[c-nsp] Access Point & 2 SSID's Trunked to Vlan's

Fred Reimer freimer at ctiusa.com
Tue Dec 18 18:49:04 EST 2007


Again, be careful with terminology.  "Open" when talking about WiFi is not
"unprotected."  WPA uses "open" authentication, as opposed to "shared."

The authentication method should also be tested with VoIP, or any embedded
device not running a standard supplicant.  Most will only support LEAP
and/or WPA/PSK.  However, I've seen problems with various embedded devices
that don't get even WPA/PSK right, and can't roam or have roaming problems.

Fred Reimer, CISSP, CCNP, CQS-VPN, CQS-ISS
Senior Network Engineer
Coleman Technologies, Inc.
954-298-1697
  

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of
A.L.M.Buxey at lboro.ac.uk
Sent: Tuesday, December 18, 2007 5:21 PM
To: Kaj Niemi
Cc: [c-nsp]
Subject: Re: [c-nsp] Access Point & 2 SSID's Trunked to Vlan's

Hi,

> associating between access points works fine using open (time taken to 
> reassociate to another isn't really noticeable) but will not work reliably

> with WPA2 EAP TTLS due to the amount of time it takes to reauthenticate. 
> Using WDS will help in that case. I tried this out with Nokia E61(i) and 
> E90 terminals and AP1130s late in the summer.

exactly - and if your client is doing voip or multicast video etc
then the loss in packets causes service interuption. the use of mobileIP 
methods and mobility layers is essential.

> As to your question; using open, calls are probably not going to be
dropped 
> but you might lose some frames when reassociating :) Using WPA2 EAP and
all 
> the nice things for OTA encryption needs some thought before implementing.

open wifi with voip? nice. exactly what i like when sniffing conversations

alan
_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3080 bytes
Desc: not available
Url : https://puck.nether.net/pipermail/cisco-nsp/attachments/20071218/ef417757/attachment.bin 


More information about the cisco-nsp mailing list