Re: [WIRELESS-LAN] Universities supplying free Wifi to the public

[John Watters]

We used to do just what is being considered but dropped it this past summer due 
to CALEA concerns.
We would be interested in hearing any logic that would allow general public 
access to our campus
wireless network without putting us in jeopardy (or increasing the possibility 
of us falling under
the rules) of CALEA.

-jcw



> To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
> From: Wendy Wigen <[EMAIL PROTECTED]>
> Date: Tue, 23 Oct 2007 22:12:01 -0600
> Subject: [WIRELESS-LAN] Universities supplying free Wifi to the public
> Reply-To: The EDUCAUSE Wireless Issues Constituent Group Listserv
>   
> 
> Do any of you folks know of any institution that fits this description? See 
> request below:
> 
>  
> 
> Peter Fleck wrote:
> 
> > I'm looking for the names of colleges and universities (U.S.) that 
> 
> > provide free Wi-Fi to the public on their campuses. Any information as 
> 
> > to how they are addressing security would also be helpful along with 
> 
> > any worries they have about CALEA.
> 
> > 
> 
> > U of Minnesota is in the process of building a Wi-Fi network across 
> 
> > campus. I'd like to share the info with them.
> 
> > 
> 
> > Thanks.
> 
>  
> 
>  
> 
>  
> 
> Wendy Wigen
> 
> Government Relations Officer
> 
> EDUCAUSE
> 
> 1150 18th St. NW Suite 1010
> 
> Washington, DC  20036-3824
> 
> 202-331-5372
> 
> [EMAIL PROTECTED]
> 
>  
> 
>  
> 
>  
> 
> 
> **
> Participation and subscription information for this EDUCAUSE Constituent 
> Group discussion list 
> can be found at http://www.educause.edu/groups/.
> 





John Watters  UA: Office of Information Technology  205-348-3992

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Universities supplying free Wifi to the public

[Wendy Wigen]

Do any of you folks know of any institution that fits this description? See 
request below:

 

Peter Fleck wrote:

> I'm looking for the names of colleges and universities (U.S.) that 

> provide free Wi-Fi to the public on their campuses. Any information as 

> to how they are addressing security would also be helpful along with 

> any worries they have about CALEA.

> 

> U of Minnesota is in the process of building a Wi-Fi network across 

> campus. I'd like to share the info with them.

> 

> Thanks.

 

 

 

Wendy Wigen

Government Relations Officer

EDUCAUSE

1150 18th St. NW Suite 1010

Washington, DC  20036-3824

202-331-5372

[EMAIL PROTECTED]

 

 

 


**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

RE: [WIRELESS-LAN] Controlling Encrypted p2p

[Mike Binns]

"How is everyone controlling encrypted p2p traffic?"

By blocking it at the source...

At Gordon, we use SafeConnect. If a student opens up a P2P process on
their computer, the SafeConnect service running on their computer will
see it and block them within 10 seconds of the process starting, and ask
them to remove the offending software. The P2P traffic never reaches our
network and therefore does not cause a problem.

We also use a FortiGate appliance from FortiNet to block any P2P that it
recognizes, however Encrypted traffic is, by its very nature, able to
bypass this.

-Mike


-Original Message-
From: George Rogato [mailto:[EMAIL PROTECTED] 
Sent: Tuesday, October 23, 2007 3:18 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] Controlling Encrypted p2p

How is everyone controlling encrypted p2p traffic?

Thanks

George

**
Participation and subscription information for this EDUCAUSE Constituent
Group discussion list can be found at http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

RE: [WIRELESS-LAN] High speed point-to-point wireless

[Frank Bulk]

Here's a review of some PTP units written by my colleague, Sean Ginevan:

http://www.networkcomputing.com/showArticle.jhtml?articleID=199702202
 &pgno=1

If the distance is close and you have true LOS, then optical solutions are a
possibility, otherwise you should use RF-based systems.

LightPointe's product appear a good fit, but be aware they had some
financial difficulties over the last 18 months and were closed for some
time.  

Regards,

Frank

From: Nathan Hay [mailto:[EMAIL PROTECTED] 
Sent: Tuesday, October 23, 2007 8:10 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] High speed point-to-point wireless

 

I'm looking for a point-to-point wireless solution to provide networking to
about 4 locations on our sports fields.  I'd like a 100Mbps connection to
each point.  I've got a building within 500 meters of all the locations that
has fiber to it, so it would make an ideal point to mount one end of the
system.

 

So far, I've found the FlightLite 100 by LightPointe that looks like it
might fit my needs.  Has anyone used this product or can you recommend
something similar?  Is this kind of solution reliable?  How do they handle
rain and snow?

 

Thanks in advance for your advice,

 

Nathan

 

Nathan P. Hay
Network Engineer
Computer Services
Cedarville University
www.cedarville.edu   

** Participation and subscription information for this EDUCAUSE
Constituent Group discussion list can be found at
http://www.educause.edu/groups/.


**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

RE: [WIRELESS-LAN] Controlling Encrypted p2p

[Scholz, Greg]

We use our shaper and firewall to block any P2P protocols that they can
determine. So the encrypted P2P problem tends to not be that it can't be
seen at all, just that the data channel is encrypted - block the session
channel and the data channel will never be established - kind of like
the data channel on FTP.

If you try to regulate it you will slow down session creation but once
the sessions are created they will have ample bandwidth that is not
controllable...at least that is what we determined prior to blocking
altogether.

_
Thank you,
Gregory R. Scholz
Director of Telecommunications
Information Technology Group
Keene State College
(603)358-2070
 
--Lead, follow, or get out of the way. 
(author unknown)
 -Original Message-
From: George Rogato [mailto:[EMAIL PROTECTED] 
Sent: Tuesday, October 23, 2007 3:18 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] Controlling Encrypted p2p

How is everyone controlling encrypted p2p traffic?

Thanks

George

**
Participation and subscription information for this EDUCAUSE Constituent
Group discussion list can be found at http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Controlling Encrypted p2p

[Julian Y. Koh]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

At 12:17 -0700 10/23/2007, George Rogato wrote:
>How is everyone controlling encrypted p2p traffic?

I can't speak for everyone.. :) but here at NU, our PacketShaper can't
classify the majority of the encrypted P2P filesharing traffic.  So close to
a couple years ago, we created some dynamic partition classes on our
PacketShaper that says that all unclassified traffic from our dorm, VPN, and
wireless subnets gets allocated 512Kbps per IP address.  This keeps things
manageable.

Other schools do things like enforce bandwidth quotas.


-BEGIN PGP SIGNATURE-
Version: PGP Desktop 9.6.3 (Build 3017)
Comment: 

wj8DBQFHHk2rDlQHnMkeAWMRAurPAJ9ZQsbM+i8kxCKpb41wx4Ppfi7f4QCghMkR
Od1g0m7clQ9QI38v0rfm8NE=
=FZ/C
-END PGP SIGNATURE-

-- 
Julian Y. Koh 
Network Engineer   
Telecommunications and Network Services Northwestern University
PGP Public Key:

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Controlling Encrypted p2p

[George Rogato]

How is everyone controlling encrypted p2p traffic?

Thanks

George

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] Authentication method comparison

[Jonn Martell]

Hi Donald,

You don't need to have AD to support PEAP.  Your RADIUS/LDAP
infrastructure does need to support MSCHAPv2 (aka "native NT users and
domains").

Look how RADIATOR does it for a good "off-the-shelf" solution to
supporting PEAP on a non-Microsoft backend.

 ... Jonn Martell, CWNE

On 10/23/07, Wright, Donald <[EMAIL PROTECTED]> wrote:
>
>
> We currently have a WPA wlan using TTLS as the auth method and
> SecureW2 for the PC client software.  We occasionally receive trouble calls
> from users having issues with SecureW2, and are now being asked if there is
> a more "user-friendly" auth method we could move to.  I know the short list
> of other reasonable possibilities comes down TLS and PEAP.  Since we don't
> have our users credentials stored in AD, and we don't currently have a PKI,
> neither of those would seem to be a possibility for us right now.
>
> I am wondering about others experiences with using any of the above
> auth methods, in particular from the user perspective.  Are there still
> client issues with TLS or PEAP?  Are those configurations "scriptable" for
> the client?   How well do these other methods work with Macintoshes?  Is
> anyone else having significant user issues with SecureW2?  Has anyone had
> success with the supported third-party TTLS clients, Odyessy. etc?
>
> Don Wright
>
> Network Technology Group
>
> Brown University** Participation and subscription information for
> this EDUCAUSE Constituent Group discussion list can be found at
> http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

RE: [WIRELESS-LAN] Authentication method comparison

[King, Michael]

Hi Don,

 

You could look at IDEngines.  They sell a service (Autoconnect) that
scripts the install of the 802.1x Supplicant on Windows / Mac

 

We currently use the built-in XP/Vista Supplicant with PEAP, but I know
that IDEngines also supports (and distributes) the SecureW2 client.
They are also funding the opensource development of the
http://open1x.sourceforge.net/ agent as well.

 

We used the Autoconnect service this fall, and it significantly reduced
the amount of people that needed "Wireless Config". 

 

 

Michael King

Technology Systems & Networking

Bridgewater State College

 

 

 

 

From: Wright, Donald [mailto:[EMAIL PROTECTED] 
Sent: Tuesday, October 23, 2007 1:56 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] Authentication method comparison

 

We currently have a WPA wlan using TTLS as the auth method and
SecureW2 for the PC client software.  We occasionally receive trouble
calls from users having issues with SecureW2, and are now being asked if
there is a more "user-friendly" auth method we could move to.  I know
the short list of other reasonable possibilities comes down TLS and
PEAP.  Since we don't have our users credentials stored in AD, and we
don't currently have a PKI, neither of those would seem to be a
possibility for us right now.  

I am wondering about others experiences with using any of the
above auth methods, in particular from the user perspective.  Are there
still client issues with TLS or PEAP?  Are those configurations
"scriptable" for the client?   How well do these other methods work with
Macintoshes?  Is anyone else having significant user issues with
SecureW2?  Has anyone had success with the supported third-party TTLS
clients, Odyessy. etc? 

Don Wright

Network Technology Group

Brown University

** Participation and subscription information for this EDUCAUSE
Constituent Group discussion list can be found at
http://www.educause.edu/groups/.


**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Authentication method comparison

[Wright, Donald]

We currently have a WPA wlan using TTLS as the auth method and
SecureW2 for the PC client software.  We occasionally receive trouble
calls from users having issues with SecureW2, and are now being asked if
there is a more "user-friendly" auth method we could move to.  I know
the short list of other reasonable possibilities comes down TLS and
PEAP.  Since we don't have our users credentials stored in AD, and we
don't currently have a PKI, neither of those would seem to be a
possibility for us right now.  
I am wondering about others experiences with using any of the
above auth methods, in particular from the user perspective.  Are there
still client issues with TLS or PEAP?  Are those configurations
"scriptable" for the client?   How well do these other methods work with
Macintoshes?  Is anyone else having significant user issues with
SecureW2?  Has anyone had success with the supported third-party TTLS
clients, Odyessy. etc? 

Don Wright
Network Technology Group
Brown University

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] High speed point-to-point wireless

[Fishel Erps]

Nathan,
  
   The Alvarion product that Tom mentions below is I believe, a half 
duplex system.  I would therefore stay away from it.  As to the 
Bridgewave system that Bruce mentioned -


   I am in the middle of a PTP WWAN rollout to replace my older links.  
I have chosen Bridgewave & Ceragon for the primary & secondary links, 
respectively.  The Bridgewave AR80 is rated at 1Gb full duplex with an 
auto fall back to 100Mb in inclement conditions, using an MMF cable into 
your CPE .  The Ceragon 1500P is a unit that is upgradeable via license 
purchase (software upgradeable).  I've started at 50Mb since it's a 
failover, and it can go up to around 400Mb (per interface card - you can 
have 2 in one 1U IDU, so up to a total of 800Mb).  I've got an RJ-45 
cable into my CPE, but I believe you have an MMF option as well.  Both 
are FCC licensed as well.


   To date, I have one Bridgewave & one Ceragon link up since the 
install (about 1.5 months), and have been trouble free 



___
___

Fishel Erps
Sr. Network Infrastructure Engineer
School of Visual Arts
Work LL: 212-592-2416
Work Cell: 646-201-2766
Fax: 212-592-2243
E-Mail: [EMAIL PROTECTED]
___
___





Zeller, Tom S wrote:

Alvarion has a point-to-multipoint system that gives 30 Mbps to each 120-degree 
sector and 90 Mbps overall for around $15k for base station and $500 per end 
node.


On 10/23/07 9:10 AM, "Nathan Hay" <[EMAIL PROTECTED]> wrote:

I'm looking for a point-to-point wireless solution to provide networking to 
about 4 locations on our sports fields.  I'd like a 100Mbps connection to each 
point.  I've got a building within 500 meters of all the locations that has 
fiber to it, so it would make an ideal point to mount one end of the system.

So far, I've found the FlightLite 100 by LightPointe that looks like it might 
fit my needs.  Has anyone used this product or can you recommend something 
similar?  Is this kind of solution reliable?  How do they handle rain and snow?

Thanks in advance for your advice,

Nathan







Nathan P. Hay
Network Engineer
Computer Services
Cedarville University
www.cedarville.edu   
** Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.


  


**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

RE: [WIRELESS-LAN] High speed point-to-point wireless

[Entwistle, Bruce]

Nathan, last year we installed a pair of BridgeWave products and they
have worked well.  They do have a higher bandwidth then you are looking
for, but what user ever complained about getting too much bandwidth.

http://www.bridgewave.com/products/60ghz.cfm

 

Bruce Entwistle

Network Manager

University of Redlands

 



From: Nathan Hay [mailto:[EMAIL PROTECTED] 
Sent: Tuesday, October 23, 2007 6:10 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] High speed point-to-point wireless

 

I'm looking for a point-to-point wireless solution to provide networking
to about 4 locations on our sports fields.  I'd like a 100Mbps
connection to each point.  I've got a building within 500 meters of all
the locations that has fiber to it, so it would make an ideal point to
mount one end of the system.

 

So far, I've found the FlightLite 100 by LightPointe that looks like it
might fit my needs.  Has anyone used this product or can you recommend
something similar?  Is this kind of solution reliable?  How do they
handle rain and snow?

 

Thanks in advance for your advice,

 

Nathan

 

 

 

 

 

 

 

Nathan P. Hay
Network Engineer
Computer Services
Cedarville University
www.cedarville.edu   

** Participation and subscription information for this EDUCAUSE
Constituent Group discussion list can be found at
http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

RE: [WIRELESS-LAN] High speed point-to-point wireless

[Greene, Chip]

I had worked with FSONA in the past http://fsona.com/ and was very
satisfied with their products.  At UR, we are using Cisco 1310 APs for
Point-to-Point bridging between buildings at our football stadium.  Even
though this does not meet the 100M requirement, it was cost effective
and gave us the throughput we needed for our short distance.  However,
Cisco does have a 1400 Series Wireless Bridge that uses 2.4GHz 54Mbps
with a 250mW radio that would meet the distance requirements you have.
I have not used the 1400 Wireless Bridge, so I can not comment on their
functionality or reliability with any confidence.  

Good luck on this project.

Chip Greene

Senior Network Specialist

University of Richmond

 



From: Nathan Hay [mailto:[EMAIL PROTECTED] 
Sent: Tuesday, October 23, 2007 9:10 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: [WIRELESS-LAN] High speed point-to-point wireless

 

I'm looking for a point-to-point wireless solution to provide networking
to about 4 locations on our sports fields.  I'd like a 100Mbps
connection to each point.  I've got a building within 500 meters of all
the locations that has fiber to it, so it would make an ideal point to
mount one end of the system.

 

So far, I've found the FlightLite 100 by LightPointe that looks like it
might fit my needs.  Has anyone used this product or can you recommend
something similar?  Is this kind of solution reliable?  How do they
handle rain and snow?

 

Thanks in advance for your advice,

 

Nathan

 

 

 

 

 

 

 

Nathan P. Hay
Network Engineer
Computer Services
Cedarville University
www.cedarville.edu   

** Participation and subscription information for this EDUCAUSE
Constituent Group discussion list can be found at
http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

Re: [WIRELESS-LAN] High speed point-to-point wireless

[Zeller, Tom S]

Alvarion has a point-to-multipoint system that gives 30 Mbps to each 120-degree 
sector and 90 Mbps overall for around $15k for base station and $500 per end 
node.


On 10/23/07 9:10 AM, "Nathan Hay" <[EMAIL PROTECTED]> wrote:

I'm looking for a point-to-point wireless solution to provide networking to 
about 4 locations on our sports fields.  I'd like a 100Mbps connection to each 
point.  I've got a building within 500 meters of all the locations that has 
fiber to it, so it would make an ideal point to mount one end of the system.

So far, I've found the FlightLite 100 by LightPointe that looks like it might 
fit my needs.  Has anyone used this product or can you recommend something 
similar?  Is this kind of solution reliable?  How do they handle rain and snow?

Thanks in advance for your advice,

Nathan







Nathan P. Hay
Network Engineer
Computer Services
Cedarville University
www.cedarville.edu   
** Participation and subscription information for this EDUCAUSE 
Constituent Group discussion list can be found at 
http://www.educause.edu/groups/.

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.

High speed point-to-point wireless

[Nathan Hay]

I'm looking for a point-to-point wireless solution to provide networking
to about 4 locations on our sports fields.  I'd like a 100Mbps
connection to each point.  I've got a building within 500 meters of all
the locations that has fiber to it, so it would make an ideal point to
mount one end of the system.
 
So far, I've found the FlightLite 100 by LightPointe that looks like it
might fit my needs.  Has anyone used this product or can you recommend
something similar?  Is this kind of solution reliable?  How do they
handle rain and snow?
 
Thanks in advance for your advice,
 
Nathan
 
 
 
 
 
 
 
Nathan P. Hay
Network Engineer
Computer Services
Cedarville University
www.cedarville.edu ( http://www.cedarville.edu/ ) 

**
Participation and subscription information for this EDUCAUSE Constituent Group 
discussion list can be found at http://www.educause.edu/groups/.