By default ISA/TMG does not allow outbound SSH traffic. And in the log it shows something like this: To make it work, you have to extend the ISA/TMG ports by adding SSH/22 by using isa_tpr.js. Here is my example:c:\Utils>cscript isa_tpr.js /add SSH 22Microsoft (R) Windows Script Host Version 5.8Copyright (C) Microsoft Corporation. All rights reserved.The Web … Continue reading Extend ISA/TMG Ports to allow SSH
Category: Security
vCenter 5.1 service fails to start because of anti virus
The real time antivirus program or the vShield endpoint may cause the vCenter 5.1 service fail to start. I found this out the other day in the vpxd.log file. The error is something like No connection could be made because the target machine actively refused it. This is due to the real time anti virus … Continue reading vCenter 5.1 service fails to start because of anti virus
vShield EndPoint: Lost communication with ESX module
We bought two new blades recently. When my colleague tries to configure the vShield Endpoint on the two new hosts, he always get an error ‘Lost communication with ESX module’. I SSH into the host, and checked the syslog. It complains the certificate is not yet valid. And I noticed that the time is not … Continue reading vShield EndPoint: Lost communication with ESX module
Encrypt disk in Ubuntu
I installed a Ubuntu 12.04 desktop by using the 12.04.2 alternate CD. After generated a distribution iso, I found the disk encryption feature was not included in the custom install process. To make the new iso support disk encryption, I wrote a script. Here is how it works: 1) Boot from the live CD. 2) … Continue reading Encrypt disk in Ubuntu
Jackie Chen's IT Workshop 