TCP/IP filtering and security in Windows 2003

Some good links to sources for doing TCP, UDP, and IP protocol filtering in Windows 2003:

Microsoft Windows Server 2003 TCP-IP Implementation Details - http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/networking/tcpip03.mspx

Configure TCP/IP to use TCP/IP filtering - http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/ServerHelp/676ec0f3-4200-43d4-a512-7c637493c387.mspx

List of IP protocol numbers from IANA - http://www.iana.org/assignments/protocol-numbers
Some common IP protocols are:
1 - ICMP
6 - TCP
17 - UDP

Open Source M database / compiler

GT.M High end database + MUMPS compiler -
http://sourceforge.net/projects/sanchez-gtm
Possible alternative to Intersystems Cache?

See your IP address

See what IP address your device/PC is reporting itself to be.  Check what IP address your company has assigned to the external NAT on the firewall:

http://www.whatismyip.com/

 

burn DVD / CD from the command line free

Command Burner - http://www.commandburner.com

 

http://www.experts-exchange.com/Storage/Q_21651217.html

Browser Capabilities and browscap.ini

You can use the ASP object BrowserType (MSWC.BrowserType) to find browser capabilities within your web app.  Browscap.ini also affects the values returned from this object.

 

Browser Capabilities Component
http://www.microsoft.com/windows2000/en/server/iis/default.asp?url=/windows2000/en/server/iis/htm/asp/comp3xx0.htm

 

ASP Browser Capabilities Component
http://www.w3schools.com/asp/asp_browser.asp

 

HOW TO: Add Internet Explorer 6 Information to the Browscap.ini File
http://support.microsoft.com/kb/311227

vdump to tape and file simultaneously

Use vdump to output to stdout, pipe it to tee and have tee send it to the tape device, then redirect stdout from tee to a file or another tape device.

 

Example:

fileset to backup: /mycrap/mountpoint

 

vdump -0f - /mycrap/mountpoint | tee /dev/ntape/tape1c > /morestuff/vdumpbackup

 

Using the -q (quiet) option still results in 4 lines from vdump going to stderr:

path     : /mycrap/mountpoint

dev/fset : crapdomain#mntpt
type     : advfs
advfs id : 0x3cbae55e.010baf45.b

You can kind just redirect stderr to /dev/null in that case.  I don't like the idea of that in case of 'real' errors going to stderr, then you'll miss them.  The above example would then be:

vdump -0f - /mycrap/mountpoint 2>/dev/null | tee /dev/ntape/tape1c > /morestuff/vdumpbackup

 

 

FCA2684 and EMC ClARiiON Cx500

Tru64 needs and entry entered into the ddr.dbase file:

backup the /etc/ddr.dbase first.  Here's the entry needed, put it under the DISKS section:

 

SCSIDEVICE
    #
    # Entry for CLARiiON Storage
    #
    Type = disk
    Stype = 2
    Name = "DGC"
    #
    PARAMETERS:
      #
      TypeSubClass = hard_disk, raid
      BlockSize = 512
      BadBlockRecovery = disabled
      DynamicGeometry = true
      DisperseQueue = false
      TagQueueDepth = 32
      PwrMgmt_Capable = false
      LongTimeoutRetry = enabled
      ReadyTimeSeconds = 90
      InquiryLength = 120
      RequestSenseLength = 120
      #
    ATTRIBUTE:
      #
      # Disable PR/AWRE/ARRE and enable I/O Barrier
      #
      AttributeName = "DSBLflags"
      Length = 4
      ubyte[0] = 25
      #
    ATTRIBUTE:
      #
      # Disable Start Unit with every VPD Inquiry
      #
      AttributeName = "VPDinfo"
      Length = 16
      ubyte[6] = 4
      #
    ATTRIBUTE:
      #
      # Report UDID value in hwmgr -view devices
      #
      AttributeName = "rpt_chgbl_dev_ident"
      Length = 4

 

After this is entered, you need to recompile the ddr.db file using the ddr_config -c command.  You'll need to contact you SAN guy to create the LUN and setup security on the SAN side of things.  Once that's done, you should be able to see the LUN after you scan: hwmgr -scan scsi   then view the devices: hwmgr -show scsi

 

 

ASP code to log events to application event log

How To Log Events from Active Server Pages - http://support.microsoft.com/kb/301309

 

Note the "Troubleshooting Notes" section if it doesn't work.  I used the WSH method and it worked, even though the anonymous account was a part of the guests group and the RestrictGuessAccess was not set.

 

Bandwidth speed test for broadband connections

http://www.bandwidthplace.com/speedtest/

For DSL or Cable broadband connections. Many other ones out there, but this one does not require Flash or Java to perform the test.

This one much more to offer: a latency and upload speed test and has links for pasting results in forums and what-not.
http://www.speedtest.net/

modify Tru64 kernel parameters

How to modify Tru64 kernel parameters / attributes / subsystems:

 

Always backup the /etc/sysconfigtab file first before attempting any of this!!

Always merge instead of using the -u or -a option of sysconfigdb; you will overwrite what was in /etc/sysconfigtab.

see sysconfigdb -l proc  to see what values are recorded in /etc/sysconfigtab

sysconfig -q proc max-threads-per-user max-proc-per-user > dave

vi dave
proc:
max-threads-per-user = 8192
max-proc-per-user = 8192

sysconfigdb -m -f dave proc

sysconfig -q pts nptys > dave
vi dave
pts:
nptys = 2048

sysconfigdb -m -f dave proc

sysconfig -q ipc sem-msl sem-mni shm-max > dave
vi dave
ipc:
sem-msl = 50
sem-mni = 128
shm-max = 2147483648

sysconfigdb -m -f dave ipc

restart the system

verify the values:
sysconfig -q proc max-threads-per-user max-proc-per-user
sysconfig -q pts nptys
sysconfig -q ipc sem-msl sem-mni shm-max

 

make a bootable tape for tru64

sysman boot_tape

 

 

Tru64 boot hanging on configuring network

Tur64 hung on bootup after the:

Configuring network:

setting hostname: node1

 

Nothing network related would work.  I'd get a connection refused message when trying to telnet or ssh in....  That's because it hadn't loaded the rest of the network scripts: /etc/inet.local, etc.

 

I forgot to set MAX_NETDEVS in rc.config.  I control-c out of the hang, changed rc.config by: rcmgr set MAX_NETDEVS 24   and restarted.  Everything worked fine.