Brian Stinar's questions

I would like to ban IP addresses after incorrect (RDP right now, soon to be VPN once I get that going) login attempts on a Windows Server 2008 R2 machine I help administer.

This answer specifically talks about ssh, which I'm not running.

This answer mentions terminal services and remote desktop.

No one specifically mentions VPN.

Will both of these apply to VPN? I'm a little bit uncertain about how Windows handles these different failed logins. It looks like these will be Logon Type: 10 (RDP) and Logon Type: 3 (VPN + terminal services...?) From what I understand about these tools is that they will have to parse the Windows Event Log to grab the incorrect logins, and then modify the Firewall rules.

I would like to try WinFail2Ban because I've used it in Linux before. Administering Linux (just SSH!) is WAY easier. Does anyone have experience with this? Will it work? I found ZERO questions with WinFail2Ban on serverfault.

Thank you very much for the help. I will simply start trying things, likely starting with WinFail2Ban. Since I am very new at Windows Server 2008, I wanted to post a question here first.

I have been trying to upgrade the RAM on my Dell PowerEdge 2800 unsuccessfully, likely because I do not know enough about RAM.

The RAM I got a hold of is labeled 2GB 2RX4 PC2-5300P-555-12-xx. When any of these new sticks are installed (in pairs, or singles, in any conceivable combination) I receive a 1-2-3 1-2 beep, and the screen stays black and my machine won't boot.

The RAM that presently works is labeled 1GB 1RX4 PC2-3200R-333-12-xx. After reading online, and talking to my friends, I think the issue is that I was trying to run 555 MHz RAM in this machine.

Honestly though, I have no idea if 5300P and 3200R are actually compatible types of RAM. Are they?

I've been reading about single and dual ranked RAM as well, but I don't think I've progressed far enough to even worry about the ranking yet...

I currently have 10 windows workstations setup that establish a VPN connection each to the same server and then each establish a RDP session. I would like to share a single VPN connection between these workstations, and then allow them to establish their individual RDP connections. Does this make sense?

I apologize if my question has already been answered. I tried looking online for solutions and did not see any. Most of my background is in software development - I am trying to learn more about systems administration.

I appreciate your time in reading this and helping me learn. Thanks.

I am attempting to configure a Cisco 678 because I am totally sick on my Actiontec. However, I am running into some problems. It seems as though the Cisco is able to train the line, but I am unable to ping out.

It is almost like I am not correctly configuring the device to grab it's IP using PPPoA (like my Actiontec.) The output from "show running" (below) makes me think this too.

Below are the commands I ran in order to configure this:

# en
# set nvram erase
# write
# reboot
# en
# set nat enable
# set dhcp server enable
# set PPP wan0-0 ipcp 0.0.0.0
# set ppp wan0-0 dns 0.0.0.0
# set PPP wan0-0 login xxxxx // My actual login
# set PPP wan0-0 password yyyyy // My actual password
# set PPP restart enabled
# set int wan0-0 close
# set int wan0-0 vpi 0
# set int wan0-0 vci 32
# set int wan0-0 open
# write
# reboot

Here is the output from a few commands I thought could provide some useful information:

cbos#ping 74.125.224.113
Sending 1 8 byte ping(s) to 74.125.224.113 every 2 second(s)
Request timed out

cbos#show version

Cisco Broadband Operating System
CBOS (tm) 678 Software (C678-I-M), Version v2.4.9 - Release Software
Copyright (c) 1986-2001 by cisco Systems, Inc.
Compiled Nov 17 2004 15:26:29
DMT FULL firmware version G96
NVRAM image at 0x1030f000

cbos#show errors
- Current Error Messages -
## Ticks        Module     Level      Message
 0 000:00:00:00 PPP        Info       IPCP Open Event on wan0-0
 1 000:00:00:14 ATM        Info       Wan0 Up
 2 000:00:00:14 PPP        Info       PPP Up Event on wan0-0
 3 000:00:01:54 PPP        Info       PPP Down Event on wan0-0
Total Number of Error Messages: 4

cbos#show interface wan0
wan0   ADSL Physical Port
       Line Trained
Actual Configuration:
  Overhead Framing:           3
  Trellis Coding:             Enabled
  Standard Compliance:        T1.413
  Downstream Data Rate:       1184 Kbps
  Upstream Data Rate:         928 Kbps
  Interleave S Downstream:    4
  Interleave D Downstream:    16
  Interleave R Downstream:    16
  Interleave S Upstream:      4
  Interleave D Upstream:      8
  Interleave R Upstream:      16
  Modem Microcode:            G96
  DSP version:                0
  Operating State:            Showtime/Data Mode
Configured:
  Echo Cancellation:          Disabled
  Overhead Framing:           3
  Coding Gain:                Auto
  TX Power Attenuation:       0dB
  Trellis Coding:             Enabled
  Bit Swapping:               Disabled
  Standard Compliance:        T1.413
  Remote Standard Compliance: T1.413
  Tx Start Bin:               0x6
  Tx End Bin:                 0x1f
  Data Interface:             Utopia L1
Status:
  Local SNR Margin:           19.0dB
  Local Coding Gain:          7.5dB
  Local Transmit Power:       12.5dB
  Local Attenuation:          46.0dB
  Remote Attenuation:         31.0dB
Local Counters:
  Interleaved RS Corrected Bytes:         0
  Interleaved Symbols with CRC Errors:    2
  No Cell Delineation Interleaved:        0
  Out of Cell Delineation Interleaved:    0
  Header Error Check Counter Interleaved: 0
  Count of Severely Errored Frames:       0
  Count of Loss of Signal Frames:         0
Remote Counters:
  Interleaved RS Corrected Bytes:         0
  Interleaved Symbols with CRC Errors:    1
  No Cell Delineation Interleaved:        0
  Header Error Check Counter Interleaved: 0
  Count of Severely Errored Frames:       0
  Count of Loss of Signal Frames:         0

cbos#show int wan0-0
WAN0-0  ATM Logical Port
        PVC (VPI 0, VCI 32) is configured.
        ScalaRate set to Auto
        AAL 5         UBR Traffic
        IP Port Enabled

cbos#show running
Warning: traffic may pause while NVRAM is being accessed
[[ CBOS = Section Start ]]
NSOS MD5 Enable Password = XXXX
NSOS MD5 Root Password = XXXX
NSOS MD5 Commander Password = XXXX
[[ PPP Device Driver = Section Start ]]
PPP Port User Name = 00, "XXXX"
PPP Port User Password = 00, XXXX
PPP Port Option = 00, IPCP,IP Address,3,Auto,Negotiation Not Required,Negotiable
,IP,0.0.0.0
PPP Port Option = 00, IPCP,Primary DNS Server,129,Auto,Negotiation Not Required,
Negotiable,IP,0.0.0.0
PPP Port Option = 00, IPCP,Secondary DNS Server,131,Auto,Negotiation Not Require
d,Negotiable,IP,0.0.0.0
[[ ATM WAN Device Driver = Section Start ]]
ATM WAN Virtual Connection Parms = 00, 0, 32, 0
[[ DHCP = Section Start ]]
DHCP Server = enabled
[[ IP Routing = Section Start ]]
IP NAT = enabled
[[ WEB = Section Start ]]
WEB = enabled

cbos# wtf...?