--- name: chat description: General IT chat for miscellaneous queries, greetings, quick IT help, troubleshooting advice, tool recommendations, and general technology discussions. Use when user asks general IT questions, needs quick help, wants tech advice, or needs casual IT conversation. Triggers on phrases like "help with IT", "general IT question", "IT advice", "tech support", "what tool should I use", "IT help desk chat", "technology question". --- # IT General Chat & Support Your AI-powered IT assistant for general technology questions, quick troubleshooting, and strategic advice. ## Capabilities ``` IT SUPPORT CAPABILITIES MATRIX ================================ ┌──────────────────────────────┬─────────────────────────────────────────┐ │ Category │ What I Can Help With │ ├──────────────────────────────┼─────────────────────────────────────────┤ │ Quick Troubleshooting │ Common issues: connectivity, software │ │ │ errors, password resets, printer issues │ ├──────────────────────────────┼─────────────────────────────────────────┤ │ Tool & Vendor Recommendations│ Cloud platforms, security tools, DevOps │ │ │ solutions, monitoring tools │ ├──────────────────────────────┼─────────────────────────────────────────┤ │ Architecture Advice │ System design, scalability patterns, │ │ │ technology stack decisions │ ├──────────────────────────────┼─────────────────────────────────────────┤ │ Best Practices │ ITIL frameworks, security standards, │ │ │ coding standards, deployment practices │ ├──────────────────────────────┼─────────────────────────────────────────┤ │ Compliance & Standards │ SOC 2, ISO 27001, GDPR, PCI-DSS guidance│ ├──────────────────────────────┼─────────────────────────────────────────┤ │ Career & Skills │ IT career paths, certifications, learning│ │ │ resources, interview prep │ └──────────────────────────────┴─────────────────────────────────────────┘ Response guidelines: - Always provide actionable, specific advice - Include relevant tool names and links when applicable - Reference industry standards and best practices - Provide cost estimates when discussing tools/vendors - Escalate to specific skill if the query matches a deeper topic ``` ## Common IT Troubleshooting ### Connectivity Issues ``` NETWORK CONNECTIVITY TROUBLESHOOTING ==================================== Step-by-step diagnostic approach: Step 1: Physical layer check - Verify cables connected (Ethernet) - Check Wi-Fi signal strength (> -65 dBm ideal) - Router/switch lights (green = good, amber/red = issue) - Test with different cable/port Step 2: Local network check - Ping default gateway: ping 192.168.1.1 (or your gateway) - Check IP assignment: ipconfig /ifconfig - Verify DNS resolution: nslookup google.com - Check for IP conflicts on local subnet Step 3: External connectivity - Ping external host: ping 8.8.8.8 - If ping works but browsing doesn't: DNS issue - If ping fails: routing/firewall issue - Test alternate DNS: 1.1.1.1 (Cloudflare), 8.8.8.8 (Google) Step 4: Application layer - Browser-specific issue? Try different browser - SSL certificate errors? Check system clock - Proxy issues? Check proxy settings (Settings > Network > Proxy) - Firewall blocking? Check Windows Firewall / antivirus Step 5: ISP & external - Check ISP status page for outages - Test on different device at same location - Test on cellular network (phone hotspot) - Contact ISP if all devices fail Common causes and resolution time: Wi-Fi dropped: 5-15 minutes (restart router, reconnect) DNS failure: 2-5 minutes (flush DNS, change resolver) IP conflict: 5-10 minutes (release/renew IP, change DHCP range) Firewall blocking: 10-30 minutes (review firewall rules) ISP outage: Wait for resolution (typically 1-4 hours) ``` ### System Performance Issues ``` SLOW SYSTEM DIAGNOSTIC CHECKLIST ================================= Windows: 1. Check Task Manager (Ctrl+Shift+Esc): - CPU usage >80%: Identify top processes - Memory usage >90%: Close applications, add RAM - Disk usage >90%: Check for HDD bottleneck, upgrade to SSD - Network usage spike: Identify bandwidth hogs 2. Check Event Viewer for errors (eventvwr.msc) 3. Run disk cleanup: cleanmgr.exe 4. Check for malware: Run Windows Defender scan 5. Disable startup programs (Task Manager > Startup) 6. Check Windows Update status 7. Run sfc /scannow for system file integrity 8. Check disk health: chkdsk /f /r Linux/Mac: 1. Check system resources: top or htop 2. Check disk I/O: iotop (Linux), Activity Monitor (Mac) 3. Check memory: free -h (Linux), Activity Monitor (Mac) 4. Check disk space: df -h 5. Check for cron jobs or scheduled tasks causing load 6. Review system logs: dmesg, /var/log/syslog 7. Check for kernel updates needed Enterprise environment: - Check domain controller connectivity - Verify Active Directory health: dcdiag /v - Check Group Policy application: gpresult /r - Review DHCP scope utilization - Check DNS server health - Monitor backup job status and completion ``` ### Software & Application Issues ``` COMMON APPLICATION ISSUES & FIXES =================================== Office 365 / Microsoft 365: - Outlook won't sync: Repair OST file (File > Account Settings > Repair) - Excel crashing: Disable add-ins (File > Options > Add-ins) - Teams not starting: Clear Teams cache (%appdata%\Microsoft\Teams) - OneDrive sync issues: Restart OneDrive, check file conflicts - License assignment issues: Check Entra Admin Center > Users Google Workspace: - Gmail not loading: Clear browser cache, try incognito mode - Drive sync issues: Check Google Drive for Desktop settings - Calendar sync: Verify OAuth connection, re-authenticate - Admin console access: Verify super admin privileges Common fixes for any application: 1. Restart the application 2. Restart the computer 3. Update to latest version 4. Reinstall (clean uninstall then fresh install) 5. Check for conflicting software (antivirus, security tools) 6. Run as administrator (Windows) 7. Check system requirements (OS version, RAM, disk space) 8. Review error logs (application-specific) ``` ## Technology Recommendations ### Cloud Infrastructure Comparison ``` CLOUD PLATFORM COMPARISON MATRIX (2024) ======================================== AWS Azure Google Cloud Compute: EC2, VMs, Compute Engine Lambda App Service Cloud Run, GKE Storage: S3, EBS Blob Storage Cloud Storage EFS Files Filestore Database: RDS, SQL Database Cloud SQL, DynamoDB Cosmos DB Spanner, Firestore AI/ML: SageMaker Azure AI Vertex AI Networking: VPC, VNet, VPC, Cloud Route 53 DNS Load Balancing Monitoring: CloudWatch Monitor Cloud Monitoring Security: IAM, Entra ID IAM, BeyondCorp GuardDuty Defender Cost estimates (general guide): - Virtual machine (4 vCPU, 16 GB RAM): $150-$250/month - Cloud storage (per GB): $0.023-$0.026/GB/month - Database (managed, 100 GB): $50-$150/month - Load balancer: $18-$25/month (plus data processing costs) - CDN (per GB): $0.02-$0.08/GB Recommendation by use case: - Startup / SMB: AWS or Google Cloud (flexible, pay-as-you-go) - Enterprise (Microsoft-heavy): Azure (native integration) - Data analytics / ML: Google Cloud (best-in-class AI/ML) - Hybrid cloud: Azure (Azure Arc) or AWS (Outposts) - Multi-cloud: All three (use each for strengths) ``` ### Security Tool Recommendations ``` SECURITY TOOL STACK BY ORGANIZATION SIZE ========================================== Startup (1-50 employees, budget < $50K/year): Endpoint: CrowdStrike (Free tier) or Microsoft Defender for Endpoint Email security: Proofpoint Essentials or Microsoft Defender for Office 365 Firewall: Cloudflare Gateway or Open-source pfSense MFA: Google Authenticator or Duo Free Password manager: 1Password Teams or Bitwarden SIEM: Wazuh (open-source) Vulnerability scanning: OpenVAS (free) or Qualys (free tier) Estimated cost: $5,000-$15,000/year Small-Medium (50-500 employees, budget $50K-$250K/year): Endpoint: CrowdStrike Falcon or SentinelOne Email security: Proofpoint TAP or Mimecast Firewall: Palo Alto Networks PA-400 series or Fortinet MFA: Duo Security or Okta Verify Password manager: 1Password Enterprise or CyberArk Endpoint Privilege Manager SIEM: Splunk Essential (up to 1 GB/day) or Microsoft Sentinel Vulnerability scanning: Qualys VM or Tenable.io IAM: Okta Identity Cloud Backup: Veeam or Druva Estimated cost: $80,000-$200,000/year Enterprise (500+ employees, budget $250K+/year): Endpoint: CrowdStrike Falcon Complete or Microsoft Defender XDR Email security: Proofpoint Protection Server Suite Firewall: Palo Alto Networks PA-5000+ or Fortinet FortiGate 4000 SIEM: Splunk Enterprise Security or Microsoft Sentinel (enterprise) SOAR: Splunk SOAR or IBM Resilient IAM: Okta Advanced Server Access + CyberArk PAM DLP: Forcepoint DLP or Microsoft Purview Vulnerability: Qualys VMDR + Tenable.io (complementary) Cloud security: Wiz or Lacework Threat intel: Recorded Future or Mandiant Threat Intelligence Estimated cost: $500,000-$2,000,000+/year ``` ## IT Frameworks & Standards ``` KEY IT FRAMEWORKS REFERENCE ============================ ITIL 4 (IT Service Management): - Purpose: Best practice framework for IT service management - Key practices: Incident Management, Problem Management, Change Enablement, Service Level Management, Continual Improvement - Service Value System: Guiding Principles, Governance, Service Value Chain, Practices, Continual Improvement - Cost: Foundation exam ~£350, full certification path ~£2,000 - Best for: Organizations wanting structured IT service management COBIT 2019 (Governance & Management): - Purpose: Framework for IT governance and management - Focus: Align IT with business goals, manage risks, optimize resources - Components: Governance System, 40 Governance & Management Objectives, Design Factors, Components of Governance System - Cost: Certification ~$400-$1,500 depending on level - Best for: Organizations needing IT governance and compliance alignment NIST Cybersecurity Framework: - Purpose: Cybersecurity risk management framework - Functions: Identify, Protect, Detect, Respond, Recover - Tiers: Partial, Risk-Informed, Repeatable, Adaptive - Cost: Free (government framework) - Best for: Organizations of all sizes, especially regulated industries ISO 27001 (Information Security Management): - Purpose: International standard for information security management - Key elements: ISMS, risk assessment, statement of applicability, security controls (93 controls in Annex A) - Cost: Certification ~$15,000-$50,000+ depending on organization size - Best for: Organizations needing internationally recognized ISMS certification SOC 2 (Service Organization Control): - Purpose: Security, availability, processing integrity, confidentiality, privacy - Trust Service Criteria: Security (required), Availability, Processing Integrity, Confidentiality, Privacy (optional) - Types: Type I (point-in-time) vs Type II (operational effectiveness over period) - Cost: Audit ~$25,000-$100,000+ depending on scope - Best for: SaaS companies, cloud providers, data processors Zero Trust Architecture (NIST SP 800-207): - Principle: "Never trust, always verify" - Components: Identity verification, least privilege access, micro-segmentation, continuous monitoring, assumption of breach - Implementation steps: Define trust boundary, enforce strong authentication, implement least privilege, segment network, monitor continuously - Best for: Organizations with hybrid cloud, remote workforce, compliance needs ``` ## Incident Response Quick Reference ``` INCIDENT RESPONSE QUICK GUIDE ============================== Immediate actions (first 15 minutes): 1. Assess: What is the incident? Scope and impact? 2. Contain: Isolate affected systems (disconnect network, disable accounts) 3. Notify: Alert incident response team, management, affected customers (if needed) 4. Document: Start timeline, capture screenshots, preserve evidence 5. Escalate: Follow escalation matrix based on severity Severity classification: P1 - Critical: Complete service outage, data breach, active attack in progress Response time: 15 minutes | Resolution target: 4 hours P2 - High: Major service degradation, security vulnerability (critical) Response time: 30 minutes | Resolution target: 8 hours P3 - Medium: Partial service impact, security vulnerability (high) Response time: 2 hours | Resolution target: 24 hours P4 - Low: Minor issue, cosmetic bug, security vulnerability (medium/low) Response time: 8 hours | Resolution target: 1 week Post-incident checklist: [ ] Root cause analysis completed [ ] All affected systems restored to normal [ ] Vulnerabilities patched / controls strengthened [ ] Detection rules updated [ ] Incident report documented [ ] Stakeholders notified of resolution [ ] Lessons learned meeting scheduled [ ] Playbooks updated based on learnings [ ] Metrics updated (MTTD, MTTR) ``` ## Common Commands Reference ``` ESSENTIAL IT COMMANDS CHEAT SHEET =================================== Windows: Network: ipconfig /all, ping, tracert, nslookup, netstat -an Active Dir: dsquery user, dsget user, group, net user, whoami /all Services: sc query, net start, net stop, services.msc Event Log: eventvwr.msc, wevtutil qe System /c:100 Disk: chkdsk, diskpart, fsutil volume diskfree c: System: systeminfo, msinfo32, tasklist, taskkill /F /IM Registry: regedit, reg query, reg export Linux: System: top, htop, uptime, uname -a, df -h, free -m Network: ss -tulpn, ip addr, curl, wget, dig, nmap Services: systemctl status/start/stop/restart, service Permissions: chmod, chown, getfacl, setfacl Logging: journalctl -u service, tail -f /var/log/syslog Users: id, groups, who, w, last Cloud (AWS CLI): EC2: aws ec2 describe-instances, aws ec2 start/stop-instances S3: aws s3 ls, aws s3 cp, aws s3 sync Lambda: aws lambda list-functions, aws lambda invoke CloudWatch: aws logs tail, aws cloudwatch get-metric-data IAM: aws iam list-users, aws iam list-access-keys Git: Basic: git status, git log --oneline, git diff, git stash Branch: git branch -a, git checkout -b, git merge, git rebase Remote: git fetch, git pull, git push origin Docker: Container: docker ps -a, docker logs , docker exec -it sh Image: docker images, docker build -t . Compose: docker-compose up -d, docker-compose logs -f, docker-compose down ``` ## Edge Cases - **Non-standard environments**: Custom applications, legacy systems, mainframe environments — advise on specific tools and approaches for legacy technology (COBOL, mainframe, AS/400) - **Multi-region/global IT**: Different compliance requirements (GDPR in EU, data localization in China/Russia), time zone challenges for support — recommend regional IT teams and 24/7 NOC - **Regulated industries**: Healthcare (HIPAA), finance (SOX, PCI-DSS), government (FedRAMP) — advise on compliance-specific requirements and tooling - **Hybrid cloud complexity**: Managing infrastructure across on-premise and multiple cloud providers — recommend hybrid cloud management tools (Azure Arc, AWS Outposts) - **Budget constraints**: Small organizations with limited IT budget — recommend open-source alternatives and managed services to reduce headcount needs - **Emergency situations**: Active ransomware attack, complete data center outage — provide immediate action steps and emergency contacts for professional incident response teams