I know of at least one campus that implemented this and soon found that
students began trading passwords to avoid the restrictions.
-Kevin
Lelio Fulgenzi wrote:
Seeing that each class likely has an up to date roster, would it not be
possible to create a system that would disable access for
I am fairly adamant in opposing any automatic rogue containment. Aside
from the obvious problems with uninformed administrators turning it
loose in inappropriate ways, the more generic complaint is that it
crosses the line from defending one's infrastructure to attacking
someone else's. My
Mobile Station Protocol
1.3.6.1.4.1.14179.2.1.4.1.25
IF 1 = a radio
2 = b radio
3 = g radio
4 = unknown
5 = mobile
not documented, it seems, but '6' is 802.11n
-Kevin
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be
One thing to note is that 300Mbps as a symbol rate is only possible with
40MHz channels (versus the 20MHz standard width for 802.11a/b/g) ..
which in 2.4GHz takes you from 3 non-overlapping to 1 non-overlapping.
In 5GHz you have at least 8 40MHz non-overlapping channels.
I personally don't
Something that I think is worth noting.. desktop administrators have
asked us if they should be buying 802.11n client adapters. Our general
response has been 'yes', with the usual caveat about potential hardware
changes between now and final ratification. (In most cases I've seen the
'n'
It probably is no surprise but we have a 1252-based pilot in operation
now, with ongoing conversations about when/how to expand. All of the
concerns raised so far are valid, and under discussion. Currently we're
using individual power injectors to Gig switches, but we all know how
well individual
We've done some work with wireless multicast. Would be willing to share
off-list. A few horror stories, unfortunately.
-Kevin
Lee H Badman wrote:
Any wireless multicast experts in the group that might be willing to
field some questions outside of the group?
Thanks-
Lee H. Badman
1) Could you configure your routers w/ secondaries to answer
for the 1918 space the phones are looking for? What happens if
the phone actually gets an answer? A) Will it shut up, or B) can
you use this to get more diagnostic information?
We could; the addresses have all been different so far
Understand, though, that if someone puts up an access point with your
SSID, the clients will connect and because they aren't validating the
certificate, they will send their credentials to the rogue AP.
-Kevin
ktaillon wrote:
One of the things that I didn't point out is we are running the new
Hi-
Some of you may know that Philippe and I co-chair an Internet2 group,
SALSA-FWNA[1].
Some of the recent work of the group (and Steve Carmody in particular)
has been to create a RADIUS profile for SAML. This is a building block
towards permitting attribute exchange in conjunction with
There is work within the SALSA-FWNA group of Internet2
(http://security.internet2.edu/fwna). There is a pair of US servers that
connect to Eduroam. There are also activities underway to improve the
federated aspect of the service using Shib/SAML.
EAP is the common denominator, but beyond that,
We've done some experimentation in roughly the same config, though it
was 4 channels at 512kbps each (plus audio), over 802.11a/g. One good
thing we did was to disable the lowest connection rates across all
protocols.
In our test it wasn't so much a function as number of users, as all 4
channels
From observations and discussion with others, it seems that that
wireless zero config on windows favors broadcast SSIDs... You may notice
that sporadically it will connect to the broadcast one even if you've
configured the non-broadcast with higher priority.
-Kevin
Jim Gogan wrote:
Quick
This thread seems to have morphed from the original question, but I'll
note that we have a cisco vpn 3000 w/ Xauth (central username and
password) using MGA (server cert authn) to prevent MITM. Use of the vpn
is available from the wireless net but not required.
We've seen a substantial
Ringgold, Clint wrote:
Does anyone have pros or cons for a Distributed Antenna System? I think
the issues would mainly be bandwidth but if anyone could point me in the
direction of costs and installation issues etc (as well) it would be great.
I'm also interested in such solutions. My
Mearl Danner wrote:
Samford is in the process of establishing policies for wireless access on
campus.
We have Airespace/Cisco 4100 controllers and are in the process of deploying
model 1100 APs in various areas around campus. Using this hardware we are able
to establish different default
Sascha Meinrath wrote:
Hi Kevin,
I was wondering if you did any tests with a non-Meru AP in the same
physical space downloading with the Meru APs? Mainly, I'm interested in
seeing if there is a marked performance drop-off. I suspect that the
efficiencies in the Meru networks are gained at
To followup on some of these conversations.. I've been looking at the
Meru technology a bit in the past few months, intrigued by the single
channel claims. I recently ran a density test with the 'virtual AP' (two
APs on a single channel) to test the performance. We had 30 clients (mix
of b/g) in a
Eric T. Barnett wrote:
So if you have 2 in close proximity on the same channel, then you end up
with half the bandwidth of 2 AP's on different channels. How about when
Correct; this was what Meru's CTO explicitly said.
they are not in close proximity but they overlap as they would in a
While a multi-channel approach will always deliver max Peak throughput
(no surprise there), Meru's approach provides much better performance in
high-density deployments (e.g. libraries) under all conditions and will
always [provide far superior load balancing, handoff, QoS and RF
management
://www.eduroam.org
--
-Kevin
Kevin Miller[EMAIL PROTECTED]
Network Architect
Office of Information Technology
Duke University
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/groups/.
21 matches
Mail list logo
