This is just too good not to share with my fellow IT friends. See
www.oreilly.comhttp://www.oreilly.com as O'Reilly is running a deep discount
sale through May In Celebration of Day Against DRM. All video training and
eBooks are 50% off, and that goes to 60% if you spend more than $100.
Lee
I guess I'll register as the odd man out in terms of our IP setup.
We've got a single /24 block of external addresses with our ISP. We probably
use about half of them as 1:1 NAT for websites, Exchange, etc. All campus
traffic is NAT'ted and PAT'ted out a single public IP. Our internal space is
We are a Cisco WiSM2 wireless shop - 2 HA clusters with around 800 APs on
each. All private IP's (with 2 hour lease time), using NAT at the border
(Juniper SRX 5800). We have a total student population of around 6,000, and
a high water mark of around 9,500 devices on wireless at a given time.
Frank,
We would if we needed them. As it is, we're probably only using around half of
them at most. Users on premises don't really complain about it since most
applications today understand that they are probably running on a network
behind at least one layer of PAT.
Stats on our firewall
Matthew,
Why don’t you get more public IPs from ARIN?
Frank
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Hinson, Matthew P
Sent: Wednesday, May 06, 2015 8:04 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject:
Matt, you’re not alone.
Single public /24 block of IP’s as well, same deal as you. Half used as 1:1
NAT for servers, with a single public IP for wireless traffic. We shutdown P2P
using our Palo Alto, haven’t had a letter in many years.
Wireless side, we use VLAN pooling, but that will be