View RSS Feed

GroundZero3

New job, mo problems.

Rate this Entry
3 Comments
by
GroundZero3
, March 16th, 2011 at 10:30 AM (816 Views)
I decided to make the jump to find a job in Nothern VA, my apartment lease ended on Feb 28th so I started to searching for a new job about mid Jan. I found a couple online and applied. I got a call back and did a phone interview and the following week did a face to face. Apparently they loved me and sent me an offer letter on Feb 15th, I asked to start on the 28th and they had no problems with it. I wish I asked for a later date because I wanted to take a week off to sleep and play video games. The last few weeks ive been slowly packing up my stuff and putting it into a storage unit.

Ive been here for 2.5 weeks now and boy oh boy I knew they had some issues but this is a bit more than I expected. Its a company with around 100 clients most based in Nova, several remote offices that span from TX to NJ. Supposedly the last network admins they had were horrible hence the desire to go out and look for a full time one.

So here are the list of projects from the start:

-RSA was deployed but only worked for two days and then users couldn't log in. Ive never played around with RSA so this should be interesting.

- Inventory of network. I was given some drawings that were supposedly updated on Feb 14th (the last day the admin worked) but im finding so many things wrong with them. So I need to find servers, switches, routers, firewalls, desktops, and laptops.

- Implement Dot1x, this was done and then turned off because it wasn't working right. I've done Dot1x in a wireless environment but never on a hardwire network. Im really excited to see how much of a pain in the ass this is going to be.

- Implement a backup solution. Right now two sonicwall boxes are setup and are supposed to sync but that hasnt been happening. On top of that I saw some usb external drives attached to the exchange servers. (lol?) There is also a netgear NAS on the network (lol? again) with user data on it.

- Server health monitoring. This is a pure dell shop so im gonna have to investigate what dell uses/has to monitor server health. Nothing is monitoring them so if a drive starts failing or a ram we wont have a clue unless we are physically looking at the boxes.

- RTG/MRTG on WAN ports. They have MPLS connection between our remote sites which I have a general knowledge of but never had hands on so im super excited about that. I want to start monitoring the internet port, the MPLS ports so we can see what kind of traffic is going across the networks.
- Once I get that in place and see what kind of traffic we are pushing QOS for VOIP will come next.

- Implement Shavlik. I have never heard of this software but a service is installed on each workstation and will upgrade third party software such as quicktime, flash, java, adobe and other wonderful applications. This seems like something really cool espically with the adobe updates and exploits. However just toying around with application its not very intelligent and will end up installing more software on your computer. I was testing it out on my box and ended up having safari, gchat and quicktime installed on my computer lol. So a list of approved software needs to be created and then tailor Shavlik to only update those applications

- Last but not least, implement Vmware. Come on you should have seen that one coming! There is no reason why any small business - enterprise shouldn't be deploying it. We have about 15 servers right now (4 of those are in the DMZ) so I think I can get down to around 7 servers (keeping the DMZ servers out of the vmware cluster). Of course that means buying new machines, licenses, and some kind of SAN/NAS solution. I have a dell poweredge r610 box just laying around so ill build a test box (hopefully I can get some extra drives and ram) to show them what it can do and why we need it.

So yeah busy few months coming up. My ultimate goal is to get to a point where I can work from home a few days a week with the drive time and gas going up. We will see! Ill be updating this blog section with the RSA implementation and other fun things I run across.
Categories
Misc

Comments

  1. GroundZero3's Avatar
    • |
    • permalink
    To update I have successfully deployed RSA tokens to one VPN connection, im in the process of deploying it to the second VPN connection

    I have successfully deployed dot1x so far on the network im working at. As soon as I finish here ill be testing and pushing it out to the remote sites.

    Backup/vmware solution: I have pieced together a vmware server that is running around 6 vms right now. A maintaince server that houses shavlik and WSUS, two radius servers for redundancy, and the primary domain controller. Im working on building a nagios/RTG box when im free. I have talked to several vendors in regards to a SAN/vmware solution. Hopefully this last vendor will be helpful

    Shavlik, ugh this software is pure fing garbage. The interface is clunky and it isnt smart enough to determine what software is actually installed onto a computer. I have been fighting it off and on to get it to work the way I want it too. It will tell me I dont have a bunch of windows updates installed when they are fully patched up boxes from windows update.com. Vmware has bought this POS software and im not sure what they plan to do with it. Im gonna try to get it working but im pretty ffed up with it.
  2. GroundZero3's Avatar
    • |
    • permalink
    I think I made some headway with Shavlik and updating third party applications. I tested it by patching Itunes, flash and some other things on the helpdesk guy computer and virtual machines. He was a few patches behind on itunes and it seemed to work fine.

    Java update is failing but I think thats because I have it configured wrong. Once testing is completed the next step is to select a few machines in the office to test out the updating capability and once we are happy its not going to break stuff we will bring the rest of the office online.

    It has the ability to do a distribution server for like remote sites so you arent pulling the updates over an MPLS/VPN network which would be helpful in our few remote locations. Ill post back on how it goes.

    I guess I had to get away from the crappy software for a little bit and come back with a better set of eyes after working on other things. The interface is still really clunky
  3. GroundZero3's Avatar
    • |
    • permalink
    Dot1x - Completed
    RSA - Completed
    Shavlik - Agents deployed trying to get the last few machines up with it. Need to test a few more applications and I think we will be good!
    Vmware - test bed still in place. Working on a quote for blade server and two EMC SANS
    MRTG/RTG - Need to work on this
    Server Health Monitoring - Need to work on this too!
Recommended Sites: ResellerRatings Store Reviews