@tim_g said in Trouble converting an OVF to VMDK using MVMC...:

@dave247 said in Trouble converting an OVF to VMDK using MVMC...:

@tim_g said in Trouble converting an OVF to VMDK using MVMC...:

Your path is incorrect. You need to specify a real location to put it. \\nameOfServer\shareName

Or D:\path\to\storage

Or you can use the admin share on your hyper-v server: \\serverName\d$\Hyper-V

ok I got to the next screen using "\hv-2012-01\Users\Public\Documents\Hyper-V\Virtual Hard Disks"

However now it wants to connect to an ESXi server but I have this OVF file on my local system. I get the impression that this is trying to convert a running system or something. I just want to convert a static file from one format to another, then import to Hyper-V from there. Maybe I have the wrong assumption on all this though..

It's been a long time since I've used that tool. I don't remember what the options are.

Can you show screenshots?

There's that:

and going back a few pages:

So yeah, I guess it's just for converting machines that are already installed/running..

I need to simply convert a .OVF to .VMDK

@dustinb3403 said in Trouble converting an OVF to VMDK using MVMC...:

I'm confused why your UTM device would even know or care what hypervisor it may or may not be on.

Have you tried using it, on your ESXi 6.5 system?

The appliance is downloadable in OVF which is for VMware. It is not compatible on 6.5 and displays errors, which is why I called support and that's when they told me it only works on up to 6.

@tim_g said in Trouble converting an OVF to VMDK using MVMC...:

Your path is incorrect. You need to specify a real location to put it. \\nameOfServer\shareName

Or D:\path\to\storage

Or you can use the admin share on your hyper-v server: \\serverName\d$\Hyper-V

ok I got to the next screen using "\hv-2012-01\Users\Public\Documents\Hyper-V\Virtual Hard Disks"

However now it wants to connect to an ESXi server but I have this OVF file on my local system. I get the impression that this is trying to convert a running system or something. I just want to convert a static file from one format to another, then import to Hyper-V from there. Maybe I have the wrong assumption on all this though..

My UTM device offers an analyzer appliance, downloadable as only an OVF. We have vSphere 6.5 running but support told me the appliance only works on ESXi 6. However, Hyper-V 2012 R2 is also supported, which I do have one of those I just set up. I'm pretty new to Hyper-V and I've gone down a rabbit hole and now I'm a little unclear on what to do.

I first tried to import an OVF into Hyper-V only to quickly realize you can't do that. So I found out about the Microsoft Virtual Machine Converter 3.0 and installed that. Now I'm running MVMC and I'm stuck on this screen:

I don't appear to have any shares on \hv-2012-01. I mean, I know how to create a share on a Windows system, but I don't really know the "right" way to go about setting up Hyper-V storage and/or shares in this situation.

I haven't configured anything else on my Hyper-V server beyond the basic install and remote management and network settings.

@scottalanmiller said in Download more RAM:

Do any of you remember when products like this were actually sold?

No? LOL

@guyinpv said in What is cheapest way to get a house phone?:

@irj said in What is cheapest way to get a house phone?:

@guyinpv said in What is cheapest way to get a house phone?:

They are old school bosses, they lead by "better to fear me than love me" thing. Black marks, performance meetings, threaten my job when they don't like something, etc.

But, long story short, small town, few tech jobs, low wages.

Sounds like they don't have a choice of many techs either well at least at what they are offering to pay.

Ya. Basically population is around 40k in the city. Best jobs are all government/city/town, and colleges. But even then they'll max out around $60k-$70k for city government IT.

Then all the tech shops are mom-n-pop. If they hire employees at all, they'll be $10-$18/hr.

So I work for an ecommerce/manufacturer company doing their tech stuff, which includes some IT but it's not pure IT. I do some programming, social media, web development, SEO/marketing, and all the office tech chores. Jack of all trades. Still only about a sub-$40k income and I had to beg to even get there after 5 years.

Bottom line, you have to own a business out here to make a good living in tech. And I'm moving into web dev over IT (remote work). Every other tech out here who can't find a job starts a computer repair company. I see their cars all over the place. "Bob's Nerd Shop", "Hire a Geek", "Mobile Nerds PC Repair", "Cool Geeks PC Services". The names get worse every year.
The couple of people who manage to have a physical computer store either hire their own kids, or get part time helpers on commission.

It is what it is. I would have a hard time finding another job, but my boss would also have a hard time finding someone who knows all the things and willing to work for $15/hr. So I'm not sure which of us has the upper hand here.

Ugh... I used to make $15/hour working as middle management in retail. I finally got fed up and put the pedal to the metal and landed an IT admin job making over double what I used to. It's a very small town but luckily I work at decent place.

@tim_g said in Hyper-V Network card setup?:

@dave247 said in Hyper-V Network card setup?:

Thanks. And this isn't for testing. I actually want to use this server for some production servers.

Sorry, didn't know. I mistakenly assumed testing and lab because of the time frame.

But you can't go wrong with doing it that way.

If you have no need for an extra NIC you could do a 3-NIC team. If you are fine with no management NIC, do a 4-port team and share it with your management OS if for some reason you need that many NICs in a team. Though you probably don't.

Yeah well it is for some low-risk servers, so, kinda almost testing, but not really, if that makes sense. lol

@dashrender said in Hyper-V Network card setup?:

@dave247 said in Hyper-V Network card setup?:

@jaredbusch said in Hyper-V Network card setup?:

@tim_g said in Hyper-V Network card setup?:

I leave 1 NIC (sometimes teamed) dedicated for host management and replication and such.

Then a team of 2-3 NICs for all VMs to use (not shared with the host OS).

In your case, for testing, I'd do the following:

NIC1 = Management, replication, migration (this is the one that gets a DNS entry, turn off DNS registration on the others)

NIC2 & NIC3 = Teamed - Not shared with the "management OS" (uncheck that box in Hyper-V later after team is set up)

NIC4 = Other testing as you see fit (iSCSI, DMZ, different subnet/network, failover for another network, etc)

What is the point of a management NIC let alone a team? You have everything on the same subnet in a SMB anyway.

Management networks are all fine when you have a large infrastructure and multiple subnets.

Yeah I don't have a management network set up. Though we do have a lot of servers and appliances, so it might be nice to set one up anyway. But that's another project for another day.

But do you have enough (reasons) to warrant splitting out the management network from the main network?

Sure, I think so. I have a bunch of iDRACs for our Dell servers (like 25ish) as well as 10 switches and a few rack appliances. I'd say maybe 50ish systems. I could see having a nice little /26 management subnet.

@tim_g said in Hyper-V Network card setup?:

I leave 1 NIC (sometimes teamed) dedicated for host management and replication and such.

Then a team of 2-3 NICs for all VMs to use (not shared with the host OS).

In your case, for testing, I'd do the following:

NIC1 = Management, replication, migration (this is the one that gets a DNS entry, turn off DNS registration on the others)

NIC2 & NIC3 = Teamed - Not shared with the "management OS" (uncheck that box in Hyper-V later after team is set up)

NIC4 = Other testing as you see fit (iSCSI, DMZ, different subnet/network, failover for another network, etc)

Thanks. And this isn't for testing. I actually want to use this server for some production servers.

@jaredbusch said in Hyper-V Network card setup?:

@tim_g said in Hyper-V Network card setup?:

I leave 1 NIC (sometimes teamed) dedicated for host management and replication and such.

Then a team of 2-3 NICs for all VMs to use (not shared with the host OS).

In your case, for testing, I'd do the following:

NIC1 = Management, replication, migration (this is the one that gets a DNS entry, turn off DNS registration on the others)

NIC2 & NIC3 = Teamed - Not shared with the "management OS" (uncheck that box in Hyper-V later after team is set up)

NIC4 = Other testing as you see fit (iSCSI, DMZ, different subnet/network, failover for another network, etc)

What is the point of a management NIC let alone a team? You have everything on the same subnet in a SMB anyway.

Management networks are all fine when you have a large infrastructure and multiple subnets.

Yeah I don't have a management network set up. Though we do have a lot of servers and appliances, so it might be nice to set one up anyway. But that's another project for another day.

@scottalanmiller said in Hyper-V Network card setup?:

Think of it like any other resource on the machine... you pool your CPU, RAM, and storage together for the VMs to share. You treat the network in the same way.

Yes, totally what I was thinking/hoping. Now I just need to figure out the powershell commands for this...

I set up a Hyper-V 2016 Server last month but haven't done anything with it beyond installing the hypervisor and configuring sconfig. I'm about to get back to it here but I'm unclear on something.

My server has a quad port nic installed and right now I've only got one port plugged into the network. Now what I'm wondering is if I should team the whole thing from the Hyper-V powershell console so that virtual machines can share that team, or something else.

I can't imagine it's reasonable to have one vm per nic port, otherwise I'd be restricted to only four virtual machines until I add another nic.

What's the best practice here? I really should find some documentation..

@scottalanmiller said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

@dave247 said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

Well, I looked at prices on ebay (which I know is not the best place to do a comparison) but people tend to price things relative to how expensive they were or currently are worth.

I don't know if that's true. Pricing on eBay are often insane. People asking $1,000 for a device worth $20 just because they hope that someone is confused.

hahahaha you're so right. I guess really, it was just a comparison starting point. Probably not a good idea, but it's the only way I could quickly get a $ figure.

@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:

@dashrender said in Cisco ASA5510 vs Ubiquiti ERPro8:

@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:

@dashrender said in Cisco ASA5510 vs Ubiquiti ERPro8:

@anthonyh said in Cisco ASA5510 vs Ubiquiti ERPro8:

I'll probably go with the ERPro8 mostly for the fact that it's nowhere near as power hungry as the ASA. I'm currently using an ERPro PoE in my home setup and have no complaints. It has served me well.

Why move away from the ERPro8? The OS on the other ER is the same.

I would either be going ERPro PoE -> ASA5510 or ERPro PoE -> ERPro8.

Likely going to do the latter.

Right, my question is - why? If you go the ASA, I get it, you're changing vendors (i.e. new interface), but if going to the ERPro8, why? do you need the extra ports? If not, there's nothing to gain by moving to the ERPro8 over the ERPro POE.

The biggest advantage is the ERPro8 is rack mountable. Also, the ERPro8 does have a little more horsepower behind it but whether or not it'd be noticable in my environment is another story. I suspect if I wanted to do any sort of VPN tunneling it may fair a little better, but that's just a guess. So, mostly because it's rack mountable.

Just buy a rackable tray for the ASA

@dbeato said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

@dave247 said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

@scottalanmiller said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

@dave247 said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

@scottalanmiller said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

Keeping to the same basic strategy, I'd want Palo Alto in there. You can do the HA like the SonicWall, but far more secure and enterprise grade. The SonicWall is really an SMB device, which is fine as you are an SMB, but as a financial institution, I might be wanting something a little more serious.

I've heard you mention Palo Alto before. Any reason why you suggest them? (I will also do some research).

Industry leader, they basically invented the UTM idea. Top enterprise player.

They look like they're a lot cheaper than SonicWall too..

What Sonicwall and Palo Alto are you comparing? The models might be the comparison for me.

Well, I looked at prices on ebay (which I know is not the best place to do a comparison) but people tend to price things relative to how expensive they were or currently are worth. I should have just said that the Palo Alto hardware appears cheaper than the SonicWall hardware. I have no idea how much support or service subscriptions cost.

I know that our SonicWall NSA 3600 hardware was around $4,500 for each of the two units, then there was a subscription and maintenance cost which was probably a couple thousand combined. Not sure how much it costs to get support or subscriptions on the Palo Alta devices. Maybe it does cost more than SonicWall after all the other things that would need to be purchased. I have no bloody idea.

I haven't played with Ubiquiti too much, though I do have a cheap Edge Router ER-X sitting in my office drawer. When I set it up, I was super impressed by the UI and apparent tool set.

@scottalanmiller said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

@dave247 said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

@scottalanmiller said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

Keeping to the same basic strategy, I'd want Palo Alto in there. You can do the HA like the SonicWall, but far more secure and enterprise grade. The SonicWall is really an SMB device, which is fine as you are an SMB, but as a financial institution, I might be wanting something a little more serious.

I've heard you mention Palo Alto before. Any reason why you suggest them? (I will also do some research).

Industry leader, they basically invented the UTM idea. Top enterprise player.

They look like they're a lot cheaper than SonicWall too..

@scottalanmiller said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

Keeping to the same basic strategy, I'd want Palo Alto in there. You can do the HA like the SonicWall, but far more secure and enterprise grade. The SonicWall is really an SMB device, which is fine as you are an SMB, but as a financial institution, I might be wanting something a little more serious.

I've heard you mention Palo Alto before. Any reason why you suggest them? (I will also do some research).

Additionally, if I were to switch to something like Palo Alta, do these devices have similar setup such as the SonicWall where I can directly connect our WAN modems? I'm looking at their racks now, it kinda looks like they do..

@dafyre said in Suggestions on replacing UTM device (SonicWall) and rebuilding security systems?:

Auditing the rules is never a bad idea!

If you're not experiencing performance issues, then why the push to change?

Well I just want to do things better if possible. Also, I need something that can put out better security reports.

or maybe I should just leave it as is, I don't know.