I see lots if different wireless sites throughout the country. You really need to run WPA and WPA2 mixed-mode. There are still a _lot_ of clients out there that don't use WPA2 , don't have the right patch, service pack, etc. So for these devices WPA will have to suffice. I don't know of any limitations running mixed mode and have success with it.
The problem with VPN is do you have enough hardware to throw at it? You can use your existing VPN boxes but once you switch over to wireless, your bandwidth usage goes up quite a bit and you man find your concentrators stressed out. There are lots of scripts out there that users can run from a web site to confure WZC as Stan Brooks mentions in anther response. I'm of the opinion that we need to get users clicking the right boxes in WZC. -Emerson -----Original Message----- From: Robinson, Ronald [mailto:[EMAIL PROTECTED] Sent: Friday, September 22, 2006 3:00 PM To: [email protected] Subject: [WIRELESS-LAN] WPA or VPN We are in the process of re-evaluating the security on our wireless network. Currently we support Dynamic WEP/802.1x and WPA with PEAP authentication. What I would like to know from this group is the pros and cons to using WPA/2 or VPN, especially with regards to end user support and, if you are migrating from one to the other, your reasons for doing so. ------------------------------------------------------ Ron Robinson, Network Architect, Bradley University 1501 West Bradley Ave. | E-Mail: [EMAIL PROTECTED] Morgan Hall Room 205F | Phone: (309) 677-3350 Peoria, Illinois 61625 | FAX: (309) 677-3460 ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
