dat W10 anniversary update

dark mode
clocks on allthemonitors
linux subsystem

:notbad:

New Windows Server license model.
https://download.microsoft.com/download/7/2/9/7290EA05-DC56-4BED-9400-138C5701F174/WS2016LicensingDatasheet.pdf
:bitchsaywhat?:
:ohshit:
:nosir:

tbh I've never had to deal with licensing around here. How has it changed? (yes, too lazy to google previous licensing models)

It used to be per instance of the OS. If you have 3 Windows VMs and 2 Windows physical machines then you need 5 licenses. (Actually, for a while they allowed 2 VMs per license, so you'd actually only need 4 licenses in that example and you still had license enough to install another VM).

Now they're doing it by CPU core count...except they don't explain very clearly whether they're concerned about physical CPU cores or virtual ones. I have my ESXi hosts oversubscribed with VMs assigned twice as many cores as actually exist. Further, VMs migrate inside of host clusters as needed, so one day there might be 12 VMs on host A and 2 on host B, another day there might be 8 and 6, etc.

I know that we can't ask them to sell based on how much it costs them, but for fuck's sake, core count has no bearing on their costs or even their revenue except if I replace two servers with one more powerful one -- but what of higher clock speeds and other performance enhancements? Are they going to start charging for that shit? This is ridiculous.

One license per 2gb of RAM or 500gb of space, whichever is smaller.

Sent from my LG V10

One license per iSCSI link.

One license per GHz of clock speed...

In addition to one license per client that may connect to said server. See section 5 for fees related to over usage.

Sent from my LG V10

Per-client licensing is already a thing...Client Access Licenses are required for some roles and we have hundreds of them.

again, I don't deal with licensing :jester:

What you guys think?

Need to replace my moms laptop, a HP Pavillion DV5-1010US from 2008.

It will be $350 on Thursday, is this a worthy upgrade?

http://www.bestbuy.com/site/dell-inspiron-15-6-touch-screen-laptop-intel-core-i5-8gb-memory-1tb-hard-drive-black/5579395.p?skuId=5579395

i5 or i7 and 8gb or more is usually my recommendation. The only thing its missing is an SSD but for $350 hell yeah.

I'm also a fan of DellRefurbished.com if you don't mind a used machine. Paid about $300 out the door for an i7, 8gb, 500gb, backlit keyboard, Bluetooth, etc and its a Latitude 6000 series so they're made pretty well.

Sent from my LG V20

oh shit aint seen dat I will have to take a look

She don't do much, so the i5 8gb and 1tb would be fine for her IMO

Yeah that's plenty of machine for most people.

Sent from my LG V20

http://www.consumerreports.org/laptops/macbook-pros-fail-to-earn-consumer-reports-recommendation/

:blackkidooo:

Good thing i just bought ssd

now tear that bish apart and reseat cables and look for broken stuffs

fts

Got wifeh new laptop. I ain't having this McAfee shit. And win 10 won't let ya install security essentials. What's good av to use?

Sent from my SAMSUNG S7.

condoms

Ms security essentials is built into win10 it's called Windows defender now.

Sent from my XT1575 using Tapatalk

Yep, Defender = Essentials.

And McAfee gtfo

Sent from my LG V20

Ok, so I need help ASAP.

I forgot hwo to do this.

I have 2 devices that will be talking to each other over the WAN. Its 2 repeater stations that ping each other everfy few seconds to see which one is closer to the mobile unit that is trying to use it.

what my question is, I have a static IP address for each location with 2 useable IP's. How do I need to set this up so they can see each other? Would it be a Static route? Policy route? NAT entry? what?? I'm workign on this right as we speak and failing

I'm having trouble understanding...how are they talking to each other over WAN? If they are talking directly to each other then they are LAN, not WAN.

Can you post the IPs? You could obfuscate them to protect the innocent.

if they're in the same subnet, they should just see each other with no fanciness, right? I guess it depends on the setup.

Yup. No route needed, for example, if they are 172.16.2.8 and 172.16.2.201 with a netmask of 255.255.255.0. You could even remove the default gateway and they'd still talk to each other.

They are 2 different sites w 2 different static IP addresses from the ISP

But subnet is 255.255.255.252 for both

Sent from my SAMSUNG S7.

---------- Post added at 05:47 PM ---------- Previous post was at 05:46 PM ----------

Site 1 IP is 173.xxx.xxx.xxx
Sure 2 is 40.xxx.xxx.xxx

Sent from my SAMSUNG S7.

:hmm: Repeater stations not repeating the same LAN, but still need to talk to each other? Weird. To talk to each other through the WAN they don't need any special settings, but obviously they need routable IPs and no firewalls obstructing their way. The same default gateway that gets them out to the internet will get them to each other, though I guess it's possible that they could get different routes sometimes due to failures, delays, and traffic shaping.

Just to confirm: These are some sort of wireless (not necessarily wifi; I assume police stuff?) repeaters, and they are in range of each other on that wireless connection?

Can they be set with secondary IPs sharing a subnet on the wireless interface? For that matter, does the wireless interface already have an IP?

Heres what the deal is. Sorry for the late reply.

This county has 2 repeaters (2-way radio) that the officers have forever had to switch between the 2, depending on which was closer.
Well, we got everything upgraded over the lsat 3 weeks and now, the 2 new repeaters will be linkied together via DSL connections in each location. One in the courthouse in town, the other in the fire station in the other town. This allows the 2 repeaters to "talk" to one another over the DSL connections to constantly monitor where the officers cars are to see which tower is closer and the radios in the cars swap to whichever offers the best signal just like a cell tower. My problem is getting the 2 devices, which are hooked behind dsl modem/routers to see one another.

---------- Post added at 07:53 AM ---------- Previous post was at 07:48 AM ----------

The guy installing it all seems to think I can designate one of the ethernet ports on the modem/router to give it the public IP address that ISP has assigned (each location has a static IP with 2 useable public IP's. The modem takes up one of those addresses) and he just programs his device with that public IP address and all is well.

I was thinking I had to give the device an internal IP, then set up a route or NAT to have that internal IP be accesable when you ping the public IP..

I know what I want to do, and what I'm trying to say, but I can't say it right. I haven't networked anything in like 3 years and forgot what I need to do :(

---------- Post added at 07:57 AM ---------- Previous post was at 07:53 AM ----------

I'f I'm thinking right, I need to set up port forwarding. Get those 2 devices to operate on the same port (if that can be configured) and just do a simple port forward. correct?

ah, yeah. If you port forward the ports that you need to the IP of the repeater (do this on each end) then publicip:thatport will take you to that device.

I do this at home so I can ssh into a machine. By default if I try to ssh to my IP, it wouldn't know which machine to go to at my house. By port forwarding port 22 or something to the internal IP of my "server", I can now ssh to port 22 using my public IP and it will forward it to my server.

If that makes sense.

---------- Post added at 08:10 AM ---------- Previous post was at 08:09 AM ----------

I do this via my router since it's just a home setup. Not sure if you're using a router, or one built into the DSL modem, or what.

You could assign a private IP and forward a port, or you could use the extra public IP. Either way should work fine. Forwarding a port is more secure but could require more of your attention in the future.

Is there a standard practice for those? Can you check with other PD IT folks for which way is more common? I never worked with that situation when I was doing IT for the PD.

I am their IT, thats the bad part. THey have other vendors that support different equipment there, but for the most part, I'm the man. And for this, everybody is depending on me to get it right.

At the remote location (2nd repeater) there is only a Sagemcom 1704n modem/router. Which is capable of port forwarding. That 3mb/768 connection is there ONLY for the repeater. Nothing else will ever be on it.

As for the PD, they have a Sagemcom 4320, but it's bridged and their Sonicwall is doing the authentication. So I have to do the port fowarding in the Sonicwall, but the vendor that set it up is being douchey about giving the password out. Anyhow, That aside is it best to just do a port forward, or set up a VPN and let them communicate over that? The sonicwall at the office is already acting as a vpn as the patrol cars access software form the PD remotely.

The Kenwood KTI-3 is the box that I'm using to connect the 2 sites. And I believe it converts the traffic into UDP.. But there is very little configuring you can do.

If you can get the remote modem/router to use the VPN, that's more secure and then you can talk straight to the internal IP on the other side without forwarding.

If you don't use VPN then you'll have to let that port/IP through the firewall in addition to forwarding it on the router AFAIK

Maybe just tell the Sonicwall vendor to do it if they won't give you the password. Just say "I need traffic from the outside going to this port to reach my repeater at this IP" or attempt the VPN method. The VPN essentially drops the offsite repeater into the PD's network space without opening things up.

But, I'd have to have a vpn device on the remote repeaters end as well, correct? They don't want to spend any more money if they can help it.

Sent from my SAMSUNG S7.

possibly, unless the router can connect to a VPN, but I doubt it can. I'd say go into each router and forward the needed ports to the repeater's inside IP address. Then tell the Sonicwall peeps to let it through the firewall. I'm thinking that should get you what you need.

Let Rick weigh in. Lately I've done more desktop than networking.

https://uploads.tapatalk-cdn.com/20170209/0c6ee429fa9de1c98aaf96b32ad7b253.jpg


This is the only config I have inside the unit.

Sent from my SAMSUNG S7.

dat Windows XP

So that is the config of the repeater or the router? If that's the router then fak.

That is the only config I had inside repewter IP box. I've been. Reading on it all evening. Most ppl say I need VPN, then some.say no VPN needed. It has settings for unicast and multicast.

Sent from my SAMSUNG S7.

:uhohshrug: brb lemme go look at it tomorrow after work

Sent from my LG V20

I got told last night the guy that set up the current VPN between the cars and server was going to do it. Which is fine. He's already familiar w the sonicwall. I really wanted to do it just to learn

Sent from my SAMSUNG S7.

This is a system that needs to be simple and robust. Public IP or port forwarding would both be fine, but VPN is excess complication.

That 172.16 IP is private, not public. Port forwarding would definitely be needed for that.

yeah, VPN while being more secure, adds a layer of shenanigans

YayBo, can you meet up and watch the dude while he configures it or will it be done remotely?

I just left meeting with him. This is the plan as of right now. I'm going to configure the main device, which is behind the sonicwall, to see the 2nd device, which is behind nothing but a modem. That 2nd device will have simple port forwarding done (all ports since its the ONLY thing on that modem) so that it can Rx the packets. It won't be able to Tx back to the main because it's behind the firewall. Then I will call the sonic wall guy, and he will remote in and see what port the devices are communicating on and open that one on the sonic wall.
I may not have explained it very good....but it makes sense in my head

makes sense to me

:fistbump:

And yet another snag..
According to Kenwood, we were not putting the correct addresses in the repeater. It states that 1 entry in the screen I posted above has to be the local IP address. I assumed this would be the internal address. But, they said the subnet and gateway HAVE to be the same at both locations. So, what I did is had him program the 1st useable static IP address ISP assigned in slot 1, and the 2nd in slot 2. Now I have to call in and have the ip address at site 2 changed to the 2nd usable static address they assigned. I think...

Sent from my SAMSUNG S7.

http://appleinsider.com/articles/17/08/15/psa-thunderbolt-3-cables-longer-than-05m-generally-dont-support-usb-31-speeds

:insane:

Cliffs pls

USB-C/Thunderbolt/Active/Passive/3.0/3.1/wattage = very confuse

Pinche electronics

Stonehenge, you're probably seeing tickets about this...

User tries to sign in to mailbox and receives error "OwaUserHasNoMailboxAndNoLicenseAssignedException"

https://portal.office.com/AdminPortal/Home#/servicehealth/:/alerts/EX280059 says "We've identified that two separate processes are attempting to update a user at the same time, causing contention when applying their licence."

https://portal.office.com/AdminPortal/Home?ref=MessageCenter/:/messages/MC281145 is titled "Retirement of (Azure AD) Graph and license assignment operations and updates to license management APIs"

Gee, I wonder what the cause might be. :picardpalm:

Thanks, Microsoft!

So, may have jerb with Equifax. Had an interview today, it went very well IMO

...one thing that freaked me out tho was yesterday at my current jerb I got a 10% raise and an iPad Mini 2.

Weird how that happened the day before an interview. I took a half day today, wonder if they think something is up? We had 3 people quit last month...

Wonder if Equifax contacted them? IDK seems more than coincidence...

Good lord that seems like yesterday.

Already been with Equifax for 6 years now

:bitchin:

:notbad:

Hope to make that 10 year mark!

Went from Mainframe Security to Network Security, what a trip lol

I've been here for 14 years. :uhoh:

time flies, it's crazy!

I've been here for 14 years. :uhoh:

may makes 20 with ksp. good news i got about 4 to go since i got couple years of sick time.