|
General rule of thumb I go by is for a /24 network, the first 10 addresses (starting at .2) and the last 5 addresses (ending at .254) are not in the DHCP scope. The first 10 block is for DHCP reservations, the last 5 are for your special static only addresses. This way you can somewhat categorize hardware based on the IP address alone. .1 is always the gateway.
|
# ? Jan 21, 2022 17:50 |
|
|
# ? May 17, 2024 22:45 |
|
In the past I've made myself rules like: .1 = firewall .5-9 = switches .10-19 = servers .240-255 = printers
|
# ? Jan 21, 2022 19:30 |
|
network devices, iDRAC's, UPS NIC's etc generally go into dedicated mgmt vlans with a subnet of appropriate size (/27, /28 something like that depending on the number of devices) IMO. Outside of that you have things like printers which will both print and have a management page on the same IP, so there is very little you can do about that.
|
# ? Jan 21, 2022 20:36 |
|
MustardFacial posted:.1 is always the gateway. I know that technically anything can be the gateway but you better come up with a really really good explanation if it’s anything but .1.
|
# ? Jan 21, 2022 20:37 |
|
bolind posted:I know that technically anything can be the gateway but you better come up with a really really good explanation if it’s anything but .1. Some people like to put it at .254, it's a preference thing. As long as you are consistent with it, it doesn't really matter. There are some networking greybeards who believe in a "security through obscurity" approach and will do some wild poo poo and stick it in .32 or something insane, which might have made sense in the 90's when network reconnaissance basically ping sweep, and a port scan. But these days nmap will pick those devices out in about 2 seconds no matter where you put it. Also security through obscurity doesn't work. Stop doing it.
|
# ? Jan 21, 2022 20:44 |
|
I use the last IP in the subnet (typically .254 I’m a /24). No real reason I guess. Maybe I like to picture my packets rolling downhill easily to the .254 instead of climbing uphill to get to the .1 Maybe I’ve been doing this for too long
|
# ? Jan 21, 2022 20:50 |
|
Do your subnet as a /23 and put the gateway on .0 of the second /24 The "broken SATA cable" of a troubleshooting lab
|
# ? Jan 21, 2022 21:03 |
|
Our's is .200. Why? Because it's been that way for 25 years and I've only been there for 19.
|
# ? Jan 21, 2022 21:07 |
|
MustardFacial posted:network devices, iDRAC's, UPS NIC's etc generally go into dedicated mgmt vlans with a subnet of appropriate size (/27, /28 something like that depending on the number of devices) IMO. Most places I see are too small for this to be worth it and password-protecting the management interfaces are Good Enough. I do agree all this should happen though.
|
# ? Jan 21, 2022 22:10 |
|
nvrgrls posted:In the past I've made myself rules like: Lovingly remembering two jobs ago, with several discontinous /24s where 90% of the servers were manually assigned static ips inside the dhcp ranges. I was fighting with scripted vm builds (a new thing for the org in 2020) and I couldn't understand why they refused to pull valid IPs
|
# ? Jan 21, 2022 22:27 |
|
MustardFacial posted:network devices, iDRAC's, UPS NIC's etc generally go into dedicated mgmt vlans with a subnet of appropriate size (/27, /28 something like that depending on the number of devices) IMO. Outside of that you have things like printers which will both print and have a management page on the same IP, so there is very little you can do about that. IP address ranges in small shops are not a scarce commodity, though, so I will happily make all my subnets /24 for ease of remembering and not worry more about it. Printers are indeed tools of the devil.
|
# ? Jan 21, 2022 23:55 |
|
It never hurts to do things properly. [edit] if I have the space for it I will default to a /24 because the math works out easier. MustardFacial fucked around with this message at 00:57 on Jan 22, 2022 |
# ? Jan 22, 2022 00:54 |
|
I like to roll 4D8 to determine my subnet prefix
|
# ? Jan 22, 2022 04:01 |
|
MustardFacial posted:network devices, iDRAC's, UPS NIC's etc generally go into dedicated mgmt vlans with a subnet of appropriate size (/27, /28 something like that depending on the number of devices) IMO. Outside of that you have things like printers which will both print and have a management page on the same IP, so there is very little you can do about that. Agreed. One shop I worked at had a storage VLAN, a general VLAN, a management (iLO in this case) VLAN and a BOOTP VLAN. That was a lot of cables. And expensive in 10G switch ports.
|
# ? Jan 22, 2022 05:54 |
|
Number19 posted:I like to roll 4D8 to determine my subnet prefix Subnets are determined according to THAC0 rules
|
# ? Jan 22, 2022 06:54 |
|
Number19 posted:I like to roll 4D8 to determine my subnet prefix MustardFacial posted:Subnets are determined according to THAC0 rules God I loving love this forum sometimes.
|
# ? Jan 22, 2022 07:08 |
|
bolind posted:I know that technically anything can be the gateway but you better come up with a really really good explanation if it’s anything but .1. Errrrr. The poo poo infrastructure I now manage was configured across a lot of subnets to use .20 as the gateway. I was more confused than anything. Easy fix on DHCP scopes.
|
# ? Jan 22, 2022 20:18 |
|
dexter6 posted:Hi Thread! I recently fell into a position as Technology Director for a small nonprofit, ~60 users. Figured I'd come in and introduce myself and let you know some of the things that are top of mind for me. If you have any thoughts on where I should start or redirect me, I'm all ears! Now time for me to start tackling mobile devices and getting stale windows machines updated!
|
# ? Jan 22, 2022 20:22 |
|
Alright so here's one that's not for work but for a mutual aid group I volunteer with. The humble operation is running off google sheets and you can imagine how upset that makes me, and so I want to donate some resources to have an actual ticketing system in place to handle help requests. A $5/mo VPS is gonna be about our budget. SO. I'm looking at osTicket and trudesk (installing that now with piping to bash ) is there anything else I should look at? I'd spring for a perpetual license but I don't want us locked into anything that needs a monthly subscription forever. By the way if this doesn't work we're gonna do airtable.
|
# ? Jan 25, 2022 02:26 |
|
Comedy perl option: Request Tracker. I actually used this quite a long time ago during a very cost-sensitive phase and it was in fact not bad at all. I know it's still around and might be worth a look, but back in the day it was a bunch of perl so think long and hard before leaving that mess for the next guy.
|
# ? Jan 25, 2022 03:14 |
|
nvrgrls posted:Alright so here's one that's not for work but for a mutual aid group I volunteer with. The humble operation is running off google sheets and you can imagine how upset that makes me, and so I want to donate some resources to have an actual ticketing system in place to handle help requests. A $5/mo VPS is gonna be about our budget.
|
# ? Jan 25, 2022 03:24 |
|
....as awful as Salesforce is, all tools suck and you can do much much worse for babby's first erp
|
# ? Jan 25, 2022 03:56 |
|
Freshdesk gives special discounts to NGO's and registered non-profits as well. https://freshdesk.com/industries/help-desk-software-ngo-nonprofits
|
# ? Jan 25, 2022 18:05 |
|
Jira has a free tier for less than 10 users, but the downside is that you have to use Jira.
|
# ? Jan 25, 2022 18:27 |
|
GreenNight posted:Isn't IP reservations from DHCP the thing to do nowadays and not just manually set static IP's on poo poo? Using reservations wherever possible means the network is self documenting. The only chance for the documentation to be wrong is if someone hardcodes something incorrectly. unknown posted:Yes, until the gear is more important than the DHCP server (like your SAN/NAS box generally is). Almost all clients begin attempting to renew their lease at the half way point, so you have at minimum that long from the moment the service fails to fix it before anything is actually impacted. Set your less important subnets like guest wifi to shorter leases to act as a canary in case all other monitoring fails and then don't worry about it. The problem here is not the use of DHCP reservations (unless the DHCP server itself booted off this SAN, in which case it should be hardcoded per previous rule), the problem is that bolind apparently decided that the existing DHCP reservation wasn't important when migrating it so the IP changed the next time the device renewed its lease.
|
# ? Jan 25, 2022 19:28 |
|
Happiness Commando posted:Jira has a free tier for less than 10 users, but the downside is that you have to use Jira. This is what we use. IMO out-of-the-box Jira Cloud is pretty great, if a bit slow. Jira's big problem is with the people who gently caress it up by customizing it. If you're developing software with the basic ol scrum/kanban and need a backlog of tasks, some estimating and some WIP monitoring, free tier Jira is good.
|
# ? Jan 25, 2022 19:39 |
|
I'm expanding to look at CRMs lol. Kill me. I don't wanna vendorlock into freshdesk or sfdc or any of those things just because honestly we don't have the funds to scale that. We have like 30+ active people right now and not registered as anything. I'm just trying to make the best decision given the very not ideal situation until someone can get it together to incorporate and have some sort of actual "business" strategy etc.
|
# ? Jan 25, 2022 23:24 |
|
Check out notion.so I use it for personal task tracking stuff, but they make noise about being able to use it for business as well
|
# ? Jan 26, 2022 00:12 |
|
It’s got a kind of “if sharepoint but made by a startup “ vibe
|
# ? Jan 26, 2022 00:12 |
|
nvrgrls posted:I'm expanding to look at CRMs lol. Kill me. I really like Close CRM. $30/mo. Search is powerful, fast and simple, but can be made very precise.
|
# ? Jan 26, 2022 01:50 |
|
How are yall handling getting notified when a user leave the company? Currently we're getting an email from HR when someone quits/gets canned, then I run a PS script that disables the account, marks the date it was disabled and moves the user to an OU specifically for disabled users. Every Friday I go through this OU and delete any disabled account older than 30 days. This works OK when HR remembers to email me. But there have been times where they haven't emailed me and I'll come across an account for a user that was fired 2-3 months ago. I'm looking for some kind of automated way of handling this so that I don't have to rely on HR to let me know when they've let someone go.
|
# ? Jan 30, 2022 01:44 |
|
Our HRIS automatically sends an email to our service desk when HR marks someone as resigned/terminated. If someone gets shitcanned and the email doesn't come through, it's because HR hasn't done their job right, and it's always a beautiful day when you can make HR the scapegoat.
|
# ? Jan 30, 2022 01:47 |
|
sporkstand posted:How are yall handling getting notified when a user leave the company? Currently we're getting an email from HR when someone quits/gets canned, then I run a PS script that disables the account, marks the date it was disabled and moves the user to an OU specifically for disabled users. Every Friday I go through this OU and delete any disabled account older than 30 days. Have a script to email you a list of users who haven't signed in in 30+ days... Not great but helps catch stale accounts. Most of the places I work with are small enough that they send all-staff emails when a user leaves, so I catch it then as well. Finally, kind of related, but whenever a temporary user is brought on (usually an intern in my case) I ask for the end date and have the account expire the day after the end date. Dans Macabre fucked around with this message at 17:55 on Jan 30, 2022 |
# ? Jan 30, 2022 17:53 |
|
sporkstand posted:How are yall handling getting notified when a user leave the company? Currently we're getting an email from HR when someone quits/gets canned, then I run a PS script that disables the account, marks the date it was disabled and moves the user to an OU specifically for disabled users. Every Friday I go through this OU and delete any disabled account older than 30 days. Technology can make things easier but I can't solve human problems. Either you configure whatever app HR uses to trigger an API that kicks off your automation script(s) or you have to rely on a human being to do their loving job - send an email, drop a trigger file somewhere for automation, click a button, sign off on a spreadsheet, whatever. It's a human problem. Or an organizational one that treats IT and access security as an afterthought
|
# ? Jan 30, 2022 19:13 |
|
We have a bunch of hotelled office set up as resources in Outlook. Is there a way to set up a calendar (like, on Sharepoint) that would show bookings from all of those room resources on one calendar?
|
# ? Jan 31, 2022 15:39 |
|
Sharepoint calendars are basically just a different view for lists with days and don’t have a real way to sync with exchange. You could do something with power automate or logic apps to sync events, or look for a room scheduler that integrates with exchange.
|
# ? Jan 31, 2022 15:45 |
|
Had my first “terminate ALL of this guy’s accounts IMMEDIATELY” email today.
|
# ? Jan 31, 2022 16:59 |
|
No. 1 Juicy Boi posted:We have a bunch of hotelled office set up as resources in Outlook. Is there a way to set up a calendar (like, on Sharepoint) that would show bookings from all of those room resources on one calendar? There are several saas things that do this. Officemaps Teem Condeco There are more out there
|
# ? Feb 1, 2022 14:54 |
|
nvrgrls posted:There are several saas things that do this. I don't wanna buy another product But yeah fair
|
# ? Feb 1, 2022 18:42 |
|
|
# ? May 17, 2024 22:45 |
|
How about room finder: https://support.microsoft.com/en-us...99-77372434d3fa That might be Good Enough. It would let users pick from available rooms based on time and capacity requirements. Do you specifically need to know what bookings are in place rather than what's available to book?
|
# ? Feb 2, 2022 20:14 |