Sharing Session on HKIEd Wi-Fi Services and Useful Tips Fred Pang 10 Dec 2013.

Slides:



Advertisements
Similar presentations
Wi-Fi Technology.
Advertisements

Wi-Fi Technology ARTI J JANSARI M.E.(C.S.E.):-1ST (E.C.)
The Next Step NSW DET Standards.  Standard (“fat”) Access Point(s) (AP’s) installed  Multiple laptops connected  Security provided by WEP or WPA (or.
Application Guide For Mesh AP – MAP-3120
WiFi VS Cellular “Bringing Secure Payment to the Point Of Service”
USRobotics Professional Access Point  Yosi Rafael.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Configure a Wireless Router LAN Switching and Wireless – Chapter 7.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Wireless and Switch Security NETS David Mitchell.
Northern Arizona University Wi-Fi 2005 Flagstaff Campus Wireless Plan 4/11/2005.
CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino
A Guide to major network components
750Mbps ac Wireless Broadband Router WDRT-750AC.
Chapter 3 Application Level Security in Wireless Network IWD2243 : Zuraidy Adnan : Sept 2012.
WIRELESS SECURITY ASHIMA SOOD PEYTON GREENE. OVERVIEW History Introduction to Wireless Networking Wireless Network Security Methods Securing Wireless.
Module 1: Reviewing the Suite of TCP/IP Protocols.
Wireless Security Techniques: An Overview Bhagyavati Wayne C. Summers Anthony DeJoie Columbus State University Columbus State University Telcordia Technologies,
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Troubleshooting Your Network Networking for Home and Small Businesses.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Troubleshooting Your Network Networking for Home and Small Businesses.
1 Computer Networks and Internets Spring 2005 Assistant Professor JainShing Liu.
1 Chapter Overview Wireless Technologies Wireless Security.
Dartmouth’s Wireless Network May 16, 2005 David W. Bourque.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Wireless Router LAN Switching and Wireless – Chapter 7.
UNDER THE GUIDANCE OF MR. S.K. DANI (SDE) SUBMITTED BY:
Udit Verma( ) Aditya Gulati( ) Abhishek Meena( )
Wireless Networks 2015 CTSP Course CTSP Clsss Wireless - February
Chapter 8 Connecting Wirelessly
Wireless Network Security Dr. John P. Abraham Professor UTPA.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Configure a Wireless Router LAN Switching and Wireless – Chapter 7.
Implementing Wireless and WLAN Chapter 19 powered by DJ 1.
Chapter 7- Mobile and Wi-Fi Networks Taking signals on and off the air Connections to other networks Need to manage spectrum Managing and billing for services.
© 2007 Cisco Systems, Inc. All rights reserved.ICND1 v1.0—-3-1 Wireless LANs Implementing a WLAN.
Environment => Office, Campus, Home  Impact How, not Whether A Checklist for Wireless Access Points.
1 C-DAC/Kolkata C-DAC All Rights Reserved Computer Security.
Wireless standards Unit objective Compare and contrast different wireless standards Install and configure a wireless network Implement appropriate wireless.
MAHARANA PRATAP COLLEGE OF TECHNOLOGY, GWALIOR
Guided by: Jenela Prajapati Presented by: (08bec039) Nikhlesh khatra.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Configure a Wireless Router Chapter 7.
PRESENTATION ON WI-FI TECHNOLOGY
Update on Campus Networks December 2009 Bruce Campbell Director, Network Services Information Systems and Technology.
1. Outlines Introduction What is Wi-Fi ? Wi-Fi Standards Hotspots Wi-Fi Network Elements How a Wi-Fi Network Works Advantages and Limitations of Wi-Fi.
Wi-Fi Technology. Agenda Introduction Introduction History History Wi-Fi Technologies Wi-Fi Technologies Wi-Fi Network Elements Wi-Fi Network Elements.
VolNet2 Bill White Network Services. September 20, 2004OIT Fall Staff Meeting Why Volnet2? Based on the Security Assessment findings Insecure protocols.
Designing for High Density Wireless LANs Last Update Copyright Kenneth M. Chipps Ph.D.
Resnet Enhancements and Directions Part 1, Bruce Campbell, Information Systems and Technology.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Troubleshooting Your Network Networking for Home and Small Businesses – Chapter.
The Next Generation Wireless Yuri Kolomiyets Network Services Information Systems and Technology.
1 Company Confidential Fluke Networks OptiView Wireless Network Analyzer Bringing the power of OptiView to Wireless LANS.
Sybex CCNA Chapter 14: Cisco Wireless Technologies Instructor & Todd Lammle.
LANS A Overview (also a Review). NICS  Could be Ethernet, FDDI, Token Ring or Wireless.  Multiple Protocols can be bound to a NIC.  In WinDoze all.
Authentication has three means of authentication Verifies user has permission to access network 1.Open authentication : Each WLAN client can be.
Cisco Discovery Home and Small Business Networking Chapter 7 – Wireless Networking Jeopardy Review v1.1 Darren Shaver Kubasaki High School – Okinawa,
INTRODUCTION TO THE INTERNET Internet Protocol Cameras Training: Session 1.
7 - 1 Session 7 Wireless Security Wireless LANs (WLANs) Use radio or infrared frequencies to transmit signals through the air (instead of cables)
Submitted By:- Raushan Kr. Chaurasiya(68) Santu Thapa(75) Satyanarayan Prajapat(76)
COMPUTER FUNDAMENTALS David Samuel Bhatti
Cyber Security: Today’s Threats and Mitigations Jonathan Homer, Cyber Security Analyst Idaho National Laboratory.
© ExplorNet’s Centers for Quality Teaching and Learning 1 Install, configure, and deploy a SOHO wireless/wired router using appropriate settings. Objective.
Last updated: 20 April 2006 Alberto Escudero Pascaul ItrainOnline MMTK Access Point Configuration Developed by IT +46 Based on the.
Wireless Access Point Product Overview
Optimizing the In-Home Experience
Instructor Materials Chapter 6 Building a Home Network
Instructor Materials Chapter 9: Testing and Troubleshooting
Wireless Access Point Product Overview
Wireless Fidelity 1 1.
Chapter 12 Communications Security & Countermeasures
Chapter 6 Networks Communicating and Sharing Resources
Configure a Wireless Router
Configure a Wireless Router
What’s New In WatchGuard Wi-Fi Cloud v8.6
Presentation transcript:

Sharing Session on HKIEd Wi-Fi Services and Useful Tips Fred Pang 10 Dec 2013

Agenda HKIEd’s Wi-Fi Deployment History Current HKIEd’s Wi-Fi Deployment Recent Changes HKIEd’s SSIDs Wi-Fi Network Topology Wi-Fi Basic Concept Wi-Fi Limitations

Agenda (cont’d) Wi-Fi Security Challenges Recent Wi-Fi Usage Wi-Fi Troubleshooting Tips for using Wi-Fi in HKIEd Some tools for troubleshooting Future Demo ( WiFi Analyzer ) Q & A

HKIEd’s Wi-Fi Deployment History Cisco “Fat” APs in Campus ( before 2006 ) Aruba “Thin” APs in Town Center ( 2006 ) Aruba “Thin” APs in Main Campus ( 2007 ) Cisco “Thin” APs in Hostel ( 2010 )

HKIEd’s Wi-Fi Deployment History (I) Cisco “Fat” APs in Campus ( before 2006 ) Supports b ( Max 11Mbps ) only Supports OPEN or WEP only Supports 1 SSID per AP Hard to manage Installed Temporarily Installation on per-request basis Poor roaming capabilities

HKIEd’s Wi-Fi Deployment History (II) Aruba “Thin” APs in Town Center ( 2006 ) and Main Campus ( 2007 ) Supports a/b/g ( Max 54Mbps ) Supports OPEN, WEP, WPA ( TKIP ) and WPA2 ( AES ) Supports Multiple SSIDs Centralized Management Permanent Installation Better roaming capabilities

HKIEd’s Wi-Fi Deployment History (III) Cisco “Thin” APs in Hostel ( 2010 ) Supports a/b/g/n ( Max 300Mbps ) Supports OPEN, WEP, WPA ( TKIP ) and WPA2 ( AES ) Supports Multiple SSIDs Centralized Management Permanent Installation Better roaming capabilities

Current HKIEd’s Wi-Fi Deployment More than 700 APs installed to both Main Campus ( ~ 350 APs ) and Hostel ( ~ 350 APs ) Some main campus areas support a/b/g/n – Learning commons, Canteen, All Library area Some main campus and Hostel areas support “Spectrum analysis” – not only monitor Wi-Fi signal

Recent Changes (I) Upgraded our Aruba controllers for Main Campus to support n APs Provided a dedicated 300Mbps ( Local ) + 160Mbps ( International ) Link ( via Wharf T&T ) for hostel wired and wireless users Reduced no. of SSIDs in Main Campus and Hostel Changed hostel’s SSIDs to “Hostel” and “HostelGuests”

Recent Changes (II) Fine-tune transmission power ( Tx ) to reduce co-channel interference Increased “Arp cache” to support more users in firewall Removed lower data rate support ( 1Mbps, 2Mbps and 5.5Mbps ) Enabled “Band Steering/Select” to help wireless clients to use a/an ( 5GHz )

Recent Changes (III) Removed “Rogue” APs in some areas such as Pacific Coffee, MIT which might interfere with our signal Installed airwave to locate “Rogue” APs and for clients troubleshooting Self-developed monitoring tool for WiFi troubleshooting Upgrade ALL APs in Library area to support both AN & GN Removed support of b clients Deployed 5 APs in C-LP-11 to support 600 people to access internet for teaching purpose simultaneously

HKIEd’s SSIDs SSIDLocationEncryptionAuthentication HKIEd All Main Campus Area WPA(TKIP)/WPA2(AES) 802.1x HKIEdGuests/VPN All Main Campus Area OPEN Captive Portal eduroam All Main Campus Area WPA(TKIP) 802.1x Universities WiFi Only G/F Main Campus Area WPA(TKIP)/WPA2(AES) 802.1x PCCW Only G/F Main Campus Area OPEN Captive Portal PCCW1x Only G/F Main Campus Area WPA(TKIP)/WPA2(AES) 802.1x Y5ZONE Only G/F Main Campus Area OPEN Captive Portal Hostel All Hostel Area WPA(TKIP)/WPA2(AES) 802.1x HostelGuests All Hostel Area OPEN Captive Portal Quarter All Hostel Area WPA(TKIP)/WPA2(AES) 802.1x

Wi-Fi Network Topology (Main Campus) h-r2a h-r3 Traffic Mgmt/ IPS/ firewall Core Network Access Point Clients HARNET Primary Link HARNET Secondary Link Wireless Controllers ( Aruba ) 2.4/5GHz Border Routers

Wi-Fi Network Topology (Hostel) h-r2a h-r3 Core Network Access Point Clients Wharf T&T 300Mb (Local) 160Mb ( International ) Link Wireless Controllers ( Cisco ) 2.4/5GHz Traffic Mgmt/ IPS/ firewall Border Routers

Wi-Fi Basic Concept (I) Channel 2.4GHz band (only 3 channels have non-overlapping frequency )

Wi-Fi Basic Concept (II) Channel 5GHz band ( 23 channels have non- overlapping frequency )

Wi-Fi Limitation (I) Some points you might need to know:- “DATA RATES” quoted in the Wi-Fi specifications refer to the raw radio symbol rate, NOT the actual TCP/IP throughput rate. The rest is called protocol overhead. A good rule of thumb: the practical TCP/IP throughput is about HALF the data rate. For example, a 54 Mbps a link has a maximum practical throughput of roughly 25 Mbps.

Wi-Fi Limitation (II) Type of Interferences Co-Channel Interference (CCI) Adjacent Channel Interference (ACI)

Wi-Fi Limitation (III) Co-Channel Interference (CCI)

Wi-Fi Limitation (IV) Adjacent Channel Interference (ACI)

Wi-Fi Limitation (V) Non-Wi-Fi Interference Sources

Wi-Fi Security (I) Implement the following safeguards Ensure your operating system is fully patched Verify antivirus software has latest virus definition updates Update 3 rd party software ( like Adobe reader and MS Office )

Wi-Fi Security (II) Avoid to connect “OPEN” ssid in public area Avoid to connect “UNKNOWN” ssid Select better wireless network that use some form of encryption ( WPA2/ WPA/ WEP ) HTTPS/SSL Avoid to perform any kind of banking activity/ financial transaction while connected to a PUBLIC hot spot

Challenges (I) Upgrading every Wi-Fi access point to support n in the 2.4 and 5 GHz band in main campus Continuing to expand the number of access points in high user areas to help alleviate wireless congestion Deploying access points that are capable of detecting interference from outside sources

Challenges (II) continuing to work with our wireless vendor (Aruba and Cisco) to improve our wireless services maintaining a close relationship with our Departments in order to continue to improve wireless service to staff and students performing thorough Wi-Fi capacity and coverage assessment surveys periodically to ensure the appropriate deployment of wireless access points

Recent Wi-Fi Usage

Wi-Fi Troubleshooting (I)

Wi-Fi Troubleshooting (II) User Issues Can’ t see SSID Can’ t associate Can’ t authenticate Limited internet access Poor performance Dropped connections

Wi-Fi Troubleshooting (III) Can’ t see SSID Outside the coverage of an AP? AP down? Connected to LAN? Manual disable wireless interface? Driver issue?

Wi-Fi Troubleshooting (IV) Can’ t associate Wrong setting? ( OPEN, WEP, WPA, WPA2 ) Rogue AP?

Wi-Fi Troubleshooting (V) Can’ t authenticate Wrong user name? Wrong Authentication Method? Wrong password? Changed password?

Wi-Fi Troubleshooting (VI) Limited internet access Hardcoded IP address? IP used up? DHCP server down?

Wi-Fi Troubleshooting (VII) Poor performance Interference? Too many users?

Wi-Fi Troubleshooting (VIII) Dropped connections OS/Firmware/Driver not update?

Some tools for troubleshooting (I) Wi-Fi Analyzer ( Android ) inSSIDer ( WinXP/Vista/Win7/Win8 ) speedtest.ofca.gov.hk ping ( Notebook/Netbook/Desktop )

Some tools for troubleshooting (II) WiFi Analyzer ( Android )

Some tools for troubleshooting (III) inSSIDer ( WinXP/Vista/Win7/Win8 )

Some tools for troubleshooting (IV) speedtest.ofca.gov.hk

Some tools for troubleshooting (V) “Ping” C:\>ping Pinging [ ] with 32 bytes of data: Reply from : bytes=32 time=405ms TTL=50 Reply from : bytes=32 time=412ms TTL=50 Reply from : bytes=32 time=401ms TTL=50 Reply from : bytes=32 time=409ms TTL=50 Ping statistics for : Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 401ms, Maximum = 412ms, Average = 406ms C:\>

Some tools for troubleshooting (VI)

Tips for using Wi-Fi in HKIEd (I) Do not predicate time sensitive activities on use of Wi-Fi Turn off unnecessary clients Encourage the use of n (5 GHz) clients Encourage to update wireless drivers or OS patches Encourage to use ssid “HKIEd”, “Hostel” and “Quarter” for better security protection

Tips for using Wi-Fi in HKIEd (II) Be considerate! Not to set up Rogue AP or tethering in campus or hostel area

Future (I) ac Fifth generation Wi-Fi Uses 5Ghz frequency band only 3x times faster Better video and online gaming experience Supports multi-user MIMO

Future (II)

Demo ( using Android WiFi Analyzer )

Q & A

Wi-Fi still doesn't work? Get walk-in help at IT Help Desk ( Office Hour ) Contact IT Help Desk at ( Office Hour ) us at

Thank You Fred Pang Computer Officer

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.