A particular IP range Cannot access internet through ISA 2006
According to this <a href=”http://blogs.technet.com/b/isablog/archive/2006/09/25/why-do-i-need-a-deny-rule-to-make-an-allow-rule-for-a-custom-protocol-work-correctly.aspx”>article from Microsoft</a> you could be getting denied because of application filters even though the firewall rule already has allowed it. They explain a fix would be creating a deny rule afterwords, Does this fit your scenario at all? http://blogs.technet.com/b/isablog/archive/2006/09/25/why-do-i-need-a-deny-rule-to-make-an-allow-rule-for-a-custom-protocol-work-correctly.aspx
View Answer
| February 7, 2011 4:22 PM
IP range, ISA, ISA 2006, ISA Server, ISA Server configuration
According to this <a href=”http://blogs.technet.com/b/isablog/archive/2006/09/25/why-do-i-need-a-deny-rule-to-make-an-allow-rule-for-a-custom-protocol-work-correctly.aspx”>article from Microsoft</a> you could be getting denied because of application filters even though the firewall rule already has allowed it. They explain a fix would be creating a deny rule afterwords, Does this fit your scenario at all? http://blogs.technet.com/b/isablog/archive/2006/09/25/why-do-i-need-a-deny-rule-to-make-an-allow-rule-for-a-custom-protocol-work-correctly.aspx
View Answer
| February 7, 2011 4:22 PM
IP range, ISA, ISA 2006, ISA Server, ISA Server configuration
Removing CDP numbers from switches
When you say “Numbers that have been CDP’d into the switch” are you referring to the auto-registration of your phones? If this is the case, going into your telephony-services config and adding “no auto-registration” will prevent the phones from “pre-registering” and allow you to add in the ephones / ephone-dns as you need to. OR, [...]
View Answer
| February 7, 2011 3:08 PM
CDP, DSC, Nortel CS 1000, RLI, Switches, Switching
When you say “Numbers that have been CDP’d into the switch” are you referring to the auto-registration of your phones? If this is the case, going into your telephony-services config and adding “no auto-registration” will prevent the phones from “pre-registering” and allow you to add in the ephones / ephone-dns as you need to. OR, [...]
View Answer
| February 7, 2011 3:08 PM
CDP, DSC, Nortel CS 1000, RLI, Switches, Switching
Service login on Windows Server 2003 standard server
Go into the Services admin tool on the server. Right click the service. Select properties. Select the log on tab. Change the account as required. Will need to restart the service for the chnage to occur. Make sure the account has the right level of access including Run As Service
View Answer
| February 4, 2011 5:55 PM
Login, Windows Login, Windows Server 2003, Windows Server 2003 Standard Edition, Windows XP
Go into the Services admin tool on the server. Right click the service. Select properties. Select the log on tab. Change the account as required. Will need to restart the service for the chnage to occur. Make sure the account has the right level of access including Run As Service
View Answer
| February 4, 2011 5:55 PM
Login, Windows Login, Windows Server 2003, Windows Server 2003 Standard Edition, Windows XP
Security certificate in Outlook 2003 and 2007
The error indicates that an access to the server is finding a certification with a name that does not match the one used to access the server. Often this is because the certification has the FQDN but the name used to access the server is the simple host name OR u have not trusted the [...]
View Answer
| February 4, 2011 7:11 AM
Outlook 2003, Outlook 2007, Security certificate, Windows 7
The error indicates that an access to the server is finding a certification with a name that does not match the one used to access the server. Often this is because the certification has the FQDN but the name used to access the server is the simple host name OR u have not trusted the [...]
View Answer
| February 4, 2011 7:11 AM
Outlook 2003, Outlook 2007, Security certificate, Windows 7
Pros & cons of SaaS security solutions?
Software as a service (SaaS), also known as “On-Demand Software” is a service to customers via the internet. SaaS delivers over a standards-based network called the Internet. The pros are…. Drives innovations in security and reliability; Softwares r always up to date; If it is needed, it is possible to add functions & applications rapidly; [...]
View Answer
| February 4, 2011 5:53 AM
Cloud Security, SaaS, SaaS and cloud computing, SaaS evalutaion, SaaS implementation, Web security, Web security software
Software as a service (SaaS), also known as “On-Demand Software” is a service to customers via the internet. SaaS delivers over a standards-based network called the Internet. The pros are…. Drives innovations in security and reliability; Softwares r always up to date; If it is needed, it is possible to add functions & applications rapidly; [...]
View Answer
| February 4, 2011 5:53 AM
Cloud Security, SaaS, SaaS and cloud computing, SaaS evalutaion, SaaS implementation, Web security, Web security software
Security audit of access within Active Directory 2008 network
Hi, I can suggest you the following that I already used myself with good results: <a href=”http://www.scriptlogic.com/Active_Directory_Auditing.asp”><b>Active Administrator</b></a> from Scriptlogic; and <a href=”http://www.scriptlogic.com/Active_Directory_Auditing.asp”><b>ADAudit Pus</b></a> from ManageEngine
View Answer
| February 3, 2011 10:29 PM
Active Directory, Active Directory 2008, Active Directory security, Network security, Network Security Management, Security Audit
Hi, I can suggest you the following that I already used myself with good results: <a href=”http://www.scriptlogic.com/Active_Directory_Auditing.asp”><b>Active Administrator</b></a> from Scriptlogic; and <a href=”http://www.scriptlogic.com/Active_Directory_Auditing.asp”><b>ADAudit Pus</b></a> from ManageEngine
View Answer
| February 3, 2011 10:29 PM
Active Directory, Active Directory 2008, Active Directory security, Network security, Network Security Management, Security Audit
Open IT Forum: Tell us your must-read IT blog or Twitter feed & earn 50 knowledge points!
<a href=”http://itknowledgeexchange.techtarget.com/sql-server/”>Mr. Denny</a> <a href=”http://blogs.technet.com/b/virtualization/”>MS Hyper-V Team blog</a>
View Answer
| February 3, 2011 5:10 PM
AS/400, Channel, CIO, CRM, Database, DataCenter, Development, Exchange, ITKE, ITKE Contests, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Open IT Forum, Oracle, SAP, Security, SQL Server, Storage, Virtualization, VoIP, Windows Server
<a href=”http://itknowledgeexchange.techtarget.com/sql-server/”>Mr. Denny</a> <a href=”http://blogs.technet.com/b/virtualization/”>MS Hyper-V Team blog</a>
View Answer
| February 3, 2011 5:10 PM
AS/400, Channel, CIO, CRM, Database, DataCenter, Development, Exchange, ITKE, ITKE Contests, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Open IT Forum, Oracle, SAP, Security, SQL Server, Storage, Virtualization, VoIP, Windows Server
Earn 50 knowledge points by tweeting out our iPad contest!
Thanks so far to members who’ve already shared the news on Twitter! I’ve added points to: <ul> <li>Saturno</li><li>Shillu13</li><li>BruceWayne</li><li>Slack400</li><li>Batye</li><li>AndreaF</li> </ul> You have until February 16th to qualify for the drawing! If you post a link to someone else retweeting your tweet about the contest, I’ll throw in 50 more points! Thanks! Melanie
View Answer
| February 3, 2011 3:53 PM
AS/400, Channel, CIO, CRM, Database, DataCenter, Development, Exchange, ITKE, ITKE Contests, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Oracle, SAP, Security, SQL Server, Storage, twitter, Virtualization, VoIP, Windows Server
Thanks so far to members who’ve already shared the news on Twitter! I’ve added points to: <ul> <li>Saturno</li><li>Shillu13</li><li>BruceWayne</li><li>Slack400</li><li>Batye</li><li>AndreaF</li> </ul> You have until February 16th to qualify for the drawing! If you post a link to someone else retweeting your tweet about the contest, I’ll throw in 50 more points! Thanks! Melanie
View Answer
| February 3, 2011 3:53 PM
AS/400, Channel, CIO, CRM, Database, DataCenter, Development, Exchange, ITKE, ITKE Contests, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Oracle, SAP, Security, SQL Server, Storage, twitter, Virtualization, VoIP, Windows Server
Central Windows Server to aggregate Windows security and audit logs
The most obvious answer to this is to use a 3rd party tool to do your log management. I would look at tools like Logrythmn, Splunk or Tripwire Log Center. Currently using Tripwire and it is an excellent tool once you have it configured does all sorts of Alerting via email etc not cheap but [...]
View Answer
| February 2, 2011 2:51 PM
Auditing software (security), Network security, Network Security Management, Windows Security, Windows Server, Windows Server Security, Windows Server Security Audits
The most obvious answer to this is to use a 3rd party tool to do your log management. I would look at tools like Logrythmn, Splunk or Tripwire Log Center. Currently using Tripwire and it is an excellent tool once you have it configured does all sorts of Alerting via email etc not cheap but [...]
View Answer
| February 2, 2011 2:51 PM
Auditing software (security), Network security, Network Security Management, Windows Security, Windows Server, Windows Server Security, Windows Server Security Audits
windows/system32/firewall.cpl error when opening control panel.
Probably, Rundll error says firewall.cpl is missing ! Please check one by one…. 1. Verify ur Internet connectivity; 2. Add the Windows Update Web site and the Microsoft Update Web site to the Trusted Sites list; 3. Make sure that Windows Firewall is turned on, and temporarily disable third-party firewalls; 4. Temporarily disable third-party antivirus [...]
View Answer
| February 2, 2011 4:44 AM
Firewalls, Windows firewall, Windows XP Professional, Windows XP Professional SP3
Probably, Rundll error says firewall.cpl is missing ! Please check one by one…. 1. Verify ur Internet connectivity; 2. Add the Windows Update Web site and the Microsoft Update Web site to the Trusted Sites list; 3. Make sure that Windows Firewall is turned on, and temporarily disable third-party firewalls; 4. Temporarily disable third-party antivirus [...]
View Answer
| February 2, 2011 4:44 AM
Firewalls, Windows firewall, Windows XP Professional, Windows XP Professional SP3
Free IT Book: Computer Incident Response and Product Security
Just answered <b>OWA connection problem with Exchange 2010</b> <a href=”http://itknowledgeexchange.techtarget.com/itanswers/exchange-server-8/”>here</a>. Another answer to <b>Cisco Catalyst and Juniper VLANs</b> <a href=”http://itknowledgeexchange.techtarget.com/itanswers/cisco-catalyst-and-juniper-vlans/”>here</a>. A tip to the question <b>Exchange 2003 IMAP Configured for VPN Only</b> <a href=”http://itknowledgeexchange.techtarget.com/itanswers/exchange-2003-imap-configured-for-vpn-only/”>here</a>. Another tip <b>OCS and AutoLogon BSOD Issues</b> <a href=”http://itknowledgeexchange.techtarget.com/itanswers/ocs-and-autologon-bsod-issues/”>here</a> About <b>Mitigating cloud server risks during DDoS attacks</b> , I <a href=”http://itknowledgeexchange.techtarget.com/itanswers/mitigating-cloud-server-risks-during-ddos-attacks/”>pointed [...]
View Answer
| January 31, 2011 10:19 PM
AS/400, Channel, CIO, CRM, Database, DataCenter, Development, Exchange, Giveaways, ITKE Contests, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Oracle, SAP, Security, SQL Server, Storage, Virtualization, VoIP, Windows Server
Just answered <b>OWA connection problem with Exchange 2010</b> <a href=”http://itknowledgeexchange.techtarget.com/itanswers/exchange-server-8/”>here</a>. Another answer to <b>Cisco Catalyst and Juniper VLANs</b> <a href=”http://itknowledgeexchange.techtarget.com/itanswers/cisco-catalyst-and-juniper-vlans/”>here</a>. A tip to the question <b>Exchange 2003 IMAP Configured for VPN Only</b> <a href=”http://itknowledgeexchange.techtarget.com/itanswers/exchange-2003-imap-configured-for-vpn-only/”>here</a>. Another tip <b>OCS and AutoLogon BSOD Issues</b> <a href=”http://itknowledgeexchange.techtarget.com/itanswers/ocs-and-autologon-bsod-issues/”>here</a> About <b>Mitigating cloud server risks during DDoS attacks</b> , I <a href=”http://itknowledgeexchange.techtarget.com/itanswers/mitigating-cloud-server-risks-during-ddos-attacks/”>pointed [...]
View Answer
| January 31, 2011 10:19 PM
AS/400, Channel, CIO, CRM, Database, DataCenter, Development, Exchange, Giveaways, ITKE Contests, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Oracle, SAP, Security, SQL Server, Storage, Virtualization, VoIP, Windows Server
Fill out your profile and add a picture to win an iPad
Profile updated! Free iPad me please
View Answer
| January 31, 2011 8:39 PM
Application security, Backup storage, Channel, CIO, CRM, Data management, DataCenter, Development, Exchange, ITKE, ITKE Community, ITKE Contests, Microsoft Windows, SQL Server, VoIP
Profile updated! Free iPad me please
View Answer
| January 31, 2011 8:39 PM
Application security, Backup storage, Channel, CIO, CRM, Data management, DataCenter, Development, Exchange, ITKE, ITKE Community, ITKE Contests, Microsoft Windows, SQL Server, VoIP
Securing SIP signaling without deteriorating VoIP traffic
SIP traffic can be secured at the transport layer by encrypting data using TLS over TCP. However, using TLS as a transport by itself only guarantees encryption over a single hop. Since it is very common for a SIP call to traverse multiple proxy servers from one end to the other, there is a need [...]
View Answer
| January 31, 2011 8:31 PM
Security, Security management, SIP Attacks, SIP Vulnerabilities, VoIP
SIP traffic can be secured at the transport layer by encrypting data using TLS over TCP. However, using TLS as a transport by itself only guarantees encryption over a single hop. Since it is very common for a SIP call to traverse multiple proxy servers from one end to the other, there is a need [...]
View Answer
| January 31, 2011 8:31 PM
Security, Security management, SIP Attacks, SIP Vulnerabilities, VoIP
Cisco Catalyst and Juniper VLANs
Hi, Try this: I’m considering that you already made a trunk on the Juniper port (with dot1q encapsulation) When it’s done, then do the same in the cisco Switch1#configure terminal create the vlans on the cisco add the access ports (for other switches or PC’s) to those vlans Enter configuration commands, one per line. End [...]
View Answer
| January 31, 2011 7:21 PM
Cisco Catalyst, Cisco Catalyst 3550, Cisco VLAN, IOS Fundamentals, Juniper NetScreen-25, ScreenOS, VLAN
Hi, Try this: I’m considering that you already made a trunk on the Juniper port (with dot1q encapsulation) When it’s done, then do the same in the cisco Switch1#configure terminal create the vlans on the cisco add the access ports (for other switches or PC’s) to those vlans Enter configuration commands, one per line. End [...]
View Answer
| January 31, 2011 7:21 PM
Cisco Catalyst, Cisco Catalyst 3550, Cisco VLAN, IOS Fundamentals, Juniper NetScreen-25, ScreenOS, VLAN
Exchange and TMG 2010 port numbers
The ports you are referring to are both secure ports. One for IMAPS (993) and the other for POP3S (995) If you are using TMG to reverse proxy your Exchange Server(s), you should open access to these protocols in order that anyone with the correct permissions can connect to your Exchange from the outside. As [...]
View Answer
| January 31, 2011 12:05 AM
Exchange 2010, Microsoft Forefront TMG 2010, Port numbers
The ports you are referring to are both secure ports. One for IMAPS (993) and the other for POP3S (995) If you are using TMG to reverse proxy your Exchange Server(s), you should open access to these protocols in order that anyone with the correct permissions can connect to your Exchange from the outside. As [...]
View Answer
| January 31, 2011 12:05 AM
Exchange 2010, Microsoft Forefront TMG 2010, Port numbers
Active directory with Uniface
Compuware provides an LDAP connector so Uniface can read LDAP data. It is up to the developer of the Uniface application to do something usefull with this data. Search the Uniface documentation (ulibrary.chm) for LDAP to find out more.
View Answer
| January 30, 2011 12:23 PM
Active Directory, Authentication, Uniface, Windows Server 2008
Compuware provides an LDAP connector so Uniface can read LDAP data. It is up to the developer of the Uniface application to do something usefull with this data. Search the Uniface documentation (ulibrary.chm) for LDAP to find out more.
View Answer
| January 30, 2011 12:23 PM
Active Directory, Authentication, Uniface, Windows Server 2008
Adding Watchguard static IP for new Exchange server
Where are you configuring that second IP address? You should be able to configure IT in the IP Protocol inside the NIC configuration. Adapter Settings->TCP/IP v4->Advanced->IP Settings -> Add HTH
View Answer
| January 28, 2011 12:13 AM
Exchange 2007, Exchange 2007 administration, WatchGuard
Where are you configuring that second IP address? You should be able to configure IT in the IP Protocol inside the NIC configuration. Adapter Settings->TCP/IP v4->Advanced->IP Settings -> Add HTH
View Answer
| January 28, 2011 12:13 AM
Exchange 2007, Exchange 2007 administration, WatchGuard
Network Security appliances
many appliances provide multiple interfaces that you can configure for monitoring. Are you interested in protection at the edge? Across multiple VLANs? Consider whether you are interested in control from outside in or both directions. Also remember a single appliance is also a single point of failure. Most have the ability to fail open so [...]
View Answer
| January 27, 2011 2:19 PM
Cisco switches, Network security, Network security appliances, Security
many appliances provide multiple interfaces that you can configure for monitoring. Are you interested in protection at the edge? Across multiple VLANs? Consider whether you are interested in control from outside in or both directions. Also remember a single appliance is also a single point of failure. Most have the ability to fail open so [...]
View Answer
| January 27, 2011 2:19 PM
Cisco switches, Network security, Network security appliances, Security
Managing Orphaned SIDs on AD objects
Security Explorer will allow you to centrally discover and remove Orphaned SIDs. www.securityexplorer.com
View Answer
| January 26, 2011 10:26 PM
Developers, Development, Exchange security, Security, Windows
Security Explorer will allow you to centrally discover and remove Orphaned SIDs. www.securityexplorer.com
View Answer
| January 26, 2011 10:26 PM
Developers, Development, Exchange security, Security, Windows
Setting up drive configuration for virtual Windows Server 2003
Hello, Based on the number of machines, you will need a good performance to handle the load. (You don’t refer what OS’es or Services like Exchange, SQL, etc. you will install on them. This might prevent the scenarios below. If this is for a home/testing lab I suggest: 1 drive for the OS 4 configured [...]
View Answer
| January 25, 2011 5:46 PM
Configuration management, SCSI, Server virtualization, Windows Server 2003, Windows Virtualization
Hello, Based on the number of machines, you will need a good performance to handle the load. (You don’t refer what OS’es or Services like Exchange, SQL, etc. you will install on them. This might prevent the scenarios below. If this is for a home/testing lab I suggest: 1 drive for the OS 4 configured [...]
View Answer
| January 25, 2011 5:46 PM
Configuration management, SCSI, Server virtualization, Windows Server 2003, Windows Virtualization
