Category Archives: Networks

Why use URL shorteners?

Posted on by

You must have seen them. Web addresses like http://tinyurl.com/2gj2z3 which, when you click on them, take you to another web page. Why use them? Are there any risks in using them?

URL stands for Uniform Resource Locator. It’s the posh technical term for a web address. Web addresses normally take the form http://www.somesite.com/somepage.html, which is not too much of a problem. But some site names can get very long, and so can page names. The increased use of database-driven sites mean that URLs can get very long indeed, and most of them is computer gobbledygook. They are impossible to type in, if you are reading them in a print article, and often get corrupted by word-wrapping when they appear in an email or blog posting.

An URL shortener is a web service that takes a long address that’s hard to type, and turns it into a short one. You should use them in articles for print publication, classified ads, emails, blog and forum postings, anywhere there is a danger that the full address may be corrupted, or that someone may need to type the address into a browser manually.

But there is a danger in using short URLs that may make people afraid to use them. The short address disguises the real destination. This makes it easy for somebody to post an innocent looking message encouraging people to click on a link that takes them to a site which infects their computer with spyware, or something equally undesirable.

Some URL shortening services have tried to address this problem. The most well-known service, TinyURL.com, has an optional preview page that shows you the target address before you go there. But you have to know to type “preview” in front of the address, or visit the site and set it as a permanent option. Those who don’t know about this are still vulnerable to deception.

A safe URL shortener would not allow the creation of links to undesirable sites. It would also always display a preview page, so the user always sees where the link is taking them before they go there. xaddr.com uses Internet blacklists to prevent its use to disguise sites that are advertised by spam. Its preview page offers a link to McAfee’s Site Advisor, which can be used to check the safety of the destination.

Next time you need to write a long web address, use an URL shortener. But to encourage confidence that no harm will come from clicking the link, pick a safe one.

What is search engine gateway?

Posted on by

Navino launched its search engine gateway service recently. For most of the Internet surfers, search engine gateway is a pretty new concept compared with meta search engine or multi search engine. Put it in simple, it is a web service, which can let you search the best information from the best content providers in one website.

When we try to find information everyday, most of us might go to Google.com. Yes, it’s true. Most of the time, Google works well. But does Google return the best information? I guess you would agree that the search engine’s ranking algorithm could only give a good answer, but not the best. Well, you may ask, where can I get the BEST? The best weather information? The best book information? The best price for your favorite mp3 player? The short answer is from the brain, from the hand picked information. Therefore, Navino’s editors and their users give out that the best weather website is weather.com, the best book website is amazon.com and the best price information is froogle.

Besides best hand picked information resources, Navino also provide the search engine gateway technology. Using this technology, you can search all the best website at Navino. All you need to do is to add a unique search name before your searching keywords.

For example, if you want to search New York’s weather, you can search with ‘weather New York’ and you will be forwarded to weather.com with the keyword ‘New York’. If you want to search finance books, you can search with ‘book finance’ and you will be forwarded to amazon.com with the keyword ‘finance’. If you want to search the best price for your favorite mp3 player, you can search with ‘price mp3 player’ and you will be forwarded to froogle with the keyword ‘mp3 player’.

Navino search engine gateway is very convenient for your everyday web surfing. Besides that, Navino also provides its users to customize their own search engine gateway and allows its users to recommend search names for public use.

What Is An Intranet? Definition and Uses…

Posted on by

An intranet is basically a private web based network. It uses all of the technology of the internet but is safe and protected behind a firewall that keeps unauthorized personnel out. Companies have been using them for years as a method of streamlining their internal communications.

Because a web browser can run on any type of computer, the need to maintain multiple paper copies of documents that are constantly changing can be eliminated. Documents like training manuals, internal phone books, procedure manuals, benefits information, employee handbooks, requisition forms, etc. can be maintained as electronic documents and updated at almost no cost. The savings in paper and other material costs can be significant

But the most powerful aspect of an intranet is its ability to display information in the same format to every computer being used. That allows all of the different software and databases a company uses to be available to all employees without any special equipment or software being installed on their systems.

This universal availability of information is sparking an era of collaboration unlike anything ever seen before. The departmental barriers that exist in many companies are slowing breaking down because now colleagues can share information readily using the company intranet.

Options for implementing an intranet

There are a variety of options for setting up an intranet. They include building your own intranet technology, purchasing and installing third-party software, or purchasing access through an extranet ASP. Here is a quick summary of the advantages and disadvantages of each approach:

1. Building it yourself
Advantages: Complete control of user interface design; ability to customize level of functionality; integration into internal systems, and direct access to user activity.

Disadvantages: High up-front development cost; requires staff expertise in the development of extranets, commitment of internal staff for 6 months to a year for planning, execution, review and implementation; and an ongoing commitment of internal staff for internal and client support, hosting, maintenance and upgrades.

2. Purchasing/installing third-party software
Advantages: Proven track-record of packaged solution; ability to choose functions and to
customize user interface, more rapid implementation compared to building it yourself.

Disadvantages: High up-front purchase cost; commitment of internal staff for customization and implementation; on-going commitment of internal staff for internal and client support, hosting, maintenance and upgrades; and extensive internal and client training

3. Using a Service Provider (ASP)
Advantages: Proven track-record of the application; low cost of entry and predictable cost over time; virtually immediate implementation; no commitment of internal staff for internal support, hosting, or maintenance; and upgrades at no cost by extranet experts, and savings on internal server use.

Disadvantages: Less freedom in user interface design, and fixed functionality.

In the final analysis…
The approach you choose depends on how you work, the technical and financial resources at your disposal, and how rapidly you need to move forward.

Web Servers and Firewall Zones

Posted on by

Web and FTP Servers

Every network that has an internet connection is at risk of being compromised. Whilst there are several steps that you can take to secure your LAN, the only real solution is to close your LAN to incoming traffic, and restrict outgoing traffic.

However some services such as web or FTP servers require incoming connections. If you require these services you will need to consider whether it is essential that these servers are part of the LAN, or whether they can be placed in a physically separate network known as a DMZ (or demilitarised zone if you prefer its proper name). Ideally all servers in the DMZ will be stand alone servers, with unique logons and passwords for each server. If you require a backup server for machines within the DMZ then you should acquire a dedicated machine and keep the backup solution separate from the LAN backup solution.

The DMZ will come directly off the firewall, which means that there are two routes in and out of the DMZ, traffic to and from the internet, and traffic to and from the LAN. Traffic between the DMZ and your LAN would be treated totally separately to traffic between your DMZ and the Internet. Incoming traffic from the internet would be routed directly to your DMZ.

Therefore if any hacker where to compromise a machine within the DMZ, then the only network they would have access to would be the DMZ. The hacker would have little or no access to the LAN. It would also be the case that any virus infection or other security compromise within the LAN would not be able to migrate to the DMZ.

In order for the DMZ to be effective, you will have to keep the traffic between the LAN and the DMZ to a minimum. In the majority of cases, the only traffic required between the LAN and the DMZ is FTP. If you do not have physical access to the servers, you will also need some sort of remote management protocol such as terminal services or VNC.

Database servers

If your web servers require access to a database server, then you will need to consider where to place your database. The most secure place to locate a database server is to create yet another physically separate network called the secure zone, and to place the database server there.
The Secure zone is also a physically separate network connected directly to the firewall. The Secure zone is by definition the most secure place on the network. The only access to or from the secure zone would be the database connection from the DMZ (and LAN if required).

Exceptions to the rule

The dilemma faced by network engineers is where to put the email server. It requires SMTP connection to the internet, yet it also requires domain access from the LAN. If you where to place this server in the DMZ, the domain traffic would compromise the integrity of the DMZ, making it simply an extension of the LAN. Therefore in our opinion, the only place you can put an email server is on the LAN and allow SMTP traffic into this server. However we would recommend against allowing any form of HTTP access into this server. If your users require access to their mail from outside the network, it would be far more secure to look at some form of VPN solution. (with the firewall handling the VPN connections. LAN based VPN servers allow the VPN traffic onto the network before it is authenticated, which is never a good thing.)

Valuing Network Certifications – Is The Time, Money And Effort Worth The Bother?

Posted on by

There are many ways to get any of the large number of network certifications now available.  There’s not only software certification like those offered from Oracle, Java, Microsoft, etc.  but there’s also direct network hardware certifications from strong companies like Cisco and then there’s the server administration, hardware repair, security and several sub category type certifications.  All are available but the question is if these have any real value in the marketplace. 

The answer, unfortunately is not simple.  This is because while many companies demand a certain certification, they will also bend the requirement and allow you to get certified once you have the job.  There’s also people in the marketplace who are strong proponents of certification or another.  The reason for this is usually because they have that certification and by requiring it, they somehow believe it validates their decision to obtain the training and pass the tests.

The reality is that like a good resume and education pedigree, certifications help get you in the door.  Think about it for a moment.  If you were hiring a network administrator, you would probably ask for the usually experience and basic education and some type of networking certification.  If 100 people claiming the same skills and experiences levels all apply and all have at least the single required certification while 10 have not only the network cert but also maybe several MS and a security certificate, which candidates applying would probably get scheduled for interviews?  Right!  It would be the ones with the better paper qualifications. 

So the value of a certification can be measured by it’s recognition as important by employers, and the relative value they place on such training.  If you’re applying in network shops that value certifications, then they will naturally place a premium on the fact that your have that training and will probably reflect that in an increased earnings range. 

The real key however is to recognize that employers are NOT employing you because you have a certification.  You must have the skills necessary to do the job and meet the requirements of the position.  No amount of certifications can make up for a strong work ethic and solid experience.  With today’s study materials, almost anyone can learn enough to pass the required tests and become certified.  This however does not make anyone competent to work on a network anymore than walking into a garage makes one a mechanic.  It’s skills, talent and knowledge that are truly desired. 

Microsoft Certifications are one of the most widely pursued and acclaimed professional certifications in the IT industry. Preparing MS certification tests, however, is a significant undertaking whether you’re just out of college or have been in IT field for years. IT professionals are continuously demanded to acquire new knowledge in order to perform well on their jobs as new technology in the IT industry emerged at a pace that has never been seen before. Regardless what certifications (Microsoft Certified Professional or MCP, Microsoft Certified System Administrator or MCSA, Microsoft Certified System Engineer or MCSE ) you are pursuing, a thorough planning will increase the chance of success.

The importance of hands-on Experience, no matter if it’s your own little network at home or at your job, experience matters!  Being able to apply the knowledge gained by the study necessary to obtain your certification is just as important as the exam itself.  

When preparing for any certification test, have a network available to physically learn the principles being taught.  You network might only be a couple of old PC’s and a switch but it’s enough to understand the principles and basic information.  You gain valuable skills that cannot be obtained any other way except through hands on work.

Finally, consider using CBT’s or computer based training as part of your test preparation.  These tools are a great way to take your level of understanding to a new level.  This is also true of practice exams. 

If you develop the skills necessary to support the certifications, all your training, costs and effort will pay off handsomely.  With your knowledge and training, you can expect to be have an easier time getting considered for positions, moving up in a company, and enjoying a solid work career.