Psk on Aaron's Worthless Words https://a996c8ee.aww-3cz.pages.dev/tags/psk/ Recent content in Psk on Aaron's Worthless Words Hugo en Sat, 13 Feb 2010 00:00:00 +0000 ONT Notes - WLAN Management https://a996c8ee.aww-3cz.pages.dev/posts/2010/02/ont-notes-wlan-management/ Sat, 13 Feb 2010 00:00:00 +0000 https://a996c8ee.aww-3cz.pages.dev/posts/2010/02/ont-notes-wlan-management/ <p><strong>Elements of Cisco Unified Wireless Network</strong></p> <ul> <li>Client devices - Cisco compatible extensions on WLAN clients</li> <li>Mobility platform - allows configuration of LWAPs through WLCs</li> <li>Network unification - integration into the rest of the network with WLCs doing RF management, IPS, etc.</li> <li>World-class network management - centralized management through WCS</li> <li>Unified advanced services - supports advanced technologies and threat detection</li> </ul> <p><strong>WLAN Implementation</strong></p> <p>Autonomous and LWAP</p> <table> <thead> <tr> <th>Category</th> <th>Autonomous</th> <th>LWAP</th> </tr> </thead> <tbody> <tr> <td>Access Point</td> <td>Autonomous APs</td> <td>LWAPs</td> </tr> <tr> <td>Control</td> <td>Individual configurations</td> <td>Configuration through WLCs</td> </tr> <tr> <td>Dependency</td> <td>Independent operations</td> <td>Dependent on WLC</td> </tr> <tr> <td>Management</td> <td>CiscoWorks WLSE and WDS</td> <td>WCS</td> </tr> <tr> <td>Redundancy</td> <td>Through APs</td> <td>Through WLCs</td> </tr> </tbody> </table> <p><strong>Wireless LAN Services Engine (WLSE)</strong></p> ONT Notes - 802.1x and Encryption on LWAPs https://a996c8ee.aww-3cz.pages.dev/posts/2010/02/ont-notes-802-1x-and-encryption-on-lwaps/ Fri, 12 Feb 2010 00:00:00 +0000 https://a996c8ee.aww-3cz.pages.dev/posts/2010/02/ont-notes-802-1x-and-encryption-on-lwaps/ <ul> <li>Traditional WLAN weaknesses <ul> <li>SSID for security</li> <li>Vulnerable to rogue APs</li> <li>MAC filtering for security</li> <li>WEP</li> </ul> </li> <li>WEP weaknesses <ul> <li>Disribution of static keys is not scalable</li> <li>WEP keys can be cracked easily</li> <li>Vulnerable to dictionary attacks</li> <li>No protection against rogue APs</li> </ul> </li> <li>Benefits of 802.1x <ul> <li>Centralized authentication through Radius via AAA</li> <li>Mutual authentication between client and auth server</li> <li>Can use multiple encryption algorithms (AES, WPA, TKIP, WEP)</li> <li>Automatic dynamic WEP keys</li> <li>Roaming</li> </ul> </li> <li>Requirements of 802.1x <ul> <li>EAP-capable client (supplicant)</li> <li>802.1x-capable AP (authenticator)</li> <li>EAP-capable auth server</li> </ul> </li> </ul> <p>Table 1. Characteristics of the EAP variants</p>