All posts by shawn-hyde

A little something about everything

internet marketing and website development made simple..

Government approved unlimited debt ceiling until February 7, in order to reopen the US government spending spree.

In a sad display of bi-partisanship our elected officials decided not only to increase the debt limit but to remove all spending limits until February 7th of 2014. With a record low approval rating the only thing that they have been able to agree on is that they want to spend more of your money. It may be time to clean house if we want to keep the US economy above water in the next few decades.

Do we really need 2.65 million federal employees?

Does the federal government really need 2.9+ Trillion of our money in 2013?

More spending means more taxes, in one form or another.

 

 

 

 

VPN setup for Windows Server 2012, How to:

VPN Server Setup in Windows Server 2012

 

Simple walkthrough of the steps you need in order to accomplish this are as follows:

  • Open Server Manager > Add roles and features > Next > Choose (default) role based or feature based > Next
    • Select the server you would like to install VPN services to > Next
    • Select Remote Access Role > Add features > Next > Next > Next
    • Choose (Default) DirectAccess and VPN (RAS) > Next > Next > Next > Install > Close
  • In Server Manager select Remote Access > Select more on the right of the configuration notice or select from you pending tasks
    • Select open getting started wizard if you choose the first method.
    • Select Deploy VPN Only
    • Once the Routing and Remote Access MMC is up right click the Server and choose "Configure and Enable Routing and Remote Access". > Next
      • Select Custom > Next > VPN Access > Finish > OK > Start Service
    • right click server and choose properties
      • Select IPV4 tab to configure IP Pool or leave it Dynamic
  • From Computer management or Active directory you will need to create a group or modify each user you would like to have access to the VPN
    • right click user > properties > dial-in tab > allow access > apply > ok

You should also properly setup you VPN security if you have any critical data being transmitted via this network. For assistance with this you can contact a professional IT company like Area51.mn to assist you with proper setup and network security.  

TLC vs MLC vs SLC, Performance, benchmarks and reliability.

SLC, Single Level Cell (1 bit)

  • Generally 100000 write erase cycles
  • Erase time: 1-2.5ms

MLC, Multilevel Cell (2 or more bits)

  • Anywhere from 3000 to 15000 write erase cycles
  • Erase time: 2.5-3.5ms

TLC, Triple Level Cell (3 bits)

  • Anywhere from 1000 to 5000 write/erase cycles
  • Erase time: 4-5ms

 

Currently TLC offers the best performance/reliability per $ due to the fact that its the cheapest software and reliability has been improved exponentially over the past few years. MLC is also fairly close in performance/reliability per $, overall a MLC 2 bit cell has about 3x more write/erase cycles than a 3 bit cell so enterprise products tend to be MLC or SLC as SLC does have the best overall reliability with generally is well over 100,000 write/erase cycles ten times that of a MLC unit without software optimizations. Since software can be used to improve the overall reliability issues things can get quite complicated.

First thing to consider is amount of data you will be writing to the drive each day and how long you need the drive to last as SSD drives will all fail at some point based on number of write/erase cycles to the drive.

If the data is static, meaning very little writing/erasing to the drive then go with TLC,

If you plan to have moderate to heavy data writes/rewites/erasing then MLC or SLC, for example mail or database server.

With standard 3x Write Amplification* and 20GB a day in new data writes a 128GB SLC drive should last about 5-6 years and a MLC drive should last about 17-18 years assuming nothing else with the drive fails before that. In a enterprise environment you might have 40GB/day and the lifespan would drop to 2.5-3 years on SLC or 8.5-9 years on a MLC disk.

Enterprise vs Consumer grade SSD's:

The real difference between consumer grade SSD and enterprise grade is how efficiently the drive handles data read/write/erase cycles and sometimes its just marketing so check the MTBF; this should be 1,000,000 at a minimum. Next you will want to check the IOPS(input/outputs per second); in most cases you should look for something with 80,000 or more for both read and write.

Note on SLC:

Because very few people need a drive to last longer than 5-10 years SLC has not had much development keeping the price high and size very small, this is why most people choose MLC or TLC SSD drives today. 

 

Write Amplification is when SSD cells are erased before being written, this is required. when data is written to the disk the flash controller updates the LBA with the location of the data/metadata any old data still remains on the disk and must be erased. Some drives can offer solutions to this by methods like over provisioning, allowing new data to be written next to the old data without fragmentation and erasing the old data improving performance and the life of the disk but lowering the capacity. Another method it to separate static and dynamic data sets reducing the erase cycles for content that is rarely changed allowing the firmware to be more efficient and rotate usage over the life of the drive. 

This message wasn't delivered to anyone because it's too large. The limit is 10 MB. This message is / 550 5.2.3 RESOLVER.RST.SendSizeLimit.Org; message too large for this organization

Error:

This message wasn't delivered to anyone because it's too large. The limit is 10 MB. This message is

This message won't be sent because it's too large

#550 5.2.3 RESOLVER.RST.SendSizeLimit.Org; message too large for this organization ##

 

Solution:

Adjust the limits with the following powershell commands:

 Set-TransportConfig -InternalDsnMaxMessageAttachSize #MB

 Set-TransportConfig -ExternalDsnMaxMessageAttachSize #MB

then

 Set-TransportConfig -MaxReceiveSize #MB -MaxSendSize #MB

or

 Set-Mailbox "User" -MaxSendSize #MB -MaxReceiveSize #MB

Gmail rejecting exchange 2010 2013 emails with: The sender does not meet basic ipv6 sending guidelines of authentication and rdns resolution of sending ip.

Issue:

gmail.com is rejecting emails from Microsoft Exchange 2010 and Microsoft Exchange 2013 email servers for no PTR records even if you do not have any IPv6 IPs assigned to the server.

 

Error:

The sender does not meet basic ipv6 sending guidelines of authentication and rdns resolution of sending ip. Please review https://support.google.com/mail/answer/81126for more information.

Your message wasn't delivered due to a permission or security issue. It may have been rejected by a moderator, the address may only accept email from certain senders, or another restriction may be preventing delivery.

Diagnostic information for administrators:

Generating server: EXCHANGE.a51.biz

{email address}
mx.google.com #550-5.7.1 [ipv6info] The sender does not meet basic 550-5.7.1 ipv6 sending guidelines of authentication and rdns resolution of 550-5.7.1 sending ip. Please review 550 5.7.1 https://support.google.com/mail/answer/81126 for more information.

 

Solution:

Disable certain IPv6 components yourself, follow these steps:

  1. Use the registry editor to edit the following path: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters\
    • Edit or create DWORD (32-bit) value "DisabledComponents".
    • Default value is "0", you will need to change this to "0xffffffff"(Hexadecimal "ffffffff" or Decimal "4294967295") in order to disable all IPV6 other than local loopback.
  2. Verify that IPV6 is disabled with the following command: "reg query HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters /v DisabledComponents"
    • You may receive the following error message: "ERROR: The system was unable to find the specified registry key or value."
    • If you receive this error message, the DisabledComponents registry value is not set. If the DisabledComponents value is set, it overrides the settings in the connection properties.

Solution 2:

If you have IPv6 IP's enabled on the server verify that your PTR records are correctly setup.