information technology

  1. Andy

    Setup MikroTik as L2TP/IPsec Dial-in VPN Server with all traffics are being routed

    Here we will be configuring a dial-in VPN using L2TP with IPsec. In this example, we will be using 192.168.7.0/24 for the L2TP clients and for the LAN. The configuration will detail the following: Enable L2TP server Create a DHCP pool Create an L2TP profile Create a sample user Configure...
  2. Andy

    HSTS Implementation

    What is HSTS HSTS is the great little response header that tells a browser to always use SSL/TLS to communicate with your site. It doesn’t matter if the user, or a link they are clicking, specifies HTTP, HSTS will remove the ability for a compatible browser to use HTTP and will enforce the use...
  3. Andy

    Redirect HTTP to HTTPS using Nginx

    In this post, I will share my very simple configuration to redirect HTTP to HTTPS using Nginx web server. With my configuration below, Nginx will simply forwards port 80 to 443. Very useful when you have a service that only listens on 443 (https) then you can use Nginx to forward all of your...
  4. Andy

    Create a new Mac Administrator account using Single User Mode

    If you ever need to recreate admin account on your Mac, this is the quickest and safest way to do it without breaking your Mac: Boot into Single User Mode by pressing ⌘ + S before you hear the Apple chime. Mount the drive by typing /sbin/mount –uw / then enter. Remove the Apple Setup Done file...
  5. Andy

    Access Ubuntu Linux using Remote Desktop Connection

    In this brief tutorial, I’m going to show you how to use Windows’ own remote desktop connection protocol to connect to Ubuntu Linux 16.04 / 17.10 and 18.04 / 18.10 desktops using Xrdp. Xrdp is an open-source remote desktop protocol server which uses RDP to present a GUI to the client. It...
  6. Andy

    Disable Red Hat Graphical Boot on CentOS 7

    Prefer to see what’s actually happening in the background when your CentOS Linux is booting up? Edit /etc/default/grub with your favourite editor, such as nano or vi. [andy@av ~]# cat /etc/default/grub GRUB_TIMEOUT=5 GRUB_DISTRIBUTOR="$(sed 's, release .*$,,g' /etc/system-release)"...
  7. Andy

    Clone from Larger HDD to Smaller SSD

    In this post we will learn how to clone Windows from Larger Disk to Smaller Disk, in most cases we do this when we want to do HDD to SSD Upgrade, the hard disk drive usually has a larger size than our solid-state drive. We need to make sure that our C drive will fit into our SSD drive. Click...
  8. Andy

    Disable Boot Splash Screen on Ubuntu Desktop Linux

    Prefer to see what’s actually happening in the background when Ubuntu Desktop Linux booting up? Wait for Ubuntu to boot, then login and start a Terminal application Edit /etc/default/grub as root, for example: sudo nano /etc/default/grub Remove splash from GRUB_CMDLINE_LINUX_DEFAULT Save the...
  9. Andy

    MikroTik Fasttrack with IPsec

    Fasttrack is a new feature introduced in RouterOS v6.29 that allows you to forward packages in a way that they are not handled by the Linux Kernel which greatly improves the throughput of your router as well as lowering the CPU load. Fasttrack allows all packages that have the state Established...
  10. Andy

    MikroTik Site-to-Site IPsec Tunnel

    Easy Guide on how to setup MikroTik Site-to-Site IPsec Tunnel If one of MikroTik’s WAN IP address is dynamic, set up that router as the initiator (i.e. dial-out) If you are working from WAN, don’t forget to enable Safe Mode. Let’s go to Winbox -> IP -> IPsec -> Proposals, and this is the...
  11. Andy

    How to upgrade or migrate Active Directory server

    A quick walkthrough on how to upgrade or migrate an Active Directory Server. In this guide, the old server is Windows Server 2008 R2 Standard, and the new server is Windows Server 2016 Essentials. This guide should work on other Windows Server version as the concept would be pretty much the...
  12. Andy

    Setup MikroTik as L2TP/IPSec VPN Server

    This is a brief guide on how to implement an L2TP/IPSec VPN server on Mikrotik RouterOS and use it as a gateway. Change these to fit your setup: This router’s local IP address: 172.31.1.1/20 WAN connection is PPPoE with the name ether1-GTW. If you use PPPoE, use the name of your PPPoE...
  13. Andy

    Office 365 Convert Regular to Shared Mailbox & Setup Mail Forwarding

    Is someone left from your office? Here is the best practice to do with their mailbox. With Office 365, we can take advantage of keeping inactive users in the cloud without affecting our quota without any license required. Go to Admin centers -> Exchange At the Exchange admin center dashboard...
  14. Andy

    Setting up WiFi Hotspot on your Samsung Android Smartphone

    If you are not connected to a Wi-Fi or local network and want to use the Internet on your computer or any other Wi-Fi compatible device, you can use your phone as a modem. This guide shows with a few easy steps how to establish an Internet connection between your phone and your preferred device...
  15. Andy

    Migrating a Mac Local User to a Network User

    I’ve seen several places where a smaller company has been integrated into a large company, or where the number of Macs in the company has grown, and now you want those users to have their machines and login managed under the network directory system, be that Open Directory or Active Directory...
  16. Andy

    3CX SSL certificate has expired

    Follow these steps to renew your 3CX SSL certificate (assuming that the PBX in question is SP0 as the last contact with 3CX servers has been made from a 15.5 SP0 – In this case, the system must be updated to the latest service pack) To force the update: If the version is lower than v15.5 SP2...
  17. Andy

    How to Fix: Google Chrome Updates are disabled by the Administrator

    If your Google updates are disabled by the administrator so you cannot update by yourself, here is the solution! It is very easy and it only takes five minutes to fix this issue: Go to Windows Start Button on the left bottom and Click on Run. Type in regedit on the run. Go to...
  18. Andy

    MikroTik Bruteforce Login Prevention

    To stop SSH, Telnet and FTP attacks on your router, follow the following advise: This configuration allows only 10 FTP login incorrect answers per minute. in /ip firewall filter add chain=input protocol=tcp dst-port=21 src-address-list=ftp_blacklist action=drop \ comment="drop ftp brute...
  19. Andy

    Couldn’t install Microsoft Office with Error Code: 30182-1011

    This error code is known when you try to install different Microsoft Office licenses into the same system (e.g. Non-profit license or OEM license and you’re installing Retail license or Office 365 Subscription-based license) – Basically you cannot mix varies types of license in one system. In...
  20. Andy

    Prevent Windows from Automatically doing Updates

    Don’t like your Windows performs automatically download, install updates and restart by itself? Click Start and type in: ‘gpedit.msc‘. Go to: Local Computer Policy -» Computer Configuration -» Administrative Templates -» Windows Components -» Windows Update -» Configure Automatic Updates. Set...
Top