Assuming ISC DHCPd and the details from
https://www.mist.com/wp-content/uploads/Mist_Proxy_URL_Conf.pdf, I'd think it
would be something like this, making sure you adjust the SKUs you use:
option space MistAPs;
option MistAPs.ProxyURL code 1 = string;
if option vendor-class-identifier = "Mist
connection
initiated from the Internet. We haven’t had any issues with this whatsoever.
thx,
felix
Felix Windt
Dartmouth Network Services
From: The EDUCAUSE Wireless Issues Community Group Listserv
on behalf of "Curtis K. Larsen"
Reply-To: The EDUCAUSE Wireless Issues Commu
At Dartmouth, we use the free eduroam tool to onboard our PEAP/MS-CHAPv2
eduroam SSID, which is our only 802.1x WLAN. It works really well for us.
Occasionally I argue for switching to EAP-TLS, at that point we’d switch to a
tool that does the certificate provisioning.
thx,
felix
From: The
. The money is in the Splunk costs for
keeping all that data.
Thanks,
Felix Windt
Senior Director, Network Services
Information, Technology, and Consulting
Dartmouth College
+603 646 8101
From: The EDUCAUSE Wireless Issues Community Group Listserv
on behalf of Dan Lauing
Reply-To: The EDUCAUSE
https://www.eduroam.org/configuration-assistant-tool-cat/
thx,
felix
From: The EDUCAUSE Wireless Issues Community Group Listserv
on behalf of Patrick Mauretti
Reply-To: The EDUCAUSE Wireless Issues Community Group Listserv
Date: Tuesday, September 22, 2020 at 3:02 PM
To:
This is off the cuff, but in the past I’ve had issues with Cisco WLCs taking
CoAs when the Event-Timestamp attribute was present.
thx,
felix
From: The EDUCAUSE Wireless Issues Community Group Listserv
on behalf of "Turner, Ryan H"
Reply-To: The EDUCAUSE Wireless Issues Community Group
Just for argument’s sake: why? Your users do not care about their WiFi access
being authenticated. They don’t care about it being encrypted. From your user’s
perspective, you’re about to make the wireless system behave worse.
Do you have an underlying reason that makes driving traffic towards
Dartmouth is currently migrating to Mist. Happy to provide some feedback, feel
free to reach out off-list and we can talk via email or phone.
thx,
felix
From: The EDUCAUSE Wireless Issues Community Group Listserv
on behalf of Blake Brown
Reply-To: The EDUCAUSE Wireless Issues Community
probably be kept on properly authenticated networks, but
those are easier to solve if you have reasonable mass device management options.
For what it’s worth, we use the eduroam CAT tool for onboarding.
thx,
Felix Windt
Dartmouth College
From: The EDUCAUSE Wireless Issues Community Group Listserv
We are running CPU ACLs both on IPv4 and IPv6. The obvious thing is that you
want to make sure to account for all your CAPWAP sources and all your
management stations. If you use Prime Infrastructure to manage your WLCs,
definitely don't forget accounting for that.
Also for Prime: its ACL
10 matches
Mail list logo