Running IPerf on a point to point connection to test connection speed

iperf is a utility that (among other things) allows you to test the speed between two devices. I often use it to test communication over a site-to-site VPN or point-to-point circuits.

Download iperf-
https://iperf.fr/

Server Side-
    iperf3 -s-i 1

Client Side-
    iperf3.exe -c 172.30.250.25 -w 1025kb -P 10 -i 4

-s Server
-c Client
-w window size, optional, but reducing window size requires less CPU.
-i Sets the console output interval, -i 1 updates every 1 second
-P is the number of processes - each is good for about 50 Mbps. So for 200 Mbps you'd want -P 4

VMware Troubleshooting

Equalogic MEM - Multipathing Extension

Check VMware Version-
vmware -vl

Show Nics-

esxcfg-nics -l

Check SCSI Drives-

esxcfg-scsidevs -a

Firmware-
esxcli network nic get -n vmnic0 (NIC Version)
vmkload_mod -s lsi_mr3 | grep Version (SCSI Version)

Logs-
 /var/run/log

Scrolling installation with vreplication- 

1. SSH to the vSphere Replication appliance.

Disable automatic VIB installation and stop the looping installs:
    /opt/vmware/hms/bin/hms-configtool -cmd reconfig -property hms-auto-install-hbragent-vib=false

2.Then validate the particular VIB using the below command:
    esxcli software vib list | grep hbr

3. After this, Try restarting the HMS service using the below command.

service hms restart 

Azure AD Connect Incorrect Version of TLS

 

On the Azure AD server, launch the Windows PowerShell ISE as administrator. Paste this PowerShell script and run the script. Running the below script enables TLS 1.2 on Windows Server. Once the TLS 1.2 has been enabled, close the PowerShell ISE.

New-Item 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319' -Force | Out-Null

New-ItemProperty -path 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319' -name 'SystemDefaultTlsVersions' -value '1' -PropertyType 'DWord' -Force | Out-Null

New-ItemProperty -path 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319' -name 'SchUseStrongCrypto' -value '1' -PropertyType 'DWord' -Force | Out-Null

New-Item 'HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319' -Force | Out-Null

New-ItemProperty -path 'HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319' -name 'SystemDefaultTlsVersions' -value '1' -PropertyType 'DWord' -Force | Out-Null

New-ItemProperty -path 'HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319' -name 'SchUseStrongCrypto' -value '1' -PropertyType 'DWord' -Force | Out-Null

New-Item 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server' -Force | Out-Null

New-ItemProperty -path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server' -name 'Enabled' -value '1' -PropertyType 'DWord' -Force | Out-Null

New-ItemProperty -path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server' -name 'DisabledByDefault' -value 0 -PropertyType 'DWord' -Force | Out-Null

New-Item 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client' -Force | Out-Null

New-ItemProperty -path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client' -name 'Enabled' -value '1' -PropertyType 'DWord' -Force | Out-Null

New-ItemProperty -path 'HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client' -name 'DisabledByDefault' -value 0 -PropertyType 'DWord' -Force | Out-Null

On the Azure AD server, launch the Windows PowerShell ISE as administrator. Paste this PowerShell script and run the script. Running the below script enables TLS 1.2 on Windows Server. Once the TLS 1.2 has been enabled, close the PowerShell ISE.

Reboot

How to create a "Mail User" that is synced from Active Directory (ADSync) (Mail Enabled Object) in Office 365

Creating Mail-Enabled Objects-

Filter: objectClass = user & objectClass = contact

Mandatory Attributes:
mailNickname: This attribute is the alias to the mailbox.

displayName: This attribute is the text that is the readable name that represents you for mail delivery, and also in the address book.

targetAddress: This attribute is the e-mail address to which you want to redirect the mail. This attribute is formatted like the proxyAddresses attribute, where there is a prefix that defines the address type, for example, "SMTP:gyip@microsoft.com".

How to determine which server is hosting Azure AD Connect (Sync) - The easy way

 In ‘Active Directory Users and Computers’ > Search for MSOL > This should display the GSMA (Group Managed Service Account) that is used to run the service* > In the account properties > on the Description attribute, scroll to the right and you should see the Computer/Server that the service was installed on.

SYSVOL and NETLOGON Shares Missing on New DC

 If you need to FORCE sysvol and netlogon to be shared for a down domain controller, you can add this registry key. You should figure out why your replication is broken, but this will force it onling.

 - Login to your Domain Controller that’s having the issue
 - Open Regedit
 - Browse to: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters
 - Set SysVolReady from 0 to 1

Exchange 2016 Hybrid Wizard Fails to validate Domains.

 You are running the Exchange Hybrid Configuration Wizard (HCW) and it gets stuck at validating domains.  You try-

Set-FederatedOrganizationIdentifier -DelegationFederationTrust "Microsoft Federation Gateway" -AccountNamespace "MYDOMAIN" -Enabled $true"

You get- An error occured while attempting to provision exchange with the partner sts.

Add the following registry keys and reboot.

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft.NETFramework\v2.0.50727]
"SystemDefaultTlsVersions"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft.NETFramework\v2.0.50727]
"SystemDefaultTlsVersions"=dword:00000001

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft.NETFramework\v4.0.30319]
"SystemDefaultTlsVersions"=dword:00000001

Go into EAC, organization, remove the federation.  Re-add it, add your domains, set your TXT records.  Verify they are there with NSLookup, click Update.  Re-run the hybrid wizard.