[02:47:46] *** echelog-2 has joined #Citrix
[03:18:59] *** MSilva01 has joined #Citrix
[03:28:07] <makson> ***** XML Security Vulnerabilities *** http://support.citrix.com/article/CTX128169
[03:28:15] <makson> IMPORTANT ^^^ http://support.citrix.com/article/CTX128169
[03:28:40] <kdavy> makson: sup?
[03:29:02] <makson> hey kdavy - Just saw that tweet by shawn bass looks like security vulnerability with XML service.
[03:29:06] <makson> figured iwould post in here.
[03:29:11] <kdavy> makson: reading
[03:29:27] <makson> kdavy: just trying to catch up on all these tweets and articles this past 2 weeks i missed.
[03:29:37] <makson> kdavy: great read --> http://community.citrix.com/pages/viewpage.action?pageId=162955756
[03:29:51] <makson> check out that advanced guide for memory and storage considerations for PVS.
[03:31:54] <kdavy> makson: yea i read that blog post
[03:31:57] <makson> kdavy: hmm I wonder if any CAG device is being used if this is a worry.
[03:32:00] <kdavy> pretty cool
[03:32:06] <makson> kdavy: what did you think? the guide loooks really detailed.
[03:32:23] <makson> VDI smackdown got to read that too...
[03:32:37] <makson> microsoft released a "desktop virtualziation for dummies" book haha, i sent that out to sales staff.
[03:32:43] <kdavy> yea, it does indeed. i'm still not ready to push PVS to production, stabilizing the environment currently
[03:33:39] <kdavy> makson: i finished my new Nexenta SAN finally. pushing it to production this weekend
[03:33:42] <kdavy> it's a beast
[03:34:42] <makson> kdavy: that is awesome. so your killing complellent and now running nexenta in both prod and dr ?
[03:34:57] <kdavy> probably 10x overkill for what i currently need, but well worth it
[03:35:12] <makson> heck prob 10x less what a store bought san would cost.
[03:35:24] <kdavy> no i'm still keeping Compellent for stuff that requires lots of space, and Nexenta for lots of IOPs
[03:35:30] <makson> what was your total cost.
[03:35:41] <kdavy> both production and DR will be running two SANs
[03:35:51] <kdavy> total cost for the Nexenta - under $50k
[03:35:58] <makson> what's your thoughts on auto tiering the data? i had lunch with a guy from pillar data the other day and he was knocking the concept.
[03:36:21] <kdavy> makson: depends on how the auto-tiering actually works
[03:36:55] <kdavy> in Compellent it's decent, but you're only gaining 2x IOPs if you let it auto-tier between 7.2k and 15k, so not much win there
[03:36:57] <makson> said no algorythem can acuratly determine which data is hot and what's not. he said you might move someones data off to lower class storage and all of a sudden a report needs to get pulled and now the customer is waiting on the data. it sets false expectations.
[03:37:43] <kdavy> makson: i honestly think ZFS has the best approach - it caches most frequently and most recently used data at about 50/50 proportions in both RAM and SSD
[03:37:50] <makson> we'll end users.. they might be used to fast access, then hit a file that's off on SATA disk and be stuck waiting... then from a troubleshooting perspective that would be a bitch to troubleshoot. Does the array have any idea into where the actual file sits?
[03:38:02] <kdavy> the array has no idea
[03:38:59] <kdavy> the point is to make the access fast for most frequently performed tasks - loading Outlook for example - and beat the less frequently accessed data by increased throughput from the spindles
[03:40:02] <makson> wow, ruff to troubleshoot something like that. ZFS seems pretty cool. How's that work since it's it's own file system. Could VMFS be used? or NFS?
[03:40:03] <kdavy> if you're around tomorrow i can post a graph of % disk idle times on my xenapp servers on the compellent and on the nexenta. the graph shows wonders
[03:40:44] <kdavy> zfs can present itself as block-level storage, which means that you can put any filesystem you want on top of it
[03:41:09] <makson> kdavy: that's slick. Yah, I will be around. how are you presenting storage to your XA servers?
[03:41:33] <kdavy> i currently have xenserver, vsphere and native windows hosts feeding off of the nexenta, all using their respective native filesystems
[03:41:49] <kdavy> i'm presenting it via fibre LUNs to xenserver hosts
[03:42:06] <kdavy> or, well, via fibre LUNs to any kind of hosts
[03:42:10] <makson> that's really cool. You should post a blog. Building your own SAN. It would be very useful.
[03:42:36] <kdavy> i'd love to, i just don't have any damn time
[03:43:25] <kdavy> last night i got 2.5 hours of sleep for several reasons
[03:43:46] <kdavy> so now i'm having a couple beers and then gonna pass out
[03:44:19] <makson> kdavy: yah, i feel ya on the time... i need to better manage my time for sure. 2.5 hrs!! i would be long passed out by now.
[03:44:40] <kdavy> makson: coffee is a lifesaver :)
[03:46:07] <kdavy> oh and i finally figured out how to install xenserver with multipath boot luns today. thanks citrix for not documenting it properly anywhere
[03:46:37] <makson> I duno about my brifourm trip :( ... I got the we have to prioritize the training and conferences this year see what brings us closest to revenue speech ha.
[03:46:58] *** waynerr__ has joined #Citrix
[03:47:35] <makson> kdavy: that's a perfect article for Citrix IRC or post on your own blog and have a link to it. So you boot your hypervisor from the LUN?
[03:47:45] <kdavy> makson: heh. i gotta prioritize my time too, we have several new client deployments in the queue.
[03:48:05] <makson> kdavy: yah, our business is starting to ramp up with our new sales force so I duno, I really hope I can go though...
[03:48:12] <kdavy> makson: yeah, i've been booting xenserver from a lun since way before it was officially supported
[03:49:16] <makson> kdavy: Do you see any performance decrease by booting off lun?
[03:49:45] <makson> cool stuff though.
[03:50:38] *** waynerr has quit IRC
[03:51:14] <kdavy> no performance decrease, only downside is when your san fails you're fucked
[03:51:39] <kdavy> although you're fucked regardless so it's not a big deal in comparison
[03:52:41] <kdavy> i could've used the documentation on enabling multipath boot volumes earlier though
[03:52:45] <makson> yah, i guess depends how u want to get fucked haha
[03:53:18] <makson> do that write up! blog posts take time, i still need to write up my KMS article i posted on citri fourm, but never did the write up :( slacking on my part.
[03:53:25] <kdavy> makson: yeah that's exactly why i'm "stabilizing the environment" currently
[03:54:14] <kdavy> with the nexenta i'm testing failover scenarios that i've never tested with the compellent before, but probably should have
[03:54:43] <makson> kdavy: sweet. I gotta run heading to see kings speech with my girl. I'll be back later. You'll prob be passed out. Let's catch up more tomorrow for sure. been a while.
[03:54:52] <kdavy> kk sounds good
[03:54:53] <makson> kdavy: what sort of scenarios? that's fun
[03:54:55] <kdavy> have fun
[03:55:07] <makson> ha, rather chat about this then see movie :P
[03:56:08] <kdavy> makson: how about simultaneous power failure to both HA controllers? i tested it, and my VMs only froze for 2.5 minutes without losing any data
[03:57:10] <kdavy> as soon as the controllers came back up the VMs resumed normal operations
[03:58:25] <makson> wow! Nice! 2.5 min lol i presume you were testing off hrs. ha.
[03:58:38] <makson> ah, gotta run, be back in the am. :)
[03:58:47] <kdavy> makson: no i set up a separate test environment
[03:58:52] <kdavy> kk take care
[04:29:32] <MSilva01> Hi Guys,
[04:29:32] <MSilva01> I need to share with you some of the reasons to be disappointed with Citrix. I work with Citrix for about 10 years, with most of Citrix products and appliances, I'm CCEA and CCIA. The big problem is that Citrix has not given much importance to its clients, and  has launched several products on the market, with poor documentation and no quality assurance. XenServer is in version 5.6 FP1 with
[04:29:32] <MSilva01> new features, new fixes and new bugs. Some bugs have been going on since version 4.0 as the case of taskoffload, drivers, storage.
[04:29:32] <MSilva01> Yesterday I was reading a document about VMware iSCSI and I was sad to see how much detail is in the document and the document size just talking about iSCSI, is larger and more detailed than the Admin Guide that talks about the whole product.
[04:29:32] <MSilva01> About the open calls with Citrix, the delay in resolution, or even to answer e-mail is another problem. Some problems were solved by ourselves or by customers due to delay of Citrix in solving problems. Some cases are open until now. I devoted a decade of my life working with Citrix products and never been disappointed as the last two years.
[04:29:32] <MSilva01> When will this change?
[04:30:09] <MSilva01> Sorry for my english ...
[04:49:45] *** SpyderZ has joined #Citrix
[05:02:44] *** SpyderZ has quit IRC
[05:18:48] *** lesrar has joined #Citrix
[05:21:54] *** waynerr__ has quit IRC
[05:56:07] *** scsinutz has joined #Citrix
[06:23:44] *** scsinutz has quit IRC
[06:43:13] *** waynerr__ has joined #Citrix
[06:46:19] *** lesrar has quit IRC
[07:29:34] *** edgars_ has quit IRC
[07:53:51] *** scsinutz has joined #Citrix
[07:53:57] *** scsinutz has quit IRC
[08:12:48] *** scsinutz has joined #Citrix
[08:13:23] *** scsinutz has left #Citrix
[10:22:23] *** finnzi has joined #Citrix
[12:55:16] *** MSilva01 has quit IRC
[13:16:38] *** Meson has joined #Citrix
[14:39:05] <tabularasa> JarianGibson: still looking for cloning advice
[14:54:14] <makson> tabularasa: what's up
[14:54:21] <makson> tabularasa: trying to clone with XA6? '
[15:23:15] <tabularasa> yeah
[15:23:19] <tabularasa> best practices
[15:23:23] <tabularasa> i have a live system i'd like to clone
[15:23:25] <tabularasa> apps and all
[15:58:45] <makson> tabularasa: let me look for the correct link to the tool you will need
[15:59:19] <makson> http://support.citrix.com/article/ctx124981
[16:00:06] <tabularasa> have you used this?
[16:00:09] <makson> tabularasa: it's pretty simple. run that wizard make sure you have another server in the farm so you don;t remove your main data collector ( i did that by mistake in lab lost all my test apps ) and when you reboot the cloned template it will auto join the farm, performs same functioanlity as xenappprep
[16:00:15] <makson> tabularasa: typ many time
[16:00:17] <makson> with PVS
[16:00:25] <makson> tabularasa: it works great.
[16:00:38] <makson> tabularasa: your doing a VM template anyways right? snapshot the box before running the tool.
[16:01:01] <makson> don't check the remove server from farm check box when your testing it, and worst case you can revert your snap but it will work fine.
[16:01:21] <makson> on next reboot it auto joins the farm.
[16:01:38] <tabularasa> awesome, thanks
[16:02:06] <makson> tabularasa: no worries lemmek now how it goes
[16:02:32] <tabularasa> How does it change the name of the box or SID?
[16:02:39] <tabularasa> or i do that functionality with vmware sysprep ?
[16:04:03] *** The_Machine has joined #Citrix
[16:07:41] <makson> tabularasa: we'll from my understanding people don't need to sysprep anymore when you join the domain you get a new domain sid.. bunch of diffrent opionions on that though.
[16:08:07] <makson> tabularasa: with PVS i don't sysprep, although without it not sure what the best pratice is.
[16:08:19] <makson> tabularasa: name of the box, and SID will be done with VMware.
[16:08:25] <makson> you can do the configuration wizard.
[16:14:21] <tabularasa> yeah, i use the sysprep in vmware
[16:14:26] <tabularasa> i'll give that a whirl
[16:37:36] *** Meson has quit IRC
[16:37:51] <makson> tabularasa: good shizzzzz
[16:59:52] <kdavy_> yo
[17:00:11] <kdavy_> so i finally figured out how to install xenserver with boot lun multipathing
[17:00:31] <kdavy_> thanks citrix for putting it into a fucking appendix at the very end of FP1 docs
[17:01:07] <kdavy_> i completely agree with what Meson said earlier on documentation and support being complete crap lately
[17:01:30] <kdavy_> i meant MSilva01, sry
[17:11:31] <makson> kdavy_: I had a major issue with KMS and office 2010 due to crap documents... it's fixed now worked with them on creating new docs but ya i agree as well.
[17:11:44] <makson> all those problems related to bad documentation.
[17:41:21] <kdavy_> makson: compere citrix documentation to this for example
[17:41:23] <kdavy_> http://communities.vmware.com/servlet/JiveServlet/previewBody/14905-102-1-17952/vsphere41-performance-troubleshooting.pdf
[17:42:01] <kdavy_> oh and have a laugh at official troubleshooting steps for xenserver from here: http://docs.vmd.citrix.com/XenServer/5.6.0fp1/1.0/en_gb/installation.html#boot_from_san
[17:42:23] <kdavy_> Appendix A in the second link - scroll up just a bit
[17:42:51] <kdavy_> fdisk, ifconfig and ping. they gotta be kidding us
[17:43:08] <kdavy_> and "Citrix recommends that you follow the troubleshooting information in this chapter solely under the guidance of your Citrix Solution Provider or Citrix Support."
[17:43:51] *** MSilva01 has joined #Citrix
[17:44:21] <kdavy_> MSilva01: saw your writeup from last night. I agree with you 100%
[17:49:48] *** flippytheclown has joined #Citrix
[17:50:21] <kdavy_> makson: btw speaking of the security vulnerability you posted last night - case and point for not sharing port 80 for the XML service
[17:50:48] <flippytheclown> anyone know of a good place to find how to configure XenServer 5.6FP1 "intellicache" feature?
[17:52:54] <pak21> If you're doing a new install, select the "Optimize for XenDesktop" option in the installer.
[17:53:09] <kdavy_> flippytheclown: that feature isn't even available in xendesktop yet as far as i know...
[17:53:28] <kdavy_> maybe in XD5 FP1, i wasnt paying attention to latest releases
[17:54:27] <pak21> As kdavy says, it won't have any affect on XenDesktop until SP1 though.
[17:55:50] <kdavy_> pak21: are you a citrite? :)
[17:59:38] <flippytheclown> kdavy_: XenSERVER not XenDesktop
[18:00:01] <kdavy_> flippytheclown: i'm aware of the difference between the two
[18:00:45] <kdavy_> this feature needs to be supported by both xenserver and xendesktop in order to be utilized. it's already supported by xenserver, but not by xendesktop until v5 SP1
[18:01:43] <flippytheclown> kdavy_: Sorry. I am thinking of a scenario where I could have a XS5.6FP1 host a XenApp server and intellicache would allow me to use cheap NAS storage while caching on local disks/RAM to offset penalty
[18:01:44] <kdavy_> hence there is no point in even configuring it at this point. you won't be able to use it.
[18:02:08] <kdavy_> flippytheclown: it will not be supported by XenApp, at least there was no official announcement of that
[18:02:33] <pak21> kdavy: you spotted me :-)
[18:02:41] *** MSilva01 has quit IRC
[18:03:00] <flippytheclown> kdavy_: So what is the point of having intellicache support on XenServer i.e. what does support the use of it?
[18:03:01] <kdavy_> pak21: hehe. you sounded like you knew too much. sorry about the rant from earlier - nothing personal
[18:03:20] <kdavy_> flippytheclown: XenDesktop 5 SP1 will support it once it is released, that's it for now
[18:03:39] <pak21> Citrix is big enough I don't regard rants against Citrix as personal!
[18:03:56] <flippytheclown> kdavy_: sigh. That sucks.
[18:05:48] <kdavy_> pak21: ok good
[18:06:55] <jduggan> is there a group policy setting for $  TS so users dont have to hit OK when I remote control?  Thought there was but cant find it
[18:07:05] <jduggan> erm, M$
[18:08:26] <kdavy_> jduggan: heh i cant find it either
[18:11:28] <kdavy_> jduggan: but it's better to prompt the user. if you disable prompting you can get into a bunch of privacy concerns, legal/audit compliance, misuse by tech support, etc
[18:13:27] <kdavy_> fuck i hate this week... 10% of it was working on new stuff, 90% just putting out clusterfucks of various proportions
[18:18:21] *** flippytheclown has quit IRC
[18:22:23] <jduggan> kdavy_: aaah, its a setting on the rdp service, in session host configuration tab
[18:22:42] <kdavy_> jduggan: o ok
[18:23:19] <jduggan> kdavy_: do you ever have issues with scanners?
[18:23:25] <jduggan> kdavy_: or a policy for scanning
[18:23:37] <jduggan> its a nightmare, frankly
[18:23:37] <jduggan> :|
[18:23:44] <kdavy_> jduggan: not really, TWAIN passthrough seems to be working fine in XenApp 5
[18:24:39] <kdavy_> and COM port redirection for barcode scanners - works fine too, just a bit fragile to configure
[18:24:40] <jduggan> its mostly just the speed
[18:25:03] <kdavy_> ah, well speed is another issue. that's something you need to set customer expectations for
[18:25:25] <jduggan> alot of our customers are on crappy dsl lines, when theyre scanning a 6MB document it firstly rapes their egress (we can fix that), but secondly.... slooow
[18:25:48] <kdavy_> we recommend scan to ftp or scan to email on network-enabled multifunction printers - that's the best option
[18:26:40] <kdavy_> tell them to use something like a Brother MFC-8860 - they're cheap and work great for this sort of thing
[18:27:20] <kdavy_> the scanner already converts the doc to PDF and with default settings that's less than 50kb per page transferred on the network
[18:31:04] <jduggan> will it scan to UNC path?
[18:31:28] <kdavy_> jduggan: nope, but you can point an ftp account to a UNC path
[18:31:33] <kdavy_> that's what we do
[18:31:45] <kdavy_> using Microsoft IIS FTP
[18:31:50] <jduggan> oh right - that scanner will scan and store on FTP ?
[18:31:57] <kdavy_> yeah
[18:32:11] <kdavy_> or scan to email - whichever your users prefer
[18:32:41] <jduggan> MFC-8860DN ?
[18:32:47] <kdavy_> yep
[18:32:58] <jduggan> sounds interesting
[18:34:44] *** cmarreel has joined #Citrix
[18:34:45] <kdavy_> the printer itself is actually great too - very lightweight driver, and 100% compatible with terminal services and citrix
[18:36:36] <jduggan> do your customers connect via regular cable/dsl ?
[18:37:39] <kdavy_> jduggan: depends on number of seats per site, some of them do
[18:37:41] <jduggan> or do you give them some mpls/point to point circuit into your infrastructure
[18:37:58] <kdavy_> no point to point; larger sites get symmetric fibre or mpls
[18:38:08] <jduggan> ok
[18:38:12] <kdavy_> plus dsl/cable from a different ISP as backup
[18:38:16] <jduggan> yea
[18:38:33] <jduggan> you give them hosted desktops or published apps or what?
[18:38:47] <jduggan> or combination
[18:38:52] *** finnzi has quit IRC
[18:40:02] <kdavy_> jduggan: hosted desktops only
[18:42:43] <jduggan> windows 2008R2 SP1 apparently has proper usb pass through via RPD
[18:42:45] <jduggan> RDP
[18:42:47] <jduggan> which will be interesting
[18:44:50] <kdavy_> mmh yeah
[18:47:55] *** KaiForce has joined #Citrix
[18:50:57] <jduggan> kdavy_, do your users login via rdp or do you use xendesktop?
[18:51:08] <kdavy_> xenapp
[18:51:38] <jduggan> ahh
[18:51:50] <kdavy_> rdp performance sucks in comparison
[18:53:26] <kdavy_> especially across the atlantic ocean for example :) or from east asia
[18:54:25] <tabularasa> Splatone: i need access to wordpress, i was going to post something
[18:54:38] <tabularasa> XenApp 6 w/2008 R2 SP1 Hotfix 1 is Out
[18:54:44] <tabularasa> http://support.citrix.com/article/CTX125388
[18:55:03] <jduggan> xenapp 6 is a joke
[18:55:10] <kdavy_> hmm nice
[18:55:17] <jduggan> maybe that hotfix fixes somee major errora
[18:56:33] <kdavy_> tabularasa: ok i was excited for a second - i thought that was XenApp 6 FP1 with RemoteFX, but it's just a stupid hotfix
[18:56:39] <jduggan> thats an old patch
[18:56:44] <jduggan> yea
[18:56:46] <jduggan> heh
[18:56:53] <tabularasa> xa6 is a joke?
[18:57:04] <jduggan> xa6 would work nice, if it wasnt full of stupid bugs
[18:57:19] <kdavy_> tabularasa:  Created On: Aug 27, 2010    /   Updated On: Oct 21, 2010
[18:57:30] <jduggan> yea i already have tha tpatch
[18:59:27] <tabularasa> hmmm....
[18:59:44] <tabularasa> wierd, my partner contact just sent that too me
[19:04:40] <kdavy_> is your partner contact smoking something other than cigarettes?
[19:05:51] <KaiForce> yesterday I asked about blocking smartphones from PS4 via WI / e-CAG.  Someone suggested blocking the carrier subnets, which would certainly work if we had a list of them.  But could it be blocked at the CAG using a pre-authentication policy, like OS or client?
[19:22:19] <tabularasa> yeah, the bugs are annoying.. i'll give you that
[19:41:00] <Splatone> tabularasa: sorry I was offline..
[19:41:16] <Splatone> lemme get into the acoount quicklike.
[19:50:27] <makson> tabularasa: huh? XA6 SP1? they said it wasn't supported.
[19:51:26] <makson> that's weird citrix just said it wasn't supported.
[19:51:28] <makson> till Q2
[19:51:49] <tabularasa> I emailed my guy and asked him whats up
[19:55:47] *** OmNomDePlume has joined #Citrix
[19:56:33] *** scsinutz has joined #Citrix
[20:01:58] *** scsinutz has left #Citrix
[20:11:19] *** unop has joined #Citrix
[20:38:34] <gblfxt> been using xa6 for awhile, what bugs you guys talking about specifically?
[20:42:31] <gblfxt> personally, ive had as many problems w ps4.5 as with xa6
[20:44:36] *** The_Machine has quit IRC
[21:10:55] *** OmNomDePlume has quit IRC
[21:35:19] *** RidaGee has quit IRC
[22:25:38] *** The_Machine has joined #Citrix
[22:33:09] *** cmarreel has quit IRC
[22:40:56] <kdavy_> lol... reading some vendor documentation - "our product is based upon currently leading Internet technologies like JAVA, PHP and HTML."
[22:41:31] *** KaiForce has quit IRC
[22:42:42] <kdavy_> does this mean "run like hell", considering it is a web platform that integrates with quickbooks and uses the QB API to directly access company files?
[22:48:38] <gblfxt> qodbc? :(
[22:49:45] <gblfxt> we dont allow most qb addons, even though we are a specialty qb hosting co, lol, they are usually more trouble than necessary, like requiring a dedicated VM!
[22:56:07] *** kaffien_ is now known as kaffien
[22:56:16] *** kaffien has quit IRC
[22:56:16] *** kaffien has joined #Citrix
[23:38:41] <kdavy_> gblfxt: hah no, it's this thing: http://trinityrealtime.com
[23:38:56] <kdavy_> http://www.trinityrealtime.com/qbr.php
[23:42:17] <gblfxt> good rule of thumb is run if it says 'quickbooks' in it... :)
[23:42:33] *** scsinutz has joined #Citrix
[23:45:28] *** scsinutz has left #Citrix
[23:47:32] <kdavy_> gblfxt: yea i know





top