Loading ...

Category: Servers

Help Enable Digital Transformation & Stay Competitive

From start-ups to small businesses, companies who embrace digital transformation are well placed to outperform the competition


Focus more on your business and spend less time worrying about maintenance, with hassle-free upgrades that save time and optimize costs.

On July 9th 2019, support from Microsoft for SQL Server ended, followed by support from Windows Server 2008 R2 on January 14th 2020. Many businesses are seizing this as a chance to modernise their IT infrastructure and integrate their Windows or SQL upgrade into their wider digital transformation strategy.

Companies that strive to integrate the latest most advanced technology to solve real business challenges often realize higher revenue margins. Without embracing innovation, they risk failure to evolve as a business, and losing out to competitors.

Updating your Windows Server or SQL Server enables you to embrace digital transformation and stay ahead of the curve. By breaking down the migration and modernization process into three steps—Assess, Migrate, and Optimize—you can solve the most pressing migration challenges and deliver the reliability, performance, and security your business stakeholders expect.

To discover how modernizing your Windows or SQL server can help you on your path to digital transformation, get in touch with us today.

Sophos DNAT – Change Different Port Number

This article came from the need of another local tech company to forward an Exacqvision Web Portal to something other than port 80, as it was already in use. I could not find a detail article on how to accomplish Sophos DNAT while changing the port number:

How to configure Sophos DNAT for an internal server

  1. Navigate to Firewall then click +Add Firewall Rule and select Business Application Policy.
    Sophos DNAT - Add Firewall Rule
  2. Select Application Template and choose DNAT/Full NAT/Load Balancing.
    Sophos DNAT - DNAT Template
  3. Fill out the settings as shown below:
    Sophos DNAT - Firewall Rule Details
    1. Rule Name
    2. Source Zones: WAN (and LAN if needed)
    3. Allowed Client Networks: Any
    4. Destination Host/Network: WAN Interface (#eth0-? whichever one you use)
    5. Services: Either select the service you already created or create a new one for the external port to be used as below
      Sophos DNAT - Service Creation
    6. Protected Servers: Select an existing or create a host entry for the internal server.
    7. Protected Zone: Select the Zone in which the host resides (LAN or DMZ).
    8. Change Destination Port(s): Check this then change the port to the internal port.
  4. Click Save to save the configuration.

If your company is using a Sophos router and is unsure of how to configure it, then contact us for assistance in making the best use of your router.

Where do you keep your passwords?

Farmhouse Networking has had a long standing policy that we do not keep a record of client passwords (except when needed for device administration). That is about to change, but before we talk about our new password policy let’s talk password storage:

Common Password Storage

Here are some popular places where many businesses store their passwords that make them very vulnerable to being stolen.

Passwords written on paper (that are not under lock and key):

  • On your desk under your keyboard (or taped underneath)
  • Under your stapler or desk decorations
  • On sticky notes stuck to your monitor or desk
  • On a scrap of paper on your desk or in a drawer
  • In a notebook or address book
  • In a old-fashioned Rolodex file
  • Paper printouts or photocopies of your passwords

Anyone with access to your office could easily find and steal passwords stored like this.

Passwords stored in your computer (without using encryption):

  • Remembered in your web browser
  • A document called “Passwords” that you’ve created anywhere on your computer, perhaps using Microsoft Word or Excel
  • A document with any other name on your computer (including the password as the name)
  • Email drafts that you’ve created (but not sent) containing password information

Anyone with access to your computer could easily find and steal passwords stored like this, including both a person with physical access to it as well as a virus or hacker gaining access via the internet, or scamming you into granting them access, even once.

Passwords stored in your smartphone or tablet (without using encryption):

  • Electronic “Notes” containing password information
  • Other documents or emails similar to the ones listed in computer storage above

Anyone with access to your device could easily find and steal passwords stored like this.

Passwords sent via regular (insecure) email:

  • Emails that you have sent to yourself containing password information
  • Emails that you have sent to anyone else containing password information

Any information that you send using regular (unencrypted) email puts that information at risk of being stolen. Email is neither private nor secure. Sending an email is like mailing a postcard, and hackers and thieves can easily read the contents. You should never send passwords (or any other confidential or sensitive data) via regular email.

Secure Password Storage

Now for the discussion of Farmhouse Networking’s new password policy. We are partnering with a company to provide a storage of passwords and other client documentation with military grade encryption. This partnership also allows us to address the dangers that common password storage present by offering our clients this same encrypted password storage service. Here are some of the benefits of this service:

  • Unlimited users
  • Unlimited passwords
  • Each user has a personal password vault
  • Shared company password vault
  • Security groups to manage access
  • Auditing & reporting (Compliance)
  • Secure password sharing
  • 1-Click Login Tool (for all major browsers)
  • Mobile Device Access
  • Only $15 per month (Compared to Lastpass Business at $4 per user per month)

If your company is using common password storage of any kind do yourself a security favor and contact us to upgrade to secure password storage.

VPN for the Win

Remote User VPN - Grants Pass, OR

In reviewing compliance documentation, we found it necessary to talk about Virtual Private Network (VPN) technology for both privacy and secure remote access. A VPN is a connection to a private network over the internet through an encrypted tunnel – think smuggling information across a secret passageway between two places.

Why use VPN?

Privacy: There has been a huge buzz lately about using VPN technology to help mask you browsing habits from the likes of the NSA or Google. VPN services offer connections that regularly change your external IP address so that a profile (marketing or otherwise) is harder to build. It also makes hacking of your information harder when these services providers offer anti-virus and anti-spam filtering as part of the VPN service.

What are the trade-offs? These VPN service providers will now be the sole owner of your browsing habits – they can sell targeted profiles to marketing companies – so read those terms of service. There will also be a performance hit to your internet speed, so if you are working from a slow network already this may not be an option. Then there is the added cost of an extra $5 to $15 per month for these services on top of your internet bill each month.

Secure Remote Access: This was the original intent of VPN technology and where it really shines. Either from remote workers using coffee shop wifi or remote offices connecting to the main office, VPN tunnels are used to securely access data, servers, and other network resources. This technology is required by all major compliance agencies so that all data transmitted is encrypted during transport. In the past servers would open ports to the internet to allow access, but it was found that this practice allowed hackers the same opportunity to gain access. With VPN tunnels there is another layer of protection from unexpected access. There is also the benefit that no outside provider gets access to your browsing habits.

What are the trade-offs? This will require a router at the main office that is business grade and capable of handling the traffic. It will then require setup of remote workers laptops or remote offices with similar business grade routers.

If your company is concerned about privacy on the internet or secure remote access, then contact us for assistance.

Shopping for IT Services?

IT Services Savings - Grants Pass, OR

I was chatting with my son who works for a large local company who contracts with a local Managed Service Provider to help with their IT needs. Due to a clause in their contract they are now locked into paying over $15,000 per month for IT services for the next three years. This includes $300 per server (they have 5 of them) and $70 per workstation (they have over 100 of them) plus some other mysterious charges for the network. Personally I think that this is outrageous.

Here at Farmhouse Networking we do not believing in locking our clients into a contract. Our IT services are always month to month so that if either of us are dissatisfied with the relationship then we can easily end things with no obligations. Our services are also reasonably priced due to keeping our overhead low – we charge $65 per server and $25 per workstation plus a small per device charge for other network devices. That is a mind boggling 280-460% savings over the local competition. For that large company that would be a realized savings of somewhere between $9,600 and $11,700 per month – enough to hire several new employees or purchase new equipment to increase production.

If your company is looking to keep the costs of IT services down and keep more working capital for true business needs, then contact us for assistance.

Anatomy of a Breach

Read an amazing article published by Microsoft detailing the roadmap a hacker uses to breach a computer network. You can read the full article here:

https://cloud-platform-assets.azurewebsites.net/anatomy-of-a-breach/

Summary of a Breach

Phase 1: Break-In: Hackers are still using phishing emails, bad passwords, social media links, and poorly patched systems to make their way in with the initial infection. Employee training is the first step towards preventing breaches for 9 out of 10 companies now (and it is included in the price for all our monthly clients).

Phase 2: The Inside Man: Once inside the hacker will scan the network for further vulnerable systems, employees with more access rights than they need, and systems that allow access into other parts of the network. Having systems in place that detect strange or malicious activity are key to stopping an infection in its tracks.

Phase 3: Spread Out: This is where the hacker has all the access they need and start to find the data that is worth selling. Hackers will usually start moving data to places it doesn’t belong on the network then downloading it to their computers for resell. This is where strong access policies that are clearly defined and enforced make the greatest impact to protect sensitive data. 

Phase 4: The Long Con: Once a hacker has taken all they need for the short term payout, they will setup remote access back doors to allow for future access whenever they want to. It almost pays to assume that a breach has already occurred and continually scan the network for these kinds of activity to catch the hackers in the act.

Take the time to read this article, it is a wake-up call on security.

If you would like to learn more about creating an effective cyber defense strategy and mitigating risk, then contact us for assistance.

Is the power out again?

Power Outage - Grants Pass, OR

It seems lately that the power company in the area has not been able to offer consistent service power to the city. This has left many businesses down without the technology they need to operate properly. These power outages cause data loss and damage computer components.

My own unexpected outage

Once upon a time, about two weeks ago, the unexpected happened at our offices. A semi-truck carrying a large backhoe on a trailer drove between two buildings in the area. The landlord had wired power between buildings and the truck driver did not lower the arm of the backhoe low enough. Sure enough the wire was snagged by the backhoe’s arm and pulled from the building. Needless to say the power was out to that part of the building until the landlord took care of the matter.

What can be done?

Farmhouse Networking recommends that all business workstations, servers, and networking equipment be protected by an uninterruptible power source aka UPS or battery backup. When the power goes out the right size battery backup will keeps things running for about 15-30 minutes to allow the last touches to be added to whatever was being worked on and things to be shutdown gracefully.

If your company is looking to better protect itself against power outages, then contact us for assistance.

 

Celebrating 3 Years of Serving Grants Pass

3 years in business

It is official – the month of September marks three years in business for Farmhouse Networking. We have been truly blessed by God to have been able to serve the Grants Pass and surrounding business communities by providing exceptional IT managed services. We look forward to many more years of giving you the highest level of support possible so that you can focus on getting business done. With this anniversary we plan on rolling out some enhancements to our monthly service offerings:

Enhanced Monthly Maintenance


Standard Maintenance: For those who are not current managed clients, these basics have always been a part of our service offering:

  • 5-year Technology Plan & Budget
  • Full Network Inventory
  • Hard Disk Checkups (Bi-Monthly)
  • Hard Disk Defragmentation (Monthly)
  • Temporary File Cleaning (Weekly)
  • Anti-Virus Software (Constant Monitoring)
  • Operating System Updates (Weekly)
  • Error Log Monitoring (Constant Monitoring)
  • Power Settings Management (Constant Monitoring)
  • Windows Services (Constant Monitoring)

Continued Improvements: Over the past 3 years we have also added the following features to our service at no additional costs:

  • Ticketing System Portal
  • Email Support to Create Tickets
  • Security Incident Response Plan
  • Vendor Information Tracking
  • Third-Party Software Updates (Monthly on Firefox, Chrome, Acrobat Reader, ….)
  • Email Blacklist Checking (Daily)
  • Warranty Checking (Monthly on All Major Brands)
  • Operating System Intrusion Detection (Constant Monitoring)
  • Support for MacOS & Linux (Constant Monitoring)
  • Server Applications (Constant Monitoring)
  • Hardware Events (Constant Monitoring)

Enhancements to Come: In September, we will be adding these new exciting features to our service:

  • DNS filtering – this will further protect your network from external threats by stopping accidental surfing to malicious sites. It also can increase productivity and network speeds by limiting wasteful frivolous surfing during company time.
  • Dark Web Scan – Each monthly client will have the “Dark Web” scanned to see if any email addresses connected to the company have been involved in a previous password breach.
  • Weekly Security Newsletter – Farmhouse Networking is partnering with a national security non-profit to deliver up-to-date news and information about how to stay safe online. These weekly newsletters will be packed with valuable information and delivered to everyone in your organization.

As our service offering has expanded, we have deepened our ability to monitor our customers networks to proactively respond to alerts before they become problems. We have continued to add levels of protection to make sure that our clients systems are safe from the ever-expanding list of threats. All this has been done at no additional cost, despite inflation, up to this point. To continue offering this high level of service, Farmhouse Networking is making a couple small changes to its prices that will be effective September 1st, 2018.

  • Monthly Maintenance Clients – our services are based on a per device basis and the cost per workstation will be $25 per month for remote maintenance and $50 per month for full service maintenance. All other prices will remain the same for every other device on the network. This will only effect clients whose contracts are renewing after September 1st, 2018 – any renewed before that will keep their prices the same for the next 12-month term.
  • Small Business Clients – those who do not have a server and have less than 5 workstations, our hourly rate will be $80 per hour for on-site service and $40 per hour for remote service (billed in 15-minute increments). That is only $10 more for on-site support and $5 more for remote support.
  • Standard to Medium Clients – those with a server or more than 5 workstations, our hourly rate will be $120 per hour for on-site service and $60 per hour for remote service (billed in 15-minute increments). That is only $10 more for on-site support and $5 more for remote support.
  • Tier-3 Clients – those technology companies that utilize our advanced expertise to better serve their clients, our hourly rate will be $40 per hour for remote service (billed in 15-minute increments). That is only $5 more for remote support.
  • Charity Clients – those non-profits that pay for support, our hourly rate will remain at $70 per hour for on-site service and $35 per hour for remote service (billed in 15-minute increments).

For all our monthly maintenance clients, we will be calling to schedule our semi-annual meeting to check-in with you during the month of September. At that time we will be performing another network inventory to insure that all network assets are covered properly under your current contract. We cannot thank all our clients enough for your continued use of our IT services. We look forward to continuing to serve you.

Know the state of your flocks,
and put your heart into caring for your herds,
for riches don’t last forever,
and the crown might not be passed to the next generation.
After the hay is harvested and the new crop appears
and the mountain grasses are gathered in,
your sheep will provide wool for clothing,
and your goats will provide the price of a field.
And you will have enough goats’ milk for yourself,
your family, and your servant girls.
Proverbs 27:23-27

Are You in Need of Technical Help?

broken internet - Grants Pass, OR

We have a bench of Tier 3 engineers ready that have been trained in industry best practices, compliance and are comfortable supporting your network and computers.

Put an End to Stressful Computer Support

By utilizing one of our industry trained Helpdesk Specialists, you can free your employees from wasting time on computer support tasks.

Our Helpdesk Specialists are capable – but not limited to – the following tasks:

  • Desktop operating system maintenance, troubleshooting, and diagnosis
  • Desktop connectivity troubleshooting
  • Network systems maintenance, troubleshooting, and diagnosis
  • Network connectivity troubleshooting
  • Server operating system maintenance, troubleshooting, and diagnosis
  • Server connectivity troubleshooting
  • Application installation and support
  • Client VPN installation and support
  • Microsoft Office Suite & Google G-Suite support
  • Security & access management
  • Anti-malware administration and resolution

Learn more about the benefits of our Dedicated Remote Support Solutions here.

Categories

Plant a Seed 541-761-9549
233 Rogue River Hwy #873 Grants Pass, OR 97527
Mon-Fri: 9:00am-5:00pm
support@farmhousenetworking.com
© 2016-2018 - Farmhouse Networking. All rights reserved
Terms and Conditions Privacy Policy

Evaluation Signup

Something went wrong, try refreshing and submitting the form again.