Networking with Executive Suites: Problem with HP Procurve Switch along with other network suggestions/comments.

After becoming more familiar with the network at the Executive Office Building in Fort Lauderdale I began to notice some minor issues with the HP ProCurve switch at the top of the stack.  It contains some error logs from various ports.  I’m not sure why those ports signaled errors with the switch because there is no difference in how the various suites are being used.  Have you noticed that some settings revert back after they’ve been changed?  After testing other ports I noticed that different changes I made to specific ports would never completely stick.  They would appear as changed, but then a few seconds later automatically revert back.  Do you have any other logs of issues pertaining to network troubles that I could crosscheck with the logs of both the Watchguard and switches?  At this point I would suggest switching out the Procurve with another Procurve.  This is because those switches are of good quality.  As you know, every once in a while you get bad equipment from every manufacture and I suspect it was just one of those bad luck things.  I find it unlikely that an issue like this would just crop up suddenly so you probably began noticing this issue almost right away.  Typically I use the Dell PowerConnect Managed Switches.

 

Most of these things you probably already do or have thought about.  It’s tough sometimes due to budget and time constraints to implement these things but here are some ideas that came to mind while I was working.

 

Network comments/questions:

1.       I like how you have the VLAN’s setup with the Watchguard assigning different scopes/VLAN. That’s a very good way to setup that building both for management and security reasons. With the Watchguard, and for liability reasons, do you have any sort policy as to how clients use their internet? Would there be need or want of a per public IP content filter or DNS based phishing filter by chance?

2.       Do you have a backup Watchguard configuration file along with another Watchguard at that location in case of failure for rapid recovery? How about your switches, both managed and unmanaged? Most networks we analyze have only backup cat5 and power cords…

3.       I noticed you have backups that run periodically, but do you get any sort of notification when errors occur?  Also, do you have backup transfers offsite as well with notifications containing transfer logs?

4.       Upgrading the Advanced Server 2000 to the latest operating system for; (1) More stability, (2) Increased security, (3) Microsoft support if necessary, (4) If using a domain with XP pro or vista computers the domain would be easier to manage.

5.       I was wondering if it’s necessary to have the conference rooms on the Executive Office Building VLAN? What special resources do they share with the server or network besides obtaining an address from the server? If they are just getting an address for internet access might we be able to do that through another router or quite possibly the Watchguard?

6.       WAN failover incase internet from one ISP is down for internet access and maybe as far as VPN support but not always necessary.  Even quite possibly DSL backup.

7.       Maybe it could be beneficial in the future if employees used Terminal services from wherever they are for ease of management, all info to be backed up would be right there, and if they could then reconnect from anywhere to resume working.  We could even go as far as to virtualize all of their Terminal Server applications so that anyone can use any application, or version of those applications without interfering with others.  We could then based on groups determine who sees what applications on their desktops and has access to run them.

8.       Consider future upgrading of switches/routers to Gigabit but not urgent in your situation where the limiting factor for most data transfer is through the internet which shouldn’t come close to those speeds.

 

Sincerely,

David Cochrane

D and K Enterprise LLC

Bridging the gap between humans and technology!

http://www.dandkenterprise.com