Main Nav

Participate in this Group

Search This Group

June 19, 2013 | Luke Jenkins
+1 for the InCommon certificate program. It is very nice to have a season pass for SSL certs.

No issues with device compatibility.

-Luke


June 13, 2013 | Don Wright
          Also using Aruba, basically two ssids (1x and captive portal/guest) and a few others.  Students and staff given role-vlan through radius < ldap attributes, allowing those networks to have different policies fitting our existing firewalled infrastructure.  One issue, scaling vlans to accomodate 6000+ devices is a problem if your users expect seamless roaming. 
Don Wright
Lead Network Operations Engineer
CWSP, CWNA, ACMP


June 11, 2013 | Peter Morrissey

Anyone aware of any good DNS training that occurs somewhere besides Canada? This person I need to send would need a special Visa to go there.

Pete

********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

June 10, 2013 | Scott Kitterman
> 1.) Is a NAC product being used currently on your school's network? We use the Enterasys NAC solution for wired and Wireless. > 2.) If so, what areas does it cover? For example, Resnet only, specific school, wired vs. wireless, entire network, etc. How many devices/ports are being managed? NAC is implemented campus wide to all networks managed by the IT department. > 3.) What features are you using NAC for? Device registration, quarantining, posture assessment, etc? Mainly used to notify/contact the owner in case of issues like DMCA or potential compromise. > 4.) What were the biggest challenges in rolling out your NAC solution? The biggest challenge would probably be getting Wireless users to switch from MAC based Registration to using 802.1x. MAC based authentication was used widely before enabling 802.1x on Wireless. Wired services still use MAC based registration. > 5.) If you are not running NAC now, are you considering doing so in the near...
June 7, 2013 | Listserv Anonymous User
Message from peter.charbonneau@williams.edu

Good morning, We are moving over to a new ISP and that company requires RADb. I see that Merit RADb comes up over and over in a Google search. Do others use Merit? Other RADb services? PeteC Peter Charbonneau Sr. Network and Systems Administrator Williams College (413) 597-3408 (office) (413) 822-2922 (cell) OIT will NEVER ask for your password! ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
May 30, 2013 | Dan Scherck
While we haven't implemented VOIP yet, we've been kicking around the idea for a while, and have heard the following from various sources: - Emergency service (including 911 calling) makes it harder to use VOIP, so most folks stick with a hybrid voip / pots setup. You deploy voip to the offices, but there's usually at least a single standard phone somewhere on the floor that is reachable for emergencies. - It's expensive to run battery backups in all your IDFs. Most folks either don't bother, or have a centralized emergency power circuit for critical items. - We have only been buying POE+ modules for our switches in the last few years, as preparation for wireless and VOIP deployment in the future - If you have 802.1x then it's fine to share the port (PC/phone), but some folks don't like running VLAN trunks to endpoints for security reasons. Some switches (like newer Ciscos) can do VOIP trunking without the port actually being a trunk per se, if I recall correctly. One thing I am...
May 30, 2013 | Dennis Bohn
Hello Friends,
I don't want to hijack the 'VRF for service networks' thread so am starting a new one.  First, thanks Jeff for your presentation.  I've been watching the video (http://educause.mediasite.com/Mediasite/Play/fcd724e3ebe1496c8d03dbd4a7424d7e1d?playFrom=136768&autoStart=true&popout=true
and find it real informative.

I share the concerns around service networks trunked to many buildings, however in addition to the VRF design decisions, around minute 28 Jeff begins talking about another design decision that really stuck out for me.  He describes the idea that they used trunked SVIs as point-to-point connections from building to core.  So far, so good, we are doing that also.  He then describes why they chose to use a...
May 15, 2013 | Joseph Roth
This is probably a shot in the dark, but I figured that I would put it out here anyway.

Is anyone else using CSI Software for their Club Management and Campus Recreation software? Our Rec Center uses it, it does fingerprint scanning, badge scanning, etc. for admissions to the rec enter and workout rooms. Apparently the servers are hosted off site with CSI, so all queries are transmitted via our internet connection to them.

Our Rec Center has been having issues with response time for the badge scans/fingerprints, reports, really anything that requires a query to the off site servers. It looks to me like this uses an SSL connection between the software and the server. On these same machines the staff reports no issues with anything else. Web response is great, email, I even ran some speed/capacity tests and they all come back positive. I even prioritized this on our internet connection. Their support has been less than...
May 10, 2013 | Frank Sweetser
Hi all, as part of a few other projects, we're looking to overhaul how we track our physical cabling plant - fiber, copper data, telephone, cross connects, switch ports, etc. We've been looking at NetDoc from Brady, but as we dig in deeper it's turning out to have some pretty glaring deficiencies. Other than abusing the heck out of Excel, does anyone have any good suggestions on how to collect all this data under one system? thanks! -- Frank Sweetser fs at wpi.edu | For every problem, there is a solution that Manager of Network Operations | is simple, elegant, and wrong. Worcester Polytechnic Institute | - HL Mencken ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
May 8, 2013 | Brian Helman

Hey, anyone using the A10 EX series link balancer for Internet balancing, L7 bandwidth shaping, Internet usage reporting and/or NATing?

 

-Brian

 

____________________________________
Brian Helman, M.Ed |  Director, ITS/Networking Services | (: 978.542.7272

 

Salem State University, 352 Lafayette St., Salem Massachusetts 01970

 

GPS: 42.502129, -70.894779

 

********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at...
April 26, 2013 | Jane Godfrey

HI,

If anyone knows of any qualified persons interested in moving to beautiful Vancouver Island, BC!! – here is a wonderful opportunity:

 

http://jobs.educause.edu/jobs#/detail/5359954/1,false

 

or posted at https://uhire.uvic.ca/cgi-bin/WebObjects/uhire.woa/wa/vacancy?id=22071&displayGrp1=1

 

 

Thanks,


Jane Godfrey
Network Services Manager,
University Systems,
University of Victoria,
Victoria, B.C.

Tel: 250 721 7673

 

...
April 24, 2013 | Pete Hoffswell
Hi everyone - 

I'm curious as to where Network Managers are getting together.

Quick informal poll - 

If you could go to only one conference this year, what would it be?

Educause?  Cisco Live?  Something else?


-
Pete Hoffswell - Network Manager
pete.hoffswell@davenport.edu
http://www.davenport.edu
616-732-1101
********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

April 22, 2013 | Justin Bennett

Good morning,

 

Anyone seen a phishing attack using a cached version of your own e-mail login page? We just received one this morning that seemed to be using a compromised apache server (signsoflifemissions.org) and using a mod_rewrite command to call our login page.

 

Here's how the URL was crafted:  http://signsoflifemissions.org/cache/mail.our.edu/mail.our.htm

 

Justin Bennett

Supervisor of Network Technology
Information Technology
jbennett@msjc.edu

 

Mt. San Jacinto College
Phone 951-639-5090
http://www.msjc.edu

 

...

April 12, 2013 | Listserv Anonymous User
Message from mark.duling@biola.edu


********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

April 11, 2013 | Michael Fazely

NETMAN members,

 

I apologize for the delay, but here is the white paper on our experience with IPv6 at LSU.  I hope this proves to be helpful for everyone.  Let us know if you have any questions.

 

Thanks

 

----

 

Michael Fazely

Network Analyst III

Network Design

University Networking & Infrastructure

Louisiana State University

Baton Rouge, LA 70803

Office: (225)578-1971

Email: mfazel1@lsu.edu

 

********** Participation and subscription information for this EDUCAUSE Constituent Group...
April 8, 2013 | Pete Hoffswell
Good morning, NETMAN - 

On Thursday, May 30, there will be an opportunity for the NETMAN CG to host a poster session on NETMAN.  We have our own poster, that EDUCAUSE can bring to the conference and set up for a 1:30pm poster session.

There is also an opportunity to host a breakfast roundtable from 7:30 to 8:30am that morning.

Are any NETMAN members attending EDUCAUSE Southeast?  Would you be interested in this opportunity to network with your fellow networkers?

Drop me a note, if interested, and I can get you on the agenda for Southeast!


-
Pete Hoffswell - Network Manager
pete.hoffswell@davenport.edu
http://www.davenport.edu
616-732-...
March 30, 2013 | John Miller
Since we're on a DNS kick here on the list, I've got an interesting problem.  We've decided to go with Amazon's Route 53 as an authoritative DNS provider.  They can offer more redundancy and reliability than we could ever dream of, so the decision makes sense from that angle.  They're a bare-bones service though: they don't support zone transfers or dynamic updates. 

We're rather unusual (perhaps not for .edu, though) in that we don't use much RFC 1918 address space.  All of our services, both public-facing, like our website and mail servers, use public addresses and the main brandeis.edu domain, but so do our more internal services, like file servers, our learning management system, video editing, etc.  This means that we rely on being able to look up <fileserver>.brandeis.edu or <lms>....
March 29, 2013 | Tristan Rhodes
StackExchange is a network of free, community-driven Q&A sites.  There is currently a proposal to add a Networking specific area, but it needs support from 100 users who have 200+ reputation score. 

If you are interested in this proposal, learn more here:

http://area51.stackexchange.com/proposals/52519/networking

Cheers,

Tristan

--
Tristan Rhodes
Network Engineer
Weber State University
(801) 626-8549
********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

April 19, 2012 | Joann Williamson

Hi,

We are currently using ATI for our loud speakers on campus.  The ATI system is used for chimes, sirens, and verbalizing emergency broadcast messages over the speakers.  The speakers are loud enough that we hear them inside the buildings.  In the past, ATI has done well at accommodating RAVE into their interface.  We use RAVE for our texting portion.  When we need to text an alert out to our Faculty/Staff and students, we go to the ATI interface and click on some button that invokes RAVE to text out the message.  We love this setup because it gives one interface to our emergency responders.  They don’t have to remember how to logon to this system and that other system when they are in ‘crazy mode’ trying to respond to an emergency. 

 

Now, we have added Alertus.  We are using Alertus to send a pop...

January 9, 2013 | Lee Badman
Wondering if anyone has implemented wired 802.1x as a form of NAC, and if you could briefly describe how you’re using it. Also, would be interested in the administrative burden you feel it either adds or removes.
 
Thanks-
 
Lee Badman
Network Architect
Syracuse University
 
********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

January 2, 2013 | Peter Morrissey

I was wondering if anyone had used any of the ManageEngine products and what your experience has been with them. They look compelling on paper, but then don’t they all. J

 

Pete Morrissey

Director of Networking

Syracuse University

 

 

********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

December 1, 2011 | Bruce Klein

Since everyone has been talking about tools they use today, I thought I’d expand the question of management tools to include NAC. I’m using Bradford Networks’ Campus Manager and I’m looking at a pretty big price tag to upgrade it to meet our capacity needs. What is everyone else using? Are you happy? Is it worth the money?

 

I’m especially interested in anyone using NAC at sites with over 30,000 wired ports and a fairly large wireless network (in my case 1400 Aruba access points).

 

Thanks,

Bruce

 

********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups...
June 5, 2012 | Pete Hoffswell
Hello NETMAN - 

http://www.worldipv6launch.org/ 


We have enabled IPv6 on some of our user networks.  No problems, except for a stray site or two on the Internet that will resolve to IPv6, but not have their servers ready to server on said resolved address.  Naughty naughty!  It seems to be a problem that Happy Eyeballs doesn't help with, either.

What is your organization doing for IPv6 day on Wednesday, if anything?


-
Pete Hoffswell - Network Manager
pete.hoffswell@davenport.edu
http://www.davenport.edu
616-732-1101
********** Participation and...
January 3, 2013 | Nicholas Urrea

We are replacing the wireless in one of our buildings and I was wondering what POE-Edge switches should I buy. I am going to have about 180 APs in the building. We are a Cisco shop but I am open to buying another brand.  

 

---
Nicholas Urrea
UC Hastings College of the Law

Network and Systems Engineer
Information Technology
e: urrean@uchastings.edu
ext: 4718
helpdesk:
e: helpdesk@uchastings.edu
ph: 415-581-8802

 

********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://...
November 7, 2012 | Matt Richard
F&M currently has two ISPs, each with a 200 Mb/sec connection. Each connection uses a Gigabit Ethernet handoff. I manage Internet bandwidth with a pair of Packetshaper 10000s in Direct-Standby. I'm looking to upgrade our two ISP links next summer, and I suspect our current solution won't handle our projected needs. We have about 2400 students, and almost all of them live on-campus and use our campus network for residential purposes. The same network also supports the business of the college. In our students' eyes, the role of Internet connectivity has changed over the past few years. Very few students bring a television with them when they move in. For those who do, I suspect the TV spends most of its time connected to a game console. Students generally expect the same level of Internet performance they had at home, when they shared their broadband connection with their immediate family. I'd like to get an idea of what other folks are doing for bandwidth...
March 28, 2013 | Listserv Anonymous User
Message from mark.duling@biola.edu

Hi Keith,

Well at the least I'd say OSPF or anycast isn't something we'd do soon, because we're still building out redundancy in our core infrastructure and such, and we're not even at our own planned ideal point with DNS as we'd planned it out a couple of years ago.  We do have redundant DNS of course (actually Infoblox).

I guess I was partly in amazement that BIND has an opaque forwarder logic and couldn't quite believe it, and also partly wondering if there were an easy way to improve the situation incrementally for the rare circumstance I mentioned.  I still can hardly believe BIND has an internal operating logic that is apparently entirely opaque unless you use a sniffer on the dns server.

But in the less than near future we're always open to using anything that would help us build a more resilient core, internet, and dns...
November 5, 2012 | Listserv Anonymous User
Message from jstapleton@computer-business.com

If sufficient router memory to hold full Internet BGP tables is a concern, you might want to consider a software-based router, like Vyatta.  Adding memory is cheap and easy when you are dealing with standards-based architecture.

 

Personally, I can’t wait to get one of these $99 software-based routers at my house:  http://www.ubnt.com/edgemax.

provides 145X more Kpps per USD than Cisco; provides 205X more Kpps per USD than Juniper

http://dl.ubnt.com/Tolly212127UbiquitiEdgeRouterLitePricePerformance.pdf

 

From: The EDUCAUSE Network...

July 17, 2012 | James Gutholm
I hope this isn't too far off topic. We are currently recruiting for a Network Engineer position and have gotten a very little response. I'm curious if this is common or is there something objectionable about the position, requirements, pay, etc that might make the position more desirable. We've advertised in the usual big job resources such as Monster and Dice, the local paper, The Chronicle of HE, Educause, etc. Here's the recruitment. http://www.evergreen.edu/employment/jobs/2012-022sm.htm I would appreciate any feedback or advice regarding the position, requirements, pay, etc or recruitment that might bring in good candidates. Thanks, -James James Gutholm Assoc. Dir. Computing and Communications The Evergreen State College 2700 Evergreen Parkway NW , Olympia, WA 98505 360.867.6635 ********** Participation and subscription...
December 1, 2011 | Brian Helman

First off, this is going to get wordy.  My apologies.  Secondly, I know we have a lot of lurkers out there.  Let’s get some of you chiming in on this!  There are no wrong answers.  So..

 

I looked through the archives, and as best I can tell, we haven’t discussed Networking Management/Monitoring Systems in a while.  The last time I see it popping up with any relevancy was in Sept of ’10 .   We recently began switching from using Alcatel gear to  Juniper*.  One issue with this is that Juniper lacks a network management/monitoring platform.  For straight up/down status, I can use anything, but nothing is that simple.   I probably have a metaphysical issue here (not knowing what I don’t know), but here are my current thoughts ..   1) What I know I want/need: Graphical interface that I can drill down campus/building/closet/...
November 14, 2011 | Vlade Ristevski
They were cheaper than bluecat for DNS and DHCP appliances. Also bluecat charges for IPAM. It comes part of Infloblox's solution. I'm not sure if they sell the IPAM solution by itself since we're getting the DHCP/DNS solution.

On 11/14/2011 12:09 PM, Kurtz, Eric wrote:

I see many people are using the Infoblox. What is the pricing like? Are there anything things that you do not like or features that you would like to add?   Also has anyone used their other products like Switch Port Manager? Thoughts?

 

Eric Kurtz
Network Engineer

Office of Information Technology...

November 27, 2012 | Nicholas Urrea

We are currently a Red Hat Enterprise shop. We are looking at other Linux distributions.

Any suggestions?

 

---
Nicholas Urrea
UC Hastings College of the Law

Network and Systems Engineer
Information Technology
e: urrean@uchastings.edu
ext: 4718
helpdesk:
e: helpdesk@uchastings.edu
ph: 415-581-8802

 

********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

January 14, 2013 | Brian Helman

Hey everyone,

 

We’re opening discussions in our network group on whether we should be using local accounts or AD/LDAP/RADIUS to access the management consoles of our network gear.  I see pros and cons of both.   

 

Opinions?

 

-Brian

 

____________________________________
Brian Helman, M.Ed |  Director, ITS/Networking Services | (: 978.542.7272

Salem State University, 352 Lafayette St., Salem Massachusetts 01970

GPS: 42.502129, -70.894779

 

********** Participation and subscription information for this EDUCAUSE Constituent...
May 7, 2012 | Leo Song
Hi, Folks.

We are using Cisco FWSM firewalls at our data centres, and core networks as well. Cisco announced the end-of-life of FWSM in March, and the date of end of SW maintenance release will be September 25, 2013.

For data centres firewalls, it'll probably too disruptive to switch to other firewall platforms. On the core networks, the main functionality that Cisco FWSM provides us is NAT/PAT, instead of applications firewalling which I don't think Cisco FWSM will be able to do so.

One solution for would be to choose the ASA blade or latest ASA appliance, while I am just wondering what firewall platform you are using in your networks, and I am very interested to know your experience of application firewalls, thanks.

--
Leo Song, Senior Analyst & Cluster Lead
Computing and Communication Services - Networking and Security
University of Guelph...
April 6, 2012 | Chris L. Davis

We have traditionally been a Packetshaper shop for a very long time.  I’ve grown a bit dis-satisfied with a number of things over the years, and it looks like we will need to make some fairly expensive upgrades in the not too distant future to one of my shapers. 

 

Plus, my confidence in the deep packet inspection abilities of the shaper is not as high as it once was. 

 

I’m also looking at a next generation firewall and my confidence is much higher in the dpi capabilities of that device for denying stuff like p2p.

 

 

So, that all said, I’ve been looking at a product to equalize my bandwidth more than shape it.  I have seen people on this list mention the NetEqualizer quite often, and would be interested...

December 27, 2011 | Listserv Anonymous User
Message from seanlaurie@hotmail.com

 
what are most institutions doing with content filters not for sensor ship but for block spyware and virus detection.<?xml:namespace prefix = o ns = "urn:schemas-microsoft-com:office:office" />
********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

September 13, 2012 | Faye Snowden

Hello Everyone,

Pacific’s network infrastructure (core, distribution and server farm layers) are due for refresh. Currently, the infrastructure consists of single vendor equipment (Cisco). This refresh gives us an opportunity to consider other vendors at the core and distribution. The access, etc. would still remain Cisco. I’m interested in any experiences others have had in diversifying their network infrastructure in this manner. Also, if anyone has an RFP they are willing to share related to a network equipment replacement, I would greatly appreciate being able to review.

Thanks, Faye

 

Faye Snowden, PMP

OIT-Director of Communications Infrastructure

University of the Pacific

Stockton, CA 95211

...
July 31, 2012 | Lee Badman

Apologies for those on multiple lists who may see this twice.

 

The Wireless list members coordinated on bringing the following to life:

 

https://www.change.org/petitions/from-educause-higher-ed-wireless-networking-admin-group

 

Signatures are being gathered until August 10, and then it will be forwarded to Apple via many SEs. In less than 12 hours, over 100 signatures have been added.

 

Please consider signing, as we at least need to make the attemptJ

 

Kind regards,

 

Lee H. Badman

...
April 24, 2013 | Pete Hoffswell
Hi everyone - 

I'm curious as to where Network Managers are getting together.

Quick informal poll - 

If you could go to only one conference this year, what would it be?

Educause?  Cisco Live?  Something else?


-
Pete Hoffswell - Network Manager
pete.hoffswell@davenport.edu
http://www.davenport.edu
616-732-1101
********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.

Group Leaders

Calvin College
Davenport University

Related to this Group...

Close
Close


Annual Conference
October 15–18, 2013
Register now!

Events for all Levels and Interests

Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.

Close

EDUCAUSE Institute
Leadership/Management Programs
Explore More

Career Center

Leadership and Management Programs

EDUCAUSE Institute
Advanced Programs
Project Management

 

Fellowships and Awards

Fellowships
Awards Programs

Getting Involved

Mentoring
Volunteer
Speak at an Event

 

 

Jump Start Your Career Growth

Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.

 

Close
EDUCAUSE organizes its efforts around three IT Focus Areas

 

 

Join These Programs If Your Focus Is

Close

From the Blogs

Get on the Higher Ed IT Map

Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
 

 

Close

2013 Strategic Priorities

  • Connected Learning
  • Enterprise IT
  • Foundations


Learn More >

Uncommon Thinking for the Common Good™

EDUCAUSE is the foremost community of higher education IT leaders and professionals.