Neil,
With justification, you can request additional addresses from ARIN. I
think because many colleges and universities have legacy allocations,
the processes for doing so are unknown or believed to be cumbersome. I
would say that the ARIN processes are geared more for service providers,
bu
I am fairly adamant in opposing any automatic rogue containment. Aside
from the obvious problems with uninformed administrators turning it
loose in inappropriate ways, the more generic complaint is that it
crosses the line from defending one's infrastructure to attacking
someone else's. My reac
I know of at least one campus that implemented this and soon found that
students began trading passwords to avoid the restrictions.
-Kevin
Lelio Fulgenzi wrote:
Seeing that each class likely has an up to date roster, would it not be
possible to create a system that would disable access for all
Mobile Station Protocol
1.3.6.1.4.1.14179.2.1.4.1.25
IF 1 = a radio
2 = b radio
3 = g radio
4 = unknown
5 = mobile
not documented, it seems, but '6' is 802.11n
-Kevin
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be
One thing to note is that 300Mbps as a symbol rate is only possible with
40MHz channels (versus the 20MHz standard width for 802.11a/b/g) ..
which in 2.4GHz takes you from 3 non-overlapping to 1 non-overlapping.
In 5GHz you have at least 8 40MHz non-overlapping channels.
I personally don't ima
Something that I think is worth noting.. desktop administrators have
asked us if they should be buying 802.11n client adapters. Our general
response has been 'yes', with the usual caveat about potential hardware
changes between now and final ratification. (In most cases I've seen the
'n' adapte
It probably is no surprise but we have a 1252-based pilot in operation
now, with ongoing conversations about when/how to expand. All of the
concerns raised so far are valid, and under discussion. Currently we're
using individual power injectors to Gig switches, but we all know how
well individual
oring agents to provide more continuous
analysis of critical spaces.
I would be very interested in hearing of other experiences or thoughts
along these lines.
thanks,
-Kevin
Kevin Miller wrote:
We've done some work with wireless multicast. Would be willing to share
off-list. A few horror st
We've done some work with wireless multicast. Would be willing to share
off-list. A few horror stories, unfortunately.
-Kevin
Lee H Badman wrote:
Any wireless multicast experts in the group that might be willing to
field some questions outside of the group?
Thanks-
Lee H. Badman
Wir
We've done this in some areas, especially where the APs were deployed
quite densely. As long as that's the case, it seems to be a good move.
It prevents clients that are 300' away from dragging down the
performance for everyone.
-Kevin
Dennis Xu wrote:
I have seen some threads on forums about di
1) Could you configure your routers w/ secondaries to "answer"
for the 1918 space the phones are looking for? What happens if
the phone actually gets an answer? A) Will it shut up, or B) can
you use this to get more diagnostic information?
We could; the addresses have all been different so far
This was the note that I posted on the list last Friday.
To summarize, we began seeing problems on 7/2. Last week we observed the
problem roughly once/day, and it did recur on Monday. In each case, we
have had a ~10 minute period of time where we observed a substantial
amount of ARP traffic from
All,
For the last week or so, we have seen some unusual problems with our
autonomous (cisco) APs. In particular, for short periods of time (~5-10
minutes), a large number of them would appear "down" in our monitoring
system.
In these instances we began capturing traffic, and until just now I
did
Understand, though, that if someone puts up an access point with your
SSID, the clients will connect and because they aren't validating the
certificate, they will send their credentials to the "rogue" AP.
-Kevin
ktaillon wrote:
One of the things that I didn't point out is we are running the new
I am starting to have a sinking feeling in my stomach that we're in for
a growing amount of pain.
The culprit: rogue AP suppression gone wild.
[Background: The most common form of rogue AP suppression seems to be
monitoring for client associations to the rogue AP, then sending a
deauth/deassocia
Hi-
Some of you may know that Philippe and I co-chair an Internet2 group,
SALSA-FWNA[1].
Some of the recent work of the group (and Steve Carmody in particular)
has been to create a RADIUS profile for SAML. This is a building block
towards permitting attribute exchange in conjunction with federat
There is work within the SALSA-FWNA group of Internet2
(http://security.internet2.edu/fwna). There is a pair of US servers that
connect to Eduroam. There are also activities underway to improve the
federated aspect of the service using Shib/SAML.
EAP is the common denominator, but beyond that, it
We've done some experimentation in roughly the same config, though it
was 4 channels at 512kbps each (plus audio), over 802.11a/g. One good
thing we did was to disable the lowest connection rates across all
protocols.
In our test it wasn't so much a function as number of users, as all 4
channels
From observations and discussion with others, it seems that that
wireless zero config on windows favors broadcast SSIDs... You may notice
that sporadically it will connect to the broadcast one even if you've
configured the non-broadcast with higher priority.
-Kevin
Jim Gogan wrote:
Quick ques
This thread seems to have morphed from the original question, but I'll
note that we have a cisco vpn 3000 w/ Xauth (central username and
password) using MGA (server cert authn) to prevent MITM. Use of the vpn
is available from the wireless net but not required.
We've seen a substantial increas
Ringgold, Clint wrote:
Does anyone have pros or cons for a Distributed Antenna System? I think
the issues would mainly be bandwidth but if anyone could point me in the
direction of costs and installation issues etc (as well) it would be great.
I'm also interested in such solutions. My conc
Specifically, I can't seem to get Airespace units to transmit DHCP requests
properly to the Perfigo/CCA gateway and back to the clients. I can use Airespace
for DHCP for wireless clients, but that's a clumsier system, with a shorter
lease time than I want.
Many thanks in advance.
Note that you
Ryon Price wrote:
I am in charge of putting together specs for a wireless system in a new
building to be built for 2008. Though I am knowledgeable about the
current standards and have been running our current wireless system for
several years I'm having a hard time trying to spec out something
Mearl Danner wrote:
Samford is in the process of establishing policies for wireless access on
campus.
We have Airespace/Cisco 4100 controllers and are in the process of deploying
model 1100 APs in various areas around campus. Using this hardware we are able
to establish different default ACL'
Sascha Meinrath wrote:
> Hi Kevin,
>
> I was wondering if you did any tests with a non-Meru AP in the same
> physical space downloading with the Meru APs? Mainly, I'm interested in
> seeing if there is a marked performance drop-off. I suspect that the
> efficiencies in the Meru networks are gain
> While a multi-channel approach will always deliver "max Peak throughput"
> (no surprise there), Meru's approach provides much better performance in
> high-density deployments (e.g. libraries) under all conditions and will
> always [provide far superior load balancing, handoff, QoS and RF
> manage
>The wording Kevin used for the reasoning is also a bit vague. The
>
>
I will certainly clarify anything that seems unclear..
>I would like to know Kevin if in your testing what AP (100, 201, 208??)
>you were testing with and what version of the firmware? If you were
>using 2.x it only supported
Eric T. Barnett wrote:
>So if you have 2 in close proximity on the same channel, then you end up
>with half the bandwidth of 2 AP's on different channels. How about when
>
>
Correct; this was what Meru's CTO explicitly said.
>they are not in close proximity but they overlap as they would in a
>s
To followup on some of these conversations.. I've been looking at the
Meru technology a bit in the past few months, intrigued by the single
channel claims. I recently ran a density test with the 'virtual AP' (two
APs on a single channel) to test the performance. We had 30 clients (mix
of b/g) in a
ller/fwna-roadmap-0.2.pdf
[4]: http://www.eduroam.org
--
-Kevin
Kevin Miller[EMAIL PROTECTED]
Network Architect
Office of Information Technology
Duke University
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/groups/.
30 matches
Mail list logo