Categories
hosting Server

CredSSP error message fix for Windows RDP

The folks over at On-Ramp Indiana found a fix for this one.
The Microsoft Tech Article can be found here…

Symptoms


Consider the following scenario:

In this scenario, you receive the following error message:

If you are getting a CredSSP error message when trying to RDP to a server add this registry key to your local computer.  It will disable CredSSP

  • [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\CredSSP\Parameters] “AllowEncryptionOracle”=dword:00000002
Categories
epmp

Cambium PTP550 Data Rates

Some info on the cambium PTP 550 Data Rates

“Downlink Max Rate” specifies the maximum downlink MCS value that the Rate Adapt algorithm will choose.
MCS values range for data from MCS 9 to MCS 1 for one or two Spatial Streams (Single Stream and Dual Stream respectively). A higher MCS value (e.g. MCS 9) carries more data, but requires more link budget / stronger radio signal. Thus, MCS 9 provides the most data, but the least robust link (i.e. greatest chance data can be lost) and MCS 1 provides the least data, but the most robust link (i.e. least change data can be lost).
DS MCS provide two streams of independent data over the two transmit chains while SS MCS provide one stream of data over both transmit chains.
Setting “Uplink Max Rate” to a DS MCS 9 – DS MCS 1 value will allow this MCS and all lower dual stream MCS values to be used along with all similar or lower single stream MCS values. For example, choosing DS MCS 8 means that DS MCS 8 – DS MCS 1 and SS MCS 8 – SS MCS 1 will be used in the Rate Adapt algorithm. Setting “Uplink Max Rate” to an SS MCS 7 – SS MCS 1 value will allow this and all lower single stream MCS values.

Rates Highest to lowest
DS MCS9 – 256-QAM 5/6
DS MCS8 – 256-QAM 3/4
DS MCS7 – 64-QAM 5/6
DS MCS6 – 64-QAM 3/4
DS MCS5 – 64-QAM 2/3
DS MCS4 – 16-QAM 3/4
DS MCS3 – 16-QAM 3/4
DS MCS2 – QPSK 3/4
DS MCS1 – QPSK 1/2
SS MCS9 – 256-QAM 5/6
SS MCS8 – 256-QAM 3/4
SS MCS7 – 64-QAM 5/6
SS MCS6 – 64-QAM 3/4
SS MCS5 – 64 QAM 2/3
SS MCS4 – 16-QAM-3/4
SS MCS3 – 16-QAM 1/2
SS MCS2- QPSk3/4
SS MCS1 – QPSK 1/2

MCS\Rx Sensitivity  20 MHz       40 MHz       80 MHz
Lowest MCS          -90 dBm     -87 dBm       -83 dBm
Highest MCS .       -66 dBm     -62 dBm        -59 dBm

 

Categories
Uncategorized

Tower Work

Categories
Fiber

Justin Attends continuing education on fiber

Justin attended a continuing education webinar on high-density fiber optic cables put on by Corning.

Categories
Fiber

Fiber terminating and OTDR testing

Terminating fiber and testing with OTDR.
Categories
Tower Wireless WISP

Inside a water tower WISP install

One of our climbers took this picture while climbing to do an install for a WISP client inside a “golf ball” water tower.

Back Camera
Categories
Fiber Networking

Fluke Networks explains fiber polarity

https://www.flukenetworks.com/blog/cabling-chronicles/b-c-s-fiber-polarity

Polarity defines direction of flow, such as the direction of a magnetic field or an electrical current. In fiber optics, it defines the direction that light signals travels through an optical fiber.

To properly send data via light signals, a fiber optic link’s transmit signal (Tx) at one end of the cable must match the corresponding receiver (Rx) at the other end.

 

Categories
Mikrotik

Newish Mikrotik Feature: Protected Bootloader

https://wiki.mikrotik.com/wiki/Manual:RouterBOARD_settings#Protected_bootloader

This is a new feature which allows the protection of RouterOS configuration and files from a physical attacker by disabling etherboot. It is called “Protected RouterBOOT”. This feature can be enabled and disabled only from within RouterOS after login, i.e., there is no RouterBOOT setting to enable/disable this feature. These extra options appear only under certain conditions. When this setting is enabled – both the reset button and the reset pin-hole is disabled. Console access is also disabled. The only ability to change boot mode or RouterBOOT settings is through RouterOS. If you do not know the RouterOS password – only a complete format is possible.

 

Categories
Site News

MTIN announces new plans effective October 31 2018

Due to several opportunities, MTIN is moving toward collapsed support plan style.  We will only be offering a contract support model and best effort service.


Contract Support

Customers purchase a minimum 5 hour block for $445. Rates are billed as follows.

Normal Business Hours (8am-5pm EST time)                           $89 per hour
Late night & Weekend support                                                 $125 per hour

Contract customers will use a minimum of 1 hour a month for remote monitoring services, firmware, and other notifications, as well as any general maintenance tasks in order to keep documentation and other aspects of the network up to date for our technicians.   Remote Backups, security audits, and other services which MTIN hosts for the customer can be included in the one-hour minimum.

The goal with contract customers is to build a long-term relationship in order to help their networks grow and thrive.  By being engaged with the customer on a regular basis we are able to provide better service and have a better handle on customer needs. As networks become more and more complicated having a consultant who has is more a partner than a hired gun is becoming valuable to an operator.

Tier II emergency response times for Tier II customers.
Normal working hours (3 hour maximum)
Late night and weekend (5 hour maximum)


Best Effort Plan

Customers pay as they go for best effort support.  Support is available on a best effort service and first come first serve.

Normal Business Hours (8am-5pm EST time)                           $119 per hour
Late night & Weekend support                                                 $145 per hour

Policy details

1. Late night and Weekend is defined as. 9PM-9AM EST MONDAY-FRIDAY & 7PM EST FRIDAY -9AM Monday. Contract Customers can schedule maintenance windows and such at a discounted rate ahead of time.

2. All customers who don’t have pre-purchased time will be served on a best effort service. Priority will be given to contract customers, and then “walk-in” customers.

3. All times stated are maximum times for response. Depending on workload, times are typically much less.

4. Contact MTIN for details on this new plan.

Categories
Cambium Networking WISP

Cambium and Management vlans

Just a quick diagram on how to separate Management traffic on an ePMP network. The aps and CPE are in bridge mode in this setup. The Cambium CPE are in bridge mode with CNPilot routers doing PPPoE, which the ISP has control over as a managed router.

Our netonix has a tagged vlan for the management interface and an untagged vlan for the customer (PPPoE traffic).

The mikrotik router is trunked to the netonix on port 12 to complete this setup.