+ Post New Thread
Page 5 of 6 FirstFirst 123456 LastLast
Results 61 to 75 of 85
How do you do....it? Thread, Bring your own device the future? in Technical; ...
  1. #61

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,172
    Thank Post
    868
    Thanked 2,699 Times in 2,288 Posts
    Blog Entries
    11
    Rep Power
    772
    Quote Originally Posted by CyberNerd View Post
    New record.
    A yr10 girl just brought in a 7" Polaroid android tablet.
    It cost £80
    Connected instantly to wi-fi and immediately synchronised all of her schoolwork (google docs), her email and her calendar.
    You could get the power adapter for it here for that, I know it probably charges off any usb port, I'm taking that into account.

  2. #62

    SYNACK's Avatar
    Join Date
    Oct 2007
    Posts
    11,172
    Thank Post
    868
    Thanked 2,699 Times in 2,288 Posts
    Blog Entries
    11
    Rep Power
    772
    Oh and before I forget, I must spend wayyyyy to much time on here

    Post count:

  3. #63

    Join Date
    Dec 2009
    Location
    london
    Posts
    105
    Thank Post
    30
    Thanked 6 Times in 6 Posts
    Rep Power
    11
    [QUOTE=GrumbleDook;881523]@Roberto and @CyberNerd
    I am asking these questions to try to pin point some stuff to take into a discussion on another forum (ok ... LinkedIn) looking at the legal aspect of BYOD. The discussion is a tad lengthy at the moment around Risk Assessment and Competent Person ... so I am trying to gather a few more examples of why and how schools have made certain decisions and who in those schools have made them. Some responses when the Qs have been asked elsewhere have indeed been all about the shiny and hype, and it is good to see the quick response from @CyberNerd.

    Is that forum open to anyone Grumbledook?

  4. #64
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,765
    Thank Post
    898
    Thanked 417 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    87
    Quote Originally Posted by 10101010 View Post
    Which Aruba do you have, I have a 3600 controller and we use the captive portal to authenticate using ad credentials
    Yes we have the 3600.

    How did you set this up?

  5. #65

    Join Date
    Dec 2009
    Location
    london
    Posts
    105
    Thank Post
    30
    Thanked 6 Times in 6 Posts
    Rep Power
    11
    what OS version you on - can't remember when, but I needed to upgrade OS to get this to work. I'm currently on 6.1.3.4.
    I created an LDAP server on the Aruba config (see below)
    On the LDAP server (2008R2) under Network Policy Server I created a policy to allow a specific AD Group combined with a NAS port type (Wirless IEEE 802) to allow only permitted users to logon.

    Capture.JPG

  6. #66
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,765
    Thank Post
    898
    Thanked 417 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    87
    We actually have a 3400 controller here after I checked.

    Also on firmware 5.0.4.7 due to us using old 61 AP's

    Thanks though, good to know it is possible in the future.

  7. #67

    Join Date
    Feb 2008
    Posts
    105
    Thank Post
    0
    Thanked 9 Times in 9 Posts
    Rep Power
    15
    I would be interested what people are using for network access control and making sure devices are complying with AV and update policies.

  8. #68

    Join Date
    Dec 2009
    Location
    london
    Posts
    105
    Thank Post
    30
    Thanked 6 Times in 6 Posts
    Rep Power
    11
    At the time I couldn't afford one - looked seriously at Network Sentry 500VM Network Control and Application Server, but best part of 20k + ongoing so opted not to bother at the moment. Completely vlan'd off, devices unable to communicate with other devices, Ericom web connect solution used to allow any device to connect to a rdp session via a browser using html 5, so not overly concerned about updates and av at the moment.

    forgot to say just about to trial aruba clearpass - will update post after trial.

    NAC - the other way might just be to upgrade dhcp server to 2012 which allows you to filter ip's based on MAC for a specific vlan.
    Last edited by 10101010; 6th November 2012 at 02:01 PM.

  9. #69

    GrumbleDook's Avatar
    Join Date
    Jul 2005
    Location
    Gosport, Hampshire
    Posts
    9,935
    Thank Post
    1,341
    Thanked 1,784 Times in 1,107 Posts
    Blog Entries
    19
    Rep Power
    595
    Quote Originally Posted by 10101010 View Post
    Is that forum open to anyone Grumbledook?
    The group owner has set it as a closed group on LinkedIn but any member of the group can invite you in. If you are on LinkedIn then drop me line and I'll invite you in (as can a number of others).

  10. #70
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,765
    Thank Post
    898
    Thanked 417 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    87
    Just to update this I think we are finally getting to a good solution.

    I tried implementing a transparent proxy but it slowed things down too much for normal users as they were filtered twice.

    So what we have done is order a new Talk Talk line with IP based filtering, they call it "homesafe". I now have the aruba guest wireless using that as a gateway to a seperate talk talk internet line. It works quite well and seperates the guest users from the main network over a VLAN.

    Basically I have built an entire 2nd network for this but hopefully it works in the real world.

    Time to find out....
    Last edited by zag; 20th November 2012 at 03:24 PM.

  11. #71


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339
    Quote Originally Posted by zag View Post
    Just to update this I think we are finally getting to a good solution.

    I tried implementing a transparent proxy but it slowed things down too much for normal users as they were filtered twice.

    So what we have done is order a new Talk Talk line with IP based filtering, they call it "homesafe". I now have the aruba guest wireless using that as a gateway to a seperate talk talk internet line. It works quite well and seperates the guest users from the main network quite well over a VLAN.

    Basically I have built an entire 2nd network for this but hopefully it works in the real world.

    Time to find out....

    A good solution. With redundant leased lines you've got no excuse not to put it all in the cloud now

  12. #72
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,765
    Thank Post
    898
    Thanked 417 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    87
    Project is complete!!

    Guest network SSID [complete]
    Captive Portal [complete]
    Acceptable usage policies [complete]
    Portal branding [still to do]
    New internet line installed and activated [complete]
    Route VLAN to the new gateway and internet line [complete]
    Set IP based filtering (thankyou talk talk for being innovative in this area) [complete]

    So when I try to access a naughty site we now get this
    screen.png

    And can manage it all on-line without any extra hardware like this:
    Image1.jpg

    So basically we are nearly there. The only question is do we create the users manually or link them to the active directory.
    Last edited by zag; 22nd November 2012 at 01:01 PM.

  13. #73
    IrritableTech's Avatar
    Join Date
    Nov 2007
    Location
    West Yorkshire
    Posts
    799
    Thank Post
    84
    Thanked 173 Times in 142 Posts
    Rep Power
    65
    Thanks for the update @zag. How does talk talk system deal with monitoring? If a pupil hits a block, is it recorded, flagged?

  14. #74
    zag
    zag is offline
    zag's Avatar
    Join Date
    Mar 2007
    Posts
    3,765
    Thank Post
    898
    Thanked 417 Times in 350 Posts
    Blog Entries
    12
    Rep Power
    87
    Quote Originally Posted by IrritableTech View Post
    Thanks for the update @zag. How does talk talk system deal with monitoring? If a pupil hits a block, is it recorded, flagged?
    No monitoring at all unfortunately. That would be an awesome feature though. I guess it will come in time. This is still all very innovative to be doing it on the IP level.

    But as its a "guest network" is totally out of my hands what they look at. I explained this to SMT as the biggest downside but they insisted it was still a good idea.
    Last edited by zag; 22nd November 2012 at 01:30 PM.

  15. #75

    RabbieBurns's Avatar
    Join Date
    Apr 2008
    Location
    Sydney
    Posts
    5,521
    Thank Post
    1,333
    Thanked 469 Times in 306 Posts
    Blog Entries
    6
    Rep Power
    199
    Quote Originally Posted by zag View Post
    I've noticed in Australia and New Zealand this is quite common, any ideas what it hasn't become popular over here?
    An article in todays paper:

    Schools dilemma on BYO technology

    I wonder how to get hold of the original Dell report?

SHARE:
+ Post New Thread
Page 5 of 6 FirstFirst 123456 LastLast

Similar Threads

  1. Bring Your Own Device - Accessing Documents
    By MyBrainHurts in forum Wired Networks
    Replies: 7
    Last Post: 30th May 2012, 02:02 PM
  2. Bit of help with setting up Bring Your own devices
    By alfatec in forum Internet Related/Filtering/Firewall
    Replies: 5
    Last Post: 1st February 2012, 12:03 PM
  3. Bring your own device? Do you log which sites are visited?
    By kennysarmy in forum Internet Related/Filtering/Firewall
    Replies: 12
    Last Post: 24th January 2012, 08:05 PM
  4. Students bringing their own devices in
    By stevenr in forum How do you do....it?
    Replies: 3
    Last Post: 23rd August 2010, 09:12 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •