[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Fwd: Re: [seul-edu] Opportunity to make a difference]
owner-seul-edu@seul.org wrote:
> From: "Kyle Hutson" <smyle@rockcreek.k12.ks.us>
> To: seul-edu@seul.org
> Subject: Re: [seul-edu] Opportunity to make a difference
>
> > A number of schools have set up their own unauthorized LANs with local
> > servers.
>
> First of all, I think it's important you don't try to "punish" them
> for trying to be innovative enough to try new things.
>
> > It's my understanding that there are several different versions of
> > Windows being used on these. In some cases, whoever set them up put in DHCP
> > servers, but either didn't know or didn't care about how to make sure that
> > acceptable IP addresses were being issued.
>
> This is what the techintegration lists I'm on call a "teachable
> moment". Changing the configuration is not difficult.
>
> > As a result, several are giving
> > addresses which conflict with those coming from the school board's central
> > or school-based servers. This causes conflicts and networking problems.
>
> OK, combine this "teachable moment" with some simple firewall/router
> rules for enforcement. When the people using these services suddenly
> can't get to the Internet, they will come to their building person
> instead of the district person (usually).
>
> > Since some of these have been running for quite a while, he doesn't want to
> > have to order them to disconnect their LANs from the Internet. The angry
> > outcries would add to his woes. I suggested that he require those LANs to
> > use static addresses, but he said that then somebody would need to keep a
> > database of assigned IP addresses, adding further to the chaos.
> > Anybody have any ideas about a strandardized way to bring the LANs under
> > control? (Or any other good suggestions, while I've got his ear?)
>
> If it's that much of a hassle, you can always NAT those subnets -
> I've done it on an OpenBSD box (P200/32MB) in about 15 minutes, and I
> had no experience with *BSD prior to this. Linux should be just as
> easy.
>
> --
> Kyle Hutson / Director of Technology / Rock Creek Schools: USD323
> smyle@rockcreek.k12.ks.us 785-494-8591
> Actually I am a laboratory mouse posing as an engineer as part of an
> elaborate plot to take over the world
--
Doug Loss Always do right. This
Data Network Coordinator will gratify some people
Bloomsburg University and astonish the rest.
dloss@bloomu.edu Mark Twain
- To: owner-seul-edu@seul.org
- Subject: BOUNCE seul-edu@seul.org: Non-member submission from ["Kyle Hutson" <smyle@rockcreek.k12.ks.us>]
- From: owner-seul-edu@seul.org
- Date: Wed, 17 Oct 2001 09:17:53 -0400
- Delivered-To: dloss@seul.org
>From owner-seul-project@belegost.mit.edu Wed Oct 17 09:17:51 2001
Received: from moria.seul.org (MORIA.MIT.EDU [18.244.0.188])
by belegost.mit.edu (8.11.6/8.11.6) with ESMTP id f9HDHpC14289
for <seul-edu@majordomo.seul.org>; Wed, 17 Oct 2001 09:17:51 -0400
Received: by moria.seul.org (Postfix)
id A330C146305; Wed, 17 Oct 2001 09:17:51 -0400 (EDT)
Delivered-To: seul-edu@seul.org
Received: from mail-01.host.vp1.net (unknown [64.6.132.10])
by moria.seul.org (Postfix) with ESMTP id 51C39146304
for <seul-edu@seul.org>; Wed, 17 Oct 2001 09:17:51 -0400 (EDT)
Received: from rockcreekschools.org (unverified [206.52.68.1]) by mail-01.host.vp1.net
(Rockliffe SMTPRA 4.5.4) with ESMTP id <B0011652908@mail-01.host.vp1.net> for <seul-edu@seul.org>;
Wed, 17 Oct 2001 08:17:48 -0500
Message-ID: <B0011652908@mail-01.host.vp1.net>
Received: from R2/SpoolDir by rockcreekschools.org (Mercury 1.44);
17 Oct 01 08:18:32 -0600
Received: from SpoolDir by R2 (Mercury 1.44); 17 Oct 01 08:18:26 -0600
From: "Kyle Hutson" <smyle@rockcreek.k12.ks.us>
Organization: Rock Creek - USD 323
To: seul-edu@seul.org
Date: Wed, 17 Oct 2001 08:18:23 -0500
MIME-Version: 1.0
Content-type: text/plain; charset=US-ASCII
Content-transfer-encoding: 7BIT
Subject: Re: [seul-edu] Opportunity to make a difference
Reply-To: smyle@rockcreekschools.org
X-Confirm-Reading-To: smyle@rockcreekschools.org
X-pmrqc: 1
Priority: normal
In-reply-to: <01c156b1$317a8e00$b0271e89@prentda>
X-mailer: Pegasus Mail for Win32 (v3.01d)
> A number of schools have set up their own unauthorized LANs with local
> servers.
First of all, I think it's important you don't try to "punish" them
for trying to be innovative enough to try new things.
> It's my understanding that there are several different versions of
> Windows being used on these. In some cases, whoever set them up put in DHCP
> servers, but either didn't know or didn't care about how to make sure that
> acceptable IP addresses were being issued.
This is what the techintegration lists I'm on call a "teachable
moment". Changing the configuration is not difficult.
> As a result, several are giving
> addresses which conflict with those coming from the school board's central
> or school-based servers. This causes conflicts and networking problems.
OK, combine this "teachable moment" with some simple firewall/router
rules for enforcement. When the people using these services suddenly
can't get to the Internet, they will come to their building person
instead of the district person (usually).
> Since some of these have been running for quite a while, he doesn't want to
> have to order them to disconnect their LANs from the Internet. The angry
> outcries would add to his woes. I suggested that he require those LANs to
> use static addresses, but he said that then somebody would need to keep a
> database of assigned IP addresses, adding further to the chaos.
> Anybody have any ideas about a strandardized way to bring the LANs under
> control? (Or any other good suggestions, while I've got his ear?)
If it's that much of a hassle, you can always NAT those subnets -
I've done it on an OpenBSD box (P200/32MB) in about 15 minutes, and I
had no experience with *BSD prior to this. Linux should be just as
easy.
--
Kyle Hutson / Director of Technology / Rock Creek Schools: USD323
smyle@rockcreek.k12.ks.us 785-494-8591
Actually I am a laboratory mouse posing as an engineer as part of an
elaborate plot to take over the world