I ran into this same issue back in Aug this year and this was their response...
(Note, I have not purchased and confirmed this yet)
Jason Machtemes
Thank you for contacting The NETSCOUT Technical Assistance Center.
The engineering team got back to me just when you left the chat room, but the
One things to keep in mind is that certain device manufacturers preference
wider channels. Apple in the Mac OS X products for instance, will always
prefer an 80MHz channel over a 40MHz channel. As well as a 40MHz channel over
a 20MHz channel. Things like DBS can lead to stickier clients, as
I’m really only starting to play in this space over the last year but below is
my thoughts.
Ideally you want same channels as far away from each other as possible,
interference signal levels travels further than acceptable coverage (so you
might target 25SNR for signal but I think something
Very much like your site, we’ve utilized attwifi as a third party provider for
guests for nearly five years.
We have not received DMCA notices, as that is AT’s network, and don’t know
how many they may have received.
Similarly for CALEA. We would of course assist AT if they required L2
Thanks! I seem to have it working now, though I should probably test
another device. I am not sure what I did. I enabled the DNLA protocols
but I am not sure if that was necessary in AirGroup. One of my problems
might have been related to not being logged into a gmail account when
testing.
Depending on the building construction, and assuming you are using DFS
channels, running 40Mhz and even 80Mhz is very likely with no downside. 5GHz
does not propagate very well, so a static 20Mhz plan in anything but big open
spaces is IMHO unnecessary.
If you are a Cisco customer, enabling
My hero!
-Original Message-
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Lee H Badman
Sent: Wednesday, November 30, 2016 12:17 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Decent tools, on
Being a man of action, let me see if I can get any additional information on
this from my contact at NetScout.
Stand by. Talk amongst yourselves. Smoke em if you got em.
> On Nov 30, 2016, at 6:15 AM, Jethro R Binks wrote:
>
>> On Wed, 30 Nov 2016, Lee H Badman
On 11/30/2016 11:20 AM, Tim Tyler wrote:
> Tim,
>
> “subnet based on policy”? I have a pool of 6 vlans of which devices get
> randomly assigned to one of the 6 subnets.
> How does Airgoup know which subnets the two pairing devices are in? I
> thought it required a broadcast to find each
>
Policy based on AirGroup authorizations from ClearPass.
If I have a Chromecast/AppleTV/whatever on subnet A, when that device
authenticates to the network, the controller will send an AirGroup
Authorization Request to ClearPass. ClearPass will return sharing properties of
the device
Tim,
“subnet based on policy”? I have a pool of 6 vlans of which devices get
randomly assigned to one of the 6 subnets. How does Airgoup know which
subnets the two pairing devices are in? I thought it required a broadcast
to find each other. I would think that would require a broadcast
Hi All,
WirelessLAN Professionals has put out an anonymous compensation survey for
WLAN Professionals. It's quick, easy and only takes about 90 seconds. The
results will also be publicly available. So please take a few seconds to
help the community out.
https://www.surveymonkey.com/r/wlccs2016
Yes, AirGroup sends the mDNS or SSDP advertisement out onto the subnet where
the user is based on policy.
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Tim Tyler
Sent: Wednesday, November 30, 2016 10:32
To:
Tim,
So even if the two peering devices are on two different subnets, it should
still work?
Tim
*From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] *On Behalf Of *Cappalli, Tim (Aruba)
*Sent:* Wednesday, November 30, 2016 8:41 AM
*To:*
We were told that for a 7240 controller AirGroup was limited to receiving
(not necessarily responding to) 200 pps. Given the typical amount of
multicast traffic coming from client devices, I would expect 200pps to be
reached at a tiny fraction of the 32K devices a 7240 claims to support.
We’ve done just a little bit of this in the last year with a product called
NetBeez. We’ve only got 10 or so of our 35 wi-fi units installed, mostly in
the building our offices are in. We have a small list of important campus
services that they try and reach over wireless. We were able to
I just received about 20 double sided pages of feedback rom one of our
professors. She decided she would do a survey on wireless in classrooms to
two of her classes. The responses as I'm sure you've all experienced are
very accurate(lol).
My question is does anyone utilize a specific tool or
We use our guest SSID for devices that rely on bonjour with airgroups
enabled. Multicast overall is disabled, airgroups handles any bonjour
communication. We use larger /18 nets mainly to facilitate roaming.
Airgroups doesn't care what subnet you are on. Devices on our secure SSID
can talk to
Tim,
Chromecast will work with the AirGroup service Googlecast enabled and with
drop broadcast/multicast enabled on the VAP.
This can work in large subnets or multiple smaller subnets.
Tim
Aruba ClearPass Team
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
Perhaps SHA256 4K wasn't the best choice right now. The good news is that
we're exclusively PAP (never thought I'd say that), so we're pretty much
limited to computing devices on our 1x network. To my knowledge we haven't
uncovered any compatibility issues other than our AirChecks.
Jon
We do have the AirGroup functionality enabled. But I also have a pool
of 6 /23 vlans. So my first question is did you set up an independent SSID
for L2 devices to register? Did you use one vlan (subnet)? What size?
I am curious about the details to allow broadcast, but I am guessing I
OK- I did query NetScout as well, as I have a contact close to this product
line. Even if the answer is “we can’t do that with the G2”, no one should have
to wait for an answer.
Lee Badman | CWNE #200 | Network Architect
Information Technology Services
206 Machinery Hall
120 Smith Drive
Hmmm. Intriguing. We have wireless locks as our most IoT-ish clients, and they
do OK with our longer certs. This could be a really interesting topic at the
macro level.
Lee Badman | CWNE #200 | Network Architect
Information Technology Services
206 Machinery Hall
120 Smith Drive
Syracuse, New
We’re TTLS. They can’t perform the encryption based on the server cert.
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Lee H Badman
Sent: Wednesday, November 30, 2016 6:03 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
I should add that there are probably other products that have this
functionality, but I'm not aware of them.
Jonathan Miller
Network Analyst
Franklin and Marshall College
On Wed, Nov 30, 2016 at 9:22 AM, Tim Tyler wrote:
>
>
> Wireless Lan members,
>
> We use Aruba Networks
Not necessarily an EAP-TLS issue. I've personally seen some medical devices
that puke on larger certs as well. Even using PEAP, they still get the cert
from the radius server for building the TLS tunnel. No tunnel, no credential
exchange. No creds, no access. In one example, we saw a 3-part
Tim,
The AirGroup functionality in Aruba ClearPass is probably what you're
looking for. You can set it up so that when students register their
devices, they can choose whether those devices are allowed to use
broadcast/multicast to talk to their other devices, or even allow sharing
to other
Wireless Lan members,
We use Aruba Networks for our wireless solution and we do have many L2
devices working that leverage Bonjour, etc. We simply do mac address
authentication for them. Most L2 devices work fine.My big goal is to
find out the different methods that some of you might be
Hi Donald,
I’m not quite following the questions. Where we are very dense and likely to
risk channel overlap with 40, we use 20. Examples- our stadium, dense
residential environments, very RF porous buildings that are also dense. In 5
GHz, we *generally* let RRM pick channel, but often
Any advice on manually setting up the 5 Ghz channels? Also I would like to use
the DFS channels so that I can get a wider range to choose from. But I have
noticed that the wattage correspond to the channel I choose in this band .So
would it be advisable to use two 165s close enough or should I
?That's actually a pretty interesting question, Chuck. I run the G2 (and G1)
against 802.1X as well with RADIUS using the longer certs... but- using PEAP
w/MS-CHAPv2. Which in this context, is largely irrelevant because you can
simply ignore the certs. I'm guessing that you're using TLS?
Lee
31 matches
Mail list logo