190 likes | 312 Views
Physics Network Integration. Chris Hunter. Physics network team. Chris Hunter : Network Manager David Newton : Network Support Technician Room DWB 663 Phone 73501 Email network@physics.ox.ac.uk. Network Sockets & Concentration Points.
E N D
Physics Network Integration Chris Hunter
Physics network team • Chris Hunter : Network Manager • David Newton : Network Support Technician • Room DWB 663 • Phone 73501 • Email network@physics.ox.ac.uk
Network Sockets & Concentration Points • 16 network concentration points (NCP’s) in the Denys Wilkinson Building alone. • Available Switch ports 2290 Approx. 59.2% active • Level 2 NCP hub of the Physics network with 1Gb fibre connections going to each of the Physics buildings.
Physics Firewall Firewall Juniper Netscreen ISG 1000
Physics Wireless Network • Currently 19 x 802.11g 56Mbps wireless access points in the DWB plus a couple of 802.11n 300Mbps • Clients connected to the Physics_M wireless network are part of the 163.1.19.x subnet, currently WEP encryption only. • 802.1x authentication should be coming soon using Physics network credentials. • Register for wireless network access with Physics Network credentials at http://www.physics.ox.ac.uk/it/account.
OUCS wireless network • OWL-VISITOR and OWL-VPN also available, via the OWL ssid. • Eduroam now also available, connect using your Remote Access Account, different from your SSO or Nexus account http://www.oucs.ox.ac.uk/network/wireless/services/eduroam/ • Details about both OWL & Eduroam at http://www.oucs.ox.ac.uk/network/wireless
Access to Physics Services from the un-trusted subnet or remotely • Virtual Private Network (VPN) • vpn.physics.ox.ac.uk works with Microsoft, Linux and OSX clients, uses Physics authentication domain help at http://www.physics.ox.ac.uk/it/network/vpn/ • Oxford University Computing Service (OUCS) have VPN service, does need specific client installed details at http://www.oucs.ox.ac.uk/network/vpn/
Network Security • Connecting unmanaged systems to the Physics Network • MAC address registration is needed before gaining any network connection for laptops please register at http://www.physics.ox.ac.uk/it/account/ • 172.17.x.x un-trusted subnet • Is your laptop up to date? • Anti Virus / spyware • Fully patched OS • Connecting from outside of Physics • SMB blocked, no connection to windows files • MAPI access to Exchange Server blocked • SMTP blocked
Network Security • Exchange Server protocols not blocked • IMAP • Authenticated SMTP is available using mail.physics.ox.ac.uk, PHYSICS authentication domain credentials are needed to use the service • Other protocols • web access • RPC over HTTPS
Network Security • Sophos Anti Virus Software • Updates, out of date AV is no use • Download Sophos for personal laptops running:- • Sophos 7.6.12 for XP, Vista and Windows7 at http://www.physics.ox.ac.uk/sophos/ • Linux at http://www.oucs.ox.ac.uk/viruses/linux/ • Sophos v7.0.5 for MAC OSX 10.4/10.5/10.6 at http://www.physics.ox.ac.uk/sophos/ • Hoping to setup Network Access Control (NAC) onto our network
Network Backbone Connection • Physics connection presently 1Gbps • Campus connection to Super Janet currently at 2 x 10Gbps.
Access to Physics Services from the un-trusted subnet or remotely • Exchange email web access • https://mail.physics.ox.ac.uk • HTTPS-RPC proxy service is available with Outlook 2010 http://www.physics.ox.ac.uk/it/email/exchange/2010/Outlook.htm • Exchange 2010 access various email client with Imap access • https://www.physics.ox.ac.uk/IT/Email/Exchange/2010/Exchange2010.htm • https://www.physics.ox.ac.uk/it/email/emailsystem/imap • Webdav via browser or windows network places • https://winfe.physics.ox.ac.uk/home/<username> connects to your windows ‘H’ drive. • (Windows Only) Open `My Network Places` and click on `add a network place • Sftp + SSH • Winscp3 available on self service (windows desktop systems) • http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html • http://www.physics.ox.ac.uk/it/mswindows/remote.htm
Access to Physics Services from the un-trusted subnet or remotely • Printing from a Windows Laptop not in the Physics domain. • http://www.physics.ox.ac.uk/it/mswindows/windowsprinting.htm • MAC Printing • http://www.physics.ox.ac.uk/it/mac/macprinting.htm
Access to Physics Services from the un-trusted subnet or remotely • Windows terminal server Termservqc • Remote Desktop Client (MS & MAC OSX), possible to connect to local disks, printers and serial ports (not possible to connect serial ports in OSX). • Rdesktop on Linux systems, • rdesktop <termservqc>, more for people without Windows desktop • Windows XP, Vista and Windows 7 will allow remote access via terminal services
Physics self service • Under Programs\Physics Self Service