Thanks Jason and Mike.
Great feedback. We have our Network Security folks administer RADIUS, so I'm
trying to gauge operational impact. How much time do you think this adds to the
workload? Are there flexible wildcard-match options?
Regards,
Bruce T. Johnson | Partners Healthcare
Network Engineering | 617.726.9662
Pager: 31633 | bjohns...@partners.org
149 13th Street, 10th Fl., 10055B
Charlestown, Ma 02129
________________________________
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Sent: Fri May 15 22:28:38 2009
Subject: Re: [WIRELESS-LAN] WLAN Deployment-High number of users
This depends on your implementation.
If you don't do Auth vlans, and just do straight vlan switching (like the
article I linked) you can be placed on a VLAN based on many things. We use
Group membership here.
No DHCP delay in that configuration.
On Fri, May 15, 2009 at 3:43 PM, Jason Appah <jason.ap...@oit.edu> wrote:
The only thing about that is training your users to accept the limited
or no connectivity state when connecting to the assigned vlan…
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Mike King
Sent: Friday, May 15, 2009 12:04 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] WLAN Deployment-High number of users
You don't mention if your using 802.1x, but if you are, you can utilize
"Vlan Override".
http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09
186a0080665ceb.shtml
which allows you to throw users int specific VLAN's based on RADIUS
return attributes. All off the same SSID.
Mike
On Fri, May 15, 2009 at 2:39 PM, Jason Appah <jason.ap...@oit.edu>
wrote:
You could still get away with that with FAT AP's
That is since they are autonomous, you could assign different vlans and
in turn different ip scopes to the same ssid as they are all unawares of
each other.
-----Original Message-----
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Scott Irey
Sent: Friday, May 15, 2009 11:27 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] WLAN Deployment-High number of users
Not sure if Cisco has anything like this but Aruba has vlan pooling
which
allows multiple vlans to be assigned to the same SSID and the algorithm
will
assign clients to each vlan based on that. That works well if you want
to
continue to broadcast the same ssid over all of campus. Not sure if
Cisco
does anything similar.
We have multiple profiles here (per building) all using the same ssid
but
depending on what AP you associate to you will get assigned that profile
which has the vlan assignment.
Scott Irey
Network & Telecom Systems Engineer
Oakland University
Office: 248.370.2808
Mobile: 248.505.9827
-----Original Message-----
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of reflect ocean
Sent: Friday, May 15, 2009 1:52 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] WLAN Deployment-High number of users
Hi I run a medium-sized wifi network.We are cisco shop
(autonommous access points).Recently wifi users number have reached
limits we didn't expect.Because of that,we had to adjust our subnet
network in order to support more users associated to the only SSID our
wireless network use.
I've been looking for alternative to create another ssid and associate
it to another different subnet but I can't find any related to.
Our wireless lan is currently reaching 1000 users or so.I'm not very
confortable with the idea of having such number of users in wireless
subnet.
We have deployed around 60 cisco autonomous acess points throughout
the campus and this subnet is firewalled and routed in our core switch
which is a hope away to accessing Internet.It's very simple design.
What would be a recommended deployment in this case with a growing
number of users?
Would deploying lwap bring any advantage to this design? We want to
keep a single ssid and mobility for wireless users.
Would mesh network bring any benefit?
Thank you
**********
Participation and subscription information for this EDUCAUSE Constituent
Group discussion list can be found at http://www.educause.edu/groups/.
**********
Participation and subscription information for this EDUCAUSE Constituent
Group discussion list can be found at http://www.educause.edu/groups/.
**********
Participation and subscription information for this EDUCAUSE Constituent
Group discussion list can be found at http://www.educause.edu/groups/.
********** Participation and subscription information for this EDUCAUSE
Constituent Group discussion list can be found at
http://www.educause.edu/groups/.
********** Participation and subscription information for this EDUCAUSE
Constituent Group discussion list can be found at
http://www.educause.edu/groups/.
********** Participation and subscription information for this EDUCAUSE
Constituent Group discussion list can be found at
http://www.educause.edu/groups/.
The information in this e-mail is intended only for the person to whom it is
addressed. If you believe this e-mail was sent to you in error and the e-mail
contains patient information, please contact the Partners Compliance HelpLine at
http://www.partners.org/complianceline . If the e-mail was sent to you in error
but does not contain patient information, please contact the sender and properly
dispose of the e-mail.
