Networking UPDATE--brought to you by Windows & .NET Magazine, the leading publication for IT professionals deploying Windows and related technologies.



Argent Software



Not So Sure About MOM? Check Out The Argent Guardian
AGENT-OPTIONAL ARCHITECTURE! More than 1,000 production users like CBS, Major League Baseball, Morgan Stanley, Toyota, and Citigroup. Cost-effectively monitor Windows, UNIX and Linux servers and all devices with one solution! According to MCP Magazine, "If you're looking for a system that will notify you when you want, about exactly what you want, and take only the actions you want, you must check out The Argent Guardian." Download a FREE, FULLY-FUNCTIONING copy of The Argent Guardian at:


May 28, 2003--In this issue:

- Implementing Your Disaster-Recovery Plan

- Get the eBook that Will Help You Get Certified!
- Couldn't Make the Microsoft Mobility Tour Event?
- Tip: Disabling DNS Zone Transfers
- Hot Thread: Monitoring Internet Use

- Free Device Discovery and Port Scanning

- See this section for a list of ways to contact us




(contributed by Alan Sugano, asugano@adscon.com)

In my last column ( http://www.winnetmag.com/articles/index.cfm?articleID=39093 ), I explained how to devise a disaster-recovery plan to help you prepare for the worst-case scenario. Now, let's imagine that scenario has occurred. What should you do when disaster strikes? Most important, don't panic. Remember: You have tested and prepared for this possibility. You've appointed a disaster-recovery administrator whose most immediate responsibility is damage assessment. The disaster-recovery administrator should determine the severity of the situation and notify the appropriate people. I assign different levels to help me assess problems:

- A Level 1 event might result in downtime of 4 hours or less. Your offices remain open and available, the problem affects three or fewer people, and the business impact is low. An example of a Level 1 event is a workstation that fails because of a bad motherboard or hard disk.
- A Level 2 event might result in downtime of 24 hours or less.
Your offices remain open and available, the problem affects 4 to 10 people, and the business impact is low. A server failure might constitute a Level 2 event.
- A Level 3 event might result in downtime of 72 hours or less. Your offices are unavailable, the problem affects 10 or more people, and the business impact is moderate. An extended power outage or a flood might constitute a Level 3 event.
- A Level 4 event might result in downtime for more than 72 hours. Your offices are unavailable, the problem affects 10 or more people, and the business impact is high. Examples of Level 4 events include earthquakes or terrorist attacks.

To help the disaster-recovery administrator evaluate the disaster level, create a checklist of all the services that your company requires, from the most important to the least important. These services might include utilities (e.g., power, water, sanitation, gas, telephone, Internet, WAN service), payroll, banking, computer support, legal, mail, and transportation services. To get this list started, look at the bills your organization receives every month. Cell phone service is particularly important. After the 1994 earthquake in Northridge, CA, cell phone service was one the few lines of communication that remained open. You might want to provide cell phones for all your company's key contacts. Don't forget the mobile chargers for the car and extra batteries.

After assessing the damage, the disaster-recovery administrator should notify the appropriate people within your organization of the level of the disaster, the status of utilities and services with estimated downtimes, and the status of coworkers. In the event of a Level 3 or Level 4 disaster, this administrator should also inform key contacts about a plan of action for the ensuing few days. If you work for a large company, you might want to develop a phone tree to disseminate this information to the rest of your staff. Another way to spread the word is to establish a private Web page (hosted off site with a secure logon) to share information about the status of the disaster and recovery.

If your building isn't available, arrange for a temporary place for the company to operate from. You might want to reserve alternate office space as part of your contingency plan. Either way, have a plan in place for moving coworkers to an offsite location and getting them set up quickly.

If any items are destroyed, consult the inventory list you created and order replacement equipment. Your insurance policy probably covers your office equipment, but you might want to ask about reimbursement if you hope to order equipment before claims adjusters complete their work. Immediately after a major disaster, you might have trouble finding equipment and supplies, so consider establishing preexisting agreements with computer vendors to reserve important equipment. Another option is to contract with a computer rental company to rent the equipment you require. To reduce the equipment availability cost, some companies are working with computer rental companies to prepurchase key components (e.g., servers, routers, firewalls, switches, tape drives) and share the costs with other similarly sized companies in different locations. If you have to move into a temporary space, you might also consider purchasing laptops with wireless connections because they'll be easy to set up and manage. In the event of a major disaster, equipment availability can be a significant problem.

The next step will be to locate the latest tape backup and restore your data. Consider using software that lets you boot from a CD-ROM and perform a restore without having to load the OS and backup software first. (This solution typically requires that your new server has identical or nearly identical hardware as your old server, and some old hardware might not be available. Because of this limitation, be sure to keep the OS CD-ROMs and the backup software in a safe location. You might need them to restore the data to the new server.) Use your application priority checklist to determine which applications to restore first. Be sure to keep at least one tape off site. After the Northridge earthquake, many buildings were deemed structurally unsafe and entry was prohibited. You certainly don't want to have a perfectly good backup tape stored in a building that you can't get into!

These steps are the just the start of what you must do to fully recovery from a catastrophic event. You must tailor any recovery plan to your organization's needs. Use this article and my earlier one as an outline to help you develop your organization's response to disaster.

Profile Maker 8 is Released! Visually map network drives, and connect shared and TCP/IP printers. Manage files, folders, and shortcuts. Install Windows service packs and MSI packages. Manage Outlook profiles, and Office & IE application settings. Configure based on over 20 software, hardware, and location filters, including WMI Query. Free Trial!




(brought to you by Windows & .NET Magazine and its partners)

The "Insider's Guide to IT Certification," from the Windows & .NET Magazine Network, has one goal: to help you save time and money on your quest for certification. Find out how to choose the best study guides, save hundreds of dollars, and be successful as an IT professional. The amount of time you spend reading this book will be more than made up by the time you save preparing for your certification exams. Order your copy today!

If you were too busy to catch our Microsoft Mobility Tour event in person, now you can view the Webcast archives for free! You'll learn more about the available solutions for PC and mobile devices and discover where the mobility marketplace is headed.



(contributed by Alan Sugano, asugano@adscon.com)

By default, Windows 2000 Server permits DNS zone transfers to any server, a feature that might let a hacker transfer your DNS zone to another server and gain valuable information about your network. Consider turning off zone transfers or specifying eligible servers. From the DNS manager, select your server, click Forward Lookup Zones, right-click your domain, then select Properties. Select the Zone Transfers tab, then clear the Allow Zone Transfers check box to disable zone transfers. You can also select the "Only to the following servers" check box and enter the servers that you authorize for DNS zone transfers.

In this thread, one member asks about how best to monitor employee Internet surfing. See the ensuing discussion for several suggestions.



(contributed by Jason Bovberg, products@winnetmag.com)

Ecora announced NetExplorer, a free device-discovery and port-scanning utility. You simply specify an IP range, and NetExplorer discovers all connected devices and scans for port usage to assess vulnerabilities associated with rogue devices and unauthorized open ports. You can combine NetExplorer with Ecora's Total Configuration Management (TCM) suite to enable an automated approach to securing your IT infrastructure. To download NetExplorer, go to the following URL:



Here's how to reach us with your comments and questions:

* ABOUT THE COMMENTARY -- asugano@adscon.com

* ABOUT THE NEWSLETTER IN GENERAL -- rcarson@winnetmag.com (please mention the newsletter name in the subject line)

* TECHNICAL QUESTIONS -- http://www.winnetmag.com/forums

* PRODUCT NEWS -- products@winnetmag.com

* QUESTIONS ABOUT YOUR WINDOWS & .NET MAGAZINE UPDATE SUBSCRIPTION? Customer Support -- winnetmagupdate@winnetmag.com

* WANT TO SPONSOR WINDOWS & .NET MAGAZINE UPDATE? emedia_opps@winnetmag.com

******************** This email newsletter is brought to you by Windows & .NET Magazine, the leading publication for Windows professionals who want to learn more and perform better. Subscribe today. http://www.winnetmag.com/sub.cfm?code=wswi201x1z

Receive the latest information about the Windows and .NET topics of your choice. Subscribe to our other FREE email newsletters. http://www.winnetmag.com/email |-+-|-+-|-+-|-+-|-+-|

Thank you for reading Networking UPDATE.

You are subscribed as rcarson@winnetmag.com

MANAGE YOUR ACCOUNT You can manage your entire Windows & .NET Magazine Network email newsletter account on our Web site. Simply log on, and you can change your email address, update your profile information, and subscribe or unsubscribe to any of our email newsletters all in one place. http://www.winnetmag.com/email

Thank you! _________________________________________________________ Copyright 2003, Penton Media, Inc.