As part of our firewall reimplementation, I have been struggling with understanding the exact port needs of the services on our hosts. Previously, I discussed a procedure for discovering all network shares being served by the servers you manage:
http://www.uvm.edu/~jgm/wordpress/?p=96
Today, I used this procedure as a jumping off point for discovering all servers using high-order [...]
I have been working on implementing the new “Terminal Services Gateway” service that will be released with Server 2008. In order to cluster TS Gateways, we need to have a network load balancing solution in place. Hardware solutions are supported, but getting access to those would be a pain. Thus, I am back to looking [...]
If your network is like ours (and I hope that it is not), your DNS server is happily accepting IPv6 address registrations, but your routers can’t makes heads or tails of all those packets with those long addresses on them. Is this a problem? You betcha’.
If a client (Windows Server 2008, Vista, or really just about [...]
Recently we changed the name of an application server (groan). This application has a web front end that requires SSL. See the problem yet? New name=certificate mismatch. To limit this issue, I plan to maintain both the new and old names in DNS, but how to prevent SSL from “breaking”? One solution would be to [...]
Here was a fun little exercise… in attempting to impose more restrictive firewall rules on our central Windows server subnets, I wanted to enumerate all of the servers which require “public” CIFS protocol access. Naturally we want to take a programmatic approach to save time.
Here is what I came up with… it is not the [...]
Ever have a guest you wish you could throw out of your house? The unresponsive lump of flesh that sits in your favorite chair, eating your food, using up your soap, smelling up the facilities, while contributing nothing to the household economy? I know I have, but unfortunately social decorum prevents me from acting on [...]