Physics Network Integration Chris Hunter. Physics network team Chris Hunter : Network Manager David Newton : Network Support Technician Room DWB 663 Phone.

Physics Network Integration

Chris Hunter

Physics network team

• Chris Hunter : Network Manager• David Newton : Network Support Technician

• Room DWB 663• Phone 73501• Email [email protected]

Network Sockets & Concentration Points

• 16 network concentration points (NCP’s) in the Denys Wilkinson Building alone.

• Available Switch ports 2290 Approx. 59.2% active

• Level 2 NCP hub of the Physics network with 1Gb fibre connections going to each of the Physics buildings.

Physics Firewall

Firewall Juniper Netscreen ISG 1000

Physics Wireless Network

• Currently 19 x 802.11g 56Mbps wireless access points in the DWB plus a couple of 802.11n 300Mbps– Clients connected to the Physics_M wireless

network are part of the 163.1.19.x subnet, currently WEP encryption only.

– 802.1x authentication should be coming soon using Physics network credentials.

– Register for wireless network access with Physics Network credentials at http://www.physics.ox.ac.uk/it/account.

OUCS wireless network

• OWL-VISITOR and OWL-VPN also available, via the OWL ssid.

• Eduroam now also available, connect using your Remote Access Account, different from your SSO or Nexus account http://www.oucs.ox.ac.uk/network/wireless/services/eduroam/

• Details about both OWL & Eduroam at http://www.oucs.ox.ac.uk/network/wireless

Access to Physics Services from the un-trusted subnet or remotely

• Virtual Private Network (VPN)– vpn.physics.ox.ac.uk works with Microsoft, Linux

and OSX clients, uses Physics authentication domain help at http://www.physics.ox.ac.uk/it/network/vpn/

– Oxford University Computing Service (OUCS) have VPN service, does need specific client installed details at http://www.oucs.ox.ac.uk/network/vpn/

Network Security• Connecting unmanaged systems to the Physics

Network– MAC address registration is needed before gaining any

network connection for laptops please register at http://www.physics.ox.ac.uk/it/account/

– 172.17.x.x un-trusted subnet– Is your laptop up to date?

• Anti Virus / spyware• Fully patched OS

• Connecting from outside of Physics– SMB blocked, no connection to windows files– MAPI access to Exchange Server blocked– SMTP blocked

Network Security

• Exchange Server protocols not blocked– IMAP– Authenticated SMTP is available using

mail.physics.ox.ac.uk, PHYSICS authentication domain credentials are needed to use the service

• Other protocols– web access– RPC over HTTPS

Network Security

• Sophos Anti Virus Software– Updates, out of date AV is no use– Download Sophos for personal laptops running:-• Sophos 7.6.12 for XP, Vista and Windows7 at

http://www.physics.ox.ac.uk/sophos/• Linux at http://www.oucs.ox.ac.uk/viruses/linux/• Sophos v7.0.5 for MAC OSX 10.4/10.5/10.6 at

http://www.physics.ox.ac.uk/sophos/

• Hoping to setup Network Access Control (NAC) onto our network

Network Backbone Connection

• Physics connection presently 1Gbps• Campus connection to Super Janet currently

at 2 x 10Gbps.

Access to Physics Services from the un-trusted subnet or remotely

• Exchange email web access• https://mail.physics.ox.ac.uk• HTTPS-RPC proxy service is available with Outlook 2010

http://www.physics.ox.ac.uk/it/email/exchange/2010/Outlook.htm•Exchange 2010 access various email client with Imap access

• https://www.physics.ox.ac.uk/IT/Email/Exchange/2010/Exchange2010.htm• https://www.physics.ox.ac.uk/it/email/emailsystem/imap

•Webdav via browser or windows network places• https://winfe.physics.ox.ac.uk/home/<username> connects to your windows ‘H’

drive. • (Windows Only) Open `My Network Places` and click on `add a network place

•Sftp + SSH• Winscp3 available on self service (windows desktop systems)• http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html

•http://www.physics.ox.ac.uk/it/mswindows/remote.htm

Access to Physics Services from the un-trusted subnet or remotely

• Printing from a Windows Laptop not in the Physics domain.– http://www.physics.ox.ac.uk/it/mswindows/windowsprinti

ng.htm

• MAC Printing– http://www.physics.ox.ac.uk/it/mac/macprinting.htm

Access to Physics Services from the un-trusted subnet or remotely

• Windows terminal server Termservqc– Remote Desktop Client (MS & MAC OSX), possible

to connect to local disks, printers and serial ports (not possible to connect serial ports in OSX).

– Rdesktop on Linux systems, • rdesktop <termservqc>, more for people without

Windows desktop– Windows XP, Vista and Windows 7 will allow

remote access via terminal services

Physics self service

• Under Programs\Physics Self Service

• FAQ’s http://www.physics.ox.ac.uk/it/mswindows/faq.htm

Questions?