2.

10 - Securing a SOHO Network (continued)

Disabling ports Physical security
• Enabled physical ports • Physical access
• Conference rooms, break rooms • A relatively easy hack
• Administratively disable unused ports • Highly secure data centers
• More to maintain, but more secure • Door access
• Network Access Control (NAC) • Lock and key
• 802.1X controls • Electronic keyless
• You can’t communicate unless you are authenticated • Biometric
Content filtering • Eyeballs and fingers
• Control traffic based on data within the content • The process
• Data in the packets • Documented
• Corporate control of outbound and inbound data • Well established
• Sensitive materials
• Control of inappropriate content
• Not safe for work, parental controls
• Protection against evil
• Anti-virus, anti-malware
3.1 - Troubleshooting Windows
Slow system performance Startup Repair
• Task Manager • Missing NTLDR
• Check for high CPU utilization and I/O • The main Windows boot loader is missing
• Windows Update • Run Startup Repair or replace manually and reboot
• Latest patches and drivers • Missing operating system
• Disk space • Boot Configuration Data (BCD) may be incorrect
• Check for available space and defrag • Run Startup Repair or manually configure BCD store
• Laptops may be using power-saving mode • Boots to Safe Mode
• Throttles the CPU • Windows is not starting normally
• Anti-virus and anti-malware • Run Startup Repair
• Scan for bad guys Application crashes
Limited connectivity • Application stops working
• Limited or no connectivity: The connection has limited • May provide an error message
or no connectivity. You might be unable to access the • May just disappear
Internet or some network resources. The connection is • Check the Event Log
limited • Often includes useful reconnaissance
• Local issues • Check the Reliability Monitor
• Wireless signal, disconnected cable • A history of application problems
• Check IP address configuration • Checks for resolutions
• Reboot • Reinstall the application
• External issues • Contact application support
• Wireless router rebooted/turned off Bluescreens and spontaneous shutdowns
• Ping your default gateway and external IP • Startup and shutdown BSOD
Boot errors • Bad hardware, bad drivers, bad application
• Can’t find operating system • Use Last Known Good, System Restore,
• OS missing or Rollback Driver
• Boot loader replaced or changed • Try Safe mode
• Multiple OSes installed
• Reseat or remove the hardware
• Check boot drives
• If possible
• Remove any media
• Startup Repair • Run hardware diagnostics
• Modify the Windows Boot Configuration Database (BCD) • Provided by the manufacturer
• Formerly boot.ini • BIOS may have hardware diagnostics
• Recovery Console: bootrec /rebuildbcd
© 2018 Messer Studios, LLC Professor Messer’s CompTIA 220-1002 A+ Course Notes - Page 36 http://www.ProfessorMesser.com
 3.1 - Troubleshooting Windows (continued)
Black screen Slow boot
• No login dialog, no desktop • Boot process hangs or takes longer than normal
• Driver corruption, OS file corruption • No activity, no drive lights
• Start in VGA mode • Manage the startup apps
• F8 for startup options • Control what loads during the boot process
• Run SFC - System File Checker • Task Manager
• Run from recovery console • Startup tab
• Update driver in Safe Mode • Startup impact, Right-click / Disable
• Download from known good source • Disable everything
• Repair/Refresh or recover from backup • Load them back one at a time
Testing the printer
• Print or scan a test page
• Built into Windows
• Not the application
• Use diagnostic tools
• Web-based utilities
• Built into the printer
• Vendor specific
• Download from the web site
• Generic Slow profile load
• Available in LiveCD form • Roaming user profile
Starting the system • Your desktop follows you to any computer
• Device not starting • Changes are synchronized
• Check Device Manager and Event Viewer • Network latency to the domain controller
• Often a bad driver • Slows login script transfers
• Remove or replace driver • Slow to apply computer and user policies
• “One or more services failed to start” • May require many hundreds (or thousands) of LDAP queries
• Bad/incorrect driver, bad hardware • Client workstation picks a remote domain controller
• Try starting manually instead of local DC
• Check account permissions • Problems with local infrastructure
• Confirm service dependencies
• Windows service; check system files
3.1 - Troubleshooting Solutions
Defragmentation Kill tasks
• Moves file fragments so they are contiguous • Instead of rebooting, find the problem
• Sharing a common border • And kill it
• Improves read and write time • Task Manager - Processes tab
• Only applicable to spinning hard drives • Sort by resource - CPU, memory, disk, network
• Graphical version in the drive properties • Right-click to end task
• Command line: defrag • Trial and error
• Weekly schedule with Control Panel / Restart services
Administrative Tools / Task Scheduler • Services
Reboot • Applications that run in the background
• Have you tried turning it off and on again? • No user interaction
• There’s a reason it works • Similar issues as a normal process
• Bug in your router software • Resource utilization
• Reboot the router • Memory leaks
• Application is using too many resources • Crashes
• Stops the app • View status in Task Manager
• Memory leak slowly consumes all available RAM • Services tab
• Clears the RAM and starts again • Right-click to start, stop, or restart
© 2018 Messer Studios, LLC Professor Messer’s CompTIA 220-1002 A+ Course Notes - Page 37 http://www.ProfessorMesser.com
 3.1 - Troubleshooting Solutions (continued)
Update network settings • The BIOS determines which physical device will be used
• One configuration mismatch can cause significant during boot
network slowdowns • And in which order
• Speed • Each BIOS is a bit different
• Duplex • The configuration is in there somewhere
• Most auto negotiations work fine • It’s an easy one to miss
• Until they don’t • Usually the first thing to check
• Driver may not show the negotiated value Disable startup services / apps
• Filter through the Event Viewer • It’s difficult to tell what application might be a problem
• Device should match the switch child
• Both sides should be identical • Much of the underlying OS operations are hidden from
Reimage or reload OS view
• Windows is big • Trial and error
• And complex • Disable all startup apps and services
• Spend time trying to find the needle • Or disable one at a time
• Or simply build a new haystack • This might take quite a few restarts
• Many organizations have prebuilt images • Manage startup processes
• Don’t waste time researching issues • Task Manager, Control Panel /
• Windows includes a reset option Administrative Tools / Services
• Settings / Update & Security / Recovery Safe Mode - Windows 7 and 8/8.1
Roll back • Press F8 on boot
• Restore points • Advanced Boot Options
• Rewind to an earlier point in time • Safe Mode
• Time travel without erasing your work • Only the necessary drivers to get started
• Application updates • Safe Mode with Networking
• Restore point created automatically during application • Includes drivers for network connectivity
installations • Safe Mode with Command Prompt
• Device Drivers • No Windows Explorer – quick and dirty
• These can break Windows • Enable low-resolution (VGA Mode)
• Roll back from the • Recover from bad video driver installations
• Windows start menu (F8) Safe Mode - Windows 10
Update and patch • F8 probably won’t work
• Windows Update • Windows Fast Startup prevents a complete shutdown
• Centralized OS and driver updates • From the Windows desktop
• Lots of flexibility • Hold down shift when clicking Restart
• Change active hours • Settings / Update & Security / Recovery /
• Manage metered connections Advanced startup / Restart now
• Applications must be patched • System Configuration (msconfig)
• Security issues don’t stop at the OS Rebuild Windows profiles
• Download from the publisher • Profiles can become corrupted
Repair application • The User Profile Service failed the logon.
• Application issues User Profile cannot be loaded.
• Problems with the application files or configurations • If a profile doesn’t exist, it’s recreated
• Each application has its own repair process • We’re going to delete the profile and force the
• Fix missing files rebuilding process
• Replace corrupted files • It’s not as easy as copying a file
• Fix application shortcuts • Backups, registry modifications
• Repair registry entries • Login with domain admin
• Update or reconfigure drivers • Rename the \Users\name folder
Update boot order • Export the user’s registry
• Try to boot from a USB drive
• Delete the registry entry
• Doesn’t even try
• Restart the computer
© 2018 Messer Studios, LLC Professor Messer’s CompTIA 220-1002 A+ Course Notes - Page 38 http://www.ProfessorMesser.com