Juniper Junos: change timeout settings for ssh/telnet/web console

To change application timeout:
cli/configure
ssh: set applications application junos-ssh inactivity-timeout 1440
telnet: set applications application junos-telnet inactivity-timeout 1440
web: set system services web-management session idle-timeout 1440

Note: auto complete does not work after application, so you will have to type it all in.

To view timeout settings, exit to cli
start shell user root
vty fwdd
show usp app-def tcp

And you’re done.

Juniper SRX: configure PoE on all ports

Quick and dirty way is to go to cli/configure and copy/paste the following:
set poe interface all priority low maximum-power 15.4 telemetries
set poe management static guard-band 15
This will turn on all ports at power rates indicated above.
To check your PoE ports try the following in cli:
show poe interface
Result will look like:
root@ALiSRX210HE-PoE> show poe interface
Interface Admin status Oper status Max power Priority Power consumption Class
ge-0/0/0 Enabled Searching 15.4W Low 0.0W 0
ge-0/0/1 Enabled Searching 15.4W Low 0.0W 0
fe-0/0/2 Enabled Powered-up 15.4W Low 4.5W 0
fe-0/0/3 Enabled Searching 15.4W Low 0.0W 0

You can see status and power variables update frequently.

Windows: Robocopy all files, share permissions and NTFS security attributes to new servers

Robocopy is the tool of choice for copying files between Windows machines. Not only does it compare files and copy what’s changed, it can copy all NTFS security permissions along with the files and folders as well. This is particularly important in high security environments where share permissions are just not enough, and administrators rely on security permissions to lock down access down to files or folders within a partition. The command below is what I used to copy 15TB of ACL based data to a new server:

ROBOCOPY Q:\ X:\ /S /J /ZB /MIR /DCOPY:DAT /COPY:DATSOU /SECFIX /TIMFIX /MT:48 /R:3 /W:5 /XD: "SYSTEM VOLUME INFORMATION" RECYCLER $RECYCLE.BIN RECYCLED /LOG+:C:\ROBO181215.LOG

With the above command you copy everything you specify from source server/disk to destination with all security information, and every time the command is run it will double check the permissions and modifies as necessary. It will also exclude the folders specified after /xd switch.

It is important to note that when you copy files to a Windows 2012 server, you may not have explicit security permissions to source folders and when you click on destination folder you will be asked to click continue to get access. This will alter destination folders’ security permissions, and will force robocopy to fix them during next sync. This will prolong the sync operation significantly. Therefore, if you need to run this command a few times till it is time to cut over to new server, do not view what is in those folders and force permission change until you are done. Simply run the command as many times as needed till it is time to migrate. Once you are on the new server then feel free to alter those permissions and fix what needs to be fixed.

To migrate shares to new server, simply export registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Shares and import onto the new server and reboot. All your shares will be active on the new server immediately.

Misc: Comcast xfinity Technicolor TC8305C modem – bridge mode and disable firewall completely

Well… first off you can’t do either so stop right here.

To have your modem put in bridge mode you will have to call Comcast customer support. They will do it remotely for ya no questions asked. Once it is provisioned then you can logon to the modem and enable bridge mode.

Your modem can also assign an IP to your router in router mode. To put modem in semi-bridge mode go to Gateway, Firewall and select Custom Seruity. Click on the link and select “Disable entire firewall”. Now, go to Gateway and click on VIEW CONNECTED DEVICES. Note the IP address of your router and then go to Advanced, DMZ, enable DMZ and put your router’s IP there.