Mikael Grönfelt's questions

I've set up Windows Firewall on a Server 2012 R2 to always require IPSec Encryption for all Connection Security Rules.

I've then specified Inbound Rules for specific ports and services, and configured them with the action "Require the connections to be encrypted".

All these settings are done through Group Policy.

This works just fine for IPv4 connections, but not for IPv6 connections. I've tried both ICMP6 and TCP/UDP ports with the same result. Sometimes I can see blocks in the firewall logs (specifically for TCP ports, but not always for ICMP6).

I begin to wonder if IPSec Encryption is not supported with IPv6 in the Windows Connection Security implementation? I've tried researching this but not found anything to support this, other than old documentation for Windows Server 2003.

I might add that the use case in this case is Windows Clustering, which uses IPv6 for internal clustering communication. This could be disabled, but that's not supported by MS, so I would prefer not to go that way.

I don't really need the intraserver communication to be encrypted, but if I don't require encryption for all connection security rules (in the global firewall setting), single rules requiring encryption doesn't seem to work.

Or is it possible to not require encryption for all rules but only for some rules, for instance all communication on port 445?

I've added a few pictures to clarify the settings I'm using.

Global Firewall Setting:

Action setting in sample inbound rule:

I'm running a lab environment on my W8 laptop, using Hyper-V. I've set up a virtual switch that's internal, but I would prefer to give the internal machines access to the internet.

Ok, why not an external switch then? Well, for starters I only have one NIC and I move my computer between different locations (home, work, etc) so I've DHCP configured on the NIC and I don't want DHCP in the lab environment.

Is there any smart way to get internet access to the virtual network? Bridging the virtual and physical NIC doesn't seem to work any good. I've thought about running a virtual router connected to both the internal switch and an external switch (both Hyper-V virtual switches of course). But Before trying that I figured it might be an easier way?

Since the physical machine runs Win 8 there's no Routing and Remote Access feature on the machine, like it would be on a Win server box.

Any ideas on how to solve this?

I've deleted a mailbox and it's user in Exchange 2010. Now I'm getting the following warnings in the event log of the Exchange server:

Unable to update Mailbox SD in the DS. Mailbox Guid: a36def77-4743-471b-b67c-60a72f3f4f86. Error Code 0x8004010f

I've tried locating the mailbox by it's GUID, using the method described in this KB from MS:

http://support.microsoft.com/kb/555433

I can't find any corresponding mailbox, which is why I suspect that the GUID belonged to the deleted mailbox. The user who had the mailbox attached is deleted as well.

To make things worse I've also tried to use the primary mail adress of the deleted mailbox for a newly created distribution list, but that won't work. Users trying to mail that adress receive an NDR stating 5.1.1.

It seems like the mailbox somehow lives inside the Exchange server, but I really don't understand how or why.

I'm trying to use Powershell to change owner of a folder, recursively.

I'm basically using this code:

$acct1 = New-Object System.Security.Principal.NTAccount('DOMAIN\Enterprise Admins')
$profilefolder = Get-Item MyFolder
$acl1 = $profilefolder.GetAccessControl()
$acl1.SetOwner($acct1)
set-acl -aclobject $acl1 -path MyFolder

This will change ownership at the first level, but not for any subfolders or files. Is there a way to extend the scope to all content of MyFolder?

I need to install CPAN and some Perl modules automatically in a Scientific Linux (RHEL) installation script. Unfortunately the specific modules I want (at least one of them) cannot be found as RPM:s as far as I've seen.

So I need to install CPAN, configure it automatically (or with a config file) and then install the wanted modules (including dependencies) automatically as well.

This doesn't seem like a very unusual requirement, but I haven't seen any really good documentation on this. The problem is that whenever CPAN is launched for the first time an interactive configuration runs. Can this be skipped somehow? And how do I launch module installations directly from the command line?

The situation: I have an instance of MS SQL 2000 running on one server. On another server I've installed SQL Management Studio Express 2005. I can access the SQL 2000 server from Management Studio. I try to run a backup of a database, but when I try to add a backup destination I get the following error:

TITLE: Microsoft SQL Server Management Studio Express
------------------------------

Property BackupDirectory is not available for Settings        
'Microsoft.SqlServer.Management.Smo.Settings'. This property may not exist for this             
object, or may not be retrievable due to insufficient access rights.  
(Microsoft.SqlServer.Express.Smo)

Any ideas on how to fix this?

I need to find a way to automatically rename all files that are created within a specific directory on a Windows 2008r2 file server. This needs to be done more or less instantanously, so I can't have a scheduled job run every 5 minutes or so.

I've done some research and figured out that I may be able to do this by scheduling a task to trigger on WMI events signalling file creation, but I really don't know how to get started so I need some pointers.

To create a PS script that locates the file and renames it would be easy enough, but I really don't know how to trigger the script on the correct event.

I have a webserver running CentOS 5, with Apache 2 and PHP 5.3. At the moment the server is mainly used for development, so there's really no traffic to talk about. The server houses a couple of Drupal instances, a Mediawiki instance and a few static pages. It makes use of virtual hosts.

The problem is that I get really bad performance with Drupal and Mediawiki. Page execution times are somewhere between 5 and 15 s. The static pages work just fine.

I've enabled mod_forensics and I can see that requests are registered immediately, but then it takes 5-10 s before they are served, so the issue is somehow related to execution on the webserver.

I've installed the Devel module, that provides information about execution, in Drupal and it gives me figures like this.

Executed 59 queries in 62.86 milliseconds. Queries taking longer than 5 ms and queries executed more than once, are highlighted. Page execution time was 6215.2 ms.

So database performance doesn't seem to be an issue.

I've installed eAccelerator and turned on logging, it shows hits for almost all page requests, like this:

 EACCELERATOR hit: "/var/www/adqwww/includes/path.inc"

That should mean that the cache is in use, if I understand things right.

Now I've run out of ideas, I need to pinpoint more exactly what is happening, but I really don't know how to do that. Since both Mediawiki and Drupal are affected I assume that this is related to php, but I don't know how to look into it. Any help would be appreciated.

UPDATE: The problem has now been solved (I don't know if there's a proper way to mark the question as solved), it turned out to be a DNS issue, just as suggested below. I didn't understand that the SQL server needed to resolve the connecting web server. Thank's to everyone who took the time to answer this.

I'm trying to connect to an Alfresco server, via Webdav, from a Windows 7 client. I can create a web folder connection with the wizard, but there are three or more folder links created and none of them work, double clicking on them simply does nothing. One of the folders have the name that I specify in the wizard, the others are simply named as the server adress.

While surfing the net I've seen that others have experienced the same issue, but so far I haven't seen any solution or any explanation.

Edit: I might add that the client is running Windows 7 RC, build 7100.