|
Does anyone have a point to site / client to site VPN solution that can run in Azure for end users that they don't absolutely hate?
|
# ? Oct 10, 2019 20:25 |
|
|
# ? May 6, 2024 09:19 |
|
Internet Explorer posted:end users that they don't absolutely hate? ???
|
# ? Oct 10, 2019 20:32 |
|
The OpenVPN appliance is the least worst VPN service I have used
|
# ? Oct 10, 2019 20:32 |
|
Once Wireguard gets dynamic addressing supported and cleans up their Windows client a bit more it'll probably become my recommendation. It works great as a VPN right now, but the Windows client is super beta and it currently requires every client have a static IP within the VPN subnet. Still, the fact that configs are simple enough to be sent as a text message or QR code is wonderful, not to mention that the design is one of having a secure and sane configuration by default rather than many of the other solutions that give you a lot of legacy support options to trip over.
|
# ? Oct 10, 2019 20:54 |
|
Sorry, they being you in this context. My brain is tired.
|
# ? Oct 10, 2019 21:02 |
|
OpenVPN has been the most "just install it and go" client I've used in my previous jobs.
|
# ? Oct 10, 2019 21:57 |
|
It's kinda tough, being intermediate with linux, working with someone who is very advanced with linux but seems to think the information you need just naturally materializes in a human brain, and thinks the absolute best way a person learns how to do linux things is to not be taught anything from someone who knows and to resort to google forever until you figure it out.
|
# ? Oct 10, 2019 22:00 |
|
Is configuring OpenVPN for RADIUS a huge pain in the rear end?
|
# ? Oct 10, 2019 22:48 |
|
Methanar posted:Is Azure still double the price of aws Which service... out of the hundreds of services? CLAM DOWN posted:I work 100% in Azure atm, it's nice. My dumb daydream is to use my Azure skills to move the socialist paradise that is Canada. Or just live in cities that are clean and people don't litter. Sickening posted:Its the first thing I thought of when I read someone saying the bill was too high. If the bill is high, you are either over-sizing things, spinning up the wrong solution, or not being honest with yourselves about what your on prem spend is. And yes, if you have a bunch of static, pet servers and aren't reserving those instances you care kind of lighting money on fire you don't have to. Quite a bit of the time, I found that is it true to the case but with spending money even in business thing get incredibly serious and emotional. No one wants to go to management even if it's not their fault and tell them IT has been loving up budgeting for years. On a final note, going from CapEx to OpEx is always just kind of weird especially when you've been buying physical hardware, renting colos, etc. for decades.
|
# ? Oct 10, 2019 22:48 |
|
Internet Explorer posted:Is configuring OpenVPN for RADIUS a huge pain in the rear end? Nope
|
# ? Oct 10, 2019 22:50 |
|
We dodged like 9 months of dedicated compliance work bullshit at a previous job by running everything through openvpn with pam_sso and some creative language skills while filling out auditing checklists and poo poo. Openvpn is fantastic.
|
# ? Oct 10, 2019 23:11 |
|
Spot the issue
|
# ? Oct 11, 2019 05:16 |
|
One of my proudest accomplishments is pushing Privileged Access Workstations to the admin team. They're nothing special, just Windows 10 on a separate ESXi and VLAN, but it made me happy. Firewalls rules are simpler, I got everyone using admin accounts, and cleaned up an otherwise odious Domain/Enterprise Admin structure. We made a GitLab too for all the random powershell scripts and router configs. Full disclosure: There's only 5 of us so it wasn't a big project.
|
# ? Oct 11, 2019 05:20 |
|
CLAM DOWN posted:Spot the issue Every trucking I’ve ever heard or worked with treats everyone like garbage. Even if they did pay well they’d be my last option for employment.
|
# ? Oct 11, 2019 05:25 |
|
I'm sure they mean per month. Does anyone have any impressions of Denovo? I think I've heard people mention them here, although maybe I'm thinking of Deloitte. Might be interviewing with them.
|
# ? Oct 11, 2019 05:29 |
|
$20k/mo even USD sounds way too much for a typical DevOps Engineer unless they’re in the Bay Area and at one of the big tech firms.
|
# ? Oct 11, 2019 05:31 |
|
CLAM DOWN posted:Spot the issue Vancouver
|
# ? Oct 11, 2019 05:42 |
|
Methanar posted:Vancouver
|
# ? Oct 11, 2019 05:43 |
|
Methanar posted:Vancouver not an empty quote
|
# ? Oct 11, 2019 05:44 |
|
CLAM DOWN posted:Spot the issue "Looking for part time full-stack fry cook."
|
# ? Oct 11, 2019 06:18 |
|
CLAM DOWN posted:Spot the issue It doesn't look like the "Apply Now" button has been clicked? Or is this just your "before" shot?
|
# ? Oct 11, 2019 06:19 |
|
Did they get confused and think a "full stack engineer" is someone who puts cargo containers on top of each other
|
# ? Oct 11, 2019 12:29 |
|
Methanar posted:Vancouver and 30k tops which might buy you a 2 foot by 2 foot property there that you'll share with 3 other people.
|
# ? Oct 11, 2019 13:55 |
|
CLAM DOWN posted:Spot the issue This is one of those job ads that has intentionally dumb requirements so the company can get a work visa sponsored right? "Nobody around here is applying for this job!"
|
# ? Oct 11, 2019 14:13 |
|
Canuck-Errant posted:Did they get confused and think a "full stack engineer" is someone who puts cargo containers on top of each other Longshoremen get paid way more
|
# ? Oct 11, 2019 14:19 |
|
I think they meant to say double stack engineer. https://menu.wendys.com/en_US/product/double-stack/
|
# ? Oct 11, 2019 14:36 |
|
https://twitter.com/ginadivittorio/status/1182067699263967232
|
# ? Oct 11, 2019 17:07 |
|
That stepdad comment at the end
|
# ? Oct 11, 2019 17:25 |
|
One of our facilities just got a new CEO, who is predictably doing the new CEO thing of making big changes and throwing weight around. And then the ticket comes in.... Backstory, we pay a lot of money to license software A that does a thing. New CEO opens ticket requesting us to begin working with vendor to integrate software B, which does the same thing as software A. They're market competitors. CTO says, "hey the company has already built this exact infrastructure with software A, just use that instead. We can have you up and running in a few hours". "Nope, we've already signed the contract, proceed with setting up software B". Is there a word for the frustration of watching how much money you make per year be instantly pissed away by Mr. I-have-3-degrees' ego? Whole thing could have been avoided with a single e-mail. We'll see how long he lasts. He's the 4th person in that CEO position over the past 2 years, and was specifically hired to "cut costs". Ahh, management oh yeah and the integration will take about a week in man hours
|
# ? Oct 11, 2019 18:38 |
|
Noslo posted:CTO says, "hey the company has already built this exact infrastructure with software A, just use that instead. We can have you up and running in a few hours". Business deals are extremely complex even outside of costs there's legal, compliance, support, etc. all for both good and bad reasons. The CEO might be an idiot but after being in IT for a decade I get that it's much more complex than originally anticipated.
|
# ? Oct 11, 2019 19:46 |
|
Bonzo posted:and 30k tops which might buy you a 2 foot by 2 foot property there that you'll share with 3 other people. don't doxx me
|
# ? Oct 11, 2019 19:58 |
|
Tab8715 posted:Business deals are extremely complex even outside of costs there's legal, compliance, support, etc. all for both good and bad reasons. The CEO might be an idiot but after being in IT for a decade I get that it's much more complex than originally anticipated. Yeah, but if the CEO hasn't even consulted with the CTO on a huge software deal something is horribly hosed and it's almost certainly the CEO.
|
# ? Oct 11, 2019 20:07 |
|
Tab8715 posted:Business deals are extremely complex even outside of costs there's legal, compliance, support, etc. all for both good and bad reasons. The CEO might be an idiot but after being in IT for a decade I get that it's much more complex than originally anticipated. I agree with you 100%, but I promise that is not the case for my story. Speaking of compliance though, I work in healthcare so we have electronic protected health information (ePHI) under HIPAA. Last time I probably spent 20 minutes trying to explain to this guy why we couldn't just use "any 'ol text messaging app". Luckily, that time he ran his idea by IT first instead of impulse buying the first product that showed up on a google search.
|
# ? Oct 11, 2019 20:19 |
|
CLAM DOWN posted:Spot the issue I'm stuck on "we're hiring an engineer in Vancouver to develop a product for Bangladesh." Isn't that backward?
|
# ? Oct 11, 2019 20:51 |
|
Happy friday. We have a major outage because a certificate expired and it was created using a rogue CA by someone who left a long time ago
|
# ? Oct 11, 2019 22:31 |
|
Certificates are often the least understood, least monitored, and least thought about bit of infrastructure in Corp environments.
|
# ? Oct 11, 2019 22:50 |
|
I know certs really well and have run PKI for large enterprises, and I actually like working with and talking about certs. I think I'm the only one
|
# ? Oct 11, 2019 22:54 |
|
I don’t love PKI or anything, but I understand it. I’ve setup ran and migrated ADCS infra for a long time.
|
# ? Oct 11, 2019 23:04 |
|
skipdogg posted:I don’t love PKI or anything, but I understand it. I’ve setup ran and migrated ADCS infra for a long time. Curious, what’s the bare minimum that any system administrator should know about certificates? I know nothing
|
# ? Oct 11, 2019 23:18 |
|
|
# ? May 6, 2024 09:19 |
|
Tab8715 posted:Curious, what’s the bare minimum that any system administrator should know about certificates? Be able to explain why chrome trusts the certificate for this site and you’ll know more than 90% of people.
|
# ? Oct 11, 2019 23:24 |