To narrow the scope of GPO create OU with only WSUS server(s), or create security filter for sec.group with only computer accounts of WSUS server(s):
details:
result should be like:
If you often install freshly windows system, then my post maybe will be helpful for you. Mainly it’s more related to creation of system images for further deployments in corporate network, but sometimes it saves time even for home geeks. After installation you usually update from Microsoft Update thru internet or from WSUS – it takes a lot of time even on beefy computers. My idea is to do this work only once (later just to update in usual way from time to time). When you finished updates:
Microsoft Windows 7 USB DVD download tool is very capricious, long time is not updated, doesn’t work in many cases (can after spent long time to copy 2-4gb, only in the end of process suddenly cast error that couldn’t create boot records; or doesn’t work on other version of windows and so on). Therefore i prefer to use tiny rufus utility. It’s free and very small – less than megabyte. Doesn’t need to be installed – portable – ready to work immediately after download. Very stable work to create Windows install disks for any edition and version, including windows 10 … Read the rest
diskpart list disk select disk 0 clean
(if you install fresh windows – during booting
OK, we already have Openvpn server at central office. Now our task is to configure branch office pfsenses (why pfsense) to connect central office Openvpn server:
We continue previous post about creation of site to site vpn between multiple branch offices and central office of company.
iface eth0 inet static address 192.168.0.2 # it is considered that 192.168.0.1 is used as dgw in central… Read the rest
It’s commonplace to connect multiple company branches and central office by VPN. For my customers for example it’s needed to :
Sometimes temporary, moreover free VPS hosing for 1 year is great and generous opportunity. Usually it’s very handy for testing (for example to install linux, configure lamp, wordpress, 2fa, freeSSL, plugins and so on ), web development, personal blogs, short-term projects like election events and so on.
Amazon Web service suggests it for whole 1 year. Just be VERY careful to not trespass limits of free tier (for example AWS automatically has done EBS snapshots during import of my vmware ova to AWS AMI and later on to free tier instance — although 09 cents were generously forgiven by AWS … Read the rest
Strange that the main national domain registrar (http://manage.datacom.mn) yet don’t use SSL for own management console. Mobinet, national cloud provider even don’t have DNS registration for own services asking to create hosts file records for vps-mgnt.mobinet.mn. Mobinet who resells Comodo SSL doesn’t have valid SSL for https://vps-mgnt.mobinet.mn/ (and looks like self-signed SSL is created to conflict with vmware cert namespace).
SSL providers suggest DNS (email) validation for certificate CSR, so vulnerable web DNS manager (not protected by SSL) can compromise issued SSL certs and finally web sites with online banking, payment systems and so on. I suggest for
Недавно потребовалось протянуть несколько десятков UTP кабелей. И заново изобрел велосипед 🙂 – у нас в Монголии сложно (а точнее совершенно невозможно) купить нормальные профессиональные короба (cable-channel) и аксессуары к ним. Пришлось возиться с китайскими дешевыми и сердитыми. Замучался придерживать кабели, когда закрывал короба крышкой – и вдруг в голову пришла идея – взять лишние бросовые куски кабеля и нарезать цветные провода/пары по 20 см, продырявить короб через каждые 40-50 см двойными с края мелкими отверствиями и продеть провода – теперь осталось уложить в короб кабели и проводочками закрепить внутри короба, чтоб не вываливались и после этого закрытие короба крышкой … Read the rest