperability, LDAP, Lotus Domino, Microsoft Windows, Mobile, Mobile security, Network applications management, Network management software, Network monitoring, Network testing, Networking, Networking services, NFS, Novell NDS, Performance management, Ping, Protocol analysis, Remote management, Routers, Software, Switches, Tech support, VoIP, WINS, Wireless
NMAP is a network scanner for IT security administrators, but could also be used for evil. Here is a fairly detailed tutorial: http://linuxfocus.org/English/July2001/article170.shtml
View Answer
| December 29, 2005 11:57 PM
3Com, Active Directory, Availability, Avaya, Bandwidth, Benchmarking, Bind, Cabling, Cisco, DataCenter, Desktop management applications, DHCP, DNS, Fault isolation, General Directories, Hardware, Hubs, Interoperability, LDAP, Lotus Domino, Microsoft Windows, Mobile, Mobile security, Network applications management, Network management software, Network monitoring, Network testing, Networking, Networking services, NFS, Novell NDS, Performance management, Ping, Protocol analysis, Remote management, Routers, Software, Switches, Tech support, VoIP, WINS, Wireless
Wireless Site Survey
You might try CC&N in the Pewaukee area, (262) 523-0299
View Answer
| December 28, 2005 4:36 PM
Networking
You might try CC&N in the Pewaukee area, (262) 523-0299
View Answer
| December 28, 2005 4:36 PM
Networking
Running out of IP addresses
You could do that.. If you would like take a look and run the numbers from this subnet mask calculator. http://www.cotse.com/networkcalculator.html put in the amount of hosts you think you will need and it will give you a mask that will work for you. If you are honestly getting that big I would recommend segmenting [...]
View Answer
| December 28, 2005 4:03 PM
DHCP, DNS, IPv4, Networking, Networking services
You could do that.. If you would like take a look and run the numbers from this subnet mask calculator. http://www.cotse.com/networkcalculator.html put in the amount of hosts you think you will need and it will give you a mask that will work for you. If you are honestly getting that big I would recommend segmenting [...]
View Answer
| December 28, 2005 4:03 PM
DHCP, DNS, IPv4, Networking, Networking services
VLANS IN SWITCHES
First what brand of switch are you using. To be able to talk from on Vlan to another you have to be able to switch layer 3 traffic. Layer 3 being Network (IP) on the OSI model. If you are using a Cisco, HP, or other switch that support Layer 3 routing it will work [...]
View Answer
| December 27, 2005 9:54 PM
Availability, Bandwidth, Hardware, Interoperability, Mobile, Mobile security, Networking, Switches, Tech support, Wireless
First what brand of switch are you using. To be able to talk from on Vlan to another you have to be able to switch layer 3 traffic. Layer 3 being Network (IP) on the OSI model. If you are using a Cisco, HP, or other switch that support Layer 3 routing it will work [...]
View Answer
| December 27, 2005 9:54 PM
Availability, Bandwidth, Hardware, Interoperability, Mobile, Mobile security, Networking, Switches, Tech support, Wireless
Digital Certificates
Private CA is for organizations that do not care to be digitally recognized by outside orgnaizations. It does not have a trusted root and so is not ‘trusted’ by other organizations. It does not preclude you from doing busines with anyone it is just a means of authenticating your organization. A Public CA is a [...]
View Answer
| December 27, 2005 7:02 PM
Access control, backdoors, Biometrics, Browsers, Current threats, DataCenter, Development, Digital certificates, filtering, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, Incident response, Intrusion management, Network security, Networking, provisioning, Security, Security tokens, Servers, Single sign-on, Spyware, SSL/TLS, Trojans, Viruses, VPN, Web security, Wireless, worms
Private CA is for organizations that do not care to be digitally recognized by outside orgnaizations. It does not have a trusted root and so is not ‘trusted’ by other organizations. It does not preclude you from doing busines with anyone it is just a means of authenticating your organization. A Public CA is a [...]
View Answer
| December 27, 2005 7:02 PM
Access control, backdoors, Biometrics, Browsers, Current threats, DataCenter, Development, Digital certificates, filtering, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, Incident response, Intrusion management, Network security, Networking, provisioning, Security, Security tokens, Servers, Single sign-on, Spyware, SSL/TLS, Trojans, Viruses, VPN, Web security, Wireless, worms
WIRELESS BRIDGES
Try changing the channels on both bridges, one on ch. 1 while the other on ch. 11, or something similar. Else, you might also want to consider updating the firmware on bridge in question
View Answer
| December 27, 2005 4:37 PM
3Com, Active Directory, Availability, Avaya, Bandwidth, Benchmarking, Bind, Cabling, Cisco, DataCenter, Desktop management applications, DHCP, DNS, Fault isolation, General Directories, Hardware, Hubs, Interoperability, LDAP, Lotus Domino, Microsoft Windows, Mobile, Mobile security, Network applications management, Network management software, Network monitoring, Network testing, Networking, Networking services, NFS, Novell NDS, Performance management, Ping, Protocol analysis, Remote management, Routers, Software, Switches, Tech support, VoIP, WINS, Wireless
Try changing the channels on both bridges, one on ch. 1 while the other on ch. 11, or something similar. Else, you might also want to consider updating the firmware on bridge in question
View Answer
| December 27, 2005 4:37 PM
3Com, Active Directory, Availability, Avaya, Bandwidth, Benchmarking, Bind, Cabling, Cisco, DataCenter, Desktop management applications, DHCP, DNS, Fault isolation, General Directories, Hardware, Hubs, Interoperability, LDAP, Lotus Domino, Microsoft Windows, Mobile, Mobile security, Network applications management, Network management software, Network monitoring, Network testing, Networking, Networking services, NFS, Novell NDS, Performance management, Ping, Protocol analysis, Remote management, Routers, Software, Switches, Tech support, VoIP, WINS, Wireless
Loadsharing between two ISPs
You might consider using the XINCOM XC-DPG602, what follows is a blurb from their web site. If your routing requirements are not too complex it should work fine. Overview – Inbound & Outbound Load Balancing The XiNCOM XC-DPG602 is a revolutionary DNS to IP Gateway that provides advanced networking services most commonly found in enterprise [...]
View Answer
| December 26, 2005 4:35 PM
Access control, Availability, backdoors, Bandwidth, Browsers, Cabling, Cisco, Current threats, DHCP, DNS, Ethernet, filtering, Firewalls, Forensics, Hacking, Hardware, Hubs, human factors, Incident response, Intrusion management, IPv4, Network security, Network testing, Networking, Networking services, Performance management, Routers, Servers, Spyware, SSL/TLS, Switches, TCP, Trojans, Viruses, VPN, Web security, Web site design & management, Wireless, worms
You might consider using the XINCOM XC-DPG602, what follows is a blurb from their web site. If your routing requirements are not too complex it should work fine. Overview – Inbound & Outbound Load Balancing The XiNCOM XC-DPG602 is a revolutionary DNS to IP Gateway that provides advanced networking services most commonly found in enterprise [...]
View Answer
| December 26, 2005 4:35 PM
Access control, Availability, backdoors, Bandwidth, Browsers, Cabling, Cisco, Current threats, DHCP, DNS, Ethernet, filtering, Firewalls, Forensics, Hacking, Hardware, Hubs, human factors, Incident response, Intrusion management, IPv4, Network security, Network testing, Networking, Networking services, Performance management, Routers, Servers, Spyware, SSL/TLS, Switches, TCP, Trojans, Viruses, VPN, Web security, Web site design & management, Wireless, worms
Connect two computers for data transfer
The first thing you need to do is, if you are connecting the computers without a hub, you must use a “crossover” cable. These can be obtained from any corner computer store or one of the big guys. Once you have the computers connected this way, the ret is pretty easy. Good luck Paul
View Answer
| December 23, 2005 7:51 AM
Networking
The first thing you need to do is, if you are connecting the computers without a hub, you must use a “crossover” cable. These can be obtained from any corner computer store or one of the big guys. Once you have the computers connected this way, the ret is pretty easy. Good luck Paul
View Answer
| December 23, 2005 7:51 AM
Networking
Adding two addtional SAN switches to the Fabric
Core / Edge is definitely the most versatile of the topology choices. It allows for easy scaling. Assuming you have HP – branded Brocade switches, consult their design guide: http://h20000.www2.hp.com/bizsupport/TechSupport/CoreRedirect.jsp?redirectReason=DocIndexPDF&prodSeriesId=406734&targetPage=http%3A%2F%2Fh20000.www2.hp.com%2Fbc%2Fdocs%2Fsupport%2FSupportManual%2Fc00403562%2Fc00403562.pdf Or you can find Brocade’s design guide on brocadeconnect.com Now, to merging the fabrics. I am assuming you have a redundant fabric right now. The [...]
View Answer
| December 23, 2005 6:58 AM
Brocade Switches, EVA5000, SAN, SAN switches, Switches
Core / Edge is definitely the most versatile of the topology choices. It allows for easy scaling. Assuming you have HP – branded Brocade switches, consult their design guide: http://h20000.www2.hp.com/bizsupport/TechSupport/CoreRedirect.jsp?redirectReason=DocIndexPDF&prodSeriesId=406734&targetPage=http%3A%2F%2Fh20000.www2.hp.com%2Fbc%2Fdocs%2Fsupport%2FSupportManual%2Fc00403562%2Fc00403562.pdf Or you can find Brocade’s design guide on brocadeconnect.com Now, to merging the fabrics. I am assuming you have a redundant fabric right now. The [...]
View Answer
| December 23, 2005 6:58 AM
Brocade Switches, EVA5000, SAN, SAN switches, Switches
Looking for good HIP.
You could try bluebox or Third Brigade, these are the best I have seen.
View Answer
| December 21, 2005 6:37 PM
Application security, backdoors, Biometrics, Compliance, CRM, Current threats, Database, Digital certificates, Disaster Recovery, Encryption, Exchange, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, Incident response, Instant Messaging, Intrusion management, Network security, Policies, provisioning, Risk management, Secure Coding, Security, Security Program Management, Security tokens, Single sign-on, Spyware, Trojans, Viruses, VPN, Wireless, worms
You could try bluebox or Third Brigade, these are the best I have seen.
View Answer
| December 21, 2005 6:37 PM
Application security, backdoors, Biometrics, Compliance, CRM, Current threats, Database, Digital certificates, Disaster Recovery, Encryption, Exchange, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, Incident response, Instant Messaging, Intrusion management, Network security, Policies, provisioning, Risk management, Secure Coding, Security, Security Program Management, Security tokens, Single sign-on, Spyware, Trojans, Viruses, VPN, Wireless, worms
Remote Syslog with MySQL and PHP
Dear Eduado, You could always try the process described at: http://www.linuxsecurity.com/content/view/117384/49/ which appears to walk you through exactly what you need to do. Iain
View Answer
| December 20, 2005 6:27 PM
3Com, Active Directory, Availability, Avaya, Bandwidth, Benchmarking, Billing and customer care, Billing Support Systems, Bind, Cabling, Cisco, Dell, Development, DHCP, DNS, Enterasys, Enterprise Desktop, Ethernet, Fault isolation, FDDI, Foundry, Frame Relay, H.323, Hardware, Hewlett-Packard, Hubs, IPv4, IPv6, Juniper Networks, Linux, Lucent, MPLS, MySQL, NetBIOS, Network management software, Network monitoring, Network protocols, Networking, Networking services, Nortel, Novell IPX/SPX, Performance management, Protocol analysis, Remote management, Routers, SIP, Switches, TCP
Dear Eduado, You could always try the process described at: http://www.linuxsecurity.com/content/view/117384/49/ which appears to walk you through exactly what you need to do. Iain
View Answer
| December 20, 2005 6:27 PM
3Com, Active Directory, Availability, Avaya, Bandwidth, Benchmarking, Billing and customer care, Billing Support Systems, Bind, Cabling, Cisco, Dell, Development, DHCP, DNS, Enterasys, Enterprise Desktop, Ethernet, Fault isolation, FDDI, Foundry, Frame Relay, H.323, Hardware, Hewlett-Packard, Hubs, IPv4, IPv6, Juniper Networks, Linux, Lucent, MPLS, MySQL, NetBIOS, Network management software, Network monitoring, Network protocols, Networking, Networking services, Nortel, Novell IPX/SPX, Performance management, Protocol analysis, Remote management, Routers, SIP, Switches, TCP
Digital Certificates-2
The bottom line is who the consumers of your certificates are. If all consumers are entities for which you can (securely) install the certificate of your CA in their list of trusted authorities, then you can use your own CA, otherwise, you need your certificates to be signed by an authority in the standard list(s) [...]
View Answer
| December 20, 2005 1:29 PM
Access control, backdoors, Biometrics, Browsers, Current threats, DataCenter, Development, Digital certificates, filtering, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, Incident response, Intrusion management, Network security, Networking, provisioning, Security, Security tokens, Servers, Single sign-on, Spyware, SSL/TLS, Trojans, Viruses, VPN, Web security, Wireless, worms
The bottom line is who the consumers of your certificates are. If all consumers are entities for which you can (securely) install the certificate of your CA in their list of trusted authorities, then you can use your own CA, otherwise, you need your certificates to be signed by an authority in the standard list(s) [...]
View Answer
| December 20, 2005 1:29 PM
Access control, backdoors, Biometrics, Browsers, Current threats, DataCenter, Development, Digital certificates, filtering, Firewalls, Forensics, Hacking, human factors, Identity & Access Management, Incident response, Intrusion management, Network security, Networking, provisioning, Security, Security tokens, Servers, Single sign-on, Spyware, SSL/TLS, Trojans, Viruses, VPN, Web security, Wireless, worms
