I am not a personal fan of PPPoE as I consider it just another layer of complexity and failure for the network. A lot of people use it in the US for user authentication and control though.
If I were starting out new, I would consider other alternatives to these two problems. For wireless client isolation, many APs on the market now (and that have been on the market) support this feature. Linux-based devices with MAC filtering rules (e.g. ebtables) can use a simple rule to check if the destination MAC is the gateway (if so, pass it) or not (don't pass it). For the user authentication and control via radius, you can look at certificate-based, username/password-based, etc. that are all based on standards and are much more secure. If you APs support VSSIDs, then you can run a combination of these on one AP. :-) -Hal Harold Bledsoe Deliberant LLC 800.742.9865 x205 (office) 404.693.0660 (cell) [EMAIL PROTECTED] http://www.deliberant.com -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John Scrivner Sent: Sunday, April 08, 2007 7:05 PM To: [email protected] Subject: [WISPA] PPPoE The good, the bad and the ugly please Are any of you running PPPoE on your client connections back to a PPPoE concentrator? Is this a good approach? I have heard that one big advantage of this is that you can setup Radius to set everything up for authentication very easily and that you can set every client up as their own individual subnet so that they are all routed back to your PPPoE concentrator / router in your office. I would think this would address many of the client to client radio traffic concerns of CALEA without changing any APs. Isn't this a fix for that one concern? Does that make sense? If not then why not? I like the idea of easily managing my accounts for turning them on or off for non-payment and automatically setting bandwidth rules. I use Radius in a big way for my existing dialup customer base and this sounds like the berries to me. I welcome other thoughts from those who are using or considering using PPPoE or similar techniques. Any alternatives which work better? Happy Easter guys and gals, Scriv -- WISPA Wireless List: [email protected] Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ -- WISPA Wireless List: [email protected] Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
