Aruba Instant AP Timezone List

I’ve recently been automating a lot of tasks with global rollouts, but I’ve been frustrated that our documentation doesn’t list all timezone names available on our Instant AP’s.

I’ve as a result collated all AP Timezone options in the below list. Hopefully it will help some of you out going forward with either documentation or automation in the future. See below, and enjoy!

International-Date-Line-West -12 00
Coordinated-Universal-Time-11 -11 00
Samoa -11 00
Hawaii -10 00
Alaska -09 00
Baja-California -08 00
Pacific-Time -08 00
Arizona -07 00
Chihuahua -07 00
La-Paz -07 00
Mazatlan -07 00
Mountain-Time -07 00
Central-America -06 00
Central-Time -06 00
Guadalajara -06 00
Mexico-City -06 00
Monterrey -06 00
Saskatchewan -06 00
Bogota -05 00
Lima -05 00
Quito -05 00
Eastern-Time -05 00
Indiana(East) -05 00
Caracas -04 30
Asuncion -04 00
Atlantic-Time(Canada) -04 00
Cuiaba -04 00
Georgetown -04 00
La-Paz -04 00
Manaus -04 00
San-Juan -04 00
Santiago -04 00
Newfoundland -03 30
Brasilia -03 00
Buenos-Aires -03 00
Cayenne -03 00
Fortaleza -03 00
Greenland -03 00
Montevideo -03 00
Salvador -03 00
Coordinated-Universal-Time-02 -02 00
Mid-Atlantic -02 00
Azores -01 00
Cape-Verde-Is -01 00
Casablanca 00 00
Coordinated-Universal-Time 00 00
Dublin 00 00
Edinburgh 00 00
Lisbon 00 00
London 00 00
Monrovia 00 00
Reykjavik 00 00
Amsterdam 01 00
Berlin 01 00
Bern 01 00
Rome 01 00
Stockholm 01 00
Vienna 01 00
Belgrade 01 00
Bratislava 01 00
Budapest 01 00
Ljubljana 01 00
Prague 01 00
Brussels 01 00
Copenhagen 01 00
Madrid 01 00
Paris 01 00
Sarajevo 01 00
Skopje 01 00
Warsaw 01 00
Zagreb 01 00
West-Central-Africa 01 00
Windhoek 01 00
Amman 02 00
Athens 02 00
Bucharest 02 00
Beirut 02 00
Cairo 02 00
Damascus 02 00
East-Europe 02 00
Harare 02 00
Pretoria 02 00
Helsinki 02 00
Kyiv 02 00
Riga 02 00
Sofia 02 00
Tallinn 02 00
Vilnius 02 00
Jerusalem 02 00
Baghdad 03 00
Istanbul 03 00
Minsk 03 00
Kuwait 03 00
Riyadh 03 00
Nairobi 03 00
Moscow 03 00
St.Petersburg 03 00
Volgograd 03 00
Tehran 03 30
Abu-Dhabi 04 00
Muscat 04 00
Baku 04 00
Port-Louis 04 00
Tbilisi 04 00
Yerevan 04 00
Kabul 04 30
Islamabad 05 00
Karachi 05 00
Tashkent 05 00
Chennai 05 30
Kolkata 05 30
Mumbai 05 30
New-Delhi 05 30
Sri-Jayawardenepura 05 30
Kathmandu 05 45
Astana 06 00
Dhaka 06 00
Ekaterinburg 06 00
Yangon 06 30
Bangkok 07 00
Hanoi 07 00
Jakarta 07 00
Novosibirsk 07 00
Beijing 08 00
Chongqing 08 00
HongKong 08 00
Krasnoyarsk 08 00
Kuala-Lumpur 08 00
Perth 08 00
Singapore 08 00
Taipei 08 00
Urumqi 08 00
Ulaanbaatar 08 00
Irkutsk 09 00
Osaka 09 00
Sapporo 09 00
Tokyo 09 00
Seoul 09 00
Adelaide 09 30
Darwin 09 30
Brisbane 10 00
Canberra 10 00
Melbourne 10 00
Sydney 10 00
Guam 10 00
Port-Moresby 10 00
Hobart 10 00
Yakutsk 10 00
Solomon-Is. 11 00
New-Caledonia 11 00
Vladivostok 11 00
Auckland 12 00
Wellington 12 00
Coordinated-Universal-Time+12 12 00
Fiji 12 00
Magadan 12 00
Nukualofa 13 00

Posted in Uncategorized | Tagged , , , , , , , | Leave a comment

Internet Safety for Parents – A Practical Guide

The presentation below is one I put together last year for parents of my kids school, together with input from Eddie Dowse, another parent, and apple enthusiast (not my forte). It covers some basic info from what delivers the broadband to your home, as well as more detailed step by step instructions on how to protect your children’s browsing capabilities utilising tools like content filtering and mobile/tablet device management using Google’s Family Link etc. I hope you find this useful. Liam.
Posted in Uncategorized | 1 Comment

eir Fibre to the Home and SIP Inbound calls…

So frustratingly, I haven’t posted in waay too long here, but been busy with work ‘n stuff!

This year (in January) I was lucky enough to upgrade my traditional DSL @ 30Mbps to FTTH (Fiber to the Home) @ 300Mbps, and it’s crazy fast! I love it (I cannot say this enough! I love it to bits!!) It makes working at home such a pleasure. However one frustrating thing about the solution is that they migrate away from your traditional copper telephone line, to a SIP trunk across the fiber.

Now, I don’t play well with provider supplied modems, and the Huawei modem supplied, while it would work, doesn’t give me any control over content available at my house (i.e. protect my kids online activities, keeping their eyes away from things they should never see at their ages!)

I played with the idea of dragging an old Cisco ATA out of storage and loading the SIP image to it and fudging it until it worked (Cisco ATA’s were a b*tch to configure even back in the day when i was working with VoIP), so i had a brain fart – why not put the supplied Huawei modem behind my own firewall of choice – Sophos XG.

While this kindof worked – for the first few minutes all was well, until i discovered that inbound calls started failing – it seems the SIP registration was going stale, and inbound SIP calls disappeared into the ether. They wouldn’t work until you kicked an outgoing call off to re-register, open whatever ports on the firewall etc, until they closed again, and nobody would ring you!

This is where things got desperate – eir in all their wisdom, don’t use standard SIP ports, so unfortunately Sophos XG’s SIP awareness was kicked into blindness. And it’s SIP awareness is not configurable. D’oh, why oh why eir, why oh why!

OK, so after some digging, (there’s not much out there in googleland, other than a few helpful pointers on Reddit and boards.ie) and some tcpdumps to see what was going on on my firewall, it seems that i needed to create some inbound NAT translations to the external IP (the WAN address) of my supplied Huawei router. Here’s what i did.

  1. Give the WAN address a static IP, maintaining the eir DNS servers (otherwise nothing works!) – also remember to disable the VLAN ID, as this is only required when connected directly to the FTTH box installed at your home.
  2. DNS Servers for eir are: 159.134.0.1 and 159.134.0.2
  3. Configure gateway etc as you require at your house.
  4. In Sophos XG, create a new firewall ‘business application rule’ using the template ‘DNAT/Full Nat/Load Balancing’
  5. Name it to your demanding standard naming convention – i chose ‘Allow SIP from eir to Internal’ – imaginative i know! Create this rule at the top of your ruleset.
  6. Source: WAN; Allowed Client Networks: Any
  7. Destination host/network: Select your Wan Port; Services: Eir_Sip (Detail below – create your own custom service)
  8. Forward To Protected Server(s): Create a host entry with your Huawei Wan address (you configured a static IP for this earlier in step 1); Protected Zone: LAN
  9. Leave all else as default, you can choose to enable logging for this rule if required. Save!!.

Services Custom Definition:

I created a custom definition for the service, it’s created as follows:

Name: Eir_SIP

Type: TCP/UDP

Protocol        Source Port       Destination Port

TCP                1:65535              6050

UDP                1:65535              6050

TCP                1:65535              10000:10100

UDP                1:65535              1000:10100

 

Credit for this goes to boards.ie user cnocbui at this post:

https://www.boards.ie/vbulletin/showpost.php?p=110875525&postcount=9622

So far, so good. It’ s been reliable for the last 24 hours and anyone can ring me now 🙂 Though they probably won’t, they have my mobile number anyway !!

Hope this post helps anyone out there, let me know if it has!
Liam.

Posted in FTTH | 4 Comments

Dell Clearpass Upgrade process

I recently had the pleasure (?) of upgrading a couple of Dell clearpass CP-5K-HW appliances in my network wireless lab, and i came across a few anomalies.

The version 6.2.2 which came out of the box on the hardware refused regardless of any coaxing on the system to download any update list from the clearpass.dell-pcw.com website.

I bit the bullet, and downloaded the 6.2 update 6 patch (~560 MB) and manually imported this to the system, followed by installig the patch.

Low and behold, once the system had come back up, it was able to refresh the updates and patches list so i could directly install from the software updates menu.

Just thought i’d share 🙂

Hope this has been useful for someone.

Posted in Uncategorized | Leave a comment

Do you run a network at home? How do you know what’s going on in it?

For a long time I’ve had multiple devices running on my network – e.g. a couple of switches, a firewall, wlan controller and a number of machines / laptops / toys!

I recently had something of a bandwidth hog, that was uploading 5-6GB of data daily, and I couldn’t figure it out.

My firewall is an open source highly adept and flexible solution from PFSense. Running freebsd as it’s underlying OS, there’s nothing I’ve thrown at it that it hasn’t been able to handle.

From dual wan links to content filtering, it’s all there as an option. However one feature I’ve been frustrated at is reporting on bandwidth usage – just what is eating away at my bandwidth. I found a ‘pflowd’ plugin for pfsense, which is essentially a netflow plugin, allowing the pfsense firewall to output flows to a netflow server.

But what to output to? There’s a lot of ‘free netflow’ receiver software out there (solarwinds etc) but one I found fits the bill very nicely. Paessler offers a free 10 sensor license for it’s PRTG network management suite. I’ve used this to great success, and it shows me my netflow from PFSense in a clear and concise way, just what i was looking for. As a bonus, you also get status alerts for interfaces and more!

I’d suggest if you’re like me (a bit of a geek / nerd) that you check it out. I highly recommend it!

www.paessler.com

 

Posted in Uncategorized | Leave a comment

New Job!

Long time no chat.

Since my last post almost three years ago (where does time fly) I have been very busy in my role in Dell. However just over a month ago, I was successful in my application for a promotion.

I’m now a Design Engineer for Dell, architecting (is that a word?) new solutions for the corporate networks within Dell worldwide.

It’s an exciting opportunity, and I’m exhausted already!!

Posted in Uncategorized | Leave a comment

New job!

It’s been a while since I’ve been blogging, but most of that is because I have been busy in my new Job working in Dublin for Dell Computers as a senior network advisor for the EMEA Network Backbone Engineering team!
So far I’ve been enjoying the challenge!

Liam

Posted in Uncategorized | Leave a comment

Renault Megane II Electric Window Headaches

Okay, it’s not quite networking, but let’s get distracted for a bit!

So my wife has an ’05 renault megane, and I have had the headache of trying to keep up with the regular failing of the windows due to the complete lack of waterproofing by Renault, and crap electrics!

I had tried the only solution (besides paying up to €300 for a new unit) that was available on the internet (that I could find), and it was a pretty valid one, and did work. That was to open the individual window control units and replace a capacitor on the circuit board which would get water damaged by the water ingress. So this does work, is a lot of effort, and doesn’t last long as the water still damages the circuits after you put it all back together.

So I sat down with an electronic engineer buddy of mine and discussed the problem, and we felt the control unit could be replaced with something simple and cheap.

And we were right!!

He came up with a very simple design that uses two 40A automotive relays to control the window motor, removing the control unit altogether!

I have now replaced two of the control units to the motors in the car, and so far so good. The windows go up, and they go down. WooHoo!

The only downside is that we’ve lost some features of the windows, like the one-click open/close function, and the safety feature that prevents getting your hand or head stuck in the window (it used to stop automatically when there was resistance to the window closing). Also because the buttons on the doors have a ‘two-step’ function, only the first step works now.

But it works!

So here you all go folks, here’s the circuit diagram for your perusal.

Enjoy! Oh, and if you like it, then leave a message!

Liam

Megane Window Control Unit Circuit Diagram

Posted in Renault Megane Electric Windows | Leave a comment

Reading Microsoft IAS (Radius) Log files

I’ve battled long and hard with Microsoft IAS log files and coming from a Cisco perspective, they’re simply unreadable compared to Cisco’s ACS Server logs. This makes debugging login problems with e.g. Wireless LAN 802.1x authentication almost impossible.

However I came across a useful utility available from Microsoft’s Technet site called ‘Iasparse’ which will take the comma-seperated logs and present them as something readable. To that end I created a simple wrapper that would make reading in log files and outputting the results somewhat easier, and so here it is!

You are free to take it and modify it, all I ask is that you send me a copy of your alterations,  and that you don’t remove my name from the header!

To run the wrapper, simply create two folders, e.g. c:\iasparse for the executables, wrapper and raw log file, and an output folder, e.g. c:\logdump for the formatted logs. Then all you need to do is run the wrapper, and follow the on-screen instructions.

Enjoy,

Liam

IASParse

Posted in AAA Authentication | Leave a comment

Asterisk and Chan-SCCP Installation

I’ve worked a little on Asterisk and have a bit of interest on getting Chan-SCCP working so a Cisco 79XX series IP phone will run natively with it as a very cost affective VoIP Pbx.

I’ve put together a small howto on the initial configuration steps that are recommended (primarily for myself so I don’t have to re-learn it the next time I build one!) for both security and the inclusion (compiling) of the current release of Chan-SCCP (which is at V3-RC3 as I write).

Attached is the Howto and some sample configuration files for Asterisk.

Asterisk Trixbox Initial Configuation, Security and Chan_SCCP

sccp samples

Posted in Asterisk VoIP | Leave a comment