Πέμπτη 29 Δεκεμβρίου 2011

Name Resolution

Windows 2008/R2 and Windows 7 use three types of name resolution system:

1) Link Local Multicast Name Resolution (LLMNR)
2) NetBIOS
3) Domain Name System (DNS)

DNS is the preferred name resolution system in Windows networks and used whenever is available.

Πέμπτη 22 Δεκεμβρίου 2011

How to install and uninstall IPv6 on Windows XP

1. To install IPv6 on your Windows XP computer, follow these steps:
• Click Start, click All Programs, click Accessories, and then click Command Prompt.
• At the command prompt, type netsh int ipv6 install and press the Enter key on your keyboard.
• Close the Command Prompt window.

2. To uninstall IPv6 on your Windows XP computer, follow these steps:
• Click Start, click All Programs, click Accessories, and then click Command Prompt.
• At the command prompt, type: netsh int ipv6 uninstall and press the Enter key on your keyboard.
• Close the Command Prompt window and restart the computer.

IPv6 Address Types

IPv6 currently define three types of addresses:

•   Global Addresses:  IPv6 Global Addresses are the equivalent of public IP Addresses in IPv4.  An example of a global address is 2001:0db8:85a3:0000:0000:8a2e:0370:7334. Global Addresses are routable on the IPv6 Internet.

•   Link-Local Addresses: Link-local addresses are similar to APIPA address (169.254.0.0/16) in IPv4. An example of a global address is fe80::8ca1:3a64:a9b3:bc67%13. Link-Local Addresses  are not routable.

•   Unique Local Address:  Unique Local Address is the equivalent of the private addresses in IPv4 (10.0.0.0/8 – 172.16.0.0/12 – 192.168.0.0/16) An example of a Unique Local Address is fd00:dfba:9375:ffff::/12. Unique-Local Addresses are routable within a private network but not on the IPv6 Internet.

Δευτέρα 19 Δεκεμβρίου 2011

Exploring the Layers of the TCP/IP Networking Model


Configure a static IPv4 Address from a Command Prompt

To assign static IP address,default gateway and subnet mask, through command prompt on your Windows computer.

1) Start run: cmd
2) Type the command: netsh interface ip set address name="Local Area Connection" static 10.2.1.10 255.255.255.0 10.2.1.250

* Local Area Connection = LAN card interface name
* 10.2.1.10 = The static IP address we assigned to the interface
* 255.255.255.0 = The subnet mask
* 10.2.1.250 = The Default Gateway

Παρασκευή 9 Δεκεμβρίου 2011

Windows 7 Firewall Profiles

On windows 7 a firewall profile is a way of grouping settings, such as firewall rules and connection security rules, which are applied to the computer depending on where the computer is connected. On computers running this version of Windows, there are three profiles for Windows Firewall with Advanced Security:

Domain
Applied to a network adapter when it is connected to a network on which it can detect a domain controller of the domain to which the computer is joined.

Private
Applied to a network adapter when it is connected to a network that is identified by the user or administrator as a private network. A private network is one that is not connected directly to the Internet, but is behind some kind of security device, such as a network address translation (NAT) router or hardware firewall. For example, this could be a home network, or a business network that does not include a domain controller. The Private profile settings should be more restrictive than the Domain profile settings.

Public
Applied to a network adapter when it is connected to a public network such as those available in airports and coffee shops. When the profile is not set to Domain or Private, the default profile is Public. The Public profile settings should be the most restrictive because the computer is connected to a public network where the security cannot be controlled. For example, a program that accepts inbound connections from the Internet (like a file sharing program) may not work in the Public profile because the Windows Firewall default setting will block all inbound connections to programs that are not on the list of allowed programs.
 

Windows 7 choosing a network location..

The first time that you connect to a network, you must choose a network location. This automatically sets the appropriate firewall and security settings for the type of network that you connect to. If you connect to networks in different locations (for example, a network at your home, at a local coffee shop, or at work), choosing a network location can help ensure that your computer is always set to an appropriate security level.
There are four network locations:
  • Choose Home network for home networks or when you know and trust the people and devices on the network. Computers on a home network can belong to a homegroup. Network discovery is turned on for home networks, which allows you to see other computers and devices on the network and allows other network users to see your computer.
  • Choose Work network for small office or other workplace networks. Network discovery, which allows you to see other computers and devices on a network and allows other network users to see your computer, is on by default, but you can't create or join a homegroup.
  • Choose Public network for networks in public places (such as coffee shops or airports). This location is designed to keep your computer from being visible to other computers around you and to help protect your computer from any malicious software from the Internet. HomeGroup is not available on public networks, and network discovery is turned off. You should also choose this option if you're connected directly to the Internet without using a router, or if you have a mobile broadband connection.
  • The Domain network location is used for domain networks such as those at enterprise workplaces. This type of network location is controlled by your network administrator and can't be selected or changed.

Πέμπτη 8 Δεκεμβρίου 2011

Problem Steps Recorder

The Problem Steps Recorder in the Windows 7 operating system is a feature that enables users to record their interactions with an application and provide a detailed screen-by-screen view with accompanying information. Learn how the recording can be used to quickly identify problems and help reduce time spent with the help desk.



Τρίτη 6 Δεκεμβρίου 2011

Basic File Permissions


 Basic file permissions:
Permission Description
Full ControlPermission to read, write, change and delete the file.
ModifyPermission to read and write to and delete the file.
Read and ExecutePermission to view file contents and execute file.
WritePermission to write to the file.
ReadPermission to view the files contents.

Basic Folder Permissions

 Basic folder permissions
Permission Description
Full ControlPermission to read, write, change and delete files and sub-folders.
ModifyPermission to read and write to files in the folder, and to delete current folder.
List Folder ContentsPermission to obtain listing of files and folders and to execute files.
Read and ExecutePermission to list files and folders and to execute files.
WritePermission to create new files and folders within selected folder.
ReadPermission to list files and folders.

Παρασκευή 2 Δεκεμβρίου 2011

Memory Limits for Windows Release

This topic describes memory limits for supported Windows releases...

Link

Τετάρτη 26 Οκτωβρίου 2011

Import and Export Windows Firewall Configurations

Windows Firewall is very important part of all Microsoft Operating Systems. It provides extra protection layer frommalware, viruses and other unwanted threats. Firewalls also blocks prohibited programs from accessing the system and networks. Only per-defined and authorized applications are allowed to communicate between networks

Most organizations that use clients running Windows 7 apply firewall rules through Group Policy. In the event that you need to support a number of stand-alone clients running Windows 7, you can replicate complex firewall configurations using the WFAS Import Policy and Export Policy options. 
Importing and exporting policy also allows you to save the current firewall configuration state before you make changes to it. Exported policy files use the .wfw extension. Exported policies use a binary format, not Extensible Markup Language (XML) format like many other Windows 7 configuration files. You can also export and import firewall policies in the same .wfw format using the netsh advfirewall export or netsh advfirewall import commands.

Configure TCP/IP from the Command Prompt

Netsh.exe is a command line utility that allows you to, either locally or remotely, display or modify the network configuration of a computer that is currently running.


You can use the Netsh.exe tool to perform the following tasks:
  • Configure interfaces
  • Configure routing protocols
  • Configure filters
  • Configure routes
  • Configure remote access behavior for Windows-based remote access routers that are running the Routing and Remote Access Server (RRAS) Service
  • Display the configuration of a currently running router on any computer
  • Use the scripting feature to run a collection of commands in batch mode against a specified router.

The following command configures the interface named Local Area Connection with the static IP address 192.168.0.100, the subnet mask of 255.255.255.0, and a default gateway of 192.168.0.1:

""netsh interface ip set address name="Local Area Connection" static 192.168.0.100 255.255.255.0 192.168.0.1 1""

Παρασκευή 7 Οκτωβρίου 2011

IExpress Technology

IExpress is a technology designed to simplify creation of a setup program. Using the step-by-step IExpress Wizard, you can create self-extracting files that automatically run the setup program contained inside. The setup program can be an .inf file or an executable program. IExpress technology automatically removes the setup files after installation, saving the user time and frustration.

IEXPRESS.EXE is used to create a single self-extracting package from a set of files. Such packages can be used to install applications, executables, drivers, other system components

Πέμπτη 4 Αυγούστου 2011

Manage Internet Explorer 9 with New Group Policy Settings

When you roll out Internet Explorer 9 to client systems throughout your organization, there are some things you should keep in mind when it comes to managing those systems with Group Policy.

Link

Capture and Analyze Network Traffic with IE 9

With Internet Explorer 9, the F12 developer tools have added a new Network tab, which allows you to analyze network traffic. You can capture and analyze data about network traffic save the captured data, search for specific elements, and more.

Link

Τετάρτη 29 Ιουνίου 2011

Startup sequence for Windows 7

The normal start up sequence for Windows 7 is:

1. Power-on self test (POST) phase.
    As soon as you turn on a computer

2. Initial start up phase.
   After the POST, the settings that are stored in the nonvolatile memory, such as boot order,
   determine the devices that the computer can use to start an operating system.

3. Windows Boot Manager phase.
  • For computers that have a single operating system, Windows Boot Manager never displays a message It wait for a few moments to allow the user to press a key to display the standard boot menu or to press F8 (Advanced Boot Options) If the user does not press a key Windows Boot Manager starts the Windows Boot Loader.
  • For computers with multiple operating systems, Windows Boot Manager displays a menu of operating system choices at start up. Depending on what you choose, Windows Boot Manager will start:

    • If you choose Windows Vista or Windows 7, Windows Boot Manager starts the Windows Boot Loader to open Windows.
    • If you choose Earlier Version Of Windows, for example Windows XP, Windows Boot Manager starts Ntldr, which then proceeds with the hardware detection phase.
4. Windows Boot Loader phase.
    The Windows Boot Loader does the following:
  • Loads the operating system kernel, Ntoskrnl.exe.
  • Loads the Hardware Abstraction Layer (HAL), Hal.dll
  • Loads the system registry into memory.
  • Scans for device drivers and loads all drivers that are configured for the boot class into memory.
  • Enables paging. 
  • Passes control to the operating system kernel, which starts the next phase
5.  Kernel loading phase.
The Windows Boot Loader is responsible for loading the Windows kernel (Ntoskrnl.exe) and the HAL into memory. Together, the kernel and the HAL initialize a group of software features that are called the Windows executive.

6. Logon phase.
The Windows subsystem starts Winlogon.exe, a system service that enables you to log on and
log off. Winlogon.exe then does the following:
  • Starts the Services subsystem (Services.exe), also known as the SCM
  • Starts the Local Security Authority (LSA) process (Lsass.exe).
  • Parses the Ctrl+Alt+Delete key combination at the Begin Logon prompt (if the computer is part of an AD DS domain).

This sequence will vary if the computer is resuming from hibernation or if a non–Windows 7
option is selected during the Windows Boot Manager phase.

Disk Partitions (MBR - GPT)

In Windows 7 systems we have two different partitioning systems.

  1. The Master Boot Record (MBR). (supported by all versions of Windows
  2. The Globally Unique Identifier Partition Table (GPT). (supported on Windows Vista, Windows 7, Windows Servers 2003 and 2008)


GPT offers several advantages over MBR such as:
  • It can support up to 128 partitions, while MBR supports only four.
  • GPT can support larger partition sizes. In theory, a GPT disk can be up to 18 Exabyte’s in size (about 18,000,000 terabytes)
  • GPT uses primary and backup partition tables for redundancy and CRC32 fields for improved partition data structure integrity. MBR does not have redundant partition tables.

 
You can change a basic disk from MBR to GPT partition style so long as the disk does not contain any partitions or volumes. You first need to back up the data on the MBR disk so you can restore it after the conversion.

Παρασκευή 10 Ιουνίου 2011

Internet Explorer 9 breaks Forefront TMG Management Tools

After install IE9, Microsoft Forefront Thread Management Gateway management tools cannot work anymore, it gives error message like “member not found”, “refresh failed”.

or 

Error: Invalid argument  Code: 0
URL: file:///C:/Program%20Files/Microsoft&20Forefront%20Threat%20Management%20Gateway/UI_HTMLs/Generic.htm?guid=%7BCAB89263-C55E-4492-958B-C24723083320%7D
Do you want to continue running script on this page ?

Link

Πέμπτη 9 Ιουνίου 2011

Microsoft Forefront TGM Best Practices Analyzer Tool

The Forefront TMG BPA is a diagnostic tool that automatically performs specific tests on configuration data collected on the local Forefront TMG computer from the Forefront TMG hierarchy of administration COM objects, Windows Management Instrumentation (WMI) classes, the system registry, files on disk, and the Domain Name System (DNS) settings.

Download

Δευτέρα 23 Μαΐου 2011

Microsoft Baseline Security Analyzer 2.2

The Microsoft Baseline Security Analyzer provides a streamlined method to identify missing security updates and common security misconfigurations. MBSA 2.2 is a minor upgrade to correct minor issues and add optional catalog support.

Download

Τετάρτη 11 Μαΐου 2011

New Release of WAIK for Windows 7 SP1

The Windows Automated Installation Kit (AIK) Supplement for Windows 7 SP1 is an optional update to AIK for Windows 7 that helps you to install, customize, and deploy the Microsoft Windows 7 SP1 and Windows Server 2008 R2 SP1 family of operating systems.


Windows® Automated Installation Kit (AIK) for Windows® 7 SP1

WAIK Win 7 SP1 Readme

Τετάρτη 20 Απριλίου 2011

Windows 7 Themes Folder Location

You can find the themes folder at:
 
C:\Users\username\AppData\Local\Microsoft\Windows\Themes
C:\Windows\Resources\Themes

The folder AppData may be hidden on your system, because it’s a system folder. You will have to make it visible first

Κυριακή 3 Απριλίου 2011

Credential Manager


Credential Manager on Windows 7 allows you to store credentials, such as user names and passwords that you use to log on to websites or other computers on a network. By storing your credentials, Windows can automatically log you on to websites or other computers.


Windows Credential Manager















Add a Windows Credential


Δευτέρα 28 Μαρτίου 2011

DirectAccess in Windows 7 and Windows 2008R2

DirectAccess is a new feature in the Win 7 and Win 2008 R2 operating systems that gives users the experience of being seamlessly connected to their corporate network any time they have Internet access.


DirectAccess allows remote users to securely access intranet shares, Web sites, and applications without connecting to a virtual private network (VPN). DirectAccess establishes bi-directional connectivity with a user’s intranet every time a user’s DirectAccess-enabled portable computer connects to the Internet, even before the user logs on. Users never have to think about connecting to the intranet, and information technology (IT) administrators can manage remote computers outside the office, even when the computers are not connected to the VPN. DirectAccess is supported by Windows 7 Enterprise, Windows 7 Ultimate, and Windows Server 2008 R2.


Link

Untangle 8.1 software make network control easy

Untangle's 8.1 multi-functional firewall software simplifies and consolidates the many network and security products that organizations need at the gateway to the Internet, making protection and filtering easy and affordable.

Untangle runs on generic Intel/AMD hardware. A Pentium III processor, 2 NICs and 512MB of RAM is the min spec for smaller networks and multi-core chips with extra RAM really make Untangle sing for larger networks.
More specific sizing guidance and links to the community hardware compatibility list can be found on the Hardware Requirements.


Download

Τετάρτη 16 Μαρτίου 2011

Windows 7 Privilege elevation


All users of clients running Windows 7 run with rights of a standard user. When a user attempts to do something that requires administrative privileges, for example add printer driver, her rights need to be raised from a standard user to an administrative user. This increase of rights is called privilege elevation. User Account Control is a gateway for privilege elevation. It allows users who are members of the local Administrators group to access administrative rights.


Link

Πέμπτη 24 Φεβρουαρίου 2011

Autoruns for Windows v10.06

Autoruns for Windows is an utility that shows all the programs that are configured to run in login. The utility lists autorun programs from your Startup folder, Run, RunOnce and other Registry keys.

Download Autoruns and Autorunsc

Τετάρτη 23 Φεβρουαρίου 2011

Windows Servicing Store

When installing a service pack for Windows 7, or Windows Server 2008 R2, you might get an "Installation was not successful" error message. The most common causes of this problem are:
  • An inconsistency in the Windows Servicing Store. The Windows Servicing Store is a feature that is required to successfully install the service packs.
  • A program on your computer, such as an antivirus or antispyware program, is interfering with the installation of the service pack.

 

What is the System Update Readiness Tool?

The System Update Readiness Tool can help fix problems that might prevent Windows updates and service packs from installing. For example, an update might not install if a damaged system file prevents the update from recognizing the version of Windows that's running on your computer.
If your computer is having problems installing an update or a service pack, download and install the tool, which runs automatically. Then, try installing the update or service pack again. 

Windows 7 and Windows Server 2008 R2 Service Pack 1

Windows 7 and Windows Server 2008 R2 Service Pack 1 is an important update that includes previously released security, performance, and stability updates for Windows 7 + 2008 R2. SP1 also includes new improvements to features and services in Windows 7, such as improved reliability when connecting to HDMI audio devices, printing using the XPS Viewer, and restoring previous folders in Windows Explorer after restarting.

Link

Τρίτη 15 Φεβρουαρίου 2011

Windows 7 Compatibility Center

The Compatibility Center lists thousands of the most popular devices and software programs to help you easily identify what will or won't work with the Windows 7 operating system.

Link

Παρασκευή 11 Φεβρουαρίου 2011

Download Internet Explorer 9 Release Candidate

Microsoft launch Internet Explorer 9 web browser

Download

What’s new

Πέμπτη 10 Φεβρουαρίου 2011

Remote Server Administration Tools for Windows 7

Remote Server Administration Tools for Windows 7 enables IT administrators to manage roles and features that are installed on remote computers that are running Windows Server 2008 R2

Download


Τετάρτη 9 Φεβρουαρίου 2011

Adding Wireless Computer to a Network

1) Show the available wireless interfaces: netsh wlan show interfaces

2) Connect to a Wirelles Network: netsh wlan connect name=default (Default is profile name)

3) If there is more than one wireless lans on the same profile: netsh wlan connect name=default ssid=myothernet

4) To disconnect from a wireless lan: netsh wlan disconnect

5) To disconnect all wi-fi interfaces: netsh wlan disconnect intraface=*

Τρίτη 8 Φεβρουαρίου 2011

Παρασκευή 21 Ιανουαρίου 2011

DISM tool

DISM is a command line tool that applies updates, drivers, and language packs to a Windows image.
Here is an example of how to add Off-line drivers and Windows Update packages on a .wim File, on windows 7

a) We have a wim file on for example c:\install.wim
b) We Have a c:\secupdate folder with Windows6.1-KB979309-x86.msu update file
c We Have a c:\intel folder with intel drivers
d) We need to mount the install.wim on c:\123
e) Then we can add with dism.exe command Intel drivers and Windows Update file on the mounted wim file

1) Mount c:\install.wim
dism /mount-wim /wimfile:c:\install.wim /index:1 /mountdir:c:\123

2) Display Drivers
dism /image:c:\123 /get-drivers /all

3) AddDriver from C:\intel\WIN7\IntelCP2.inf
dism /image:c:\123 /add-driver:C:\intel\WIN7\IntelCP2.inf

4) To Add multiple drivers from the same folder
dism /image:c:\123 /add-driver /driver:c:\intel\win7

5) to Get information about application patches to a mounted image do the following
1st. dism /image:c:\123 /get-apps (for Applications)
2nd. dism /image:c:\123 /get-apppatches (For Application Patches)

6) to compare an online images (running operating system) with an offline-mounted images
a. dism /online /get-packages > c:\onlinepackages.txt

b. dism /image:c:\123 /get-packages > c:\offlinepackages.txt

This enables you to compare this 2 lists...

7) To install Windows6.1-KB979309-x86.msu update date for windows 7

dism /image:c:\123 /add-package /packagepath:c:\secupdate\Windows6.1-KB979309-x86.msu

8) When you finished you can apply all the changes and to unmount the image.

dism /Unmount-Wim /MountDir:c:\123 /commit

If you don’t want to apply the changes, you can use the /discard parameter instead of /commit.

9)If you want to check the windows update package which you install before you need to mount again the install.wim file and then run again
dism /image:c:\123 /get-packages (for windows Update packages)

Τετάρτη 19 Ιανουαρίου 2011

Windows 7 Codec Pack

The Windows 7 Codec Pack supports almost every compression and file type used by modern video and audio files.

Latest version: 2.7.0

Πέμπτη 13 Ιανουαρίου 2011

Windows 7 Upgrade Paths


Το Windows 7 Upgrade Paths περιέχει όλα τα υποστηριζόμενα και μη upgrade paths


Windows 7 Upgrade Paths .Doc

Δευτέρα 3 Ιανουαρίου 2011

Προσαρμογής προεπιλεγμένων προφίλ χρήστη στα Windows 7 και Windows Server 2008

Για να προσαρμόσετε ένα προεπιλεγμένο προφίλ χρήστη ή ένα υποχρεωτικό προφίλ χρήστη, πρέπει να προσαρμόσετε πρώτα το προεπιλεγμένο προφίλ χρήστη. Στη συνέχεια, το προεπιλεγμένο τοπικό προφίλ χρήστη μπορεί να αντιγραφεί στον κατάλληλο κοινόχρηστο φάκελο, για να καταστήσει το προφίλ είτε το προεπιλεγμένο προφίλ χρήστη είτε το υποχρεωτικό προφίλ χρήστη.


Microsoft Link

Σάββατο 1 Ιανουαρίου 2011