Best posts made by pmoncho

@dafyre said in Handling DNS in a Single Active Directory Domain Controller Environment:

@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:

@dashrender said in Handling DNS in a Single Active Directory Domain Controller Environment:

@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:

@obsolesce said in Handling DNS in a Single Active Directory Domain Controller Environment:

@pmoncho said in Handling DNS in a Single Active Directory Domain Controller Environment:

@obsolesce said in Handling DNS in a Single Active Directory Domain Controller Environment:

@kelly said in Handling DNS in a Single Active Directory Domain Controller Environment:

just challenging the "most commonly correct approach" statement

It seems you are mistaking the "most common approach" with the "most common correct approach". I haven't been around the SMB as much as JB, but I'm assuming the most common approach to SMB DC implementations are incorrect. Meaning, 2+ DCs are being used when 1 should be used. Perhaps two DCs are used because so many other things are done incorrectly, it's thought 1 should't be used due to so many other things not properly in place, but that's besides the point in my reply here.

IMHO, SMB's use 2 DC's (me included) because it is drilled over and over in our heads by outside forces, including the application developers and the OS companies themselves. On top of that, we are completely stupid if we don't have a second DC if the hardware is available. So to follow "Best Practices," SMB's just do it. It doesn't necessarily mean that things are done incorrectly though. It mostly means, we (aka I) have an extra DC there sitting, waiting, getting monthly updates and then gather more dust for years on end all in the name of protection and risk reduction.

That is why coming here and having extensive discussions about general topics has helped me changed my own thoughts about system/network design in SMB's.

Then I assume you have an extra everything if it costs less than $5k, correct? Especially if other things depend on it... such as redundant ISP, all redundant switches, definitely redundant LoB services, etc... if not, why choose only a DC over things that would be way more beneficial to have HA? If you have extra hardware, extra software, etc... that would go unused and be wasted otherwise, then sure, it could make more sense, but could still cause the same amount of benefits and negatives.

Just because a company has an extra DC doesn't mean every process/product/connection needs to be duplicated. If there are two hosts an extra DC is peanuts. No $5K is needed, $800 tops and there is value (reduced risk) in that $800. Plus, as been mentioned, ceasing roles is less time and MUCH less panic than restoring a VM.

Theres so much more though - now you have to make sure there are no replication issues, and you should likely be backing up that VM (it is a VM, right?) also. You could do it free, but assuming you're using a backup product, that might require another license because it's another box, so more costs. It's also additional time doing updates, 2 boxes vs 1.

In the scenario of 2 DC's, the VM would be backed up but is it worth it? Restoring a DC VM with multiple DC's has a higher probability of creating replication issues.

• In the times worked in environments with multiple AD controllers (2 at my last job, and 6 here), when a DC fails, you don't restore it. You seize the FSMO and other roles with the remaining good DC. Then you do a fresh install and reuse the name of the crashed DC.

I agree wholeheartedly. Just seize and remove bad DC and be done. Bring up new DC later during down time.

If an SMB cannot afford a 2nd DC, then they definitely cannot afford a test environment. So all updates are run directly on production servers. We all know MS can really fork up and update or two.

• In a single AD Server environment, you would take snapshots of your AD Server before doing updates.

Snapshot is fine if issues appear immediately which they mostly do. What happens if it appears 1-3 days later? Then issues are compounded. Unless their is a huge vulnerability that needs patched, I wait at least till Sat for initial update and then the rest of production servers days later.

@WrCombs said in What Are You Doing Right Now:

I think we all agree when I say ...

I Hate Printers

DEFINITELY!

Reminiscing........, It was nice once upon a time, at least when we worked on UNIX. IP address and PCL codes was pretty much it plus a small interface script. Nice, neat and worked 99% of the time. Line up on forms could be a pain, but in general, SOOO much EASIER to fix and deal with.

@aaronstuder said in Synology High-Availability Cluster:

Anyone every built a Synology High-Availability Cluster?

https://www.synology.com/en-us/dsm/feature/high_availability

Would you trust it, or am I better to just rsync the data ever so often?

My first thought is, If the HA is for business, did Synology update their support to at least same day response.

@JaredBusch said in I can't even:

Hi Citibank. As an actual customer that does not own a fucking checkbook, I would prefer if I was actually able to make a fucking wire transfer when I need to.

So is this error basically saying, the right hand doesn't know what the left hand is doing so the right hand freaks out with a security issue?

@scottalanmiller said in Server Setup for Legal Firm:

@pmoncho said in Server Setup for Legal Firm:

@scottalanmiller said in Server Setup for Legal Firm:

@Donahue said in Server Setup for Legal Firm:

one post wonder?

Exactly.

1PW's drive me absolutely insane. Between here (which has been realllllllly nice) and , I wish their was a count at the top for how many times the original poster replied.

Nothing worse than seen 5 pages of replies asking for further info to solve their problem when the 1PW abandons the post.

Its' super rare here, this is one of the very few. On it's the norm, I swear. So common.

I agree and that is why I hang out here more than anywhere else.

@scottalanmiller said in Non-IT News Thread:

That's our America he's dissing there! Most corrupt and inept in the world he calls us!

"So interesting to see "Progressive" Democrat Congresswoman, who originally came from countries whose governments are complete and total catastrophe,..."

So, in this statement, he is 10000000000% correct.

@Obsolesce said in Windows 10 Performance tweaks:

@Dashrender said in Windows 10 Performance tweaks:

I have a hard time remembering different tweaks over time.

I figured I'd start a thread. Feel free to add to the list.

:
If the system is sluggish and the disk appears to be the main issue, try disabling superfetch and reboot.

Remove the old spinner and use an SSD.

Definitely SSD's. For many of my employees and clients, based on their actual needs, an old icore5 with an SSD makes Win10 run very smooth.

@Dashrender said in Non-IT News Thread:

@pmoncho said in Non-IT News Thread:

@bnrstnr said in Non-IT News Thread:

@pmoncho said in Non-IT News Thread:

@bnrstnr said in Non-IT News Thread:

@pmoncho said in Non-IT News Thread:

@bnrstnr said in Non-IT News Thread:

@pmoncho said in Non-IT News Thread:

@bnrstnr said in Non-IT News Thread:

@pmoncho said in Non-IT News Thread:

IMHO, those four are one in the same and I still believe the statement is correct. Yes, One person can be used as a basis for the group. Happens all the time in business, politics and world society.

What makes them one in the same?

Numerous intertwined Ideologies.

I understand. Citizenship is a difficult concept to grasp... One person from a group not being born in America makes a statement true for 3 other people because they share the same ideologies. You should loosen up your red hat a bit. It seems to be cutting off circulation to your brain.

Being an American is a difficult concept to grasp. Being a citizen is fairly easy.

Alright, well I think that your ideologies align with these 3 Russians that I once met, so you should to go back to where you came from... Makes perfect sense :thumbs_up:

And you think my ideologies are?

Forget it, man. That wasn't the point. I don't have the patience for this lol

Your point was not lost. If my ideologies lined up with Charles Mason's, can we as a group visit or should we go back where we came from? lol

What are you two arguing about?

Ahhhh nothing. Just going round and round. LOL

@manxam said in Windows 10 Performance tweaks:

@pmoncho : I have to ask: why? I understand if you're using Windows 8.1 or the first couple versions of Windows 10 with the weird start menu but with current revisions the start menu differs very little from Windows 7. Turn off the groups on the right hand side and it's just a more modern skin to the old...

Not the greatest answer but, its because my users know what "Start" means and when they are told to "Start and Log Off" they know exactly what I mean and where to move the mouse and which button to press.

Most of my users don't understand what "Right Click" mean. Yeah, its that bad! UGH

Its funny how users can manipulate their home pc's, create and send emails, scan, move, manipulate, attach files to emails and move all around. Then when they get to work, it all goes out the window and "I don't know how to do that!" Double UGH!

@scottalanmiller said in Weekend Plans:

@pmoncho said in Weekend Plans:

@scottalanmiller said in Weekend Plans:

@mary and I are doing a forklift upgrade to a manufacturing facility in the NY Twin Tiers this weekend.

Sounds fun and exhausting at the same time.

And a low stress client.

Where can these be found??? Lately, it seems I would have better results searching for Big Foot.

@Obsolesce said in Windows 10 Performance tweaks:

I don't understand how people get hired in the fist place, for a computer job, if they can't understand how to use a computer.

They can learn, I mean, they learned to do what it is they do... they should keep up with the tool used to do the work.

Trust me. You guys are preaching to the choir here. I even make slight comments, while laughing "with" them, after they make such statements, "so basically we should hire a carpenter who doesn't know how to use a hammer?"

To give my users a minuscule amount of credit, they are basically in a single application for 95% of their job and they learn that software inside and out.

@scottalanmiller said in What Are You Doing Right Now:

@pmoncho said in What Are You Doing Right Now:

@scottalanmiller said in What Are You Doing Right Now:

He last logged in a year and a half ago. Only nine posts. I bet he's not watching here

Bummer. I tried him and others at "the other place" but just dang crickets. Heck, even had crickets on this subject from Dell themselves. No problems with Dell answer questions product questions for sales. UGH

I pinged him, we will see if he sees it.

Ivan replied and was about to investigate my issue.

I tried to sign up again early last week but never heard anything like the last many times. For the heck of I tried to sign up again about 20 min ago and now it told me I already had an account.

Just did a password reset and I now my account setup and will be running the collector soon.

Whoohoo!

@RojoLoco said in Windows 10 Performance tweaks:

@pmoncho said in Windows 10 Performance tweaks:

@Obsolesce said in Windows 10 Performance tweaks:

I don't understand how people get hired in the fist place, for a computer job, if they can't understand how to use a computer.

They can learn, I mean, they learned to do what it is they do... they should keep up with the tool used to do the work.

Trust me. You guys are preaching to the choir here. I even make slight comments, while laughing "with" them, after they make such statements, "so basically we should hire a carpenter who doesn't know how to use a hammer?"

To give my users a minuscule amount of credit, they are basically in a single application for 95% of their job and they learn that software inside and out.

So they can't be bothered to learn left click from right click??? Sounds like a bunch of morons who should have flunked kindergarten. I had that user base many times in the past, and I managed to get out without murdering anyone. Run away screaming and find greener pastures. Life is too fucking short to make excuses for fucktards. You deserve better users. Go find them elsewhere.

I would love nothing more but I live with the hand I'm dealt, give them the tools they need to get their work done and then try to avoid them.

@travisdh1 said in What Are You Doing Right Now:

@Kelly said in What Are You Doing Right Now:

@bnrstnr said in What Are You Doing Right Now:

https://www.amazon.com/Charging-Certified-Magnetic-Wireless-Compatible/dp/B07TV1NY6M/

umm, is it just me or are the reviews and questions for this product all over the place? I've seen people post wrong reviews before, but this is way beyond anything I've seen before. Soap, phone case, dress, medicine, gauge, purse? All in the reviews. This charger must do it all.

This is hilarious. I've seen them merge products before, but this goes beyond the normal.

Wow, something screwed up a database but good.

I am wondering if they reuse old product numbers? I have seen this on many products where the reviews don't match the product.

Really weird that some of the best screwdrivers make a person's hands really soft.

@hari

I would look at the T430 through www.xbyte.com. I believe Sean @xByteSean still hangs around here and can point you in a specific direction as you can explain your entire needs.

As for Hard drives, RAM and CPU requirements, that is based on your knowledge of the requirements of the CDMS.

AD/DNS/DHCP requirements are minimal (1vCPU with 2GB RAM and 60GB HD)

@nadnerB said in Random Thread - Anything Goes:

Just need Layer 8 and it's complete.

...
...
...
...
...
...
(Layer 8 is the meatware)

Presentation layer looks pretty pissed off. Don't know if that is a good presentation????

@DustinB3403 said in With ESXi Licensing what happens if I let it lapse:

@pmoncho said in With ESXi Licensing what happens if I let it lapse:

I believe that is why software updates is only $60 per year. That is dirt cheap considering it is ESXi.

Dirt cheap would be $0/year forever like with XCP-ng and KVM.

True dat! But VMWare isn't opensource and we knew that before the purchase.

Almost done with Orange is the New Black so I can get my Wentworth on! (Season 7) Whoohoo

@DustinB3403 said in With ESXi Licensing what happens if I let it lapse:

@pmoncho free forever for the life of the product should always be assumed when having a conversation on a technical forum. Never would I, nor anyone else reasonable assume that any hardware or software product will last "forever" past the death of the sun and beyond.

Let's get real here, you were playing semantics to upset the conversation or honestly believe that these products will and do last "forever".

No. I just made a statement and nothing more. You blew it the heck out of proportion because you thought I was being a jerk (which was not my intention). If it was out of bounds by your estimate. Fine. That's ok and I will retract it. Don't get all upset about it like I was intentionally trying to piss you off.

If there is one thing I have learned, in this thread and every other thread on this board, ASSUME NOTHING! Look at the pissyness it created. All for naught.

Now, just smile, realize that no matter what, if we both want VMWare we have to pay. I agree with you 10000% that it SUCKS. Were on the same side here.

@scottalanmiller said in Spiceworks Just Got Acquired by Publisher Ziff-Davis:

@bstilts6301 said in Spiceworks Just Got Acquired by Publisher Ziff-Davis:

Well I for one never knew this forum existed until yesterday, after doing a search for additional information regarding Spiceworks being sold, but I'm happy to be a new member and help contribute. Pass the cupcakes please!

That's awesome, welcome!

@scottalanmiller - Knowing you had discussions with them, I figured I would ask first. Would it be wrong to mention Mangolassi in reply to a post in that discussion on SW. Someone asked about additional forums but I have not replied yet.