Forum Topic

IT Department Everywhere!

  • thanks boss will check.
  • Kamusta mga sysadmins at netadmins? naka on duty pa rin ba kayo sa data center niyo? ano yung requirements niyo para ma monitor niyo yung mga users niyong nag wfh?
  • kumusta mga admins?!
    bigla ba nagkaroon ng requirements for VPN? or panay port forwarding na lang?
  • panay port forwarding na lang


    You are asking to get brute forced.

    Setup a proper VPN with 2FA.
  • Post deleted #12290776
  • rdp or remote using 3rd party naman pinagawa ko sa mga WFH
  • Kamusta mga sysadmins at netadmins? naka on duty pa rin ba kayo sa data center niyo? ano yung requirements niyo para ma monitor niyo yung mga users niyong nag wfh?


    naka duty parin @ home. so far yung mga servers hindi pa naman nag down, we go so far as we got 4 HA on it just to be sure. and check the UPS batteries if they up to spec, as well as backup generator working if a power failure comes. nasabihan na rin yung mga stay-in guards doon to check the generator from time to time and fill it up with the reserve gas in there though so far wala pa naman power failure so cross fingers.

    majority ng mga workers sa amin ngayun work @ home na, provided them a mikrotik haplite pre-configured to connect to the VPN server we have (OpenVPN) so gagawin na lang nila connect yung laptop nila sa hotspot ng haplite and all the resources should work as if they were in the office (mapped drives, email server, voip, etc...). sakit sa ulo nga lang yung mga gamit na ISP is converge, luckily we were able to setup another VPN server just for them (bypassing Convege's bandwidth capping) and were kinda able to band-aid fix it.
  • Post deleted #12290790
  • ulyssesdones on 23 Mar 20 @ 02:49 PM #

    rdp or remote using 3rd party naman pinagawa ko sa mga WFH

    I assume your RDP is behind VPN? If not, make it sure it is please.
  • web based VPN and Cisco IP communicator sa amin.

    Dati may binibigay na cisco VPN box and Cisco phone, pero biglang dami ang WFH
  • I assume your RDP is behind VPN? If not, make sure it is, please.


    yes, it's behind Vpn po, before Vpn po kami kaso mabigat ang source para less burden nag RDP ako using Static IP with authentication or 3rd party web-based remote. We have Enterprise Firewall nman so safe naman po.

    -- edited by ulyssesdones on Mar 24 2020, 09:36 AM
  • polka Send Message View User Items on 23 Mar 20 @ 04:40 PM #

    Kamusta mga sysadmins at netadmins? naka on duty pa rin ba kayo sa data center niyo? ano yung requirements niyo para ma monitor niyo yung mga users niyong nag wfh?


    naka duty parin @ home. so far yung mga servers hindi pa naman nag down, we go so far as we got 4 HA on it just to be sure. and check the UPS batteries if they up to spec, as well as backup generator working if a power failure comes. nasabihan na rin yung mga stay-in guards doon to check the generator from time to time and fill it up with the reserve gas in there though so far wala pa naman power failure so cross fingers.

    majority ng mga workers sa amin ngayun work @ home na, provided them a mikrotik haplite pre-configured to connect to the VPN server we have (OpenVPN) so gagawin na lang nila connect yung laptop nila sa hotspot ng haplite and all the resources should work as if they were in the office (mapped drives, email server, voip, etc...). sakit sa ulo nga lang yung mga gamit na ISP is converge, luckily we were able to setup another VPN server just for them (bypassing Convege's bandwidth capping) and were kinda able to band-aid fix it.


    nakakamiss yung mga ganitong setup tipong may maintenance si meralco sa building premise at may sunog malapit sa area ng environment mo.

    Sa bago kong environment ngayon puro cloud based na. Whitelisting nalang ng ingress rules tapos naka infra as code na din. Architecture nalang poproblemahin mo.
  • Anyone here using Fortinet Firewall? Our contract with Sophos UTM SG Series Firewall is about to end and we are considering the Fortinet. Baka po may suggestion kayo. Basic Education School lang po ang setup namin with around 3.2k students and 300 employees. Thank you.
  • Hello pa help po. Palaging nag-reset ang router ko ilang beses sa isang araw. Bumabalik sa default wifi settings pati na rin login ng router. From 4pm onwards, almost wala ng internet. Minsan meron pero almost 1mbps lang speed. Okay naman speed 6am to 3pm. Pinuntahan na ng technician ng PLDT, direct lang nila ang fibre wire sa router pero pagkahapunan same issue pa din.
    Baka may idea kayo bakit ganito nangyayari sa connection ko. Thanks
  • Anyone here using Fortinet Firewall? Our contract with Sophos UTM SG Series Firewall is about to end and we are considering the Fortinet. Baka po may suggestion kayo. Basic Education School lang po ang setup namin with around 3.2k students and 300 employees. Thank you.


    Medyo mahal ang fortinet sir. Have you tried palo alto? If gusto mo maka save, try this <click here for link>
  • Medyo mahal ang fortinet sir. Have you tried palo alto? If gusto mo maka save, try this <click here for link>


    Thanks sa info Sir. We are currently using the UTM9 SG450 series ng Sophos. Problem with Sophos is we cannot get away with the supplier. Di namin kasi gusto ang support nila, yung issue namin na in endorse sa kanila, for 1 year, di nila na resolve that is why naghahanap ako ng ibang option. Sobrang mahal naman na kasi yung XG series ni sophos. Actually, yang palo alto ang ni recommend ng isang napagtanungan ko sir. waiting lang po ako ng feedback.
  • @smooth_76

    expensive Ang Palo Alto imho mura box but the licenses are not

    try mo fortinet or Checkpoint we Carry Both Brands
  • guys tanong about ransomware.

    may friend kasi ako na yung computer niya ay na infect ng ransomware. 2 HDD, 1 OS + 1 for files/videos. parehas infected yung 2 HDD, noong time na daw yun ay hindi niya maopen yung mga files sa 2nd HDD niya dahil encrypted na. so ang ginawa niya is nireformat niya nalang yung 1st HDD niya. then etong 2nd HDD eh tinabi niya muna.

    ang tanong is, if ba bubuksan or ikabit ulit sa PC yung 2nd HDD eh mainfect ba yung 1st HDD niya? or if iopen sa ibang PC, mainfect din ba yung PC na yun?
  • ^ kung ung OS HDD niya na reformat, hindi na maapektohan ung 2nd hdd niya. Ung ransomware tumatakbo dun sa original 1st hdd.
  • Hi mga sir may tanong lang ako nag setup kc ako ng zimbra network editions with zimbra connect para ma-test ung video call ok naman sya gumagana naman ang video call within the office nga lang pero kapag nasa labas na or outside the LAN ayaw na gumana ung videocall di lumalabas yung cam ngayon nag search ako need daw ng TURN server nagsetup ako ng TURN server hindi ko lang alam kung tama ung pag ka setup ko ng TURN server, ang tanong ko lang ok lang ba yung TURN server is behind the NAT/FIREWALL or dapat naka public ung TURN server? Patulong na lang guys...

    -- edited by jherdy on Apr 10 2020, 09:22 AM
  • since karamihan sa office staffs are wfh na,ano kaya magandang alternative for zoom, viber, skype for video conferencing w/ screen & file sharing?

    tia
  • ^
    ms teams
  • Hi mga sir may tanong lang ako nag setup kc ako ng zimbra network editions with zimbra connect para ma-test ung video call ok naman sya gumagana naman ang video call within the office nga lang pero kapag nasa labas na or outside the LAN ayaw na gumana ung videocall di lumalabas yung cam ngayon nag search ako need daw ng TURN server nagsetup ako ng TURN server hindi ko lang alam kung tama ung pag ka setup ko ng TURN server, ang tanong ko lang ok lang ba yung TURN server is behind the NAT/FIREWALL or dapat naka public ung TURN server? Patulong na lang guys...


    up
  • @jherdy
    packet capture is your friend
  • jherdy on 10 Apr 20 @ 09:18 AM

    Hi mga sir may tanong lang ako nag setup kc ako ng zimbra network editions with zimbra connect para ma-test ung video call ok naman sya gumagana naman ang video call within the office nga lang pero kapag nasa labas na or outside the LAN ayaw na gumana ung videocall di lumalabas yung cam ngayon nag search ako need daw ng TURN server nagsetup ako ng TURN server hindi ko lang alam kung tama ung pag ka setup ko ng TURN server, ang tanong ko lang ok lang ba yung TURN server is behind the NAT/FIREWALL or dapat naka public ung TURN server? Patulong na lang guys...

    TURN Server needs to be accessible outside of your network.
  • wengkapre on 10 Apr 20 @ 10:23 AM

    since karamihan sa office staffs are wfh na,ano kaya magandang alternative for zoom, viber, skype for video conferencing w/ screen & file sharing?

    tia

    MS Teams (Probably the best right now; Needs O365/M365 subscription)
    Google Meet (Needs G Suite subscription)
    Jitsi Meet (Open-source; Self-Hosted; No file sharing though)
    BigBlueButton (Open-source; Self-Hosted; More inclined for classroom type discussions)
  • Post deleted #12299371
  • ^ mas menos gastos sa operations expense yan kapag nilipat mo sa cloud hehe. Pero mahirap i migrate kung hindi pwede sa vps yung application niyo.
  • SIrs,

    Ano kaya maganda libre POS para sa mga Mini Grocery?