RE: wireless solution

From: Scott Morris (swm@emanon.com)
Date: Mon Sep 01 2008 - 21:32:58 ART

• Next message: Radioactive Frog: "Re: CCIE Voice"
• Previous message: john matijevic: "Re: wireless solution"
• Maybe in reply to: john matijevic: "wireless solution"
• Next in thread: Radioactive Frog: "Re: wireless solution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

If you want FULL CLI, then run Aps in "heavy" mode. But as Tony pointed
out, the "light" loads still have some fairly robust debugging capabilities
anyway.

Although, in all honesty if you are really doing dump-level debugs on a
wireless system, you obviously aren't troubleshooting a wireless problem
anyway, so there are different vlan/span/switch/elsewhere related debugs
that may suit you better!

If you're truly troubleshooting wireless issues, use something like gear
from Fluke or BVI. Something that can look at multiple wireless things
simultaneously. It'll make your life much more efficient there.

But otherwise, there's still plenty of tools in the Cisco repretoire
available on the lightweight deployments.

Scott
 

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of john
matijevic
Sent: Monday, September 01, 2008 8:21 PM
To: tvarriale@flamboyaninc.com
Cc: Cisco certification
Subject: Re: wireless solution

Hello Tony,
I appreciate your feedback, from what I was told that the IOS has been
removed from the Cisco Aps and has been put on the controllers out of
security reasons. I have not yet got my hands on either system, have only
seen demos on both. I have configured previously 1200 WAP from Cisco but was
using legacy 128 bit WEP key encryption this was some years ago. Thank
again.
John

On Mon, Sep 1, 2008 at 8:02 PM, Tony Varriale
<tvarriale@flamboyaninc.com>wrote:

> John,
>
> You can still do debugging from the cli in Cisco with lightweight APs.
>
> And, you have significant debug resources on the controllers themselves.
>
> If you would like to use the cli for config and management, then the
> LAPs and controllers are not for you.
>
> But, I would recommend demoing a lightweight system. It is so much
> nicer than managing each AP individually.
>
> Tony
>
> -----Original Message-----
> From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf
> Of john matijevic
> Sent: Monday, September 01, 2008 4:27 PM
> To: Tony Varriale
> Cc: Cisco certification
> Subject: Re: wireless solution
>
> Hello Tony,
> We were looking for a debug utility or a utility such as tcpdump that
> would give us more detail information and security from the device,
> from the Cisco. I have read on some of the ids capabilities which is
> good. Our team rather uses the cli for configuration and management,
> so was hoping that Cisco would have a CLI interface and debugging.
> Sincerely,
> John
>
> On Mon, Sep 1, 2008 at 4:34 PM, Tony Varriale
> <tvarriale@flamboyaninc.com>wrote:
>
> > Which security features?
> >
> > For authentication, the Cisco solutions support all of the typical
> > EAP methods. Cisco has a table of EAP and supported features
> > somewhere on their site.
> >
> > Local EAP is a great concept, but it's a bear to manage. In large
> > scale deployments, it's useless.
> >
> > But, Cisco has answers for those scenarios as well. Just depends
> > what
> APs
> > you want and what your layout is.
> >
> > The APs, when in lightweight mode, have access to the console. You
> > have
> a
> > subset of the typical autonomous commands and can only do basics.
> > But,
> the
> > whole concept is that the controllers control the APs. So, if you
> > have
> an
> > AP with a valid issue, just rip it down and put up a new one. No
> > real reason to troubleshoot it in the ceiling.
> >
> > Tony
> >
> > -----Original Message-----
> > From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf
> > Of john matijevic
> > Sent: Monday, September 01, 2008 3:04 PM
> > To: tvarriale@flamboyaninc.com
> > Cc: Cisco certification
> > Subject: Re: wireless solution
> >
> > Hello Scott and Tony,
> > Thanks again for your feedback, unfortunatly there is no Cisco gear
> > currently where I work, in fact all of my smartnets and benefits
> > from previous companies have been taken away :(. From what I have
> > been reading with Cisco, you can setup AAA and authentication using
> > PEAP as the EAP authentication mode via RADIUS, as a fallback option
> > if the Radius server is unavailable you can use local EAP
> > authentication. With the Bluesocket,
> the
> > appliance itself has more security firewall features than from the
> > Cisco appliance, at lease what I saw from the demonstation on the
controllers.
> > Also there isn't a debug utility on the WAP on Cisco, so the
> > security features weren't as robust as the Bluesocket from what I
> > could see. But
> on
> > the other hand from a managibility perspective the Cisco product
> > seemed
> to
> > have better manageability. Right now in our environment we have
> everything
> > statically mapped via mac addresses and there is no directory based
> > authentication. Also manageablity on Cisco from the WCS was through
> > a
> GUI,
> > so looks like the command line interface didnt have much features
> > for the Cisco solution.
> > Thanks again for your input.
> > John
> >
> > On Mon, Sep 1, 2008 at 3:30 PM, Tony Varriale
> > <tvarriale@flamboyaninc.com>wrote:
> >
> > > How many APs? N?
> > >
> > > The Cisco solution is very easy to deploy and run and has some
> > > nice add-ons.
> > > The WCS software is pretty nice.
> > >
> > > The controller software is very solid. 4.2 or 5 will treat you right.
> > >
> > > Tony
> > >
> > > -----Original Message-----
> > > From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On
> > > Behalf
> Of
> > > john
> > > matijevic
> > > Sent: Monday, September 01, 2008 1:34 PM
> > > To: Cisco certification
> > > Subject: wireless solution
> > >
> > > Hello Team,
> > > I am looking at either a Cisco wireless solution or a Bluesocket
> > > Wiress Solution. If anyone has any experience with the two that
> > > can help
> provide
> > > me
> > > some feedback.
> > > In terms of Support, ease of deployment, managability. Also we
> > > dont
> have
> > > any
> > > Cisco gear for switches, and we are primarily Unix shop not windows.
> > > If you have any issues with either one either product
> > > functionality,
> the
> > > product itself, or support issues when you call in, etc, looking
> > > for feedback.
> > > Thanks again for your feedback.
> > > John
> > >
> > >
> > > Blogs and organic groups at http://www.ccie.net
> > >
> > > __________________________________________________________________
> > > _____ Subscription information may be found at:
> > > http://www.groupstudy.com/list/CCIELab.html
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > ____________________________________________________________________
> > ___ Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > ____________________________________________________________________
> > ___ Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> ______________________________________________________________________
> _ Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html

Blogs and organic groups at http://www.ccie.net

• Next message: Radioactive Frog: "Re: CCIE Voice"
• Previous message: john matijevic: "Re: wireless solution"
• Maybe in reply to: john matijevic: "wireless solution"
• Next in thread: Radioactive Frog: "Re: wireless solution"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Oct 04 2008 - 09:26:17 ART