Browsed by
Category: Recent Projects

A Map of Everywhere

A Map of Everywhere

Ok, the title isn’t entirely true. However, when Johnny sings the song, I’ve been everywhere, he is talking about 91 locations (including Winnemucca). One of my favorite sites, http://www.johnnycashhasbeeneverywhere.com/ puts the whole song onto a map, but what about us GIS fans that want to manipulate that data? Well that’s where I come in. I’ve taken all the locations and put them into a KML, CSV and SHP file. That way you can now use it in something than Google Maps. The files offer no real practical use, but whatever.

 

Calix Success Story

Calix Success Story

On the 8th, Calix flew out three people to Sandy to interview employees and customers about our fiber network. I finished my organizational behavior presentation by 10am and arrived in Sandy at 12. I was interviewed for 30 minutes about how I have utilized the northbound interfaces on different Calix software’s. No more than two weeks later, Calix released the video online, so I have embedded it here. Granted, I only appear for 30 seconds and ramble on about our Fiber Management System, but I am hoping that with other recent events I will be able to move forward a bit more, link my name OSS fiber management solutions.

Calix 844-G Gigacenter CLI Command List

Calix 844-G Gigacenter CLI Command List

I have continued to update this page every time find more information regarding a command. A lot of these commands are explained here.

? – Displays help list
help – Displays help list
logout – closes connection
exit – closes connection
quit – closes connection
reboot – soft reboot on ONT
brctl – bridge related commands
cat – cat file
virtualserver
ddns
df – prints filesystem usage statistics
loglevel – set or view current logging level for appnames
logdest
dumpcfg – dumps the contents of the config flash to screen
dumpmdm – dumps entire contents of the MDM
dumpeid – request smd to dump its Entity Info database
mdm
meminfo – dumps memory stats
psp
kill – kills a process
dumpsysinfo – dumps all system information to screen
exitOnIdle – allows user to terminate the session after being idle for n seconds
dnsproxy
syslog – syslog related commands
echo – seriously, you should know this
ifconfig – shows the interface configurations
ping – unleashes little robots that contact other things
ps – lists currently running processes
pwd – prints the working directory
sntp – secure network time protocol
sysinfo – provides brief ONT system information
tftp – trivial file transfer protocol commands
voice – used for voice related service
dect
wlctl
showOmciStats
laser
omci
omcipm
dumpOmciVoice
dumpOmciEnet
dumpOmciGem
arp – address resolution protocol commands
defaultgateway – default gateway related commands
dhcpserver – dynamic host configuration protocol related commands
dns – domain name resolution related commands
lan – commands relating to the LAN interface(s)
lanhosts – lists current LAN devices
passwd – changes the current password
ppp – access to point to point protocol commands
restoredefault – performs factory reset on ONT
route – commands related to L3 routing
save – save the configuration
swversion – prints the current software version
uptime – displays the ONT uptime
cfgupdate
swupdate
wan – commands related to the WAN interface
mcpctl
sys
calixdebug – dumps calix related information
calixfile – commands related to the calix files

 

Commands Expanded


brctl

addbr <bridge> add bridge
delbr <bridge> delete bridge
addif <bridge> <device> add interface to bridge
delif <bridge> <device> delete interface from bridge
setageing <bridge> <time> set ageing time
setbridgeprio <bridge> <prio> set bridge priority
setfd <bridge> <time> set bridge forward delay
sethello <bridge> <time> set hello time
setmaxage <bridge> <time> set max message age
setpathcost <bridge> <port> <cost> set path cost
setportprio <bridge> <port> <prio> set port priority
enableportsnooping <bridge> <value> 0-disable 1-standard 2-blocking
enableproxymode <bridge> <value> To enable 1 or disable 0
show show a list of bridges
showmacs <bridge> show a list of mac addrs
addmacs <bridge> <ifname> <mac> add mac addresses to the bridge table
delmacs <bridge> <ifname> <mac> remove mac addresses from the bridge table
deldynmacs <bridge> <ifname> remove all dynamic mac address from the bridge table
showstp <bridge> show bridge stp info
stp <bridge> {on|off} turn stp on/off
mldenableportsnooping <bridge> <value> 0-disable 1-standard 2-blocking
mldenableproxymode <bridge> <value> To enable 1 or disable 0
enableigmplan2lan <bridge> <value> 0-disable 1-enable
enablemldlan2lan <bridge> <value> 0-disable 1-enable
flows <bridge> <rxif> <txif> To setup layer 2 flows to the path (rxif->txif)
enableigmpratelimit <bridge> <value> 0-disable, 1..500-packet rate
eponuniunictrl <bridge> <value> 0-disable 1-enable
showmaclmt <bridge> show a mac limit of bridge

df

 -P POSIX output format
 -k 1024-byte blocks (default)
 -a Show all filesystems
 -i Inodes
 -B SIZE Blocksize

loglevel

Usage: loglevel get appname
       loglevel set appname loglevel
where appname is one of: httpd, tr69c, smd, ssk, telnetd, sshd, consoled, upnp, dnsproxy, , mcpd, vodsl, dectd, wlmngr, linmosd
loglevel is one of "Error", "Notice", or "Debug" (use these exact strings).

logdest

Usage: logdest get appname
       logdest set appname logdest
where appname is one of: httpd, tr69c, smd, ssk, telnetd, sshd, consoled, upnp, dnsproxy, linmosd
loglevel is "Standard Error", "Syslog" or "Telnet".

mdm

Usage: mdm setpv <full path to parameter value> <param value>
       mdm getpv <full path to parameter value>
       mdm addobj <full path to object>
       mdm delobj <full path to object instance>
       mdm setnonpersistent <full path to object instance>
more subcommands will be added later.

meminfo

Usage: meminfo [app name] [operation]
 App name can be httpd, tr69c, or ssk. If app name is omitted, then the operation is done for CLI app.
 operation is one of stats, traceAll, trace50, traceClones. If operation is omitted, then stats.
Examples:
 meminfo : dumps the memory stats as seen by the CLI app. Same as meminfo self stats.
 meminfo ssk : send a message to ssk to tell it to dump its memory stats. Same as meminfo ssk stats.
 meminfo httpd trace50 : send a message to httpd to tell it to dump last 50 leak tracing records
 meminfo traceClones : tell this CLI app to dump leak trace records with 5 or more clones.

psp – I don’t know what this command does

Usage: psp list
       psp dump xxx
       psp delete xxx
       psp clearall
       psp help

tftp

Usage: tftp [OPTIONS] HOST [PORT]
Transfer a file from/to tftp server
Options:
 -l FILE Local FILE
 -r FILE Remote FILE
 -g Get file
 -p Put file
 -g -t i -f filename server_ip Get (flash) broadcom or whole image to modem
 -g -t c -f filename server_ip Get (flash) config file to modem
 -p -t f -f filename server_ip Put (backup) config file to tftpd server

voice

voice --help - show the voice command syntax
voice show - show the voice parameters
voice show stats - show call statistics
voice show cctkmemstats - shows memory allocation statistics
voice show cctkcmstats - shows Call Manager & CCTK statistics
voice start - start the voice application
voice sendUpldComplete - send the upload complete message to ssk
voice stop - stop the voice application
voice save - store voice params to flash
voice reboot - restart the voice application
voice set <param> <arg1> <arg2>.. - set a provisionable parameter
List of voice set params and args:
defaults <None> - Default VoIP setup
boundIfname <LAN|Any_WAN|(WAN IfName, e.g. nas_0_0_35)> - vodsl network interface
ipAddrFamily <IPv4|IPv6> - IP address family
pstnDialPlan <pstn line#> <dialPlan> - PSTN dial plan
pstnRouteRule <pstn line#> <Auto|Voip|Line> - PSTN Route rule
pstnRouteData <pstn line#> <line #|URL for VOIP> - PSTN Route data
locale <srvPrv#> <region> - 2 or 3 character code
DTMFMethod <srvPrv#> <InBand|RFC2833|SIPInfo> - DTMF digit passing method
hookFlashMethod <srvPrv#> <SIPInfo|None> - Hook flash method
transport <srvPrv#> <UDP|TCP|TLS> - transport protocol
srtpOption <srvPrv#> <Mandatory|Optional|Disabled> - SRTP usage option
regRetryInt <srvPrv#> <seconds> - SIP register retry interval
regExpires <srvPrv#> <seconds> - Register expires hdr val
rtpDSCPMark <srvPrv#> <mark> - RTP outgoing DSCP mark
logServer <srvPrv#> <hostName|IP> - Log server
logPort <srvPrv#> <port> - Log server port
digitMap <srvPrv#> <digitmap> - dial digit map
T38 <srvPrv#> on|off - enable/disable T38
V18 <srvPrv#> on|off - enable/disable V.18 detection
reg <srvPrv#> <hostName|IP> - SIP registrar server
regPort <srvPrv#> <port> - SIP registrar server port
proxy <srvPrv#> <hostName|IP> - SIP proxy server
proxyPort <srvPrv#> <port> - SIP proxy server port
obProx <srvPrv#> <hostName|IP> - SIP outbound proxy
obProxPort <srvPrv#> <port> - SIP outbound proxy port
sipDomain <srvPrv#> <CPE_domainName> - SIP user agent domain
sipPort <srvPrv#> <port> - SIP user agent port
sipDSCPMark <srvPrv#> <mark> - SIP outgoing DSCP mark
musicServer <srvPrv#> <hostName|IP> - SIP music server
musicSrvPort <srvPrv#> <port> - SIP music server port
confURI <srvPrv#> <hostName> - SIP conferencing URI
confOption <srvPrv#> <Local|Refer participants|Refer server> - SIP conferencing option
tagMatching <srvPrv#> <on|off> - SIP to tag matching
timerB <srvPrv#> <time in ms> - SIP protocol B timer
timerF <srvPrv#> <time in ms> - SIP protocol F timer
lineStatus <srvPrv#> <accnt#> <on|off> - Activate line
physEndpt <srvPrv#> <accnt#> <id> - Phys Endpt
extension <srvPrv#> <accnt#> <URI> - SIP extension
dispName <srvPrv#> <accnt#> <Name> - SIP Display Name
authName <srvPrv#> <accnt#> <name> - SIP auth name
authPwd <srvPrv#> <accnt#> <pwd> - SIP auth password
MWIEnable <srvPrv#> <accnt#> <on|off> - Msg Waiting Indication
cfwdNum <srvPrv#> <accnt#> <number> - call forward number
cfwdAll <srvPrv#> <accnt#> <on|off> - call forward all
cfwdNoAns <srvPrv#> <accnt#> <on|off> - call forward no answer
cfwdBusy <srvPrv#> <accnt#> <on|off> - call forward busy
callWait <srvPrv#> <accnt#> <on|off> - call waiting
anonBlck <srvPrv#> <accnt#> <on|off> - Anonymous call rcv blcking
anonCall <srvPrv#> <accnt#> <on|off> - Anonymous outgng calls
DND <srvPrv#> <accnt#> <on|off> - do not disturb
CCBS <srvPrv#> <accnt#> <on|off> - Call completion on busy
speedDial <srvPrv#> <accnt#> <on|off> - Speed dial
warmLine <srvPrv#> <accnt#> <on|off> - Warm line
warmLineNum <srvPrv#> <accnt#> <number> - Warm line number
callBarring <srvPrv#> <accnt#> <on|off> - Call barring
callBarrPin <srvPrv#> <accnt#> <number> - Call barring pin
callBarrDigMap <srvPrv#> <accnt#> <digitmap> - Call barring digit map
netPrivacy <srvPrv#> <accnt#> <on|off> - Network privacy
vmwi <srvPrv#> <accnt#> <on|off> - Visual message waiting indication
vad <srvPrv#> <accnt#> <on|off> - enable vad
pTime <srvPrv#> <accnt#> <pTime> - packetization period
codecList <srvPrv#> <accnt#> <codec(1)[,codec(2)]> - codec priority list
rxGain <srvPrv#> <accnt#> <rxGain> - rxGain (dB)
txGain <srvPrv#> <accnt#> <txGain> - txGain (dB)
cctktracelvl <Info|Warn|Debug|Off> - CCTK tracelevel ( stop/start reqd)
cctktracegrp <CCTK|SCE|Trans|SDP|SIP|Misc|All|None> - CCTK concat tracegroups( stop/start reqd)
mgtProt <TR69|OMCI> - Protocol used to manage Voice
loglevel <general|cmgr|dispatch|sipcctk> <Error|Notice|Debug> - Vodsl module-specific log level

dect

dect get <ac|mode|prom|linesetting|systemsetting|contactlist> [value] ...
dect set <ac|mode|prom|default> [value] ...
dect add <contact|call|handset> [value] ...
dect del <contact|call> [value] ...
dect hs <reg|ping|del|info> [value] ...
dect test <synctime|vmwi> [value] ...
dect start
dect stop
dect save
dect help [cmd]
dect info

wlctl

There is a lot of commands for wlctl. Use this for reference.

laser

laser param --load [<filename>]
laser param --dump default | current
laser power
laser power --rxinit <initial rx reading> <rx offset>
laser power --txinit
laser power --rxread
laser power --txread
laser txbias --read
laser temperature --read
laser voltage --read

wan

wan add interface <atm|ptm|eth>
wan add service <interfacename> --protocol <bridge|ipoe|pppoe|ipoa|pppoa>
wan delete interface atm <port.vpi.vci>
wan delete interface ptm <port> --priority <normal|high|both>
wan delete interface eth <ethx>
wan delete service L3IfName
wan show interface
wan show [<port.vpi.vci>]
wan --help <bridge|pppoe|pppoa|ipoe|ipoa>

mcpctl

objinfo -Display mcpd object tree information.
meminfo -Display mcpd object memory usage information.
mcgrpmode -Set Multicast Group rules for categorizing ASM vs SSM. (iana|firstin)
configinfo -Display mcpd configuration.
reload -Reload mcpd configuration.
allinfo -Display all information

sys

Usage: sys <gphytest|usbtest|usbchk|btt|ledctl|atsh|atwz|atqz|atsn|atgs|atgp|atmg|atsw|gpio|atbd|atrg|athp|atmi|atei|atri|ups> [sys command option]
            sys show
            sys help
  •  gphytest – More info here
    • tests LAN status I guess?
  • usbtest
    • tests the USB port status
  • usbchk
    • Shows the status of the USB port
  • btt
    • Controls a button status, but I am not sure if it is reset or WPS
  • ledctl – This is a fun one
    • AG – Turns on all green LED’s
    • AF – Turns on all red LED’s
    • B1 – Blinks all green LED’s at 1Hz
    • B2 – Blinks all green LED’s at 2Hz
    • B4 – Blinks all green LED’s at 4Hz
    • B8 – Blinks all green LED’s at 8Hz
    • BF – Blinks all green LED’s at 16Hz
    • ALL – Turns on all controlled LED’s
    • AO – Turns off all controlled LED’s
    • AA – Turns on all amber LED’s
    • BR1- Blinks all red LED’s at 1Hz
    • BR2 Blinks all red LED’s at 2Hz
    • BR4 – Blinks all red LED’s at 4Hz
    • BR8 – Blinks all red LED’s at 8Hz
    • BR16 – Blinks all red LED’s at 16Hz
    • BA1- Blinks all amber LED’s at 1Hz
    • BA2 Blinks all amber LED’s at 2Hz
    • BA4 – Blinks all amber LED’s at 4Hz
    • BA8 – Blinks all amber LED’s at 8Hz
    • BA16 – Blinks all amber LED’s at 16Hz
    • WpsInpro – Blinks the WPS LED
    • WpsOverLap – Pulsates the WPS LED
    • WpsError – Blinks the WPS LED red
    • WpsInPro_IPTV Blinkes the WPS LED amber
  • atsh
    • Displays information about the ONT unit
  • atwz
    • Shows the ONT MAC
  • atqz
    • Shows all the ONT MAC addresses
  • atsn
    • Shows the ONT serial number
  • atgs
    • Show the ONT GPON serial number
  • atgp
    • Shows the ONT GPON password
  • atmg
    • Show the ONT manufacturer information
  • atsw
    • Dunno, it breaks the session
  • gpio
    • Dunno, not a very good help prompt
  • atbd
    • Turns on or off the battery signal detection
  • atrg
    • Show the ONT region code
  • athp
    • Show the ONT part nubmer
  • atmi
    • Show the ONT module number
  • atei
    • Show the ONT CLEI code
  • atri
    • Show the ONT remote inventory version
  • ups
    • Show the ONT battery status

calixfile

This command allows the user to perform basic file maintenance operations on the Calix generated persistent debug files stored on the 800SG series ONTs
Usage: calixfile <target>:[action]
       target [ help | all | port | global | panic | diag |logs ]
       action [ trim | delete | ls | dump ]
       example: calixfile port:ls logs:ls
        help or ? outputs this help screen
        all, port, global, panic, diag, logs are types of persistent data stored in the FLASH memory on the unit. At least one of these targets is required. Entering the command: calixfile without a target outputs this help screen
       actions:
               trim - clears the current contents of the file
               delete - removes the file from the FLASH, some files are not removable and will be resized to 0 bytes instead.
               ls - performs the linux ls -l command for a given type of file
               dump - outputs the contents of the specified target type files

Commands are executed from right to left on the command line

 

 

Hoodland Library Transition

Hoodland Library Transition

Last month, SandyNet had to get Internet connectivity from the old Hoodland library, across the street, to the new one. Part of the switch required a new line to be drug from our splice case on Welches road to the new library. Northsky got an OFS 24 pair (I think?) to the site, but left it coiled up outside. So, the team and I performed the first ever SandyNet aerial splice.

In addition, Chris and I did a tower climb a week or so later and drug 16 Ethernet cables up our Waybill tower. From there, we performed a few rescue training exercises, and called it a day.

download_20150808_101722

It has been a while since my last post, and a lot has happened since then. I have spent a lot of time writing a piece of software and customer, record, helpdesk management system.

Introducing Speedtest Stats!

Introducing Speedtest Stats!

Within the past couple of months, we set up a speedtest server, that our customers, and everyone else can test to, to see how fast their internet is to Sandy, OR. All tests and accessible information is stored on OOKLA’s reporting site, and can be downloaded in a CSV format. What we wanted to do is graph this data. Instead of using an MS product like Excel to graph data, and updating records and adding new tests to an existing table, I thought I would make a PHP/MYSQL driven site to graph statistics. The project was fun, and when I was done, I waned it to be publicly accessible and usable. For that reason, I got approval from my boss to place the project on GitHub.

https://github.com/dot1q/speedtest-stats

Version 0.1.1 is out, and it will probably stay that way. I figured, maybe someone else out there wants to be able to graph their speedtest data. Maybe. We have over 15,000 tests in the past couple of months, making a sql driven approach mighty attractive. Take a look at the screenshots below to see what it all does!

speedtest-frontpage speedtest-cityofsandy

 

Now, I have never really polished a project, and this is the closest I have ever been to one. It gets the job done, and take a little bit of configuration, but it does work, and people can download it and modify it to their liking.

The Xen Struggle is Real

The Xen Struggle is Real

I woke up at 6am this morning to a phone call from my boss. Barely awake, I answered in a very tired voice, “Hello.” His response was “The Xen environment is down.” I mean, it is read only Friday, this isn’t suppose to happen. Now, our environment is pretty small, but it runs all of our critical services, DNS, DHCP, AD, Monitoring, File storage. I had my boss ssh into the box and see if there were any zombie processes. Sure enough, there were. Now, before, we had processes become zombies when our log files filled up the  log partition and made everything choke. Now this was on XenServer 5.6 and things are different now. I was able to assign myself a static IP from my room and get into XenCenter, to find all of our hosts in maintenance mode. This would explain the zombie processes and the reason no VM’s were on the hosts. I attempted to bring each one out of maintenance mode, but received an error (see below).

maint-mode-error

I got into console of the master, and ran xe pool-ha-disable and boom, I was able to spin up all of our VM’s. Once we restored service to the city, I attempted to think about what caused this issue. Obviously it was related to HA, but why would that cause all of our VM’s to stop running. Part of the solution was found in the alerts section of XenCenter.

xencenter-errors

 

After cycling through each host, HA ran out of working hosts to break, so it just killed all of our VM’s and placed all of the servers into maintenance mode. Since I as still really tired, and wanted to get some sleep before my classes, I told my boss to open a case with Citrix, and have them dig through the logs. I went back to bed.

Turns out our NIC drivers were out of date, and it caused instability within our hosts. The resolution was to install the some updated drivers from XenServer 6.2. It would seem that the upgrade to 6.5 wiped the already updated drivers, and they needed to be re-installed. Woot! Same, day I made my drive back up to Sandy, and did a late night BIOS upgrades of our IBM and Dell hosts, and installed updated Broadcom and Intel NIC drivers. I followed the guide from a Citrix support page to upgrade them. The upgrade took no time at all, but the migration of VM’s over a 1Gbps connection was more than slow. After rebooting each host, the applied drivers should resolve our issue. This upgrade was performed on 4/3/15 and we have not had any reported issues yet.

We still have a case open with Citrix though, and we have not re-enabled HA just yet. I am waiting to find time to call and chat with them. According my boss, if call back in, they can assist and help get HA configured, tested and stabilized. I’ll update this post when that is completed, and show the results and process.

In addition, I made a post over at /r/citrix regarding my frustrations. The responses didn’t quite yield the response I was looking for, but were none the less interesting.

 

Migrating from IE9 to IE11

Migrating from IE9 to IE11

Now, I have put off this task for a long time. IE9 is old and crappy. I remember when it came out in 2011, and promised speeds as fast as Firefox 3.6… Well it turns out, every federal or state law enforcement site requires its users to use IE8. Custom active x applets and other junk that they use to ‘secure’ data, is so custom that it is only compatible with specific version of IE, which is not secure. The fact that I have to use an old, non supported version of IE to ‘securely’ which is incredibly stupid. Diverting from Law Enforcement, other sites that are not standardized require the use of IE9 in compatibility mode just to display data correctly (I am looking at you Granicus).

IE9

Now, the form of this post is step by step instructions of what I have done. As you read through it, I may make a change, and then end up reverting it, because it sucked. Do not follow this a guide, but rather use it as documentation. I will most likely provide some form of process once I finish the migration.

3/11/15 – I decided to actually start preparing for the migration. For the longest time our WSUS server has denied the deployment of IE10 and IE11.

3/12/15 – Microsoft announced that an update, KB3033929 causes boot loops in Windows 7. This scares me, since I thought the installation of IE11 caused issues.

3/17/15 – It seems that Microsoft has been releasing a bunch of updates lately, and there is a huge bundle of them that need to be installed. IE11 has currently caused no problems, and is slowly being installed on other computers. Let’s continue to hope, as things move along smoothly. We have only had a few cases of our servers logging in with this error. It seems to have been resolved by updating the remaining updates for IE11 after the initial install.

3/22/15 – According to Lansweeper, most of our computers have been upgraded to IE11, and we haven’t had any issues so far. Fingers crossed that it won’t cause any more issues.

IE11

IE11-about
As of 3/22/15 it looks like there are no current issues. Either law enforcement and states sites are being updated, or IE is working better or compatibility modes is working well enough. It was decided that if a site has issues with IE11, we will set users up with a XenApp subscription where they can use a remote app for IE9. With this setup, we hope we can keep IE up to date and secure, while still allow access to any site.

XenServer upgrade from 6.2 to 6.5

XenServer upgrade from 6.2 to 6.5

XenServer 6.5 debuted in January of 2015, and naturally I wanted to a little before upgrading to a new major release in our production environment. That time came on March 21st, 2015. I scheduled to perform a pool upgrade to 6.5 after hours. This post will consist of the upgrade process, any issues that arose and the result and thoughts about the new version of XenServer. Release notes for XenServer can be found here. 

Prepping for the upgrade – I learned the hard way when doing  a rolling pool upgrade from 6.02 to 6.1, Always read the documentation before upgrading. I logged into Citrix and overlooked the upgrade process for XenServer 6.5 under the XenServer Installation Guide. I performed the database backup and offloaded it through SFTP. Then I downloaded XenServer 6.5 and uploaded the extracted files to an FTP site. After doing a few small housekeeping tasks (shutting down non critical VM’s), I was ready to begin the upgrade

Attempt 1 – I first tried to do an automatic rolling pool upgrade via FTP. After applying one last hotfix, I began to start the pool upgrade. The master rebooted, and said it was installing. After about 20 minutes an error came up that it had failed. Instead of trying to troubleshoot it, I burned XenServer to a CD and began the upgrade again only this time, in manual mode.

Attempt 2 – This process is a little longer, but I feel more confident upgrading via CD rather than an FTP site, which after beginning the upgrade process, realized that my FTP site was on a virtual machine hosted by the Xen hosts. Shouldn’t have really mattered, but still not super settling. The master took the upgrade no problem, and I then began on the other two hosts. As I waited for machines to migrate, I spent a large amount of the time listening to music and surfing reddit. Each Xen hosts upgraded, and there were no other problems.

My thoughts on why the pool failed to update automatically, was that I didn’t point the Xen Installer to the proper FTP directory. Either way, the manual upgrade worked flawlessly, it just took a bit more time and I expected.

notifications

The only thing that annoyed me was the amount of alerts and notifications that showed up.

I started the upgrade at 11pm, and finished up around 2:30am. It was by far that easiest XenServer upgrade I ever performed, and I am hoping that we will see noticeable performance increase in performance. Having a x64 Dom should be nice, and updated templates will allow us to begin upgrading our Ubuntu servers to 14.04 LTS.

Although, I don’t know if anything is really broken. Our monitoring systems are having no issues, but we’ll see on Monday if users have any issues.

xenserver

Customer Configuration of Calix 844 GigaCenter’s

Customer Configuration of Calix 844 GigaCenter’s

We have been deploying Calix 844’s for the past few months at SandyNet, and we have had almost no issues, and have received almost no complaint regarding the units. Calix did a great job designing these units, and in my personal opinion, they are a large step up from the 836g units. Receiving them almost hot off the production line, we quickly rushed these things to deployment, and I will admit, I think they are one of the big reasons our fiber deployment has been so successful so far.  From a customer standpoint, they need basic services such as reliable fast internet, dual band WiFi and an easy to use UI. The GigaCenter combines all of those main features, and more into one slick looking box. We can even remote manage these boxes so if a customer does not know how to change their SSID, or security key, we can now do it from the comfort of our office(through consumer connect), instead of making a house call for a five minute fix. So far, we have been extremely satisfied with these ONT’s, since they simply work. Time and time again, at SandyNet, we have acquired different devices in hope of finding a solution that simply works. We did not find it in Ubiquiti, Ruckus, Proxim, Mikrotik, etc. Mixing and matching these pieces of hardware in a production environment can sometimes result in a lot of problems (Like trunking between Mikrotik and Cisco). Building a stand alone Calix system from the ground up, has been an overwhelmingly pleasant experience. Okay, I will admit, it was rough until we understood the system and how to configure it, but once we got our bearings, it was pretty smooth sailing. Some minor issues were firmware bugs that were quickly resolved. And we mean quickly. We’re not talking about firmware upgrades that take six months and are more detrimental than useful, *cough* UBNT. Simple problems with memory leaks or incompatibility with 844’s and some new Macintosh’s were resolved in a very reasonable time.  Firmware upgrades are a breeze, and overall, having such a great ONT has already saved up so much time, and has allowed us to focus on other projects and problems such as continuing the deployment of our fiber network.

From a technician standpoint at SandyNet, the provisioning of an ONT is very easy. We pull the unit off the shelf in the morning, and input the FSAN into CMS and record it in our database, and send the unit out with our installer to be placed in a customers home. Once installed, the ONT upgrades its firmware, reboots and then applies its configuration. That is all there is to it. The customer is now online. One unit contains Ethernet, WiFi, RJ-11 ports and modem into one box. Customers no longer need to purchase a wireless router, and most of our deployments contain only an 844. The simplicity of the device makes it mighty attractive to our customers and us, since it is less complicated for the customer, and it is all squeezed into one device that we can manage easily. Most of our customers do not know how to change their WiFi options, or what the best practices are, so they often call in after being installed, requesting us to help configure the device. Other customers have enough background knowledge to login locally and change their options. Either way, the setup mo-betta than our previous infrastructure.

Now, all I have done is praise Calix for these units. That is not all I intend to do. Some customers have searched for help in configuring their ONT 844’s, and that is what is next.

Configuration of the 844-

Our installers should be placing a sticker on the ONT that lists the factory default settings for the modem. It should include the SSID and Key to connect to the WiFi, and the default IP for the web interface on the device. Below that, there is a username/password that is the default login info for the device. Before customizing your modem, complete the following.

Connect the computer you are using to configure the modem to one of the Ethernet ports on the ONT. If you are changing WiFi settings over WiFi, you’re gonna have a bad time. Once you are connected through a patch cable, you may open up your favorite browser and navigate to the gateway IP (Generally 192.168.1.1) and input the username and password (Username: admin, Password: *checkthesticker*). You should be greeted with a friendly looking page like below.

calix-homepage

 

From here, we have a few options:

Status – will show you information regarding the unit, and its many status including devices, configurations of WiFi and any associated devices.

Quick Start – is a simple configuration wizard that helps customers quickly configure their ONT.

Wireless – provides all options for configuring any WiFi related feature.

Utilities – provides troubleshooting programs to help determine possible problems, or view log information

Advanced – holds all of the less common options for ONTs including port forwarding, QoS, Routing and Network options

Support – provides details when receiving help from a SandyNet technician

Most of the configuration will simply be done under the Wireless tab, since everything else is pre-configured, or not commonly changed.

calix-wireless

Under the Wireless tab, there are four side menu buttons, 2.4G Network, 5G Network, Advanced Radio Setup and WPS. For the sake of making this simple, we are only going to operate within the 2.4 and 5 G Network buttons.

Note: 2.4G is currently the most common frequency for WiFi, so this radio should probably be used. 5G is standard on all devices within the past couple of years, and can be enabled if your devices support it.

First, lets make sure we have the 2.4 radio turned on. It is on by default, but select the Radio Setup button under the 2.4G Network button the left hand side. make sure the Wireless radio is set to on and now off. Hit apply after you have made your change.

calix-wireless-radio

Next, lets give our 2.4GHz network a good name. Select the SSID Setup tab and select the SSID that is named CXNKXXXXXXXX and make sure it is enabled. Now you get to be creative (or not so creative) and change the name of your wireless network. A lot of our customers want to keep their previous WiFi configuration, so if you wish to do so, fill out the Rename SSID box with your previous wireless network name (It is case sensitive). If not, come up with a good identifier for your WiFi, and no, FBI-surveillance-van-3 is not a good name, since everyone seems to set their WiFi to that.

calix-wifi-settings

 

Hit apply and lets move onto security.

Under the security button, you will need to now select your newly renamed SSID from the dropdown menu labeled SSID (Network Name). Now we get to select the security type.

The following options are available:

WPA-WPA2-Personal – Combines both encryption methods of WPA and WPA2 for maximum compatibility of devices. This will except the passphrase in both encryption levels, making is less secure than WPA2, but most function for all devices.

WPA2-Personal – The strongest encryption method for WiFi at the time of this article. Any non-compatible WPA2 devices will be unable to connect, so make sure all of your devices are compatible.

WEP – Is extremely weak, and in my book is not an encryption. There is no algorithm, just a HEX code encrypting the data, making it extremely unsecured.

Security-Off – makes the network open for anyone to connect. There is no password.

Pick your desired security type and then move on to the encryption type. For WPA and WPA2, I recommend AES, since it is the best. For compatibility you may enable TKIP or both.

Now you can set your security key. If you wish to keep the ridiculously long default key, be my guest, but most people want to name it to their pet or something easily guessable. Hit the button Use Custom Security Key and type in your key. Hit Apply when you are done.

calix-wifi-security

 

Woot! you have configured your 2.4G network to be whatever you wanted! If you wish to enable the 5G network, do the same thing under the 5G button.

 

As you can see, the Calix GigaCenter UI is very easy to use, and pleasing to the eye. Configuration of WiFi is extremely simple, not to mention its super dooper range! 🙂 We are happy with these devices, and we believe customers are too. Like always if you have questions regarding me, my poor humor or how I became such an awesome person, email me at gbrewster@agoasite.com. But if you are a customer in need of help with WiFi, SandyNet or the City of Sandy contact them, not me at: support@sandynet.org or call 503-668-2923, and you might get me on the line!

Getac 4G Card Woes

Getac 4G Card Woes

We have had our Getac F110’s in production for about five months, and while we have not had issues with speed of the computer, we have had numerous reported issues of cell signal dropping and not being able to connect unless the tablet was rebooted. Often saying no device detected, or searching… Now, we are using Windows7, and when I first imaged them, they featured the Sierra AirCard watcher utility.

skylight

In September of 2014, Getac released SkyLight, which replaced the AirCard watcher, and did exactly the same thing. It even looked the same. This however, did not resolve our issue. On top of that, it made it harder for us to deploy new Getac’s, since it didn’t seem to activate newly install SIM cards. Well I am here to say that after a lot of frustration, I have found out why, and made it really easy to remedy.

On October 29th, 2014, Getac released a Jpeg called 4G module driver with the description – How to check 4G module Firmware. The image has been uploaded below.

WWAN check FW (1)

 

Note: When we imaged our machines we took all of the drivers from the Windows 7 driver disk that shipped with each Getac and push them onto the image. Most of our current devices were using factory drivers. At the time of imaging them, this was all that was available. Our cards were running firmware version 1.08.16.05. I didn’t see the problem, because when I first imaged the devices, I had no idea how to check the firmware, since there was only one package at the time. On top of that, we have since downloaded, and re-installed the newer driver to the devices. Note: Our Getacs are using the EM7355 cards.

Well after a lot of frustration, I found out what was going on. Even upon installing the newer driver, the firmware was still not updating. I would download and install the 05.05.16.00, and the firmware on Skylight would still show 1.08.16.05. Now, OK, Getac did document this… well sorta. On the download link, you will see the message (only for 4G module firmware version 05.05.16.00 for Skylight. See below:

skylight2

 

Ok, well now the firmware on my device still shows 1.08.16.05, and I need 05.05.16.00. How do I do that? I have downloaded it, and installed it, and it is not upgrading the card firmware. While Skylight does still operate while using card firmware 1.08.16.05, it does not work well… Here is how I found out how to upgrade the firmware.

Now, this may be an easier way to upgrade the firmware, but this is the only way I have figured it out so far. That is to remove the device and driver from the system and install the latest driver. Now, it is finals week, and it is late, and I should be studying, but I am writing this instead, because I would rather do this, instead of re-watching 30 minute lectures on binary search trees. I do not have access to a Getac right now, so I can’t get any screenshots. I will just have to explain it in words.

First off, pop open control panel and remove any software associated with Sierra Wireless. For us it was the driver and Skylight. Once removed, I went to Control Panel > Administrative Tools > Computer Management > Device Manger. From there, expand the network devices and find the 4G card (ie: Sierra crappy 4G card thingy) and select uninstall. MAKE SURE TO CHECK THE BOX AND REMOVE THE DRIVER TOO. This will ensure that we get the files for 1.08.16.05 out of the system.

Edit: Turns out you only need to install the new package over the existing one, then upgrade it by going into Skylight and selecting your carrier, and it should auto upgrade the firmware. When you install the package, you get nothing. It installs the new drivers, but the firmware is not yet upgraded. Proceed by going into Skylight settings, and firmware tab and select a carrier. The firmware upgrade should start. If you already have your carrier selected, then you will need to select another carrier, upgrade it, and then select the new one again. Stupid way to do it, but it works.

Spoiler: I am going to jump ahead here. We got the card firmware upgraded, to 05.05.16.00 and it still had the same message. Searching…. The only other idea I had was to upgrade the Getac Utility that was recently upgraded, in some magical attempt that it would do something. Well it did. Once it was updated, the 4G card connected right up to Verizon, and has been happy ever since. We have also only replicated this on machine so far, since we found the issue out when I was off at College. During my winter break, I will be updating the remaining officers Getac’s to see if makes a difference. Fixing issues or not, this post is about upgrading firmware, so yeah.

Now, it is time to upgrade the Getac Utility. Download the latest one from Getac’s site:

utility

 

Install it, and proceed to install the 05.05.16.00 firmware from Getac’s site:

firmware

 

Once the firmware is installed and complete, install Skylight.

And once that is done, make sure your configurations in Skylight are correct.

We use Verizon, so that is our carrier we have selected. Just for giggles, select it again from the drop down menu, even if it was already selected, and see if it changes the firmware again. You should already be up to date, but if not give that a shot.

Also, we have our profiles connect automatically on startup, and connect even when roaming. That is just our priority as a police department.

That should be pretty much it. Make sure you reboot also to test it. I haven’t had much time to play with the new Getac Utility, but it offers some cool options for passthrough while docked, and more fine tuned options.

ALSO! I just remembered, under the ECO tab in the utility, we have started selecting the WWAN to be set to on. By default it is off, but the card still works. We don’t know what it does, but it can’t hurt right?

Thanks for reading, and like always, if you have any questions or comments regarding this post, please email me at gbrewster@agoasite.com