from:"0000011154ae7429\-dmarc\-request"

Re: [WIRELESS-LAN] ISE errors 5440 for guests using eduroam

2019-10-15 Thread 0000011154ae7429-dmarc-request

I'm not sure that I can help you reduce this, but I might be able to
shed some light on the issue.

One common cause of such a situation would be that some IdP stops
responding to the eduroam-US servers (a timeout occurs). When that
happens our servers will mark the proxy server as dead for 60 seconds
(our dead time). During that 60 seconds our servers will not forward
anything else to the server and any ongoing authentications will end up
dying (often rejected as a No response in our log viewer for the SP).
This is because EAP requires each server to keep the state of the
authentication so failover cannot happen with EAP. The IdP will likely
see this as the error you mentioned because the client just disappeared.

The real solution to the problem is for IdPs to always respond to all
requests (including accounting!). A somewhat workable solution is to use
Status-Server requests for those with RADIUS servers that can support them.

 Chad Bauer

eduroam-US Team Member
PGP Key ID 0x5A20AE5E

On 10/10/19 12:17 PM, Christina Klam wrote:
> As many of you have mentioned, the following message is very common in 
> the ISE logs, "5440 Endpoint abandoned EAP session and started new." 
> Our logs are full of that message for an clients that eventually joins
> one second later.   I have noticed that it is far more common for guests
> using eduroam on our campus -- where their IDP is another university.   
>   Is there a setting we can make to improve or stop these messages?
> 
> Thank you,
> Christina Klam
> Network Engineer
> Institute for Advanced Study
> 1 Einstein Dr
> Princeton, NJ 08540
> +1 609-734-8154
> ck...@ias.edu
> 
> **
> Replies to EDUCAUSE Community Group emails are sent to the entire
> community list. If you want to reply only to the person who sent the
> message, copy and paste their email address and forward the email reply.
> Additional participation and subscription information can be found at
> https://www.educause.edu/community
> 

**
Replies to EDUCAUSE Community Group emails are sent to the entire community 
list. If you want to reply only to the person who sent the message, copy and 
paste their email address and forward the email reply. Additional participation 
and subscription information can be found at https://www.educause.edu/community

signature.asc
Description: OpenPGP digital signature

Re: [WIRELESS-LAN] Residential Wireless and Gaming

2019-09-05 Thread 0000011154ae7429-dmarc-request

This is one reason why I don't think that game streaming will happen
anytime soon if ever. The only place that you can possibly do this is a
university because there is rarely if ever a bandwidth cap there. Every
home user that I know of has a bandwidth cap that they would speed right
past within 2-5 days.

 Chad Bauer

eduroam-US Team Member
PGP Key ID 0x5A20AE5E

On 9/4/19 5:03 PM, Howard, Christopher wrote:
> I think this has the potential to get worse as these "game streaming"
> services continue to grow. Now not only do you have the outbound control
> data that needs to be low latency, but you have a big video stream
> coming back in.
> 
> We have one student this year (so far, that we've noticed at least) that
> is using the Shadow game streaming service by Blade. This student is on
> wifi, not on the wired network even though that is available to them.
> The Shadow game streaming service results in a constant 63Mbps inbound
> stream of data. It almost looks like this student doesn't go to class as
> the stream only stops at night time (between 1am-8am). In the last 7
> days, this one student has streamed inbound over 3TB from the Shadow
> game service. I could be off here, but at 63Mbps 3TB is about 4.5 days
> of streaming. And remember, this is on wifi. I kinda feel sorry for
> their roommates/neighbors that may be on that same access point.
> 
> -Christopher
> 
> 
> On Wed, 2019-09-04 at 15:45 -0500, Coehoorn, Joel wrote:
>> Agree that it's best to let gamers use wired ports.
>>
>> Nothing, and I mean ***nothing*** is harder on your shared wifi link
>> than low-latency game traffic. The actual throughput for this traffic
>> tends to be very small, especially compared to streaming... it's
>> typically only updated position/vector and action data, rather than
>> full-video content. The problem, however, is in the sheer number and
>> frequence of packets, as every little twitch needs a new update, and
>> the fact this traffic is bi-directional. 
>>
>> Where streaming traffic tends to all source from the AP, where the AP
>> can naturally avoid colliding with itself, much more of the gaming
>> traffic originates at the client, and therefore much more likely to
>> cause collisions in the shared half-duplex air space used by wifi.
>> Getting that traffic OFF the wifi and back onto wired links can do
>> amazing things for the general quality of life for everyone in that
>> environment.
>>
>>  
>>
>> Joel Coehoorn
>> Director of Information Technology
>> 402.363.5603
>> *jcoeho...@york.edu *
>>
>>  
>>
>>> *Please contact helpd...@york.edu  for
>>> technical assistance.*
>>
>> The mission of York College is to transform lives through
>> Christ-centered education and to equip students for lifelong service
>> to God, family, and society
>>
>>
>> On Wed, Sep 4, 2019 at 3:12 PM Angelo Santabarbara
>> mailto:asantabarb...@siena.edu>> wrote:
>>> Wireless contention is the real problem.  We recommend all gamers
>>> connect their systems to wired ports.  Not only does it make their
>>> experience better, but it also lessens the wireless load (On our
>>> campus XBox and PS4 fall into the top 4 traffic sources).  If you
>>> already have a wired infrastructure than the edge switches are not
>>> all that expensive.  Alternatively install access points like the
>>> Ruckus H510 in each housing unit which include 4 hard wired ports.
>>>
>>> Angelo D. Santabarbara
>>> Director of Networks & Systems
>>> Siena College
>>> asantabarb...@siena.edu 
>>>
>>> **
>>> Replies to EDUCAUSE Community Group emails are sent to the entire
>>> community list. If you want to reply only to the person who sent the
>>> message, copy and paste their email address and forward the email
>>> reply. Additional participation and subscription information can be
>>> found at https://www.educause.edu/community
>>
>> **
>> Replies to EDUCAUSE Community Group emails are sent to the entire
>> community list. If you want to reply only to the person who sent the
>> message, copy and paste their email address and forward the email
>> reply. Additional participation and subscription information can be
>> found at https://www.educause.edu/community
>>
> **
> Replies to EDUCAUSE Community Group emails are sent to the entire
> community list. If you want to reply only to the person who sent the
> message, copy and paste their email address and forward the email reply.
> Additional participation and subscription information can be found at
> https://www.educause.edu/community
> 




**
Replies to EDUCAUSE Community Group emails are sent to the entire community 
list. If you want to reply only to the person who sent the message, copy and 
paste their email address and forward the email reply. Additional participation 
and subscription information can be found at

Re: [WIRELESS-LAN] ISE errors 5440 for guests using eduroam

Re: [WIRELESS-LAN] Residential Wireless and Gaming

2 matches

Site Navigation

Mail list logo

Footer information