|
List Info
Thread: Re: Re: Aironet Network Nodes
|
|
| Re: Re: Aironet Network Nodes |
 
United States |
2007-07-28 09:46:30 |
|
You are the Man!
I must admit we are all Cisco guys but none of us have much Aironet wireless experience and we have just begun doing the fact finding portion. The network is just for students recreation. The 300 Faculty member VLAN also raised eyebrows on our behalf when we were tasked with finding the answers.
In the cafeteria there is a wired backbone that we can use, which is why we were contemplating bridging from the wired backbone to the APs ( To save people ladder time)... it shouldn't be too much though to run wire drops to the APS from strategically placed/ configured 3 layer switch... Security is always important but at this point we are just trying to get the students access and start figuring up the basic costs. Firewalls and Basic ACL's should be more than enough to handle the average student.. should be.
This is one hell of an answer, it has definitely given a lot of leads and cleared up some things we hadn't even r
an into
yet.
You can definitely get a beer on me Tox... 
Thank you
To anyone else that may have any other points feel free to speak... the more information the better. Aironet seems to be the way to go.... its not going anywhere...we may as well embrace it and run with it.
toxicnaan <toxicnaan yahoo.co.uk> wrote: I'll be glad to come over and show you what to do . I'm not sure what your trying to do? VLANS over wireless huh? I would'nt really go for that, it's very easy to snoop
on wireless traffic, so I'd really deploy it with a layer 2/3 encryption solution. I'd avoid bridging if possible,
it's nasty, and can cause all sort of headache you can't even begin to
dream that could happen. Think ARP spoofing, think dnsiff, think disaster.
I can't really see what your trying to do, are you trying to extend
wireless coverage, without a wired backbone, if so you need to get AP
to forward traffic to other AP's?
if so, you need to look at mesh network, not something cisco can't
really say they know too much about at this stage.
the best route you can take is, wired backbone to all AP's.
reuse wireless channels the best you can.
use a good layer 2 encryption protocol, such a wpa2 with
a radius server to your authentication server, AD or LDAP or what ever
for authentication of users.Radius is going to solve a lot of headache
with you wireless network.... You'll be able to do client
and AP
certifates to, stop evil twins appearing.
for exernal users, you could place normal wireless hotspot, with
chillspot or something, and plug that into your dmz as well.
roll out a layer 3 ip sec concentrator for a bit of extra security
and control. you can place this in a DMZ on your firewall, and then
you can treat wireless uses, as you would incomming internet users to
your site.
do all that you've got yourself a nice network..
500 users is certainly high density, about 30 users per access point
is about the max, bit this depends on what they are doing, simple web
browsing is different to streaming video's 24/7 . If bandwidth is a
problem consider using g/a adapter s, and using 802.11a extra channels
for extra capacity. not all user will be using it as the same time,
but once you offer it as service, usage will definity go up!, so will
coffee sales.
you've got 3 overlapping
channels, you can actualy squeeze 4 channels
out, if you have a little now how with radio engineering!.  you can
even play around with direction antenna's, or reducing the transmit
power of AP's, to get a greater density.
roll on superwide band i say
please buy me a beer.
Cheers,
Tox.
--- In Cisco_CCIE_Lab%40yahoogroups.com">Cisco_CCIE_Labyahoogroups.com, "KEY" <keypinitreel1...> wrote:
>
> I am currently doing a project, investigating setting up a wireless
> network at the local college in the cafeteria and outdoors near the
> library.
>
> The Network is to cover 500 students and a VLAN for 300 faculty
> members and staff.
>
> I and my partners have done the research and have found with wireless
> G Access points we should be able to support about 30 students per
> point. The access points we
theorize could be pushed with a bridge,
> that would work as the linkup to the back bone ( default gateway style).
>
> The question is this...
>
> Can an Aironet Bridge connect multiple access points...all of which
> supporting their own networks.... to a WAN or a DSS?
>
> If not... is this where we would use a wireless controller?
>
>
> We are really stuck on exactly what components we need on the other
> side of the access points to provide service to such a large number of
> hosts.
>
> Any and all suggestions are invited.
>
> Thanks in advance everyone.
>
Shape Yahoo! in your own image.
Join our Network Research Panel today!
__._,_.___
|
| Re: Re: Aironet Network Nodes |
 
United Kingdom |
2007-07-31 16:49:37 |
|
you need to read these two paper, both differing points of view, but you'll understand how radio really works.
http://colton.byuh.edu/courses/is280/channel.pdf
http://userver.ftw.at/~valerio/files/wons.pdf
seems I was a little out of date with 4 chanel allocation stuff!
nice papers!
KEY PINITREEL <keypinitreel1yahoo.com> wrote: You are the Man! I must admit we are all Cisco guys but none of us have much Aironet wireless experience and we have just begun doing the fact finding
portion. The network is just for students recreation. The 300 Faculty member VLAN also raised eyebrows on our behalf when we were tasked with finding the answers.
In the cafeteria there is a wired backbone that we can use, which is why we were contemplating bridging from the wired backbone to the APs ( To save people ladder time)... it shouldn't be too much though to run wire drops to the APS from strategically placed/ configured 3 layer switch... Security is always important but at this point we are just trying to get the students access and start figuring up the basic costs. Firewalls and Basic ACL's should be more than enough to handle the average student.. should be.
This is one hell of an answer, it has definitely given a lot of leads and cleared up some things we hadn't even ran into yet.
You can definitely get a beer on me Tox...
Thank you
To anyone else that may have any other points feel free to speak...
the more information the better. Aironet seems to be the way to go.... its not going anywhere...we may as well embrace it and run with it.
toxicnaan <toxicnaanyahoo.co.uk> wrote: I'll be glad to come over and show you what to do . I'm not sure what your trying to do? VLANS over wireless huh? I would'nt really go for that, it's very easy to snoop on wireless traffic, so I'd really deploy it with a layer 2/3 encryption solution. I'd avoid bridging if possible,
it's nasty, and can cause all sort of headache you can't even begin to
dream that could happen. Think ARP spoofing, think dnsiff, think disaster.
I can't really see what your trying to do, are you trying to extend
wireless coverage, without a wired backbone, if so you
need to get AP
to forward traffic to other AP's?
if so, you need to look at mesh network, not something cisco can't
really say they know too much about at this stage.
the best route you can take is, wired backbone to all AP's.
reuse wireless channels the best you can.
use a good layer 2 encryption protocol, such a wpa2 with
a radius server to your authentication server, AD or LDAP or what ever
for authentication of users.Radius is going to solve a lot of headache
with you wireless network.... You'll be able to do client and AP
certifates to, stop evil twins appearing.
for exernal users, you could place normal wireless hotspot, with
chillspot or something, and plug that into your dmz as well.
roll out a layer 3 ip sec concentrator for a bit of extra security
and control. you can place this in a DMZ on your firewall, and then
you can treat wireless uses, as you would incomming internet
users to
your site.
do all that you've got yourself a nice network..
500 users is certainly high density, about 30 users per access point
is about the max, bit this depends on what they are doing, simple web
browsing is different to streaming video's 24/7 . If bandwidth is a
problem consider using g/a adapter s, and using 802.11a extra channels
for extra capacity. not all user will be using it as the same time,
but once you offer it as service, usage will definity go up!, so will
coffee sales.
you've got 3 overlapping channels, you can actualy squeeze 4 channels
out, if you have a little now how with radio engineering!. you can
even play around with direction antenna's, or reducing the transmit
power of AP's, to get a greater density.
roll on superwide band i say
please buy me a beer.
Cheers,
Tox.
--- In Cisco_CCIE_Lab%40yahoogroups.com">C
isco_CCIE_Labyahoogroups.com, "KEY" <keypinitreel1...> wrote:
>
> I am currently doing a project, investigating setting up a wireless
> network at the local college in the cafeteria and outdoors near the
> library.
>
> The Network is to cover 500 students and a VLAN for 300 faculty
> members and staff.
>
> I and my partners have done the research and have found with wireless
> G Access points we should be able to support about 30 students per
> point. The access points we theorize could be pushed with a bridge,
> that would work as the linkup to the back bone ( default gateway style).
>
> The question is this...
>
> Can an Aironet Bridge connect multiple access points...all of which
> supporting their own networks.... to a WAN or a DSS?
>
> If not... is this
where we would use a wireless controller?
>
>
> We are really stuck on exactly what components we need on the other
> side of the access points to provide service to such a large number of
> hosts.
>
> Any and all suggestions are invited.
>
> Thanks in advance everyone.
>
Shape Yahoo! in your own image. Join our Network Research Panel today!
Yahoo! Answers - Get better answers from someone who knows. Try
it now.
__._,_.___
.
__,_._,___
|
[1-2]
|
|