How can one read the content of a .sst file uisng PowerShell? I know about Get-ChildItem and the cert drive, but how can I read from a .sst file instead of the Windows internal certificate stores?
I have a system with 2 network adapters: a wifi card (atheros) and an ethernet card. Both network adapters are recognized by pfsense 2.1 without problems, but I don't know how to configure it:
I want to use the wifi card as LAN interface, the ethernet card as WAN (DSL modem will be connected to it). During the first boot of pfsense I can assign the wifi card as LAN interface, but of course I can't access the pfsense system, as the WLAN itself is not yet configured.
So, what's the way to go here?
I am using pfSense 2.0.2 and want to set up a failover between my normal WAN connection (GW_WAN) and a 3G surfstick (GW_OPT8). I put both in a gateway group called WAN_FAILOVER:
GW_WAN Tier1 (Monitor IP 8.8.4.4)
GW_OPT8 Tier2 (Monitor IP 8.8.8.8)
Trigger level is member down.
Additionally I enabled "Allow default gateway switching" in System - Advanced - Miscellaneous. In the firewall rules on the VLAN interface where my compuster is connected to, I have set the WAN_FAILOVER group as gateway.
For testing the failover I removed the WAN (GW_WAN) ethernet cable. System log then looks like this:
Jan 12 19:42:32 php: : MONITOR: GW_WAN is down, removing from routing group
Jan 12 19:42:32 php: : Default gateway down setting GW_OPT8 as default!
Jan 12 19:42:19 apinger: ALARM: GW_WAN(8.8.4.4) *** down ***
Routing table also gets updated:
default 10.64.64.0 UGS 0 184 1492 ppp0
Any idea why it isn't working? Thanks!
I need to migrate a linux machine to some kind of router distribution, I've chosen pfSense for this. The problem is that the WAN configuration used on the linux machine is really crappy, however this can't be changed right now. Current configuration:
auto eth2
iface eth2 inet static
address 123.123.123.1
netmask 255.255.255.255
network 123.123.123.1
broadcast 123.123.123.1
up route add -host 123.123.123.4 eth2 || true
up route add default gw 123.123.123.4 eth2
The crappy thing on this is that it routes from eth0 to eth2, eth0 is a 123.123.123.0/24 subnet and eth2 uses 123.123.123.4, so an IP out of the subnet of eth0, as next hop. I tried getting this configuration to work using pfSense, therefore:
// pfSense WAN configuration
static IP: 123.123.123.1/24
gateway: 123.123.123.4
This seems to work, however I had to use a /24 net, while on the original linux configuration, there is a /32 on the WAN side. Is this any problem? What's the practical difference between this? I couldn't use /32 on the pfSense WAN, as pfSense expects the gateway to be in the subnet of the WAN IP.
Update:
My current configuration now looks like this:
// pfSense WAN configuration
static IP: 123.456.789.1/29
gateway: 123.456.789.4
// pfSense LAN configuration
static IP: 123.456.789.1/24
- NAT is disabled
When using this configuration I can't access the web interface anymore, it works again when I reset the WAN IP - anyone knows how to get the routing working / access the webinterafce with this configuration? I know this config sucks, but as WAN and LAN are different interfaces, shouldn't pfSense be able to distinguish between them?
I want to convert a physical machine to a virtual machine using VMware vCenter Converter. According to the product page of VMware vCenter Converter I should be able to create a virtual machine for ESXi, however during the conversion wizard I can only choose various versions of Workstation, Fusion, Player and Server as target type, not ESXi?
I am using Listserv 15.5 and I would like to use a mailing list address as editor mail address, however Listserv explicitely warns one from using a mailing list address:
Important Note: The first editor MUST be an email address that goes to a person, not a file server, list server, mailer, or other automated email address. Specifying a program's mailbox as the primary editor could result in a mailing loop for which L-Soft international, Inc., could not be held responsible.
What does it mean, that there could be a loop? In which cases? If I enter a mailing list address that doesn't send automatic replies, it shouldn't be a problem, right?
I am using Asterisk 1.8.10.1 and a MySQL database connected via ODBC to store CDRs. When my MySQL database isn't available when Asterisk starts or has an outage while Asterisk is running, I would expect Asterisk to retry to connect to the database, but this doesn't happen! Anyone knows where I can enable some kidn of automatic reconnect to databases in Asterisk?
My res_odbc.conf looks like this:
[asterisk]
enabled => yes
dsn => asterisk-connector
username => user
password => pass
pre-connect => yes
pooling => no
limit => 1
idlecheck => 1
negative_connection_cache => 1
As it's dangerous to accidentally look in a fiber optics, what does one normally use as a protection to this while working with fiber optics? Are there safety glasses for such things? How is that problem handled in practice?
If using a RAID 1 and if there are any inconsistencies between both disks found, data is copied from the primary disk (most likely the one with the lower port number) to the secondary disk.
1) But what if the primary disk is damaged and therefore data differences between both disks exist only due to hardware failures in the primary disk? Will then faulty data be synced to the secondary disk? Are there checksums on modern HDDs to make sure that something like this does not happen?
2) What if I build a RAID 1 from 2 USB-Sticks? Are there any mechanisms on USB-Sticks to detect read problems, so that damaged data won't get synced by the RAID to the other USB-Stick and maybe even overwrite data that is OK? Does a RAID 1 of USB-Sticks (for an embedded system) make sense at all or will they probably fail at around the same time due to the limited write endurance?
Given a network structure like this:
client 1 \
. \
. switch -- firewall
. /
client n /
(in words: all clients connected to one switch and the switch connected to the firewall)
Is it possible (on the firewall) to identify the physical port on the switch that a client used?
Background: There's some simple MAC authentification for the clients, there can only be 1 person responsible for what happens an a switch port (because there is just one RJ45 connector per room and 1 person who owns the room). However, it would be possible to fake the MAC address, then I wouldn't know from which room the data is coming, however I need to know this for sure in case of abuses. Is this possible without vlans? Thanks for any hint!
Given n (e.g. 200) clients in a /24 subnet and the following network structure:
client 1 \
. \
. switch -- firewall
. /
client n /
(in words: all clients connected to one switch and the switch connected to the firewall)
Now by default, e.g. client 1 and client n can communicate directly using the switch, without any packets ever arriving the firewall. Therefore none of those packets could be filtered. However I would like to filter the packets between the clients, therefore I want to disallow any direct communication between the clients.
I know this is possible using vlans, but then - according to my understanding - I would have to put all clients in their own network. However I don't even have that much IP addresses: I have about 200 clients, only a /24 subnet and all clients shall have public ip addresses, therefore I can't just create a private network for each of them (well, maybe using some NAT, but I'd like to avoid that).
So, is there any way to tell the switch: Forward all packets to the firewall, don't allow direct communication between clients? Thanks for any hint!
Given a computer with 2 network cards, one for WAN, the other one for LAN and some public IPs 123.1.2.0/24. Now the computer shall connect all LAN clients to the outside, without NAT or any further filtering (except for limiting internet access from some specified clients by MAC address, but that's not my problem). So, I disabled NAT and assigned 123.1.2.0/24 to the LAN interface. Now I am little bit confused: What will be the WAN address in this case?
Thanks for any hint and sorry for this probably noobie question, but at the moment I simply don't get it ;-)
By default Windows Installer uses the largest drive for temporary storage, no matter if that's needed (meaning there would also be enough space on the system drive).
Taken from http://msdn.microsoft.com/en-us/library/aa371372%28VS.85%29.aspx:
During an administrative installation the installer sets ROOTDRIVE to the first connected network drive it finds that can be written to. If it is not an administrative installation, or if the installer can find no network drives, the installer sets ROOTDRIVE to the local drive that can be written to having the most free space.
Now my system drive is an SSD, my largest drive is a RAID, that spins down when it's not used. Remember the SSD as system drive? Everything is silent now! Until I install something and Windows Installer wakes up my RAID again just to put a small .tmp file on it... How can I prevent Windows Installer from using the largest drive as temporary storage? Can I maybe set some access rights to disallow the Windows Installer to write on my RAID drive? Any other ideas? Thank you!
Assume computer A and B have established a TCP connection, now the according applications on both computers don't send any data for maybe 10 seconds (*). During this 10 seconds, is there anything flowing physically that is holding up the connection or is "a and b have an opened network connection" just a software based state on both computers? Thanks for any hint!
(*) Further assume the timeout is defined as e.g. 20 seconds, so the connection doesn't get broken.
I am looking for a official source for windows checksums (in my special case windows xp). Normally I use the "Microsoft Benefit Portal" for that, but seems like it's gone, at least I can't find it anymore using google ): Anyone knows where to find the checksums on the microsoft website? Thanks :-)
I am wondering, what is the best way to automatically update a new installation of Windows (Windows 7)?
When I manually update a new install of Windows 7 SP1, I get about 45 updates. Installing those is not the problem, but after installing those, up come new updates. One installs them and then again: new updates and so on. All together it takes a long time - and you have to come back every few minutes to check for new updates and install them.
So, how is that done in business / how to automate this? Is WSUS a good way for this or does it only cache updates locally?
Using WSUS, is it possible to force immediate install of updates, reboot and install more updates automatically?
WSUS wouldn't help me, if updates are only installed when the system is shutdown, because then it again would require user interaction (shutting down the system, wait for reboot, shutdown again...).
Thanks for any hint!
Not being a network expert, I spent some time configuring my network, until I found my mistake: On my HP ProCurve Switch 1810G, I thought that "Admin mode" means whether the administrative interface can be accessed from this port. Well, it means whether the port is enabled or not. Extract from the help function:
Admin Mode - Select to enable the port-control administration state. Click to enable and have the port participate in the network.(Default : Enabled )
Well, of course I didn't read the help, because I didn't doubt it's for the adminsitrative interface and suspected an error somewhere else.
Anyway, I am wondering if that is a commonly used term for enabling/disabling ports or if HP just wanted to make my life harder? I can't understand why this option isn't just called "Enable port"!?
Here's a screenshot of how it looks in the web interface (yeah, shame on me for using a web interface)
I want to setup a small ESXi server, which has to be silent, therefore I will use a SSD drive, however I am not sure which one I shall use and which parameters of a SSD are important for usage with ESXi?
I am thinking on one of these (price rougly the same, capacity enough for me)
- OCZ Onyx 32GB
- Intel SSD 320 Series 40GB
- OCZ Vertex 30GB
- Kingston SSDNow V-Series 30GB
For example the Onyx is faster in writing than the Tntel SSD, but the Intel SSD performs better on 4K, but I have to admit I have no clue whether 4K is important for ESXi! The Kignston seems to have an agressive cleanup / trim like behaviour built-in maybe that's useful because ESXi supports no trim?