[wpfilebase tag=file id=52 tpl=filebrowser /]

If you don’t want to spend much money to invest IT redundancy solution, you should take consideration on opensource solution. Heatbeat and DRBD work together could give  you high availability environment in your IT infrastructure. You could try to implement VM-like solution to replace your physical hardware server first, and using this solution to give the datastore for your virtual server. we can use vmware as an example. Esxi is free version. you need to buy commercial version, you just can enjoy HA like Vmotion. How could you stay in using free version, but still enjoy HA? just thinking about this.

in this function demo, i’ve tried to show you how to work on NFS service in Linux. NFS could be as a datastore for vmware. you could build up this first, and then install vmware to use this redundant NFS as your datastore in vmware. and then you should have a redundant datastore.

[wpfilebase tag=file id=48 tpl=filebrowser /]

Pfsense captive portal 提供一個網頁界面給它網卡上的任一界面做為登入權限的門戶. 認證可使用pfsense內建的使用者資料庫,或者Radius,或者Vouchers.

Vouchers中文意為憑證. 它是一個動態配發的密碼,一次發多少個,可以使用幾分鐘都由管理者來界定. 當訪客拿了這個動態密碼後,只要登入後,時間就一去不回頭,比如說,你拿了60分鐘的voucher,你就只能用六十分鐘,時間到了之後,它就不能再繼續使用了.

有人擔心,那訪客中途需換電腦,可以嗎? 可以,只是只要它登入到其它電腦使用,它在原來電腦的session就會被立刻中斷.同時間只能有一台能夠使用的.

當末日到臨時(對很多人來說,不能使用網路簡直是末日),就會再度秀出登入帳號密碼的等候登入畫面.

這對一般社福機構或中小企業,這功能簡直是恩惠

坦白說,一般的無線網路是處於極端不安全的狀態,尤其訪客每到一個地方,就會跟你要SSID密碼,你給了後,除非你勤於更換(我想很少有人會換,最常見的是用電話號碼),那就永遠大家都知道了,與其如此,又何必設定密碼?

現在這個作法,IT可以一次印出100個密碼,1個60分的,1個120分的,分別給訪客用,放在櫃台即可,再製作一表格與訪客紀錄MAPPING,這樣就不會有密碼外流的問題了

有需要幫忙的,社福機構免費服務. 呵!!

在這個DEMO裡,我發出一個只有五分鐘時效的VOUCHER,在時間到了之後,你會看到無法再繼續使用的狀態.

[wpfilebase tag=file id=47 tpl=filebrowser /]

I’ve tried several times on windows 2003 IAS, but always fail.

and then i tried to testing it on windows 2008. it seemed ok now.

you could see the function demo in my video capture file.

in this lab, i tried to demo to you how to dial into Linux PPTPD with windows user account.

[wppa type=”photo” photo=”2″ size=”auto”]Any comment[/wppa]

it’s tricky, my last job i never need to worry about IT budget. and now, i should face in such a less it budget situation than before.

it’s a diagram i design for my existing company.

a good news is we almost run on a virtual environment, Vmware Esxi 4.1.

as for networking, we only had layer 2 switches installed.  no layer 3 switch.  routing was in charge by Linux, also in VM.

and no doubt, existing environment had one common problem, SPOF. (Single point of failure) no matter in server, in networking…

so, i just start to thinking one thing… even no budget, could we get a much more better IT infrastructure??

i got the answer, of course, why not??

I made many labs to come true the ideas.

basically, i just tried to build up clustering environment between two Vmware servers.

for networking, i build up pfsense clustering to replace existing linux router.

for servers, i build clustering for linux and microsoft platform.

even no need vmotion, it needs licensing fee.

in this architecture, you don’t need to worry hardware error in esxi. when any it service run on one of  the vm server encounter any hardware failure issue, clustering will sense this issue, and transfer their it service to another VM host run on another esxi server.

I added a new menu, lab demo, in my blog.
when you see any password input request, just input my ex-company English name onto it.
if you still can’t get it work, just drop me a message.