Sniff Smarter, Not Harder: Why Wireshark Preferences Are Your Secret Weapon

Before you even think about hitting that capture button in Wireshark, spending time in Edit → Preferences is one of the smartest moves you can make. Out of the box, Wireshark is powerful—but it’s also generic. Every network is different, every investigation has a purpose, and default settings rarely align perfectly with your environment. By configuring preferences first, you’re essentially tuning Wireshark to your network, which means cleaner captures, better visibility, and less time wasted digging through irrelevant data.

One of the biggest advantages of tweaking preferences early is improved capture and file management. Wireshark relies heavily on heuristics and default port assumptions to identify traffic. 

Making the most of Lab work

 One of the biggest challenges technical staff face is trying to get the 'ok' to do lab work.  And in managements defense, (and from I've observed in my career,) staff rarely properly document why they need lab time and what the benefits are.

Management imagine technicians tossing paper balls into the trash can, gaming and generally goofing off during this time. I should know because I was in management and have actually seen this exact scenario play out. It only takes one time to ruin for everyone asking after you.

Do yourself and your boss a favor and try to take a more organized approach to requesting and reporting on your lab work.

For example, I was told that we will be using an entirely new router for new installs, as well as replacing any that fail in the field.

My response to my boss/client was "Great, who is going figure out the new configuration? He said "What do you mean?". I explained that the new router has an entirely new interface and operating system, so we need to take some time to figure out how to configure it the same way as our standard config.  Then we need to test how it integrates with our management system as well as test all the functionality that the help desk and support staff currently relies on to do their job effectively.

I then suggested that I will provide an outline and game plan for the new router configuration and testing along with an approximate timeline. I finished with offering a deliverable of the new configuration, a list of the functionality tested and a 30 minute hands on class for the staff, so they know how to work on the new equipment and point out anything I missed. The session also fosters collaboration and everyone gets a chance to contribute. The last thing people want is to see a new piece of hardware with no training, documentation and little feedback from people who support it.

His response was, "Go for it!".  

The point of the story is that when you want to propose something to anyone, is to treat it as a sales pitch and clearly outline 'why, how long and the deliverables'.  Most managers are happy to see someone take any proactive initiative, but they become impressed when you document and sell it professionally.

---

If you haven't yet, put your name in for the next $25 amazon gift card giveaway

https://giveaway.thetechfirm.com

Now for a little fun.. lovemytool is alive!!

 

Big news in the lab, folks: the legendary LoveMyTool name is back in action! After years of living under the slightly more buttoned-up banner of The Tech Firm Blog, we’ve decided it was time to bring back a name with a little more personality… and let’s be honest, a lot more attitude. Because nothing says “serious technical insights” quite like a name that also sounds like it belongs on a novelty coffee mug.

This revival wouldn’t have happened without the generosity of Tim O’Neil, who kindly handed over the lovemytool.com name so it could live again. That means if you punch in www.lovemytool.com , you’ll land right here at https://thetechfirmblog.blogspot.com great content, same questionable humor, just with a name that feels like it’s wearing a Hawaiian shirt instead of a suit and tie.

For longtime readers, this is a bit of a homecoming. The original LoveMyTool blog built its reputation on mixing solid technical know-how with a wink and a nudge, and plenty of you have made it clear that the name was half the fun. So consider this the best of both worlds: the same blog you’ve been reading, now rebranded with a name that reminds us not to take ourselves too seriously—even when we’re deep in packet captures or arguing with firmware. Welcome back to LoveMyTool. 

Yes, I missed it too.

What Caused the Microsoft Developer Account Lockout?

 The Microsoft developer account lockout incident described in the article highlights how several major open-source security tools—including VeraCrypt, WireGuard, and Windscribe—were suddenly cut off from distributing updates to Windows users. According to the report, developers found their accounts suspended without warning, preventing them from signing drivers or releasing patches. Because Windows requires signed drivers for installation, this effectively froze updates for tens of millions of users, leaving them potentially exposed to unpatched vulnerabilities. ([Aardwolf Security][1])

The root cause appears tied to Microsoft’s Windows Hardware Program and its mandatory identity verification requirements. Developers were expected to submit government-issued identification within a set timeframe, but several affected maintainers they never received proper notification—or even completed verification without regaining access. 

How to Solve the Four Most Common Problems with PoE++ Devices (Julio Petrovitch)

In 2018, the IEEE 802.3bt (PoE++) standard for Power Over Ethernet was approved. It offered more power, allowing devices like high-powered security cameras to be run on PoE. Which is great – until the installer uses the wrong cable to connect a camera and can’t figure out why it won’t power on.

Having multiple standards makes troubleshooting PoE issues more complicated. For example, many field technicians or network engineers don’t realize that upgrading to new pan-tilt-zoom cameras or to Wi-Fi 7 access points with multiple radios will require a PoE upgrade as well. As offices and warehouses deploy more smart devices that need PoE++, testing becomes more important. This article will explain the PoE++ standard, best practices in PoE deployment and testing, and how to solve several common problems.

What is the PoE++ Standard?

ATM Jackpot for Hackers: Inside the $3.6M Bitcoin Depot Breach

The recent breach of Bitcoin Depot highlights yet another reminder that in the world of cryptocurrency, the weakest link often isn’t the blockchain—it’s everything around it. According to the report, attackers infiltrated the company’s internal IT systems on March 23, 2026, and managed to steal over 50 Bitcoin, valued at roughly $3.6 million. U.S. Securities and Exchange Commission filings revealed the hackers gained access to sensitive credentials tied to digital asset settlement accounts, allowing them to transfer funds before the breach was contained. (BleepingComputer)

Switch Reporting Mystery Solved

For those of you who have read my past articles, I have said countless times that you should "Know your tools". Over the years, I find a lot of examples of this simple statement.  Funny thing is how many times people just shrug their shoulders and say "oh well"...  

A few weeks ago, while troubleshooting, I noticed something odd. There were multiple mac/ip entries for individual switch ports. 

🧠 DHCP Logs Decoded: The Tiny Tool That Packs a Networking Punch

 When it comes to digging through messy Windows DHCP logs, DHCP Log Viewer from NirSoft is one of those hidden gems that quietly makes your life a whole lot easier. This lightweight, no-install utility takes the chaos of raw DHCP audit logs and turns it into something you can actually read—without needing PowerShell wizardry or endless scrolling through text files. If you’ve ever tried troubleshooting IP conflicts or lease issues using default Windows tools, you’ll instantly appreciate what this tool brings to the table. https://www.nirsoft.net/utils/dhcp_log_view.html

Certification vs. Qualification vs. Bit Rate Testing: What’s the Difference?

 

Picture this: You plug in a cable. The link light on the switch turns green. You ping the device, and it replies. You walk away thinking, "Job done."

 

But a week later, the camera goes offline intermittently, or the access point drops clients when traffic spikes. Why? Because a simple link light only tells you there is electrical continuity. It doesn't tell you if the cable can actually handle sustained data load.

 

Wi-Fi 7 vs Wi-Fi 6: The Network Smackdown You Didn’t Know You Needed

 

Let’s face it: Wi-Fi technology reads like alphabet soup most of the time, but the folks at The Network DNA take a fun (and gently sarcastic) jab at the Wi-Fi 6 vs Wi-Fi 7 debate in their comparison article. The piece starts by reminding us that Wi-Fi standards evolve faster than your last smartphone upgrade cycle — Wi-Fi 6 was a big deal when it launched, and now Wi-Fi 7 is here to make it feel like ancient history. They walk through the basics so that even your tech-averse cousin could nod along without glazing over.

In the next section, the article digs into how each standard actually performs. Think of Wi-Fi 6 as a sprinter who’s fast and efficient, handling crowded networks like a champ, while Wi-Fi 7 shows up with rollerblades, a jetpack, and probably a cape. The newer standard boosts theoretical speeds dramatically and has clever features like improved channel bandwidth and simultaneous multi-band connections that make your devices feel they’re on a super-highway rather than a congested city street.

Another $25 Amazon card is up for grabs

Go to https://giveaway.thetechfirm.com for rules and to submit your ballot or ballots ;)

Quite a few people weren't followers or on the email list, so double check.

Draw date is May 1, 2026

Why ???

 I have done countless videos about how important it is to supervise and check on your cabling contractors.

In this example, the team and I are wondering why the contractor decided to route this cable up into the ceiling and hang the drops. Yes, we provided specific install instructions...

There will be no projector or access point here. Its a break room and we wanted a few drops for a phone, smart TV and 2 extras.

Did you have a Science Fair 150-in-1 Electronic Project Kit growing up ? I did...

This vintage item is the Science Fair 150-in-1 Electronic Project Kit. Released in 1976 by Radio Shack (Tandy Corp), it was a popular educational tool designed for children aged 8 and up to explore basic electronics and electricity. 

Key Features and Capabilities 

Components: The kit includes various breadboard-mounted parts like resistors, capacitors, transistors, diodes, a solar cell, an LED digital display, and a relay. 

Assembly Method: It uses spring connectors to join wires between components, allowing users to build circuits without soldering. 

Project Variety: The accompanying "Giant Lab Type Manual" provides instructions for 150 different projects, such as building a burglar alarm, light dimmer, or transistor radios. 

Educational Value: It was designed to teach circuit fundamentals and component characteristics, often sparking lifelong interests in electrical engineering. 

Current Status 

Today, this kit is considered a vintage collector's item. It is frequently found on secondary marketplaces like eBay, where it is often sold "as-is" due to its age. While the original kits are retired, digital copies of the instruction manuals are sometimes available online for those looking to restore or use them.

🔐 Lock It Down Like a Pro: The Ultimate Cisco IOS XE Hardening Playbook

When it comes to securing your network, leaving your devices in their default state is basically rolling out the red carpet for attackers. This guide from The Network DNA dives deep into hardening Cisco IOS XE devices, walking through the critical steps every network admin should take to reduce vulnerabilities and tighten control. With threats constantly evolving—and real-world exploits targeting IOS XE services like web interfaces and management planes —this isn’t optional anymore; it’s essential.

At its core, the article emphasizes a layered security approach across the management, control, and data planes. That means locking down access with AAA, disabling unused services, enforcing strong password policies, and ensuring secure management protocols like SSHv2 are used instead of legacy options. These best practices align with long-standing Cisco hardening guidance, which highlights securing access, encrypting communications, and limiting exposure as foundational defenses .

The guide also digs into service and protocol hardening—one of the most overlooked areas. This includes disabling insecure protocols (like Telnet or older TLS versions), tightening SNMP configurations, and removing weak cryptographic ciphers. Even seemingly minor misconfigurations—like leaving outdated SSH settings enabled—can create major attack surfaces, making it critical to modernize crypto settings and keep IOS XE versions up to date .

Finally, the article reinforces the importance of continuous monitoring and maintenance. Hardening isn’t a “set it and forget it” task—it requires regular audits, log analysis, patching, and reviewing Cisco security advisories. With new vulnerabilities surfacing regularly, staying proactive ensures your network devices remain resilient, not just configured securely on day one.

Click here or the image above to read the full article

---

#ekahau Wi-Fi in Challenging Environments: Hospitals and Healthcare

Why Should I Bother With A Site Audit

After working this contract for over a year, I feel like I've got a pretty good idea of the current equipment, installation standards, some of the exceptions and some of the chronic issues support staff face. I even had the opportunity to visit a few sites to see the office culture, politics and equipment limitations that we have to work with.

Even though the bulk of the installations were done around the same time period with some really good installation standards like what goes to what port, IP addressing standards, etc..  things change over the years for a multitude of reasons:

- replacing equipment due to upgrades or failure

congrats to our LRAT 1500 winner - Allen Lee

 

from thenetworkdna Network Security Fundamentals

 In Part-3: Network Security Fundamentals, The Network DNA shifts focus to the crucial topic of device access control, an often overlooked but essential pillar of robust network security. The article explains how unrestricted access to core infrastructure like routers, switches, and firewalls can lead to costly configuration errors or malicious breaches, and why securing these devices themselves is as important as protecting the data that flows through them.

Route Like a Pro: The CCNA Roadmap Your Packets Wish You Knew

 If you’ve ever wondered how your data magically finds its way across networks without getting hopelessly lost, this article breaks it down in a way that finally makes routing click. It walks through the foundational idea of routing—how routers make decisions and forward packets between networks—emphasizing that without routing, communication beyond a single network simply wouldn’t happen. From understanding routing tables to how routers evaluate paths, the article sets a strong baseline for anyone prepping for CCNA or just trying to level up their networking game.

Don’t Miss This Must-See Webcast with Mike Pennachi and #netAlly

 
CCA vs Pure Copper Cat 6: What Your Cable Isn’t Telling You (Until It Fails)

Not all Cat 6 cable is created equal. Choosing the wrong type can quietly sabotage your network performance, PoE delivery, and long-term reliability. In this deep-dive webcast, we put Copper Clad Aluminum (CCA) and solid bare copper Cat 6 cabling head-to-head using industry-leading test platforms from Fluke Networks and NetAlly.

https://us02web.zoom.us/webinar/register/WN_qiggXdO7TXmanw1L8rsdPw#/registration

Switch Happens: The CCNA Concepts That Separate the Pros from the Packet Droppers

If you’ve ever wondered what’s really going on behind the blinking lights of your network switch, this article breaks it down in a way that actually sticks. At its core, switching is all about how devices communicate efficiently within a LAN, using MAC addresses and intelligent forwarding instead of the old “everyone shout at once” hub approach. The article walks through how switches learn, store, and forward frames, and why understanding things like collision domains and broadcast domains is critical if you want to troubleshoot issues without just unplugging things and hoping for the best.