Re: [WIRELESS-LAN] PoE test/measurement tool
Link Sprinter - You can try to win a free one… http://www.linksprinter.com/linksprinter-giveawayls=PRtwlsd=linksprinter_giveaway PC Magazine Review: Fluke Networks LinkSprinter 200 http://www.pcmag.com/article2/0,2817,2458382,00.asp Regards, Alan On September 9, 2014 at 1:02:46 PM, Frank Sweetser (f...@wpi.edu) wrote: Hello all, after troubleshooting some recent AP difficulties, I've realized that we're woefully under-tooled for diagnosing PoE faults. Does anyone out there have any good, reasonably low cost hand held tools they can recommend? I'd ideally like something that can show me: - Mid vs end span - 3af vs 3at - Actual measured voltage, possibly by briefly sinking max current for a few seconds - LLDP data, such as negotiated power class, would be a bonus After some google searching, the closest that I can find to that feature set is the Pockethernet, but using them would first require that they actually start taking orders. I haven't really found much else without getting into lab bench gear, so I'm hoping someone out there has a good secret tool they can recommend simple enough to give to a workstudy. Thanks all! -- Frank Sweetser fs at wpi.edu | For every problem, there is a solution that Manager of Network Operations | is simple, elegant, and wrong. Worcester Polytechnic Institute | - HL Mencken ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] guest wireless
We have an open guest network, however, you do have to register with a name, email, and phone number. Guests have 3 days of access followed by a 3 day exclusion period were the device is not allowed on the network. Access is restricted to HTTP, HTTPS, SMTP/POP, SSH, and most VPN. We don't throttle the bandwidth. -- Heath Barnhart ITS Network Administrator Washburn University 785-670-2307 On Tue, 2014-09-09 at 15:40 +, Mark Reboli wrote: I am looking for information on what people do with guest wireless. Do you have open wireless on your campus? Do you have a password that everyone knows? Do you create special passwords for groups? Any assistance would be helpful. Thank you m [Description: MU Arches] Mark Reboli Network/Telcom Manager Misericordia University (570) 674-6753 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] guest wireless
That's interesting Heath. What's the reasoning behind the exclusion period? On Fri, Sep 12, 2014 at 9:42 AM, Heath Barnhart heath.barnh...@washburn.edu wrote: We have an open guest network, however, you do have to register with a name, email, and phone number. Guests have 3 days of access followed by a 3 day exclusion period were the device is not allowed on the network. Access is restricted to HTTP, HTTPS, SMTP/POP, SSH, and most VPN. We don't throttle the bandwidth. -- Heath Barnhart ITS Network Administrator Washburn University785-670-2307 On Tue, 2014-09-09 at 15:40 +, Mark Reboli wrote: I am looking for information on what people do with guest wireless. Do you have open wireless on your campus? Do you have a password that everyone knows? Do you create special passwords for groups? Any assistance would be helpful. Thank you m [image: Description: MU Arches] Mark Reboli Network/Telcom Manager Misericordia University (570) 674-6753 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] guest wireless
On Tue Sep 09 2014 10:40:33 CDT, Mark Reboli mreb...@misericordia.edu wrote: I am looking for information on what people do with guest wireless. Do you have open wireless on your campus? Do you have a password that everyone knows? Do you create special passwords for groups? Any assistance would be helpful. NU has an open (no encryption or 802.11-level auth) SSID that anyone can use. Registration is required via a captive portal to collect name, email address, and sponsoring entity. Registration will grant access for 7 days after which re-registration is required. Bandwidth is limited to 3Mbps, and only certain ports/protocols are allowed. Different IP space is used from the rest of the campus network, so access to campus-restricted resources is not allowed. We also don’t allow access to our campus VPN from the guest network. http://www.it.northwestern.edu/oncampus/guest-wireless/ We offer eduroam services, which are not bandwidth or port/protocol limited. -- Julian Y. Koh Acting Associate Director, Telecommunications and Network Services Northwestern University Information Technology (NUIT) 2001 Sheridan Road #G-166 Evanston, IL 60208 847-467-5780 NUIT Web Site: http://www.it.northwestern.edu/ PGP Public Key:http://bt.ittns.northwestern.edu/julian/pgppubkey.html ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
Re: [WIRELESS-LAN] guest wireless
I will admit to having a completely open guest network. We don't even require a terms of service click-through, and it's not encrypted. We do have some strict throttling for file sharing/p2p traffic, and I have some decent auditing capabilities, so I can track down violations and restrict them later if needed, but that's about it. We do the same throttling and auditing on the regular network Our Admissions and Advancement offices *love* this: a candidate or guest comes on campus, and their device just works: never any 802.1x issues, never a problem with sponsorships or authentication. We're in a residential neighborhood, but I've learned not to worry about neighbors using our wifi: it's really a drop in the bucket. No one uses bandwidth like a college student uses bandwidth, and as I'm one of those who live just across the street, I can testify that leeching wifi from the college is a horrible personal wifi experience (also: before I came here and I had an hour long commute, and I can say that walking across the street to get to your office is *awesome*). We do strongly encourage students/staff/faculty to use the encrypted option, and the vast majority do on their laptops now, and some on their phones, but students love the open network for things like smart TVs, blu-ray players, etc. They feel this makes our network *better*. We have some game consoles on the open network, but Residence Life encourages students to plug those into a wired port (even providing cat5 cables at times), and many take them up on this. Really, the reason behind this policy is that we DO want to be a hotspot for any neighbors or people wandering by. We want to be part of the community, and welcoming to guests. I am concerned about my CALEA exposure, but as a small school we've never had a request for data. This may some day force us to make a policy change, but in the meantime, I'd have a revolt on my hands if I ever tried to do away with the open SSID. Joel Coehoorn Director of Information Technology York College, Nebraska 402.363.5603 *jcoeho...@york.edu jcoeho...@york.edu* The mission of York College is to transform lives through Christ-centered education and to equip students for lifelong service to God, family, and society On Fri, Sep 12, 2014 at 8:49 AM, Timothy Fairlie fair...@rider.edu wrote: That's interesting Heath. What's the reasoning behind the exclusion period? On Fri, Sep 12, 2014 at 9:42 AM, Heath Barnhart heath.barnh...@washburn.edu wrote: We have an open guest network, however, you do have to register with a name, email, and phone number. Guests have 3 days of access followed by a 3 day exclusion period were the device is not allowed on the network. Access is restricted to HTTP, HTTPS, SMTP/POP, SSH, and most VPN. We don't throttle the bandwidth. -- Heath Barnhart ITS Network Administrator Washburn University785-670-2307 On Tue, 2014-09-09 at 15:40 +, Mark Reboli wrote: I am looking for information on what people do with guest wireless. Do you have open wireless on your campus? Do you have a password that everyone knows? Do you create special passwords for groups? Any assistance would be helpful. Thank you m [image: Description: MU Arches] Mark Reboli Network/Telcom Manager Misericordia University (570) 674-6753 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
RE: [WIRELESS-LAN] guest wireless
We force the guests/students to accept an AUP. Once they have accepted they are on the guest network. Tami Patten Northeastern Junior College Technical Systems Analyst Desk (970)521-6687 Cell (970)520-7447 From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Heath Barnhart Sent: Friday, September 12, 2014 7:43 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] guest wireless We have an open guest network, however, you do have to register with a name, email, and phone number. Guests have 3 days of access followed by a 3 day exclusion period were the device is not allowed on the network. Access is restricted to HTTP, HTTPS, SMTP/POP, SSH, and most VPN. We don't throttle the bandwidth. -- Heath Barnhart ITS Network Administrator Washburn University 785-670-2307 On Tue, 2014-09-09 at 15:40 +, Mark Reboli wrote: I am looking for information on what people do with guest wireless. Do you have open wireless on your campus? Do you have a password that everyone knows? Do you create special passwords for groups? Any assistance would be helpful. Thank you m [Description: MU Arches] Mark Reboli Network/Telcom Manager Misericordia University (570) 674-6753 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
RE: [WIRELESS-LAN] guest wireless
Regarding your CALEA comment. There seems to be lots of hand wringing about CALEA, but I have yet to hear of a school that was penalized in any way for having done something that does not comply. I have to say, at times it strikes me as a bit of a bogie man. I do know of one very large school in New York City BTW that has an open wireless network. Pete Morrissey From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Coehoorn, Joel Sent: Friday, September 12, 2014 10:14 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] guest wireless I will admit to having a completely open guest network. We don't even require a terms of service click-through, and it's not encrypted. We do have some strict throttling for file sharing/p2p traffic, and I have some decent auditing capabilities, so I can track down violations and restrict them later if needed, but that's about it. We do the same throttling and auditing on the regular network Our Admissions and Advancement offices *love* this: a candidate or guest comes on campus, and their device just works: never any 802.1x issues, never a problem with sponsorships or authentication. We're in a residential neighborhood, but I've learned not to worry about neighbors using our wifi: it's really a drop in the bucket. No one uses bandwidth like a college student uses bandwidth, and as I'm one of those who live just across the street, I can testify that leeching wifi from the college is a horrible personal wifi experience (also: before I came here and I had an hour long commute, and I can say that walking across the street to get to your office is *awesome*). We do strongly encourage students/staff/faculty to use the encrypted option, and the vast majority do on their laptops now, and some on their phones, but students love the open network for things like smart TVs, blu-ray players, etc. They feel this makes our network *better*. We have some game consoles on the open network, but Residence Life encourages students to plug those into a wired port (even providing cat5 cables at times), and many take them up on this. Really, the reason behind this policy is that we DO want to be a hotspot for any neighbors or people wandering by. We want to be part of the community, and welcoming to guests. I am concerned about my CALEA exposure, but as a small school we've never had a request for data. This may some day force us to make a policy change, but in the meantime, I'd have a revolt on my hands if I ever tried to do away with the open SSID. [http://www.york.edu/mvptall.jpg] Joel Coehoorn Director of Information Technology York College, Nebraska 402.363.5603 jcoeho...@york.edumailto:jcoeho...@york.edu [http://www.york.edu/Portals/0/Images/Logo/YorkCollegeLogoSmall.jpg] The mission of York College is to transform lives through Christ-centered education and to equip students for lifelong service to God, family, and society On Fri, Sep 12, 2014 at 8:49 AM, Timothy Fairlie fair...@rider.edumailto:fair...@rider.edu wrote: That's interesting Heath. What's the reasoning behind the exclusion period? On Fri, Sep 12, 2014 at 9:42 AM, Heath Barnhart heath.barnh...@washburn.edumailto:heath.barnh...@washburn.edu wrote: We have an open guest network, however, you do have to register with a name, email, and phone number. Guests have 3 days of access followed by a 3 day exclusion period were the device is not allowed on the network. Access is restricted to HTTP, HTTPS, SMTP/POP, SSH, and most VPN. We don't throttle the bandwidth. -- Heath Barnhart ITS Network Administrator Washburn University 785-670-2307tel:785-670-2307 On Tue, 2014-09-09 at 15:40 +, Mark Reboli wrote: I am looking for information on what people do with guest wireless. Do you have open wireless on your campus? Do you have a password that everyone knows? Do you create special passwords for groups? Any assistance would be helpful. Thank you m [Description: MU Arches] Mark Reboli Network/Telcom Manager Misericordia University (570) 674-6753tel:%28570%29%20674-6753 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
RE: [WIRELESS-LAN] guest wireless
We contracted with ATT to handle guests and visitors. We advertise their SSID (attwifi) on our wireless infrastructure and then hand the traffic off to them via boxes called Network Management Devices (NMD) that they provide. They tunnel the traffic to their cloud via our Internet connection. They take care of the CALEA and DMCA issues. They benefit by offloading their cell customer's data traffic on to our Wifi infrastructure, so the monthly cost for us was very reasonable. -Neil -- Neil Johnson Network Engineer The University of Iowa email: neil-john...@uiowa.edu Phone: 319 394-0938 From: The EDUCAUSE Wireless Issues Constituent Group Listserv [WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] on behalf of Coehoorn, Joel [jcoeho...@york.edu] Sent: Friday, September 12, 2014 9:13 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] guest wireless I will admit to having a completely open guest network. We don't even require a terms of service click-through, and it's not encrypted. We do have some strict throttling for file sharing/p2p traffic, and I have some decent auditing capabilities, so I can track down violations and restrict them later if needed, but that's about it. We do the same throttling and auditing on the regular network Our Admissions and Advancement offices *love* this: a candidate or guest comes on campus, and their device just works: never any 802.1x issues, never a problem with sponsorships or authentication. We're in a residential neighborhood, but I've learned not to worry about neighbors using our wifi: it's really a drop in the bucket. No one uses bandwidth like a college student uses bandwidth, and as I'm one of those who live just across the street, I can testify that leeching wifi from the college is a horrible personal wifi experience (also: before I came here and I had an hour long commute, and I can say that walking across the street to get to your office is *awesome*). We do strongly encourage students/staff/faculty to use the encrypted option, and the vast majority do on their laptops now, and some on their phones, but students love the open network for things like smart TVs, blu-ray players, etc. They feel this makes our network *better*. We have some game consoles on the open network, but Residence Life encourages students to plug those into a wired port (even providing cat5 cables at times), and many take them up on this. Really, the reason behind this policy is that we DO want to be a hotspot for any neighbors or people wandering by. We want to be part of the community, and welcoming to guests. I am concerned about my CALEA exposure, but as a small school we've never had a request for data. This may some day force us to make a policy change, but in the meantime, I'd have a revolt on my hands if I ever tried to do away with the open SSID. [http://www.york.edu/mvptall.jpg] Joel Coehoorn Director of Information Technology York College, Nebraska 402.363.5603 jcoeho...@york.edumailto:jcoeho...@york.edu [http://www.york.edu/Portals/0/Images/Logo/YorkCollegeLogoSmall.jpg] The mission of York College is to transform lives through Christ-centered education and to equip students for lifelong service to God, family, and society On Fri, Sep 12, 2014 at 8:49 AM, Timothy Fairlie fair...@rider.edumailto:fair...@rider.edu wrote: That's interesting Heath. What's the reasoning behind the exclusion period? On Fri, Sep 12, 2014 at 9:42 AM, Heath Barnhart heath.barnh...@washburn.edumailto:heath.barnh...@washburn.edu wrote: We have an open guest network, however, you do have to register with a name, email, and phone number. Guests have 3 days of access followed by a 3 day exclusion period were the device is not allowed on the network. Access is restricted to HTTP, HTTPS, SMTP/POP, SSH, and most VPN. We don't throttle the bandwidth. -- Heath Barnhart ITS Network Administrator Washburn University 785-670-2307tel:785-670-2307 On Tue, 2014-09-09 at 15:40 +, Mark Reboli wrote: I am looking for information on what people do with guest wireless. Do you have open wireless on your campus? Do you have a password that everyone knows? Do you create special passwords for groups? Any assistance would be helpful. Thank you m [Description: MU Arches] Mark Reboli Network/Telcom Manager Misericordia University (570) 674-6753tel:%28570%29%20674-6753 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this
RE: [WIRELESS-LAN] guest wireless
Neil- You're saying ATT charges you for this? Do you charge them back for the Wi-Fi offload? -Lee From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Johnson, Neil M Sent: Friday, September 12, 2014 11:13 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] guest wireless We contracted with ATT to handle guests and visitors. We advertise their SSID (attwifi) on our wireless infrastructure and then hand the traffic off to them via boxes called Network Management Devices (NMD) that they provide. They tunnel the traffic to their cloud via our Internet connection. They take care of the CALEA and DMCA issues. They benefit by offloading their cell customer's data traffic on to our Wifi infrastructure, so the monthly cost for us was very reasonable. -Neil -- Neil Johnson Network Engineer The University of Iowa email: neil-john...@uiowa.edumailto:neil-john...@uiowa.edu Phone: 319 394-0938 From: The EDUCAUSE Wireless Issues Constituent Group Listserv [WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] on behalf of Coehoorn, Joel [jcoeho...@york.edu] Sent: Friday, September 12, 2014 9:13 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDUmailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] guest wireless I will admit to having a completely open guest network. We don't even require a terms of service click-through, and it's not encrypted. We do have some strict throttling for file sharing/p2p traffic, and I have some decent auditing capabilities, so I can track down violations and restrict them later if needed, but that's about it. We do the same throttling and auditing on the regular network Our Admissions and Advancement offices *love* this: a candidate or guest comes on campus, and their device just works: never any 802.1x issues, never a problem with sponsorships or authentication. We're in a residential neighborhood, but I've learned not to worry about neighbors using our wifi: it's really a drop in the bucket. No one uses bandwidth like a college student uses bandwidth, and as I'm one of those who live just across the street, I can testify that leeching wifi from the college is a horrible personal wifi experience (also: before I came here and I had an hour long commute, and I can say that walking across the street to get to your office is *awesome*). We do strongly encourage students/staff/faculty to use the encrypted option, and the vast majority do on their laptops now, and some on their phones, but students love the open network for things like smart TVs, blu-ray players, etc. They feel this makes our network *better*. We have some game consoles on the open network, but Residence Life encourages students to plug those into a wired port (even providing cat5 cables at times), and many take them up on this. Really, the reason behind this policy is that we DO want to be a hotspot for any neighbors or people wandering by. We want to be part of the community, and welcoming to guests. I am concerned about my CALEA exposure, but as a small school we've never had a request for data. This may some day force us to make a policy change, but in the meantime, I'd have a revolt on my hands if I ever tried to do away with the open SSID. [http://www.york.edu/mvptall.jpg] Joel Coehoorn Director of Information Technology York College, Nebraska 402.363.5603 jcoeho...@york.edumailto:jcoeho...@york.edu [http://www.york.edu/Portals/0/Images/Logo/YorkCollegeLogoSmall.jpg] The mission of York College is to transform lives through Christ-centered education and to equip students for lifelong service to God, family, and society On Fri, Sep 12, 2014 at 8:49 AM, Timothy Fairlie fair...@rider.edumailto:fair...@rider.edu wrote: That's interesting Heath. What's the reasoning behind the exclusion period? On Fri, Sep 12, 2014 at 9:42 AM, Heath Barnhart heath.barnh...@washburn.edumailto:heath.barnh...@washburn.edu wrote: We have an open guest network, however, you do have to register with a name, email, and phone number. Guests have 3 days of access followed by a 3 day exclusion period were the device is not allowed on the network. Access is restricted to HTTP, HTTPS, SMTP/POP, SSH, and most VPN. We don't throttle the bandwidth. -- Heath Barnhart ITS Network Administrator Washburn University 785-670-2307tel:785-670-2307 On Tue, 2014-09-09 at 15:40 +, Mark Reboli wrote: I am looking for information on what people do with guest wireless. Do you have open wireless on your campus? Do you have a password that everyone knows? Do you create special passwords for groups? Any assistance would be helpful. Thank you m [Description: MU Arches] Mark Reboli Network/Telcom Manager Misericordia University (570) 674-6753tel:%28570%29%20674-6753 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can
Re: [WIRELESS-LAN] guest wireless
We have a couple of different ways we accommodate guests. First, we have a contract with ATT to provide our guest/visitor network. We advertise an attwifi SSID on all our AP's (minus a couple of specific locations), and that network gets dropped off on an ATT circuit. The attwifi network is available to anyone (not just University visitors), and rates are set by ATT. UT does nothing to govern who can access attwifi or what they can do on it. As part of that arrangement, departments can purchase daily individual passes or conference codes to sponsor guests, visitors, conference attendees, etc. to access the attwifi network at no charge to the guests. The cost to departments is nominal and there just for cost recovery for printing the cards with individual codes or administrative staff time for setting up the conference codes. This is all handled through our Campus Computer Store. Next, we have methods for departments to sponsor visitors onto the University's network at no charge. Support and administrative staff as authorized by their departments can create such accounts via our HR systems or a proprietary guest account system for our wireless network. Guests using these accounts effectively have the same access as University staff and are subject to the same policies governing staff usage (eg. security policies, as defined and enforced by our Information Security Office). With a very few exceptions for certain ports/protocols (eg. NetBIOS/SMB, SNMP, TCP/UDP Echo, etc.), everything is allowed and treated equally (no QoS, application rate limiting, etc.). Jason On 09/09/2014 10:40 AM, Mark Reboli wrote: I am looking for information on what people do with guest wireless. Do you have open wireless on your campus? Do you have a password that everyone knows? Do you create special passwords for groups? Any assistance would be helpful. Thank you m Description: MU Arches Mark Reboli Network/Telcom Manager Misericordia University (570) 674-6753 ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. smime.p7s Description: S/MIME Cryptographic Signature
RE: AVC on Cisco WLC- Blocking P2P (Revisiting)
On our main SSID, we drop the applications listed below. Those were the ones our security group wanted us to drop. We have this on our WiSM2s which have about 800 WAPs each. We have not seen any issues related to high CPU so far. That's all the information I can give you. I hope this helps. I wish I could actually give stats on how many times the controller has actually detected and dropped those applications, but the requires another toys we don't have money for. Encryptep-emule Bittorrent Encrypted-bittorrent Edonkey-static Gnutella Hector Rios Louisiana State University From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Lee H Badman Sent: Thursday, September 11, 2014 1:26 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] AVC on Cisco WLC- Blocking P2P (Revisiting) Re-opening the topic of using controllers to classify and control traffic- in particular P2P. I'm doing analysis of our 5508 WLCs' ability to perhaps replace a dedicated appliance solution. I see that we're not exactly 1 for 1 on services recognized by WLC compared to the dedicated appliances, but I'm more concerned with what might happen to a busy WLC with 500 APs and thousands of clients if we ask it to start dropping a couple of dozen P2P protocols. For those already doing this sort of thing- did CPU climb appreciably when you turned the drop function? Any issues noted? Our controllers tend to coast for CPU and memory, but I gotta ask. Also, does anyone know if the 5760s can yet control or are they still limited to the AV in AVC? Any idea if 5760 protocol packs (or whatever the signatures are called on the 5760) are the same as that for the 5508 WLC? Thanks- Lee Lee Badman Wireless/Network Architect ITS, Syracuse University 315.443.3003 (Blog: http://wirednot.wordpress.com) ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.