Re: [WISPA] How toAuthenticate/Protect(WasEthernetbasedauthentication)
I'm no expert so you guys feel free to correct me as needed. The smallest subnet needs 4 ip addys to work. Even if it's three you get the idea. Still a huge waste of a very limited and harder to get all the time resource. Marlon(509) 982-2181 Equipment sales(408) 907-6910 (Vonage) Consulting services42846865 (icq) And I run my own wisp!64.146.146.12 (net meeting)www.odessaoffice.com/wirelesswww.odessaoffice.com/marlon/cam - Original Message - From: Scott Reed To: WISPA General List Sent: Wednesday, December 07, 2005 10:12 AM Subject: Re: [WISPA] How toAuthenticate/Protect(WasEthernetbasedauthentication) How were you looking at routing to use 3 for 1? I have never setup routing that way and would like to be sure I don't. I am running fully routed from the get-go, with 3 internal routers and a 4th going in Friday. Actually 2 MTs as router only and 2 that are "routing APs". Scott Reed Owner NewWays Wireless Networking Network Design, Installation and Administration www.nwwnet.net The season is Christmas, not X-mas, not the holiday, but Christmas, because Christ was born to provide salvation to all who will believe! -- Original Message --- From: "Marlon K. Schafer (509) 982-2181" [EMAIL PROTECTED] To: "WISPA General List" wireless@wispa.org Sent: Wed, 7 Dec 2005 10:05:52 -0800 Subject: Re: [WISPA] How to Authenticate/Protect(WasEthernetbasedauthentication) The idea, for me is that by the time a company gets to the point that they need to route they'll either know what they are doing. And/or they'll have someone on staff just to handle that issue. The other problem I ran into back when was a shortage of ip addys. And routing to every customer wastes three ip addys for every one you get to actually use. I don't think that's responsible stewardship. My new ap's block client to client communications, and new manages switches that will vlan and packet filter will be the next upgrades I'll do. We just broke the network in two. So I've got 150ish broadband subs on one system and 150 on another. Not exact numbers but close. One of the systems went from t-1 to 10 meg so I don't have good numbers as to performance issues. The other one still has 100 megs coming into it. On that system I see no difference. I'm sure there's room for improvement. There always will be if a guy wants to stay anywhere near the head of the pack. One other thing that's not been brought up yet is over building. Today we can build 3 to 10x more capacity into the network than the average customer is demanding for the same cost or very nearly so as building to meet customer demands. Having more capacity than is needed, so far, is allowing us to significantly simplify the network. Anyone can walk in here tomorrow and take over with a few phone calls to tech support at most. There's nothing fancy going on here. That's part of why I can take care of 250 wireless subs, 50 fiber customers and hundreds of dialup people with me and two gals that share a part time office job. Our wireless churn is almost nil. I've lost a couple lately due to some trouble at a tower site. It's caused by jerk off competitors and their 1 watt amps and 15+ db sector antennas though. And I tried to use a $120 sector where I normally use $400 ones. I'm not sure I'll ever learn that lesson :-). Will we have to redo the network at some point in the future? Sure. Will it suck? Sure. But that's then and this is now. We just redid half of it and it sucked. Big time. But only for a few days. WE have taken the time to teach our customers how to do their own networking stuff just like we took the time to teach them how to do their own dialup stuff. When we need to make changes (or the customer changes their gear) they can usually take care of it themselves or with a little help from us via the phone. Both models work. The real trick is making sure that they get deployed in the right situation. Too big of a hammer is sometimes just as bad as too small of a one or vice verse. Oh yeah, I'm tired of hearing small networks getting talked down to. With 100 subs the average guy should be putting $2,000 to $3,000 per month in the bank. That's enough money to keep the average mom home with the kids! We'd be there today if we would just stop growing. Man, a mom at home with the kids AND good cars to drive and a dad that's not working 80 hours per week. Small WISPs are right in there with the American dream man! This is good stuff! Laters, Marlon (509) 982-2181 Equipment sales (408) 907-6910 (Vonage) Consulting services 42846865 (icq) And I run my own wisp! 64.146.146.12 (net meeting)
Re: [WISPA] How toAuthenticate/Protect(WasEthernetbasedauthentication)
PPPoE on a SOHO Router, private IPs for the devices. But I don't think you have to use PPPoE to do the /32 address to force the end-device to route everything. Need a router guru to answer that. Scott Reed Owner NewWays Wireless Networking Network Design, Installation and Administration www.nwwnet.net The season is Christmas, not X-mas, not the holiday, but Christmas, because Christ was born to provide salvation to all who will believe! -- Original Message --- From: Mark Koskenmaki [EMAIL PROTECTED] To: WISPA General List wireless@wispa.org Sent: Wed, 7 Dec 2005 11:17:15 -0800 Subject: Re: [WISPA] How toAuthenticate/Protect(WasEthernetbasedauthentication) I don't use pppoe. it really isn't workable, since the client end I use does not have a PPPOE client. And, I don't need it. BTW, if you use pppoe, how does someone use thier xbox, packet8 phone, or other generic IP-addressable device? North East Oregon Fastnet, LLC 509-593-4061 personal correspondence to: mark at neofast dot net sales inquiries to: purchasing at neofast dot net Fast Internet, NO WIRES! - - Original Message - From: Scott Reed To: WISPA General List Sent: Wednesday, December 07, 2005 11:04 AM Subject: Re: [WISPA] How toAuthenticate/Protect(WasEthernetbasedauthentication) Or, as PPPoE, client gets a /32 and a default gateway that allows everything to route. Why would the customer with a public need to be on a subnet by themselves, thus needing 4 IPs? Scott Reed Owner NewWays Wireless Networking Network Design, Installation and Administration www.nwwnet.net The season is Christmas, not X-mas, not the holiday, but Christmas, because Christ was born to provide salvation to all who will believe! -- Original Message --- From: Mark Koskenmaki [EMAIL PROTECTED] To: WISPA General List wireless@wispa.org Sent: Wed, 7 Dec 2005 10:56:54 -0800 Subject: Re: [WISPA] How toAuthenticate/Protect(WasEthernetbasedauthentication) For a customer to have single computer with a public IP, I do have to use 4 IP addresses. There's the broadcast, network, and two hosts - one being the gateway and one is the host. However, I have only something like 5 clients with publid IP's on thier side, every other client has NAT done at thier end, so, thier CPE has a public IP interface, but all of thier machines have private IP's. They can have multiple computers, and they generally just share one public IP. So, for the most part, I use one public IP per client - however... I subnet each access point, which has a 16 or 32 IP subnet attached to it. And again, this wastes 3 IP's per subnet... your broadcast, network, and of course, gateway IP. However, monitoring traffic on the network shows almost zilch for anything other than actual USE on the network. So, while I suppose we're technically wasting some IP's, we have a return for it, in that actually attacking client's machines is almost impossible, and my network is free of most broadcast and non-ip traffic. I hope to implement BGP and OSPF within 6 months network-wide. We'll have to see how this affects our traffic levels negatively... North East Oregon Fastnet, LLC 509-593-4061 personal correspondence to: mark at neofast dot net sales inquiries to: purchasing at neofast dot net Fast Internet, NO WIRES! - - Original Message - From: Marlon K. Schafer (509) 982-2181 To: WISPA General List Sent: Wednesday, December 07, 2005 10:15 AM Subject: Re: [WISPA] How toAuthenticate/Protect(WasEthernetbasedauthentication) I'm no expert so you guys feel free to correct me as needed. The smallest subnet needs 4 ip addys to work. Even if it's three you get the idea. Still a huge waste of a very limited and harder to get all the time resource. Marlon (509) 982-2181 Equipment sales (408) 907-6910 (Vonage) Consulting services 42846865 (icq) And I run my own wisp! 64.146.146.12 (net meeting) www.odessaoffice.com/wireless www.odessaoffice.com/marlon/cam - Original Message - From: Scott Reed To: WISPA General List Sent: Wednesday, December 07, 2005 10:12 AM Subject: Re