What Are You Doing Right Now
-
I'm trying to think of this from a security perspective.
If he wants to ensure no one is messing around with is Sandbox, he can't use one big network, he needs to separate it either physically or with VLANs. If security is of little concern, then your idea is the way to go. Though I could argue that if security is of so little concern, why is he breaking the sandbox onto it's own subnet anyway?
As for the actual setup, assuming you need to provide internet access to this situation (let's simplify and assume he only has one switch) how would you suggest doing that?
Two interfaces from the router/firewall - one for each subnet, or setup a single connection between the switch and router/firewall that has two sub interfaces one for each network? -
@JaredBusch said:
@Dashrender said:
As mentioned, one reason to create a VLAN for the sandbox he mentioned would be to ensure someone else on the LAN couldn't just change IPs and start jacking with it. Granted most normal users on your network won't have a clue about this.
He wants a sandbox for development servers. not random users connecting to the network.
That or i read the entire thing wrong.
Nothing like re-reading something that you have already read twice.
-
@Dashrender said:
I'm trying to think of this from a security perspective.
If he wants to ensure no one is messing around with is Sandbox, he can't use one big network, he needs to separate it either physically or with VLANs. If security is of little concern, then your idea is the way to go. Though I could argue that if security is of so little concern, why is he breaking the sandbox onto it's own subnet anyway?
As for the actual setup, assuming you need to provide internet access to this situation (let's simplify and assume he only has one switch) how would you suggest doing that?
Two interfaces from the router/firewall - one for each subnet, or setup a single connection between the switch and router/firewall that has two sub interfaces one for each network?Security for the applications to not cross talk on production networks is simple and only needs subnetting. he is talking about cloud connected services, so to me that does not imply any chance of malicious users actually logging into these servers.
-
Few minutes left, finally i can go home.
Yay! see you mountain lols -
-
Just got my EdgeRouter X! I figured it would be bigger haha.
-
@johnhooks said:
Just got my EdgeRouter X! I figured it would be bigger haha.
Even the old "big" ones were pretty tiny!
-
ZeroTier and NoMachine make a great combo.
-
Having coffee and inadvertently jump starting a diet by forgetting to eat today. Oh well.
-
I got to hang out with Jaha Dukureh last week. Was really cool. We rode in a car together for about two hours. Got to see her speak the next day.
-
@johnhooks said:
ZeroTier and NoMachine make a great combo.
Interesting, never heard of NoMachine before.
-
@Dashrender said:
@johnhooks said:
ZeroTier and NoMachine make a great combo.
Interesting, never heard of NoMachine before.
NX protocol. We talk about it every few weeks. It's the XenApp of the UNIX world. We've been using it at NTG for about a decade. Works really well. 2X that is active in SW and is located walking distance from my house in Dallas was created as a low cost alternative to NX.
-
Just woke up, was up extremely late last night.
-
Arguing with AT&T at the moment. Been on a call for over 30 minutes. All I want is to have my phones forwarded...
Issue: The IPFlex (T1 for Data & Voice) is down.
Cause: No power to the router
Request: Just forward my damn phones to the number I want.
Response: We (AT&T) cannot do that until the trouble ticket has been open for 4 hours. -
Working on-site with @Minion-Queen !
-
@JaredBusch said:
Arguing with AT&T at the moment. Been on a call for over 30 minutes. All I want is to have my phones forwarded...
Issue: The IPFlex (T1 for Data & Voice) is down.
Cause: No power to the router
Request: Just forward my damn phones to the number I want.
Response: We (AT&T) cannot do that until the trouble ticket has been open for 4 hours.WHAT?! why not? What if I want to do maintenance and nothing will be 'down'?
-
@johnhooks Are you actually using ZT now?
-
@Dashrender Create your ticket 4 hours ahead of time... better make it 5 hours ahead of time.
-
@scottalanmiller We've talked about this recently, Scott... Food is somewhat important... Ranking somewhere up near Oxygen, if I do remember correctly.
-
@dafyre said:
@scottalanmiller We've talked about this recently, Scott... Food is somewhat important... Ranking somewhere up near Oxygen, if I do remember correctly.
Actually not even hungry yet!