Presentation is loading. Please wait.

Presentation is loading. Please wait.

Technology Update TSAG Meeting 9/12/02. Announcements: Mandatory Password Changes Coming in October! (Postponed) End of BootP (November 1) DNS Cleanup.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Technology Update TSAG Meeting 9/12/02. Announcements: Mandatory Password Changes Coming in October! (Postponed) End of BootP (November 1) DNS Cleanup."— Presentation transcript:

1 Technology Update TSAG Meeting 9/12/02

2 Announcements: Mandatory Password Changes Coming in October! (Postponed) End of BootP (November 1) DNS Cleanup Send periodic ICMP ping probes to all DNS entries (8/26- 9/13)  Correlate data obtained from probes (9/16-9/19)  Inform TSAG of DNS names to be deleted (9/20)  Purge all defunct DNS names (9/23) Account Cleanup: Collecting information from you.  Number of Accounts: 41,338  Number of Faculty/Staff:~ 3,000  Number of Students:~30,000(~ 8K ???)

3 Training For TSAG Members Big Picture:  Provide XP training to TSAG members  Prepare for the TSAG recommended wide-spread deployment of XP  First training session in an envisioned series First training session cancelled: lack of participation (9/16 – 9/20) Second training session in jeopardy! Tentative date: 10/14 – 10/18 Coordinate with Chris Sales.

4 Network Access Control: Recent Changes to Inbound Traffic:  Port-based blocking: 0-512 with exceptions (ftp, ssh, telnet, http/s) Mail related ports except to identified mail servers Printer-related, X1, and service location related  Subnet blocking: 108 – 111 (Education Building)

5 Network Access Control: Recent Changes to Inbound Traffic:  Port-based blocking: 0-512 with exceptions (ftp, ssh, telnet, http/s) Mail related ports except to identified mail servers Printer-related, X1, and service location related  Subnet blocking: 108 – 111 (Education Building) time Application of Subnet Blocking

6 Proposed Edge ACL Changes Block all inbound ports in the range: 513-1024 Block all inbound connections on subnets: ??? Target date: October 4 Next step: Block all inbound connections to non Internet Servers Internet Server: A server that provides one or more services to individuals off campus. We need information on Internet Servers! Target date: ? January 2003 ?

7 Preparing for an IDS From the May TSAG Examine “services” provided (by each unit) Determine general philosophy for Access Control Defined typical traffic patterns Block all unwanted traffic Monitor traffic for abnormal behavior I.e., we need to understand the services we provide to our constituents.

8 Dragon Intrusion Detection System IDS: Real-time detection, reporting, and termination of unauthorized network activity Problem: We need to know which traffic is authorized or unauthorized based upon your units needs. Current Status of System

9 Virtual Private Networking Preproduction Service Installed: Cisco Systems VPN 3060 Network Address: vpn.csun.edu Clients Available for:  Windows (95-XP)  Macintosh System 10.1  Solaris  Linux (Intel) Works with the campus directory! http://www.csun.edu/helpdesk/vpn

10 What does the VPN do? Encrypted Traffic:

11 Secure Services Provide via VPN Examples of uses:  Create secure wireless connections on campus  Gain more complete secure access to the campus network over wireless  Create secure connections to the campus network from home  Full, secure use of your campus Email using POP or IMAP client from your home computer  Share on campus files securely with your home computer More to be added?

12 Bypassing x1400 (For TSAG Members Only) To provide better support to technical savvy individuals, the Campus Helpdesk and ITR techs will be monitoring an IRC chat room. Server Name:irc.csun.edu Chat Room:#helpdesk Software Clients:  xchat:http://xchat.orghttp://xchat.org  mIRC:http://www.mirc.comhttp://www.mirc.com Status of System:Experimental!

13 Mail Migration Update Recap:  >41K users migrated (1 user took 11 hours)  >160 GB of data migrated (Quota’s are NEEDED!)  Planned 4 day activity  11 day activity End-user Problems: (2172 helpdesk calls) 85% Desktop Issues 12% Mail aliases (steve@csun.edu, steven.fitzgerald@csun.edu)steve@csun.edusteven.fitzgerald@csun.edu 3%Duplicate e-mail for POP users

14 Directory Lookup for Email Aliases $ ssh csun1.csun.edu $ ldapsearch –h dir.csun.edu –b o=csun uid=steve dn: uid=steve, ou=People, ou=Auth, o=CSUN uid: steve … mail: steve@csun.edusteve@csun.edu mailLocalAddress: steven.fitzgerald@csun.edusteven.fitzgerald@csun.edu mailLocalAddress: steve.fitzgerald@csun.edusteve.fitzgerald@csun.edu mailhost: petrel.csun.edu mailRoutingAddress: steve

15 POP / Duplication Issue POP users indicated receiving multiple copies of mail each time they POPed I recommended: Configure POP without save on server option This is a Red Herring! Feel free to configure POP as you see fit.

16 Mail and Calendaring: Next Step More aggressive SPAM filtering SSL/TLS support SMTP auth support SMTP auth requirement TSAG committee to evaluate: “Support Issues for Campus Calendaring System” Contact: David Sorkin

Download ppt "Technology Update TSAG Meeting 9/12/02. Announcements: Mandatory Password Changes Coming in October! (Postponed) End of BootP (November 1) DNS Cleanup."

Similar presentations

Physics Network Integration Chris Hunter. Physics network team Chris Hunter : Network Manager David Newton : Network Support Technician Room DWB 663 Phone.

Physics Network Integration Chris Hunter. Physics network team Chris Hunter : Network Manager David Newton : Network Support Technician Room DWB 663 Phone.
Physics Network Integration Chris Hunter. Physics network team Chris Hunter : Network Manager David Newton : Network Support Technician Room DWB 663 Phone.

Physics Network Integration Chris Hunter. Physics network team Chris Hunter : Network Manager David Newton : Network Support Technician Room DWB 663 Phone.
Technology Update TSAG Meeting 8/8/02. Announcements: Account Cleanup  Number of Accounts: 41,338  Number of Faculty/Staff:~ 3,000  Number of Students:~30,000(~

Technology Update TSAG Meeting 8/8/02. Announcements: Account Cleanup  Number of Accounts: 41,338  Number of Faculty/Staff:~ 3,000  Number of Students:~30,000(~
Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.

Nada Abdulla Ahmed.  SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system. Designed for ease of use, SmoothWall.
Windows XP Service Pack 2 Deployment Dave Lee West Campus.

Windows XP Service Pack 2 Deployment Dave Lee West Campus.
Linux+ Guide to Linux Certification, Second Edition Chapter 14 Network Configuration.

Linux+ Guide to Linux Certification, Second Edition Chapter 14 Network Configuration.
Technology Update TSAG Meeting 6/13/02. Announcements: DNS Naming and Cleanup (coming!)  imap: email, mail, mail1, mailsrv1  telnet, csun1: csun2, hp9k2,

Technology Update TSAG Meeting 6/13/02. Announcements: DNS Naming and Cleanup (coming!)  imap: , mail, mail1, mailsrv1  telnet, csun1: csun2, hp9k2,
INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.

INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.
Technology Update TSAG Meeting 11/13/03. Rollout of Portal and SOLAR https://www.csun.edu/portal (https://my.csun.edu) Portal and SOLAR are part of the.

Technology Update TSAG Meeting 11/13/03. Rollout of Portal and SOLAR ( Portal and SOLAR are part of the.
Technology Update TSAG Meeting 3/13/03. Announcements: Disaster Recovery Test:[Bill]  (2/18-19) Networking Infrastructure: DNS, DHCP, Authentication.

Technology Update TSAG Meeting 3/13/03. Announcements: Disaster Recovery Test:[Bill]  (2/18-19) Networking Infrastructure: DNS, DHCP, Authentication.
CNIL Report April 4 th, 2005. CNIL Report (Apr 4 th, 2005) Two Major Goals: –Improvement of Instructional Services –Strengthening research IT infrastructure.

CNIL Report April 4 th, CNIL Report (Apr 4 th, 2005) Two Major Goals: –Improvement of Instructional Services –Strengthening research IT infrastructure.
Technology Update TSAG Meeting 2/13/03. Announcements: Self-Service Account Utility Available Disaster Recovery Test:  (2/18-19)

Technology Update TSAG Meeting 2/13/03. Announcements: Self-Service Account Utility Available Disaster Recovery Test:  (2/18-19)
Technology Update TSAG Meeting 11/14/02. Announcements: Spam Open Forum  Monday November 18, 2pm-3pm  OV Presentation Room Campus Operations Center:

Technology Update TSAG Meeting 11/14/02. Announcements: Spam Open Forum  Monday November 18, 2pm-3pm  OV Presentation Room Campus Operations Center:
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 6 Packet Filtering By Whitman, Mattord, & Austin© 2008 Course Technology.
Update and Discussions on Technology Initiatives TSAG Meeting 4/11/02.

Update and Discussions on Technology Initiatives TSAG Meeting 4/11/02.
Technology Update TSAG Meeting 10/10/02. Announcements: DNS Cleanup Send periodic ICMP ping probes to all DNS entries (8/26- 9/13) Correlate data obtained.

Technology Update TSAG Meeting 10/10/02. Announcements: DNS Cleanup Send periodic ICMP ping probes to all DNS entries (8/26- 9/13) Correlate data obtained.
TSAG Meeting 3/14/02 Update on Current Technology Initiatives.

TSAG Meeting 3/14/02 Update on Current Technology Initiatives.
Technology Update TSAG Meeting 7/11/02. Announcements: DNS Naming and Cleanup (coming!)  imap: email, mail, mail1, mailsrv1  telnet, csun1: csun2, hp9k2,

Technology Update TSAG Meeting 7/11/02. Announcements: DNS Naming and Cleanup (coming!)  imap: , mail, mail1, mailsrv1  telnet, csun1: csun2, hp9k2,
Fermilab VPN Service What is a VPN ?.

Fermilab VPN Service What is a VPN ?.
Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.

Pro Exchange SPAM Filter An Exchange 2000 based spam filtering solution.

Similar presentations

Ads by Google