Wednesday, November 24, 2010

WindowsNetworking.com - November 2010 Newsletter

-----------------------------------------
WindowsNetworking.com Monthly Newsletter of November 2010
Sponsored by: Uniprint <http://www.uniprint.net/ProductUniPrintSuite.aspx?TypeID=UPGW#UPTSE>
-----------------------------------------

Welcome to the WindowsNetworking.com newsletter by Debra Littlejohn Shinder <http://www.windowsnetworking.com/Deb_Shinder/>, MVP. Each month we will bring you interesting and helpful information on the world of Windows Networking. We want to know what all *you* are interested in hearing about. Please send your suggestions for future newsletter content to: dshinder@windowsnetworking.com


1. Get Off of My (Private) Cloud
---------------------------------------------------------

We've been hearing a lot about the cloud lately, what with Microsoft being "all in" and Google, Amazon, Cisco and others pushing us to do more "in the cloud". But despite all the hype, companies are still wary of the public cloud. They&#146;re worried about reliability. They're worried about security. And they&#146;re worried that the talk about cost savings may prove to be exaggerated, or worse.

Nobody denies that cloud technologies offer some big advantages. By using resources more efficiently, less energy is consumed and costs can be lowered. Cloud-based computing can be more scalable, especially for special projects. Network operations and management can be simplified and personnel costs can be reduced when in-house services are replaced by hosted services.

But going to the cloud means giving up control, and many organizations aren't ready to do that. Is there a way to take advantage of cloud technologies such as server virtualization, VDI, resource automation and virtualized storage without handing over the keys to your kingdom to a cloud provider you may not completely trust? That's where the private cloud comes in, and it's an idea that's catching on - either instead of, or as a transitionary step on the way to the public cloud.

Some organizations are upgrading the hardware in their datacenters, installing their servers in virtual machines and calling it a private cloud, but that misses much of the point. A private cloud uses virtualization to achieve agile provisioning of resources and relies on automation so that those resources can be provisioned more efficiently as needed. The virtualized data center is, in fact, just a stepping stone in the move to the private cloud, according to Gartner vice president Thomas Bittman. The good news is that it&#146;s not only possible but probable that your private cloud will grow out of your existing data center, rather than being something for which you have to "tear it all down" to build anew.

That's not to say that you won't have to replace some of your infrastructure, and it just makes sense to get rid of old legacy servers that don't support automated management and might be more trouble than they're worth if you try to configure them to work as part of your private cloud infrastructure. And there is sure to be a learning curve as you make the transition.

Still, Bittman's survey of IT managers earlier this year indicated that three fourths of the data center executives, managers and decision-makers responding said that their organizations would be pursuing private cloud strategies by 2012, and the same number said they planned to invest more money in private cloud than in the public cloud over the next two years.
http://blogs.gartner.com/thomas_bittman/2010/04/21/polling-data-on-publicprivate-cloud-computing/

All of this points to a trend and says that at least for the time being, the majority of organizations are more comfortable with keeping their cloud computing inside the corporate firewall. This makes it likely that as an IT professional, your job in upcoming years will be about implementing and operating some aspect of the private cloud. It's also a good bet that hybrid private/public clouds will be the next step, so you&#146;ll probably be helping to build a private cloud that can integrate with the public cloud. If you haven't already started thinking about upgrading your skills and knowledge to include cloud computing, it's time you do. Contrary to what the "doom and gloom" crowd may say, the rising popularity of cloud computing isn't going to make IT pros obsolete anytime soon - but it is going to change their job descriptions and the skill sets that will be required to get and keep those jobs. It's going to involve a change in mindset, to focus on the kind of on-demand computing that users will expect from a "cloudified" environment.

We'll be talking more about the cloud in this newsletter and on the WindowsNetworking site in the future, so get ready for a wild ride.

'Til next time,

Deb

By Debra Littlejohn Shinder, MVP
dshinder@windowsnetworking.com


=======================
Quote of the Month - "Nobody wins - one side just loses more slowly." - TV Show
=======================


2. ISA Server 2006 Migration Guide - Order Today!
---------------------------------------------------------

Dr. Tom Shinder's best selling books on ISA Server 2000 and 2004 were the "ISA
Firewall Bibles" for thousands of ISA Firewall administrators. Dr. Tom and his
illustrious team of ISA Firewall experts now present to you , ISA Server 2006
Migration Guide
<http://www.amazon.com/exec/obidos/ASIN/1597491993/isaserver1-20/>. This book
leverages the over two years of experience Tom and his team of ISA Firewall
experts have had with ISA 2006, from beta to RTM and all the versions and builds
in between. They've logged literally 1000's of flight hours with ISA 2006 and
they have shared the Good, the Great, the Bad and the Ugly of ISA 2006 with
their no holds barred coverage of Microsoft's state of the art stateful packet
and application layer inspection firewall.

Order your copy of ISA Server 2006 Migration Guide
<http://www.amazon.com/exec/obidos/ASIN/1597491993/isaserver1-20/>. You'll be
glad you did.

3. WindowsNetworking.com Articles of Interest
---------------------------------------------------------

* Customizing Default User Profile in Windows 7 (Part 1) <http://www.windowsnetworking.com/articles_tutorials/Customizing-Default-User-Profile-Windows-7-Part1.html>

* Configuring the Active Directory Lightweight Directory Service (Part 2) <http://www.windowsnetworking.com/articles_tutorials/Configuring-Active-Directory-
Lightweight-Directory-Service-Part2.html
>

* Overview of Microsoft System Center product line and how it can help you <http://www.windowsnetworking.com/articles_tutorials/Overview-Microsoft-System-Center-product-line-how-can-help-you.html>

* Direct Memory Access <http://www.windowsnetworking.com/articles_tutorials/Direct-Memory-Access.html>

* Windows User State Virtualization - Part 6: USV Frequently Asked Questions <http://www.windowsnetworking.com/articles_tutorials/Windows-User-State-Virtualization-Part6.html>

* Diagnosing Wireless Issues with inSSIDer and other tools <http://www.windowsnetworking.com/articles_tutorials/Diagnosing-Wireless-Issues-inSSIDer-other-tools.html>

* Securing Wireless Network Traffic (Part 2) <http://www.windowsnetworking.com/articles_tutorials/Securing-Wireless-Network-Traffic-Part2.html>

* Blue Coat ProxyAV Appliances - Voted WindowsNetworking.com Readers' Choice Award Winner - Anti Virus Hardware <http://www.windowsnetworking.com/news/WindowsNetworking-Readers-Choice-Award-Anti-
Virus-Hardware-Blue-Coat-ProxyAV-Appliances-Sep10.html
>

* Windows User State Virtualization - Part 4: Mixed Environments <http://www.windowsnetworking.com/articles_tutorials/Windows-User-State-Virtualization-Part4.html>


4. Administrator KB Tip of the Month
---------------------------------------------------------

*Quick Tip to Restrict Users from Modifying the Schedule Tasks*

Group Policy does not provide any policy settings to hide Schedule Tasks created by an administrator or applications. You need to use a small script to accomplish this. This article explains how you can do this using a small script.
As an example, you are domain administrator. You need to create a schedule task to perform a couple of tasks on all the client computers and need to make sure users and local administrators are not able to delete this task. To accomplish this, you need to hide the task and remove the permissions for local administrators group. This article assumes you have the commands written in TaskFile.CMD and is already copied to the C:\Windows\System32 directory on all the client computers.

1. Create a CMD file by name: Tasks.CMD and then put the following lines in it:

- REM *** START ***
- @ Echo off
- C:\Windows\System32\Schtasks.exe /Create /s \\%COMPUTERNAME% /tn "Task_Name" /tr C:\Windows\System32\TaskFile.CMD /sc onidle /i 60 /ru "NT Authority\System"
- Echo Y|C:\Windows\System32\Cacls.exe C:\Windows\Tasks\Task_Name.JOB /G SYSTEM:F
- REM *** END ***


2. Edit or create a Group Policy Object and put the Tasks.CMD in Startup Script.

The above script will create a task by name Task_Name. The task runs the TaskFile.CMD file which you copy to client computers and runs when computer is idle for 1 hour. You can change this as per your requirement.

The next line in script assigns SYSTEM account Full Control permissions removing any other account from the property of the task. This way local users, domain users and even local administrators cannot see the task when they go to Schedule Tasks folder.


For more administrator tips, go to WindowsNetworking.com/WindowsTips
<http://www.windowsnetworking.com/kbase/WindowsTips/>


5. Windows Networking Tip of the Month
---------------------------------------------------------

Reduce a volume's size in Windows 7

The Windows 7 Disk Management tool provides an easy to use interface for managing partitions and volumes. Here's how you can shrink a volume to free up space so you can create a new partition on the disk.

Perform the following steps to shrink a basic volume, simple volume, or a spanned volume:

1. Open the Disk Management console by typing diskmgmt.msc at an elevated command prompt.

2. In the Disk Management console, right-click the volume that you want to shrink, and then click Shrink Volume.

3. In the text box provided in the Shrink dialog box, enter the amount of space by which to shrink the disk:

The Shrink dialog box provides the following information:
Total Size Before Shrink in MB Lists the total capacity of the volume in MB. This is the formatted size of the volume.
Size Of Available Shrink Space In MB Lists the maximum amount by which you can shrink the volume. This doesn't represent the total amount of free space on the volume; it represents the amount of space that can be removed, not including any data reserved for the master file table, volume snapshots, page files, and temporary files.
Enter The Amount of Space To Shrink In MB Lists the total amount of space that will be removed from the volume. The initial value defaults to the maximum amount of space that can be removed from the volume. For optimal drive performance, you should ensure that the volume has at least 10 percent of free space after the shrink operation.
Total Size After Shrink In MB Lists what the total capacity of the volume in MB will be after you shrink the volume. This is the new formatted size of the volume.

4. Click Shrink.
Once you have unallocated space, you can use that space to create a new partition.


6. WindowsNetworking Links of the Month
---------------------------------------------------------

* Home sweet homegroup: Networking the easy way in Windows 7 <http://windows.microsoft.com/en-US/windows7/help/home-sweet-homegroup-networking-the-easy-way>

* 10 New Features of Windows 7 Networking <http://www.windowsnetworking.com/articles_tutorials/10-New-Features-Windows-7-Networking.html>

* Networking home computers running different versions of Windows <http://windows.microsoft.com/en-US/windows7/Networking-home-computers-running-different-versions-of-Windows>

* A Guide to Windows 7 Networking <http://www.pcworld.com/businesscenter/article/172268/a_guide_to_windows_7_networking.html>

* New IPv6 Survival Guide in the TechNet Wiki <http://blogs.technet.com/b/wsnetdoc/archive/2010/11/15/new-ipv6-survival-guide-in-the-technet-wiki.aspx>

* New Test Lab Guides blog <http://blogs.technet.com/b/wsnetdoc/archive/2010/11/04/new-test-lab-guides-blog.aspx>


7. Ask Sgt. Deb
---------------------------------------------------------

* QUESTION:

Hey Deb,

I'm using a TMG firewall right now. I was using a Websense appliance in the past, but found the costs to be too high and when I compared the TMG firewall's URL filtering and anti-malware feature set to Websense, it seemed like TMG offered a much better value. However, one thing that I really need right now is a way to control bandwidth. I'd like to limit bandwidth to certain destination and set bandwidth quota too. Any ideas?

Thanks! - Wall E.


* ANSWER:

Hi Wall!

Congrats on upgrading your web filtering solution to the TMG firewall! Yes, Websense is pretty good, but with web filtering pretty much becoming a commodity service these days, you need to look at how to get the best bang for your buck. The TMG firewall certainly provides a lot of value in that area! And you get one of the best anti-malware solutions too. But you're right - the TMG firewall doesn't have any bandwidth shaping or control options. If you remember, way back in the ISA 2000 days, the ISA firewall included some basic bandwidth control options. However, those were dropped with ISA 2004. There are a number of solutions that you can plug into the TMG firewall. One that I'm using is called Bandwidth Splitter, and it's working well for me. If you want to learn more about bandwidth splitter, check out my review of the product over at http://www.isaserver.org/tutorials/Product-Review-BNTC-Softwares-Bandwidth-Splitter.html

TechGenix Sites
---------------------------------------------------------

MSExchange.org <http://www.msexchange.org/>
WindowSecurity.com <http://www.windowsecurity.com/>
ISAserver.org <http://www.isaserver.org/>
VirtualizationAdmin.com <http://www.virtualizationadmin.com/>

--
Visit the Subscription Management <http://www.techgenix.com/newsletter/>
section to unsubscribe.
WindowsNetworking.com is in no way affiliated with Microsoft Corp.
http://www.techgenix.com/advert/index.htm for sponsorship
information or contact us at advertising@windowsnetworking.com
Copyright c WindowsNetworking.com 2010. All rights reserved.

No comments:

Post a Comment