Welcome to Brendon Davis
The place where I’m in charge
CISCO QoS for Dummies
Autor brendon | 05.02.2010 | Category Comms, TechStuff
Hey, for all those out there who have as much trouble with the CISCO QoS implementation as I do…. Here are 4 no so easy steps to configure.
New version of ISA – FFTMG
Autor brendon | 14.12.2009 | Category Comms, Server, TechStuff
Well it has been a long time coming but Microsoft have finally released a new version of their awesome Internet Acceleration and Security (ISA) server. The last major upgrade was 2004 and since then the product has become a little long in the tooth. There are several new ways the internet is being used and ISA 2004/2006 in my opinion just couldn’t keep up.
Jump over to http://www.microsoft.com/forefront/threat-management-gateway/en/us/default.aspx and check out the details on Forfront Threat Management Gateway (FFTMG). Building on the new Windows Server 2008 network stack there are several new features that administrators (myself included) have been crying for:
- Support for dual/ failover internet links. (using a separate fibre service for remote access and publishing plus a DSL2 service for web access.)
- Publishing (Static NAT) rules apply to both inbound and outbound traffic. (ISA would always NAT outbound connections on default IP address.)
- Category based Access lists (requires additional licenses) to filter traffic for “Social Networking” or “Known Virus URL’s”.
- Support in a Hyper-V or ESXi or XenServer virtualised environments.
- ONLY RUNS on Windows Server 2008 x64 eddition!!!
The old ISA server team blog has been updated to reference TMG now also; there are half a dozen articles available here that may help with deployment considerations.
Awesome new AP at home
Autor brendon | 08.12.2009 | Category Comms, TechStuff
As a person that rents, I don’t have the option to use a patch panel and run CAT6 cables into each of my rooms. I am forced to live with ugly blue cables around the house or compete for spectrum with my neighbours using a wireless network. When I upgraded my MCE one of the components I added was a duel radio 802.11n (draft) PCI card with external antenna.
Once 802.11n was released as a certified standard, I started looking around for a new Access Point that would be able to support the HD video content I use around the house. Reading over the forums and reviews I came upon SmallNetBuilder and their review of the NetGear WNDR3700 Wireless GBit router.
The device ran duel radio’s 802.11abgn, had 4x GBit interfaces and wouldn’t break the bank. My current NetComm 3G18Wn was running 11n but only had 100Mbit ports and didn’t work properly with the iPhone. When I received the device I swapped it in place of the NetComm leaving all the wireless details the same.
- GOOD: One of the funky features is when using Windows 7, WINDOWS takes you through a wizard to configure and secure the access point. Simply put in the PIN from the bottom of the device, next, next, finish and your AP is configured.
- GOOD: All my existing devices connected without any hassles and transfers between the WHS and PC are much faster using the built-in GBit switch.
- GOOD: There are buttons on the front of the AP which let you enable and disable the wireless plus unlock it for several seconds to let a new device associate.
- BAD: My only problem with the device is that it expects to be the internet gateway for your network. If your lucky enough to have a CISCO 877 (with IPv6) as your DSL modem and firewall, the WNDR3700 cannot use a LAN address as the default gateway.
OPINION: Well the title says it all. If you don’t have a 11n access point at the moment, go pick up one of these. It associates at 300MBit and I get at least 80-90Mbit/s throughput over the wireless around home. It can stream WTV files to the MCE plus DVDs to the NetBook at the same time.
How not to use DHCP Superscopes
Autor brendon | 08.12.2009 | Category Comms, TechStuff
Have you ever needed to run several separate subnets on the same physical network (not VLANs) to use different routers?? A good example of this is a single Wireless network where you want to run more than 243 devices but you don’t want the overhead of a Class B subnet.
Simply create your Class C address ranges, each in a separate DHCP scope. Then select all the new scopes and add them to a new superscope. Now when any clients from this network request addresses, they will be sent any address from the appropriate range. More information is in KB161571.
What you don’t do is use Superscopes to group several VLAN’s at a single site. That just breaks stuff. (Trust me)
The Great Firewall of OZ
-
-
Subscribe to RSS Feed - 35mm (6)
- eBook (5)
- Personal (29)
- MyBike (5)
- Rant (58)
- TechStuff (101)
- 7 (6)
- CITRIX (3)
- Comms (8)
- HomeServer (25)
- MediaCenter (10)
- Server (12)
- ServerCore (4)
- Virtualization (5)
- VISTA (11)
- Clint Davis Clint’s Site
DAVIS.to The Davis web site
Exchange Server Pro Paul’s Exchange Info Site
Group Policy Center Alan’s Group Policy Info Site
I Started Something Long Zheng
Paul’s Esoteric Meanderings Paul *Anonymous
PenguinPunk.NET Dan’s Rant
Stealth Puppy Aaron Parker
