User emails helpdesk (we have Outlook Anywhere & OWA options so they can always get to that), reports they can't connect to the VPN. Ticket gets sent to me.
I take a look in the ASA and there's a VPN session for the user. I figure it's probably a dead session that's keeping them from reconnecting, so I boot it.
I ask the user to ping and trace to the VPN and it's fine. Ask them to reconnect and it doesn't work. I keep looking at settings on the ASA.
About 5 minutes later, I see a new session for the user. I fire off an email and ask them "sooo... it's working then?"
Response: "Oh, no, I really had to get some work done so I used my air card. THAT works fine, it's just my home wireless that it doesn't work on."
Cog on
0
lwt1973King of ThievesSyndicationRegistered Userregular
It'd be nice if people wouldn't use their smartphones outdoors during torrential downpours when they don't have a water-tight case. I'd rather not have had to rush to replace an iPhone 4 with whatever I have lying around.
It'd be nice if people wouldn't use their smartphones outdoors during torrential downpours when they don't have a water-tight case.
Please tell me it's BYOD, that'd make my day.
Unfortunately for your day, it's a company phone. Fortunately for him, the phone I had lying around was someone else's old 5 that I had upgraded that hasn't be re-used yet.
The annoying part has been backing it up and upgrading the old one from iOS 4.2.8 so the new iPhone can use its backup.
It'd be nice if people wouldn't use their smartphones outdoors during torrential downpours when they don't have a water-tight case.
Please tell me it's BYOD, that'd make my day.
Unfortunately for your day, it's a company phone. Fortunately for him, the phone I had lying around was someone else's old 5 that I had upgraded that hasn't be re-used yet.
The annoying part has been backing it up and upgrading the old one from iOS 4.2.8 so the new iPhone can use its backup.
Unfortunately for you, he may make the connection that "If I break my company phone occasionally... upgrades!"
I enjoy the fact that it's not blatantly out in the open, but more hiding behind your keyboard (edit). I imagine that as the question/user gets more stupid, the knife slowly makes its presence known until BAM!!!!
Le_Goat on
While I agree that being insensitive is an issue, so is being oversensitive.
Kind of forgot that I made one of my user's alternate email addresses [email protected] Had to check to make sure that it wasn't set as the reply. That would not have been a good thing to have had happen.
While I agree that being insensitive is an issue, so is being oversensitive.
It'd be nice if people wouldn't use their smartphones outdoors during torrential downpours when they don't have a water-tight case.
Please tell me it's BYOD, that'd make my day.
Unfortunately for your day, it's a company phone. Fortunately for him, the phone I had lying around was someone else's old 5 that I had upgraded that hasn't be re-used yet.
The annoying part has been backing it up and upgrading the old one from iOS 4.2.8 so the new iPhone can use its backup.
Unfortunately for you, he may make the connection that "If I break my company phone occasionally... upgrades!"
Surprisingly, not really in the culture of the company. Especially among the older employees like the gentleman who used his phone in the downpour. Upgrades aren't a hot commodity here.
Wow, my head is not in it today. While trying to clean up an issue in Patch Manager, I accidentally deleted an entire group from WSUS, which also removed all approved updates from that group... whoops! Thank god for working backups, though.
Lol. Totally have done that before. Setup wsus through GPO instead and disable group management in the policies, beauty is when its setup right computers will join the right group automatically once they join the domain and grab their updates immediately, AND you won't be able to delete the groups in wsus accidentally because its tied to your AD structure. Win win!
Wow, my head is not in it today. While trying to clean up an issue in Patch Manager, I accidentally deleted an entire group from WSUS, which also removed all approved updates from that group... whoops! Thank god for working backups, though.
Lol. Totally have done that before. Setup wsus through GPO instead and disable group management in the policies, beauty is when its setup right computers will join the right group automatically once they join the domain and grab their updates immediately, AND you won't be able to delete the groups in wsus accidentally because its tied to your AD structure. Win win!
Your ideas intrigue me. Got a reference for how to set that up? I can't use it at work, but I've been slowly toying around with things at home (yay, Technet subscription!)
Wow, my head is not in it today. While trying to clean up an issue in Patch Manager, I accidentally deleted an entire group from WSUS, which also removed all approved updates from that group... whoops! Thank god for working backups, though.
Lol. Totally have done that before. Setup wsus through GPO instead and disable group management in the policies, beauty is when its setup right computers will join the right group automatically once they join the domain and grab their updates immediately, AND you won't be able to delete the groups in wsus accidentally because its tied to your AD structure. Win win!
Your ideas intrigue me. Got a reference for how to set that up? I can't use it at work, but I've been slowly toying around with things at home (yay, Technet subscription!)
It's super easy. In your group policy object, go to Computer Configuration > Administrative Templates > Windows Components > Windows Updates.
What you're looking for to accomplish the AD tie-in is "Enable client-side targeting". Enable it, and fill in the blank for the target WSUS group name. Make sure the group exists in WSUS, link the policy to an OU, and WSUS and AD will work together to populate the group automagically. You'll need a policy for each WSUS group you want to populate. You could, for example, have one for Server 2008, one for Win7, one for Win8, one for XP, etc. The super duper sexy part is where you can create WMI filters for the GPOs so they only apply to the corresponding OS as well. THen you can link multiple GPOs into a single "Computers" OU and the WMI filters will sort it out and drop all your computers into the appropriate OS based WSUS groups without you ever doing a goddamn thing.
Can't drink artificial sweeteners because they're bitter like whoa.
You don't even really have to be a 'super' taster to taste the difference. Artificial sweeteners taste like balls. Pepsi throwback is the shit. When I actually drink like 1 can of soda every 2 years, its usually that.
Wow, my head is not in it today. While trying to clean up an issue in Patch Manager, I accidentally deleted an entire group from WSUS, which also removed all approved updates from that group... whoops! Thank god for working backups, though.
Lol. Totally have done that before. Setup wsus through GPO instead and disable group management in the policies, beauty is when its setup right computers will join the right group automatically once they join the domain and grab their updates immediately, AND you won't be able to delete the groups in wsus accidentally because its tied to your AD structure. Win win!
Your ideas intrigue me. Got a reference for how to set that up? I can't use it at work, but I've been slowly toying around with things at home (yay, Technet subscription!)
It's super easy. In your group policy object, go to Computer Configuration > Administrative Templates > Windows Components > Windows Updates.
What you're looking for to accomplish the AD tie-in is "Enable client-side targeting". Enable it, and fill in the blank for the target WSUS group name. Make sure the group exists in WSUS, link the policy to an OU, and WSUS and AD will work together to populate the group automagically. You'll need a policy for each WSUS group you want to populate. You could, for example, have one for Server 2008, one for Win7, one for Win8, one for XP, etc. The super duper sexy part is where you can create WMI filters for the GPOs so they only apply to the corresponding OS as well. THen you can link multiple GPOs into a single "Computers" OU and the WMI filters will sort it out and drop all your computers into the appropriate OS based WSUS groups without you ever doing a goddamn thing.
Awesome. Thanks for the info!
[SIGPIC][/SIGPIC]
0
Donovan PuppyfuckerA dagger in the dark isworth a thousand swords in the morningRegistered Userregular
Posts
I take a look in the ASA and there's a VPN session for the user. I figure it's probably a dead session that's keeping them from reconnecting, so I boot it.
I ask the user to ping and trace to the VPN and it's fine. Ask them to reconnect and it doesn't work. I keep looking at settings on the ASA.
About 5 minutes later, I see a new session for the user. I fire off an email and ask them "sooo... it's working then?"
Response: "Oh, no, I really had to get some work done so I used my air card. THAT works fine, it's just my home wireless that it doesn't work on."
Yep. Stupid cable companies block VPN sometimes in home and allow it through business and won't acknowledge the fact.
Also, I fixed it anyway. Resolution? Asked her to reboot and try it again.
I'm awesome at IT.
Please tell me it's BYOD, that'd make my day.
Coworker here was having trouble with her ipod, she brought it in for me to look at because I'm a nice fella (lol).
I asked her if she had shut it off and turned it back on to see if that resolved it.
"You IT guys think that fixes everything."
So I turned it off and turned it back on. Suddenly it works.
"What'd you do??!"
"Well I turned it off and turned it back on."
She doesn't ask me for IT help anymore.
Is she new? She must be new. You haven't shown her your knife yet, have you.
Always.
Unfortunately for your day, it's a company phone. Fortunately for him, the phone I had lying around was someone else's old 5 that I had upgraded that hasn't be re-used yet.
The annoying part has been backing it up and upgrading the old one from iOS 4.2.8 so the new iPhone can use its backup.
Unfortunately for you, he may make the connection that "If I break my company phone occasionally... upgrades!"
Surprisingly, not really in the culture of the company. Especially among the older employees like the gentleman who used his phone in the downpour. Upgrades aren't a hot commodity here.
Pepsi, not Pepsi Max.
What kind of computer herder are you?
Lol. Totally have done that before. Setup wsus through GPO instead and disable group management in the policies, beauty is when its setup right computers will join the right group automatically once they join the domain and grab their updates immediately, AND you won't be able to delete the groups in wsus accidentally because its tied to your AD structure. Win win!
PSN - sumowot
Your ideas intrigue me. Got a reference for how to set that up? I can't use it at work, but I've been slowly toying around with things at home (yay, Technet subscription!)
Super taster.
Can't drink artificial sweeteners because they're bitter like whoa.
It's super easy. In your group policy object, go to Computer Configuration > Administrative Templates > Windows Components > Windows Updates.
What you're looking for to accomplish the AD tie-in is "Enable client-side targeting". Enable it, and fill in the blank for the target WSUS group name. Make sure the group exists in WSUS, link the policy to an OU, and WSUS and AD will work together to populate the group automagically. You'll need a policy for each WSUS group you want to populate. You could, for example, have one for Server 2008, one for Win7, one for Win8, one for XP, etc. The super duper sexy part is where you can create WMI filters for the GPOs so they only apply to the corresponding OS as well. THen you can link multiple GPOs into a single "Computers" OU and the WMI filters will sort it out and drop all your computers into the appropriate OS based WSUS groups without you ever doing a goddamn thing.
You don't even really have to be a 'super' taster to taste the difference. Artificial sweeteners taste like balls. Pepsi throwback is the shit. When I actually drink like 1 can of soda every 2 years, its usually that.
Honest to goodness I'd rather Bear Grylls it.
... What I think you mean?
I'd say "bad" probably not "worse" though.
Awesome. Thanks for the info!
You need to upgrade that knife, bowen.
Is for online desk work, but still.
Also, yes TWC - I would indeed like you to dispatch a tech to fix your cable run immediately.