Partition alignment for storage performance

Partition alignment has proven a %10-60 gain in storage performance - the higher gains are found when storage is under highest load for sequential reads on a striped raid system (RAID0,5,6,10), with small gains for random writes. Small gains are also noticed on single disk or mirrored systems of conventional drives (512b sectors).

The good news - Windows 7 and Windows Server 2008 automatically align partitions to the drive structure. Bad news - everyone else has to do it by hand, and new hard drive designs coming out are throwing wrenches into this.

------------------------------------------------Sector BS (bullshit):

Hard drives are made of sectors, until recently all drives had 512 bytes per sector - meaning 2 sectors make 1024 bytes of storage (1 kilobyte). The biggest issue: for the past 30 years drive makers have been throwing in DOS compatibility and emulating the old drive structure of CHS (cylinders, heads, sectors, +tracks) - this will tell you all about CHS and tracks:

http://en.wikipedia.org/wiki/Cylinder-head-sector

The old system was CHS, the new(er) is called LBA (Logical Block Addressing), and even this should be overhauled.

The head is what reads the platter on the drive (like a record player), most drives will have somewhere around 4-8 heads, usually 2 per platter, and 1-4 platters. If you look at your drive with fdisk you will see a big inconsistency:

Disk /dev/sda: 499.5 GB, 499558383616 bytes

255 heads, 63 sectors/track, 60734 cylinders

This is because it is trying to be compatible with DOS, and to arrive at the huge size of ~500GB, it must use 255 heads - the actual size exceeds this head count, 255 is just the max allowed. - If you have ever manually partitioned a drive over ~8.5GB you will note the warning that "The partition passes some xyz limit usable by some operating systems" (it means DOS).

------------------------------------------------New sector sizes:

New solid state drives and large drives coming out in the last few months break this rule. Many new SSD drive will have whats called a 128kb erase block size - meaning that it handles data in 128KB chunks. Many new drives 2TB and up have a 4kb sector size (8 times larger than 512b) - some will try to emulate both 4kb and 512b, but best performance is at the native sector size. More on the SSD junk here.

------------------------------------------------Other layers:

If you are using a RAID controller, this will also arrange data in chunks or stripes, usually 32 or 64kb has been the norm, larger chunk sizes work better for larger files (but slower for small files). Most decent raid controllers will let you set this. If you are using a SAN - yet another arrangement is probably being made between the file system and the hardware.

Virtual file systems - if you are doing virtualization, your virtual fs will have some sort of alignment that sticks it to the underlying file system of the host OS. In this area storage performance is EVEN more important as it is usually the bottle neck.

-------------------------------------------------- The Point:

The main point through all of this - you want to keep all the file systems within the boundaries of each underlying layer to achieve the best performance, one mismatch could be bad, several mismatches down the layers of your storage design could cause severe lag.

Example: If you read 1kb of data it could force 4 sectors to be read instead of just the 2 that are required to store that amount of data (512b/sectors), or even more if you are traveling down several misaligned layers of your storage system

- it could be as bad as writing to 2 sectors when it could have been 1, or at worse - writing to 2 disks when it could have been one.

The golden rule: Best performance will be gained if all storage partitions start at a size divisible by the underlying subsystems.

ie - 1. Your partition 2 boundary starts at 102400 which is evenly divisible by 512 = good.

2. On another system partition 1 ended at 102400, causing partition 2 to start at 102401 = bad

Many file systems will allow you to manually set block sizes and start/stop points. If your raid card has a 32kb chunk or stripe size on 512b sector disks, you could create your NTFS partition to use 32kb blocks and start at 1024 bytes into the drive. Many OS installers will automatically bump the first partition up to sector 63 - which could cause a misalignment depending on your bytes/sector, or up stream storage layout.

Some will say "this only applies to SSD and large drives" - NO even most conventional drives will not be properly aligned to the drive boundaries. Sometimes the master boot record or file system metadata can cause an improper offset.

This article gives a good basis for this:

http://www.vmware.com/pdf/esx3_partition_align.pdf

Heres a few other guides:

Fixing linux for SSDs

Fixing Windows XP on SSDs

Fixing 4kb sector alignment in XP and linux

This is an excellent article - written by the man that made the ext4 filesystem:

To sum up - I dont have a definitive "this is how you do it" guide, this is still a sort of black majic, those that know it use weird chants and special terms to perform it, and it changes depending on your overall platform design. If I get it down I will provide some samples.

oh and thank Google blogger for the screwed up formatting of this post

Theres hope yet for the phone company

In a matter of mere weeks the cable company will begin selling its DOCSIS 3 service which exceeds 300mbps (with no stated limit). Their advanced hybrid fiber/coaxial network makes it all possible.

However Nokia-Siemens is attempting to breath new life into the phone companies network. They are doing R&D on a new DSL technology that has tested to 750mbps over existing copper network at 500 meters (from a fiber node or central office).

Who knows, maybe by 2020 the phone company will have some high speed service.

New low power computer jack

Ya - its a computer in a jack!

This jack from Chip PC Technologies has everything you need inside to run a ultra low power thin client, and save lots of space, cut it in the wall, or even sink it in your desk.

It has the equivalent of a 1.2 ghz CPU, 256mb ROM, and up to 128mb RAM (suitable for thin client only).

Fastest CPU!

For you number crunchers out there - IBM's new z196 mainframe now has the worlds fastest CPUs:

Containing 24 quad core (96 cores total) 5.2 ghz CPUs, this thing is a monster!

Each CPU has 24mb of L3 cache and 4 cores, each core has 1.5 mb of L2 cache.

The .045 micron CPUs are arranged in groups of 6 on a module, with yet another L4 cache on each module containing 96mb of cache.

Intel was left in the stone-age on this one.

Oh and it offers a mere 3 terrabytes of DDR3 RAM, 288GB/second of IO throughput, and a water cooling option for the go-getters.

This thing is what Google wishes they ran (or might tomorrow), only the largest of large companies like IBM (who else?) run these mainframes to keep track of their world wide TPS reports.

Gig Wireless

Until recently we have been limited to using the 60 ghz licensed frequency to achieve 1 Gigabit wireless speeds. Now Quantenna has released a revolutionary 4x4 MIMO platform that provides an astonishing 1.2 gigabits per second on the 2.4 and 5 ghz frequency ranges for free unlicensed usage - hopefully someday soon the technology will hit our data racks.

The mark

This is very old news, but a scary new discovery for me - http://news.bbc.co.uk/2/hi/technology/6389581.stm

It seems that RFID tags are now smaller than a grain of dust, measuring 0.4mm x 0.4mm, this means that some one could blow dust over a croud of people and tag them like cattle without even the slightest knowledge, and the government, or anyone with a tag reader could identify you from several feet away, some dozens of feet.

While the latest tags still have yet to function without a large antenna (about 1 inch long) making them quite a bit more obvious than a grain of dust, I am sure the day is not far off that this large (in comparison) antenna will shrink down to some unnoticeable grain of evil. When these are forced upon people the end will have probably already begun.

UPDATE:

Apparently while we were asleep, newer chips have been made that are a mere 0.075mm x 0.075mm, and they are embedded into super small antennas that can be read from 1 foot away:
http://www.crunchgear.com/2009/06/02/hitachi-develops-worlds-smallest-rfid-chip/

The empire strikes back??

What on earth is this - no its out of this world!!!

Evidently Motorola didnt think they confused the market enough with droid, droid x, droid x2, or is it the square root of droid?? Eminent collision to arrive the end of next month as they unveil the:

"Droid 2 r2d2 Star Wars Empire Strikes Back Special Edition" {thats its name} smartphone.

And its got the latest Froto oS on it

Dont get me wrong, love my android, but who is the marketing director??

Or are they directing a subtle message to that popular fruit phone maker, was it Orange? Somebody must have a big ego!

New Samsung Android 2.1

So, my old Samsung Moment was having some severe process problems (something I installed), the CPU was getting pegged 24/7, causing the battery to die in 1-2 hours.

I decided to take the plunge and asked my wonderful Sprint dealer to hook me up with a download to the latest Android 2.1 update (the link is gone from public downloads), I explained my battery issue, and my dealer says "This would appear to be a "defect", heres a new phone with the latest Android 2.1."

I must say, it is definitely working much better, I have banged on it for over 2 hours straight of web-browsing over wifi even (burns more bat. than cell net), took several pictures and was surprised with the new ludicrous bright flash. The camera also had several other enhancements including filters and editing features. I know its still not 1080p like the MyPhone 4G.

It was nice to note that I wont need as many apps now as many feature enhancements apps have been built into the native OS, such as auto screen brightness, tts caller ID, and more. Email and contacts seems to function better, no hickups in my contact sync. I am going to see how it goes (battery) without installing any apps, then slowly install them to make sure I catch any that nuke it.

Now native support for PPTP and IPSEC VPN connections (OpenVPN as an app in Market).

So far the battery is still at 3/4 after 2 hours of internet and camera playing, and a couple phone calls and texts.

Asterisk and SIP security tips

Interesting posting on the Digium blog (i know its old), but it covers some important points, and even has a video showing what SIP users are up against from the dark side.

An important one that many of my associates may not have seen is the alwaysauthreject=yes, this gives hackers the same result if they try hitting an invalid extension, or a valid one, where as normally it would say "you have entered an invalid extension", or "you have entered an invalid password for this extension" - allowing a hacker to "harvest" your extensions and focus on them with further attacks.

I notice they also mention fail2ban which Smpl-PBX has also been using for quite some time, however unlike some of the "other distros" ours is actually secure with no backdoor holes in the fail2ban config. Besides this it is extremely important to keep up with Asterisk (or whatever your SIP server may be) security patches, which is why we do a regular audit of our systems.

Its interesting when a new customer says "I dont know, its just been running in the closet there for the last couple of years, then it all of a sudden stopped taking calls, and our PBX tech changed his phone number".

securely post your email in online forums

I sometimes see people posting their email address in online forums, those people may as well kiss their inbox  goodbye as every spam bot on earth will grab it within hours.

If you find you do need to post your address to a forum, who else, but Google is now offering mail "Captcha" service - this forces people to answer a complex question to actually see your email, and you simple post a link to your captcha page in the forums.

http://www.google.com/recaptcha/mailhide/

Cinco De Mayo - the 5th may be a bad day in internet history

Well it looks like the new DNS security protocol is being implemented on all 13 Root DNS servers (control the whole internet for the entire earth) on May 5th. This should prevent DNS hacker attempts.

Unfortunately it also breaks the compatibility with many networking devices around the world, most devices have a limit of 512 bytes for DNS packets, but the new DNSSEC protocol could often times generate 4 times that.

This means that some devices may not pass name info to tell your computer where Facebook is located.

All 13 root servers will be updated at 10AM PST MAY 5th.

Read more here.

Todays Antivirus reviews

Best Free Antivirus:

So - the latest in the seek for a good AV, no - there will never be one that is always perfect.

Here is my list, slightly skewed by CNETs reviews (click links to see reviews):

1. Avast 5
2. MS Security Essentials
3. AVG Free
4. Avira Antivir
5. Panda Cloud Antivirus

Sorry, you wont see any mention of Norton or his scottish cousin McAffee here, this review is for fast efficient products, and whats more all of them are free and I was not specifically looking for free, it just happened as a "bi-product"!!!

1. I tried the latest Avast the other day and it has been pretty good at keeping a problem customer clean for the last month, I am not impressed by its overhead, but its worlds above Norton type products. So far I can't 100% vouch for it as I do not have a wide client base using it.

2. Microsoft's new Security Essentials came out last year, at first its engine was not very efficient, but with recent updates I would put it at 99.9%, performance is great, their active scanner has very low overhead, probably the lowest of all. I have a very wide client base that has been using this for over 6 months, and so far only 1 has been infected.

3. Cant say I have been happy with recent versions of AVG, they seem to be getting more and more bulky in the resource area. However they still

3. Cant say I have been happy with recent versions of AVG, they seem to be getting more and more bulky in the resource area. However they still have a good knack for detection. I have been using AVG widely since 7.5, but last years version caused me to look elseware (pun- yes) for faster software.

4. Avira - I cant say I know much about her, other than lots of discussion read here and there that its a great product, CNET reviews it to do moderately well.

5. Panda Cloud Antivirus unfortunately was a disappointment in the detection department, but I think as more users get onboard and development progresses it has the potential to far surpass all these other products. Its resource usage is the lowest I have seen, and its pure simplicity is wonderful: "I detect viruses" - what else do you want it to do - "I constantly nag you and slow down your computer"?

New found speed for Android phones

While many Android phones are coming out with blazing 1ghz processors, there are still many more that are quite a bit slower, like the 528mhz Hero. Well there may be relief in sight as several new JIT (Just In Time) compilers are being released that speed up the Android Virtual Machine aka Dalvik -

- YES, Android uses a virtual machine (as do many other phone OSes), this is what allows Android to easily integrate with several different hardware manufacturers and still efficiently run its applications. Some may say - "the iPhone has control over the hardware, while Android is running wild, how does it stay efficiently stable?" Well this virtual machine is what does the trick.



This is similar to modern computing platforms (ie Windows, linux), you can install virtualization software which creates a kind of buffer layer between your applications and the hardware, allowing efficient control of resources along with "plug-n-play" usability - your guest OS or application no longer has to worry about drivers that run efficiently with your hardware, the virtualization software handles this in the background.



What does this mean for Android phones?? - well, it means they will run applications faster and use less battery - yeah!!! The JIT compiler allows the OS to kind of cache program code as it is processed, and speed it up when it is called in the future, this is a poor one liner explanation, so read more here if you like. There are now several JIT compilers in development for Android, shortly we should see stable releases of this new software. Here is a nice short article on one of the new JIT compilers.

In case you didnt know, Android is Google's mobile operating system that is found on a number of phones such as the Hero, Nexus One, Moment, Droid and many others; while it is not yet at the level of the iPhone OS, it is fast approaching, and often times considered the biggest competitor to the iPhone market. Android OS is currently on version 2.1, you can read more about it here.

CDMA iPhone to hit Verizon

Ohhhhh boy oh boy oh boy, wet my pants - its coming to Verizon - well, slow down there, *RUMOR* has it that Apple's manufacturer is working on a CDMA design (the protocol used by Verizon among others), *RUMOR* has it production may begin as early as September, this means Verizon users may expect phones by 1st half 2011 - again - these are all RUMORS, to date nobody creditable has confirmed even the production of such a phone.

I have heard some Verizon sales guys touting about how they will soon have Apple under their hat - ignore any such claims, we may also have men on Mars, but not this year!!

Good evidence that Apple is taking note of the Android market enfringement that was unleashed earlier this year - if you are a verizon customer, google may be coming to your neighborhood sooner than apple - dont settle for "Android clones", get a genuine Nexus One made by Google.

Privacy.net sues microsoft, Cisco, Comcast, and TRUST

Privacy.net sues microsoft, Cisco, Comcast, and TRUSTe - what a whammy! Why? - Well these bigshots have slung their weight at the wrong guy, they placed the owner of privacy.net on several spam blacklists, and will not remove him, even though this person does not, and never has hosted any sort of bulk emailing, mailing list, or commercial mailing systems. The accused are accused of eavesdropping on digital communications and placing this person's/company's networks on several blacklists, and all refuse to remove him.

Spam blacklisting is a big deal, I fight it on a weekly basis, while nearly all of my customers use blacklists to block spam, a great deal of them have also been placed on these same blacklists, usually removal is easy, sometimes, impossible. Just a couple of weeks ago a customer using gmail was unable to send mail to another user on RoadRunner internet, RR completely denies any blocking, although all mail is simply dropped without return or delivery - it's companies like this that think some users are just too small to matter that truelly deserve these lawsuits.

DIY Home theater speakers

So I was hunting around for some parts for a client when I came across this site, rather than hog it all to myself I thought I would share it - here is a good example - DIY low profile center channel

The site has several DIY kits to help you custom build some killer speakers and many other things, and if you read one of their guides you will know its not some cheapskate tweeker trying to sell kits, these are engineered with quality components -
- similar to how we build products whether it be networking equipment, servers etc, we like to "purpose pick" each individual component for its best qualities to suit the purpose of the overall product - its nice to know that we can now purpose build theater products with ease as well.

Google Fiber - Google getting in the cereal business?

Yep - who would have thought - people in Boston are giggling over google since the mayor over there has announced that they are ready for Google Fiber (me too;)! - you may think people in Boston are having bowel issues, but no - they are referring to Google's Fiber Optic network (yes they are getting into the local ISP business). Google is quite possibly going to supply Gigabit speed to neighborhoods all over Boston.

Some people may say "Wow - high tech!" - But this is nothing new, gigabit fiber has been around for a few years now, the only reason you dont hear about it is because the telcos that own the fiber are charging megabucks to have it, so really nobody buys it but companies like CBS or Level3 and such, I priced out a fiber connection for a client a few months back and it was a mere $5000 per month.

The new in this situation is Google - who has been known to give amazing products away for next to nothing - so if I can get a Gig fiber connection to my house for $100/month - I will jump right on that giggling train.

Most likely this (like many google services), is a preemptor to their television network - yes, google is ramping up to push their ads on THEIR network of course - why should they want to advertise on Cox cable? Oh and dont forget phone, I would bet theres some sort of phone service that these customers will qualify for - such as Google Voice with a service level agreement, then of course - they would have to push hosted phone systems!

Is there nothing google cant keep their hands out of?? -next thing you know there will be a google church - sorry i will not be bowing to that google.

more on Google Fiber in Boston here

Google taking over the world, your TV may be next

Google is working on their own set-top Cable boxes and TV integration, Google hopes that the new platform will succeed where dozens of lesser efforts have failed—to truly and seamlessly integrate web content onto TVs, bringing services like Twitter and sites like YouTube, in addition to games, webapps, and, of course, Google's search, to the big screen. The Google TV software reportedly includes a version of Google's Chrome browser for doing some light surfing, as well. The New York Times says Google TV will be delivered on set-top boxes that use Intel Atom chips and run an Android-based platform, though the technology will also reportedly be built directly into Blu-ray players and TVs from Sony. Additionally, Google is working with Logitech to built a keyboard-equipped remote control for the platform.

Who on earth would want to use Open Source?

Some may ask, "Is anyone but the geek tinkerers using open source" - well I was putting around the web the other day, and came across this interesting article about how the entire US Postal Service tracking system is run on about 1,300 servers running open source Linux, the tracking system has to deal with about 40,000,000 new transactions per day (not counting existing items to track) - that is a LOT of stuff to track.

Open source is no small potatoes, and is in use in enterprise environments the world over. We run many of our solutions on open source, and most of the time they provide higher efficiency with more features than commercial platforms costing $100,000s of dollars!

Stop badware!

Looks like google is using this new service in their search results called StopBadware.org - very interesting concept, it keeps a semi detailed report of malicious sites, when they were last scanned, and what type of content was found. If a google search result has such content you are forwarded to the stopbadware report for that site. Their database appears to be built by partners like google and largely user contributed, so if you hit a bad site report it there.

If you find one of these reports - PAY ATTENTION to it, more than likely the site you are attempting to reach could harm your computer.

New Asus eee 1008HA - ouch my mega hertz

Just picked up a new eee for a client - this thing is one of their slimmer eees with a 10 inch LED powered LCD - so far I am indifferent to it, cant say I like it or hate it.

While its supposedly 1 inch larger than my eee 901 (which has been through WW3), they seemed to have added most of the extra inch in the wrong direction - its significantly wider, but only a tad taller - the scroll keys get used a lot!!! The LED backlit is great, nice and bright - and the main reason why the battery goes for 6 hours.

They probably did this hat trick to fit a much wider keyboard on there (most people complain about the tiny keys on my 901), I like the new keyboard, it has great feedback, with solid keys. The touchpad is one of those slick multi-touch deals for scrolling and zooming (the mac pinch thing), and its flush mount on the PC. Finally they put a fricken CAP lock light on it, and the dedicated wifi button is nice.

They did some other {unnecessary} tricks on this thing also - all the io ports are hidden behind "nifty" little doors - most likely my client will inadvertantly rip this off as the doors are quite clumsy to use - especially the network port. The video port is another hat trick - you pull this little magnetic dongle out the bottom, and plug into a mini high density video port on the side for external monitors - again kind of clumsy, waiting to see how long before the dongle gets lost.

For power usage this thing is great, it does not have as large a battery as my 901, but to compensate they have used LED for its lower power usage, and one other nasty trick - the CPU is a single core Atom N280 (my 901 is a dual core), while it has a super performance option which clocks to a whopping 1.7 ghz, its still no competition for a dual core CPU. I am typing this article on it, and have installed several apps on it, so far it has performed well, but I know my clients - they could slow down a Ferrari! In short time, it will most likely begin to hesitate.

A combo of the FN key + Space bar bumps the CPU around to aide in battery life, here is what I found:

• 855 mhz power saver mode
• 950-1660 mhz Auto High performance mode (recommended mode)
• High performance mode didnt seem to change any compared to the "auto" modE
• 1705 mhz Super Performance mode

Its got pretty much all the other standard junk, bluetooth, webcam, 160 gig drive, SD slot, but the screen and CPU really leave me desiring more - if I were to get one personally, it would be a no most likely, but it might serve someone else as a great ultra portable.

THANK GOOGLE FOR THE TERRIBLE FORMATTING OF THIS ARTICLE!

Google really is taking over the world

Now I am convinced - look at all these new features in Google Docs and not just that - now I can upload any filetype - even an ISO as long as each file is under 100mb, and they give me a woppping 10 gigs total storage!!!! Is the wool being pulled over my eyes - or is that just an amazing amount of storage - for free!!!

Ohhh and besides that some people (like Joe) will be tickled pink to learn that Google has now released their Google Hosted Apps marketplace (if google hosts your domain (its free)), to boot - the new Market place offers a cajillion apps, including google integrated CRM packages (several) and even flippin accounting packages - is this like more rediculous than Earl Scheib $199.9995!?

Most all of these addon packages are fee based of course, but thus far google has provided superior products at less money than many of the so-called enterprise class solutions out there (not saying google is perfect, did I mention their blogger stinks) - I dont know how they do it.

Watch out, someday soon all will be saluting a Sieg Heil to google.

Connecting XP clients to Windows 7 shares

Windows 7 appears to network wonderfully (when all connected computers are Win7), the new Homegroup feature makes networking just plain simple.

If you are attempting to connect XP computers in a Win7 workgroup environment you may run across unreliable connectivity to the Win7 shares. I have found the hints on this site helpful, additionally you should restart the Server service and its dependancies.

MS Security Essentials - first missed virus

So it appears MS Security Essentials is just as good as all the other antivirus products out there - a client came to me with "Windows XP Antivirus 2010" on her laptop - this is a virus (see end of this post), and Security Essentials completely missed it, this new variant is a killer, not even Combofix could remove it (that's why people hire us).

Why continue to use this AV product - well, this is about the same grade of service you would get from any other Antivirus product out there paid or free, with the exception that it does not feel like your PC is trying to pull a bull dozer. So why buy Norton Internet Security and slow your brand new super fast computer down like it was a 1979 Ford Pinto?? - when chances are high that some virus will still get past it

THERE IS NO 100% EFFECTIVE ANTIVIRUS!!!!

If I had to choose a paid product I think it would be NOD32 from Eset - although it seems to slow bootup time to about 3-4 minutes on a fast computer while it does its initial scan, after that its pretty much smooth sailing and almost as efficient (CPU wise) as MS Security Essentials.

If it resembles this in anyway - its a fake:

UPDATE: Found the source of the virus - a web site that shows videos of popular TV Series - it was attacking via an Active X control - avoid active X threats by using Opera (safest) or Firefox - havent heard of Opera - well there's tons of great products that invest more on R&D than marketing campaigns - they have actually been around longer than Firefox, and chances are if your mobile phone has a browser, it was built by Opera.

All in all, I still think MSSE is a great low impact product, and we have found ways to double up the protection offered by it making a rock solid solution with no impact on your PC performance, call us today to find out how.

New eeeBox with HD

The new eeeBox from Asus is really packin some punch in a tight box - full 1080p HD playback, slot load DVD player and HDMI onboard, near silent running - this thing is a sleeper!

It's all because of Nvidia's new ION processor platform (based on Intels Atom), Nvidia has taken it one step further and integrated a high end graphics processor right into the southbridge chipset (a very new concept), which reduces the amount of components on the board, and reduces the overall power usage dramatically - this system uses 70% less power than todays typical PC (many of which are already low power). Less power = less heat = more processing potential.

No I dont have one yet, but I plan on getting an ION package in some form pretty soon.

Imagine your plasma slapped to the wall, and one of these guys slapped to the wall right next to it - what a duo!

Nice to know the president uses Aastra for his hotline to blow up the world

Just stumbled across this article (humor) - http://nose4news.wordpress.com/2009/03/18/obamas-daughter-almost-causes-armageddon/

Its interesting that the president's hotline to blow up the world is an Aastra IP phone, disappointing that its a measly 51i.

Google Voice treatin me bad today

Just had a few calls with severe jitter on goog voice today, looks like they are having some load issues.

Some router throughput reviews

Just picked a few popular routers to look over, some of the results are surprising and disappointing:

• Linksys WRT54G2
• Linksys WRT54GL
• Linksys RVS4000 Security Router
• Netgear FVS318G
• Sonicwall TZ190
• Smpl Route SR3E1W

It seems when I come into a clients small office and they say - ya I set it up, I hooked up the WRT54G2 - I say newer is not always better, looks like its only optimal at 8 simultaneous connections - although I doubt I would find an ISP with 70mbps throughput anytime soon, but it appears throughput problems start around 25 mbps. Quoted here:
"I did some additional investigation into the G2's simultaneous throughput problem and found that if I limit its data send rate to around 20 Mbps, I didn't see the throughput battle. But with a send limit of 25 Mbps, the problem reappeared."

It appears the WRT54GL is a pathetic example as well, completely dropping all communication at around 8-16 simultaneous connections - see the chart here. On a single download the GL appears to provide a very unstable 30-50mbps of through put.

Another sore looser from the bunch - Linksys (by Cisco) RVS4000 Gigabit Security Router with VPN, coming in at a blazzzing 14mbps max download (yes its gigabit) - its sad to say that this would not be sufficient for most cable modem connectons. But they call this a professional grade router - this is designed for the office?? - some smooth marketing pulled the wool over your eyes.

Netgear has some nice ones, but a popular one I often see is the FVS318G Gigabit VPN router. This guy can push about 22 mbps of raw throughput with about 200 max connections - not bad, not great.

And what about the resellers delight (Sonicwall loves a good reseller romance) - the TZ190, touted as a true enterprise product for the SMB, with 128mb of RAM, 16mb flash a 433mhz cpu and a dedicated VPN processor, it can provide a "blazing" 1.5 mbps of VPN throughput using 3DES. Such a "deal" at $1300 for the TZ190 with wifi, and annual support at $150 for basic and upwards of $800 (annually) if you get their full security suite (sweet reseller delight). Oh and the VPN is also another annual license cost - go figure, oh and not to mention if you need more than 1 office-2-office VPN - yes you need to upgrade to Enhanced OS, like routing packets with an elephant - bulky. Well their pure routing performance is about 25-26mbps of throughput - good for most cable modem connections (some max at around 30mbps).

The SmplRoute SR3E1W SMB router (by Simple Technologies), comes in at a blazing 88mbps of throughput with 2000 active connection states in the firewall (capable of 10,000+ states). With a 500 mhz processor, 256mb RAM and anywhere from 1-8gb of flash it can provide 30-35mb of VPN throughput. With no annual fees, anything less than $1300 would make this thing a smokin deal compared to a Sonicwall. We size the hardware based on your feature requirements, why would a basic small office router be suited to do complete antivirus, website, and spam filtering - this is like hauling a choo-choo-train with your F350 pickup truck.

SBS 2008

While Small Business Server 2008 is really getting pushed hard these days, after dealing with it I would stay away as much as possible unless you know there is a feature there that your users would value greatly - just for the mere convenience of having new software is not a good excuse. SBS 2003 is still an excellent product, and will run on far less expensive hardware, and also allows an additional member server to add extra capacity - great for any small business from 2-40 users with outsourced IT. I know there are several great features in 2008, but some of my clients dont even use the features of 2003 - why push something that is going to cost more in hardware and maintenance in the long run (more importantly - try not to call me when its broke).

If you have full time in-house IT staff and a larger small biz (SBS has a 75 user limit) then moving forward with 2008 is probably in your best interest to minimize future upgrade needs.

We have visited server 2008, and have a few clients on SBS 2008, so I have been waste deep in it so far battling some issues that have thus far been no easy fix for myself or other MS experts that we have consulted with.

So just as a pointer my fellow "techies" that do dabble in the dark territory - the SBS2008 Newsgroup is an excellent resource (I know - ewww a newsgroup, but its web based also):

https://connect.microsoft.com/SBS08/community/discussion/richui/default.aspx
Open for viewing, register your Live ID (eww) to post.

And the SBS2008 repair guide:
http://technet.microsoft.com/en-us/library/sbs-2008-repair-guide(WS.10).aspx

Rant on Google and another reason why they just plain suck in laymans terms

Hail Google

Google has been like a blessing in so many ways - however not to be ungrateful but they have done some stuff that just plain sucks lately. Today (to pick out a point in time), they have removed FTP access to blogger articles (in case you didnt know Goog realized Blogger had a big audience and bought them up some time ago).

This may not be that big of a deal - but it was my "door out" - my plan was to FTP copy the blog to a blog on our new website when its done.

Blogger just plain sucks for an editor - adding images and other content is like jumping through the fiery hoops at the circus - if you dont do it right, just forget about it. It does not support linked video like so many other blog system do so simply. Formatting is kind of "at their mercy", you have a real hard time making paragraphs flow in a way that is easy to read.

If you try to edit in raw html (they think they are being so accommodating by giving you this option), blogger will reformat your html to best screw it up for your viewers.

I guess I missed the boat on the announcement (as a blogger customer you would think they would email me directly), last week they completely removed the FTP option from the control panel. There is a nifty export feature - oh so cool - it exports your blog to an xml file - doh! wheres all my pictures - oh, well those are conveniently left linked to the blogger image links in the xml file. How about all the links - well we ruined any links you put in your articles by not spacing them correctly in the xml file.

Their excuse was that FTP just took up too many management resources they just realized this after over 10 years of Blogging and 10+ million users - isnt this a design flaw you would notice in the first 2-3 years / 1 million subscribers?

This doesnt even get into their buyout of Gizmo5 which is burning me at the moment.

Managing Gmail size issues

Do you have "size issues"? Well if its with Gmail we have some tips to help you today!

Many of my clients are coming to me saying they can no longer send or receive email, a quick glance at the bottom of their gmail web page tells me they have reached the mailbox limit - something must be deleted!

Many people run Outlook as a client to their gmail, luckily that is about the only good solution at the moment. Here is a quick "for dummies" guide on how to clean up those big emails (click to enlarge):

Once you have moved messages to the trash folder you can then wait 30 days for gmail to delete them permanently to free the space up, or login to your gmail web page and empty the trash manually.

Simply clicking delete on mail in Outlook will not actually delete them from your gmail, they go to All Mail.

This procedure will only work if your Outlook is configured as an IMAP client, and will work similarly with any other program that connects to your gmail using imap.

Unfortunately if you are using just the gmail web interface there is no easy way to delete large messages, but there is a page where you can vote for this feature (PLEASE DO):
http://mail.google.com/support/bin/static.py?page=suggestions.cs&issue=116865&bucket=16935

Under Organization look for: "Sort messages by size, date, sender, etc." and Suggest it!!!

It is easy to avoid this situation - zip any files over 500 kb (just right click and Send to Compressed Folder, then attach) use programs like Picasa to send images, send other large attachments using a web sending service (some may not be completely private) such as:

• http://www.box.net/ (I highly recommend this secure sending service, with free options)
• http://senduit.com/
• http://www.yousendit.com/
• http://rapidshare.com/
• http://www.mediafire.com/
• http://www.filemail.com/

With some of these services someone could possibly guess the weblink - it is highly unlikely as links are usually complex, but possible, using a link that expires is a good way to minimize this risk. You can however upload them using an encrypted zip file (or use box.net), there are dozens of programs for making password protected zips like Power Archiver, Winrar, Winzip... Or use PGP to encrypt the files - only someone with the PGP key can open it http://www.gnupg.org/ There are dozens of other options if you look, tons of them completely free, and loaded with features!

When reading those funny forwards - consider deleting them after you read them especially if it has one of those funny video attachments!!

Buying more space is NOT an option - if you have managed to fill 7+ gigabytes of gmail, you will eventually fill even more - you must change your ways, and its much simpler than a 12 step process!!!

UPDATE: On another note - if you have Small Business Server on your network you should be taking advantage of Sharepoint server - it comes ready to go on your SBS server - Microsofts' full fledged document library and collaboration tool - you can even give users outside your domain secure access to this free tool. Simply upload files to the document library and start sharing - it even has version tracking so multiple people can collaborate and edit a project, and you can see who created which version of the file.

A rant on Lexmark

I have in the past been a big proponent of Lexmark printers, they have been often 1/3 the price of HP, Xerox. Ricoh - etc, and with great/better performance to boot - however this time I cannot stand behind them, they have provided a subpar product, and subpar support to boot.

I have a client with several X500n color laserjets, so far the oldest 2 have failed CPU fans - the genious of Lexmark engineers chose an extremely obscure fan that appears to be only manufactured by 1 or 2 companies - a 24 volt 50x50x10mm fan with speed sensor - most of the small electronics and computer industry uses 12 volt - why 24. After removing the fans from both printers they were simply cooked, the label was cracked due to heat, but there was no dust - the fan simply failed.

After calling lexmark, they said such a shame, the unit is out of warranty, but the part is available for a mere $65 - SIXTY-FIVE DOLLARS FOR A 5 CENTIMETER FAN!!!!!!!! - I think the radiator fan in my truck cost less and its about 50 centimeters!!! Come to find out - Lexmark more than likely does not even have this fan in stock!

Another company supposedly sells the same fan to spec for a mere $25 - not quite highway robbery - probably Lexmarks supplier - hmm 200%+ markup - sounds about right - but go figure they are out of stock also - probably because Lexmark drop shipped the last one out like some small time computer supplier.

Since nothing matched the exact specs of the original I finally just decided to find some other fan and adapt it - I found this slightly larger 80mm fan for a mere $9.95 - is Lexmark trying to pull the wool over someone's eyes???? I needed some longer screws and a couple small zip ties to secure it.

Being that this is mid-range model, I hope it doesnt trickle down to any of the higher end models - I have another client with the X642 with easily 500,000 pages on it, and it still cranks out 15-20,000 pages per cartridge without fail.

New Aastra IP phones attack both ends of the spectrum

This year Aastra has come out with some impressive new phones - the 6739i and the 6731i.

I will start by highlighting the 6731i - their latest budget model, which really packs a punch compared to the previous 53/51i models which where usable as nothing but kitchen or hallway phones - this new model actually has 8 custom programmable hardkeys - coming in at around $100, its a steal.

The 6739i is the new flagship, VIP, "Geek Delight", super executive set with a full color high definition touch screen display, bluetooth, USB, and even a builtin Gigabit switch.

Yes - I know, Cisco, Polycom and Snom all have similar models, but what they don't have is Aastra's powerful XML interface with dozens of pre-built applications, easy deployment and use - and some real bang for your buck at around $500.

And of course both models are compatible with Smpl PBX - our powerful Asterisk based phone system.

UPDATE - A couple of excellent videos reviewing the 6739i and HD voice are now on the tube:

http://www.youtube.com/watch?v=Vc5MEA3zN04

http://www.youtube.com/watch?v=wiSIulBpto0

Dripping geek

ok, goggling this new release from Samsung tipped my brow - built in pico-projector - yes I will be doing board room presentations from my cell phone soon - hope it doesnt have one of those 3 minute batteries. Read more here.

Free calling with Google Voice - myth or mystery?

Is it myth or is it a legend - so far its a fading truth - free calling with Google Voice - several solutions have surfaced and sunk over the past months.

- forget Gizmo5 for the moment, Google bought them and nixed them with word that they will re-release it better and badder sometime this century.

I have been snooping around, and it looks like Sip Sorcery (yes its magic if it works), has been designed with Google Voice in mind - here is a guide on where else but Google docs

There is also a code site dedicated to it:

http://code.google.com/p/google-voice-sipsorcery-dialplans/

I will try it out when I get a chance - but a word to the wary, this is definitely not for business calling, more for personal use. Also from my experience SIP over wifi - BLOWS - the biggest problem being that if you dont have control of the wifi access point/firewall more than likely you will get calls with no sound because the firewall is not able to properly forward the ports.

If it were IAX it would work nearly everytime regardless of firewalls- maybe someday the VoIP gods will get hot on that idea.

Dell's trying to get 'cute' with their new 6Gb RAID controllers

Was just reading the docs on Dells new H series Perc RAID controllers. What a nice new feature:

Blocking of non Dell certified drives being used with PERC H700 or PERC H800 

So Dell is going to tell me what hard drives to buy now - I cant go to my local computer supplier to replace a failed drive, I have to wait for Dell. I cant expand my storage with inexpensive high quality drives off the shelf, I must buy Dell's over priced "certified drives".

Isn' t that cute. Oh and by the way, these are next generation SAS RAID cards supporting 6GB/sec data throughput.

MS Security Essentials

MS Windows Defender got a face lift and turned into a real tool when it got re-released as Security Essentials. We first pushed it out in the lab last May as you may have read in this post.

Now I have had it running for a couple of weeks on a couple of client computers - after removing Norton Internet Security (slug of an AV program), the user was mildly impressed with the speed of his seemingly new PC. Security Essentials has a very low foot print and so far it has not gotten clobbered by any viruses. I am going to test it one of my really shady clients in a couple of weeks (they call at least twice a month with viruses).

Google Voice on Android

So due to some nasty billing at Sprint I decided to try out Google Voice on my Android phone. I got a 3rd party app called GV dialer (the native google voice one seems to be unstable at the moment).

I have been making some calls over wifi on my Samsung Moment, and it actually sounds crystal clear. The app is very simple, has an on/off button, and will make calls over data if available or cell if data gets too choppy. And I get free calling to any US or Canadian number (A shoutout for my Canookian cousins!).

No google does not own my life yet, I am resisting it all the way!

UPDATE: I was wrong - the Wolf pulled the wool completely over my eyes - the GV Dialer is misleading in its description - it in no way uses data for calling, its all cel network. I checked my Sprint bill the next day, and the calls finally did show up.

After  reading some other guides on using Gizmo5 and google voice for Android voip, I have been completely let down as Google bought Gizmo5 and removed the Google Voice integration settings from the Gizmo5 site - word is Google is going to re-release Gizmo5 with full free voice integration in the near future, but this could be months/years. Another possible solution we will be exploring is Sip Sorcery... coming soon to a blog near you.

Samsung Moment greatly improved by CL14 update

I recently got a Samsung Moment with Android and to say the least I was utterly disatisfied. The battery life was severly poor, I had to carry my charger with me everywhere. Its hard to complain since this phone has 4 seperate radios in it - wifi, bluetooth, GPS and cell of course - so its like running 4 phones off one battery, what more could I expect of it - well, at least to be useable as a "cordless" telephone!

Running the GPS would take the battery from full to dead in 30 minutes or less.

Roaming the web - dont do that for more than hour - thats right dead!

Phone calls - well it had about 1 hour talk time, standby was about 10 hours if you never touched it.

I went to the Sprint service center to get the much awaited new firmware - marked as M900.8.0s.CL14 - to my amazement its a whole new phone. I can now browse the web over 3G or Wifi for 2-3 hours and even make phone calls. I placed about 30 calls the other day, some of them quite lengthy and the phone got all the way to 6pm without popping up the "eminant disaster if I dont plug in fast warning".

Windows Security

Was just reading over a link from a colleague (thanks Jeff Clark @ West Coast Cable and Networking), and found a great write up I thought I would share with my readers (I said "Jeff you're preachin to the choir."): http://lifehacker.com/5401453/stop-paying-for-windows-security-microsofts-security-tools-are-good-enough

It goes over the default security in Microsoft and covers how a few simple free addons can really lock down your PC (vs buying Norton Internet Security and completely clobbering your PC), which is what I often times have a hard time getting across to my users. This view may not fit into a lot of corporate schemes (this is when a consultant really needs build a complex game plan to keep your network smooth), but it definitely fits in with the desktop gang.

In short - read that article.