+ Post New Thread
Results 1 to 3 of 3
Wireless Networks Thread, Theoratical question regarding an Ad Hoc network in Technical; I'm currently running a certificate based wireless network (RADIUS server) and I want to automate the process for students in ...
  1. #1

    Join Date
    Feb 2014
    Posts
    17
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Theoratical question regarding an Ad Hoc network

    I'm currently running a certificate based wireless network (RADIUS server) and I want to automate the process for students in preparation for about 200 new iPads.

    Basically I want to create a separate network to my own that's unauthenticated and then through that I'll have them go to a local IIS server to download the certificate the need to get on the real network (aka internet access to them).

    I was thinking of doing this with my WDS server that's already on it's own network, has DHCP installed as well so I could in theory just plug in a WAP and it'll get a DHCP address and start broadcasting.

    Now for the question:
    Do you think this WAP broadcasting a completely different network/IP address would effect the other WAPs in the area? I'm worried about co-channel interference more than anything as this is controlled by our Cisco Wireless Lan Controller on the primary network but obviously it won't be doing the same for something it can't see.

    The WAPs in question are all Cisco's.

    Thoughts?

  2. #2

    Join Date
    Mar 2014
    Location
    -
    Posts
    25
    Thank Post
    2
    Thanked 4 Times in 2 Posts
    Rep Power
    1
    Rather than setup another AP for this, why not create another SSID on the existing CISCO APs - that SSID correlates to a dedicated VLAN with it's own DHCP pool, you could then setup a catch-all captive portal (using DNS Redirector running on the same Windows box would be one way) this way no matter what website you try to go to on that VLAN, you would always be "stuck" at your IIS site with instructions for installing the cert.

  3. #3

    Join Date
    Jan 2014
    Location
    NZ
    Posts
    4
    Thank Post
    0
    Thanked 0 Times in 0 Posts
    Rep Power
    0
    Original Question Answer: You could do this and technically not have a lot of issues, however you would have to obviously implement this setup, it would only be accessible from one place (surrounding the AP) and you will add interference to the channels used by the AP. The amount of co-channel interference would depend on your current density of wireless coverage/ap's and whether you are broadcasting on 2.4ghz or 5ghz.

    You could either go for an "onboarding" solution which does exactly this but with some further automation which various vendors offer. Or as the previous user has stated. have a captive portal which has either onboarding instructions.

    I would also recommend that you put this on a separate VLAN and DHCP scope (as with an open network a lot of devices will autojoin and take your valid IP's) also implement some firewall rules to deny access to other LAN devices and make it non route-able etc.

    In regards to the captive portal you can customise these usually so you could remove the login forms etc and just attach the data that you need.

    Hope my post makes sense?
    Last edited by Phake; 4th April 2014 at 06:28 AM.

SHARE:
+ Post New Thread

Similar Threads

  1. Connecting a Windows network to an RM managed Network
    By Scruff in forum Wireless Networks
    Replies: 4
    Last Post: 8th February 2010, 11:53 PM
  2. Question regarding screensavers
    By malcolm_kapadia in forum Windows
    Replies: 4
    Last Post: 20th October 2009, 10:21 AM
  3. Securing a WLAN question at an interview
    By ranj in forum Educational IT Jobs
    Replies: 6
    Last Post: 24th December 2007, 05:33 PM
  4. Replies: 0
    Last Post: 9th October 2007, 12:25 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •