|
Get a Foscam that e-mails him on motion. The 3 step Cisco solution is to hard.
|
# ? Dec 31, 2015 01:43 |
|
|
# ? May 9, 2024 05:22 |
|
What are some good but not so obvious things one should look at on pluralsight?
|
# ? Dec 31, 2015 01:51 |
|
Kashuno posted:I don't have buying authority so if it's really bad I can blame it on someone else! Boggles my mind that anyone would buy Meraki switches after the last couple of years worth of firmware they had. I've never wanted to take a sledgehammer to something so badly in my life.
|
# ? Dec 31, 2015 02:47 |
|
Wait I've not heard about firmware problems, can you expand? Meraki stuff is normally the approved option around here for someone wanting to admin a network without being a network person, or with a bunch of branches to cope with.
|
# ? Dec 31, 2015 02:52 |
|
Thanks Ants posted:Wait I've not heard about firmware problems, can you expand? Meraki stuff is normally the approved option around here for someone wanting to admin a network without being a network person, or with a bunch of branches to cope with. this is me so I hope it's not that bad
|
# ? Dec 31, 2015 02:54 |
|
Thanks Ants posted:Wait I've not heard about firmware problems, can you expand? Meraki stuff is normally the approved option around here for someone wanting to admin a network without being a network person, or with a bunch of branches to cope with. Oh man, where to start. This goes back farther than 2 years, my sense of time gets skewed. Most of this was pre-cisco buyout or right around when they did in 2012. Automatic firmware updates wiped switch configurations. Automatic firmware updates that were turned off got applied anyway. Switch lockups after firmware update. Had to RMA three MX switches after downgrade bricked them. Disconnects and reboots along the way with the APs Beta firmware being applied when we weren't in the Beta program. Huge and constant problems with 802.x Lack of support for CDP/eigrp et al after the purchase bothered me, but that wasn't really their problem, its not hard to re-write your OS. Lets not forget that at one point in time, if you stopped paying for the wireless configurator cloud thing, you couldn't make any changes to the APs that you owned. I'm not a fan of Meraki in any way, shape or form. DigitalMocking fucked around with this message at 03:00 on Dec 31, 2015 |
# ? Dec 31, 2015 02:57 |
|
KS posted:We have Cisco UC phones and I could buy nice video endpoints, but maybe there's a simple point to point solution I'm missing? We use Chromeboxes at work with google hangouts.
|
# ? Dec 31, 2015 04:47 |
|
DigitalMocking posted:Huge and constant problems with 802.x 802.1X? Port security? Sorry, not trying to be a pendant, but I legit went to google thinking there was 802 spec I never heard of before. Anyhow if that is it, what was the issue? Was it just not enforcing, randomly enforcing, or not letting anyone auth to the port?
|
# ? Dec 31, 2015 04:49 |
|
I don't know how anybody could go with meraki switches when they're easily 5x normal cisco gear. The pricing is out of their loving minds.
|
# ? Dec 31, 2015 05:35 |
|
Judge Schnoopy posted:I don't know how anybody could go with meraki switches when they're easily 5x normal cisco gear. The pricing is out of their loving minds.
|
# ? Dec 31, 2015 06:04 |
|
flosofl posted:802.1X? Port security? Yeah, sorry, missing the 1. There was an issue where the switches wouldn't clear the last VLAN state if they lost connectivity to the RADIUS server. Now to be honest, this was on beta firmware for the MAC based radius authentication, so we partly own that issue. edit: It was in Beta a LOOOONG time, they didn't release it until I had moved on and landed in HP ProCurve hell and stopped doing any kind of consulting. DigitalMocking fucked around with this message at 07:30 on Dec 31, 2015 |
# ? Dec 31, 2015 07:25 |
|
H110Hawk posted:Because they know. This is the right answer. Kashuno posted:f meraki PoE switches This is the rightest answer. I'll see you over in the Helldesk thread. /wrists Seriously though, if you're going Meraki, just go Cisco instead. Meraki is for people with more money than sense. Also, I really don't like the idea of only being able to configure things in the cloud. It's not at all an option for networks that don't (or shouldn't) have internet access.
|
# ? Dec 31, 2015 14:22 |
|
I've got a toss up question to see if other folks have any run in to something similar and what you ended up doing. We are going to be having some employees starting that are going to be mobile with laptops and iPhones and not work out of a branch location and apparently they are going to need to do a lot of printing either at home or at client's offices. I definitely don't want to give them local admin just so they can add printers, but is there a way to fine tune permissions so that they can, with a normal user account, add and remove printers? Alternatively, are mobile wifi printers practical? Since they are going to be printing out information that has people's social, date of birth, and such, I want to avoid them emailing it around to get printed if possible.
|
# ? Dec 31, 2015 14:24 |
|
Ocanthus posted:I've got a toss up question to see if other folks have any run in to something similar and what you ended up doing. If they're on your domain you can just use Active directory to push printers to the computers. Alternatively you can just create a shortcut with the printer's location as the target. Edit: oh you want to edit user's ability to add printers without admin on their devices? https://social.technet.microsoft.com/Forums/windows/en-US/df21d2c2-c2d4-4107-bfe3-bf8c5a1cd946/install-printer-without-being-administrator GnarlyCharlie4u fucked around with this message at 14:39 on Dec 31, 2015 |
# ? Dec 31, 2015 14:28 |
|
Since they are going to be so mobile, they won't be on our domain typically (only when they VPN in) any the only consistent printer they would have access to is their home printer which also wouldn't be on the domain. For workstations in our main office, we do use the AD push approach based on location for people to have default printers set.
|
# ? Dec 31, 2015 14:35 |
|
Ocanthus posted:I've got a toss up question to see if other folks have any run in to something similar and what you ended up doing. Sadly I don't think you can give them rights to manage printers that you don't even know about. I just went through the 70-410 print services course. I don't recall it saying something about managing unknown printers. Someone, please correct me if i'm wrong.
|
# ? Dec 31, 2015 14:43 |
|
Sefal posted:I believe you can do this via group policy without giving them admin rights. Just give them access to printers and devices. You can theoretically give them the ability to install printers+drivers as I mentioned above (click the link). Have not confirmed if that works or not. But it is at least worth testing. quote:
|
# ? Dec 31, 2015 14:54 |
|
^ that was going to be my suggestion as well. I read about it when I was trying to do a similar thing with home workers and printers, but the project got shelved before I could do any PoC stuff.
|
# ? Dec 31, 2015 14:58 |
|
GnarlyCharlie4u posted:Seriously though, if you're going Meraki, just go Cisco instead. Meraki is for people with more money than sense. There actually is decent application for the firewalls and waps for remote sites / MSPs / small businesses. I'm installing public access internet at three locations this year and it will not be connected to our network infrastructure, so the best way to monitor those resources and guests utilization is meraki. Anything above the second tier device (mx100, mr32) and you should really be using cisco gear with staff on site to monitor and manage it.
|
# ? Dec 31, 2015 15:05 |
|
GnarlyCharlie4u posted:You can theoretically give them the ability to install printers+drivers as I mentioned above (click the link). Thanks, will check those out with a few users and see how it goes.
|
# ? Dec 31, 2015 15:34 |
|
DigitalMocking posted:Automatic firmware updates wiped switch configurations. I took over a Meraki setup a few years ago (access switches, access points and firewalls for VPNs) and have had 0 of these problems. I am running about 30 switchs, 50 APs and 10 or so firewalls (Z1 through MX80).
|
# ? Dec 31, 2015 15:57 |
|
I'm also very happy with the Meraki gear I've used (MX100, few different APs). No issues and the support has been very good.
|
# ? Dec 31, 2015 15:58 |
|
I've had some wonkiness with a single AP which was likely a faulty hardware issue. Other than that nothing but good things to say about Meraki. If you use it for what it's obviously intended for (remote branches, small organizations, MSPs, etc) then it works great. Edit: actually I have one complaint, you can't manually flush the DHCP leases on their firewalls without rebooting the device. Sheep fucked around with this message at 16:45 on Dec 31, 2015 |
# ? Dec 31, 2015 16:42 |
|
Never had a single problem with meraki and managed dozens of customers at my last job. Beyond a certain enterprise level I wouldn't use their switches or firewalls due to relative lack of configuration options, but for smb use they have been super easy to maintain and manage.
|
# ? Dec 31, 2015 16:48 |
|
Bigass Moth posted:Never had a single problem with meraki and managed dozens of customers at my last job. Beyond a certain enterprise level I wouldn't use their switches or firewalls due to relative lack of configuration options, but for smb use they have been super easy to maintain and manage. Yeah, I have found them to be "too simple" some times, but I don't think that will be an issue in the SMB market. But for basic stuff (access layer, wireless, vpn) they have been great.
|
# ? Dec 31, 2015 16:53 |
|
The firewall rules UI is a complete mess but I think again the assumption is that if you use them as branch office routers with VPN tunnels you're unlikely to have to expose internal services to the Internet.
|
# ? Dec 31, 2015 17:14 |
|
I don't mind Meraki firewalls for small biz especially if they have a couple small sites (the vpn tunnel mesh works fine) Stuff I don't like about Meraki (they fixed some of this with firmware) Load Balancing on the firewalls is/was garbage. For a long time the firewalls could utilize more then one static IP on a single cable/DSL modem. (In cases where clients had need for two statics they had to buy two internet connections) I can't remember the term but with the way they use ARP cache the biggest telco fiber provider in my market could not work on a meraki with a static. (it simply wouldn't acknowledge its existence) They pushed WAN Optimization but it never worked and they just gave up on it. Switches are not that great especially for the ridiculous cost. For small biz. Like I said I don't mind using some MX60s (or 64s whatever they are now) with some procurve switches and call it a day.
|
# ? Dec 31, 2015 17:15 |
|
GnarlyCharlie4u posted:You can theoretically give them the ability to install printers+drivers as I mentioned above (click the link). Just keep in mind that a user with this right is only the tiniest jump away from local admin. So it'll protect against accidental dumb moves but any exploit kit or other malware/rootkit they stumble into won't even notice it as a speed bump. Treat the machines as appropriately untrusted.
|
# ? Dec 31, 2015 17:15 |
|
Moey posted:Yeah, I have found them to be "too simple" some times, but I don't think that will be an issue in the SMB market. But for basic stuff (access layer, wireless, vpn) they have been great. I don't know if they've fixed this but one huge VPN problem is they will not accept a NAT'd address on the far end, which is an extremely popular option for vendors to go with. I worked with Meraki engineers for a few days and they admitted their device can't handle it. I had to put an old ASA 5500 on the inside of the network and finagle static routes to get the vendor VPN up, which was much less than ideal.
|
# ? Dec 31, 2015 17:17 |
|
Danny LaFever posted:I don't mind Meraki firewalls for small biz especially if they have a couple small sites (the vpn tunnel mesh works fine) This is wrong or I'm misreading somehow. We're using multiple external static subnets. Unless this is a typo and meant "for a long time firewalls couldn't".
|
# ? Dec 31, 2015 17:24 |
|
That one is fixed now. A couple years back the Meraki interface had no idea how to use the second static IP on a modem. I spent enough time with support on this one to remember it.
|
# ? Dec 31, 2015 17:28 |
|
Moey posted:I took over a Meraki setup a few years ago (access switches, access points and firewalls for VPNs) and have had 0 of these problems. I am running about 30 switchs, 50 APs and 10 or so firewalls (Z1 through MX80). You should go buy some lottery tickets then, you're the luckiest human I know of.
|
# ? Dec 31, 2015 19:00 |
|
Welp, My employer can't find anyone well-versed in MS SQL Server and now they're looking at the existing staff to step up to the plate. I know how to write decent queries but I don't know much else aside from typical Windows/Linux System Administration. What exactly would I be getting myself into here?
|
# ? Dec 31, 2015 19:21 |
|
Tab8715 posted:Welp, Be very cautious as to whether they just need some work or want a DBA. If the latter, you best read up on it so you know what you're getting in to. Being a DBA is a nightmare and involves much more than writing stored procedures to access the data. You start getting into database design and a whole bunch of poo poo.
|
# ? Dec 31, 2015 19:27 |
|
If someone were a sadomasochist and wanted to be a DBA, where would you start?
|
# ? Dec 31, 2015 19:46 |
|
thebigcow posted:If someone were a sadomasochist and wanted to be a DBA, where would you start? You're 90% there with enjoying pain already. The rest is just learning to be bad at databases, but slightly less bad than 99.99% of everyone else.
|
# ? Dec 31, 2015 19:49 |
|
Just do everything in excel, maybe upgrade to access if it starts to get big.
|
# ? Dec 31, 2015 19:54 |
|
Being a DBA is the fine art of making sure that you never fully please any one person, but you please everyone just enough to keep everything from going pear shaped.
|
# ? Dec 31, 2015 19:56 |
|
DigitalMocking posted:You're 90% there with enjoying pain already. The rest is just learning to be bad at databases, but slightly less bad than 99.99% of everyone else. Pretty much this.
|
# ? Dec 31, 2015 19:58 |
|
|
# ? May 9, 2024 05:22 |
|
DigitalMocking posted:You're 90% there with enjoying pain already. The rest is just learning to be bad at databases, but slightly less bad than 99.99% of everyone else. Make sure you don't know anything about disk, resource bottle necks, or the generally finite nature of physical memory. Those are all concerns for the systems team.
|
# ? Dec 31, 2015 20:35 |