Just to chime in the topic of restricting traffic- bear in mind that
applications like Facetime and synching things like Documents to Go between
iPads and PCs do get impacted by what my seem like otherwise good segregation
methodology. This can be the source of much consternation.
From: The
We have a separate address space (Class B private) for wireless. We also use
IAS policies on 802.1x to place students in a separate subclass within it. The
student wlan has an ACL that protects our AD domain resources from unprotected
machines.
From: The EDUCAUSE Wireless Issues Constituent Gro
Our approach has been to keep the APs within the Class C of the
building. We use Netreg to verify a user before they can actually get on
the net. We have, however, moved to a system called Ruckus due to it's
ability to work with a controller or to be autonomous. The system has 19
antennas of bo
John,
1. I believe most (all?) wireless systems can bridge at the AP. If you
are using 802.1X, you would need to find some way to whitelist the AP traffic,
though. I know that Aruba APs can run in bridged mode, but you lose some
features because all enforcement occurs within the limited