Best Practice for setting up an office with an extreme

Similar Messages

• Best practices for setting up RDS pool, with regards to profiles /appdata

  All,
  I'm working on a network with four physical sites and currently using a single pool of 15 RDS servers with one broker. We're having a lot of issues with the current deployment, and are rethinking our strategy. I've read a lot of conflicting information on how
  to best deploy such a service, so I'd love some input.
  Features and concerns:
  Users connect to the pool from intranet only.
  There are four sites, each with a somewhat different local infrastructure. Many users are connecting to the RDS pool via thin clients, although some locations have workstations in place.
  Total user count that needs to be supported is ~400, but it is not evenly distributed - some sites have more than others.
  Some of the users travel from one site to another, so that would need to be accounted for with any plans that involve carving up the existing pool into smaller groups.
  We are looking for a load-balanced solution - using a different pool for each site would be acceptable as long as it takes #4 and #7,8 into account.
  User profile data needs to be consistent throughout: My Docs, Outlook, IE favorites, etc.
  Things such as cached IE passwords (for sharepoint), Outlook settings and other user customization needs to be carried over as well.
  As such, something needs to account for the information in AppData/localroaming, /locallow and /local between these RDS servers.
  Ideally the less you have to cache during each logon the better, in order to reduce login times.
  I've almost never heard anything positive about using roaming profiles, but is this one of those rare exceptions? Even if we do that, I don't believe that covers the information in <User>/AppData/*  (or does it?), so what would be the best
  way to make sure that gets carried over between sessions inside the pool or pools?
  The current solution involves using 3rd party apps, registry hacks, GPOs and a mashup of other things and is generally considered to be a poor fit for the environment. A significant rework is expected and acceptable. Thinking outside the box is fine!
  I would relish any advice on the best solutions for deployment! Thank you!

  Hi Ben,
  Thank you for posting in Windows Server Forum.
  Please check below blogs and document which helps to understand some basic requirement and to setup the new environment with proper guided manner.
  1. Remote Desktop Services Deployment Guide
  (Doc)
  2. Step by Step Windows 2012 R2 Remote Desktop Services –
  Part 1, 2,3 & 4
  3.Deploying a 2012 / 2012R2 Remote Desktop Services (RDS) farm
  Hope it helps!
  Thanks.
  Dharmesh Solanki

• (Request for:) Best practices for setting up a new Windows Server 2012 r2 Hyper-V Virtualized AD DC

  Could you please share your best practices for setting up a new Windows Server 2012 r2 Hyper-V Virtualized AD DC, that will be running on a new WinSrv 2012 r2 host server.   (This
  will be for a brand new network setup, new forest, domain, etc.)
  Specifically, your best practices regarding:
  the sizing of non virtual and virtual volumes/partitions/drives,  
  the use of sysvol, logs, & data volumes/drives on hosts & guests,
  RAID levels for the host and the guest(s),  
  IDE vs SCSI and drivers both non virtual and virtual and the booting there of,  
  disk caching settings on both host and guests.  
  Thanks so much for any information you can share.

  A bit of non essential additional info:
  We are small to midrange school district who, after close to 20 years on Novell networks, have decided to design and create a new Microsoft network and migrate all of our data and services
  over to the new infrastructure .   We are planning on rolling out 2012 r2 servers with as much Hyper-v virtualization as possible.
  During the last few weeks we have been able to find most of the information we need to undergo this project, and most of the information was pretty solid with little ambiguity, except for
  information regarding virtualizing the DCs, which as been a bit inconsistent.
  Yes, we have read all the documents that most of these posts tend point to, but found some, if not most are still are referring to performing this under Srvr 2008 r2, and haven’t really
  seen all that much on Srvr2012 r2.
  We have read these and others:
  Introduction to Active Directory Domain Services (AD DS) Virtualization (Level 100), 
  Virtualized Domain Controller Technical Reference (Level 300),
  Virtualized Domain Controller Cloning Test Guidance for Application Vendors,
  Support for using Hyper-V Replica for virtualized domain controllers.
  Again, thanks for any information, best practices, cookie cutter or otherwise that you can share.
  Chas.

• Best practices for setting up projects

  We recently adopted using Captivate for our WBT modules.
  As a former Flash and Director user, I can say it’s
  fast and does some great things. Doesn’t play so nice with
  others on different occasions, but I’m learning. This forum
  has been a great source for search and read on specific topics.
  I’m trying to understand best practices for using this
  product. We’ve had some problems with file size and
  incorporating audio and video into our projects. Fortunately, the
  forum has helped a lot with that. What I haven’t found a lot
  of information on is good or better ways to set up individual
  files, use multiple files and publish projects. We’ve decided
  to go the route of putting standalones on our Intranet. My gut says
  yuck, but for our situation I have yet to find a better way.
  My question for discussion, then is: what are some best
  practices for setting up individual files, using multiple files and
  publishing projects? Any references or input on this would be
  appreciated.

  Hi,
  Here are some of my suggestions:
  1) Set up a style guide for all your standard slides. Eg.
  Title slide, Index slide, chapter slide, end slide, screen capture,
  non-screen capture, quizzes etc. This makes life a lot easier.
  2) Create your own buttons and captions. The standard ones
  are pretty ordinary, and it's hard to get a slick looking style
  happening with the standard captions. They are pretty easy to
  create (search for add print button to learn how to create
  buttons). There should instructions on how to customise captions
  somewhere on this forum. Customising means that you can also use
  words, symbols, colours unique to your organisation.
  3) Google elearning providers. Most use captivate and will
  allow you to open samples or temporarily view selected modules.
  This will give you great insight on what not to do and some good
  ideas on what works well.
  4) Timings: Using the above research, I got others to
  complete the sample modules to get a feel for timings. The results
  were clear, 10 mins good, 15 mins okay, 20 mins kind of okay, 30
  mins bad, bad, bad. It's truly better to have a learner complete
  2-3 short modules in 30 mins than one big monster. The other
  benefit is that shorter files equal smaller size.
  5) Narration: It's best to narrate each slide individually
  (particularly for screen capture slides). You are more likely to
  get it right on the first take, it's easier to edit and you don't
  have to re-record the whole thing if you need to update it in
  future. To get a slicker effect, use at least two voices: one male,
  one female and use slightly different accents.
  6) Screen capture slides: If you are recording filling out
  long window based databse pages where the compulsory fields are
  marked (eg. with a red asterisk) - you don't need to show how to
  fill out every field. It's much easier for the learner (and you) to
  show how to fill out the first few fields, then fade the screen
  capture out, fade the end of the form in with the instructions on
  what to do next. This will reduce your file size. In one of my
  forms, this meant the removal of about 18 slides!
  7) Auto captions: they are verbose (eg. 'Click on Print
  Button' instead of 'Click Print'; 'Select the Print Preview item'
  instead of 'Select Print Preview'). You have to edit them.
  8) PC training syntax: Buttons and hyperlinks should normally
  be 'click'; selections from drop down boxes or file lists are
  normally 'select': Captivate sometimes mixes them up. Instructions
  should always be written in the correct order: eg. Good: Click
  'File', Select 'Print Preview'; Bad: Select 'Print Preview' from
  the 'File Menu'. Button names, hyperlinks, selections are normally
  written in bold
  9) Instruction syntax: should always be written in an active
  voice: eg. 'Click Options to open the printer menu' instead of
  'When the Options button is clicked on, the printer menu will open'
  10) Break all modules into chapters. Frame each chapter with
  a chapter slide. It's also a good idea to show the Index page
  before each chapter slide with a progress indicator (I use an
  animated arrow to flash next to the name of the next chapter), I
  use a start button rather a 'next' button for the start of each
  chapter. You should always have a module overview with the purpose
  of the course and a summary slide which states what was covered and
  they have complete the module.
  11) Put a transparent click button somewhere on each slide.
  Set the properties of the click box to take the learner back to the
  start of the current chapter by pressing F2. This allows them to
  jump back to the start of their chapter at any time. You can also
  do a similar thing on the index pages which jumps them to another
  chapter.
  12) Recording video capture: best to do it at normal speed
  and be concious of where your mouse is. Minimise your clicks. Most
  people (until they start working with captivate) are sloppy with
  their mouse and you end up with lots of unnecessarily slides that
  you have to delete out. The speed will default to how you recorded
  it and this will reduce the amount of time you spend on changing
  timings.
  13) Captions: My rule of thumb is minimum of 4 seconds - and
  longer depending on the amount of words. Eg. Click 'Print Preview'
  is 4 seconds, a paragraph is longer. If you creating knowledge
  based modules, make the timing long (eg. 2-3 minutes) and put in a
  next button so that the learner can click when they are ready.
  Also, narration means the slides will normally be slightly longer.
  14) Be creative: Capitvate is desk bound. There are some
  learners that just don't respond no matter how interactive
  Captivate can be. Incorporate non-captivate and desk free
  activities. Eg. As part of our OHS module, there is an activity
  where the learner has to print off the floor plan, and then wander
  around the floor marking on th emap key items such as: fire exits;
  first aid kit, broom and mop cupboard, stationary cupboard, etc.
  Good luck!

• Best practice for setting or detecting screen size?

  Hi All,
  Trying to determine a best practice for setting or detecting the screen size. For playbook and iOS, I can set them. But for Android, the number of devices is too large so I'd rather detect. My first choice is to use the stage.stageHeight and stage.stageWidth. This works fine if I set my stage properties with standard meta data:
  [SWF(height="320", width="480", frameRate="64", backgroundColor="#010101")]
  However, if I use the application descriptor file to set the stage dimentions (as suggested by Christian Cantrell here http://www.adobe.com/devnet/flash/articles/authoring_for_multiple_screen_sizes.html)
  <initialWindow>
  <aspectRatio>landscape</aspectRatio>
  <autoOrients>false</autoOrients>
  <width>320</width>
  <height>480</height>
  <fullScreen>true</fullScreen>
  </initialWindow>
  Then the stage.stageHeight and stage.stageWidth are not the correct numbers when my main class is added to the stage. Sometime after the main class is added to the stage, then those numbers are fine. Is there an event I can wait for to know that the stage.stageHeight and stage.stageWidth are correct?
  Thanks in advance!

  Hi Lee,
  Thanks for the quick response! However, for some reason the heightPercent & widthPercent metadata tags are not working as expected for me.
  I have a wrapper class that I target for compiling, WagErgApplePhone.as where I've got my metadata
  [SWF(heightPercent="100%", widthPercent="100%", frameRate="64", backgroundColor="#010101")]
  sets some stage properties
  stage.quality=StageQuality.LOW;
  stage.scaleMode = StageScaleMode.NO_SCALE;
  stage.align = StageAlign.TOP_LEFT;
  and instantiates my main class
  var main:Main = new Main();
  addChild(main);
  my main class constructor even waits for the stage
  public function Main(){
  if (stage) init();
  else addEventListener(Event.ADDED_TO_STAGE, init);
  in my init function, stage.stageHeight traces out as 375 (expecting 320).
  i have a function which is called via a button press event by the user, and stage.stageHeight traces out correctly (320) there. that's what makes me think that if i wait long enough, i can get the correct stageHeight before init/drawing. but i'm not sure what event to listen for, or if there's another trick.
  if i use Capabilities.screenResolutionX and Capabilities.screenResolutionY the correct values are provided for mobile, but these values are not useful for the desktop and web version of the app. if there's no other solution, i'll execute different code depending on platform.
  again, for reference, my app descriptor:
  <initialWindow>
  <aspectRatio>landscape</aspectRatio>
  <autoOrients>false</autoOrients>
  <width>320</width>
  <height>480</height>
  <content>bin-iOS/WagErgApplePhone.swf</content>
  <title>WAG ERG</title>
  <fullScreen>true</fullScreen>
  <renderMode>cpu</renderMode>
  </initialWindow>
  looking forward to any other ideas to try out & thanks so much for your thoughts! if you want to really dig in, this is an opensource project at code.google.com/p/wag-erg/

• What is the best practice for setting up warehouse inventory for oil & gas tank farm

  Hi, i want to know the best practice for setting up warehouse inventory for oil & gas tank farm. SAP has these levels for inventory management in warehouse environment: warehouse-aisle-shelf-bin. To me the bin seems to be the central location for inventory. So do i set up each oil tank as a bin location?

  Hi,
  Please refer below link:
  https://help.sap.com/saphelp_sbo900/helpdata/EN/ad/4f233a7b864c7cbe2b57ad09246adb/content.htm
  SAP Business One 9.0 Training - Feb 6, 2013 - Warehouse Bins - YouTube
  Thanks & Regards,
  Nagarajan

• What is the best practice for using the Calendar control with the Dispatcher?

  It seems as if the Dispatcher is restricting access to the Query Builder (/bin/querybuilder.json) as a best practice regarding security.  However, the Calendar relies on this endpoint to build the events for the calendar.  On Author / Publish this works fine but once we place the Dispatcher in front, the Calendar no longer works.  We've noticed the same behavior on the Geometrixx site.
  What is the best practice for using the Calendar control with Dispatcher?
  Thanks in advance.
  Scott

  Not sure what exactly you are asking but Muse handles the different orientations nicely without having to do anything.
  Example: http://www.cariboowoodshop.com/wood-shop.html

• Best practices for setting up users on a small office network?

  Hello,
  I am setting up a small office and am wondering what the best practices/steps are to setup/manage the admin, user logins and sharing privileges for the below setup:
  Users: 5 users on new iMacs (x3) and upgraded G4s (x2)
  Video Editing Suite: Want to connect a new iMac and a Mac Pro, on an open login (multiple users)
  All machines are to be able to connect to the network, peripherals and external hard drive. Also, I would like to setup drop boxes as well to easily share files between the computers (I was thinking of using the external harddrive for this).
  Thank you,

  Hi,
  Thanks for your posting.
  When you install AD DS in the hub or staging site, disconnect the installed domain controller, and then ship the computer to the remote site, you are disconnecting a viable domain controller from the replication topology.
  For more and detail information, please refer to:
  Best Practices for Adding Domain Controllers in Remote Sites
  http://technet.microsoft.com/en-us/library/cc794962(v=ws.10).aspx
  Regards.
  Vivian Wang

• Networking "best practice" for setting up a farm

  Hi all.
  We would like to set an OracleVM farm, and I have a question about "best practice" for
  configuring the network. Some background:
  - The hardware I have is comprised of machines with 4 gig-eth NICs each.
  - The storage will be coming primarily from a backend NAS appliance (Netapp, FWIW).
  - We have already allocated a separate VLAN for management.
  - We would like to have HA capable VMs using OCFS2 (on top of NFS.)
  I'm trying to decide between 2 possible configurations. The first would keep physical separation
  between the mgt/storage networks and the DomU networks. The second would just trunk
  everything together across all 4 NICs, something like:
  Config 1:
  - eth0 - management/cluster-interconnect
  - eth1 - storage
  - eth2/eth3 => bond0 - 8021q trunked, bonded interfaces for DomUs
  Config 2:
  - eth0/1/2/3 => bond0
  Do people have experience or recommendation about the best configuration?
  I'm attracted to the first option (perhaps naively) because CI/storage would benefit
  from dedicated bandwidth and this configuration might also be more secure.
  Regards,
  Robert.

  user1070509 wrote:
  Option #4 (802.3ad) looks promising, but I don't know if this can be made to work across
  separate switches.It can, if your switches support cross-switch trunking. Essentially, 802.3ad (also known as LACP or EtherChannel on Cisco devices) requires your switch to be properly configured to allow trunking across the interfaces used for the bond. I know that the high-end Cisco and Juniper switches do support LACP across multiple switches. In the Cisco world, this is called MEC (Multichassis EtherChannel).
  If you're using low-end commodity-grade gear, you'll probably need to use active/passive bonds if you want to span switches. Alternatively, you could use one of the balance algorithms for some bandwitch increase. You'd have to run your own testing to determine which algorithm is best suited for your workload.
  The Linux Foundation's Net:Bonding article has some great information on bonding in general, particularly on the various bonding methods for high availability:
  http://www.linuxfoundation.org/en/Net:Bonding

• Best practiceS for setting up Macs on Network

  Greetings.
  We have six Macs on our Windows Server network; three iMacs and three laptops. We have set up all the machines and they are joined to the Active Directory. In the past, we have always created local users on the machines and then "browsed" to the server shares and mounted the them. We've learned things have improved/changed over the years and we're just now realizing we can probably have the machines set up to work better. So, I have a couple of questions for "best practices" when setting up each of the machines.
  1. Since we’re in a network environment, should we not set up “local logins/users” and instead have users login using their AD login? It seems having a local account creates some conflicts with the server since upgrading to lion.
  2. Should we set the computer to not ask for a “list of users” and instead ask for a username and password for logins?
  3. For the user that uses the machine most often, they can still customize their desktop when they use an AD login, correct?
  4. Should we set up Mobile User Accounts? What exactly does this do?
  Any other advice on how we should best be setting up the clients for our environment to make sure we are following best practices would be great!
  Thanks for any help!
  Jay

  Greetings.
  We have six Macs on our Windows Server network; three iMacs and three laptops. We have set up all the machines and they are joined to the Active Directory. In the past, we have always created local users on the machines and then "browsed" to the server shares and mounted the them. We've learned things have improved/changed over the years and we're just now realizing we can probably have the machines set up to work better. So, I have a couple of questions for "best practices" when setting up each of the machines.
  1. Since we’re in a network environment, should we not set up “local logins/users” and instead have users login using their AD login? It seems having a local account creates some conflicts with the server since upgrading to lion.
  2. Should we set the computer to not ask for a “list of users” and instead ask for a username and password for logins?
  3. For the user that uses the machine most often, they can still customize their desktop when they use an AD login, correct?
  4. Should we set up Mobile User Accounts? What exactly does this do?
  Any other advice on how we should best be setting up the clients for our environment to make sure we are following best practices would be great!
  Thanks for any help!
  Jay

• Best practices for 2 x DNS servers with 2 x sites

  I am curious if someone can help me with best practices for my DNS servers.  Let me give my network layout first.
  I have 1 site with 2 x Windows 2012 Servers (1 GUI - 10.0.0.7, the other CORE - 10.0.0.8) the 2nd site connected via VPN has 2 x Windows 2012R2 Servers (1 GUI - 10.2.0.7, the other CORE - 10.2.0.8)  All 4 servers are promoted to DC's and have DNS services
  running.
  Here goes my questions:
  Site #1
  DC-01 - NIC IP address for DNS server #1 set to 10.0.0.8, DNS server #2 set to 127.0.0.1 (should I add my 2nd sites DNS servers under Advanced as well? 10.2.0.7 & 10.2.0.8)
  DC-02 - NIC IP address for DNS server #1 set to 10.0.0.7, DNS server #2 set to 127.0.0.1 (should I add my 2nd sites DNS servers under Advanced as well? 10.2.0.7 & 10.2.0.8)
  Site #2
  DC-01 - NIC IP address for DNS server #1 set to 10.2.0.8, DNS server #2 set to 127.0.0.1 (should I add my 2nd sites DNS servers under Advanced as well? 10.0.0.7 & 10.0.0.8)
  DC-02 - NIC IP address for DNS server #1 set to 10.2.0.7, DNS server #2 set to 127.0.0.1 (should I add my 2nd sites DNS servers under Advanced as well? 10.0.0.7 & 10.0.0.8)
  Under the DNS management > Forward Lookup Zones > _msdcs.mydomain.local
  > properties > Name Servers should I have all of my other DNS servers, or should I have my WAN DNS servers? In a single server scenario I always put my WAN DNS server but a bit unsure in this scenario. 
  Under the DNS management > Forward Lookup Zones > _msdcs.mydomain.local > properties > General > Type should all servers be set to
  Active Directory - Integrated > Primary Zone? Should any of these be set to
  Secondary Zone?
  Under the DNS management > Forward Lookup Zones > _msdcs.mydomain.local > properties > Zone Transfers should I allow zone transfers?
  Would the following questions be identical to the Forward Lookup Zone mydomain.local as well?

  I am curious if someone can help me with best practices for my DNS servers.  Let me give my network layout first.
  I have 1 site with 2 x Windows 2012 Servers (1 GUI - 10.0.0.7, the other CORE - 10.0.0.8) the 2nd site connected via VPN has 2 x Windows 2012R2 Servers (1 GUI - 10.2.0.7, the other CORE - 10.2.0.8)  All 4 servers are promoted to DC's and have DNS services
  running.
  Here goes my questions:
  Site #1
  DC-01 - NIC IP address for DNS server #1 set to 10.0.0.8, DNS server #2 set to 127.0.0.1 (should I add my 2nd sites DNS servers under Advanced as well? 10.2.0.7 & 10.2.0.8)
  DC-02 - NIC IP address for DNS server #1 set to 10.0.0.7, DNS server #2 set to 127.0.0.1 (should I add my 2nd sites DNS servers under Advanced as well? 10.2.0.7 & 10.2.0.8)
  Site #2
  DC-01 - NIC IP address for DNS server #1 set to 10.2.0.8, DNS server #2 set to 127.0.0.1 (should I add my 2nd sites DNS servers under Advanced as well? 10.0.0.7 & 10.0.0.8)
  DC-02 - NIC IP address for DNS server #1 set to 10.2.0.7, DNS server #2 set to 127.0.0.1 (should I add my 2nd sites DNS servers under Advanced as well? 10.0.0.7 & 10.0.0.8)
  Under the DNS management > Forward Lookup Zones > _msdcs.mydomain.local
  > properties > Name Servers should I have all of my other DNS servers, or should I have my WAN DNS servers? In a single server scenario I always put my WAN DNS server but a bit unsure in this scenario. 
  Under the DNS management > Forward Lookup Zones > _msdcs.mydomain.local > properties > General > Type should all servers be set to
  Active Directory - Integrated > Primary Zone? Should any of these be set to
  Secondary Zone?
  Under the DNS management > Forward Lookup Zones > _msdcs.mydomain.local > properties > Zone Transfers should I allow zone transfers?
  Would the following questions be identical to the Forward Lookup Zone mydomain.local as well?
  Site1
  DC1: Primary 10.0.0.7. Secondary 10.0.0.8. Tertiary 127.0.0.1
  DC2: Primary 10.0.0.8.  Secondary 10.0.0.7. Tertiary 127.0.0.1
  Site2
  DC1: Primary 10.2.0.7.  Secondary 10.2.0.8. Tertiary 127.0.0.1
  DC2: Primary 10.2.0.8.  Secondary 10.2.0.7. Tertiary 127.0.0.1
  The DC's should automatically register in msdcs.  Do not register external DNS servers in msdcs or it will lead to issues. Yes, I recommend all zones to be set to AD-integrated. No need to allow zone transfers as AD replication will take care
  of this for you.  Same for mydomain.local.
  Hope this helps.  

• Best Practices for Setting up a Windows 2012 R2 STD Domain Controller in a Remote Site

  So I'm looking for an article or writeup similar to the "Adding Domain Controllers in Remote Sites" TechNet article but for Windows Server 2012 STD R2.  Here is my scenario:
  1.  I want to setup the domain controller at Site A where the primary domain controller is located.  The primary domain controller is Windows Server 2008 R2. 
  2.  Once the DC is setup I plan on leaving it on our network for a few days before shipping it to remote Site B for installation
  Other key items:
  1.  The remote Site B will have a different IP range than Site A but will be connected to Site A via a single VPN tunnel.  All the DCs that replicate with each other are on the same domain. 
  2.  The 2012 DC that I setup for Site B (same domain in same forest) will be a DHCP, DNS, and WSUS server all replicating to the primary DC at Site A
  Questions:
  1.  What items can I setup while it's at Site A without effecting or conflicting with the existing network and domain controller?  Can I setup a scope once the DHCP role is added? 
  2.  All of our DCs replicate through Sites and Services, do I have to manually add this to our primary DC for the new DC going to remote Site B?  Or when does this happen automatically when I promote the DC? 
  All and all I'm just looking for a list of Best Practices for 2012 or a Step by Step Guide.  Any help would be appreciated. 

  Hi,
  Thanks for your posting.
  When you install AD DS in the hub or staging site, disconnect the installed domain controller, and then ship the computer to the remote site, you are disconnecting a viable domain controller from the replication topology.
  For more and detail information, please refer to:
  Best Practices for Adding Domain Controllers in Remote Sites
  http://technet.microsoft.com/en-us/library/cc794962(v=ws.10).aspx
  Regards.
  Vivian Wang

• Best Practice for setting bind variable when application loads

  I am using JDeveloper 11.1.2.3.
  When my application loads, the first unbounded page has a table populated by a named query.
  I would like to set the parameter used by the named query when the page loads, to populate the initial data that is displayed.
  What is the best practice for a solution to this issue?

  user6003393 wrote:
  I am using JDeveloper 11.1.2.3.
  When my application loads, the first unbounded page has a table populated by a named query.
  I would like to set the parameter used by the named query when the page loads, to populate the initial data that is displayed.
  What is the best practice for a solution to this issue?Hi,
  You can set the bind variable on VO by overriding prepareSession() method in Application Module check this http://docs.oracle.com/cd/E37975_01/web.111240/e16182/bcservices.htm#sthref357
  Setting bind variable on runtime http://docs.oracle.com/cd/E37975_01/web.111240/e16182/bcquerying.htm#CHDECJHD
  Zeeshan

• Best Practices for Integrating UC-5x0's with SBS 2003/8?

  Almost all of Cisco's SBCS market is the small and medium business space.  Most, if not all of these SMB's have a Microsoft Small Business Server 2003 or 2008. It will be critical, In order for Cisco to be considered as a purchase option, that the UC-5x0 integrates well into these networks.
  To that end, I see a  lot of talk here about how to implement parts and pieces of this, but no guidance from Cisco, no labs and no best practices or other documentation. If I am wrong, please correct me.
  I am currently stumbling through and validating these configurations myself, Once complete, I will post detailed recommendations. However, it would have been nice to have a lab to follow instead of having to learn from each mistake.
  Some of the challanges include;
  1. Where should the UC-540 be placed: As the gateway for QOS or behind a validated UC-5x0 router/security appliance combination
  2. Should the Microsoft Windows Small Business Server handle DCHP (as Microsoft's documentation says it must), or must the UC-540 handle DHCP to prevent loss of features? What about a DHCP relay scheme?
  3. Which device should handle DNS?
  My documentation (and I recommend that any Cisco Lab/Best Practice guidence include it as well) will assume the following real-world scenario, the same which applies to a majority of my SMB clients;
  1. A UC-540 device utilizing SIP for the cost savings
  2. High Speed Internet with 5 static routable IP addresses
  3. An existing Microsoft Small Business Server 2003/8
  4. An additional Line of Business Application or Terminal Server that utilizes the same ports (i.e. TCP 80/443/3389) as the UC-540 and the SBS, but on seperate routable IP's (Making up crazy non-standard port redirections is not an option).
  5. A employee who teleworks from various places that provide a seat and a network jack, which is not under our control (i.e. a employees home, a clients' office, or a telework center). This teleworker should use the built in VPN feature within the SPA or 7925G phones because we will not have administrative access to any third party's VPN/firewall.
  Your thoughs appreciated.

  Progress Report;
  The following changes have been made to the router in support of the previously detailed scenario. Everything appears to be working as intended.
  DHCP is still on the UC540 for now. DNS is being performed by the SBS 2008.
  Interestingly, the CCA still works. The NAT module even shows all the private mapped IP's, but no the corresponding public IP's. I wouldnt recommend trying to make any changes via the CCA in the NAT module.  
  To review, this configuration assumes the following;
  1. The UC540 has a public IP address of 4.2.2.2
  2. A Microsoft Small Business Server 2008 using an internal IP of 192.168.10.10 has an external IP of 4.2.2.3.
  3. A third line of business application server with www, https and RDP that has an internal IP of 192.168.10.11 and an external IP of 4.2.2.4
  First, backup your current configuration via the CCA,
  Next, telent into the UC540, login, edit, cut and paste the following to 1:1 NAT the 2 additional public IP addresses;
  ip nat inside source static tcp 192.168.10.10 25 4.2.2.3 25 extendable
  ip nat inside source static tcp 192.168.10.10 80 4.2.2.3 80 extendable
  ip nat inside source static tcp 192.168.10.10 443 4.2.2.3 443 extendable
  ip nat inside source static tcp 192.168.10.10 987 4.2.2.3 987 extendable
  ip nat inside source static tcp 192.168.10.10 1723 4.2.2.3 1723 extendable
  ip nat inside source static tcp 192.168.10.10 3389 4.2.2.3 3389 extendable
  ip nat inside source static tcp 192.168.10.11 80 4.2.2.4 80 extendable
  ip nat inside source static tcp 192.168.10.11 443 4.2.2.4 443 extendable
  ip nat inside source static tcp 192.168.10.11 3389 4.2.2.4 3389 extendable
  Next, you will need to amend your UC540's default ACL.
  First, copy what you have existing as I have done below (in bold), and paste them into a notepad.
  Then, im told the best practice is to delete the entire existing list first, finally adding the new rules back, along with the addition of rules for your SBS an LOB server (mine in bold) as follows;
  int fas 0/0
  no ip access-group 104 in
  no access-list 104
  access-list 104 remark auto generated by SDM firewall configuration##NO_ACES_24##
  access-list 104 remark SDM_ACL Category=1
  access-list 104 permit tcp any host 4.2.2.3 eq 25 log
  access-list 104 permit tcp any host 4.2.2.3 eq 80 log
  access-list 104 permit tcp any host 4.2.2.3 eq 443 log
  access-list 104 permit tcp any host 4.2.2.3 eq 987 log
  access-list 104 permit tcp any host 4.2.2.3 eq 1723 log
  access-list 104 permit tcp any host 4.2.2.3.35 eq 3389 log 
  access-list 104 permit tcp any host 4.2.2.4 eq 80 log
  access-list 104 permit tcp any host 4.2.2.4 eq 443 log
  access-list 104 permit tcp any host 4.2.2.4 eq 3389 log
  access-list 104 permit udp host 116.170.98.142 eq 5060 any
  access-list 104 permit udp host 116.170.98.143 any eq 5060
  access-list 104 deny   ip 10.1.10.0 0.0.0.3 any
  access-list 104 deny   ip 10.1.1.0 0.0.0.255 any
  access-list 104 deny   ip 192.168.10.0 0.0.0.255 any
  access-list 104 permit udp host 116.170.98.142 eq domain any
  access-list 104 permit udp host 116.170.98.143 eq domain any
  access-list 104 permit icmp any host 4.2.2.2 echo-reply
  access-list 104 permit icmp any host 4.2.2.2 time-exceeded
  access-list 104 permit icmp any host 4.2.2.2 unreachable
  access-list 104 permit udp host 192.168.10.1 eq 5060 any
  access-list 104 permit udp host 192.168.10.1 any eq 5060
  access-list 104 permit udp any any range 16384 32767
  access-list 104 deny   ip 10.0.0.0 0.255.255.255 any
  access-list 104 deny   ip 172.16.0.0 0.15.255.255 any
  access-list 104 deny   ip 192.168.0.0 0.0.255.255 any
  access-list 104 deny   ip 127.0.0.0 0.255.255.255 any
  access-list 104 deny   ip host 255.255.255.255 any
  access-list 104 deny   ip host 0.0.0.0 any
  access-list 104 deny   ip any any log
  int fas 0/0
  ip access-group 104 in
  Lastly, save to memory
  wr mem
  One final note - if you need to use the Microsoft Windows VPN client from a workstation behind the UC540 to connect to a VPN server outside your network, and you were getting Error 721 and/or Error 800...you will need to use the following commands to add to ACL 104;
  (config)#ip access-list extended 104
  (config-ext-nacl)#7 permit gre any any
  Im hoping there may be a better way to allowing VPN clients on the LAN with a much more specific and limited rule. I will update this post with that info when and if I discover one.
  Thanks to Vijay in Cisco Tac for the guidence.

• Best practice for oracle 10.2 RAC with ASM

  Did any one tried/installed Oracle 10.2 RAC with ASM and CRS ?
  What is the best practice?
  1. separate home for CRS, ASM and Oracle Database?
  2. separate home for CRS and same home for ASM and Oracle Darabase?
  we set up the test environment with separate CRS, ASM and Oracle database homes, but we have tons of issues with the listener, spfile and tnsnames.ora files. So, seeking advise from the gurus who implimeted/tested the same ?

  I am getting ready to install the 10gR2 database software (10gR2 Clusterware was just installed ) and I want to have a home for ASM and another for database as you suggest. I have been told that 10gR2 was to have a smaller set of binaries that can be used for the ASM home ... but I am not sure how I go about installing it. The first look at the installer does not seem to make it obvious...Is it a custom build option?