information technology

This is an updated tutorial from my previous RouterOS v6.43 L2TP/IPsec tutorial. In RouterOS v6.44 there were major changes where they removed "main-l2tp" exchange-mode from the /ip ipsec peer. But this means configuring L2TP/IPsec is even more simpler, just follow through my guide down below...

Here we will be configuring a dial-in VPN using L2TP with IPsec. In this example, we will be using 192.168.7.0/24 for the L2TP clients and for the LAN. The configuration will detail the following: Enable L2TP server Create a DHCP pool Create an L2TP profile Create a sample user Configure...

What is HSTS HSTS is the great little response header that tells a browser to always use SSL/TLS to communicate with your site. It doesn’t matter if the user, or a link they are clicking, specifies HTTP, HSTS will remove the ability for a compatible browser to use HTTP and will enforce the use...

In this post, I will share my very simple configuration to redirect HTTP to HTTPS using Nginx web server. With my configuration below, Nginx will simply forwards port 80 to 443. Very useful when you have a service that only listens on 443 (https) then you can use Nginx to forward all of your...

If you ever need to recreate admin account on your Mac, this is the quickest and safest way to do it without breaking your Mac: Boot into Single User Mode by pressing ⌘ + S before you hear the Apple chime. Mount the drive by typing /sbin/mount –uw / then enter. Remove the Apple Setup Done file...

In this brief tutorial, I’m going to show you how to use Windows’ own remote desktop connection protocol to connect to Ubuntu Linux 16.04 / 17.10 and 18.04 / 18.10 desktops using Xrdp. Xrdp is an open-source remote desktop protocol server which uses RDP to present a GUI to the client. It...

Prefer to see what’s actually happening in the background when your CentOS Linux is booting up? Edit /etc/default/grub with your favourite editor, such as nano or vi. [andy@av ~]# cat /etc/default/grub GRUB_TIMEOUT=5 GRUB_DISTRIBUTOR="$(sed 's, release .*$,,g' /etc/system-release)"...

In this post we will learn how to clone Windows from Larger Disk to Smaller Disk, in most cases we do this when we want to do HDD to SSD Upgrade, the hard disk drive usually has a larger size than our solid-state drive. We need to make sure that our C drive will fit into our SSD drive. Click...

Prefer to see what’s actually happening in the background when Ubuntu Desktop Linux booting up? Wait for Ubuntu to boot, then login and start a Terminal application Edit /etc/default/grub as root, for example: sudo nano /etc/default/grub Remove splash from GRUB_CMDLINE_LINUX_DEFAULT Save the...

Fasttrack is a new feature introduced in RouterOS v6.29 that allows you to forward packages in a way that they are not handled by the Linux Kernel which greatly improves the throughput of your router as well as lowering the CPU load. Fasttrack allows all packages that have the state Established...

Easy Guide on how to setup MikroTik Site-to-Site IPsec Tunnel If one of MikroTik’s WAN IP address is dynamic, set up the router as the initiator (i.e. dial-out) If you are working from WAN, don’t forget to enable Safe Mode. Let’s go to Winbox -> IP -> IPsec -> Proposals, and this is the IPsec...

A quick walkthrough on how to upgrade or migrate an Active Directory Server. In this guide, the old server is Windows Server 2008 R2 Standard, and the new server is Windows Server 2016 Essentials. This guide should work on other Windows Server version as the concept would be pretty much the...

This is a brief guide on how to implement an L2TP/IPSec VPN server on Mikrotik RouterOS and use it as a gateway. Change these to fit your setup: This router’s local IP address: 172.31.1.1/20 WAN connection is PPPoE with the name ether1-GTW. If you use PPPoE, use the name of your PPPoE...

Is someone left from your office? Here is the best practice to do with their mailbox. With Office 365, we can take advantage of keeping inactive users in the cloud without affecting our quota without any license required. Go to Admin centers -> Exchange At the Exchange admin center dashboard...

If you are not connected to a Wi-Fi or local network and want to use the Internet on your computer or any other Wi-Fi compatible device, you can use your phone as a modem. This guide shows with a few easy steps how to establish an Internet connection between your phone and your preferred device...

I’ve seen several places where a smaller company has been integrated into a large company, or where the number of Macs in the company has grown, and now you want those users to have their machines and login managed under the network directory system, be that Open Directory or Active Directory...

Follow these steps to renew your 3CX SSL certificate (assuming that the PBX in question is SP0 as the last contact with 3CX servers has been made from a 15.5 SP0 – In this case, the system must be updated to the latest service pack) To force the update: If the version is lower than v15.5 SP2...

If your Google updates are disabled by the administrator so you cannot update by yourself, here is the solution! It is very easy and it only takes five minutes to fix this issue: Go to Windows Start Button on the left bottom and Click on Run. Type in regedit on the run. Go to...

To stop SSH, Telnet and FTP attacks on your router, follow the following advise: This configuration allows only 10 FTP login incorrect answers per minute. in /ip firewall filter add chain=input protocol=tcp dst-port=21 src-address-list=ftp_blacklist action=drop \ comment="drop ftp brute...

This error code is known when you try to install different Microsoft Office licenses into the same system (e.g. Non-profit license or OEM license and you’re installing Retail license or Office 365 Subscription-based license) – Basically you cannot mix varies types of license in one system. In...