2007/11/28

You cannot invite anonymous participants to a Web conference in Communications Server 2007

Flight Deck : Publicly routable IP address needed for A/V Edge server

2007/11/27

可惡偷車賊

2007/11/26

System Center Operations Manager 2007 Training Videos

2007/11/25

OpsMgr, SCE And MOM Blog : System Center Essentials post RTM Hotfix Rollup released to the Web

OpsMgr, SCE And MOM Blog : System Center Essentials post RTM Hotfix Rollup released to the Web

Does the hotfix rollup apply to you?
If you already have Essentials installed this hotfix rollup does not apply to you.
If you already have Essentials installed and you experience the symptoms referred to in KB936339 or KB937467 please refer to those KB articles on how to obtain the hotfixes separately so that you can apply them in your environment.

Description of System Center Essentials 2007 post-release hotfix rollup

ReSearch This! - Rod Trent at myITforum.com

ReSearch This! - Rod Trent at myITforum.com
ReSearch This! is a common repository for sharing your knowledge on how to resolve alerts for Operations Manager 2007, System Center Essentials and Microsoft Operations Manager 2005. It provides a method to search the SystemCenterForum community repository for alert resolutions and to submit information to share how you have resolved alerts in your environment.
I like to think of this as shared “company knowledge” for the community at large.
These management packs are available for download at:
http://systemcenterforum.org/wp-content/uploads/ReSearchThisOpsMgr.zip (Operations Manager 2007 and SCE)

2007/11/23

CE 500 smartport

Smartport Roles

The Smartports are preconfigured switch ports that provide preset Cisco recommended network enhancements, Quality of Service (QoS) and security. Catalyst Express 500 series switches have a number of Smartport roles. Each port role is just a configuration template. With these templates, users can consistently and reliably configure essential security, availably, and QoS features with minimal effort and expertise. Smartport roles simplify the configuration of critical features.

The port roles are based on the type of devices to be connected to the switch ports. For example, the Desktop port role is specifically for the switch ports that are connected to desktop or laptop PCs.

Smartport Role	Description
Desktop	Apply this role to ports that are connected to desktop devices, such as desktop PCs, workstations, notebook PCs, and other client-based hosts. Optimized for desktop connectivity Configurable VLAN setting Port security enabled to limit unauthorized access to the network
Switch	Apply this role to ports that are connected to other switches. Configured as an uplink port to a backbone switch for fast convergence Enables 802.1Q trunking Configurable native VLAN
Router	Apply this role to ports that are connected to WAN devices that connect to the Internet, such as routers and Layer 3 switches with routing service capabilities, firewalls, or VPN Concentrators. Configured for optimal connection to a router or firewall for WAN connectivity Enables 802.1Q trunking Configurable native VLAN
IP Phone+Desktop	Apply this role to ports that are connected to IP phones. A desktop device, such as a PC, can be connected to the IP phone. Both the IP phone and connected PC have access to the network and the Internet through the switch port. This role prioritizes voice traffic over data traffic to ensure clear voice reception on the IP phones. Optimized QoS for IP Phone + Desktop configurations Voice traffic is placed on Cisco-Voice VLAN Configurable data VLAN QoS level assures Voice over IP (VoIP) traffic takes precedence Port security enabled to limit unauthorized access to the network
Access Point	Apply this role on switch ports that connect to non-Power over Ethernet (PoE) and PoE-capable wireless access points (APs). Connected to the AP are mobile devices, such as wireless laptop PCs. Configured for optimal connection to a wireless access point Enables 802.1Q trunking Configurable native VLAN Note: Functionality of Cisco Wireless Bridges are more similar to that of a switch. So, Cisco recommends the Switch smartport role for Wireless Bridges.
Server	Apply this role to ports that are connected to servers that provide network services, such as Exchange servers, collaborative servers, terminal servers, file servers, Dynamic Host Configuration Protocol (DHCP) servers, IP private branch exchange (PBX) servers, and so on. This role is for Gigabit or non-Gigabit ports, based on the server type to be connected. Configurable VLAN Port security enabled to limit unauthorized access to the network This role prioritizes server traffic as trusted, critical, business, or standard, based on the function of the server. Trusted—For use with Cisco CallManager Express. The same QoS setting as Voice (VoIP traffic is prioritized). Critical—For critical servers with QoS set higher than the default. Business—The default setting. QoS is higher than desktop Internet traffic. Standard—For servers set to the same level as regular desktop Internet traffic.
Printer	Apply this role on switch ports that connect to a printer, such as a network printer or an external print server. This role prevents printer traffic from affecting voice and critical data traffic. QoS settings for Printer are the same as Desktop, Access Point, and Standard Server Configurable VLAN Port security enabled to limit unauthorized access to the network
Guest	Apply this role to ports that are connected to desktop devices and to APs to provide guest wireless access. Guests are allowed access to the Internet, but not to the company network. All guest ports are placed on the Cisco-Guest VLAN. Port security enabled to limit unauthorized access to the network.
Other	Apply this role on switch ports if you do not want to assign a specialized role on the port. This role can be used on connections to guest or visitor devices, printers, desktops, servers, and IP phones. It allows for flexible connectivity of non-specified devices. Configurable VLAN No security policy No QoS policy
Diagnostic	Customers can connect diagnostics devices to monitor traffic on other switches (can be configured using Cisco Network Assistant only).

Catalyst Express 500 Series Switches Configuration Example - Cisco Systems

Catalyst 500 Series Switches Troubleshooting [Cisco Catalyst Express 500 Series Switches] - Cisco Systems

2007/11/15

You may experience network-related problems after you install Windows Server 2003 SP2 or the Scalable Networking Pack on a Windows Small Business Server 2003-based computer

You cannot host TCP connections when Receive Side Scaling is enabled in Windows Server 2003 with Service Pack 2

2007/11/13

Network Access Protection

2007/11/11

How to capture network traffic with Network Monitor

How to replace the current primary DNS server with a new primary DNS server in Windows Server 2003

Frequently asked questions about Windows 2000 DNS and Windows Server 2003 DNS

Frequently asked questions about Windows 2000 DNS and Windows Server 2003 DNS
DNS觀念釐清,好文分享

2007/11/08

指令OK !

dlsw icannotreach sap F0 @ HQ

2007/11/07

Cisco - Understanding Service Access Point Access Control Lists

Cisco - Understanding Service Access Point Access Control Lists:
Filtering NetBIOS
NetBIOS traffic uses SAP values 0xF0 (for commands) and 0xF1 (for responses). Typically, network administrators use these SAP values to filter this protocol. The access list entry shown below permits NetBIOS traffic and denies everything else (remember the implicit deny all at the end of each ACL):
access-list 200 permit 0xF0F0 0x0101
Using the same procedure shown in the previous section, you can determine that the above ACL permits SAPs 0xF0 and 0xF1.
On the contrary, if the requirement is to block NetBIOS and allow the rest of the traffic, use the following ACL:
access-list 200 deny 0xF0F0 0x0101
access-list 200 permit 0x0000 0xFFFF

IBM - 4690 OS and communication with S/390 using SNA via WAN with routers to provide 3270 sessions

IBM - 4690 OS and communication with S/390 using SNA via WAN with routers to provide 3270 sessions

Problem
I want to know the specific configuration to communicate to a 4690 OS store controller with IBM® Mainframe S/390® using SNA via WAN where routers are included, to provide 3270 sessions. How can we filter the messages from the POS system to permit only IP and SNA (3270 emulation) messages to be sent and received between locations? We do not want NetBIOS messages to exit from the store.
Two solutions to the IP and SNA WAN need are listed below. This LAN-WAN support is provided by the routers, and the only 4690 tuning required would be to review 4690 SNA timers for WAN delay implications. Search the Knowledgebase for "4690 OS Logical File Names" for information regarding LAN/SNA timers.1) Route IP and bridge SNA
Setting up a router to route IP and bridge SNA is feasible and is a normal capability of routers. It is recommended that other non-routable protocols be prevented from traversing the WAN, so filters might have to be put in place to Deny RPL, NetBIOS and TCC frames. If you are using SAP filters, the associated SAPs are:
0xF0 for NetBIOS Flows
0xE8 for TCC flows
0xF8 and 0xFC for RPL flowsConsult your router vendor documentation about how to set up this environment.2) Route IP and use Encapsulation Technique for SNA
Many router vendors provide an encapsulation technique to pass SNA data over the IP network. In IBM router products (2210, 2212, and 2216) two strategies are available:
Data Link Switch
Enterprise Extender Consult your router documentation for details about encapsulation techniques.