Useful Brocade FOS CLI Commands

THE SAN GUY

Below is a list of useful Brocade CLI commands that I keep at my desk for reference.  They’re divided up into categories for Zoning, Show, Port, Time/Date, License, Banner, Password, SNMP, User Config, Firmware, and Miscellaneous.

Zoning Commands

alicreate “Name”, “domain,port#” Used to create an alias
alicreate “Name”,”portname1; portname2″ To create multiple ports under a single alias
alidelete “Name” To delete an alias
aliadd “Name”, “domain,port#” To add additional ports to an alias
aliremove “Name”, “domain,port#” To remove a port from the alias
alishow “AliName” To show the alias configuration on the switch
zonecreate “Zone Name”, “alias1; alias2″ To create zones based on alias
zonedelete “ZoneName” To delete a zone
zoneadd “ZoneName”, “alias name” To add additional alias into the zone
zoneremove “ZoneName”, “alias name” To remove an alias from the zone
zoneshow “zoneName” To show the zone configuration information
cfgcreate “Configname”, “Zone1; Zone2″ To create configurations by adding in…

View original post 1,271 more words

Advertisements
Posted in Uncategorized

Lync Client 2013 – EWS has not fully initialized

Posted in Uncategorized

SCCM 2012 R2 Step by Step Installation Guide

SCCMentor - Paul Winstanley

SCCM 2012 R2 – Step by Step Installation Guide

The following guide will take you through the installation of SCCM 2012 R2 with a simple Primary Server approach and with the SQL server located on the same device. It assumes that no earlier version of SCCM is installed in the Active Directory domain it is being installed into.

Before installing SCCM 2012 R2 you will need to run through some prep work to get the Active Directory configured and extended, along with some application and role/feature installs

Prepare Active Directory for Configuration Manager

Create the System Management Container in AD

Connect to a domain controller and load ADSI Edit. Under the System OU create a new Object.

R201

Choose Container and click Next.

R202

Enter the name System Management and click Next.

R203

Complete the wizard and close ADSIEdit.

Delegate control to the SCCM site server to the newly created container in AD Users…

View original post 834 more words

Posted in Uncategorized

2014 in review

The WordPress.com stats helper monkeys prepared a 2014 annual report for this blog.

Here's an excerpt:

A San Francisco cable car holds 60 people. This blog was viewed about 1,600 times in 2014. If it were a cable car, it would take about 27 trips to carry that many people.

Click here to see the complete report.

Posted in Uncategorized

Configure Static NAT on a Cisco ASA

A common request is to enable external access to a web or mail server from the internet. The process is known as Static (one to one) NAT AKA Port Forwarding.

This solution is for Cisco ASA’s running version 8.2 or lower. If you have 8.3 or higher you can check this:
http://www.petenetlive.com/KB/Article/0000691.htm

The first step is to configure your network object(s).

1. Connect to ADSM by browsing to the IP address of your Firewall under HTTPS.
browse
Download the ASDM Launcher and login with your username and password.
Launcher
3. Go to Configuration > Objects > Network Objects/Groups. Add any internal hosts which you would like to be accessed from outside the network. In this example I will forward SMTP port 25 to my internal mail server. Click Add > Network Object…
add object
Input a name, IP address, description and change the subnet mask to all 255’s. Click OK.
object
4. Go to Configuration > NAT Rules. Click Add > Add Static NAT Rule….

add static
In source select the network object you just created. Change the Translated Interface to Outside. In my case I have a Dynamic IP address assigned by my ISP so I have selected “Use Interface IP Address”; but if you have a static IP, input it here.

Click the checkbox “Enable Port Address Translation (PAT)” and input the desired port. Make sure you click Apply after.
nat rule
5. Go to Configuration > Access Rules. Click Add. In destination select your Network Object. In Service browse to find what you want.

access rule
If you can’t find a pre-defined service you can type TCP/3389, UDP/5061 or whatever port you require. Click OK.

Now we should be all set to go!

Normally I will use Telnet to test the configuration works as expected. This may be difficult if you don’t have an external network available to test with. I tend to use my mobile as a Wifi Hotspot and connect to it with my laptop. You can do this with the latest iPhone and Android devices.

Tagged with: , , ,
Posted in ASA, Cisco, Networking

Implement a new Front End on HAProxy

In some cases you may need to implement a new Front End in your load balancer config. For example, if you want to send traffic to a different set of backend nodes or you need to add a new SSL certificate. You will need one frontend per SSL certificate.

To create a new frontend you can duplicate an existing one and change the settings.

1.Change directory to the HAProxy root.

james@primary:~$ cd /etc/haproxy

2. Take a look at the config file to see what you need to copy

james@primary:~$ cat haproxy.cfg

3. Before making any changes take a backup of the existing config.

james@primary:~$ sudo cp haproxy.cfg haproxy{INSERT DATE HERE}.cfg 

4. Open the config file with an elevated VIM editor

james@primary:~$ sudo vim haproxy.cfg

5. Select the section which starts “frontend”. Selecting it will copy to the clipboard.

Here is an example section:
frontend

6. Copy and paste the section to the bottom of the config file by right clicking on the putty window

7. Edit the section updating any IP addresses, SSL certificates and changing the name.

Here is an example:
frontend2

8. Save and quit out of Vim by typing Esc then :wq

9. Check you configuration is valid by running the following command

james@primary:~$ haproxy -f /etc/haproxy/haproxy.cfg -c

valid

10. Next we need to add the IP Address to haresources file.

james@primary:/etc/haproxy$ sudo vim /etc/heartbeat/haresources

haresources
11. Save and quit out of Vim by typing Esc then :wq

12. Once you have updated the haresources files with the IP Address the front end should start to work. I have found it can take a short while to start working.

To speed up the process (BEWARE IN PRODUCTION ENVIRONMENTS) you can restart the Heartbeat process

james@primary:/etc/haproxy$ sudo service heartbeat restart
james@primary:/etc/haproxy$ sudo service heartbeat status

heartbeat

Tagged with: , ,
Posted in HAProxy, Linux

View Members of a Dynamic Distribution Group in Exchange 2013

In Exchange 2010 there used to be a handy preview button which you could press to see who is a member of a dynamic distribution group:

properties

preview

In Exchange 2013 I can’t find a similar feature. On the TechNet site it says you can use EAC, but this didn’t seem to work for me. Let me know if you got this to work:

technet
So it appears the only option is a spot of PowerShell! 🙂

  1. First we need to create a Variable which will store the results of the Get-DynamicDistributionGroup command:
$TDG = Get-DynamicDistributionGroup "Test Dynamic Group"

2. Now we can use the variable together with the Get-Recipient command to return the required results:

Get-Recipient -RecipientPreviewFilter $TDG.RecipientFilter

results

If you specify a RecipientContainer in the Dynamic Distribution Group configuration to pick recipients from a specified OU or container in Active Directory, using the above method to return recipients will not be accurate because it returns recipients from the entire domain.

To solve this you can run:

Get-Recipient -RecipientPreviewFilter $TDG.RecipientFilter -OrganizationalUnit $TGG.RecipientContainer
Tagged with: , , ,
Posted in Exchange, PowerShell