WLAN Analysis Tools
I'm working with a couple of my students here at Syracuse on an article for a December issue of Network Computing magazine that we are tentatively calling the Wireless LAN Analysis Toolkit. We're hoping to provide readers with an understanding of the range of problems faced by managers of large WLANs along with a feel for the essential tools that are available, both commercial and open-source. We're thinking about everything from the physical layer (e.g., spectrum analyzers) all the way up the stack. Since Frank Bulk recently looked at distributed monitoring systems, we're not planning to cover those products explicitly. We're looking for help from current WLAN managers. You can either provide general input or answer the following two questions. I hope in most cases you would be willing to post your thoughts publicly, but if you have comments that are of a sensitive nature, you can e-mail me directly. 1. What are the most common WLAN problems you face, either in the design or operation of your network, for which WLAN analysis tools might be helpful? 2. Which specific available tools -- commercial or otherwise -- are most helpful in allowing you to do your job? Thanks, Dave Molta Director, Syracuse University Center for Emerging Network Technologies Sr. Technology Editor, Network Computing 315-443-4549 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] wireless survey results
Saccheen, Good work, and congratulations on closing in your MS degree. For what it's worth, it would also be nice to see how college campuses are addressing issues of guest access/open access on the campus wireless networks. Your work is obviously done, but this info would really help round out the whole picture, in my opinion. Lee Lee H. Badman Network Engineer CWSP, CWNA (CWNP011288) Computing and Media Services (NSS) 250 Machinery Hall Syracuse University Syracuse, NY 13244 (315) 443-3003 Voice (315) 443-1621 Fax [EMAIL PROTECTED] 07/17/05 7:39 PM Hello, I had recently posted a survey on this forum in order to investigate wireless deployments in higher education. I have completed the study and hence, in keeping with the policy of Educause, I have attached a SYNOPSIS of the research and the FULL REPORT at the following link: http://people.sunyit.edu/~martins5/ Thanks to everyone who participated in the research and gave invaluable feedback. Regards, Saccheen Martin (Graduate student in the department of Telecommunications at SUNYIT) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
RE: [WIRELESS-LAN] WLAN Analysis Tools
We're looking for help from current WLAN managers. You can either provide general input or answer the following two questions. I hope in most cases you would be willing to post your thoughts publicly, but if you have comments that are of a sensitive nature, you can e-mail me directly. 1. What are the most common WLAN problems you face, either in the design or operation of your network, for which WLAN analysis tools might be helpful? Bridging of the wired and wireless interface, and interference from Rougue/AdHoc Wireless Networks. 2. Which specific available tools -- commercial or otherwise -- are most helpful in allowing you to do your job? Ethereal, Allows packet capture and basic decodes on wireless frames. Ekahau Site Survey. Site Survey tool that also is very good at detecting hidden networks (With appropriate card) Network Stumbler. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] WLAN Analysis Tools
1. What are the most common WLAN problems you face, either in the design or operation of your network, for which WLAN analysis tools might be helpful? - Rogue APs- but are only of concern if executive policy forbids them and is enforceable (hot and cold here at SU) - Design/budgetary planning- people want to know what it will cost to do a building without a valid/realistic survey - User education- some things just aren't suited for wireless/doing things over wireless with no security 2. Which specific available tools -- commercial or otherwise -- are most helpful in allowing you to do your job? - Ekahau works nicely for planning - AirMAgnet wonderful all-around tool - Wild Packets AiroPeek- nice decodes - Net stumbler/WiFiFoFum, other freebies- they are free - Noppix Auditor suite- free, host of Linux-based powerful wireless tools Lee Lee H. Badman Network Engineer CWSP, CWNA (CWNP011288) Computing and Media Services (NSS) 250 Machinery Hall Syracuse University Syracuse, NY 13244 (315) 443-3003 Voice (315) 443-1621 Fax ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
RE: [WIRELESS-LAN] wireless survey results
Good morning, All. I would also like to know what other campuses are doing for guest access. We have several camps here during the summer and this is the first year that we've also had people assuming that they could get access -- also assuming no charges for it. Have any of you been down this road? How are you handling it? thanks -- candice Candice Scott Dir. of Library and IT Services Schreiner University Kerrville, TX 78028 -Original Message- From: Lee Badman [mailto:[EMAIL PROTECTED] Sent: Monday, July 18, 2005 8:00 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] wireless survey results Saccheen, Good work, and congratulations on closing in your MS degree. For what it's worth, it would also be nice to see how college campuses are addressing issues of guest access/open access on the campus wireless networks. Your work is obviously done, but this info would really help round out the whole picture, in my opinion. Lee Lee H. Badman Network Engineer CWSP, CWNA (CWNP011288) Computing and Media Services (NSS) 250 Machinery Hall Syracuse University Syracuse, NY 13244 (315) 443-3003 Voice (315) 443-1621 Fax [EMAIL PROTECTED] 07/17/05 7:39 PM Hello, I had recently posted a survey on this forum in order to investigate wireless deployments in higher education. I have completed the study and hence, in keeping with the policy of Educause, I have attached a SYNOPSIS of the research and the FULL REPORT at the following link: http://people.sunyit.edu/~martins5/ Thanks to everyone who participated in the research and gave invaluable feedback. Regards, Saccheen Martin (Graduate student in the department of Telecommunications at SUNYIT) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
RE: [WIRELESS-LAN] WLAN Analysis Tools
1. What are the most common WLAN problems you face, either in the design or operation of your network, for which WLAN analysis tools might be helpful? 1: Misconfigured clients. Same as it ever was - if we didn't have users on the network, life would be so much simpler. 2. Poor receptivity of clients (can anyone say titanium-shelled Macs!) 3. Intermittent connectivity. RF is dyanmic. Deal with it. 2. Which specific available tools -- commercial or otherwise -- are most helpful in allowing you to do your job? 1. Airwave Monitoring Platform (AMP.) Even with an all-Cisco infrastructure, this is hands-down the best tool we have for keeping tabs on what's up in our network. 2. Airmagnet Sniffer. Sooo nice to be able to see everthing at once. Wish it had better depth on decodes, tho. 3. The Cisco ADU - a very well designed client interface and really handy for basic troubleshooting in our environment, see above. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] WLAN Analysis Tools
1. What are the most common WLAN problems you face, either in the design or operation of your network, for which WLAN analysis tools might be helpful? #1, Ad-Hoc networks in large classrooms #2, Interferences on 5 GHz, point-to-point links #3, People believing that we need to secure WLANs at all prices 2. Which specific available tools -- commercial or otherwise -- are most helpful in allowing you to do your job? #1, -Education for prevention -Netstumbler etc.. for Detection -On-site visit and yelling, for remediation (cannot detect a specific user when 200 laptops are next to each other...don't want to use jamming solutions #2, -We use of a portable Spectrum Analyzer #3, -Secure Applications, then revisit the problem! (WLAN security is only between Devices and APs it's all clear after that!) Philippe Hanset University of Tennessee Thanks, Dave Molta Director, Syracuse University Center for Emerging Network Technologies Sr. Technology Editor, Network Computing 315-443-4549 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] wireless survey results
Here's how we handle guest access. All of our APs are on a separate VLAN behind a linux firewall/router. Your mac address must be registered in LDAP before you're permitted past the firewall (which is done online). For guests, they have to know someone on campus. They click the guest link on the wireless login page, fill in their name, email, company, and the email address of someone they know on campus (with selu.edu domain). That person will get an email saying Joe Somebody wants wireless access, click here to approve it or ignore this message to deny it. If they approve, the guest will be allowed wireless access for two days. It isn't the best security, it's basically the honor system. But it's a good tradeoff between security, usability, and low administration. To date, we haven't had any problems with anyone abusing the guest system. I'd also like to hear how others are handling guest access. ray =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Ray DeJean http://www.r-a-y.org Systems EngineerSoutheastern Louisiana University IBM Certified Specialist AIX Administration, AIX Support =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= On Mon, 18 Jul 2005, Scott, Candice C wrote: Good morning, All. I would also like to know what other campuses are doing for guest access. We have several camps here during the summer and this is the first year that we've also had people assuming that they could get access -- also assuming no charges for it. Have any of you been down this road? How are you handling it? thanks -- candice Candice Scott Dir. of Library and IT Services Schreiner University Kerrville, TX 78028 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] wireless survey results
Hello, In the wireless study, I did try to address some of the general steps that schools have taken to address guest access/open access on the wireless network. Below gives a brief description of my findings: In a closed only network implementation where only authorized users (such as faculty and students) can access the wireless network, guests can be granted access to the wireless network once they are sponsored by an authorized faculty or employee. Otherwise, they must request access, well in advance, and provide MAC address or other credentials. In both a closed and open network implemenation where certain areas are closed for student and employee access only, and others are open (hotspots), school indicated different access policies for guests. Some schools indicated that guests or unauthorized users are directed to a service providerÂ’s network if they try to log on to the campusÂ’ network. Here, they are obliged to pay for the wireless access. Other schools leave access points that cover the library or conference rooms open so that a guest (authorized or unauthorized) can access the wireless network for free but they are granted limited access to network resources such as the internet. Regards, Saccheen Martin (Graduate student in the department of Telecommunications at SUNYIT) Quoting Lee Badman [EMAIL PROTECTED]: Saccheen, Good work, and congratulations on closing in your MS degree. For what it's worth, it would also be nice to see how college campuses are addressing issues of guest access/open access on the campus wireless networks. Your work is obviously done, but this info would really help round out the whole picture, in my opinion. Lee Lee H. Badman Network Engineer CWSP, CWNA (CWNP011288) Computing and Media Services (NSS) 250 Machinery Hall Syracuse University Syracuse, NY 13244 (315) 443-3003 Voice (315) 443-1621 Fax [EMAIL PROTECTED] 07/17/05 7:39 PM Hello, I had recently posted a survey on this forum in order to investigate wireless deployments in higher education. I have completed the study and hence, in keeping with the policy of Educause, I have attached a SYNOPSIS of the research and the FULL REPORT at the following link: http://people.sunyit.edu/~martins5/ Thanks to everyone who participated in the research and gave invaluable feedback. Regards, Saccheen Martin (Graduate student in the department of Telecommunications at SUNYIT) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] wireless survey results
Here at Ryerson people visiting and wanting wireless access are to contact our conference services at which point a staff member will enter in a temporary user ID into LDAP via a custom web page and choose a date to expire that entry. The user then falls into 1 of 3 guest networks and is forced to login via captive portal. Ken Connell Intermediate Network Engineer Computer Communication Services Ryerson University 350 Victoria St RM AB50 Toronto, Ont M5B 2K3 416-979-5000 x6709 - Original Message - From: ray [EMAIL PROTECTED] Date: Monday, July 18, 2005 10:42 am Subject: Re: [WIRELESS-LAN] wireless survey results Here's how we handle guest access. All of our APs are on a separate VLAN behind a linux firewall/router. Your mac address must be registered in LDAP before you're permitted past the firewall (which is done online). For guests, they have to know someone on campus. They click the guest link on the wireless login page, fill in their name, email, company, and the email address of someone they know on campus (with selu.edu domain).That person will get an email saying Joe Somebody wants wireless access, click here to approve it or ignore this message to deny it. If they approve, the guest will be allowed wireless access for two days. It isn't the best security, it's basically the honor system. But it's a good tradeoff between security, usability, and low administration. To date, we haven't had any problems with anyone abusing the guest system. I'd also like to hear how others are handling guest access. ray =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Ray DeJean http://www.r-a-y.org Systems EngineerSoutheastern Louisiana University IBM Certified Specialist AIX Administration, AIX Support =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= On Mon, 18 Jul 2005, Scott, Candice C wrote: Good morning, All. I would also like to know what other campuses are doing for guest access. We have several camps here during the summer and this is the first year that we've also had people assuming that they could get access -- also assuming no charges for it. Have any of you been down this road? How are you handling it? thanks -- candice Candice Scott Dir. of Library and IT Services Schreiner University Kerrville, TX 78028 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] WLAN Analysis Tools
1, Most common problems: a. Users putting up their own APs and then providing open access to our entire network through it. b. VPN configuration issues. Our users must go through our VPN for access to anything other than basic Web browsing or email. 2. Helpful Tools: a. AirWave AMP product does incrediblty well in managing my 250+ Cisco APS. Most are 1200 series boxes with a few old 340/350s still around. The ability to config a new box just like others (with a few things like IP address name) still being unique is a piece of cake. In addition, the unit tracks device uptimes, device usage, client usage across APs, etc. A piece of cake to drive. b. The Cisco ADU software for doing site surveys and getting stats on throughput, errors, frequency usage, etc. c. The NetMRI box does a good job of finding rogue APs across an entire network. It will handle any size address space(s) you point it to. But, it is way too pricy. Our was a demo unit that is now gone. -jcw To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU From: Dave Molta [EMAIL PROTECTED] Date: Mon, 18 Jul 2005 08:58:14 -0400 Subject: [WIRELESS-LAN] WLAN Analysis Tools Reply-To: 802.11 wireless issues listserv WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU I'm working with a couple of my students here at Syracuse on an article for a December issue of Network Computing magazine that we are tentatively calling the Wireless LAN Analysis Toolkit. We're hoping to provide readers with an understanding of the range of problems faced by managers of large WLANs along with a feel for the essential tools that are available, both commercial and open-source. We're thinking about everything from the physical layer (e.g., spectrum analyzers) all the way up the stack. Since Frank Bulk recently looked at distributed monitoring systems, we're not planning to cover those products explicitly. We're looking for help from current WLAN managers. You can either provide general input or answer the following two questions. I hope in most cases you would be willing to post your thoughts publicly, but if you have comments that are of a sensitive nature, you can e-mail me directly. 1. What are the most common WLAN problems you face, either in the design or operation of your network, for which WLAN analysis tools might be helpful? 2. Which specific available tools -- commercial or otherwise -- are most helpful in allowing you to do your job? Thanks, Dave Molta Director, Syracuse University Center for Emerging Network Technologies Sr. Technology Editor, Network Computing 315-443-4549 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. John Watters UA: Office of Information Technology 205-348-3992 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.