Copp and management traffic

Similar Messages

• Using vrf for separating management and user traffic

  hello
  We use vrf in our network for separating user / production traffic vs management traffic. but the way we have used it has turned out to be messy and we are in a situation where we no longer have the distinction between the two. I personally feel that vrf is a great way to separate management vs user traffic.
  Here is why I am in a dilema
  If  VLANS for users computers and server VLANS are in USERS vrf
  and management servers ( including domain controllers, AD) are in management vrf  , there is no way this will work . and this was the reason we thought it was going to work. now I am wondering if using vrf is even necessary in an enterprise environment when management traffic can be separated on server end and not so much at the clients end.
  anyone has any ideas how to go about this..

  Hello, very interesting scenario! I was in a similar position to you. I agree VRF's are great for management purposes, as it provides you with total segregation of routing instances. In fact the newer cisco devices come with vrf's configured for management out the box, with a separate interface for management only (for the network device itself).
  However, when it comes to enterprise networks and you have domain controllers, file servers, messaging, maybe ACS or ISE, proxies etc... and other services that should be available for your users, is there any point in using vrf's to separate users from management servers. Lets take for example:
  A PC on the domain, and I want to log in using my AD credentials. You need to be able to contact the domain controller(s) in order to login right? Since vrf's are contained they will have no routes to get to different networks in other vrf's. Except when configured to do so.
  Unless you do something called vrf route leaking or advertising. It's explained well here:
  http://packetlife.net/blog/2010/mar/29/inter-vrf-routing-vrf-lite/
  http://blog.ipexpert.com/2010/12/01/vrf-route-leaking/
  Anyway, nevertheless - you are still going to be providing reachability via routing, so this defeats the purpose kindof... It could add unnecessary complexity too.
  Me personally, I just made sure that they were separated by VLAN's and had a dedicated vrf for management, i.e. ssh, snmp etc... to the network devices. I weighed up and thought its not worth doing something that will not really be of any benefit.
  I can understand the need for ISPs and large service providers to use this but not business/enterprise.
  I hope this helps.

• Change cipher strength for management traffic

  Hi All,
  I’m performing a new deployment for my customer on a C370 Ironport and my customer has an internal team performing a band test on the Ironport box. The results show that the management traffic (HTTPS) is only using medium strength traffic (56bits – 112bits) in which does not meet the compliance of the organization. From the knowledge base, I checked that our management traffic is using either RC4-SHA or RC4-MD5. Any way to change this to AES or 3DES?
  Besides that, in the band test, customer also notices that the box supports anonymous SSL ciphers. Any way to disable this?
  Thanks.

  Hi there,
  check out these articles:
  Article #1399: How can I alter what ciphers are used with the Graphical User Interface (GUI)? Can I disable SSL v2 for the GUI? Link: http://tools.cisco.com/squish/80676
  Article #1367: How do I prevent the IronPort appliance from negotiating null or anonymous ciphers? Link: http://tools.cisco.com/squish/3637E
  So to exclude low and anonymous ciphers, sompthing like this would apply:
  HIGH:MEDIUM:-SSLv2:-aNULL:@STRENGTH
  Hope that helps,
  Andreas

• Management traffic load over the WAN

  Management process(include monitoring and security) with the central WCS system will cause Management traffic over the WAN links.
  Can you tell me more about the traffic load over the WAN links if we will use it as only as Wifi detection and prevention system(inclue location and not for wireless services..for now).
  We will use 150 air-AP1000(lwapp)on AIR-MONITOR mode over the WAN and 4400 controllers one in each remote sites(10 sites).

  I think the following documents might provide you with some good information.
  http://www.cisco.com/en/US/products/ps6305/products_configuration_guide_chapter09186a008059c98b.html
  http://www.cisco.com/en/US/products/ps6305/products_configuration_guide_chapter09186a008059ca16.html

• Transparent vlan and management of remote switch

  Hi,
  I'm a bit confused regarding the native Vlan of 1262 bridge ...
  My design is LAN---RAP ---- MAP---remote-SWITCH with two Vlan : one for the data and one for the management.
  I keep the vlan 1 for management at this point, but I'm still unable to access the remote switch.
  On LAN side, the switch port is on trunk mode (native vlan 1 and vlan 2 allowed)
  On RAP the Gigabit Ethernet is on normal mode
  On MAP the Gigabit Ethernet is on normal mode
  On remote-SWitch, the switch port is on trunk mode (native vlan 1 and vlan 2 allowed)
  Transparent vlan is disabled on WLC and Ethernet Bridging is checked for both AP.
  It seems that it's not possible to bridge the Vlan1 as it used for the backhaul so does it means
  that for management purpose I must use a specific Vlan-id ? And if my understanding is correct, to define this vlan-id
  as native on MAP with the Ethernet Port set as Trunk and on others switchs ( LAN side and remote-Switch).
  thks for your reply

  If you have Ethernet bridging enabled and have defined the vlan for the bridging, then the rap has to be connected to a trunk port and the traffic from the device that is connected to the MAP will egress out of the RAP's Ethernet port onto the trunk port. If you don't define and vlan for bridging then the traffic will be placed on the vlan the RAP is assigned to.
  https://supportforums.cisco.com/servlet/JiveServlet/downloadBody/21766-102-1-53166/Understanding%20mesh%20ethernet%20bridging.pptx
  https://supportforums.cisco.com/docs/DOC-21766
  Sent from Cisco Technical Support iPhone App

• About the Native Vlan and Management Vlan.

  I wanted to know that Management vlan and Native vlan can be different vlan id or  both should be same vlan id. Why should not be native vlan 1.

  The use of a native VLAN is generally frowned upon now as there are some well known security exploits that leverage this untagged VLAN. Cisco often recommends setting the Native VLAN to an unused VLAN in your infrastructure in order to render it useless for attacks.
  It is also recommended that you create a separate VLAN for your Management traffic and that this VLAN be tagged (therefore not a Native VLAN).
  Native Vlan is the vlan which will be sent untagged even in Trunk links. Consider a Trunk link configured between two switches SWA and SWB, if a system in vlan1 of SWA is sending a frame via SWB, then this frame will be received as untagged by SWB, then switch B decides that the untagged frame is from native vlan 1 and handles accordingly. By default native vlan is 1, this can also be changed as per requirement.
  Example: In the below figure if a IP phone and system are connected toa switch port as below, the the Phones will  send its frames tagged with vlan 10 where as the frames sent by system will be untagged. So here the the corresponding switch port should be configured as native vlan 20. So that it can recognise and handle the frames from system and IP phone properly.
  a
  Management vlan is different, it means that this vlan will be used for management purposes like Logging into the switch for management, Monitoring the switch,collecting Syslog ans SNMP traps, etc will be done by management vlan IP. This also by default vlan 1 in cisco. So as Antony said the it is always a Best practice and security measure to not use the default vlan and use custom vlans.
  Hope this helps !

• VLAN for Management Traffic

  Hello Everyone,
  I'm still learning cisco and networks in general but I need to separate management traffic from the regular network.  The switch is a cisco catalyst 5406-E.  My question is do I need to create a new subnet for the VLAN and how would I do that? The commands I have to create a VLAN and add the switch ports are
  Switch(config)# vlan 15
  switch(config-vlan)# name Management
  switch(config)# interface GigabitEthernet2/6
  switch(config-if)# switchport access vlan 15
  Now this creates vlan 15 and adds the GE 2/6 interface to vlan 15.  How do I add it to a new subnet?  Am I going in the right direction?

  In general, if you want to use separated VLAN for management, you can create VLAN + SVI (routed interface of the VLAN) with IP address + some access list on SVI and VTY (“SSH/telnet lines”) for better security.
  Example:
  ==== C4500 – L3 SWITCH CONFIG ====
  //create VLAN 15
  vlan 15
  name MGMT
  //create access list with ip addresses, from which management of all switches with SVI 15 will be accessible
  //Note: this access list (ACL) does not control access to management of L3 switch/router where the ACL is applied on SVI, only to all other switches in VLAN 15 that have default gateway set to ip address 10.0.15.1 (see next step)
  ip access-list extended MGMT_SWITCH
  remark ====ICMP====
  permit icmp any 10.0.15.0 0.0.0.255
  remark ====ADMIN====
  permit ip 10.0.1.0 0.0.0.255 10.0.15.0 0.0.0.255
  remark ====MONIORING-SERVERS====
  permit ip 10.0.100.0 0.0.0.255 10.0.15.0 0.0.0.255
  remark ====NTB-SERVICE====
  permit ip 10.0.200.0 0.0.0.255 10.0.15.0 0.0.0.255
  //create SVI/interface of the VLAN 15, add IP address and assign access list
  //Note: DO NOT assign empty access list to interface, it can make your router inaccessible!
  interface Vlan15
  description MGMT
  ip address 10.0.15.1 255.255.255.0
  ip access-group MGMT_SWITCH out
  //create ACL for VTY line of L3 switch/router; this ACL controls access only to management of L3 switch, access to all other switches with SVI 15 is controlled by previous ACL
  ip access-list standard VTY
  remark ====ADMIN====
  permit 10.0.1.0 0.0.0.255
  remark ====MONIORING-SERVERS====
  permit 10.0.100.0 0.0.0.255
  remark ====NTB-SERVICE====
  permit 10.0.200.0 0.0.0.255
  //assign ACL to vty lines
  line vty 0 4
  access-class VTY in
  ==== OTHER L2-ONLY SWITCHES CONFIG ====
  //create VLAN 15
  vlan 15
  name MGMT
  //create SVI 15
  interface Vlan15
  description MGMT
  ip address 10.0.15.50 255.255.255.0
  //set default gateway/default route to SVI of c4500
  ip default-gateway 10.0.15.1
  //some higher-level switches require use of following CLI parameters instead:
  ip routing
  ip route 0.0.0.0 0.0.0.0 10.0.15.1
  This is just one of many ways to do the management separation.

• Who holds Verizon employees and management accountable and where can I file a complaint.

  I feel that writing this letter is a waste of time, but I feel the way customer service reps (not all) as well as their managers (again not all) need to held accountable for lies and disrespectful business practices they place on loyal customers.  This is a long and confusing issue, but in as short as possible, I have been a loyal Verizon Wireless customer for several years. This past September 2014, I along with about 200 other loyal customers waited for several hours in anticipation of the IPhone 6 being released outside of a big box Verizon Store located at 7790 Montgomery Rd, Cincinnati, OH 45236, phone number (513) 984-9939. Because of my early arrival, I was number two in line and number two to enter the store once opened.  At approximately 7:30 a.m., Verizon Store employees and an unknown woman claiming to be a manager came from the store with flyers in hand and explained the purchase process.  She advised customers were able to buy a maximum of three phones, but could only buy one phone at retail price without contract.  I informed the manager that I was not eligible for an upgrade at the time, as my wife and I still had about a year of service left on my current contract.  At that time I was told “too bad, there are a lot of customers here for the same thing, and if you want the iPhones you will have to add two lines of service.”  I had about $2000.00 in my hand willing to pay full price for phones and have them swapped out for my current devices and was told “too bad.”  Well after waiting in line for the amount of time I had, I pretty much had no other choice, entered the store, and paid for two new lines of service in order to get two IPhone 6 plus devices with 128 gb of storage. 
  Immediate upon returning home, I contacted Verizon customer service (phone call one 9/19/14) and requested to terminate both lines, and move the IPhone 6 plus phones to my original lines.  Upon explaining the situation to the customer service rep, he was confused as to why I was told I had to open two new lines, but complied.  Later in the night, I had realized service was still not activated on the lines after switching the IPhone 6 plus to my original numbers and call customer service again (call two 9/19/14).  After explaining the whole situation over again, I was again informed that the store was wrong and should not have made me add two new lines.  This customer service rep informed me of the cancellation fees ($350.00 per line x 2), which I told her I was aware, and had planned to pay $950.00 per phone originally so had no problem paying the termination fee.  The customer service rep again told me that all had been completed and the lines would be turned off.
  On Saturday September 20, 2014, I signed on to my Verizon wireless.com account and saw that I still had two lines (previously told were shut off) still active on my account, with no phones associated with the numbers.  Again, upon contacting customer service (call 3 9/20/2014) I had to explain the entire situation all over.  At that time I was advised by the customer service rep, that because I was not returning the phones and just wished to pay the termination fees, that I would need to wait until after 14 days of service to call in and cancel the lines, and also have to request a refund on the activation fees (should be waived if canceled within 72 hours of activation) and any service charges associated with having two lines with no physical phones actually being attached to them.  At this point I thanked the customer service rep and was informed that all notations to the account were visible in the account to anyone I spoke with.
  Friday October 3, 2014, I again contacted Verizon customer service (call 4 10/3/2014) to cancel these lines.  Upon explaining the situation again to the customer service rep, I was informed the store I got the phones from (A VERIZON WIRELESS OWNED STORE) had lied to me in that I needed to add lines.  At this point, the female representative informed me the activation fees would be waived, along with any other fees, and the lines were cancelled. 
  Saturday October 4, 2014 I again logged onto my Verizon Wireless.com account and saw that the lines I was told had twice been removed, were still active and alive with no physical devices actually being associated with the lines of service.  AGAIN, calling customer service (call 5 10/4/2014) I spoke with a gentleman and expressed my frustrations as to being misinformed several times thus far.  At this point, the customer service rep, after keeping me on hold for about 45 minutes, returned to the phone and advised my that the lines were set for cancelation, but not until my next billing cycle, and that I would need to call in again once all service, activation, and whatever else charges were put on my account to have them removed.  During the conversation, (without me asking for a single thing at any point during the conversation except just to have the lines turned off and refund the fees) The customer service rep informed me that he was sorry and his manager was sorry for inconvenience that VERIZON had caused me, as a small toke of VERIZON’s appreciation, VERIZON would waive any and all fees associated with the two lines I was forced to add, to include any and all early termination fees.  Again, I never once asked for anything, but was offered by VERIZON employees and a VERIZON manager.  I was also informed that when I did call back in, the next customer service rep would see all of these offers in my account notations and would comply.
  Tuesday October 7, 2014, I was able to view my bill and had observed the added charges associated with account activation, and lines of service.  At that point I again called Verizon customer service (Call 6, 10/7/2014) to have these charges removed.  Upon calling and AGAIN explaining the two weeks of hell VERIZON had caused me, I was again apologized to, and informed that the last customer service rep had notated everything as I had explained and was informed and exactly quoted by the representative from VERIZON “We are nothing without our integrity at VERIZON, and VERIZON told you we would waive all of these fees (as notated in my account) VERIZON will stand by our word.” At that point, I was told I would need to be placed on hold as the charges and fees were large (about $263.00 in service fees and $700.00 in early termination fees) it would take a while for the customer service rep to work with his manager to have these charges removed (and in the case of the ETFs, not post to the account at my next billing cycle).  After one hour of sitting on hold, I was again in contact with the customer service rep and told, he and his manager had put in for every single refund and credit, the VERIZON MANAGER had approved all, but one final approval was needed which may take a day or two.  AGAIN all of this is notated in the account as to offers and promises made by VERIZON wireless employees and managers, and again I had NEVER asked for a single penny refunded, but was offered.  I AGAIN was completely willing to pay for the phones and the ETFs without problem, but was again and again offered such refunds and credits by VERIZON employees.
  Wednesday October 9, 2014, because of the continual misinformation I have been given by VERIZON employees, I contacted VERIZON customer service again (call 7, 10/9/2014) to check on the status of the credits and refunds.  At that time, I was informed, that many of the credits had been approved, but both ETF fees were denied and would only be refunded if I returned the devices.  As frustrated and confused as I was, I calmly explained every single thing that was offered to me again by VERIZON and was confused as to why a MANAGER for VERIZON would offer such things and then they would be denied.  The female customer service rep informed me that she was unfamiliar with the situation, would message the male customer service rep and or manager I spoke with on October 7, 2014 and have them reach out to me to explain. I was also told I would hear from them within a “few hours.”  This call was placed at about 9:00 a.m., and by 6:00 p.m. I had still not heard anything back from VERIZON.  At that time I again called VERIZON customer service (call 8, 10/9/2014) and spoke with another customer service rep.  Again for the 8th time explained the entire VERIZON lying situation, and was told that he (VERIZON representative) saw was I had been offered several times (refunds and credits) in the account notations and “too bad, VERIZON does not offer refunds or waivers of ETFs.”  At this point in the conversation, without completely cursing out the representative, I asked to speak with his supervisor and was turned over to another supervisor to speak with.  Upon speaking with the supervisor, I was informed (for the first time) that although VERIZON WIRELESS employees / MANAGERs had offered me refunds of ETFs, WHICH WAS DOCUMENTED NUMEROUS TIMES BY VERIZON in my account details, VERIZON simply could not waive these fees.  I again informed the manager that I didn’t care about the fees and was willing to pay, but I was tired of being LIED TO.  At that point in the conversation, I was again apologized to over and over again and as a token of apology from VERIZON, he a VERIZON MANAGER offered me a $70.00 bill credit in order to help with the ETFs.  Again, I never once asked for anything, but was offered time and time again from VERIZON EMPLOYEES and MANAGERS.  I thanked him for his offer and the call ended.
  October 10, 2014 (AGAIN after repeatedly being lied to contacted VERIZON customer service to check on the status of my credits (call 9, 10/10/2014).  At that time, I spoke with a female representative and again explained the entire dilemma caused by VERIZON.  Again, I was apologized to countless times and was informed that a bill credit for $70.00 was pending as I was informed on the previous night by a VERIZON WIRELESS MANAGER, but she did not have access to see any further details.  After again apologizing countless times, the customer service representative seemed to be frustrated that I had been treated so negatively and informed me she was going to address this with her manager.  Upon her return to the line, and again without ever asking for one single thing, the VERIZON representative with her VERIZON MANAGER offered to meet “half way” with regards to the lowest ETF fees associated with my accounts and provide a $235.00 bill credit to help me and as a token of “sorry for VERIZON’s screw up and constant lies.”  I was also told I would be contacted by her manager within four hours at approximately or before 2:00 p.m.  5:00 p.m. on that same date, after not hearing anything back I again called VERIZON customer service (call 10, 10/10/2014) spoke with another customer service rep and told her the entire story over again.  I told the rep I wanted to speak with a manager right at that moment and was placed on the phone with a woman named Linda I believe. Linda informed me that the credit I was previously told I would be given earlier on that date was rejected and I would not be given it.  Again without completely going nuts, I calmly explained my complete disgust with VERIZON and the constant lies I was being told.  Again after countless apologies from another VERIZON MANAGER, she politely explained to me again the whole VERIZON cannot offer such refunds or credits associated with ETFs and was appalled that anyone in VERIZON would offer such things knowing they could not be given.  While working with her, she informed me the best solution to saving money was to cancel my original phone accounts and keep the two new lines that were pending deactivation, which would result in a $250.00 reduced ETF as opposed to a $700.00.  I agreed based on her advice without argument and was informed it may take a few hours for the new numbers to be placed back on the IPhones.  Two hours later, my phones still not turned on, I contacted VERIZON again.  I had also noted that every single bill credit previously applied to my account was back on the account.  At this point being as furious as I was, I again called VERIZON WIRELESS (call 11, 10/10/2014) demanded to speak with a MANAGER and was placed on hold.  After waiting for an hour on hold (no exaggeration) the customer service representative returned, apologized for everything including the wait time, and placed a male MANAGER on the phone. After explaining the entire three plus week VERIZON lying dilemma, which he was able to see in the account notes where every VERIZON employees acknowledged the misinformation of the previous employee I had spoke with, he again apologized and explained that I did not lose the bill credits, but because two lines had been canceled, the credits were instead applied to my unbilled ETFs, and they would appear on my next bill.  He also informed the SIM cards in my devices would still require more time to activate and that they should be turned on by 7:00 a.m. the next day.
  While doing research on the SIM issue, I found that VERIZON policy was immediate and SIMs would not require rebooting time to come out of I believe it is called “AG” or “aging” status.  Again contacting VERIZON customer service (call 12, 10/10/2014) spoke with a female customer service agent, who actually looking back was the only one not to represent falsehoods or lies, informed me that because the SIM cards were previously associated with cancelled lines, I would need to go to a VERIZON wireless store and get two new SIM cards.  At this point in the day it was about 10:00 p.m. and all VERIZON stores were closed for the day.  With no choice in the matter, I agreed, and asked just out of curiosity, on the status of the$70.00 bill credit, I was promised on October 9, 2014.  At that point the rep informed me that she was able to see that the VERIZON MANAGER had notated and put a credit request in while I was speaking with him, but then immediately cancelled his own request and closed the situation immediately following the completion of our call.  I believe at this point in the entire situation I was so fed up this did not surprise me whatsoever so who could I complain to.  The very nice customer service representative again apologized for the continued lies I was told and offered me (not a bill credit), but a data GB credit for 12 months (again without me asking for anything).  In her own words “I do not want to promise you the world and then lie to you and get your hopes up thinking it will happen as has happened to you numerous times.”    I truly appreciated her honesty and her acknowledgement of the complete disgusting actions by previous VERIZON employees and MANAGERS. 
  The next day October 11, 2014 I drove with both IPhones to the Verizon big box store, explained the entire story to the employee, was apologized to for a 20 minutes, the manager came out and apologized as well, GREAT CUSTOMER SERVICE!  The store is located at 2028 Florence Mall Rd, Space 1139, Florence, KY, (859) 746-3790 (Manager was great so was employee).  Never once offered me anything to make up for mistakes VERIZON had made in the past, which I really didn’t care because I never asked nor expected anything, but were truly grateful for my service (I am military and a Federal Law Enforcement Officer) and truly apologized for the actions of the Verizon Sore in Cincinnati Ohio (Again the manager stated the manager at the Cincinnati store lied), and especially apologized for all the lies and mis-information given to me over a three plus week time period.
              Finally, October 15, 2014, I log in to my Verizon wireless account to view my features and reactivate VERIZON’s high definition calling features and see that since September 19, 2014 (original date I purchased the IPhones) I have been charged for Verizon Cloud storage.  I HAVE NEVER AGREED TO THESE SERVICES, NEVER REQUESTED THESE SERVICES, NEVER EVEN NEW THEY WERE THERE!!!!  Again had to call VERIZON for the fraud and lies they are perpetrating on a daily basis, COMPLAIN to another customer service rep (call 13 10/15/2014) in order to get the fraudulent charges removed from my bill. 
  Conclusion
              Here I sit writing this long complaint that no one in VERIZON will ever be held accountable for, no one will answer for the lies, mis-information, and disrespect employees and VERIZON MANAGERS perpetrate even though each lie was documented by VERIZON in account notations, and no one will be accountable for the lies the retail stores tell in order to increase their QUOTA to activate a certain amount of new lines per month.  I am utterly disgusted with the treatment I have received, will be requesting these notations (if they have not been deleted from my account), have documented each conversation, and recorded many of the conversations, with an end result of pretty much nothing.  VERIZON does not care about their customers and could probably care less about my terrible experience.  While there are several other cellular options available, they are all crooks and liars just as the perfect documented examples of VERIZON employees and management lying in this case.
  Christopher

      Giogetz,
  Thank you for taking the time to share your experience. I am shocked by the many representatives that you had to speak to regarding your first request. This situation should have never gotten to be complicated and resulting in multiple calls from you. I apologize on behalf of those representatives for dropping the ball. I do agree that the representatives do need to be held accountable and I would like to submit feedback for those that you worked with. I have sent you a direct message. Please reply to the direct message so I can begin submitting feedback.
  AndreaS_VZW
  Follow us on Twitter @VZWSupport

• TS1702 I have an apple ID for the company but how do use my Itunes and a single id to download and manage multiple copies of the same purchased app for multiple Ipads that I need to support?

  Hi,
  I am trying to manage a number ipads in the business but I have problems managing the download of apps to multiple ipads using a single copy of Itunes and appleid.
  I obviously want purchase correctly the number of copies of the app I require and manage them going forward but the issue I have is that when I try to purchase an additional copy of the app it shows as already purchased and downloaded in my Itunes.
  What am i doing wrong or is this a feature?
  Any help appreciated.
  Chris

  Use VPP.  Select an MDM.  Read the google doc below.
  IT Resources -- ios & OS X -- This is a fantastic web page.  I like the education site over the business site.
  View documentation, video tutorials, and web pages to help IT professionals develop and deploy education solutions.
  http://www.apple.com/education/resources/information-technology.html
     business site is:
     http://www.apple.com/lae/ipad/business/resources/
  Excellent guide. See announcment post -- https://discussions.apple.com/thread/4256735?tstart=0
  https://docs.google.com/document/d/1SMBgyzONxcx6_FswgkW9XYLpA4oCt_2y1uw9ceMZ9F4/ edit?pli=1
  good tips for initial deployment:
  https://discussions.apple.com/message/18942350#18942350
  https://discussions.apple.com/thread/3804209?tstart=0

• How to prevent iTunes for Windows from "Updating iTunes Library"? (Library is on a NAS and managed by iTunes for Mac. Now getting update wars between Mac and Windows versions of the player.

  How to prevent iTunes for Windows from "Updating iTunes Library"?
  My library is on a NAS and managed by iTunes on a Mac. I can connect from wife's Windows laptop using iTunes for Windows but every time I do, it Updates iTunes Library. Next time I log in from my Mac it Updates iTunes Library in return. It appears I'm experiencing "Update Wars" between the Mac and Windows versions of iTunes. I would like to allow my wife to stream iTunes songs to her new laptop but I don't want any updates from this source... prefer to manage the library from my Mac and not allow Windows to do any thing other than listen to existing playlists.
  Thanks for any help/suggestions.

  Connect the PC to the library on the NAS. Wait while "updated".
  Under Edit > Preferences > Advanced make sure the media folder is correctly pointed at the media folder on the NAS. If not correct, close iTunes, wait a few moments, then open iTunes again.
  Close iTunes on the PC. Do not open iTunes on the Mac.
  Copy the library files, iTunes Library.itl, iTunes Library Extras.itdb, iTunes Library Genius.itdb, sentinel and the folder Album Artwork into an empty iTunes folder on the PC, for example C:\iTunes.
  Click the icon to start iTunes and immediately press and hold down SHIFT. Keep holding until prompted to choose or create a library. Click choose and browse to the copied .itl file, e.g. C:\iTunes\iTunes Library.itl
  The library should now work properly on the PC, however check the setting for the media folder. If needs be correct, close iTunes and reopen.
  Open iTunes on the Mac. It will update again, but that should be last time.
  tt2

• How do I Create and Manage one library for several computers

  As our family has grown over the years, we have 4 kids and 6 macs and duplicate images scattered thought all the separate computers in their own libraries. Is there a way to create and manage one central library that all computers access? That way we can reduce the headaches when we need an image and have to go to each computer and search it's library. Not to mention when we need to jump on a computer and it doesn't happen to be the one we have our library on and need to download our pictures and they end up forever lost on a different computer.

  You cannot share a library over the network, since a library needs to be on a locally mounted volume, but you can put a shared library onto a "sneaker drive" and plug it into each of your mad in turn, see Apple's support document:
  iPhoto: Sharing libraries among multiple users  http://support.apple.com/en-us/HT201517
  iPhoto does not support to merge libraries. But iPhoto Library Manager can.
  You can download it here:   http://www.fatcatsoftware.com/iplm/
  See : http://www.fatcatsoftware.com/iplm/Help/merging%20libraries.html
  Or, if you have Aperture, you can use it to merge libraries. Aperture 3.3: How to use Aperture to merge iPhoto libraries

• How do I find and manage my iPad on the new iTunes?  It's not there.

  How do I find and manage my iPad on the new iTunes?  It's not there.

  You can have the 'classic' view by clicking on View - Show sidebar. In the new view, your iPad will have a link on the upper right.

• I no longer have the PC that had my CD library and purchased music on iTunes. I am now on another PC and managed to download my purchased iTunes music etc. Is there a way on iTunes that I can get back my old CD music library without ripping again ?

  I no longer have the PC that had my CD library and purchased music on iTunes. I am now on another PC and managed to download my purchased iTunes music etc. Is there a way on iTunes that I can get back my old CD music library without ripping again ? Earlier back up is corrupted. Thank you in advance. No longer have my old iPod but getting new one.

  If you had the hard drive from the original machine, a backup of the same, an iPod with the media, or a subscription to iTunes Match then there would have been hope, but alas no.
  For the future see Backup your iTunes for Windows library with SyncToy.
  tt2

• Retention Policy and Managed folder based retention

  What is difference between "Retention Policy/ Policy Tags" and " Managed Content Settings"?
  In my setup , my managed folder folder become general folder after following steps
  1. Created Managed folder
  2. Created managed content settings for IPM.post and IPM.Appointment with retention action "Delete and Allow recovery".
  3. Created managed policy and applied to 1 mailbox, and this is working properly
  But After that,
  1. Created 3 retention tags(1 for inbox, 1 for sent, 1 personal).
  2. Created retention policy combining these 3 tags.
  3. Applied to SAME mailbox
  4. Ran 'ManagedFolderAssitant'
  **After this, Managed folder become general outlook folder.
  So, cant I have "Managed folder based retention for managed folders" and General retention for "Inbox,Sent"

  Exchange 2010 RTM introduced Retention Policies as the successor to the Message Records Management (MRM) technology introduced in Exchange 2007. MRM was the successor to Mailbox Manager Policies in Exchange 2003. Message Records Management is called MRM
  1.0 and Retention Policies is being called MRM 2.0 for short. MRM 1.0 as well as MRM 2.0 are both available in Exchange 2010. Only difference is we can manage Retention Policies from the EMC and EMS, but the Managed Folder Mailbox Policy is only Managed from
  the EMS through cmdlets in Exchange 2010 SP1.
  It completely depends on your requirements when to use MRM 1.0 and when to Use MRM 2.0.
   Certain new features are added in MRM 2.0 (Retention Policy) which allow us to manage our mailbox email items at very granular level. But if we are still happy with earlier version MRM 1.0 then we can continue using Managed folder mailbox
  Policy in Exchange 2010.
  [ Note: If we are Using the Retention Policy (MRM 2.0) then we can view the expiry of  each and every email items of the folders on which the retention Policy is tagged and this can be only view from OWA and Outlook 2010, But this feature
  is not available  for  Managed Folder Mailbox Policy (MRM 1.0) ]
  We cannot use the Base Folder only switch in MRM 2.0 because it is TAG  specific (DPT, RPT, and PPT) not Managed Folder specific.
  Managed folder Mailbox Policy is folder specific this would be the major difference.
  Refer to this link :
  Retention policies vs Managed folders

• Starting Admin and Managed Server on Same Machine

  Has anyone come across a method of running both their admin server and managed
  servers as a Service and on the same machine. As you can see, when the OS comes
  up both Services for the servers will be started. I can put in a dependency on
  the managed server saying that the admin server needs to be started but that doesn't
  guarantee that admin server will be ready for "prime time."
  I have seen somewhere in a support message something about a "depend" and "delay"
  flag for the beasvc.exe program but the one I'm using doesn't seem to support
  this.
  Here is my setup:
  Windows 2000 Pro
  Weblogic Server 6.1 SP1
  Any assistance is appreciated,
  Rich

  John Hufnagle wrote:
            > Is it possible to run cluster admin server and one of the managed servers on the
            > same machine...(just preserving machine resources for in-house testing).
            As Kumar said, it is possible to run the admin server and one (or more) managed servers
            on the same machine.
            >
            >
            > If the admin listens on 7001/7002 can I just set up the managed server to 7003/7004
            > or will I also run into problems with the multicast address?
            Since the admin server is not part of the cluster, it is perfectly fine to use a
            different set of ports for the managed servers as long as all servers in the same
            cluster use the same ports...
            Hope this helps,
            Robert