In light of this article I'm wondering if anyone is still sticking with TKIP
(for legacy system issues I would guess) as opposed to using AES solely?
http://www.idgconnect.com/index.cfm?event=showarticle
http://www.idgconnect.com/index.cfm?event=showarticlecid=116pk=9433
cid=116pk=9433
Hi Matt,
We phased out two remaining WPA networks in the last couple months. We
had a couple setup initially because we expected lots of clients that
could not support WPA2, either because of hardware or because they were
missing the necessary Windows updates. We did find quite a few people
How do you go about phasing it out, if the user's SSID is already
pre-configured to connect with WPA/TKIP? If you change it, will users have
to manually go in and select AES, or is windows smart enough to sort that
out on its own?
Cheers
Matt
From: The EDUCAUSE Wireless Issues
Matt, we are using both TKIP and AES on one SSID primarily for legacy
reasons. Our support documentation all says to use WPA2 and AES, but we
have left WPA- TKIP running for compliance with the eduroam
(http://www.eduroam.org/) federated service for visitors from
University's who still require
From the tests I did when we phased TKIP out a year ago, Windows just
switches encryption types.
Greg Williams
IT Department
University of Colorado at Colorado Springs
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf
Windows is definitely not smart enough or anything J
Basically anyone that came into our helpdesk with the old network
configured got switched over when we touched the machine. All of the
new setups used our 802.1x network, so as students left or came in, we
started to get everything switched
To clarify my statement, Greg is correct when you are just switching
encryption types. But if you are switching between WPA and WPA2, at
least Windows XP does not seem to cooperate well. That probably depends
largely on which supplicant you are using though.
Matt
From: The EDUCAUSE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Matt Ashfield wrote:
Just to rehas this discussion... Has anyone found that the Iphone3.1
software has fixed this?
We're still seeing clients with OS 3.1 suffer this auto-join
problem, both iPhone and iPod Touch. I've also seen some devices
work
Jason Appah wrote:
I probably should have been more specific, we have a packeteer 7500
for shaping applications, the dorms need to be able to shut off
internet for specific users after hey have reached their BW limit for
the month. sort of like metered usage?
Unless this has been added in
We're running into some issues at the ramp up of a quarter with our
DHCP lease time attempting to utilize the /24's we currently pool for
our main essid. We moved from 1hr. to 30 minutes, but are still
running out of leases occasionally. For instance, we have 160 users in
a /24, but due to
We are running a 10 minute lease on our 2 /21's with no issues that I know of.
Generates a lot of logs though. I wouldn't want to go much shorter.
-Neil
--
Neil Johnson
Network Engineer
Information Technology Services
The University of Iowa
Work: 319 384-0938
Mobile: 319 540-2081
Fax: 319
Sounds like a great use case for ip mobility... what are you running for
wireless controllers?
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Garrett Harmon
Sent: Wednesday, September 30, 2009 11:09 AM
To:
Garret,
Wireless networks tend to be used in bursts. Most of the time they are
underutilized. However, we try to build them for worst case scenario
situation. Sounds to me like adding another /24 might be your best bet.
Also might depend on how users connect. Can anyone come in and
We're actually running mobile IP on our Aruba controllersand love
itbut that doesn't really affect the iphone users that connect and
update facebook then walk somewhere without coverage essentially
trahsing that IP for another 29 minutes. In our most populated stack
we have 10
Garrett, we run with 15 minute lease times on the wireless network, the
only minor issue we came across was the default ARP table timeout was 30
minutes, which would normally be fine, so we needed to lower that on the
network switches to match.
Many Thanks
Peter
-Original Message-
From:
We had similar issues, and have found a happy middle with 40 min max lease time
with our controllers (Aruba) having a user timeout of 38 min.
Ken Connell
Intermediate Network Engineer
Computer Communication Services
Ryerson University
350 Victoria St
RM AB50
Toronto, Ont
M5B 2K3
416-979-5000
Garrett Harmon wrote:
We're running into some issues at the ramp up of a quarter with our DHCP
lease time attempting to utilize the /24's we currently pool for our
main essid. We moved from 1hr. to 30 minutes, but are still running out
of leases occasionally. For instance, we have 160 users in
We run 30 minute leases for most of SSIDs, no problems. We saw an
unexpected boost in wireless usage this semester though, and had to go
from /22 networks to /20 to accommodate the new users and leave room for
expansion.
Heath
Garrett Harmon wrote:
We're running into some issues at the ramp
Hey all,
Very much the same case at UBC.
We have 30 minute DHCP timers (so 15 minute requests) active on 12x
/21's...
Without it we would be hosed. We'd like to go lower, but the load on the
controllers (DHCP proxy) and the DHCP server (old SPARC) would likely
become a problem.
Thanks,
Ian
We run 4 /23's (one per class) with 4 day lease
times. It's very tight right now for freshmen and sophomore's but lots
of room for juniors and seniors. Each class is about 350-450
students. I'm looking to add another /23 per class to provide some
head room. We run 4 day lease times for the
What a timely discussion!
This morning we noticed that our pools (Aruba VLAN pools, 32* /24)
were being filled from 70 to 90%.
Our lease time is 3 hours. As most of you, we have been hammered by
Iphone/Ipod-touch (~4000 registered at the moment)
For a campus population of 30,000 (25,000
Philippe,
We saw improvement moving from 1 hour to 30 minutes with no foreseen
adverse affects. We are testing a few subnets on 15 minute leases, as
it would be more practical to avoid any waste of leases for the 5
minute email/facebook check on an iPhone/iPod-Touch. I'll let you know
if
We had run 15 minutes lease time on /22 wireless public subnets for a few years
without problem. We just moved our wireless subnets to private IPs and changed
to 4 hours lease time this fall.
Dennis
- Original Message -
From: Ryan Holland holland@osu.edu
To:
Not sure if this is the case for anyone, but one of the issues we
ran into with lease shortages was related to maybe on oversight on our
part. The ISC dhcp has a max-lease-time and a default-lease-time
value. While wireless was set to hand out 30-minute leases (default-
lease-time),
We have quite a few wireless networks set to 15 minutes
with no adverse affects.
Dale
On Sep 30, 2009, at 3:43 PM, Ryan Holland wrote:
Philippe,
We saw improvement moving from 1 hour to 30 minutes with no foreseen
adverse affects. We are testing a few subnets on 15 minute leases,
as it
25 matches
Mail list logo