Blog du Tristank

Migrating to . And still so terrific that 3 of 4 readers rated it "soporific"

IRL: Busy Week

I did actually start writing a couple more infrastructure posts, but often in the course of researching them, I’d find documentation already existed. My thinking is that it might be useful just to draw attention to them, so next time, I’ll stick to the “why I should have known this already” format that my reader… Read more

ISA 2000: CARP and NLB

Short version: If you want to use both, for best results: Web Proxy clients should use the array routing script/WPAD and need direct connectivity to each array member through a non-load-balanced address.SecureNAT clients use the NLB VIP as the default gateway.Firewall Clients connect to either the VIP or a name that maps to the VIP…. Read more

ISA 2000: Port Forwarding and Port Address Translation (PAT)

Short version: ISA 2000 isn’t out-of-the-box able to change published ports when doing Server Publishing. (I think Application Filters can be written to do this, but I’m not totally sure). ISA 2004 can do this. Long version: RRAS has had the ability to translate a port mapping from a certain external port to a different internal port… Read more

Use of Asterisks in this Blog

When I’m either being ironic or outright lying, I’ll usually include an unattributed asterisk to make it obvious, in much the same way advertisers do. Except they’re supposed to include fine print, whereas I’m not. For example: I like pizza. – is true. I like being beaten at chess*. – is false. So, wherever you see… Read more

WshShell.Run and Long File Names

I hit this the other day – when using the Wsh Shell object’s Run method in VBScript, passing a long filename (LFN) tends to truncate, so: set oShell = CreateObject(“Wscript.Shell”)oShell.Run “C:\Documents and Settings\Tester\Desktop\TestFile.Doc” will fail with a message similar to “Cannot find C:\Document”. Simple solution: Double-escape the double quotes: oShell.Run “””C:\Documents and Settings\Tester\Desktop\TestFile.Doc”””… Read more

How TSWeb / TSAC / Remote Desktop Web Connection Client Works

[Update 16 Aug 2004] I’ve posted some sample TSWeb HTM file that handles different ports too, and steps for how to get it working* with ISA 2004 (or other Port Address Translation-capable firewalls) in this post: Publishing RDP (Terminal Servers, XP Remote Desktop) with TSWeb. There’s a common misconception that TSWeb allows you to connect… Read more

About Me, About This Blog

It’s pronounced “try-stank”. I’m Tristan Kington, a (Senior) Premier Field Engineer primarily covering Cybersecurity and PKI. I have a background spanning IIS, TMG, networking and infrastructure, and some development bits. I maintain or act as a Lead on a couple of our Assessment offerings, and I’m passionate about seeming passionate about things. Often. No, sometimes…. Read more