Who’s who in Computing

Download Report

Transcript Who’s who in Computing 

Physics Network Integration
Chris Hunter
Physics network team
• Chris Hunter : Network Manager
• David Newton : Network Support Technician
• Room DWB 663
• Phone 73501
• Email [email protected]
Network Sockets & Concentration
Points
• 16 network concentration
points (NCP’s) in the Denys
Wilkinson Building alone.
• Available Switch ports 2290
Approx. 59.2% active
• Level 2 NCP hub of the Physics
network with 1Gb fibre
connections going to each of
the Physics buildings.
Physics Firewall
Firewall Juniper Netscreen ISG 1000
Physics Wireless Network
• Currently 19 x 802.11g 56Mbps wireless
access points in the DWB plus a couple of
802.11n 300Mbps
– Clients connected to the Physics_M wireless
network are part of the 163.1.19.x subnet,
currently WEP encryption only.
– 802.1x authentication should be coming soon
using Physics network credentials.
– Register for wireless network access with
Physics Network credentials at
http://www.physics.ox.ac.uk/it/account.
OUCS wireless network
• OWL-VISITOR and OWL-VPN also available, via
the OWL ssid.
• Eduroam now also available, connect using
your Remote Access Account, different from
your SSO or Nexus account
http://www.oucs.ox.ac.uk/network/wireless/services/eduroam/
• Details about both OWL & Eduroam at
http://www.oucs.ox.ac.uk/network/wireless
Access to Physics Services from the untrusted subnet or remotely
• Virtual Private Network (VPN)
– vpn.physics.ox.ac.uk works with Microsoft, Linux
and OSX clients, uses Physics authentication
domain help at
http://www.physics.ox.ac.uk/it/network/vpn/
– Oxford University Computing Service (OUCS) have
VPN service, does need specific client installed
details at http://www.oucs.ox.ac.uk/network/vpn/
Network Security
• Connecting unmanaged systems to the Physics
Network
– MAC address registration is needed before gaining any
network connection for laptops please register at
http://www.physics.ox.ac.uk/it/account/
– 172.17.x.x un-trusted subnet
– Is your laptop up to date?
• Anti Virus / spyware
• Fully patched OS
• Connecting from outside of Physics
– SMB blocked, no connection to windows files
– MAPI access to Exchange Server blocked
– SMTP blocked
Network Security
• Exchange Server protocols not blocked
– IMAP
– Authenticated SMTP is available using
mail.physics.ox.ac.uk, PHYSICS authentication domain
credentials are needed to use the service
• Other protocols
– web access
– RPC over HTTPS
Network Security
• Sophos Anti Virus Software
– Updates, out of date AV is no use
– Download Sophos for personal laptops running:• Sophos 9.5 for XP, Vista and Windows7 at
http://www.physics.ox.ac.uk/sophos/
• Linux at http://www.oucs.ox.ac.uk/viruses/linux/
• Sophos v7.3.4 for MAC OSX 10.4/10.5/10.6 at
http://www.physics.ox.ac.uk/sophos/
• Hoping to setup Network Access Control
(NAC) onto our network
Network Backbone Connection
• Physics connection presently 1Gbps
• Campus connection to Super Janet currently
at 2 x 10Gbps.
Access to Physics Services from the untrusted subnet or remotely
•
Exchange email web access
• https://mail.physics.ox.ac.uk
• HTTPS-RPC proxy service is available with Outlook 2010
http://www.physics.ox.ac.uk/it/email/exchange/2010/Outlook.htm
• Exchange 2010 access various email client with Imap access
• https://www.physics.ox.ac.uk/IT/Email/Exchange/2010/Exchange2010.htm
• Webdav via browser or windows network places
• https://winfe.physics.ox.ac.uk/home/<username> connects to your windows ‘H’
drive.
• (Windows Only) Open `My Network Places` and click on `add a network place
• Sftp + SSH
• Winscp3 available on self service (windows desktop systems)
• http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html
• http://www.physics.ox.ac.uk/it/mswindows/remote.htm
Access to Physics Services from the untrusted subnet or remotely
• Printing from a Windows Laptop not in the
Physics domain.
– http://www.physics.ox.ac.uk/it/mswindows/windowsprinti
ng.htm
• MAC Printing
– http://www.physics.ox.ac.uk/it/mac/macprinting.htm
Access to Physics Services from the untrusted subnet or remotely
• Windows terminal server Termservqc
– Remote Desktop Client (MS & MAC OSX), possible
to connect to local disks, printers and serial ports
(not possible to connect serial ports in OSX).
– Rdesktop on Linux systems,
• rdesktop <termservqc>, more for people without
Windows desktop
– Windows XP, Vista and Windows 7 will allow
remote access via terminal services
• http://www.physics.ox.ac.uk/it/mswindows/terminalse
rvers.htm
Physics self service
• Under All Programs\Physics Self Service
• FAQ’s
http://www.physics.ox.ac.uk/it/mswindows/faq.htm
Questions?