Archive for April, 2009
Why Static IPs?
Posted by Bloggylife in technology on April 19, 2009
There are many issues with dynamic IPs for stations providing services such as web, email, FTP, etc.
- Can’t guarantee they’ll always keep the same IP.
- Changes need to be reflected on the DNS, which may have been set so that hosts can automatically register themselves or not. DNS changes take time to be propagated to other servers.
- Some applications need the IPs to be coded within them, if the IP is changed it has to be reflected as well.
- Most importantly, when you configure the firewall, it’s for that specific IP, I personally haven’t seen a firewall where the host is configured with name only and DNS is used to lookup the IP.
| Source | Destination | Service | Action |
| Any | Web Server Public IP | http | accept |
- For email, services, PTR records are created to verify that you are not a spammer and if you don’t own your IP block, you got it through an ISP which is the common case, PTR records for your IP block is pointed at their main DNS servers and not yours. So imagine the headache of everytime calling your ISP to change the public IP record. You may argue well only the private IPs are changed and mapped to the same public IP, you’d be amazed to know that some configure their public IPs direct on their servers.
- DNS servers are configured with IPs only. Example, if you are looking for x.google.com, a list of their DNS IP addresses is added (ex: 216.239.32.10) in other root DNS servers for you to go there and retrieve the correct IP.
That’s what I came up with, there may be other reasons 
Left Out ??
Posted by Bloggylife in personal on April 19, 2009
Having a baby in your life, doesn’t mean that you forget your first one. Because the latter might resort to ways to catch your attention … like sitting on the baby’s carryon ;P
خلصوا الأماكن
Flickr Tag Error: Call to display photo '3453085969' failed.
Error state follows:
- stat: fail
- code: 98
- message: Invalid auth token
Flickr Tag Error: Call to display photo '3453900540' failed.
Error state follows:
- stat: fail
- code: 98
- message: Invalid auth token
Flickr Tag Error: Call to display photo '3453901304' failed.
Error state follows:
- stat: fail
- code: 98
- message: Invalid auth token
An Answer!
Posted by Bloggylife in thoughts on April 18, 2009
Q: Can you assign a dynamic IP to a server?
A: Can you jump off a plane without a parachute?
You can, but won’t!
Maya Angelou – Letter To My Daughter
Posted by Bloggylife in book on April 18, 2009
I continued reading Maya Angelou’s book, Letter To My Daughter, on the plane. I managed to finish it on our way back. It is an amazing light book that touched me in different ways. She is a magnifienct writer, that I went on and bought other books by her!
She starts off by a simple introduction to why this book and writes her life stories and leaves it to the reader to conclude and learn from the incident. Her upbringings, travels, work, friends, her life so far, her gains and losses.
I tried to quote many things I liked in this book, but most probably I’ll end up posting it all, so I do recommend it to those who like reading this kind of book genre.
A Nice Break
Posted by Bloggylife in personal on April 10, 2009
So I’m off to Dubai tomorrow insha’Allah for a course, I still haven’t packed yet so I’m not sure what I’ll be taking and if I’ll take my laptop along. My theory is, if I miss packing something, I could always get it from there ;P
Anyway, everyone is telling me to take it easy and not take the course seriously, and I’ll do just that.
My lil bro is coming with me this time, so that’ll be a first. Last time, I went off with my big bro and it was loads of fun because he and I have the same interests in almost everything. My mom is tagging along and my aunt also!! I know “shakoo” but it’s all mom’s doings and you have no choice but to go along with it all! Downside of being a female, people always force things on you and especially if it’s your mom.
I’ll be staying in an affordable hotel within a walking distance from Emirates malls, so at least I’ll be a few feets away from the latest movies and the skiing arena ;P I just hope mom and my aunt don’t drag us in endless shopping sprees! Don’t get me wrong, I’ll do some shopping with my lil bro Also, I really want to go to the “Go Kart” place this time, last visit we didn’t have time. And that “jumping off a plane” is still swirling in my head, but still didn’t sum up the courage to do it, hmmmm, maybe lil bro will help or just put some sense in me, I’ll ask him once we are there.
YUP, we can do anything we like, because I booked two rooms, one for my mom and aunt and one for lil bro and me, so we can sneak away -devilish grin-
I really hope, I enjoy my time, because I need it so bad, I need a break from it all 
Changing Networks Tips
Posted by Bloggylife in technology, troubleshooting on April 9, 2009
It can get a bit tedious when changing the design of your network, if you have an existing configured network, it’s harder to change it then implement a new one all together.
If you look at a company’s network, it’s focal point is its firewall. Behind each interface is a network or a group of networks.
On the 3-layer switch level, you’ll have the VLANs configured and on that switching level, there are routing capabilities, all is routed to the gateway. ex. users private network will be routed to a single firewall interface (172.17.1.1), where as your DMZ private network, has it’s own interface on the firewall.
When changing the network, do it one step at a time, have your design layout and let it make sense, if you have VLANs, name your VLANs correlated with the network IP settings, ex. VLAN 3 is configured for network 10.3.x.x, something to make your life easier for future troubleshooting.
Change one thing a day (VLAN/switch) and start with the least network usage department/users. Which locations, uses the network resources less, they don’t depend on the email system, Internet, etc. Most of their tasks are local to their PCs. Preferable, if it has the less users mixture, what we call direct users who are configure on another level, firewall, to use services other than the normal ones, like direct access to application servers.
Adding a new VLAN, doesn’t mean you delete the old one, keep it still, the same VLAN maybe configured somewhere else you aren’t aware of and needs to be routed.
Don’t forget to go beyond the switch level, your firewall needs to be aware of the new settings. Route the new network to the proper interface and don’t forget to add the network group on the firewall application, it has to know that this is a valid network residing behind that specific interface, ex. network 10.x.x.x is behind interface 172.17.1.1, or else the firewall will drop the packets presuming it some kind of spoofing attack. These settings are needed for users with public IPs natted to their private ones.
Check everything after each configuration, even if you think it won’t effect what you are checking, believe me with IT crazy things that don’t make sense happen all the time!
Write everything down, day and what tasks were done and build up your documentation through that.
Leave the servers network last, this is a huge headache, you can have both old and new server network, working side by side, routing between each other and gradually shift them and don’t forget to PRAY throughout the whole process
Imaginary Scenario
Posted by Bloggylife in thoughts on April 9, 2009
I’m familiar with computers, I put it all together and still I don’t have Internet!
Did you plug in the network cable
Yes
Not the telephone one, it’s head is smaller, the big one, the thicker one
Yes
The cable colour is white
Yes
Are you sure, it isn’t the telephone line, we don’t have white network cables
This is the cable, I’ve been using since I joined the company
Ok, I’m coming over …
See, I put everything together, there must be something wrong, you didn’t fix my computer …
Sure, there’s something wrong, where’s your telephone?
It’s over there, I couldn’t find the telephone cable, it must be the new employee, they always take stuff …
There’s your telephone cable.
Where ???
Plugged in your ethernet network card! This goes here and that other black cable goes in your computer. Are you sure, you were using the white cable on your computer all along?
Well, now that I’ve seen the black one, it seems this is the one for the computer, it’s all the helpdesk fault, they had to take it to the workshop, why couldn’t they fix it here and ….
Morning Thoughts
Posted by Bloggylife in thoughts on April 8, 2009
Why go to work early or on time …
When you know you’re going to leave late at the end of the day!
Wondering Away Thoughts!
Posted by Bloggylife in thoughts on April 7, 2009
KEEP IT CLEAN
As I read that, Keep IT, as in information technology, Clean, I wondered about it’s meaning …
Then it hit me, why would they hang that in a bathroom, wait they actually mean …
Keep it Clean!!
LOL, come on, pushed it too far with the interpretation but the mind is stuck on a certain mode! Switch to normal damn it, switch to normal 
Be honest, how did you read it ;P
-
You are currently browsing the archives for April, 2009
Recent Comments