@quicky2g said:

@dafyre said:

@Jason said:

... require more fees for more throughput being used on the same device.

This is what drives me crazy about companies these days... Let me pay for a box that is sized for the network I want. If it can handle more than my current bandwidth, great! Don't make me buy a paper license just because I have a 300Mbit internet connection and your box is rated for 200 megs, but I am aactually seeing the full 300.

This is why I prefer to build my own firewall... Shorewall + Snort (or Suricata) + DansGuardian +ClamAV = Win. (Or you can just use pfSense)... Gotta build a beefy box to make it all run nice and smooth and not choke your internet.... But still probably a far cry cheaper than Palo Altos, et al.

You must have loads of fun troubleshooting all those individual systems when something is blocked that shouldn't be.

Ha ha ha. Nope. If it's a website, it's DansGuarian. If it's an App, then it is Snort / Suricata blocking it. 🙂 (In my last build, I used Suricata to block the applications we didn't want on the network).

If it's not Snort / Suricata, then it's the Firewall not allowing outgoing ports.

Another great example of... can we trust closed source devices?

So the exclusions I've had to add to get everything "functional" are listed below.

File System Shield

C:\Program Files (x86)\Meraki\m_agent_upgrade.exe

C:\Program Files (x86)\Meraki\meraki-ca-bundle.crt

C:\Program Files (x86)\Meraki\ndisscan.exe

C:\Program Files (x86)\Meraki\README-winvnc.txt

C:\Program Files (x86)\Meraki\screenshot-cmd.exe

C:\Program Files (x86)\Meraki\windows-wlan.exe

C:\Program Files (x86)\Meraki\winvnc.exe

Mail Shield

Inbound Mail - Un-check 'Scan inbound mail (POP3, IMAP4)' (UltraVNC)

Web Shield Process Exclusions
The same processes as in File System Shield

This is all I did to get mine working on windows 10 http://itthatshouldjustwork.blogspot.com/2015/07/cisco-64-bit-vpn-client-on-windows-10.html

There is not an up to date client, Cisco VPN is EOL'd It was replaced with Cisco AnyConnect

@Jason said:

@scottalanmiller said:

Not crazy that it is not enforced. Lots of licensing depends on trust.

I meant crazy that a CCIE guy at a reseller would say that on record.

It's crazy that he gave that advice on record. Or at all.

i really find an excellent course of CCNA, really awesome explanation ...
http://www.freeccnastudyguide.com/study-guides/ccna/
can anyone tell me whether it is the latest CCNA V5 or not ??
because they didn't mention the version

@chrislaz8592 did you get this working or do you need additional assistance?

It is actually pretty difficult comparatively to other systems. I have worked with more than a few and I am not a fan of the complexity there.

SuperMicro is beginning to make the lines between Tier 1 and Tier 2 blurry as they increase their level of engineering on their products and begin to offer more and more enterprise class support for their products.

We already are using powershell, albeit from the US to an overseas office.

We don't have an IT guy on site for the remote site, it's all Contract Support. I'm uncertain as to why it was fully deployed, rather than a core installation.

"Easier management of the server" was probably the response to the question.

@JaredBusch said:

@mlnews said:

Cisco routers in four countries have been discovered to have a SYNful malware variant creating back doors in them

I read about this already, but that neither that article nor the one you linked state clearly how the routers had the malware loaded onto them other than to state they were logged into with default credentials.

I've been wondering about that myself. Was this factory loaded, loaded from a shipping location, at customs, simply through online attacks.... any potential options.

http://www.cnet.com/news/12-organizations-say-vp8-infringes-patents

We use a lot of Cisco here, I don't care for their routers but I like their switches. The routers are going by bye because we are dropping standard internet connections and getting Ethernet (fiber) from every location in to a colo datacenter and then putting some virtual Palo Alto Router/Firewalls there.

+1 for not being yet another person who just gives up on quality and melts their brains with Sonicwall

The best line: There is little more terrifying than watching a 300K storage device launch a windows PXE installer.

It just blow my mind that people would trust Cisco with storage (or servers.) But a $300K storage device? Ouch. And one that installs anything it sees on the network by default? What is driving people to even talk to a networking company to be their SAN vendor?

Ended up finding this

Enhanced PoE use Cisco Discovery Protocol to auto-negotiate a power level in excess of 15.4W per port.
The Cisco Enhanced PoE switch informs the powered device (PD) of the power level it is capable of providing, and the powered device then selects the appropriate power level.

http://www.cisco.com/c/en/us/products/switches/epoe.html

So it may even need to by a Cisco Branded device... Ugh. Cisco!!! Why???

You could probably sell it on eBay for $25 or something, if that's not worth it to you, try Craigslist, and if no responses, take it apart for fun or donate it to a school or something if it still works.

@jasonh said:

If you have an old PC laying around (or find one on kijiji for < $50), put two network cards in it and install pfSense. If you're concerned about power consumption, find a Pentium 3; they draw very little power. If space is an issue and you don't mind spending a few $ (< $200), get an Alix board/case/power supply.

I gave up on consumer routers a while ago. I found mine would choke every time someone started doing a portscan or other weird hacking/scanning attempts on the cable network. I still use a D-Link wireless router for my Wifi access, but it's running openwrt and it's just a bridge between the WLAN and LAN (WAN port is not in use)

Note, I had the "choking" issue on my D-Link and Linksys routers even while they were running openwrt; I think the small CPU's in them just couldn't handle dropping all the packets and while continuing to serve legitimate traffic

My Cisco E3000 running dd-wrt has yet to go down in almost 4 days. Before, it was every 4 hours with my network. No exaggeration. When you host your own website out of the location too, that's really bad. But I know what you mean. The OEM firmware sucks on almost all consumer stuff. Netgear Genie is the best of the lot that I've seen but still pales in comparison to dd-wrt, which I swear by.

@scottalanmiller I got to see the Pixel. I still would prefer the newest HP 14" Chromebook though, speakers sound better than the rest I have seen. Acer's touch capability is nice, but that's not something I need nor want on a laptop right now. That's why I own a tablet.