Technology Update TSAG Meeting 8/8/02. Announcements: Account Cleanup  Number of Accounts: 41,338  Number of Faculty/Staff:~ 3,000  Number of Students:~30,000(~

Slides:

Advertisements

Similar presentations

Presenter: Mark Elkins Topic: Things not getting done.

Advertisements

Internet Applications INTERNET APPLICATIONS. Internet Applications Domain Name Service Proxy Service Mail Service Web Service.

Technology Update TSAG Meeting 9/12/02. Announcements: Mandatory Password Changes Coming in October! (Postponed) End of BootP (November 1) DNS Cleanup.

Technology Update TSAG Meeting 6/13/02. Announcements: DNS Naming and Cleanup (coming!)  imap: , mail, mail1, mailsrv1  telnet, csun1: csun2, hp9k2,

Lesson 18-Internet Architecture. Overview Internet services. Develop a communications architecture. Design a demilitarized zone. Understand network address.

Technology Update TSAG Meeting 11/13/03. Rollout of Portal and SOLAR ( Portal and SOLAR are part of the.

Technology Update TSAG Meeting 3/13/03. Announcements: Disaster Recovery Test:[Bill]  (2/18-19) Networking Infrastructure: DNS, DHCP, Authentication.

Technology Update TSAG Meeting 2/13/03. Announcements: Self-Service Account Utility Available Disaster Recovery Test:  (2/18-19)

Technology Update TSAG Meeting 11/14/02. Announcements: Spam Open Forum  Monday November 18, 2pm-3pm  OV Presentation Room Campus Operations Center:

Exploring Microsoft Office Outlook Microsoft Outlook 2000 A Desktop Information Manager By Robert T. Grauer Maryann Barber.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.

Update and Discussions on Technology Initiatives TSAG Meeting 4/11/02.

Technology Update TSAG Meeting 10/10/02. Announcements: DNS Cleanup Send periodic ICMP ping probes to all DNS entries (8/26- 9/13) Correlate data obtained.

TSAG Meeting 3/14/02 Update on Current Technology Initiatives.

Technology Update TSAG Meeting 7/11/02. Announcements: DNS Naming and Cleanup (coming!)  imap: , mail, mail1, mailsrv1  telnet, csun1: csun2, hp9k2,

POP Configuration Microsoft Outlook What is POP? Short for Post Office Protocol, a protocol used to retrieve from a mail server. Most.

1 Enabling Secure Internet Access with ISA Server.

Chapter Eleven An Introduction to TCP/IP. Objectives To compare TCP/IP’s layered structure to OSI To review the structure of an IP address To look at.

Network LANscape Servers & Equipment Found In a Typical Local Area Network (LAN) By George Squillace New Horizons of MichiganGeorge Squillace MCT, MCSE,

1 ISA Server 2004 Installation & Configuration Overview By Nicholas Quinn.

? INTERNET WHAT, WHY, HOW. DEFINITION The Internet is a massive public spiderweb of computer connections. It connects personal computers, laptops, tablets,

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 IT Essentials PC Hardware and Software 4.1 Instructional Resource Chapter.

Internet Service Provisioning Phase - I August 29, 2003 TSPT Web:

Packet Filtering. 2 Objectives Describe packets and packet filtering Explain the approaches to packet filtering Recommend specific filtering rules.

Guide to MCSE , Second Edition, Enhanced1 Windows XP Network Overview Most versatile Windows operating system Supports local area network (LAN) connections.

Chapter 7: Using Windows Servers to Share Information.

1 Computer Communication & Networks Lecture 27 Application Layer: Electronic mail and FTP Waleed.

Lecturer: Maxim Podlesny Sep CSE 473 File Transfer and Electronic in Internet.

Overview: Identify the Internet protocols and standards Identify common vulnerabilities and countermeasures Identify specific IIS/WWW/FTP concerns Identify.

Network Protocols. Why Protocols?  Rules and procedures to govern communication Some for transferring data Some for transferring data Some for route.

Chapter 10 Intro to Routing & Switching.  Upon completion of this chapter, you should be able to:  Explain how the functions of the application layer,

©Kwan Sai Kit, All Rights Reserved Windows Small Business Server 2003 Features.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 3: TCP/IP Architecture.

Module 6: Manage and Configure Messaging. Configuring Internet Mail Using Small Business Server (SBS) 2008 Console Configuring Protection Configuring.

26.1 Chapter 26 Remote Logging, Electronic Mail, and File Transfer Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or.

Chapter 6: Packet Filtering

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Services Working at a Small-to-Medium Business or ISP – Chapter 7.

Csci5233 Computer Security1 Bishop: Chapter 27 System Security.

A+ Guide to Managing and Maintaining Your PC Fifth Edition Chapter 19 PCs on the Internet.

1 The Firewall Menu. 2 Firewall Overview The GD eSeries appliance provides multiple pre-defined firewall components/sections which you can configure uniquely.

Network Management Tool Amy Auburger. 2 Product Overview Made by Ipswitch Affordable alternative to expensive & complicated Network Management Systems.

Technology Update TSAG Meeting 4/8/04. Announcements IPX and Appletalk being phased out Friday June (Last day of academic year)

Chapter 1: The Internet and the WWW CIS 275—Web Application Development for Business I.

Technology Update TSAG Meeting 3/11/04. Reminders CENIC (Corporation for Education Network Initiatives in California)  4CNET is being phased out. (our.

The Internet Just the Facts. Protocols TCP/IP are the TRANSPORT protocols of the Internet Services use TCP/IP to connect to other computers on Internet.

Packet Filtering Chapter 4. Learning Objectives Understand packets and packet filtering Understand approaches to packet filtering Set specific filtering.

Application Services COM211 Communications and Networks CDA College Theodoros Christophides

Module 6: Integrating ISA Server 2004 and Microsoft Exchange Server.

TSAG Meeting 1/09/02 Update on Current Technology Initiatives Steven Fitzgerald.

TCP/IP (Transmission Control Protocol / Internet Protocol)

Technology Update TSAG Meeting 12/12/02. Announcements: Campus Operations Center: Holiday Hours  Christmas: 12/22-1/1 8am-5pm Coverage  On Call Coverage:

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network, Enhanced Chapter 3: TCP/IP Architecture.

Security fundamentals Topic 10 Securing the network perimeter.

Technology Update TSAG Meeting 6/10/04. Old Voic System New Voic System installed on May 17 Remaining Issues:  Migrating calling trees  Some.

4343 X2 – Outline The Domain Name System The Web.

VIRTUAL SERVERS Chapter 7. 2 OVERVIEW Exchange Server 2003 virtual servers Virtual servers in a clustering environment Creating additional virtual servers.

Week-2 (Lecture-1) An electronic message sent from one computer to another. contains account i.e. How does.

Server Administration, Server Management and Networking Alokes Chattopadhyay.

Chapter 7: Using Windows Servers

Technology Update TSAG Meeting 12/11/03.

3.1 Types of Servers.

Firewall – Survey Purpose of a Firewall Characteristic of a firewall

3.1 Types of Servers.

Working at a Small-to-Medium Business or ISP – Chapter 7

Welcome To : Group 1 VC Presentation

Working at a Small-to-Medium Business or ISP – Chapter 7

Firewalls Purpose of a Firewall Characteristic of a firewall

Working at a Small-to-Medium Business or ISP – Chapter 7

Protocol Application TCP/IP Layer Model

Presentation transcript:

Technology Update TSAG Meeting 8/8/02

Announcements: Account Cleanup  Number of Accounts: 41,338  Number of Faculty/Staff:~ 3,000  Number of Students:~30,000(~ 8K ???) Mandatory Password Changes Coming in October! Disk Quota: Mail and Data DataMail Faculty/Staff:30MB10MB Student:10MB 5MB Other: 5MB 5MB Security Self-Assessment Wireless Update

Topics for Discussion Directory (NET) Initiative Update Mail/Calendaring Update DNS Cleanup Plans Network Access Control Training for TSAG members

Directory Initiative Update Peoplesoft Authentication via the directory  Go Live Date for HR and Financials: 10/9  Authenticate via: Account name:sfitzger PS OperatorID:E (current method)  Password updates via Account naming updates:  ECS and Admin&Finance  Individual Accounts: Your task: Have you local account naming convention unified with the campus directory.

New Mail/Calendaring System Activities We have been exploring possible replacement for our:  mail system (Messaging Direct)  calendaring system (Meeting Maker) Current major contenders are:  Microsoft Exchange,  Sun One Messaging (formally iPlanet),  Mirapoint Message Server,  Or combination thereof Non-evaluation efforts, (i.e., cleanup):  Elm (Electronic Mail) Is not IMAP compatible and is not supported We plan to purge all $HOME/.elm directories! (Comments?)

Related DNS Naming and Cleanup Preferred/Supported DNS names: imap, pop, pop3, and smtp Deprecated DNS names to be removed Nov 15: , mail1, mailsrv1, hp9k2, krusty, huey, exec, dewey, … (total of 14 CNAMES) References to the mail servers via hard-code IP address are not supported! Your task:  Update mail clients to use the service-naming convention  Review and update all web pages for bogus “mailto:” links (e.g,

Majordomo Cleanup Reason for Cleanup:  Spring cleaning  Preparing for “list serve” functionality to be supported by the Campus Directory  To minimize Campus exposure to SPAM Some Stats: JulyAugust  Previous number of lists: > 4000  Current number of lists:  Current number of entries: 39,39827,436 Future Activities:  Probe messages to all members of OPEN lists  Probe messages to owners/moderator of CLOSED lists  Probe messages for “[m-z]*-l” lists have not been sent yet

.forward files Many accounts are being used solely as reflectors “.forward” file will not work with any of the potential mail solutions Needs:  To eliminate accounts used just for reflectors  To move such reflectors to an appropriate alternative, e.g., Mail alias Majordomo-style list Etc.

Antivirus Mail Filtering To be put into production shortly, we’re finalizing testing. System supports LDAP-based mail routing! Architecture designed around future campus mail solution Goals for the new mail solution:  Redundancy  Scalability  Flexibility (e.g., to support different SPAM policies?)

Proposed: Antivirus/Mail Architecture krustytest1test2 Internet Firewalls Routers AntiVirus Mail Routers Mail Servers mx=10 Primary: imap, pop Secondary: smtp mx=20 Primary: smtp Secondary: imap pop

DNS Cleanup Plans Recent survey of DNS should >650 defunct DNS names Proposed process/timeline to cleanup  Send periodic ICMP ping probes to all DNS entries (8/26- 9/13)  Correlate data obtained from probes (9/16-9/19)  Inform TSAG of DNS names to be deleted (9/20)  Purge all defunct DNS names (9/23) Your Task:  Ensure your printers, servers are on line and respond to ICMP pings  Otherwise inform helpdesk that you wish to retain your DNS name

Network Access Control: We have made lots of progress – still more to do! Recent Changes:  Blocking the following ports: 1-19  Blocking the following protocols on the default ports: Jet Direct Flexlmnetbios-ssn loc-srvsvrloc ldapldaps  Blocking all inbound network connections to: Subnet 31 (Library East Wing) Subnet 57 (Library Open Labs) We need to information on Internet Servers! Internet Server: A server that provides one or more services to individuals not located on the campus network

Proposed Edge ACL Changes Block all inbound ports in the range: (1-19 done)  Exceptions: ftp (port 20, 21) ssh (port 22)telnet (port 23) smtp (port 25)pop3 (port 110) imap (port 143) (for only identified hosts) http/s (port 80, 443) Block all inbound ports for the following protocols:  printer (port 515)x11 (ports )  socks (port 1080) x font-service (port 7100)  print_agent (ports 3396) mindprint (port 8033)  jprinter (port 5309)xprint-server (port 8100) Target date: September 6

Training for TSAG members TSAG has recommend that the Campus adopt XP as the preferred Microsoft-based desktop OS. Training for XP and.NET has been arranged. First week of training held 7/29-8/2 Impressions? Your task: Inform Chris Sales as to your participation.