: [WIRELESS-LAN] Wireless Design
We are having this exact issue and have been working with TAC for a month. We
have clients that are mis -configured pounding the RADIUS servers, and one by
one we are identifying and blacklisting devices that have never been on the
network. This is only a couple days
: [WIRELESS-LAN] Wireless Design
We have two ACS 4.2 servers behind load balancer(ACE) and we do not see any
issues with wireless PEAP authentications. We are going to upgrade these
servers to ACS 5.3 soon. Has Cisco confirmed the problem is related with LB?
What if the ACS servers are not load
-LAN@LISTSERV.EDUCAUSE.EDU
Sent: Tuesday, October 23, 2012 12:15:13 PM
Subject: RE: [WIRELESS-LAN] Wireless Design
TAC has confirmed the problem and has not yet offered a work around to LB. The
LB is manually pointing controllers to one of the two RADIUS servers, which
helps, but of course
] On Behalf Of Dennis Xu
Sent: Tuesday, October 23, 2012 12:24 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Wireless Design
Yes ACE is radius session aware. Radius stickiness has been configured for ACS
servers.
---
Dennis Xu
Network Analyst, Computing and Communication Services
@LISTSERV.EDUCAUSE.EDUmailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Date: Fri, 10 Jun 2011 12:27:48 -0400
To:
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDUmailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Wireless design
Just to chime in the topic of restricting traffic- bear in mind that
applications like
Bruce,
We install our APs in the same subnet as our users (for reasons mentioned by
others as well: it seems that
rogue detection works better on the wire side that way), but with private IP
addresses.
The gateway as two subnets (one primary and one secondary).
Primary is for users, secondary
: [WIRELESS-LAN] Wireless design
The real short answer is that it does not matter what the IP address of the AP
is, as long as it has good stable communications with the controller.
What I personally try to do is what you are proposing, put the APs for each
building/floor it's own subnet.
Good
-LAN@LISTSERV.EDUCAUSE.EDU
Date: Thu, 09 Jun 2011 14:30:50
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Reply-to: Craig Simons craigsim...@sfu.ca
Subject: Re: [WIRELESS-LAN] Wireless design
Bruce,
For administrative reasons, we find it very helpful to have all our wireless
users contained to wireless
The real short answer is that it does not matter what the IP address of the
AP is, as long as it has good stable communications with the controller.
What I personally try to do is what you are proposing, put the APs for each
building/floor it's own subnet.
Good luck
Mike
On Wed, Jun 8, 2011 at
Can that system bridge at the AP? We are going to have a secure network and an open one. The secure network will be configured with 802.1x and will just dump people on the local VLANof the building. Once we have the network fully secure we will be fine with this. I like this for performance
jason.ap...@oit.edu
Date: Wednesday, December 10, 2008 5:34 pm
Subject: Re: [WIRELESS-LAN] Wireless Design for Arenas
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
802.1x or MAC filtering, or both... In a previous life I supported
wirelessfor a large manufacturer with myriad dumb devices (thatis
802.1x or MAC filtering, or both... In a previous life I supported wireless
for a large manufacturer with myriad dumb devices (thatis devices that
couldnĀ¹t do 802.1x) so we did a mix an SSID that did MAC filtering for DUMB
devices and a SSID for 802.1x
On 12/10/08 3:30 PM, John Duran [EMAIL
12 matches
Mail list logo
