Re: [WIRELESS-LAN] Multi sim 4G routers

2021-07-21 Thread Jess Walczak 
+2 for the cradlepoint family of products for this use case.

On Wed, Jul 21, 2021, 10:41 AM Jake Snyder  wrote:

> Peplink is another I’ve seen used for load-balancing cellular
> connections.  But I’m a big cradlepoint fan as well.
>
> Sent from my iPhone
>
> On Jul 21, 2021, at 9:07 AM, McClintic, Thomas <
> thomas.mcclin...@uth.tmc.edu> wrote:
>
> 
>
> +1 for cradlepoint.
>
>
>
> *From:* The EDUCAUSE Wireless Issues Community Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> *On Behalf Of *Travis Geske
> *Sent:* Wednesday, July 21, 2021 9:15 AM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Multi sim 4G routers
>
>
>
> * EXTERNAL EMAIL *
>
> We use CradlePoint and have been very happy with their products.
>
>
>
>
>
> *Travis Geske*
>
> Director of Network Infrastructure
> MCP
> 
> ,MDAA
> 
> ,NCP-MCI
> 
> ,ECSE #2597
> 
> ,HYCU Admin
> 
>
> Information Technology
>
> John A. Logan College
>
> 700 Logan College Road
>
> Carterville, IL  62918
>
> O:618-985-2828 x.8670
>
> www.jalc.edu
> 
>
> 
>
>
>
>
>
>
>
>
>
> *From:* The EDUCAUSE Wireless Issues Community Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> *On Behalf Of *Hales, David
> *Sent:* Wednesday, July 21, 2021 9:12 AM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Multi sim 4G routers
>
>
>
> *[EXTERNAL SENDER]*
> This message did not originate from John A Logan College.  Please report
> any suspicious attachments, links, or requests for sensitive information.
>
> While I didn’t end up using the multi-sim support, I’ve used these
> cellular routers for remote locations in the past.  They’re pretty good
> products, support dual SIM, battery backup or PoE, and external antennae.
>
>
>
>
> https://www.digi.com/products/networking/cellular-routers/enterprise/digi-6310-dx
> 
>
>
>
> *David Hales*
>
> *Network Systems Administrator*
>
>
>
> Information Technology Services
>
> Tennessee Tech University
>
> 1010 N. Peachtree Av., CLEM117
>
> Cookeville, TN 38505
>
> *P:* 931-372-3983
>
> *E: *dha...@tntech.edu
>
>
>
> *From:* The EDUCAUSE Wireless Issues Community Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> *On Behalf Of *Luke Whitworth
> *Sent:* Wednesday, July 21, 2021 8:54 AM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* [WIRELESS-LAN] Multi sim 4G routers
>
>
>
> *External Email Warning*
>
> *This email originated from outside the university. Please use caution
> when opening attachments, clicking links, or responding to requests.*
> --
>
> Hi all,
>
>
>
> We’ve got a requirement to support some learning spaces in remote
> locations.  We use Aruba wireless so if we can have some remote APs there,
> we just need to work out how to backhaul them.  In the past I’ve resorted
> to a Raspberry Pi and a 4G USB dongle (as altho

Re: [WIRELESS-LAN] [External Email] Re: [WIRELESS-LAN] Transitioning from older controller to new controller

2020-10-09 Thread Jess Walczak 
Sorry for the spam, but please put me on the invite list for this Zoom
session.

Thanks!--Jess Walczak, University of St. Thomas, Saint Paul, MN

On Fri, Oct 9, 2020, 1:31 PM Jeffrey D. Sessler 
wrote:

> The 9800 does have a conversion tool for the aireOS controller configs
> and does most everything but the encrypted stuff.
>
>
>
> Even if building from scratch, running the existing config through the
> tool may help in understanding how all the pieces work, including the
> equivalent commands between the two.
>
>
>
> When building from scratch, it can be helpful to forget about what you
> had, and treat it as a different vendor product. It’s a rather radical
> change, but far more powerful, and despite many will initially ignore the
> built-in wizards, they are pretty powerful.
>
>
>
> Jeff
>
>
>
> *From:* The EDUCAUSE Wireless Issues Community Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> *On Behalf Of *Dennis Xu
> *Sent:* Friday, October 09, 2020 10:37 AM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] [External Email] Re: [WIRELESS-LAN]
> Transitioning from older controller to new controller
>
>
>
> I have completed a 5508 to 9800-L migration recently. I can join and share
> my experience too.
>
>
>
> Dennis
>
>
>
>
>
>
>
> *From:* The EDUCAUSE Wireless Issues Community Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> *On Behalf Of *Alan D Wang
> *Sent:* October 9, 2020 1:32 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] [External Email] Re: [WIRELESS-LAN]
> Transitioning from older controller to new controller
>
>
>
> *CAUTION:* This email originated from outside of the University of
> Guelph. Do not click links or open attachments unless you recognize the
> sender and know the content is safe. If in doubt, forward suspicious emails
> to ith...@uoguelph.ca
>
>
>
> I would be interested in this session as well
>
>
>
> On Fri, Oct 9, 2020 at 1:26 PM Christina Klam  wrote:
>
> I want in.
>
>
>
> Thank you,
>
>
>
> Christina Klam
> Network Engineer
> Institute for Advanced Study
> 1 Einstein Dr
> Princeton, NJ 08540
> (m) +1 609-751-7899
> (o) +1 609-734-8154
> ck...@ias.edu
>
>
> --
>
> *From: *"Brahim Bouchaiba" 
> *To: *"The EDUCAUSE Wireless Issues Community Group Listserv" <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
> *Sent: *Friday, October 9, 2020 12:07:12 PM
> *Subject: *Re: [WIRELESS-LAN] Transitioning from older controller to new
> controller
>
>
>
> I like to be added also.
>
> Thanks.
>
>
>
> On Fri, Oct 9, 2020 at 11:27 AM Jesse Thomas  wrote:
>
> Same here - we're moving from WiSM2 to 9840.
>
> Thanks,
>
>
>
>
> --
>
> Jesse Thomas
> Network & Systems Administrator
> Hamilton College
> 315-859-4211
>
>
>
>
>
> On Fri, Oct 9, 2020 at 10:44 AM Slone, Kelly 
> wrote:
>
> I would also like to be included.
>
>
>
> Thank you,
>
>
>
> *Kelly Slone, **B.S., MCP*
>
> IT Infrastructure Engineer
>
> Marshall University Information Technology
>
> Drinko Library DL 436
>
> Office:  304-696-6109
>
> Helpdesk:  304-696-3200
>
> *slon...@marshall.edu *
>
>
>
>
>
> *From: *The EDUCAUSE Wireless Issues Community Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
> *Date: *Friday, October 9, 2020 at 10:30 AM
> *To: *WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
> *Subject: *Re: [WIRELESS-LAN] Transitioning from older controller to new
> controller
>
> Sounds like I might need to set up a general session.  I'll catch Don and
> Abbas early next week, but if there's other interest, I'm happy to do a
> wider discussion after a bit of preparation.  I'll send out an invite for
> signups when I'm ready next week.
>
>
>
> On Fri, Oct 9, 2020 at 7:27 AM Floyd, Brad  wrote:
>
> Mike,
>
> Per our recent conversation about this topic, yes please add me to the
> invite list.
>
> Thanks,
>
> Brad
>
>
>
> *From:* The EDUCAUSE Wireless Issues Community Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Mike Atkins
> *Sent:* Friday, October 09, 2020 9:08 AM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Transitioning from older controller to new
> controller
>
>
>
> *[EXTERNAL SENDER]*
>
>
> I’ve reached out to a few schools individually on this very topic.  Would
> the group want to do a Zoom

How does your enterprise do your wireless door locks?

2020-03-31 Thread Jess Walczak 
Sending out a question as to how you do your wifi that serves your wireless
door locks.  Do you have them on your branded wifi/eduroam, their own SSID,
or a shared IoT or infrastructure SSID?  Is it a hidden SSID?  Do you have
them using a simple PSK or do you onboard it with a tool like ISE or
Clearpass.  Do you install a cert?

Our institution has purchased Assa Abloy model IN120 door locks.  We are a
Cisco shop and we have ISE, so we could easily onboard using their Mac
Address Bypass device profiling, but that would consume an expensive
license, so perhaps other folks have done something simpler and found it to
work well and to be enough security/segmentation.

Thanks!--JW

Jess Walczak
Network Engineer
Innovation & Technology Services
University of St. Thomas | stthomas.edu

**
Replies to EDUCAUSE Community Group emails are sent to the entire community 
list. If you want to reply only to the person who sent the message, copy and 
paste their email address and forward the email reply. Additional participation 
and subscription information can be found at https://www.educause.edu/community

Integrating 3rd party toolsets into your vendor-specific management platforms

2018-07-24 Thread Jess Walczak 
TL:DR – I’m trying to learn what other schools are using for third party
management as I’m feeling heartburn from my vendor’s latest iteration of
their own management toolset.



I have a question to the group about SDN/SDA/Assurance/CiscoDNA/etc and how
they integrate with third party tools.  My team just tried to deploy
CiscoDNA on our campus, but after a disastrous launch we disabled it, then
completely shut it off, and there it remains.  When it was running, we
tried out the CiscoDNA toolset and it was unable to do a software upgrade
on a newer switch, it was unable to do an SDA-style config to a switch, and
Assurance pushed code to all of our switches causing a repetitive outage
until we removed the config for Assurance from the affected switches.  I
mainly wanted to run it for the Assurance data, but the rest of my team has
(wisely) put this on pause.  Cisco moved customers from WCS to Prime about
five years ago, and then to APIC-EM, and now there is yet another
transition to DNA Center.  It seems to me that I require a third party
toolset just to manage the pain of the vendor management platforms.


I’m wondering what other schools are running for 3rd party
analytics/management/aggregation/automation platforms?  We currently run
Nyansa Voyance which I learned about from this very group back in 2016.   A
school setup a semi-private Q-and-A of their own implementation of this
software and it turned out to be exactly what we were looking for.  It has
since saved our bacon several times by either being able to tell us things
our vendor-specific tools could not, or by validating the data we were
getting either anecdotally or from our vendor tools (often poorly so).  Are
you running Solarwinds?  LiveAction? NetBrain?  Puppet with Git?  Something
else?  Any tools or reporting from Internet2?  (We are now getting the
eduroam reports and love them!)

I guess as an additional twist on my question, I’m also interested in what
potential integration of third party solutions into the standard vendor
solutions your school has been able to achieve?  Cisco says that DNA (and
thus Assurance) is an open architecture, but I’d really be interested in
knowing to what degree that is true.  I’d really like to see an open
ecosystem and more potential integration between our Cisco hardware,
management platforms, and third party apps.  We are just beginning to
program wayfinding into our school’s ERP app, and we are using their APIs
to pull the data from within Prime and CMX, but we are interested in going
further with this.  I’m not just interested in Cisco shops—plenty of the
schools on this list are running Aruba and talk it up quite a lot!  One of
the big schools that we regularly seek guidance from just switched to
Aruba, so 3rd party integration with those toolsets now also interests our
shop as well.


Thanks for reading my long-winded post!--JW

Jess Walczak
Senior Network Analyst
Information Technology Services
jwwalc...@stthomas.edu
University of St. Thomas | stthomas.edu

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/discuss.

Re: [WIRELESS-LAN] Cisco 8540 WLC random reboots

2018-07-09 Thread Jess Walczak 
Jason,

My mistake, I misunderstood.  Yeah, then, from others said, it would seem
that our best bet is to get that MR3 version of 8.5.131.0.  That is what
our local Cisco SE told us to do when we met up with them in late June.

Thanks!--JW

On Mon, Jul 9, 2018 at 2:27 PM, Mallon, Jason  wrote:

> We are on 8.5.120.0 with the 1815w APs as well.  We are having an issue
> with the HA unit rebooting and going into maintenance mode, and when we try
> to fix it going into a boot loop.
>
>
>
> *Jason Mallon*
>
> Network Engineer II, OIT
>
> The University of Alabama
> <https://www.ua.edu/>jemal...@ua.edu
>
>
>
> *From: *The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> on behalf of Jess Walczak <
> jwwalc...@gmail.com>
> *Reply-To: *The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
> *Date: *Monday, July 9, 2018 at 2:21 PM
>
> *To: *"WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU"  EDUCAUSE.EDU>
> *Subject: *Re: [WIRELESS-LAN] Cisco 8540 WLC random reboots
>
>
>
> Jason,
>
>
>
> FWIW, we run all of our 1815w APs on code version 8.5.120.0  in
> FlexConnect mode (although they worked when we tested them in Local mode as
> well).  I thought you might like to know that you potentially don't need to
> run them on 8.4 code any longer.
>
>
>
> Thanks!--JW
>
>
>
> Jess Walczak
> Senior Network Analyst
> Information Technology Services
> jwwalc...@stthomas.edu
> University of St. Thomas | stthomas.edu
>
>
>
>
>
> On Mon, Jul 9, 2018 at 2:08 PM, Price, Jamie G 
> wrote:
>
> Hi All,
>
>
>
> Is there a general consensus that 8.5.131 is good code?
>
>
>
> We are working to solve an issue in short- our IPV6 wireless will drop off
> wireless (we are in testing now). Our next hope is that a code upgrade will
> fix the issue. If this doesn’t work we will circle back with TAC and y’all
> will hear about this in future posts.
>
>
>
> Thanks,
>
> Jamie
>
>
>
> *Jamie Price │Senior Network Engineer*
>
> 303.724.8970| jamie.pr...@ucdenver.edu
>
> 1945 N Wheeling Street
> <https://maps.google.com/?q=1945+N+Wheeling+Street&entry=gmail&source=g>,
> MS F408, Denver, CO, US  80045
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> *On Behalf Of *Mallon, Jason
> *Sent:* Monday, July 09, 2018 1:03 PM
>
>
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Cisco 8540 WLC random reboots
>
>
>
> We actually can’t run that code.  We have 1815w APs in place that require
> a code of 8.4.100, which is now a differed release.
>
>
>
> *Jason Mallon*
>
> Network Engineer II, OIT
>
> The University of Alabama
> <https://www.ua.edu/>jemal...@ua.edu
>
>
>
> *From: *The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> on behalf of Bruce Boardman <
> board...@syr.edu>
> *Reply-To: *The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
> *Date: *Monday, July 9, 2018 at 1:04 PM
> *To: *"WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU"  EDUCAUSE.EDU>
> *Subject: *Re: [WIRELESS-LAN] Cisco 8540 WLC random reboots
>
>
>
> We are running 8.2.167.3 in HA with no problem of 6ish months. Now I’ve
> jinxed it!
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> *On Behalf Of *Alan D Wang
> *Sent:* Monday, July 9, 2018 1:27 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Cisco 8540 WLC random reboots
>
>
>
> Do you have the bug ID for the major HA bug?
>
>
>
> On Mon, Jul 9, 2018 at 1:17 PM, Rick Coloccia 
> wrote:
>
> Hi, yes, it is, but the 8.5.131 code that is out now has a major HA bug
> that is very hard to recover from.
>
> Cisco wireless engineers promised us code by the end of July that will
> address that issue.
>
>
>
> On 7/9/2018 1:15 PM, Swartz, Pola wrote:
>
> 8.5.131 code is available now.
>
> Smile,
>
> Pola
>
>
> On Jul 9, 2018, at 11:14 AM, Rick Coloccia  wrote:
>
> Lots of bugs in 8.5.120, including some giant HA bugs.
>
> The version of 8.5.131 coming later this month is where you'll want to be.
> Specifically, one of the fixes in the version of 8.5 coming later this
> month deals with HA issues.
>
>
>
>
>
> On 7/9/2018 12:44 PM, Mallon, Jason wrote:
>
> We are currently in the process of migrating to

Re: [WIRELESS-LAN] Cisco 8540 WLC random reboots

2018-07-09 Thread Jess Walczak 
Jason,

FWIW, we run all of our 1815w APs on code version 8.5.120.0  in FlexConnect
mode (although they worked when we tested them in Local mode as well).  I
thought you might like to know that you potentially don't need to run them
on 8.4 code any longer.

Thanks!--JW

Jess Walczak
Senior Network Analyst
Information Technology Services
jwwalc...@stthomas.edu
University of St. Thomas | stthomas.edu


On Mon, Jul 9, 2018 at 2:08 PM, Price, Jamie G 
wrote:

> Hi All,
>
>
>
> Is there a general consensus that 8.5.131 is good code?
>
>
>
> We are working to solve an issue in short- our IPV6 wireless will drop off
> wireless (we are in testing now). Our next hope is that a code upgrade will
> fix the issue. If this doesn’t work we will circle back with TAC and y’all
> will hear about this in future posts.
>
>
>
> Thanks,
>
> Jamie
>
>
>
> *Jamie Price │Senior Network Engineer*
>
> 303.724.8970| jamie.pr...@ucdenver.edu
>
> 1945 N Wheeling Street
> <https://maps.google.com/?q=1945+N+Wheeling+Street&entry=gmail&source=g>,
> MS F408, Denver, CO, US  80045
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> *On Behalf Of *Mallon, Jason
> *Sent:* Monday, July 09, 2018 1:03 PM
>
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Cisco 8540 WLC random reboots
>
>
>
> We actually can’t run that code.  We have 1815w APs in place that require
> a code of 8.4.100, which is now a differed release.
>
>
>
> *Jason Mallon*
>
> Network Engineer II, OIT
>
> The University of Alabama
> <https://www.ua.edu/>jemal...@ua.edu
>
>
>
> *From: *The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> on behalf of Bruce Boardman <
> board...@syr.edu>
> *Reply-To: *The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
> *Date: *Monday, July 9, 2018 at 1:04 PM
> *To: *"WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU"  EDUCAUSE.EDU>
> *Subject: *Re: [WIRELESS-LAN] Cisco 8540 WLC random reboots
>
>
>
> We are running 8.2.167.3 in HA with no problem of 6ish months. Now I’ve
> jinxed it!
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> *On Behalf Of *Alan D Wang
> *Sent:* Monday, July 9, 2018 1:27 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Cisco 8540 WLC random reboots
>
>
>
> Do you have the bug ID for the major HA bug?
>
>
>
> On Mon, Jul 9, 2018 at 1:17 PM, Rick Coloccia 
> wrote:
>
> Hi, yes, it is, but the 8.5.131 code that is out now has a major HA bug
> that is very hard to recover from.
>
> Cisco wireless engineers promised us code by the end of July that will
> address that issue.
>
>
>
> On 7/9/2018 1:15 PM, Swartz, Pola wrote:
>
> 8.5.131 code is available now.
>
> Smile,
>
> Pola
>
>
> On Jul 9, 2018, at 11:14 AM, Rick Coloccia  wrote:
>
> Lots of bugs in 8.5.120, including some giant HA bugs.
>
> The version of 8.5.131 coming later this month is where you'll want to be.
> Specifically, one of the fixes in the version of 8.5 coming later this
> month deals with HA issues.
>
>
>
>
>
> On 7/9/2018 12:44 PM, Mallon, Jason wrote:
>
> We are currently in the process of migrating to 8540s (8.5.120) from
> 8510s.  Here recently we started noticing the HA unit on two of the pairs
> was in maintenance mode.  We rebooted the controllers and they seem to have
> stayed in a continuous boot loop.  We restarted one of the controllers to
> its emergency code (8.2.166) and it rebooted correctly without any issues,
> disabled SSO mode, rebooted back into 8.5.120 with no issues.  We enabled
> SSO again and immediately went back to having boot loop issues.  Is anybody
> else seeing this issue?
>
>
>
> *Jason Mallon*
>
> Network Engineer II, OIT
>
> The University of Alabama
> <https://www.ua.edu/>jemal...@ua.edu
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss.
>
>
>
> --
>
> Rick Coloccia, Jr.
>
> Network Manager
>
> State University of NY College at Geneseo
>
> 1 College Circle 
> <https://maps.google.com/?q=1+College+Circle&entry=gmail&source=g>, 119 South 
> Hall
>
> Geneseo, NY 14454
>
> V: 585-245-5577
>
> F: 585-245-5579
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discus

Re: [WIRELESS-LAN] More client weirdness

2018-01-31 Thread Jess Walczak 
Sean,

I would fully uninstall the Symantec software, not just disable it.
Symantec even makes a software uninstaller for their products for their
extra stubborn apps:
https://support.symantec.com/en_US/article.HOWTO74877.html

Honestly, whenever their is network weirdness with these types of
supplicants, I have many, many times gotten rid of the Symantec products
(firewalls/antivirus/Internet Protection Suite/etc) with much success.

Thanks!--JW

Jess Walczak
Senior Network Analyst
Information Technology Services
jwwalc...@stthomas.edu
University of St. Thomas | stthomas.edu


On Wed, Jan 31, 2018 at 12:17 PM, Gray, Sean  wrote:

> Hi Everyone,
>
>
>
> I just wanted to throw this weirdness out to the group to see if anyone
> has experienced the same issue and has found a solution or work around.
>
>
>
> We have a student on campus who intermittently cannot connect to our
> 802.1x Student WLAN when trying to connect to a Cisco 702w access point
> installed nearby. They can connect to our open Guest WLAN. I should say
> that they are fail to connect to Student more times than they succeed when
> in their Student Residence. On campus they are able to connect to Student.
>
>
>
> I recently brought them down to my office to have them try and connect to
> a 702w that I had set up specially for the purpose of this test.
>
>
>
> *Client Details:*
>
>
>
> · Acer Aspire F5-571T Laptop
>
> · NIC: Qualcomm Atheros QCA9377
>
> · Driver Version 12.0.0.309
>
> · O/S: Windows 10 Home
>
>
>
> Client has Symantec Anti-virus installed
>
>
>
> Windows updates and driver versions were all validated.
>
>
>
>
>
> During testing I noticed that the client completes the AUTH phase and
> enters RUN state. At this point it frequently seems to stall and doesn’t
> make it into the DHCP Socket Task portion of the client/WLC/DHCP exchange.
>
>
>
> The only thing that the testing proved to me is that the client doesn’t
> like Cisco 702w APs, as I saw the same results in my office as I saw from
> them in Student Residence. Of note is that the problem seems to become
> particular pronounce when they roam from Guest to Student or vice versa.
> Disabling the Symantec firewall seemed to improve, but not fully resolve
> the issue.
>
>
>
> I should also point out that due to the unique way that our Residence
> townhomes were constructed wall mount APs are our only option.
>
>
>
> So this one has me beat!
>
>
>
> Thanks
>
>
>
> Sean
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/discuss.

Re: [WIRELESS-LAN] Wondering about res hall wireless: university provided vs outside service provider

2018-01-05 Thread Jess Walczak 
Chuck,

Thank you for this well thought out and well written response--as all of
your posts on this forum always are!  As regards your question about our
motivations, I'm cannot quite speak to what these might be other than,
obviously, delivering higher client (student resident) satisfaction and
reducing the support load on what is already quite a small team.  This is a
topic that we have had varying amounts of discussion about over the past
several years, but it had never really been thoroughly considered; I'm
going to pass this response and another that I just received off-forum on
to the advisory committee so they can benefit from your points.

Thank you very much!--JW

On Thu, Dec 21, 2017 at 2:50 PM, Chuck Enfield  wrote:

> Hi Jess,
>
>
>
> May I ask what your motivations are?
>
>
>
> FWIW, we explored outsourcing our Res Hall networks about 4 years ago, and
> decided against it.  Among the institutions we spoke with, results were
> mixed.  Many of the bad outcomes could be directly traced to selecting a
> poor provider (no demonstrated history of success) and not failing to
> address service level issues in the contracts (once they had the poor
> provider, they had to ride out the contract term before they could do
> anything about it.)
>
>
>
> That said, that’s not why we chose to do things in-house.  We were
> confident that we could learn from the mistakes of these other institutions
> and achieve a good outcome.  In the end we concluded that we could do it a
> little better, a little cheaper, and retain a little more flexibility if we
> did it ourselves.
>
>
>
> If I may offer a few tips from our research,
>
>
>
> ·Choose a provider with a track record of satisfied higher-ed
> customers.  Apogee got consistently good reviews from the schools we talked
> to.  The user support requirements for Wi-Fi are much greater than CATV, so
> user support needs to be a major consideration in the selection process.
> Nobody we spoke to about res hall networking in 2013 was using Comcast, but
> Comcast’s user support is so bad that I wouldn’t consider inflicting them
> on our students.
>
> ·Make sure you include important KPI’s for user satisfaction and
> business success in the contract, that those KPI’s are measured and
> reported, and you can get out of the contract if any deficiencies aren’t
> promptly remediated.
>
> ·Consider how you’ll change service providers in the future if
> you need to, whether it be for poor performance or just because another
> provider is less expensive when the current contract ends.  Don’t get
> caught without a transition plan, and make sure current contracts
> accommodate that plan.
>
>
>
> Chuck Enfield
> Manager, Wireless Engineering
> Enterprise Networking & Communication Services
> The Pennsylvania State University
> 110H, USB2, UP, PA 16802
> ph: 814.863.8715 <(814)%20863-8715>
> fx: 814.865.3988 <(814)%20865-3988>
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Jess Walczak
> *Sent:* Thursday, December 21, 2017 3:27 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* [WIRELESS-LAN] Wondering about res hall wireless: university
> provided vs outside service provider
>
>
>
> Wireless People of Educause,
>
>
>
> We are thinking about the possibility of cutting off our res halls from
> our campus internet circuits and then having Comcast or something similar
> come in provide internet and wireless to these buildings.  Has anybody gone
> thru this (or even ultimately decided not to) and what were the factors at
> play that ultimately affected your decision?  Also, what were the outcomes
> like?
>
>
>
> I imagine that somebody like Comcast can do this using our existing coax
> network, but I have to wonder what the net effect will be like for the
> quality of service for the resident, and how the new service affects our
> ability to maintain our internal infrastructure in those spaces, to the
> extent that it is needed.  Also, my gut tells me that if problems arise,
> the students will still call on the university to fix things and what that
> will entail.
>
>
>
> Thanks!--JW
>
> Jess Walczak
> Senior Network Analyst
> Information Technology Services
> jwwalc...@stthomas.edu
> University of St. Thomas | stthomas.edu
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss.
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/discuss.

Wondering about res hall wireless: university provided vs outside service provider

2017-12-21 Thread Jess Walczak 
Wireless People of Educause,

We are thinking about the possibility of cutting off our res halls from our
campus internet circuits and then having Comcast or something similar come
in provide internet and wireless to these buildings.  Has anybody gone thru
this (or even ultimately decided not to) and what were the factors at play
that ultimately affected your decision?  Also, what were the outcomes like?

I imagine that somebody like Comcast can do this using our existing coax
network, but I have to wonder what the net effect will be like for the
quality of service for the resident, and how the new service affects our
ability to maintain our internal infrastructure in those spaces, to the
extent that it is needed.  Also, my gut tells me that if problems arise,
the students will still call on the university to fix things and what that
will entail.

Thanks!--JW

Jess Walczak
Senior Network Analyst
Information Technology Services
jwwalc...@stthomas.edu
University of St. Thomas | stthomas.edu

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/discuss.

Re: [WIRELESS-LAN] Another Cisco WLC Code Thread

2017-12-19 Thread Jess Walczak 
We've been very fortunate with no issues observed while running 8.3.133.0
on pairs of 8540's, 8510's, and 5508's, that run 1142, 2702, 2802, 1562,
and 702w.  Now that we are testing the 1815w out, we've had to run
8.5.105.0 on a lone 5508 and I upgraded it to 8.5.110.0 just last night
without issue.

Thanks!--JW

On Dec 19, 2017 3:42 PM, "Entwistle, Bruce" 
wrote:

> Is sounds like we have a similar assortment of APs and we have been
> running 8.2.160.0 for the current semester and it seems stable.
>
>
>
> Bruce Entwistle
>
> Network Manager
>
> University of Redlands
>
>
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Britton Anderson
> *Sent:* Tuesday, December 19, 2017 12:43 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* [WIRELESS-LAN] Another Cisco WLC Code Thread
>
>
>
> Happy Holidays,
>
>
>
> Like many others I'm sure, I've been studying all of the email threads
> from this list to see if anyone has settled on any of the current code
> releases on their controllers. With all of the bugs disabling several AP
> models, we have been holding off our code upgrade and wireless migration.
>
>
>
> I have a plan to move about half of our wireless APs off of a pair of
> WiSM2s to our new 8540's next week. We've had the 8540's up since the
> summer running on 8.4.100.0 seemingly without many issues. It's been pretty
> stable but there has only been about 80 APs on it for our Fall semester.
> That code release is now deferred and we've looked at going up to 8.5.110.0
> which released just a few days ago. Release notes list the open caveats,
> and there are several that still impact the 3500/3600/3700 lines pretty
> hard. 8.6.101.0 released a day after, and its even more grim.
>
>
>
> Has anyone found anything stable? We have a pretty wide deployment of APs,
> but most of them are 3500/3600/3700s with a fleet of 702W/1810W in
> residences. We simply don't have the manpower to run around and console
> into APs that lose their marbles, and our time slot to move forward is
> narrowing by the day.
>
>
>
> And more importantly, I would like to sleep better over the holidays, like
> we all would I'm sure.
>
>
>
> Thanks for the input,
>
> Britton
>
>
>
> Britton Anderson  |
>
>  Lead Network Communications Specialist |
>
>  University of Alaska  |
>
>  907.450.8250 <(907)%20450-8250>
>
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss.
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/discuss.

Re: [WIRELESS-LAN] Poll - Campus Open Guest Wireless

2017-11-15 Thread Jess Walczak 
We have an open SSID that has a click to continue AUP (served from a portal
function in Cisco ISE), and then then you're good to go.  That lasts until
midnight and then resets.  We initially thought about capturing data about
people, but if you're not validating that data then you cannot trust it.
The only reason we even have a click to continue AUP is so that we don't
have a bunch of passers by joining unwittingly, but we do profile and
exempt whatever ISE identifies as Xboxes, Playstations, etc, and lets these
devices on the open network without having to click to continue (the
assumption is that they have no keyboard, etc, but they usually still have
to tell the device which wifi network to join).  We also have a portal
which you can login to and self-register the wifi MACs of whatever device
you want to join the open network.  The nightly expiration on the open
network is also just annoying enough each day to push folks to sign into
the 802.1X SSID to avoid the nagging disconnect overnight.  We generally
have about 3:1 or 4:1 ratio of 802.1X clients to open clients.

Jess Walczak, University of St. Thomas, Saint Paul, MN, USA

On Wed, Nov 15, 2017 at 6:19 PM, Charles Francis 
wrote:

> We have an open Visitor network with no registration or AUP. It is plumbed
> to IP space outside our normal blocks and we rate limit each user to 5mb
> CIR.
>
>
>
> ---Charles
>
>
>
> *From: *The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> on behalf of Christopher H Ressel <
> cres...@unr.edu>
> *Reply-To: *The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU>
> *Date: *Wednesday, November 15, 2017 at 5:12 PM
> *To: *"WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU"  EDUCAUSE.EDU>
> *Subject: *[WIRELESS-LAN] Poll - Campus Open Guest Wireless
>
>
>
> Hi all,
>
>
>
> We are actively looking at pursuing an open guest wireless solution where
> all guests are required to do for access it to accept terms of use via a
> captive portal (no self-registration). I was hoping to get an idea (general
> head count) of how many of you are out there to give us an idea of how
> prevalent this is amongst similar institutions. If you do in fact have a
> similar open guest setup how has your experience been thus far?
>
>
>
> Chris Ressel
>
> Network Engineer
>
> University of Nevada, Reno
>
> (775) 682-6034
>
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss.
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/discuss.

Re: [WIRELESS-LAN] 8540 Controller load related issue?

2017-09-22 Thread Jess Walczak 
Dennis,

We are running an HA pair of 8510's with 8.0, so not quite the same, but
this week we had the same thing you described happen, where more than half
the APs suddenly disassociated but then came right back up (after a little
back and forth since they found an older controller running newer code on
an ordinally lower IP).  We traced the event to an influx of traffic from
China to whatever devices happen to be on our gaming vlan (which is several
hundred), which we setup such that unlike all other wireless on the
campuses, it shares an IP space with a wired vlan, and those IPs are some
of our publicly addressable class B, so that their games won't squawk about
being NAT'd.

We are looking into the firewall logs to make sure there isn't something
that we might need to be blocking in the future, but my working theory is
the sudden massive wave of retransmits caused the APs to disassociate and
reset.

Thanks!--JW

Jess Walczak
Senior Network Analyst
Information Technology Services
jwwalc...@stthomas.edu
University of St. Thomas | stthomas.edu



On Sep 22, 2017 3:17 PM, "Dennis Xu"  wrote:

> This summer we added more APs to 8540 controller. Now our 8540 controller
> has 2350 APs(mainly 1810W and 2802 APs) and 13K (increased from 6k in
> March/April) concurrent 802.1X users at peak. We also upgraded the
> controllers from 8.2.150.0 to 8.2.160.0 during summer. Now the controller
> has run into an issue twice that it suddenly lost all communications from
> the network. It cannot be connected from anywhere but it did not crash(was
> up and running). All APs disassociated from it and re-associated to the
> secondary 8540. I suspect this issue is somehow load related although
> Cisco's advertised support is 64k clients. We would like to know if anyone
> else has more concurrent 802.1X users than us on 8540 and do not have this
> issue? And what code do you use?
>
>
> Thanks.
>
>
> *Dennis Xu* | Analyst III, Network Infrastructure
> Computing and Communications Services (CCS) | University of Guelph
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/discuss.

Re: [WIRELESS-LAN] Nyansa

2017-02-10 Thread Jess Walczak 
I would like to join said group conference call as well, please.

Thanks you!--Jess Walczak, Univ of St. Thomas, St. Paul MN

On Fri, Feb 10, 2017 at 3:49 PM, David Morton  wrote:

> I’d like to join as well.
>
> David
>
>
>
>
> David Morton
> Director, Network & Telecom Design/Architecture
> Service Owner: Wi-Fi, Wired, Telephony, Mobile & HuskyTV
> University of Washington
> dmor...@uw.edu
> tel 206.221.7814 <(206)%20221-7814>
>
> On Feb 10, 2017, at 12:10 PM, Chuck Enfield  wrote:
>
> Please reply if you’d like to join the call.  Doug and Lee are the guests
> of honor, but I’ll do my best to accommodate as many other schedules as
> possible.
>
> *From:* Sullivan, Don [mailto:dsulli...@samford.edu
> ]
> *Sent:* Friday, February 10, 2017 3:08 PM
> *To:* Chuck Enfield ; WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* RE: [WIRELESS-LAN] Nyansa
>
> I’m game.
>
> *Don Sullivan*
> *Network Administrator*
> *205-726-2111 <(205)%20726-2111>*
> *dsulli...@samford.edu *
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [
> mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> ] *On Behalf Of *Chuck Enfield
> *Sent:* Friday, February 10, 2017 2:06 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Nyansa
>
> Any chance we could make it a conference call?  I’ll set up a bridge.
>
> Chuck Enfield
> Manager, Wireless Engineering
> Enterprise Networking & Communication Services
> The Pennsylvania State University
> 110H, USB2, UP, PA 16802
> ph: 814.863.8715 <(814)%20863-8715>
> fx: 814.865.3988 <(814)%20865-3988>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [
> mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> ] *On Behalf Of *Sullivan, Don
> *Sent:* Friday, February 10, 2017 3:03 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Nyansa
>
> Lee,
>
> I would be happy to have a chat with you about it. Probably better off
> list for me.
>
> *Don Sullivan*
> *Network Administrator*
> *205-726-2111 <(205)%20726-2111>*
> *dsulli...@samford.edu *
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [
> mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> ] *On Behalf Of *Lee H Badman
> *Sent:* Friday, February 10, 2017 1:58 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* [WIRELESS-LAN] Nyansa
>
> Looking to talk with other schools that have objectively evaluated Nyansa
> with an installed appliance. Curious how what criteria you used to decide
> whether it was bringing you value, and if you bit on it, did it continue to
> bring value after the purchase.
>
> I have it in test and am aware of the feature set and what it promises to
> do, but am looking for testimonials on what it has really exposed that you
> could take action on, how it fits with other tools that you have, and
> whether you have found it to be worth the cost.
>
> On or off list is fine.
>
> Thanks!
>
> Lee Badman
>
> *Lee Badman* | Network Architect
>
> Adjunct Instructor | CWNE #200
> Information Technology Services
> 206 Machinery Hall
> 120 Smith Drive
> Syracuse, New York 13244
> *t* 315.443.3003 <(315)%20443-3003>  * f* 315.443.4325 <(315)%20443-4325>
>*e* lhbad...@syr.edu *w* its.syr.edu
>
> *SYRACUSE UNIVERSITY *syr.edu
>
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss
> <https://urldefense.proofpoint.com/v2/url?u=http-3A__www.educause.edu_discuss&d=DwMFAg&c=GTxgfYI6i4KYikqC6GK_Jzn2mYGEh-v4HEPYCyQcJzU&r=gESFfxkz83JEIAAPJ78hwRDbYXa0egqYOhaeRMDNKZQ&m=qsyU3o10Cz6rvcuJmP6iOgTUc5LXLn7vL89B3UnNKL0&s=L0lwB9QE1L_CiE0-RRb2MBFIPutBT5uWGn2BMCd0Y9c&e=>
> .
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss
> <https://urldefense.proofpoint.com/v2/url?u=http-3A__www.educause.edu_discuss&d=DwMFAg&c=GTxgfYI6i4KYikqC6GK_Jzn2mYGEh-v4HEPYCyQcJzU&r=gESFfxkz83JEIAAPJ78hwRDbYXa0egqYOhaeRMDNKZQ&m=vyHlJgM5ChtmMXhqIWBMZrL-Plak8Gn69iU7dTZFW0I&s=UdTpl0ouKE1m9fC3CVLiD7LZlBjsFAtMkcloEnMXFrs&e=>
> .
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at http://www.educause.edu/
> discuss
> <https://urldefense.proofpoint.com/v2/url?u=http-3A__www.educause.edu_discuss&d=DwMFAg&c=GTxgfYI6i4KYikqC6GK_Jzn2mYGEh-v4HEPYCyQcJzU&r=gESFfxkz83JEIAAPJ78hwRDbYXa0egqYOhaeRMDNKZQ&m=vyHlJgM5ChtmMXhqIWBMZrL-Plak8Gn69iU7dTZFW0I&a

Re: [WIRELESS-LAN] 802.1x certificate authentication

2016-09-23 Thread Jess Walczak 
Ryan,

I'd be interested in getting a copy of your powerpoint as well, if that is
OK.

Thanks!

Jess Walczak
Senior Network Analyst
Information Technology Services
jwwalc...@stthomas.edu
University of St. Thomas | stthomas.edu


On Fri, Sep 23, 2016 at 12:48 PM, Turner, Ryan H 
wrote:

> Ying,
>
> My contact information is below.  I have a powerpoint from a presentation
> I made over our experiences.  It isn't something I am going to publish to
> the list, but I will send it to people that email me directly.  Happy to
> help you on this journey.  There are a lot of pitfalls.
>
>
> Ryan Turner
> Manager of Network Operations
> ITS Communication Technologies
> The University of North Carolina at Chapel Hill
>
> r...@unc.edu
> +1 919 445 0113 Office
> +1 919 274 7926 Mobile
>
>
>
> -Original Message-
> From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Ying Zhang
> Sent: Friday, September 23, 2016 1:09 PM
> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> Subject: Re: [WIRELESS-LAN] 802.1x certificate authentication
>
> This is very good information. We are currently in the process of RFP for
> a NAC solution. Anything we should watch out for with regards to the
> onboarding platform? Any information you could share would be very much
> appreciated.
>
> Thanks.
>
> Ying
> Enterprise Network Architect
> Information Technology Services
> University of New Brunswick
> Fredericton, NB, E3B 5A3
> Phone: (506) 447-3014
> Cell: (506) 449-0661
>
> -Original Message-
> From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Turner, Ryan H
> Sent: Friday, September 23, 2016 1:22 PM
> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> Subject: Re: [WIRELESS-LAN] 802.1x certificate authentication
>
> There is more to it than just the onboarding platform.  Regardless of what
> onboarding platform you use, the actual onboarding SSID and associated
> captive portal is extremely important at reducing helpdesk calls.  We've
> gone through several iterations over a few years and think we finally got
> it right.
>
> Ryan
>
> -Original Message-
> From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Muraca, Peppino P.
> Sent: Thursday, September 22, 2016 12:49 PM
> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> Subject: Re: [WIRELESS-LAN] 802.1x certificate authentication
>
> This is great information, I have been worried that this will create a ton
> of support calls. The key seems to make sure the onboarding system is a
> good one, we are also a cloudpath shop, but are hoping to get to clearpass.
>
> -Pino
>
> Peppino Muraca
> Sr. Network Administrator
> Stonehill College
> 508-565-1193
> pmur...@stonehill.edu
>   (OO=[][]=OO)
>
>
> -Original Message-
> From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Curtis K. Larsen
> Sent: Wednesday, September 21, 2016 1:13 PM
> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> Subject: Re: [WIRELESS-LAN] 802.1x certificate authentication
>
> The Android experience is still good in my opinion, just weaker than iOS
> when you incorporate the Play Store.  (I think ISE links to the Play Store
> too).  Luckily, Cloudpath has the option of directly downloading the certs
> instead of requiring the app from the Play Store.  Of course, a profile
> based option (What Google does with ChromeOS) negates the need for any link
> to the Play Store.
>
> -Curtis
>
> 
> From: The EDUCAUSE Wireless Issues Constituent Group Listserv <
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> on behalf of Turner, Ryan H <
> rhtur...@email.unc.edu>
> Sent: Wednesday, September 21, 2016 10:03 AM
> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> Subject: Re: [WIRELESS-LAN] 802.1x certificate authentication
>
> Android is definitely 'the' problem.  In our stats, you can see that they
> are only 10% of the clients we onboard, but are closer to 90% of the
> trouble tickets.  We were a Cloudpath customer and made the switch to
> SecureW2 (the android experience was a big reason).
>
> Ryan
>
> -Original Message-
> From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Curtis K. Larsen
> Sent: Wednesday, September 21, 2016 11:55 AM
> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> Subject: Re: [WIRELESS-LAN] 802.1x certificate authentication
>
> We've been offering EA

Wireless 802.1X client exclusions timeout issues

2016-06-01 Thread Jess Walczak 
We are experiencing the following issue and I am wondering what other folks
are doing regarding expired password client exclusion blacklisting on their
802.1X WLANs.  This is specifically about a Cisco environment, but others
may have knowledge about it (albeit with different vendor-specific
language).

Client(supplicant) connects to our 802.1X WLAN(SSID) and it fails
authentication 3 times because of an expired password.  It is now
blacklisted (for 60 seconds), during which time the client will usually
then try to associate with our open WLAN, but cannot join and then retries
associating with the secure WLAN once again, failing once again.  I think
we are mainly seeing this when a user's Active Directory password expires
without their knowledge.

Here is our environment:
Cisco 8510 WLCs running 8.0.121.0 code
Cisco ISE Version 1.4.0.253, Patch 3,5,6

There are some settings involved:
1.)"Client Exclusion Policy" (which under Security-->Wireless Protection
Policy) has 6 elements, all on by default; one of these is "Maximum
802.1x-AAA Failure Attempts" which is set to "3" by default, and gives a
range of "1-3".
2.)"Client Exclusion" (under WLANs-->Advanced) is set to "enabled" with a
timeout of 60 seconds.

The Client Exclusion Policy is a global setting, and you can enable it for
each WLAN or not, and pick the timeout in seconds (or 0 seconds, which
means it must be manually cleared by an admin).  My questions are whether
other folks are leaving this feature on, or have they shortened the
timeout, or have they disabled it altogether?

We have this enabled on both WLANs, even on the open one--and this wouldn't
seem to matter here, and perhaps is causing the client to be unable to
connect to this one as well, erroneously.  The timeout of 60 seconds seems
like an eternity for a wireless client, and I imagine this feature intends
to prevent a massive DoS or spoofing attack, except for we've seen iPhones
that can register 100's of thousands of failed login attempts in less than
an hour before our wireless overhaul, and our AD servers never even broke a
sweat.  Is it then perhaps for the safety of the wireless controller?

We've resolved this in some instances, even today, by "forgetting this
network" on the client and powering it off, then finding its session in
both ISE and the WLC and deleting them each, before powering the client
back up.  Then, it works flawlessly, once again.  Because of this, it seems
like this setting might be more of a nuisance than anything.

Any thoughts would be appreciated.  Thanks!--JW

Jess Walczak
Senior Network Analyst
Information Technology Services
jwwalc...@stthomas.edu
University of St. Thomas | stthomas.edu

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Who WiFi vendors does everyone use? REVISITED

2016-04-01 Thread Jess Walczak 
University of Saint Thomas - Saint Paul, Minnesota USA
7500 concurrent wireless and ~7000 concurrent wired on normal day
~1100 Cisco APs (counts of 216 b/g, 501 g/n, and 389 ac); 214 Cisco
switches --> Rolling upgrade cycle
Cisco 8510 HA Controller Pair for large campus, Cisco 5508 HA Controller
Pair for small campus, single 5508 test controller
ISE for both 802.1x SSID and Guest SSID via web auth, unencrypted,
click-to-accept AUP.  Soon to add Eduroam
Prime 2.2.0.0.158

Jess Walczak
Senior Network Analyst
Information Technology Services
jwwalc...@stthomas.edu
University of St. Thomas | stthomas.edu


On Fri, Apr 1, 2016 at 8:52 PM, Michael Hulko  wrote:

> The University of Western Ontario, Canada
>
> 28-30k concurrent devices
> 4000 Aruba APs
> Aruba Controllers :  Master - Local with redundancy
> Guest Access : Clearpass portal
> Airwave monitoring
>
> currently refreshing to ‘AC’ compatible APs.
>
> Mike H
>
> On Apr 1, 2016, at 6:15 PM, Watters, John  wrote:
>
> I was going to give time for other questions to be suggested. However, it
> seems that folks have started replying very quickly.
>
> I will tally this up & send it back out, maybe even tonight (though
> probably not).
>
>
>
>
>
>
>
> -jcw
>  
>
>
> John Watters   The University of Alabama
> Office of Information
> Technology
> 205-348-3992
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
>
>
> Michael Hulko
> Network Analyst
>
> Western University Canada
> Network Operations Centre
> Information Technology Services
> 1393 Western Road, SSB 3300CC
> London, Ontario  N6G 1G9
>
> tel: 519-661-2111 x81390
> e-mail: mihu...@uwo.ca
>
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Open Networks in Resnet

2016-03-02 Thread Jess Walczak 
We are running both an 802.1x network and an open one side by side,
ubiquitously, on all of our campuses, using Cisco WLCs.  We are using Cisco
ISE, which we employ to profile devices and put the lot of XBoxes,
Playstations, Rokus, AppleTVs, etc, which are (historically) almost never
compatible with 802.1x, automatically onto the open network.  Devices which
are not automatically put on the open network, can still join by a
click-to-continue AUP prompt--these devices are kicked off every morning at
2AM.  This one click-to-continue has the affect of keeping random devices
that are driving by on the street from casually using bandwidth, etc., but
otherwise there is nothing to prevent you from using the open network,
except the annoyance factor of having to do it every day.  You can also
self register a device, which is then tied to your AD username.  That and
the rate-limiting we put on the open network:
Override Per-User Bandwidth Contracts (kbps)
Average Data Rate: DownStream 5000 UpStream 3000
Burst Data Rate: DownStream 7500 UpStream 5000
Average Real-Time Rate: DownStream 5000 UpStream 3000
Burst Real-Time Rate: DownStream 7500 UpStream 5000

The average usage rate is about 4:1 of users on the secure network versus
the open network.  We have about 7500 unique wireless devices each day
during the normal semester.  We are in the process of also bringing up the
Eduroam SSID this spring as well.

Jess Walczak
Senior Network Analyst
Information Technology Services
jwwalc...@stthomas.edu
University of St. Thomas | stthomas.edu

On Wed, Mar 2, 2016 at 3:07 PM, Danny Eaton  wrote:

> We run an “Open” SSID across the entire campus (Rice Visitor) – it’s a
> captive portal, in a visitor VRF that has access to only on campus
> resources accessible from AT&T, Comcast, Roadrunner, etc.  It’s wired or
> wireless, but wireless does NOT have a MAC address registration component
> at this time.
>
>
>
> We have eduroam, and then our “branded” 802.1X SSID, Rice Owls for
> wireless.
>
>
>
> For wired, in the residential colleges, we use ISE – and have a
> self-registration portal for game consoles that put them into visitor as
> well.  This works for the PS3’s, Xbox’s, etc. of the world.  At this time,
> there’s no real way to get a Roku on the wireless (Apple TV we want to push
> them to wired – because it’s not going to tie up the RF for streaming TV in
> everyone’s dorm room then, among other reasons – if it requires a power
> outlet, plug it into the Ethernet too).
>
>
>
>
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Tom Klimek
> *Sent:* Wednesday, March 02, 2016 2:48 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Open Networks in Resnet
>
>
>
> We have essentially three SSID's campus wide..
>
> ND-Guest (open)
>
> ND-Secure (.1x, student and staff vlans)
>
> Eduroam
>
>
>
> On Wed, Mar 2, 2016 at 3:35 PM, Lee H Badman  wrote:
>
> 
>
>
>
> Other than Jeff Sessler at Scripps, who else is running an open network in
> their resnet environment? Off-list answer is fine, if you prefer. I’d like
> to bounce a few questions off of those doing this, off-list.
>
>
>
> Kind regards,
>
>
>
> Lee Badman
>
>
>
>
>
> *Lee Badman* | Network Architect (CWNA, CWSP, Mobility+)
>
> Information Technology Services
> 206 Machinery Hall
> 120 Smith Drive
> Syracuse, New York 13244
>
> *t* 315.443.3003  * f* 315.443.4325   *e* lhbad...@syr.edu *w* its.syr.edu
>
>
> *SYRACUSE UNIVERSITY*syr.edu
>
>
>
>
>
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
> !DSPAM:911,56d7517b10141643960313!
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Naming conventions for WLAN devices

2016-02-02 Thread Jess Walczak 
At the University of St. Thomas in Saint Paul, Minnesota, we have a unique
three letter designator for each of our 90+ buildings.  We are a Cisco shop
and use the following convention for APs:

AP naming convention:
BLDGCODE-ROOM#/HALLWAYFLOOR#-AP#-MODEL#-BASERADIOMACADDR

such that you get
BRA-219-01-702W-bc67.1c8c.7d80
for a 702W located in Brady Hall (BRA) in room 217, with a base radio MAC
address
or
IRE-2nd-06-2702e-58f3.9ccb.f6c0
for a 2702e located in Ireland Hall (IRE) in the hallway on 2nd floor.  It
is the sixth AP on that floor, and I order them numerically north to south,
west to east as necessary.

The logic here is that it sorts properly when you output a huge list of
these.  By building, then by room/hallway floor, then by an arbitrary
number, and you get a model# to look at and a radio MAC addr.  *The reason
for the radio MAC addr is that when you perform a wireless survey, you can
see the AP on the map you are creating, and it makes it easier to
correlate.*  My other choice would've been the ethernet MAC addr, so that
confirmation can be more immediate using Cisco Discovery Protocol lookups.

Thanks!--JW

On Tue, Feb 2, 2016 at 4:56 PM, Watters, John  wrote:

> We likewise use a similar naming convention to that used by Austin College
> (see below). We do, however, separate the building abbreviation from the
> room number with a dash and also follow the room number with a dash if a
> direction, an AP count (in a really dense deployment), or if an "-H" is
> appended meaning "in the hall near the door to". Our campus room number
> standard has an optional leading letter followed (with no separation) by
> four digits (which also indicate the floor) followed by an optional letter
> (again, with no separation).
>
>
>
> Hence an AP name with a specified building location could look like any of
> the following:
>
>
>
> LIB-101
>
> LIB-A101
>
> LIB-101A
>
> LIB-A101A
>
> LIB-A101A-NE - an AP in the northeast corner of A101A
>
> LIB-A101H- a valid room number not to be confused with
>
> LIB-A101-H   - an AP in the hall outside of room A101
>
> LIB-A101H-H  - an AP in the hall outside of room A101H
>
> LIB-P404A-23 - the 23rd AP (numbered clockwise starting immediately left
> of the main entrance door) in room P404A of building LIB
>
>
>
>
>
> LIB-101AF or LIB-AF101 or LIB-AF101HM or LIB-G-103-4 are all *invalid*
> room numbers --- *not* in the form: optional single leading character,
> three or four digits (rapidly renumbering rooms to 4 digits now), optional
> single trailing character with no separation between the three parts
>
>
>
> We print a label to go on the outside of each AP giving its name. Our
> Cisco APs are white, so we use a 1/2" white tape with black characters to
> make the label. This size is easily seen from the floor of even a tall room
> but blends into the AP housing quite well. We are starting to have some
> resistance to visible APs is new auditoriums with "cloud" type ceilings and
> even sometimes in black, exposed ceilings. So far though we have been able
> to get them treated with the same respect as a fire sensor.
>
>
>
> So, our AP names (6K+ right now) give physical location info with their
> name and nothing more. This tells the tech exactly where the AP is. He
> might not even need to know what closet it is wired from depending on his
> task. But, if he needs to know and doesn’t already know that info, he can
> go to any comm closet in the building and look at a printed map posted
> there of the entire building showing what areas of the building go to which
> comm closets.
>
>
>
> The person who does the hands-on work with the APs needs to know where the
> AP is or should be. He usually doesn't care what the IP address is, and may
> not even care whether it is working or not. If he has been told to go
> replace the AP named LIB-101. He doesn’t really need to know anything else.
> Our installation/maintenance techs do not do any troubleshooting other than
> maybe pull a phone out of their pocket to see if it works or maybe look at
> the lights. In by far the majority of cases, our NOC has determined that an
> AP is bad and needs to be replaced and simply dispatches a tech to do that.
> For new installs, once again the tech pulling the wire, mounting the APs,
> and patching the wiring to the switches has nothing to do with the
> configuration of the AP/controller. All he needs to know is which AP gets
> put where and what comm closet does it need to be fed from, which we supply
> to him via a printed AutoCAD floor plan that has been properly marked.
>
>
>
>
>
>
>
>
>
> -jcw
> [image: UA Logo]
>
>
>
>
> John Watters   The University of Alabama
>
> Office of Information
> Technology
>
> 205-348-3992
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Thomas Carter
> *S

Re: [WIRELESS-LAN] Cisco WLC 8.0.120.0 (MR2) on 8510- good, bad?

2015-07-27 Thread Jess Walczak 
Lee,

I am also seeing what Scott is seeing with the nearly instantaneous radio
resets on the 5Ghz side.  It doesn't seem to affect any client experience,
either, but it does generate a LOT of noise from a monitoring point of
view.  We have had a TAC open about this since February, but honestly
haven't really done any hardcore troubleshooting of the issue once we
ascertained that it was not affecting service in any real way.  In Prime, I
have it emailing a distribution group, and I get tons and tons of emails
from the same exact time, one reading that the AP went down, and the other
one reading that it came up, like so:
__
PI has detected a change in one or more alarms of category AP and severity
Critical in Virtual Domain ROOT-DOMAIN.
The new severity of the following items is Clear:

1. Message: '802.11a/n' interface of AP 'OWS458-01-1142' associated to
controller 'UST-WLC8510 (140.209.13.70)' is up.
Failure Source: AP OWS458-01-1142, Interface 802.11a/n
__
PI has detected one or more alarms of category AP and severity Critical in
Virtual Domain ROOT-DOMAIN for the following items:

1. Message: '802.11a/n' interface of AP 'OWS458-01-1142' associated to
controller 'UST-WLC8510 (140.209.13.70)' is down. Reason: Unknown Failure
Source: AP OWS458-01-1142, Interface 802.11a/n
__

In fact, here, the "all clear" message arrived before the one telling about
the down event, and both are timestamped for 4:21PM.  :-)

Our environment is an 8510 HA pair running 8.0.120.0 for the larger campus
with 900 or so APs, and an 5508 HA pair running 8.0.120.0 for the smaller
campus with under 200 APs, and Prime 2.2.  The AP models we have are
1242's, 1142's, 2702's (both i's and e's), and 702W's.  Also, we are just
now going live with ISE 1.4 as well.

Jess Walczak
Sr. Network Analyst
University of St. Thomas
Saint Paul, MN

On Mon, Jul 27, 2015 at 5:18 PM, Scott McDermott  wrote:

>   My environment is not on that scale, but I’m still seeing a lot of 5GHz
> radios cycling between up and down states followed by a reset, then it will
> come back up. Might happen again later, might not. Seems to be happening on
> all models.
>
>  --
> Scott McDermott
> Network & System Administrator
> King County Library System
>
>   From: The EDUCAUSE Wireless Issues Constituent Group Listserv on behalf
> of Lee H Badman
> Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv
> Date: Monday, July 27, 2015 at 06:03
> To: "WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU"
> Subject: [WIRELESS-LAN] Cisco WLC 8.0.120.0 (MR2) on 8510- good, bad?
>
>   Hello to the group- for those of you who have moved to the
> Cisco-recommended 8.0.120.0 code, have you found any issues? Particularly
> big 8510 environments with thousands of APs per controller doing
> 802.1x/WPA2.
>
> Thanks-
>
> Lee
>
> *Lee Badman* | Network Architect
> Information Technology Services
> 206 Machinery Hall
> 120 Smith Drive
> Syracuse, New York 13244
> *t* 315.443.3003  * f* 315.443.4325   *e* *lhbad...@syr.edu*
> *w* its.syr.edu
>
> *SYRACUSE UNIVERSITY *syr.edu
>
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
>   ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Cisco 2702 APs and MacOS security error?

2015-03-27 Thread Jess Walczak 
Joe,

Which version of controller code are running?  It's my understanding that
especially 8.0.115.0 for 5508's (which came out last week) addresses issues
with 2702 APs.  Maybe it's something to look at?  We are running around 500
count of 2702's but not with encryption at the moment.

Jess Walczak
We are in the process of upgrading some buildings to 2702 APs, and after
doing our first building clients with Apple hardware are seeing some odd
behavior. They are receiving the attached error. It seems to be related to
TKIP. We plan to remove TKIP from the WPA2 SSID this summer anyway and go
with AES natively, but in the mean time we are trying to determine a fix.

This is happening on both Apple OSX Yosemite and Maverick (that we have
seen so far), as well as some iPhones.

Has anyone seen anything similar? The odd thing is that we have not seen
this on any 1142, 2602 or 3602 APs, just the new 2702's.

Thanks.

-- 
Joe Roth
Network Manager
Binghamton University
Ph. 607-777-7528
Fax 607-777-4009
 ** Participation and subscription information for this EDUCAUSE
Constituent Group discussion list can be found at
http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Looking for interest among Wi-Fi professionals

2015-03-18 Thread Jess Walczak 
Joel,

I agree 100% with your point about searchability with Google's awesome
software/robots, and that is why I subscribed to this email list with my
Gmail address--I get all of the benefits of the email format and it is
indexed and searchable forever back as far as I want with Google.  Here I
come off sounding like an advertisement for Google.  It groups all the
responses into the same thread, and I didn't have to tweak it.  I don't
even have to pay for it--well, not pay them $ in an obvious way  :-)
Whenever something is free, you are product being marketed [to]...

Having said that. I'm all for using something that is RSS-enabled or
whatever, but it's hard to argue with something that is easy and mature as
regular old email.

Thanks!--Jess Walczak
Senior Network Analyst, University of St. Thomas
Saint Paul, MN 55105

On Wed, Mar 18, 2015 at 2:59 PM, McClintic, Thomas <
thomas.mcclin...@uth.tmc.edu> wrote:

>  Bruce,
>
>
>
> Not to side track this conversation too far, but is this because the
> ArubaOS is that stable or that it is not as prevalent?
>
>
>
> This is almost an exact reason for something like this to exist. In a
> perfect world this collaborative site would have sub-forums for the
> different vendors. Activity in each, mixed with membership polling would
> help indicate the number of people whom use a vendor and the amount of
> times people are posting. Typically people don’t post if there are no
> problems.
>
>
>
> It’s easy for us to pick on the largest vendor, but if we can show that
> other vendors have proportionally less issues; then we have some more ammo
> behind our complaints.
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Osborne, Bruce W
> (Network Services)
> *Sent:* Wednesday, March 18, 2015 2:42 PM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* Re: [WIRELESS-LAN] Looking for interest among Wi-Fi
> professionals
>
>
>
> I could be useful IF it is not dominated with Cisco Wi-Fi issues. Although
> Cisco is the largest vendor, they must have the most issues.
>
> When was the last time people were asking whether to upgrade to a GA
> version of ArubaOS?, for instance?
>
>
>
>
>
> *Bruce Osborne*
>
> *Wireless Engineer*
>
> *IT Infrastructure & Media Solutions*
>
>
>
> *(434) 592-4229 <%28434%29%20592-4229>*
>
>
>
> *LIBERTY UNIVERSITY*
>
> *Training Champions for Christ since 1971*
>
>
>
> *From:* Lee H Badman [mailto:lhbad...@syr.edu ]
> *Sent:* Wednesday, March 18, 2015 1:49 PM
> *Subject:* Looking for interest among Wi-Fi professionals
>
>
>
> This is not meant to self-promote, apologies if it seems that way. Looking
> for interest on whether those on the list would get value out of a
> potential new wireless-oriented discussion board, as described here:
>
>
>
>
> https://wirednot.wordpress.com/2015/03/18/hey-wireless-professionals-would-you-use/
> <https://urldefense.proofpoint.com/v2/url?u=https-3A__wirednot.wordpress.com_2015_03_18_hey-2Dwireless-2Dprofessionals-2Dwould-2Dyou-2Duse_&d=AwMFAg&c=6vgNTiRn9_pqCD9hKx9JgXN1VapJQ8JVoF8oWH1AgfQ&r=rYfqH_8oTvcXxRxUI3x3m3Y7Nwgir7tnuoGbdZsrUM4&m=dCxfcQfLO44eX42aDwfJu-n38EPsE5nIqFPWtDbKo58&s=cwHtgV0PkYT1jSxP9dI5ZDck5-z2dfd2UkFuR60CWVE&e=>
>
>
>
> Won’t hurt my feelings either way, but could be kind of valuable if you
> picture it widely used.
>
>
>
> Regards-
>
>
>
> Lee Badman
>
>
>
>
>
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/
> <https://urldefense.proofpoint.com/v2/url?u=http-3A__www.educause.edu_groups_&d=AwMFAg&c=6vgNTiRn9_pqCD9hKx9JgXN1VapJQ8JVoF8oWH1AgfQ&r=rYfqH_8oTvcXxRxUI3x3m3Y7Nwgir7tnuoGbdZsrUM4&m=dCxfcQfLO44eX42aDwfJu-n38EPsE5nIqFPWtDbKo58&s=yGPfTNzfY5_Puu8ZfYzuQOr1OmbvtIo7ukTz7o45_u0&e=>.
>
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>  ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Looking for interest among Wi-Fi professionals

2015-03-18 Thread Jess Walczak 
I feel like a curmudgeon saying this, but with the all the disparate things
to keep track of on various websites that even with the enhanced tech
available on a web platform I would likely stay more connected to this
group using the existing email platform.  The immediacy of the email
platform keeps me reading all of these posts day in and day out...

Thanks!--Jess Walczak
Senior Network Analyst, University of St. Thomas
Saint Paul, MN 55105

On Wed, Mar 18, 2015 at 1:23 PM, Pete Hoffswell <
pete.hoffsw...@davenport.edu> wrote:

> Yeah, what they said.
>
> -
> Pete Hoffswell - Network Manager
> pete.hoffsw...@davenport.edu
> http://www.davenport.edu
>
>
> On Wed, Mar 18, 2015 at 2:19 PM, Tony Skalski  wrote:
>
>> >I would much prefer a mailing list, but would use it regardless.
>>
>> Ditto
>>
>> On Wed, Mar 18, 2015 at 12:49 PM, Lee H Badman  wrote:
>>
>>>  This is not meant to self-promote, apologies if it seems that way.
>>> Looking for interest on whether those on the list would get value out of a
>>> potential new wireless-oriented discussion board, as described here:
>>>
>>>
>>> *https://wirednot.wordpress.com/2015/03/18/hey-wireless-professionals-would-you-use/*
>>> <https://wirednot.wordpress.com/2015/03/18/hey-wireless-professionals-would-you-use/>
>>>
>>> Won’t hurt my feelings either way, but could be kind of valuable if you
>>> picture it widely used.
>>>
>>> Regards-
>>>
>>> Lee Badman
>>>
>>>
>>>
>>>  ** Participation and subscription information for this
>>> EDUCAUSE Constituent Group discussion list can be found at
>>> http://www.educause.edu/groups/.
>>>
>>>
>>
>>
>> --
>> Tony Skalski
>> Systems Administrator
>> a...@stolaf.edu
>> 507-786-3227
>> St. Olaf College
>> Information Technology
>> 1510 St. Olaf Avenue
>> Northfield, MN55057-1097
>>
>>  ** Participation and subscription information for this EDUCAUSE
>> Constituent Group discussion list can be found at
>> http://www.educause.edu/groups/.
>>
>>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] DAS Wireless

2014-02-10 Thread Jess Walczak 
I second that desire.  I think we could see a huge demand for this from
both directions (i.e. institutions and carriers) this year, though
admittedly, the carriers have much to gain by continuing to simply let our
institutional wireless carry the load for their devices.

Thanks!--JW

Jess Walczak
Senior Network Analyst
University of St. Thomas
2115 Summit Avenue
Saint Paul, MN 55105


On Mon, Feb 10, 2014 at 10:45 AM, Sullivan, Don wrote:

>  No, but I would really be interested in your experience if you go
> through with it.
>
>
>
>
>
> *Don Sullivan*
>
> *Network Adminstrator*
>
> *Technology Services*
>
>
>
> 205-726-2111 | office
>
> 205-566-1432 | mobile
>
> 205-726-2524 | fax
>
>
>
> dsulli...@samford.edu
>
> www.samford.edu
>
> 800 Lakeshore Drive, Birmingham, AL 
> 35229<http://maps.google.com/maps?q=800+Lakeshore+Drive,+Birmingham,+AL+35229,+US>
>
>
>
> [image: Samford University Logo]
>
>
>
>
>
>
>
> *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
> WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Ray DeJean
> *Sent:* Monday, February 10, 2014 10:23 AM
> *To:* WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> *Subject:* [WIRELESS-LAN] DAS Wireless
>
>
>
>
>
> All,
>
>
>
> We've been approached by wireless company to install a DAS (distributed
> antenna system) throughout our campus.  They would then market the system
> to local carriers, which would increase their coverage (we have pretty poor
> AT&T service on campus).  There would be revenue sharing and they've
> offered to assist in expanding our 802.11 coverage as well.
>
>
>
> Just wondering if anyone else has entered into a similar agreement with a
> wireless company, and how it's working out for you.
>
>
>
> thanks,
>
> Ray
>
> --
>
> Ray DeJean
> Systems Engineer
> Southeastern Louisiana University
> email: r...@selu.edu
> http://r-a-y.org
>
> ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>  ** Participation and subscription information for this EDUCAUSE
> Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.
>
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

<>

Re: [WIRELESS-LAN] PCI Over Wireless

2013-12-30 Thread Jess Walczak 
We are also interested in doing this very thing with our Cisco
controller-based wifi at the University of St. Thomas, so perhaps you might
just respond to the group--at least the first response.

Thanks!--JW

Jess Walczak
Information Resources & Technologies
University of St. Thomas
St. Paul, Minnesota
On Dec 30, 2013 3:37 PM, "Curtis K. Larsen" 
wrote:

> Hello,
>
> I am interested to know if anyone is operating a PCI-compliant wireless
> network.  If so, I am interested to know how your architecture provides for
> the complete isolation {using stateful firewalls and separate SSID's} of
> PCI data vs. non-PCI data without bringing into scope your entire wireless
> LAN, particularly in a centralized controller scenario.  Please let me know
> if I can contact you to discuss off-list.
>
>
> Thanks,
>
> Curtis Larsen
> University of Utah Hospitals and Clinics
> Wireless Network Engineer
> Office 801-587-1313
>
>
> **
> Participation and subscription information for this EDUCAUSE Constituent
> Group discussion list can be found at http://www.educause.edu/groups/.
>

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.