RE: SSID Naming & 5ghz

[Jason Cook]

Thanks Bruce,

Cisco. We disabled band select a few years ago, but from some replies so far it 
might be worth a try again.

Time to start some testing.

Regards

Jason

--
Jason Cook
The University of Adelaide, AUSTRALIA 5005
Ph: +61 8 8313 4800
e-mail: 
jason.c...@adelaide.edu.au>

From: The EDUCAUSE Wireless Issues Constituent Group Listserv 
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Osborne, Bruce W 
(Network Services)
Sent: Tuesday, 12 August 2014 9:04 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] SSID Naming & 5ghz

You do not say what wireless vendor you use.

We find Aruba's Client Match & Bans Steering work quite well to steer clients 
to 5GHz and less used APs.

Bruce Osborne
Network Engineer - Wireless Team
IT Network Services

(434) 592-4229

LIBERTY UNIVERSITY
Training Champions for Christ since 1971

From: Jason Cook [mailto:jason.c...@adelaide.edu.au]
Sent: Monday, August 11, 2014 2:33 AM
Subject: SSID Naming & 5ghz

HI All,

I'm sure I've seen discussions like this but can't seem find any.

Has anyone gone down the path of creating 5ghz only SSID's simply to get around 
the issue of devices connecting at 2.4ghz even though they support 5ghz? We 
find this occurs a lot and in the dense environments users have a pretty 
average time using 2.4 or swapping between 2.4 and 5. So far in testing having 
a 5ghz only SSID has helped a lot.

This unfortunately provides another SSID in the air, but the benefits should be 
worth it.
Currently we have
UofA (primary SSID)
UofA-help (open SSID with web-redirect to guides/documentation)
eduroam
We are looking  at creating
UofA Premium
Or a different word(gold, Ultra, platinum etc), just something that makes 
someone want to use it if they see it. The current workaround uses UofA 5ghz, 
however a technical name isn't the best idea as it means nothing to most users.

So has anyone else taken this path? What naming did you use, anything that 
seems less bland that premium would be good:)

Apart from that has anyone successfully worked around the issue of devices 
connecting at 2.4ghz despite being 5ghz capable using another method? Cisco's 
Band Select doesn't impress. Some devices can be configured to prefer 5ghz, but 
this is very limited.

Regards

Jason

--
Jason Cook
Technology Services
The University of Adelaide, AUSTRALIA 5005
Ph: +61 8 8313 4800
e-mail: 
jason.c...@adelaide.edu.au>

CRICOS Provider Number 00123M
---
This email message is intended only for the addressee(s) and contains 
information which may be confidential and/or copyright.  If you are not the 
intended recipient please do not read, save, forward, disclose, or copy the 
contents of this email. If this email has been sent to you in error, please 
notify the sender by reply email and delete this email and any copies or links 
to this email completely and immediately from your system.  No representation 
is made that this email is free of viruses.  Virus scanning is recommended and 
is the responsibility of the recipient.

** Participation and subscription information for this EDUCAUSE 
Constituent Group discussion list can be found at 
http://www.educause.edu/groups/.
** Participation and subscription information for this EDUCAUSE 
Constituent Group discussion list can be found at 
http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?

[Craig Eyre]

We use it to drop certain traffic but not P2P as it will just morph into
different ports. We just mark and control the bandwidth for all the P2P
stuff to "try" and make it unusable for users.


Craig


On Tue, Aug 12, 2014 at 9:44 AM, Ciesinski, Nick  wrote:

> Lee,
>
> We have been doing AVC for a few years now to drop P2P.  We are doing it
> on a ASR1k though not the WLC.   We used to use a SCE engine to do it which
> is where the AVC/NBAR2 stuff came from.  We find we don't need to update
> protocol packs that often.
>
> Nick Ciesinski
>
> From: Chad Burnham mailto:cburn...@du.edu>>
> Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>
> Date: Tuesday, August 12, 2014 10:40 AM
> To: "WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>"  >
> Subject: Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?
>
> HI Lee,
>
> Getting it humming this month – on a pair of ASR 1006 Routers (sorry not
> in Wireless).
> We have Prime Infrastructure (2.1) managing it.
>
> We removed our Anagrans this summer to move to this.
>
> We just upgraded ASR this AM to support it. Will let you know in a month.
> I am scheduled to talk/present @ WestNet about our experiences in January.
>
> Signatures = Protocol Packs. You can update them without rebooting the
> router.
>
> CB
>
> From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Lee H Badman
> Sent: Tuesday, August 12, 2014 9:28 AM
> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
> Subject: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?
>
>
> ​We are "using" Cisco's WLAN application visibility, but doing little with
> it beyond the occasional looking in.  Elsewhere, we use Palo Alto boxes to
> shape traffic, but are interested in getting the controllers more involved
> in a prod role.
>
>
>
> Is anyone relying on AVC to drop traffic like P2P in prod? Is it working
> well for you? How often do you find signature updates available? Any other
> thoughts/comments on experiences, successes, or frustrations with using AVC
> for real- especially on large networks?
>
>
>
> Thanks-
>
>
>
> Lee Badman
>
>
>
>
> Lee H. Badman
> Network Architect/Wireless TME
> ITS, Syracuse University
> 315.443.3003
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>



-- 
Craig Eyre
Network Analyst
IT Services Department
Mount Royal University
4825 Mount Royal Gate SW
Calgary AB T2P 3T5

P. 403.440.5199
E. ce...@mtroyal.ca

"The difference between a successful person and others is not a lack of
strength, not a lack of knowledge, but rather in a lack of will." Vincent
T. Lombardi"

"MRU IT Services or any legitimate organization will *NEVER* ask for your
password. Never email or share your password with anyone.".

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Replacing ageing APs

[Craig Eyre]

Disregard wrong post :>)

Craig


On Tue, Aug 12, 2014 at 12:10 PM, Craig Eyre  wrote:

> We use it to drop certain traffic but not P2P as it will just morph into
> different ports. We just mark and control the bandwidth for all the P2P
> stuff to "try" and make it unusable for users.
>
>
> Craig
>
>
> On Tue, Aug 12, 2014 at 11:22 AM, Gavin Pyle  wrote:
>
>>  We petition our tech fee council for money to perform wireless
>> upgrades.  Students consider having the latest WiFi technologies essential
>> so they have yet to turn down a request.  We upgrade APs in the areas that
>> serve mostly students using this money and the older APs usually get
>> trickled to faculty areas, until they are really old and then get sent to
>> surplus.
>>
>>
>>
>> --
>>
>> Gavin Pyle
>>
>> Network Engineer
>>
>> Green River Community College
>>
>> gp...@greenriver.edu
>>
>>
>>
>> *Breathe easy – Green River is now tobacco-free!
>> *
>>
>>
>>
>> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
>> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Oliver Elliott
>> *Sent:* Thursday, August 7, 2014 1:01 AM
>> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
>> *Subject:* [WIRELESS-LAN] Replacing ageing APs
>>
>>
>>
>> Hi all
>>
>>
>>
>> I've been looking into EOLs and end of software support for some of our
>> older APs and was wondering what other institutions do to keep their estate
>> up to date. Up to now we've had very sparse funding for wireless as it was
>> always viewed as an add on service. A recent outage (caused by buggy
>> 7.6.120 code) has shown just how important Wifi has become. Up to now APs
>> have been largely installed on an ad-hoc basis with funding from
>> departments or projects but this doesn't tend to account for EOL
>> replacement.
>>
>>
>>
>> We're looking to apply for a formal replacement project based on either
>> rolling yearly replacement budget or a big bang approach every few years.
>>
>>
>>
>> So, how do you guys handle this problem?
>>
>>
>>
>> Oli
>>
>> --
>>
>> Oliver Elliott
>> Network Specialist
>> IT Services
>> University of Bristol
>> e: oliver.elli...@bristol.ac.uk
>> t: 0117 92 (87861)
>>
>> ** Participation and subscription information for this EDUCAUSE
>> Constituent Group discussion list can be found at
>> http://www.educause.edu/groups/.
>>
>
>
>
> --
> Craig Eyre
> Network Analyst
> IT Services Department
> Mount Royal University
> 4825 Mount Royal Gate SW
> Calgary AB T2P 3T5
>
> P. 403.440.5199
> E. ce...@mtroyal.ca
>
> "The difference between a successful person and others is not a lack of
> strength, not a lack of knowledge, but rather in a lack of will." Vincent
> T. Lombardi"
>
> "MRU IT Services or any legitimate organization will *NEVER* ask for your
> password. Never email or share your password with anyone.".
>



-- 
Craig Eyre
Network Analyst
IT Services Department
Mount Royal University
4825 Mount Royal Gate SW
Calgary AB T2P 3T5

P. 403.440.5199
E. ce...@mtroyal.ca

"The difference between a successful person and others is not a lack of
strength, not a lack of knowledge, but rather in a lack of will." Vincent
T. Lombardi"

"MRU IT Services or any legitimate organization will *NEVER* ask for your
password. Never email or share your password with anyone.".

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Replacing ageing APs

[Craig Eyre]

We use it to drop certain traffic but not P2P as it will just morph into
different ports. We just mark and control the bandwidth for all the P2P
stuff to "try" and make it unusable for users.


Craig


On Tue, Aug 12, 2014 at 11:22 AM, Gavin Pyle  wrote:

>  We petition our tech fee council for money to perform wireless
> upgrades.  Students consider having the latest WiFi technologies essential
> so they have yet to turn down a request.  We upgrade APs in the areas that
> serve mostly students using this money and the older APs usually get
> trickled to faculty areas, until they are really old and then get sent to
> surplus.
>
>
>
> --
>
> Gavin Pyle
>
> Network Engineer
>
> Green River Community College
>
> gp...@greenriver.edu
>
>
>
> *Breathe easy – Green River is now tobacco-free!
> *
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Oliver Elliott
> *Sent:* Thursday, August 7, 2014 1:01 AM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* [WIRELESS-LAN] Replacing ageing APs
>
>
>
> Hi all
>
>
>
> I've been looking into EOLs and end of software support for some of our
> older APs and was wondering what other institutions do to keep their estate
> up to date. Up to now we've had very sparse funding for wireless as it was
> always viewed as an add on service. A recent outage (caused by buggy
> 7.6.120 code) has shown just how important Wifi has become. Up to now APs
> have been largely installed on an ad-hoc basis with funding from
> departments or projects but this doesn't tend to account for EOL
> replacement.
>
>
>
> We're looking to apply for a formal replacement project based on either
> rolling yearly replacement budget or a big bang approach every few years.
>
>
>
> So, how do you guys handle this problem?
>
>
>
> Oli
>
> --
>
> Oliver Elliott
> Network Specialist
> IT Services
> University of Bristol
> e: oliver.elli...@bristol.ac.uk
> t: 0117 92 (87861)
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>



-- 
Craig Eyre
Network Analyst
IT Services Department
Mount Royal University
4825 Mount Royal Gate SW
Calgary AB T2P 3T5

P. 403.440.5199
E. ce...@mtroyal.ca

"The difference between a successful person and others is not a lack of
strength, not a lack of knowledge, but rather in a lack of will." Vincent
T. Lombardi"

"MRU IT Services or any legitimate organization will *NEVER* ask for your
password. Never email or share your password with anyone.".

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

RE: [WIRELESS-LAN] Replacing ageing APs

[Gavin Pyle]

We petition our tech fee council for money to perform wireless upgrades.  
Students consider having the latest WiFi technologies essential so they have 
yet to turn down a request.  We upgrade APs in the areas that serve mostly 
students using this money and the older APs usually get trickled to faculty 
areas, until they are really old and then get sent to surplus.

--
Gavin Pyle
Network Engineer
Green River Community College
gp...@greenriver.edu

Breathe easy – Green River is now 
tobacco-free!

From: The EDUCAUSE Wireless Issues Constituent Group Listserv 
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Oliver Elliott
Sent: Thursday, August 7, 2014 1:01 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] Replacing ageing APs

Hi all

I've been looking into EOLs and end of software support for some of our older 
APs and was wondering what other institutions do to keep their estate up to 
date. Up to now we've had very sparse funding for wireless as it was always 
viewed as an add on service. A recent outage (caused by buggy 7.6.120 code) has 
shown just how important Wifi has become. Up to now APs have been largely 
installed on an ad-hoc basis with funding from departments or projects but this 
doesn't tend to account for EOL replacement.

We're looking to apply for a formal replacement project based on either rolling 
yearly replacement budget or a big bang approach every few years.

So, how do you guys handle this problem?

Oli
--
Oliver Elliott
Network Specialist
IT Services
University of Bristol
e: oliver.elli...@bristol.ac.uk
t: 0117 92 (87861)
** Participation and subscription information for this EDUCAUSE 
Constituent Group discussion list can be found at 
http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?

[Ciesinski, Nick]

Lee,

We have been doing AVC for a few years now to drop P2P.  We are doing it on a 
ASR1k though not the WLC.   We used to use a SCE engine to do it which is where 
the AVC/NBAR2 stuff came from.  We find we don't need to update protocol packs 
that often.

Nick Ciesinski

From: Chad Burnham mailto:cburn...@du.edu>>
Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv 
mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>
Date: Tuesday, August 12, 2014 10:40 AM
To: 
"WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU" 
mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>>
Subject: Re: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?

HI Lee,

Getting it humming this month – on a pair of ASR 1006 Routers (sorry not in 
Wireless).
We have Prime Infrastructure (2.1) managing it.

We removed our Anagrans this summer to move to this.

We just upgraded ASR this AM to support it. Will let you know in a month.
I am scheduled to talk/present @ WestNet about our experiences in January.

Signatures = Protocol Packs. You can update them without rebooting the router.

CB

From: The EDUCAUSE Wireless Issues Constituent Group Listserv 
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Lee H Badman
Sent: Tuesday, August 12, 2014 9:28 AM
To: 
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?


​We are "using" Cisco's WLAN application visibility, but doing little with it 
beyond the occasional looking in.  Elsewhere, we use Palo Alto boxes to shape 
traffic, but are interested in getting the controllers more involved in a prod 
role.



Is anyone relying on AVC to drop traffic like P2P in prod? Is it working well 
for you? How often do you find signature updates available? Any other 
thoughts/comments on experiences, successes, or frustrations with using AVC for 
real- especially on large networks?



Thanks-



Lee Badman




Lee H. Badman
Network Architect/Wireless TME
ITS, Syracuse University
315.443.3003
** Participation and subscription information for this EDUCAUSE 
Constituent Group discussion list can be found at 
http://www.educause.edu/groups/.

RE: Cisco AVC- anyone using it for real in prod?

[Chad Burnham]

HI Lee,

Getting it humming this month – on a pair of ASR 1006 Routers (sorry not in 
Wireless).
We have Prime Infrastructure (2.1) managing it.

We removed our Anagrans this summer to move to this.

We just upgraded ASR this AM to support it. Will let you know in a month.
I am scheduled to talk/present @ WestNet about our experiences in January.

Signatures = Protocol Packs. You can update them without rebooting the router.

CB

From: The EDUCAUSE Wireless Issues Constituent Group Listserv 
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Lee H Badman
Sent: Tuesday, August 12, 2014 9:28 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] Cisco AVC- anyone using it for real in prod?


​We are "using" Cisco's WLAN application visibility, but doing little with it 
beyond the occasional looking in.  Elsewhere, we use Palo Alto boxes to shape 
traffic, but are interested in getting the controllers more involved in a prod 
role.



Is anyone relying on AVC to drop traffic like P2P in prod? Is it working well 
for you? How often do you find signature updates available? Any other 
thoughts/comments on experiences, successes, or frustrations with using AVC for 
real- especially on large networks?



Thanks-



Lee Badman




Lee H. Badman
Network Architect/Wireless TME
ITS, Syracuse University
315.443.3003
** Participation and subscription information for this EDUCAUSE 
Constituent Group discussion list can be found at 
http://www.educause.edu/groups/.

Cisco AVC- anyone using it for real in prod?

[Lee H Badman]

?We are "using" Cisco's WLAN application visibility, but doing little with it 
beyond the occasional looking in.  Elsewhere, we use Palo Alto boxes to shape 
traffic, but are interested in getting the controllers more involved in a prod 
role.


Is anyone relying on AVC to drop traffic like P2P in prod? Is it working well 
for you? How often do you find signature updates available? Any other 
thoughts/comments on experiences, successes, or frustrations with using AVC for 
real- especially on large networks?


Thanks-


Lee Badman



Lee H. Badman
Network Architect/Wireless TME
ITS, Syracuse University
315.443.3003

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

RE: SSID Naming & 5ghz

[Osborne, Bruce W (Network Services)]

You do not say what wireless vendor you use.

We find Aruba's Client Match & Bans Steering work quite well to steer clients 
to 5GHz and less used APs.

Bruce Osborne
Network Engineer - Wireless Team
IT Network Services

(434) 592-4229

LIBERTY UNIVERSITY
Training Champions for Christ since 1971

From: Jason Cook [mailto:jason.c...@adelaide.edu.au]
Sent: Monday, August 11, 2014 2:33 AM
Subject: SSID Naming & 5ghz

HI All,

I'm sure I've seen discussions like this but can't seem find any.

Has anyone gone down the path of creating 5ghz only SSID's simply to get around 
the issue of devices connecting at 2.4ghz even though they support 5ghz? We 
find this occurs a lot and in the dense environments users have a pretty 
average time using 2.4 or swapping between 2.4 and 5. So far in testing having 
a 5ghz only SSID has helped a lot.

This unfortunately provides another SSID in the air, but the benefits should be 
worth it.
Currently we have
UofA (primary SSID)
UofA-help (open SSID with web-redirect to guides/documentation)
eduroam
We are looking  at creating
UofA Premium
Or a different word(gold, Ultra, platinum etc), just something that makes 
someone want to use it if they see it. The current workaround uses UofA 5ghz, 
however a technical name isn't the best idea as it means nothing to most users.

So has anyone else taken this path? What naming did you use, anything that 
seems less bland that premium would be good:)

Apart from that has anyone successfully worked around the issue of devices 
connecting at 2.4ghz despite being 5ghz capable using another method? Cisco's 
Band Select doesn't impress. Some devices can be configured to prefer 5ghz, but 
this is very limited.

Regards

Jason

--
Jason Cook
Technology Services
The University of Adelaide, AUSTRALIA 5005
Ph: +61 8 8313 4800
e-mail: 
jason.c...@adelaide.edu.au>

CRICOS Provider Number 00123M
---
This email message is intended only for the addressee(s) and contains 
information which may be confidential and/or copyright.  If you are not the 
intended recipient please do not read, save, forward, disclose, or copy the 
contents of this email. If this email has been sent to you in error, please 
notify the sender by reply email and delete this email and any copies or links 
to this email completely and immediately from your system.  No representation 
is made that this email is free of viruses.  Virus scanning is recommended and 
is the responsibility of the recipient.

** Participation and subscription information for this EDUCAUSE 
Constituent Group discussion list can be found at 
http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.