Re: [WIRELESS-LAN] Aerohive 340AP

Valid questions. Perhaps they should follow a few strategic thoughts. o What does my network look like now? (Collapsed or distributed layer 3. Vlans per school, per building, per floor, etc.) o What will my network look like in 3 years? o Do you want vlans to exist in your core? o Whi

Re: [WIRELESS-LAN] Aerohive 340AP

In a recent discussion here we produced at least two issues with decentralized architecture. #1. Mobility. One of the main attractions of the controller-based architecture (CBA) in the first place was to improve the experience for hand-held devices which don't hibernate between locations. Th

RE: Density and Cisco LWAPP

Thanks to all who responded. We have taken the advice into great consideration and will deploy the APs in a manner that will incorporate the majority of the suggestions. For future reference to the vendors on the list: I know times are tough and everyone is trying to make a sale, but this was

RE: [WIRELESS-LAN] NAC polling: Wired AND Wireless

I think I'd rather go 100% wireless. :) Lee -Original Message- From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:wireless-...@listserv.educause.edu] On Behalf Of Philippe Hanset Sent: Friday, March 06, 2009 1:55 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re:

Re: [WIRELESS-LAN] NAC polling: Wired AND Wireless

Technically you could trunk each port (802.1q) , have all ethernet adapters with 802.1q support and push the VLAN on the driver via AD ...there is your NAC in AD... A bit of a spanning tree nightmare, but what a heck! ;-) On Mar 6, 2009, at 1:35 PM, Peter P Morrissey wrote: OK, got yah. You'r

RE: [WIRELESS-LAN] Big Aruba Environments- Management of multiple controllers

Thank you for your reply, Stephen. John Steely Associate Director Infrastructure Systems Department Library and Information Services Dickinson College P.O. Box 1773 Carlisle, PA 17013 717-245-1613 (Voice) 717-245-1690 (Fax) ste...@dickinson.edu From: The EDUCAUSE Wire

RE: [WIRELESS-LAN] NAC polling: Wired AND Wireless

OK, got yah. You're talking about securing a wired port and you're right. NAC would do that and AD would not. Pete Morrissey -Original Message- From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:wireless-...@listserv.educause.edu] On Behalf Of Scholz, Greg Sent: Frida

Re: [WIRELESS-LAN] NAC polling: Wired AND Wireless

We didn't do security tests on Clean Access yet. What I mean by security holes relates to how easy it is to go around the system for an not so average user. Those attacks only occur when MAC addresses are used as the main way of authentication. Not 802.1x. Philippe On Mar 6, 2009, at 12:59 P

RE: [WIRELESS-LAN] NAC polling: Wired AND Wireless

Philippe, I'm curious as to the major security holes. Was Cisco Clean Access (We are currently in a pilot phase) one of your test devices? Thanks, Bob Bob Richman U of Notre Dame -Original Message- From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:wireless-...@lis

Re: [WIRELESS-LAN] Big Aruba Environments- Management of multiple controllers

Sorry we are running Airwave Version 5 On 3/6/09 9:31 AM, "Jason Appah" wrote: > On that note, when we moved to 3.3.2.11 the other week, Airwave stopped > reporting bandwidth, was there a change to the MIB from 3.3.2.8 to 11 that > would have affected this? Airwave still reportes users connect

Re: [WIRELESS-LAN] Big Aruba Environments- Management of multiple controllers

On that note, when we moved to 3.3.2.11 the other week, Airwave stopped reporting bandwidth, was there a change to the MIB from 3.3.2.8 to 11 that would have affected this? Airwave still reportes users connected fine, but no bandwidth? On 3/6/09 8:11 AM, "Philippe Hanset" wrote: > We gave up on

RE: [WIRELESS-LAN] NAC polling: Wired AND Wireless

I agree with all your purposes of NAC. But no I don't agree that the AD controls are the same or more than NAC because all you need to do to get on the "network" is unplug the AD machine and plug in whatever you want. Greg -Original Message- From: The EDUCAUSE Wireless Issues Constituent

Re: [WIRELESS-LAN] Big Aruba Environments- Management of multiple controllers

Bruce from Liberty University wrote, "Some of this database can be offloaded to Airwave." Can you do a WMS offload and still just be in "monitor-only" mode, or do you have to commit to letting Airwave control the controllers? What do you gain with offloading the database onto Airwave? Thanks

RE: [WIRELESS-LAN] NAC polling: Wired AND Wireless

I would challenge the "AD is NAC in and of itself" statement also :-) AD is system access control, not network. " [PM] Technically you are correct, but I think you have to step back to the purpose of NAC, then look at how AD can serve the purpose. This of course makes the assumption that the AD

Re: [WIRELESS-LAN] Big Aruba Environments- Management of multiple controllers

We evaluated the MMS before we went with Airwave. We were very disappointed with its functionality and its cost. Stephen Holland Network Engineer Northeastern University ** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at h

RE: [WIRELESS-LAN] NAC polling: Wired AND Wireless

I would challenge the "AD is NAC in and of itself" statement also :-) AD is system access control, not network. Philippe - we are not nearly your size but are currently evaluating products to get to campuswide NAC. Currently CCA for students only. 2800 on campus, 5K total - we NAC students in the

RE: [WIRELESS-LAN] NAC polling: Wired AND Wireless

We are using Impulse on our entire primary wireless network, and wired in the dorms- and we're well into the thousands. For the admin side, we're sort of running with the notion that AD is NAC in and of itself, but that sometimes gets challenged... No wired 802.1x for us- I think personally I'd ra

NAC polling: Wired AND Wireless

All, UTK is in the midst of a network redesign. A big part of it involves Network Access Control. Is anyone out there with a comparable size campus, or bigger, (26,000 student, 5000 Fac/Staff), implementing a commercial NAC system for ALL users and all networks (Wired and Wireless). We are eva

Re: [WIRELESS-LAN] Big Aruba Environments- Management of multiple controllers

We gave up on MMS (or MMS gave up on us, I forgot) and went straight to Airwave that we use in monitoring mode. For configs: the web is ok but the command line is preferred. Philippe Hanset Univ. of TN p.s. I believe that Aruba is pulling MMS out of their price list (to be confirmed) On Ma

Re: [WIRELESS-LAN] Big Aruba Environments- Management of multiplecontrollers

We did a trial on both... For us the MMS was unreliable and some of the tools (like finding users) just didn't work. We were constantly rebooting and tweaking, but I must note we had the software version not the appliance. The airwave product for us was great with stats, finding users and what

RE: Big Aruba Environments- Management of multiple controllers

I am curious if we have any Aruba shops on the list who have Airwave, but also had experience with the Aruba MMS appliance and would be willing to share your thoughts on comparing the two? Thanks in advance, John John Steely Associate Director Infrastructure Systems Department Library and Infor

RE: [WIRELESS-LAN] Big Aruba Environments- Management of multiple controllers

Thanks, Bruce- and everyone else who responded. Lee H. Badman Wireless/Network Engineer Information Technology and Services Syracuse University 315 443-3003 From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:wireless-...@listserv.educause.edu]

RE: Big Aruba Environments- Management of multiple controllers

Lee, Liberty University also uses Airwave in "monitor-only" mode for our Aruba controllers. In the Aruba controller architecture, there is typically one "master" controller & several "local" controllers. The master (This can be an HA pair) allows you to control most of the configuration from