Howfunky.com

Well, I am happy to report that I still have my Microsoft MVP status. Many thanks to my MVP Lead Jake Grey and all the other wonderful Microsoft MVP staff who make the whole program possible. I deeply appreciate the award and recognition that Microsoft has shown to me.
I am hoping to hear that some of my other colleagues might be getting some good news and that others will be returning too.
- Ed

Labels: Microsoft MVP

There are a few other blogs that are worth follow out there, here are some new ones I am starting to watch:
Colin McNamara - good content on Cisco UCS, Virtualization, CCxE topics
Jennelle Crothers - some good stuff on Windows and general IT Pro issues, plus she is really cool.
colovirt - good info on network infrastructure and storage

- Ed

Labels: blogs

Cisco annual conference is in San Francisco this week. I'll be darting over to attend a Partner event Tuesday evening. In the past I have attended Cisco Networkers but my schedule hasn't allowed me much time to attend.
I might try to make it in to see the expo floor later this week.
On a related note, Cisco announced their newest certification at Live! - Cisco Certified Architect - requires a review board and is above CCIE/CCDE level. Yet another level of BS for the industry IMHO. I am wonder why anyone will bother going to college anymore to earn an Engineering degree at all! LOL
Anyway, check out the announcement here.
- Ed

Labels: Cisco, Live, Networkers

I attended Microsoft TechEd for the first time ever this year. It was down in Los Angeles and while there I was interviewed by the Microsoft MVP Team. Here is the video. They also have video interviews with Daniel Nerenberg, a bunch of the video's will be released shortly and the list of them can be found here.
Many thanks to Emily Freet and to my MVP Lead Jake Grey for having me stick around to do that.
- Ed

Labels: Microsoft MVP

Joe Davies has a new Cable Guy article up about DirectAccess that folks should read. In addition, there is a new Step by Step Guide for a DirectAccess lab (which looks a lot like Joe wrote it - but I haven't confirmed that yet)
I've been slow getting my DirectAccess deployment going at work, seems other items keep getting in the way but I hope to get more done this week and have something to share with everyone.
- Ed

Labels: Microsoft DirectAccess

I think out of anything coming out of the Microsoft Server 2008 R2 and Windows 7 releases the feature I am most excited about is DirectAccess (anyone remember DirectConnect?) Microsoft has some excellent content starting to build up at http://www.microsoft.com/directaccess which gives an overview of how DirectAccess works and how it can be utilized so I won't repeat that here.
I have had the chance due to both my Microsoft MVP status and Springboard STEP status to have access to some deployment guides that are not generally available. After reviewing these and after playing with gear I have some opinions on what Microsoft should be recommending to IT Pros to do as initial trials of DirectAccess.
In a nutshell, I believe that people should set up an initial native IPv6 deployment with a tunnel broker (use Hurricane Electric) and get native IPv6 addresses working in their environment. In addition, I would minimize the deployment model to utilize proxy services or a NAT-PT device for resources on the network that are available via DA. This model comes pretty close to many VPN deployments today but does not have the pain involved with doing a functional overlay technology like ISATAP.
So, what do I mean by proxy services in this case? Well, for those deploying DA, I would set up a new Server 2008 R2 machine to front end file servers that are still running Server 2003 or older by utilizing SharePoint, that same server or an additional one could potentially do Exchange OWA or front end services depending on what Exchange environment you are on. I would utilizes a NAT-PT for specific line of business applications but I would narrow the selected application list initially to reduce troubleshooting on the NAT-PT device. There are options for NAT-PT devices, Cisco can do it in software on their routers and there is the Forefront UAG from Microsoft.
Most importantly, I would set expectations that there are a lot of moving parts with DirectAccess to get a deployment done correctly. You need to have PKI with a public CRL, IPv6, Windows Server 2008 R2 and Windows 7 just as minimum requirements, that doesn't say anything about the networking technologies you have to learn.
DirectAccess has the potential to bring about some of the most exciting changes in how people will work in the future on Windows but it will take a lot of planning and testing to get it all right.
I'll post more thought shortly.
- Ed

Labels: IPv6, Microsoft DirectAccess, NAT-PT

This was my first time attending TechEd and I had a wonderful time catching up with Stephen Rose, Joe Davies, Emily Freet, Jake Gray, Devrim Iyigun and lots of others with Microsoft. It was also nice seeing Betsy Weber with TechSmith, she is always entertaining. Got introduced to and a chance to chat with Rhonda Layfield (thanks Stephen!) regarding IPv6.
I also meet several other Microsoft MVP's at the event working the Springboard booth who are also STEP members. It was nice hearing about all the different things folks are working on.
I have to say I was surprised about how much interest Microsoft is getting in DirectAccess. I have some opinions on deployment guidance I would give to folks looking to implement DA and I shared those with the DA folks at TechEd. Let's just say I am not a fan of ISATAP and I am pushing for small Native IPv6 deployments with NAT-PT devices as the way to start. Guess I will find out shortly if my ideas are sticking at all!
- Ed

Labels: Microsoft MVP, TechEd

Tomorrow evening PacITPros will be hosting their regular monthly meeting however this one is very special.

Quick quote from the announcement:
"The Windows Server product and planning groups are joining us on May 5th to meet face-to-face with PacITPros members and capture valuable feedback related to your future IT business priorities. Your input will help establish the foundational feedback that will drive planning activities for Windows Server going forward."

The best part is all you have to do is RSVP on http://www.pacitpros.org and you can participate. So if you are in the San Francisco Bay Area you really should sign up to attend, this is a very rare and unique opportunity. We've even had internal Microsoft employees sign up to be able to give their feedback to this group.
- Ed

Labels: Microsoft MVP, Microsoft Windows Server, PacITPros

I've been lucky enough to be added as part of the Microsoft Springboard Series Technical Expert Panel or STEP program for Windows 7. I've been developing IPv6 content for people participating in the Springboard series to present to their local IT Pro User groups. Check out the Springboard series, Stephen Rose has been doing a great job getting all this content together, its a huge effort.

After the IPv6 content I will likely move on to a quick guide for Direct Access. Direct Access requires Windows Server 2008R2 and remember that Server 2008R2 is 64bit only.

I also just finished chatting with Charley Wen with Microsoft on all things related to QoS within Windows. It will be interesting seeing what solutions Microsoft comes up with for Server and Hyper-V that account for QoS and virtual switch infrastructure.

I am also betting that the RC for Windows7 and Server2008R2 will be out next week. I need to get stuff built out and I would like to use the RC's if possible.
- Ed

Labels: IPv6, Microsoft Windows 7

March 13th 2005 was my first post - has it really been that long? I said howfunky.com was going to deal with technical stuff, primarily around:
DNS and specifically Reverse DNS issues.
Cisco routing, switching and content delivery
Sender Policy Framework (SPF)
Microsoft Network Optimization

For the most part I've been pretty on topic - SPF has changed - but I still am concerned with how email sender authorization can be done better. I still am watch DNS and rDNS items - but I will likely be adding DNSSec to the list now. I have been covering Cisco routing, switching and content delivery but have been adding unified communications and storage to the mix. And I am always interested in what Microsoft is up to in the networking space.

The only net new item has been Virtualization as a topic I think.
- Ed

I wasn't sure if I was going to attend the Microsoft MVP Summit this year. After the MVP program decided to remove the Windows Server - Networking category I didn't think I had much reason to attend and honestly was expecting to not be renewed because of the category going away.
I am now very happy I changed my mind and I attended. It seems that my new category of Enterprise Security felt that it was important to add networking sessions back to the mix.
A ton of folks from the MS Networking Team showed up! From Sandeep Singhal, Sean Siler, Dave Thaler, Ravi Rao, Tyler Barton, Devrim Asli Iyigun, Mahesh Prakriya, to Joseph Davies - thanks to you all for taking the time and effort to listen to my feedback and opinion about networking and what Microsoft is doing right and wrong.
So, without violating my NDA what was I most excited about from the event? Honestly, it is things that were already on my radar (NDA or not) - specifically Direct Access, Branch Cache and IPv6. I think any Enterprise that is running AD and has a large mobile workforce will adopt Direct Access just to make remote support of that mobile workforce easier, there is literally nothing the end user has to do at all (well, you have to turn the computer on and have some sort of Internet connection) to make it work and the initial scaling numbers I have heard put it on par with a typical traditional VPN deployment. Just as many Enterprises have adopted rpc over http/s for Outlook to Exchange the next natural step is to adopt a paradigm that allows ALL corporate applications the same flexibility and access that Outlook and Exchange currently have today - that solution is Direct Access.
Microsoft is pushing more advanced services into both Windows Server 2008R2 and Windows 7 - Branch Cache is one of these services and one that makes a lot of sense for folks to use (big and small IT shops will win with this one - and it is free to turn it on - how cool is that). It does not replace WAN accelerations devices (though with the changes in Windows Vista / Windows 7 / Server 2008 networking you could argue you might not need the acceleration part) but specifically targets the caching of file content. Given the cost point and relative easy of deployment I think it will have a good adoption rate.
Finally, IPv6 - there are several solutions in both Windows 7 and Windows Server 2008R2 that just won't work without IPv6. There is no getting around it and you need to start learning it - period. In Windows 7 there is HomeGroup and for Windows Server 2008R2 if you want Direct Access you will need to get up to speed on IPv6. There are more subtle IPv6 items but those two alone should make folks stand up and notice.
- Ed

Labels: Branch Cache, Direct Access, IPv6, Microsoft MVP, Microsoft Windows 7

I am finally getting around to posting about a cool new tool in Windows 7, it's called Problem Step Recorder. Just pull up a command window and type psr or execute it from the run option on the start menu.
It will not replace a remote desktop solution for help desk support people but I can see this as being very useful for remote works who can't get a system working properly or can't describe what the problem is accurately - which is about 70% of the problem in most cases.
I am also completely set to head up to Redmond for the Microsoft MVP Summit. Looking forward to hearing all about Direct Access, changes in the Advanced Firewall in Windows 7 and other cool networking changes.
- Ed

Labels: Microsoft MVP, Microsoft Windows 7

I finally got around to booking the Summit, Hotel and Airfare. I am trying to get into the sessions for Networking items but I am not holding my breath at all. I might have to find them while I am actually there. Looking forward to March 1-4 to enjoy some quality Microsoft technical time.
- Ed

Labels: Microsoft MVP

The Nexus 2000 is now orderable so Cisco DC vision is just about complete. When the Nexus 1000v is final than Cisco's vision for the data center will be a full leap ahead of everyone else in the industry. They will have a full product line that can bridge the gap between today's data center needs and support what your data center will look like for several years to come.
The remarkable thing is that Cisco pulled this off in 1 yr. The release of the Nexus 7000 was just over 1 yr ago and while definately early out of the gate it is remarkable the amount of engineering and resources that have gone into building out this new data center vision. Cisco is back in their element - everyone else better look out because the 800 gorrilla is on a rampage!
- Ed

Labels: Cisco Nexus

I downloaded Windows 7 beta when it was made available to Microsoft MVP's. I need to still get it loaded up and working since the two times I tried to load it as a VM it failed horribly. I've gotten to play with some colleagues Windows 7 machines and I must admit they have gotten it working much faster then Vista. I think we will see Microsoft roll out Windows 7 by June or July, they got so little traction with Vista it just makes sense to get 7 out the door asap and then rollout a fast release patch after that.

Labels: Microsoft Windows 7

I got an invite from the Electronic Frontier Foundation regarding their 18th birthday. It is hard to imagine a world in tech without the EFF, if you follow the news at all you know they are doing all sorts of things to push back on the erosion of rights in the digital age.
They are a worthy group, so consider them in your annual giving for donations.
- Ed

Labels: EFF

For those that are keeping track there was an interim release on Dec 5th for asa804-16-k8.bin plus as I noted before there is now an ASDM release of 6.1.5.51 or asdm-61551.bin which is compatible with Jave 6.10 or 6.11. There is one issue I have found with the newer ASA code, it does not appear to honor the global translation timeout settings. So if you have long flow sessions (big single tcp backup sessions that stay open forever for instance) then you can have some serious issues.

Also, is anyone else completely baffled as to why the ASA is requiring a separate mobile AnyConnect license, even if you already paid for SSLVPN licenses for the standard AnyConnect on the ASA? Seems like double dipping to me. At a minimum a free license extension should be offered to clients to get some mobile licenses based on the number of existing AnyConnect licenses you already own. Perhaps 2 mobile for every 10 SSLVPN? Cisco, you are just getting greedy on that one.

Happy New Year everyone.
- Ed

Labels: Cisco

Well, I took the plunge and did a clean install of Ubuntu 8.10. I was running 7.10 and it was very stable, I passed on 8.04 since I heard about a lot of problems. I have to admit I am happy so far. Sound, video, external video, bluetooth are all working. The new NetworkManager is excellent and works as expected. VMware workstation 6.5 is working too. I just have to get Cisco VPN working and I will be back up and working completely as before.
I would definately have folks give it a go, its been stable and has performed pretty well so far. Keeping my fingers crossed.
- Ed

Labels: Ubuntu

Cisco has posted an ASDM update 6.1(5)51 that is compatible with Java 1.6.0_10 (6u10). This takes care of the problem of running the newest Java but having to keep old versions around to support the older ASDM releases that required 6u7.
- Ed

Labels: ASA, ASDM, Cisco