Apple services ports and hosts, for firewalls
article #1433, updated 194 days ago

Ports:

support.apple.com/en-us/HT202944

Hosts:

support.apple.com/en-us/HT210060

Categories:      

==============

UPS software for Emerson, Liebert, Vertiv
article #1542, updated 194 days ago

Works well, much better than the old Liebert/Emerson. Register for the web site to download the free-of-charge version. USB and Ethernet.

www.vertiv.com/en-us/products-catalog/monitoring-control-and-management/software/vertiv-power-assist/

Categories:      

==============

Sync AD to DCs and Azure
article #1346, updated 195 days ago

In one swell foop, sync your AD to other domain controllers and Azure. Paste this into administrative Powershell, on the domain controller which does your Azure sync:

repadmin /syncall /AdeP
Import-Module ADSync
Start-ADSyncSyncCycle -PolicyType Initial

And here is the same command set, suitable for a batch file to be run as administrator:

repadmin /syncall /AdeP
@"%SystemRoot%\System32\WindowsPowerShell\v1.0\powershell.exe" -NoProfile -InputFormat None -ExecutionPolicy Bypass -Command ^
"Import-Module ADSync; Start-ADSyncSyncCycle -PolicyType Initial"

And one more, also a batch file, transmitting only to Azure, without the LAN-LAN AD sync. Needed when the synchronizer is not run on a domain controller:

@"%SystemRoot%\System32\WindowsPowerShell\v1.0\powershell.exe" -NoProfile -InputFormat None -ExecutionPolicy Bypass -Command ^
"Import-Module ADSync; Start-ADSyncSyncCycle -PolicyType Initial"

Categories:      

==============

A new Windows TCP/IP standard, preventing Windows Port Exhaustion
article #1556, updated 209 days ago

It appears that there is a new standard of Microsoft Windows TCP/UDP port setup. Their doc is here:

learn.microsoft.com/en-us/troubleshoot/windows-client/networking/tcp-ip-port-exhaustion-troubleshooting

I landed there because I saw event log items 4227, tcpip, “TCP/IP failed to establish an outgoing connection because the selected local endpoint was recently used to connect to the same remote endpoint. This error typically occurs when outgoing connections are opened and closed at a high rate…”

If you see lots of those events, or don’t, this paste gets us to the new standard:

netsh int ipv4 set dynamic tcp start=49152 num=16384
netsh int ipv4 set dynamic udp start=49152 num=16384

To see your current settings:

netsh int ipv4 show dynamicport tcp
netsh int ipv4 show dynamicport udp

And if you want to combine the above with full disable of NETBIOS and related:

Get-CimInstance -ClassName 'Win32_NetworkAdapterConfiguration' | Invoke-CimMethod -MethodName 'SetTcpipNetbios' -Arguments @{ 'TcpipNetbiosOptions' = [UInt32](2) }
Get-WmiObject Win32_NetworkAdapterConfiguration | Invoke-WmiMethod -Name SetWINSServer -ArgumentList @('','')
$nicall = [wmiclass]'Win32_NetworkAdapterConfiguration'
$nicall.enablewins($false,$false)
netsh int ipv4 set dynamic tcp start=49152 num=16384
netsh int ipv4 set dynamic udp start=49152 num=16384

Categories:      

==============

Waydroid: Android in a Linux container
article #1558, updated 210 days ago

Haven’t tried it yet, but frankly, this is rather extremely cool if you do Linux:

waydro.id/

Categories:      

==============

Windows cleanup, fixup, and performance with PrivaZer
article #1554, updated 215 days ago

This tool:

privazer.com/en/

has privacy-related cleanup as its first purpose, but it does a more thorough cleanup of many parts of the Windows filesystem than I’ve seen anywhere else, including $MFT, $LogFile, and USN entries to name just three. It really has to be seen to be believed and understood, it gives you lists of what it did and they are extraordinary. It is not an OS optimizer, but it’s such a good cleaner that it will free up resources very significantly towards performance and issue elimination.

One thing good to do while running it, is to uncheck “Traces in free space”. This item is great for trace removal of all sorts, but it’s not needed when the goal is just general system upkeep, and it does take a long time.

You can definitely use the machine while cleanup is running, but probably should set process priority to “Low”, there’s a clicklink for this near the bottom, middle-left.

Categories:      

==============

When Watchguard EPDR will not reinstall
article #1555, updated 216 days ago

You’ve installed it and removed it, and need to reinstall, the reinstall fails. Here are items:

  • If there are files named RAVDG.TMP and/or RAVPA.TMP in %WINDIR%, the uninstall is still running. Reboot and check again.
  • Make sure folder Panda Security does not exist under %ProgramData% or %ProgramFiles(x86)%.
  • Delete everything in %TEMP%.
  • Reinstall.

Categories:      

==============

New Microsoft firewall needs
article #1553, updated 236 days ago

A new needs page has been put up. Major changes. If you have a strict firewall, try opening all of these up. IPv6 is listed within the required sections, not clear how much that is true.

learn.microsoft.com/en-us/microsoft-365/enterprise/urls-and-ip-address-ranges?view=o365-worldwide

Categories:      

==============

Sign-in Event Log for Microsoft 365
article #1552, updated 247 days ago

A nice tool:

entra.microsoft.com/#view/Microsoft_AAD_IAM/SignInEventsV3Blade?Microsoft_AAD_IAM_legacyAADRedirect=true

Categories:      

==============

Forensic drive data extraction: free imager, cross-platform
article #1551, updated 249 days ago

Highly recommended by the indefatigable Bruce Blackman:

www.geeksforgeeks.org/how-to-create-a-forensic-image-with-ftk-imager/

Categories: