Physics Network Integration Chris Hunter

Physics network team Chris Hunter : Network Manager David Newton : Network Support Technician Room DWB 663 Phone 73501 Email network@physics.ox.ac.uk

What we do? Manage and monitor the Physics network Physics Firewall Activating network ports / repair of network ports Monitoring network traffic flows Wireless system Physics_S Adds and changes to the Physics phone system new VoIP system to be introduced 2nd quarter 2017 in the DWB and Theoretical Physics, rest of the department 4th quarter 2017 Swipe card system, swipe and proximity

Network Sockets & Concentration Points Not all sockets are live, please contact network@physics.ox.ac.uk with the port label and room number. Please do not connect any CAT5 wall sockets together as shown in the picture. Please register personal laptops at http://www.physics.ox.ac.uk/it/account/ 16 network concentration points (NCP’s) in the Denys Wilkinson Building alone. Level 2 NCP hub of the Physics network with 2 x 10Gb fibre connections going to each of the Physics buildings. All wall sockets are capable 1Gb/s connections. Backbone connection currently 1Gb/s due to be upgraded to 10Gb/s 24/10/2016 University backbone is currently 2x(2x10Gb/s), a redundant active passive pair giving 20Gb/s total. Telephone adaptors.

Physics Wireless Network Local Wifi is available in all public areas within Physics via the SSID Physics_S, we do not guarantee that all offices are covered due to cost constraints. If you are shifting large amounts of data it is better to use the wired network. Anyone with a Physics network account can connect. Clients connected to the Physics_S wireless network are part of the 10.7.0.0/16 subnet, with 802.1x authentication. Help on connecting to Physics_S can be found at http://www2.physics.ox.ac.uk/it-services/categories/wireless

OUCS wireless network OWL-VISITOR and OWL-VPN are available, via the OWL ssid. Eduroam is available, connect using your Remote Access Account, different from your SSO or Nexus account http://help.it.ox.ac.uk/network/wireless/services/eduroam/index Details about both OWL & Eduroam at http://help.it.ox.ac.uk/network/wireless/index

Access to Physics Services remotely Virtual Private Network (VPN) vpn.physics.ox.ac.uk works with Microsoft, Linux and OSX clients, uses Physics authentication domain help at http://www2.physics.ox.ac.uk/it-services/categories/vpn Best to setup Windows client with Automatic as the VPN type, the client will then try a number of VPN types, our VPN server supports PPTP and SSTP, PPTP often gets blocked a the client end because the required GRE protocol is blocked. We have issues with new installs of macOS 10.12 Sierra working with SSTP which we are still looking to resolve IT services VPN details at http://help.it.ox.ac.uk/network/vpn/index

Access to Physics Services remotely Webdav Client independent access to Windows files (download only) is available via a web browser using the URL https://winfe.physics.ox.ac.uk/home/<username> Windows clients allow access to a webdav server by defining a network location in the Windows File Explorer. OSX clients, in the finder use the connect to server option, connecting to the URL above. Access to Particle Physics drives (/home/data) https://winfe.physics.ox.ac.uk/LinuxUsers/

Access to Physics Services remotely WinSCP Available on Physics Self Service on managed Windows systems.

Access to Physics Services remotely Remote Desktop RDP (screen sharing) Connection to Managed Windows clients is available from the Remote Desktop Client in Windows XP onwards. Terminal Services We have a number of multi-user servers available Windows, Linux and Mac. http://www2.physics.ox.ac.uk/it-services/remote-desktop-and-terminal-services

Network Security Connecting unmanaged systems to the Physics Cable Network Unmanaged systems first need to be registered at https://www.physics.ox.ac.uk/IT/account/cable/default.htm During registration your will agree that Your system if fully patched Your system is running a Firewall You are running an up-to-date anti virus program Be careful when opening emails, look out for phishing emails. http://blogs.it.ox.ac.uk/oxcert/phishing-advice/

Network Security Sophos Anti Virus Software Updates, out of date AV is no use Download Sophos for personal laptops running:- Sophos 10.3 for XP, Vista, Windows7 and 8 at http://www.physics.ox.ac.uk/sophos/ Linux at http://www.oucs.ox.ac.uk/viruses/linux/ Free Sophos for Mac OS X 10.6+ http://www.sophos.com/en-us/products/free-tools/sophos-antivirus-for-mac-home-edition.aspx

Connecting to Nexus email Web mail available at https://nexus.ox.ac.uk/ using Internet Explorer and Firefox currently. Configuring email clients and using Nexus email http://www.it.ox.ac.uk/want/get-started/email

Access to Physics Services from unmanaged systems Printing from a Windows http://www.physics.ox.ac.uk/it/mswindows/windowsprinting.htm Mac Printing http://www.physics.ox.ac.uk/it/mac/macprinting.htm Linux Printing http://www2.physics.ox.ac.uk/it-services/adding-printers-in-linux

Physics self service Under Programs\Physics Self Service

FAQ’s http://www.physics.ox.ac.uk/it/mswindows/faq.htm

Questions?

Backup Slides

Edge Switch Upgrades 48 x 1Gb/s + 2 x 10Gb/s SFP+ Ports Switch stacking up to 8 switches via HDMI cables at speeds of > 10.2 Gbit/s Port Based Authentication, 802.1x and Mac Address Bypass (MAB) Port based Access Control Lists (ACL’s)

Physics Firewall Firewall Juniper Netscreen ISG 1000

Network Security Connecting unmanaged systems to the Physics Network MAC address registration is needed before gaining any network connection for laptops on the wired network, please register at http://www.physics.ox.ac.uk/it/account/ 172.17.x.x un-trusted subnet Is your laptop up to date? Anti Virus / spyware Fully patched OS Be carful when opening emails, look out for phishing emails Connecting from outside of Physics SMB blocked, no connection to windows files MAPI access to Exchange Server blocked SMTP blocked

Network Backbone Connection Physics connection presently 1Gbps Campus connection to Super Janet currently at 2 x 10Gbps.

Access to Physics Services from the un-trusted subnet or remotely Exchange email web access https://mail.physics.ox.ac.uk, Outlook Configuration If using Outlook 2007 or 2010, then you can use the `autodiscover` feature. Basically, all it needs to know is your email address (which it will already know if you are logged into the domain) and it will look up all the other information it needs. Further details can be found at http://www.physics.ox.ac.uk/it/email/exchange/2010/Outlook.htm Webdav via browser or windows network locations https://winfe.physics.ox.ac.uk/home/<username> connects to your windows ‘H’ drive. (Windows 7) Right click on ‘Computer’ within the file explorer, click ‘Add a network location’, type the address above into the ‘Internet or network address field’, click next, authenticate with you Physics credentials, type a name in for the network location, click finish. Sftp + SSH Winscp available on self service http://www.physics.ox.ac.uk/it/mswindows/remote.htm

Access to Physics Services from the un-trusted subnet or remotely Windows terminal Servers A list of servers can be found at http://www2.physics.ox.ac.uk/it-services/remote-desktop-and-terminal-services Remote Desktop Client (MS & MAC OSX), possible to connect to local disks, printers and serial ports (not possible to connect serial ports in OSX). Rdesktop on Linux systems, rdesktop <termservqc>, more for people without Windows desktop Windows XP, Vista, Windows 7 and 8 will allow remote access via terminal services, to connect to your Window desktop from outside the department connect through rdp-gateway.physics.ox.ac.uk, details can found on the address above.