tag:blogger.com,1999:blog-8901335421781202492024-02-19T01:17:13.182-06:00Sam's wirelessThe place I go announce tidbits and thought about wireless networks in general. Primarily about 802.11 technologies but the occasional something else slips in...Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.comBlogger24125tag:blogger.com,1999:blog-890133542178120249.post-20104150790345597862011-03-26T13:08:00.002-05:002011-03-26T13:09:15.546-05:00New Blog site address!Time for a new blog home! The new site is at <a href="http://sc-wifi.com/">http://sc-wifi.com/ </a>. If you like the place, let me know!<br />
<div> -Sam</div>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-41902409161777216492011-03-19T18:17:00.000-05:002011-03-19T18:17:15.113-05:00Hands on with the Metageek Wi-Spy DBx<div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;">MetaGeek's Wi-Spy DBx is a small form factor spectrum analyzer which gives you visibility into the 2.4 and 5GHz spectrums allowing you to readily identify sources of interference that may be present. I was fortunate enough to spend some time with Ryan Woodings and Trent Cutler from MetaGeek while at the Wireless Tech Field day recently and they gave us the grand tour of their product lineup - hardware and software! Those of you familiar with WiFi technologies (802.11a/b/g/n) know that the frequencies they run in are unlicensed by regulatory bodies (here in the US, that means the FCC). This means that anyone can do anything there and they commonly do! People running non-WiFi devices in the 2.4 and 5GHz spaces can often cause interference for wireless networks causing poor performance, intermittent connectivity, or outright failures of wireless networks - especially in the very crowded 2.4Ghz range. Moving beyond the insight provided by such tools as inSSIDer which can only tell you about WiFi specific data, the Wi-Spy DBx allows you to visualize and identify non-wifi signals such as bluetooth devices, microwave ovens, analog video cameras, and other such obnoxious or potentially damaging signals.</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px; min-height: 14.0px;"><br />
</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;">MetaGeek offers a few devices and knowing what you're looking for in what frequencies is important to selecting the right one. The Wi-Spy 900 is targeted at those looking for devices in the 900MHz range which is not useful to those of us living in the WiFi space (2.4 and 5GHz). Most readers won't be interested in this but it's included for completeness. The other three devices that are relevant to our WiFi space are the WiSpy 2.4i, WiSpy 2.4x and the WiSpy DBx. The two 2.4 units are fixed frequency (2.4GHz only). The 2.4i model comes with integrated antennas and the 2.4x comes with a detachable antenna (more on this feature shortly). Both of these units are appropriate for people looking at devices that only support 802.11b/g/n(2.4). The WiSpy DBx allows us to look into the same 2.4GHz spectrum as the i/x models, but also includes visibility into the 5GHz range for those of us looking at 802.11a/b/g/n across the board. With the prevalence of 802.11a devices in many 'business grade' laptops and with many 802.11n deices supporting the cleaner 5Ghz frequency, the DBx allows us much greater flexibility and insight into those spaces. Being a very small USB-connected device, it's about the size of 2 AA batteries, includes an external RP-SMA connector, and a dipole antenna for instant 'out of the box' usability. The RP-SMA connector and antenna configuration allows you to remove the included antenna and attach an optional directional 'device finder' antenna. The intention here is that if you're trying to track down an obnoxious source of interference, you can use the external panel antenna to sweep back and forth in an area to see where the signal gets stronger or weaker. Using this method, you can get much closer to ferreting out anything that avails you! </div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px; min-height: 14.0px;"><br />
</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;">MetaGeek offers 4 main applications for using their WiSpy devices, the main Chanalyzer application, and Lite, Pro, and Lab versions allowing for a diverse lineup for most any need. The Lite application is for the 2.4i hardware and is otherwise not a part of this review. The main Chanalyzer application is currently at version 4 and is included with the 2.4x and DBx hardware. The bundled application gives you a jumping off point for getting started with spectrum analysis and gives you the familiar 'squiggly line' interface as well as some pretty nice approaches to displaying data. The Max/Min and Current display views give you a one-stop glance and utilization in your spectrum for easy to digest and understand information. Chanalyzer also gives you the ability to record data for future review (or submittal back to MetaGeek!) is a feature that allows you to take a snapshot of where you're at and review it later offline or take it to a friend that may be more fluent in spectrum analysis. With a database of silhouettes to overlay ontop of your view, you basically mix and match patterns of what is live in your environment against known or common interferes. This gives you a pretty straightforward way to identify the type of devices you're looking for so you can narrow down if you should be hunting high for video cameras or low for microwaves.</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px; min-height: 14.0px;"><br />
</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;">The Chanalyzer Pro application gives you richer insight into your environment with the addition of a waterfall view along the left pane of the application. You use this to navigate through time as a running tally over the length of a capture. The addition of the new duty cycle view gives you a straightforward view of 'consumed airspace' and several other features such as device finding (recommend using the device finder antenna attachment for this!) as well as a very flexible report builder round out this application for those looking to 'step up' from the default Chanalyzer application. At $499, those looking to start offering 'commercial grade' reports and services to customers, this is right up your alley. As an additional incentive, MetaGeek offers a $99 savings when purchased with the DBx hardware so if you're thinking this is where you're going to end up, and you can stomach the extra $300, keep that in mind.</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px; min-height: 14.0px;"><br />
</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;">Those of you looking for the geek-out application will be interested to know that MetaGeek is also offering Chanalyzer Lab which allows you to fidget with the hardware knobs inside the analyzer hardware. This application isn't for everyone but is indispensable for those looking for much more granularity into frequency and amplitude data. MetaGeek has made this application quite affordable at $99 so those of you looking for an environment rich in tweaking and tuning, or if you're simply more interested in how RF works and want to dig deeper into frequency analysis, this application is compatible with the 900x, 2.4x and DBx hardware.</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px; min-height: 14.0px;"><br />
</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;">All three applications I tested (Chanalyzer, Pro, and Lab) required no obnoxious considerations and were very straightforward to install. There were no special drivers required on my Windows 7 VM running in Fusion on a MacBook Pro. In this configuration, the Windows OS has no direct access to the wireless card in my MacBook so I was unable to retrieve local WiFi data while using the product. Those using BootCamp to natively run Windows on your MacBook shouldn't run into this problem but us Fusion/Parallels users are out of luck on this particular featureset until we get an OS X native version of the Chanalyzer applications. Those familiar with auto-device classification found in higher end PC based spectrum analyzers will find this particular feature missing from the Chanalyzer lineup. This ability to 'set it and forget it' to gather a running tally of interferes is one of the most significant features missing from an otherwise fairly complete product lineup. Given that these other analyzers typically range into the $2-3k+ range, it's entirely plausible to find compromise for users looking for spectrum analyzers and can be flexible with their requirements.</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px; min-height: 14.0px;"><br />
</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;">In all, the DBx is an excellent product for the vast majority of those people looking to get data about their 2.4 and 5GHz spectrums. The flexible application approach give users the ability to make a minor investment upfront in the hardware and grow as they can justify it. While the Wi-Spy may not be appropriate for those few outstanding enterprise environments that require additional integration or those looking to automatically classify sources of interference, it is a perfect tool for those environments that don't have newer infrastructure devices that can give them insight into their spectrum but don't want to break the bank on some of the 'big-boy' analyzers. The folks at MetaGeek have done a graceful job of putting some very powerful tools well within the reach of those that are looking to jump into the wireless game or are looking to augment their personal toolkit with gear that does something that would otherwise be unavailable to them.</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px; min-height: 14.0px;"><br />
</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;"><a href="http://www.metageek.net/">MetaGeek can be found here.</a></div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;"><a href="http://www.gestaltit.com/">GestaltIT can be found here.</a></div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px; min-height: 14.0px;"><br />
</div><div style="font: 12.0px Helvetica; margin: 0.0px 0.0px 0.0px 0.0px;"><i>Full disclosure: I was a delegate for the first ever Wireless Tech Field Day event organized by Stephen Foskett and GestaltIT This event was sponsored by Meta-Geek as well as other presenters including payment of accommodations for all delegates. Evaluation product was distributed to delegates for hands-on exposure for this review. Professionally, I work for a VAR which provides services for industry leading technology manufacturers. The views expressed on this blog are my personal opinion and do not necessarily reflect opinions my employer.</i></div>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com3tag:blogger.com,1999:blog-890133542178120249.post-14283772029085499232011-02-27T17:05:00.000-06:002011-02-27T17:05:32.391-06:00Who said 5GHz was 'clean'? :)Here I am at home today being a good survey engineer and making sure all of my tools are in proper working order prior to going out and having to rely on them for the week when all of a sudden, I'm presented with the following anomaly when I'm exercising my trusty Spectrum Analyzer:<br />
<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhESh-EiCFUd5qZkxP4fZcorrepfzV8clUUNlKzhyphenhyphencAycuTr4DNkrG3MhqoY7WFFjwbe7yjQDYxn211MuVdMy_CAIJRXGjS3HJgQpb2MWLDz0K1EjJuWzvvSSI1aAwfoK5VKyGcpgoKnUQ/s1600/5GHz.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhESh-EiCFUd5qZkxP4fZcorrepfzV8clUUNlKzhyphenhyphencAycuTr4DNkrG3MhqoY7WFFjwbe7yjQDYxn211MuVdMy_CAIJRXGjS3HJgQpb2MWLDz0K1EjJuWzvvSSI1aAwfoK5VKyGcpgoKnUQ/s320/5GHz.png" width="320" /></a></div><br />
Those of you that are familiar with Spectrum Analysis in general usually expect to see something this bad (high duty cycle) in the 2.4GHz spectrum but not the mid-5GHz spectrum! Having just reloaded my laptop with Windows 7 and installed Service Pack 1, I was in the 'let's test it all' mode to make sure nothing unexpected happens. At this point, I was pretty blindsided by the obnoxious noise happening and the 'Generic - Fixed Frequency' tag wasn't helping me any. At a loss for what this could be since I live an acre away from my nearest neighbor and several miles from the nearest airport, I pinged a few of my friends. They suggested the usual suspects - MRI machine, <a href="http://www.cisco.com/en/US/prod/collateral/routers/ps272/data_sheet_c78-647116_ps11451_Products_Data_Sheet.html">TDWR</a>, neighbors, etc all of which I explained away by location. Being that TDWR is in the 5470-5725 frequency, I changed my card over to 5.725 - 5.850 and after some time got this equally disturbing read:<br />
<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh10HTv1q-QLuC7lV9Zh4hlZNl-OTqWrKRfkGKPbgBoGY21xmU9xYw-g4UhNoJb22BxqAuwmNOCcHbrnb_XcZlgzAdGdWAYhrg8MEiPdqckYeo1vPw8CF_n5azt8fNGmg6spNrYfRlPzUw/s1600/even+worse.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="200" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh10HTv1q-QLuC7lV9Zh4hlZNl-OTqWrKRfkGKPbgBoGY21xmU9xYw-g4UhNoJb22BxqAuwmNOCcHbrnb_XcZlgzAdGdWAYhrg8MEiPdqckYeo1vPw8CF_n5azt8fNGmg6spNrYfRlPzUw/s320/even+worse.png" width="320" /></a></div><br />
At this point, I started to suspect my Spectrum Analyzer since I was using a non-Cisco branded Spectrum Analyzer card with the Cisco Spectrum Expert software (the card I was using had the Cognio components that Cisco purchased and re-branded as their own). So I grabbed a copy of the card manufacturers software to rule out in compatibility and I got the same results.<br />
<br />
At the end of the day, I was able to swap in a Cisco branded SA card and my results normalized. Clearly I have a flakey (old) SA card that was giving me improper readings. Lessons learned:<br />
<br />
<ul><li>Always test your tools and keep them in good working order</li>
<li>Don't assume that your tools are telling you the truth. If you see something suspect, dig into it and validate against another source</li>
</ul><div><br />
</div><div>Now I'm sure that I have a good card in hand I can go confidently into my week and knock this survey out of the park!</div>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com2tag:blogger.com,1999:blog-890133542178120249.post-45201535653416437852011-02-27T16:18:00.000-06:002011-02-27T16:18:36.598-06:00New survey rig!So, it's been a bit since I've been out on a survey proper (not sure if that's good or bad) and a while back I got some new components in for my rig. I was debating on retrofitting my trusty black Pelican 1510 case with new foam or getting a new one. Never one to spend needlessly, I trickle-down upgraded someone else with my old case and opted for a shiny new tan colored case - As far as I know, I'll be the only one on our survey teams for the foreseeable future with a tan case so it should make it easier to tell mine apart. :) So, a new <a href="http://www.pelican.com/cases_detail.php?Case=1510">Pelican case</a>, a new battery for my Terrawave survey pack, a shiny new Cisco 1142, and some various other bits an pieces all get massaged into the pick-and-pluck foam of the kit. Revisiting the way I hang my AP during the survey was something I've been meaning to address for quite a while. I opted for the 2x 90 degree painter pole arms and a drywall finishing brush (sans bristles) and some good old fashioned drilling to assemble a pretty graceful looking mount:<br />
<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg2xnpp3U_OItDBbDSmC7AGzA9cMgKPgjRlsvpYDDjfM9x29QgAQsdE3QYV0iyq5In0GL-EVTiRqNbxCPc0m9PZi34nk6O0DhmZVCDXJD2gNzvROKu8sAYJQI6JOejFFtA7iQSWJUjd10M/s1600/IMG_0596.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg2xnpp3U_OItDBbDSmC7AGzA9cMgKPgjRlsvpYDDjfM9x29QgAQsdE3QYV0iyq5In0GL-EVTiRqNbxCPc0m9PZi34nk6O0DhmZVCDXJD2gNzvROKu8sAYJQI6JOejFFtA7iQSWJUjd10M/s320/IMG_0596.jpg" width="239" /></a></div><br />
The intermediary piece attached to the factory mount bracket is the brush head that I picked up from The Home Depot in their drywall finishing section:<br />
<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhxEhj8w3_rdSdiVJlHckZyttDjRADgZwP0BD4hRatRQx6IpthPw-HNJ5rNOnQfO3rLv1CnkPcfuY3EtwmOtL_Iyl1PlJAL3J13O6mbdaQDNEYdBr-5yWi1tZnoieJpT3bHyjU6aBXE64Q/s1600/IMG_0600.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhxEhj8w3_rdSdiVJlHckZyttDjRADgZwP0BD4hRatRQx6IpthPw-HNJ5rNOnQfO3rLv1CnkPcfuY3EtwmOtL_Iyl1PlJAL3J13O6mbdaQDNEYdBr-5yWi1tZnoieJpT3bHyjU6aBXE64Q/s320/IMG_0600.jpg" width="239" /></a></div><br />
<a href="http://www.homedepot.com/h_d1/N-5yc1v/R-100393316/h_d2/ProductDisplay?storeId=10051&keyword=62-005&jspStoreDir=hdus&Nu=P_PARENT_ID&navFlow=3&catalogId=10053&langId=-1&ddkey=Search">Home Depot - Drywall Stippling Brush</a><br />
<br />
After ripping out the bristles, a choice few holes later and my mount was ready! Next to place the battery and AP + mount in the bottom of the Pelican case and outline the pick-and-pluck:<br />
<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi37pbqPQskn2xCnVjo8DI4eChJaM9pqjMrAUufp76HTFXp5QrZk_jRg2URoxjF1Yozf6TqQzbMHV1quyExNh88jIRsCn_QcANC7iytDq2of7WvsGAxEx0Mcxgj2OBr3EMOdNWuo0quTAg/s1600/IMG_0597.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi37pbqPQskn2xCnVjo8DI4eChJaM9pqjMrAUufp76HTFXp5QrZk_jRg2URoxjF1Yozf6TqQzbMHV1quyExNh88jIRsCn_QcANC7iytDq2of7WvsGAxEx0Mcxgj2OBr3EMOdNWuo0quTAg/s320/IMG_0597.jpg" width="239" /></a></div>Here is what the bottom of the Pelican looks like with the components nestled in - I coiled my CAT5 network cable around the mount and laid in the two 90 degree arms:<br />
<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjwr8F7u3RIsoEQEwz0zrfjCUaiHxk9lST7_taK0xwP9qx2KhsYcEOyiMZnl1V38EiotmC92UW_tgWrk9IzdwtngaWPMJCV8Taty0YAJqzE8O9_z7FZwwUs2zvgycCQ7kBcuoW-3lUu0eY/s1600/IMG_0608.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="239" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjwr8F7u3RIsoEQEwz0zrfjCUaiHxk9lST7_taK0xwP9qx2KhsYcEOyiMZnl1V38EiotmC92UW_tgWrk9IzdwtngaWPMJCV8Taty0YAJqzE8O9_z7FZwwUs2zvgycCQ7kBcuoW-3lUu0eY/s320/IMG_0608.JPG" width="320" /></a></div>Add a top layer with some space for my spare laptop batteries, the AC adapter and some survey cards and call it just about done:<br />
<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjWdmEhn5hxHjebbHfdCFQ8ESgj6_M8YtqemNLEhoHyejzbJ1uBDZrM7IaA0NNrgjAKEYCqhuWCMHPdyqrDQaexgKsodnwX-ZWCSKMw-Ga1k6YKy1uajk8KRU-0vdhUdKJUGKcsT8M8ShE/s1600/IMG_0605.JPG" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="239" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjWdmEhn5hxHjebbHfdCFQ8ESgj6_M8YtqemNLEhoHyejzbJ1uBDZrM7IaA0NNrgjAKEYCqhuWCMHPdyqrDQaexgKsodnwX-ZWCSKMw-Ga1k6YKy1uajk8KRU-0vdhUdKJUGKcsT8M8ShE/s320/IMG_0605.JPG" width="320" /></a></div><br />
Now I'm off for a week of surveying!Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com1tag:blogger.com,1999:blog-890133542178120249.post-7758131131624519922011-01-15T15:58:00.000-06:002011-01-15T15:58:25.068-06:00Surveying with a 3502 (followup post)As a followup to my previous post on surveying with Cisco 3502 series Access Points, I've been playing around with a few options that ultimately get the job done. As you may recall, the Cisco 3502i Access Points have different radios in them than then 1142 Access Point making the 1142 an unsuitable substitute for a site survey for those customers looking for a literal real-world picture of what a 3502 deployment will look like. Because I have several customers that won't accept an 1142 substitute survey for a 3502i deployment, I've been wrestling with the best way to get this done.<div> Since there was no autonomous image available, the best alternative has been to join a 3502 up to a controller, put it in H-REAP mode with a static IP address and use the same IP address as the Access Points default gateway. This prevented the AP from feeling stranded and rebooting every 15 minutes (hard to do a survey when that's happening).</div><div> Recently a little birdie from Cisco called me (you know who you are and thanks!) and let me know that the 1262 Autonomous code has been posted to CCO and that since the 1262 and the 3502i/e share radio chipsets, there is a good chance that the Autonomous image would work across all three models. I decided to give it a go and here's what that attempt looked like:</div><div><br />
</div><div>Tools used:</div><div>1) PC with it's IP address set to 10.0.0.2/24</div><div>2) running a TFTP server</div><div>3) the following IOS images from CCO: ap3g1-k9w7-tar.124-25d.JA.tar (6.5M) and ap3g1-rcvk9w8-tar.124-23c.JA.tar (2.3M)</div><div>4) A 3502 Access Point with a local power supply attached to the PC and a console connection to the AP to watch the fun!</div><div><br />
</div><div>To convert to autonomous image:</div><div>Step 1) Duplicate your ap3g1-k9w7-tar.124-25d.JA.tar image (the larger of the two) and rename it to ap3g1-k9w7-tar.default. Place this file in the root of your TFTP server.</div><div>Step 2) Depress the MODE button on your AP and power it up - release the MODE button when the LED on front turns red.</div><div>Step 3) Watch the image download</div><div>It should look something like:</div><div><br />
</div><div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">button is pressed, wait for button to be released...</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">button pressed for 22 seconds</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">process_config_recovery: set IP address and config to default 10.0.0.1</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">process_config_recovery: image recovery</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">image_recovery: Download default IOS tar image tftp://255.255.255.255/ap3g1-k9w7-tar.default</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"><br />
</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"><br />
</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">Unable to create temp dir "flash:/update"</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">examining image...</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">extracting info (283 bytes)</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">Image info:</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Version Suffix: k9w7-.124-25d.JA</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Image Name: ap3g1-k9w7-mx.124-25d.JA</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Version Directory: ap3g1-k9w7-mx.124-25d.JA</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Ios Image Size: 5673472</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Total Image Size: 6502912</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Image Feature: WIRELESS LAN</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Image Family: AP3G1</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Wireless Switch Management Version: 7.0.94.21</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">Extracting files...</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">ap3g1-k9w7-mx.124-25d.JA/ (directory) 0 (bytes)</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">ap3g1-k9w7-mx.124-25d.JA/html/ (directory) 0 (bytes)</span></span></div></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"><omitted></omitted></span></span></div><div><br />
</div><div>Once the image completes downloading, your AP should reboot. At that point, you should have a fully functional 3502i/e Access Point (less Spectrum Expert functionality of course) running autonomous code that you can then use to survey with!</div><div><br />
</div><div>Once you're done with your site survey, if you no longer need your survey AP to be running autonomous code and want to put it back to lightweight mode, you can do the following:</div><div><br />
</div><div><div>To convert to lightweight image:</div><div>Step 1) Duplicate your ap3g1-rcvk9w8-tar.124-23c.JA.tar image (the smaller of the two) and rename it to ap3g1-k9w7-tar.default. Place this file in the root of your TFTP server.</div><div>Step 2) Depress the MODE button on your AP and power it up - release the MODE button when the LED on front turns red.</div><div>Step 3) Watch the image download</div><div>It should look something like:</div></div><div><br />
</div><div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">Waiting for PHY auto negotiation to complete... done</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">Ethernet speed is 1000 Mb - FULL duplex</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">button is pressed, wait for button to be released...</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">button pressed for 21 seconds</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">process_config_recovery: set IP address and config to default 10.0.0.1</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">process_config_recovery: image recovery</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">image_recovery: Download default IOS tar image tftp://255.255.255.255/ap3g1-k9w7-tar.default</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"><br />
</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"><br />
</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">Unable to create temp dir "flash:/update"</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">examining image...</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">extracting info (274 bytes)</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">Image info:</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Version Suffix: rcvk9w8-</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Image Name: ap3g1-rcvk9w8-mx</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Version Directory: ap3g1-rcvk9w8-mx</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Ios Image Size: 2284032</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Total Image Size: 2284032</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Image Feature: WIRELESS LAN|LWAPP|RECOVERY</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Image Family: AP3G1</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"> Wireless Switch Management Version: 7.0.94.21</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">Extracting files...</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">ap3g1-rcvk9w8-mx/ (directory) 0 (bytes)</span></span></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">extracting ap3g1-rcvk9w8-mx/ap3g1-rcvk9w8-mx (2281426 bytes).....................................</span></span></div></div><div><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;"><omitted></omitted></span></span></div><div><br />
</div><div>Once that completes, your AP should be 'back to normal'. If you find any residual config on the AP, once it joins back up to your controller, you may want to do a 'Clear All Config' from the AP page.</div><div><br />
</div><div>Some things to note are:</div><div>1) Most Windows installations will hide your file extensions by default. Don't forget to remove the .tar extension from your file names when you're moving them around else your TFTP server may throw a 'file not found' error.</div><div>2) Watch your console connection. I've seen it ask for the filename of <span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace; font-size: x-small;">ap3g1-k9w7-tar.default</span><span class="Apple-style-span" style="font-family: Times, 'Times New Roman', serif;"> as well as </span><span class="Apple-style-span" style="font-family: 'Courier New', Courier, monospace;"><span class="Apple-style-span" style="font-size: x-small;">c3500-k9w7-tar.default</span><span class="Apple-style-span" style="font-family: Times, 'Times New Roman', serif;">. Just watch for the image name that it's looking for and rename your image accordingly.</span></span></div><div><span class="Apple-style-span" style="font-family: Helvetica; font-size: 12px;"><br />
</span></div>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com14tag:blogger.com,1999:blog-890133542178120249.post-39283950804624382532010-12-19T18:24:00.000-06:002010-12-19T18:24:58.539-06:00Busy weeks! So, it's been a few weeks since I've had a chance to post anything and there's been quite a bit going on! Firstly, I spent a few days in Atlanta coming up to speed on the Mobile Access VE Solution for low-cost indoor cell repeating utilizing your existing CAT5,6,7 cabling. I can't wait to get dug into an install - quite a different mindset from wifi to cellular.<br />
http://www.mobileaccess.com/products-services/p/category/mobileaccessve<br />
<br />
After that, spent a few days in San Jose for the Cisco Partner VT meetings and learned about all sorts of up coming new stuff from Cisco that can't be talked about yet - infact, that's probably the biggest reason that I've been somewhat quiet recently - being wrapped up in NDA style information makes it hard to be social. :)<br />
Contribution to the https://www.myciscocommunity.com/ page netted me a Cisco Cius when they're available. Thanks to Vic Nunes for making that happen!<br />
<br />
Upcoming in March (17th and 18th) is the Wireless Tech Field day in San Jose that I'm quite excited to be a part of! The fine folks over at Gestalt IT that put on the 'regular' Tech Field day have teamed up to host one specifically focused on wireless technologies. I was selected as a delegate and look very forward to my first Field Day. I think the list of presenters is being firmed up but I'm glad to hear about the ones that are lined up! Details on the event are at:<br />
http://gestaltit.com/field-day/2011-wireless/<br />
<br />
Looking forward to meeting Stephen Foskett and hanging with wireless powerhouses like @jenniferlucille and @MarcusBurton among all of the other delegates that have confirmed.Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-37716922551907123452010-12-19T18:03:00.000-06:002010-12-19T18:03:13.422-06:003502 surveyingSo, rumor has it, if you put your 3502 in H-REAP mode, and statically assign your IP address and your default-gateway as your static host IP address, you can survey. Need to try this when I get back to civilization in January. I expect this will require some sort of loopback slug and a POE pass-through. Gonna have to bust out the crimpers! :)Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-33480744561366312572010-10-25T13:21:00.001-05:002010-10-25T13:21:43.078-05:00New H-REAP 'feature' in WLC 7.0 code<div>This just in from:</div><div><a href="http://www.cisco.com/en/US/docs/wireless/controller/7.0/configuration/guide/c70hreap.html">http://www.cisco.com/en/US/docs/wireless/controller/7.0/configuration/guide/c70hreap.html</a></div><div><br></div><div><span class="Apple-style-span" style="font-size: 11px; font-family: Arial, Helvetica, sans-serif; "><p class="pB1_Body1" style="color: rgb(0, 0, 0); font-family: Arial, Helvetica, sans-serif; font-variant: normal; font-weight: normal; margin-bottom: 6px; margin-left: 0em; margin-right: 0em; margin-top: 1px; text-align: left; text-decoration: none; text-indent: 0em; text-transform: none; "><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>When a Hybrid REAP access point enters into a standalone mode, the following occurs:</i></span></font></span></p><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><a name="wp1188746"></a></i></span></font></span><p class="pBu1_Bullet1" style="color: rgb(0, 0, 0); font-family: Arial, Helvetica, sans-serif; font-variant: normal; font-weight: normal; margin-bottom: 7px; margin-left: 0.25in; margin-right: 0em; margin-top: 0px; text-align: left; text-decoration: none; text-indent: -0.25in; text-transform: none; "><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>•</i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><img src="http://www.cisco.com/en/US/i/templates/blank.gif" alt="" width="19" height="2" border="0" style="border-top-width: 0px; border-right-width: 0px; border-bottom-width: 0px; border-left-width: 0px; border-style: initial; border-color: initial; "></i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>The access point checks whether it is able to reach the default gateway via ARP. If so, it will continue to try and reach the controller.</i></span></font></span></p><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><a name="wp1189020"></a></i></span></font></span><p class="pB1_Body1" style="color: rgb(0, 0, 0); font-family: Arial, Helvetica, sans-serif; font-variant: normal; font-weight: normal; margin-bottom: 6px; margin-left: 0em; margin-right: 0em; margin-top: 1px; text-align: left; text-decoration: none; text-indent: 0em; text-transform: none; "><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>If the access point fails to establish the ARP, the following will occur.</i></span></font></span></p><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><a name="wp1188747"></a></i></span></font></span><p class="pBu1_Bullet1" style="color: rgb(0, 0, 0); font-family: Arial, Helvetica, sans-serif; font-variant: normal; font-weight: normal; margin-bottom: 7px; margin-left: 0.25in; margin-right: 0em; margin-top: 0px; text-align: left; text-decoration: none; text-indent: -0.25in; text-transform: none; "><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>•</i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><img src="http://www.cisco.com/en/US/i/templates/blank.gif" alt="" width="19" height="2" border="0" style="border-top-width: 0px; border-right-width: 0px; border-bottom-width: 0px; border-left-width: 0px; border-style: initial; border-color: initial; "></i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>The access point attempts to discover for five times and if it still cannot find the controller, it tries to renew the DHCP on the ethernet interface to get a new DHCP IP.</i></span></font></span></p><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><a name="wp1188758"></a></i></span></font></span><p class="pBu1_Bullet1" style="color: rgb(0, 0, 0); font-family: Arial, Helvetica, sans-serif; font-variant: normal; font-weight: normal; margin-bottom: 7px; margin-left: 0.25in; margin-right: 0em; margin-top: 0px; text-align: left; text-decoration: none; text-indent: -0.25in; text-transform: none; "><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>•</i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><img src="http://www.cisco.com/en/US/i/templates/blank.gif" alt="" width="19" height="2" border="0" style="border-top-width: 0px; border-right-width: 0px; border-bottom-width: 0px; border-left-width: 0px; border-style: initial; border-color: initial; "></i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>The access point will retry for five times, and if that fails, the access point will renew the IP address of the interface again, this will happen for three attempts.</i></span></font></span></p><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><a name="wp1189371"></a></i></span></font></span><p class="pBu1_Bullet1" style="color: rgb(0, 0, 0); font-family: Arial, Helvetica, sans-serif; font-variant: normal; font-weight: normal; margin-bottom: 7px; margin-left: 0.25in; margin-right: 0em; margin-top: 0px; text-align: left; text-decoration: none; text-indent: -0.25in; text-transform: none; "><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>•</i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><img src="http://www.cisco.com/en/US/i/templates/blank.gif" alt="" width="19" height="2" border="0" style="border-top-width: 0px; border-right-width: 0px; border-bottom-width: 0px; border-left-width: 0px; border-style: initial; border-color: initial; "></i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>If the three attemps fail, the access point will fall back to the static IP and will reboot (only if the access point is configured with a static IP).</i></span></font></span></p><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><a name="wp1188620"></a></i></span></font></span><p class="pBu1_Bullet1" style="color: rgb(0, 0, 0); font-family: Arial, Helvetica, sans-serif; font-variant: normal; font-weight: normal; margin-bottom: 7px; margin-left: 0.25in; margin-right: 0em; margin-top: 0px; text-align: left; text-decoration: none; text-indent: -0.25in; text-transform: none; "><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>•</i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><img src="http://www.cisco.com/en/US/i/templates/blank.gif" alt="" width="19" height="2" border="0" style="border-top-width: 0px; border-right-width: 0px; border-bottom-width: 0px; border-left-width: 0px; border-style: initial; border-color: initial; "></i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>Reboot is done to remove the possibility of any unknown error the access point configuration.</i></span></font></span></p><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><a name="wp1188612"></a></i></span></font></span><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i><a name="wpmkr1125915"></a></i></span></font></span><p class="pB1_Body1" style="color: rgb(0, 0, 0); font-family: Arial, Helvetica, sans-serif; font-variant: normal; font-weight: normal; margin-bottom: 6px; margin-left: 0em; margin-right: 0em; margin-top: 1px; text-align: left; text-decoration: none; text-indent: 0em; text-transform: none; "><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><i>Once the access point reestablishes a connection with the controller, it disassociates all clients, applies new configuration information from the controller, and reallows client connectivity.</i></span></font></span></p><div><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;"><br></span></font></span></div><div><span style="font-family: Calibri; "><font class="Apple-style-span" size="4"><span class="Apple-style-span" style="font-size: 14px;">This means no more site surveys with lightweight Access Points running in H-REAP mode since there is no pingable default gateway. AC UPS to power a POE switch? Too bulky and hard to travel with in my book! Looks like we'll be reverting to a 'best guess' survey till some Autonomous code surfaces…</span></font></span></div><a name="Hybrid_REAP_Guidelines"></a><a name="wp1104890"></a><a name="wpmkr1125916"></a></span></div>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com2tag:blogger.com,1999:blog-890133542178120249.post-68075638627024097402010-09-21T16:01:00.001-05:002010-09-21T16:01:37.972-05:00Cisco WLC Config Analyzer version 2.2.3<div>Is available at:</div><div><a href="https://supportforums.cisco.com/docs/DOC-1373">https://supportforums.cisco.com/docs/DOC-1373</a></div><div><br></div><div>If you use more than one WLC, you need this. Great way to sync configurations, check for common errors, etc. Now displays Persistent Devices from CleanAir Access Points!</div>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-34984432511192326982010-09-14T11:21:00.001-05:002010-09-14T11:21:58.990-05:00Cisco launches a low cost 802.11n Access Point<div>Details on the 1040 can be found at:</div><div><a href="http://www.cisco.com/en/US/products/ps11203/index.html">http://www.cisco.com/en/US/products/ps11203/index.html</a></div><div><br></div><div>Note the following caveats:</div><div>Slower CPU so less overall PPS compared to the 1140</div><div>2x2 MIMO</div><div>No client link</div><div>No media stream</div><div><br></div><div>Runs on standard POE and available in controller based or standalone. Should be a great alternative for those of you suffering from Aruba-itis. :)</div>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-42882561893264925042010-09-09T08:33:00.001-05:002010-09-09T08:33:12.064-05:00Cisco announces 4 WLC Vulnerabilities<div>Including:</div><div><meta charset="utf-8"><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 1px; -webkit-border-vertical-spacing: 1px; font-family: Arial, Helvetica, sans-serif; ">IKE DoS Vulnerability</span></div><div><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 1px; -webkit-border-vertical-spacing: 1px; font-family: Arial, Helvetica, sans-serif; "><meta charset="utf-8">HTTP DoS Vulnerability</span></div><div><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 1px; -webkit-border-vertical-spacing: 1px; font-family: Arial, Helvetica, sans-serif; "><meta charset="utf-8">Privilege Escalation Vulnerabilities</span></div><div><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 1px; -webkit-border-vertical-spacing: 1px; font-family: Arial, Helvetica, sans-serif; "><meta charset="utf-8">ACL Bypass Vulnerabilities</span></div><div><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 1px; -webkit-border-vertical-spacing: 1px; font-family: Arial, Helvetica, sans-serif; "><br></span></div><div><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 1px; -webkit-border-vertical-spacing: 1px; font-family: Arial, Helvetica, sans-serif; ">Details can be found at:</span></div><div><span class="Apple-style-span" style="font-size: 13px; -webkit-border-horizontal-spacing: 1px; -webkit-border-vertical-spacing: 1px; font-family: Arial, Helvetica, sans-serif; "><a href="http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml">http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml</a></span></div><div><br></div><div><font class="Apple-style-span" face="Arial" size="3"><span class="Apple-style-span" style="font-size: 13px;">Of interesting note is the recommendation that all non-FIPS 5.x customers migrate to 6.0. Something we all knew anyways, but this is certainly compelling enough reason to get moved sooner rather than later. For most of us, 4.2.209.0 and 6.0.199.0 (.4) are the target code versions.</span></font></div><div><font class="Apple-style-span" face="Arial" size="3"><span class="Apple-style-span" style="font-size: 13px;"> -Sam</span></font></div>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-41094530148192542972010-09-07T15:18:00.001-05:002010-09-07T15:18:41.639-05:00Cisco Rogue Management in a Unified Wireless Network<div>Great explanation of Rogue Management – especially interesting with the differences in controller models and and Local Mode vs Monitor Mode.</div><div><a href="http://www.cisco.com/en/US/partner/products/ps6366/products_tech_note09186a0080b40901.shtml">http://www.cisco.com/en/US/partner/products/ps6366/products_tech_note09186a0080b40901.shtml</a></div>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-1344288878998031602010-08-31T08:12:00.000-05:002010-08-31T08:13:44.598-05:00WLC 6.0.199.4 is back on CCO<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>Get it before it gets pulled again! :)<BR> Release notes are at:<BR> <a href="http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn6_0_199_4.html">http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn6_0_199_4.html</a><BR> <BR> And it does indeed include as a resolved caveat:<BR> <BR> </SPAN></FONT><FONT SIZE="1"><FONT FACE="Arial"><SPAN STYLE='font-size:9pt'>CSCti21621 Switch CAM table is not updated after L2 roam.<BR> <BR> </SPAN></FONT></FONT> Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-47363385926141298882010-08-26T09:12:00.000-05:002010-08-26T09:12:11.565-05:00Cisco's playing games6.0.199.4 has been pulled from CCO but the release notes from 6.0.199.0 are <a href="http://samswireless.blogspot.com/2010/08/cisco-has-pulled-release-notes-for-wlc.html">back up as</a> 'new'.Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-2854091677465578212010-08-25T10:39:00.001-05:002010-08-25T10:39:18.429-05:00WLC Code 6.0.199.4 is on CCO!<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>Release notes can be found at:<BR> <a href="http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn6_0_199.html">http://www.cisco.com/en/US/docs/wireless/controller/release/notes/crn6_0_199.html</a><BR> <BR> This of course is the rev that we expect fixes that nasty L2 roam issue. Standard code qualification caveats strongly recommended. :)<BR> -Sam</SPAN></FONT> Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com2tag:blogger.com,1999:blog-890133542178120249.post-54442382942322609022010-08-24T15:54:00.000-05:002010-08-24T15:55:49.727-05:00Why do you configure a controller that way?<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>So, I was digging on the WLC Config Analyzer (a great tool by itself!) at:<BR> <a href="https://supportforums.cisco.com/docs/DOC-1373">https://supportforums.cisco.com/docs/DOC-1373</a><BR> <BR> And I stumbled across the list of checks that it does and (more importantly) how it determines that it’s values are ‘preferred’. If you goto:<BR> <a href="https://supportforums.cisco.com/docs/DOC-1176">https://supportforums.cisco.com/docs/DOC-1176</a><BR> And scroll down you’ll see the list of the Config Analyzer errors and why it thinks those errors are pertinent (including links to supporting documentation!). If you ever wanted a good solid list of supporting documentation for configuration options, this is the best I’ve seen!</SPAN></FONT> Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-6468965760070948942010-08-23T15:07:00.000-05:002010-08-23T15:08:23.259-05:00Cisco WLC captured web auth character limitations<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>Nice to know:<BR> <BR> </SPAN></FONT><FONT SIZE="1"><FONT FACE="Arial Bold"><SPAN STYLE='font-size:9pt'>Step 5 </SPAN></FONT></FONT><FONT SIZE="2"><FONT FACE="Times New Roman"><SPAN STYLE='font-size:10pt'>If you want the user to be directed to a particular URL (such as the URL for your company) after login,<BR> enter the desired URL (such as www.AcompanyBC.com) in the Redirect URL After Login field. You<BR> can enter up to <B>254 </B>characters.<BR> </SPAN></FONT></FONT><FONT SIZE="1"><FONT FACE="Arial Bold"><SPAN STYLE='font-size:9pt'>Note </SPAN></FONT></FONT><FONT SIZE="2"><FONT FACE="Times New Roman"><SPAN STYLE='font-size:10pt'>The controller supports web authentication redirects only to HTTP (HTTP over TCP) servers. It<BR> does not support web authentication redirects to HTTPS (HTTP over SSL) servers.<BR> </SPAN></FONT></FONT><FONT SIZE="1"><FONT FACE="Arial Bold"><SPAN STYLE='font-size:9pt'>Step 6 </SPAN></FONT></FONT><FONT SIZE="2"><FONT FACE="Times New Roman"><SPAN STYLE='font-size:10pt'>If you want to create your own headline on the login page, enter the desired text in the Headline field.<BR> You can enter up to <B>127 </B>characters. The default headline is “Welcome to the Cisco wireless network.”<BR> </SPAN></FONT></FONT><FONT SIZE="1"><FONT FACE="Arial Bold"><SPAN STYLE='font-size:9pt'>Step 7 </SPAN></FONT></FONT><FONT SIZE="2"><FONT FACE="Times New Roman"><SPAN STYLE='font-size:10pt'>If you want to create your own message on the login page, enter the desired text in the Message field.<BR> You can enter up to <B>2047 </B>characters. The default message is “Cisco is pleased to provide the Wireless<BR> LAN infrastructure for your network. Please login and put your air space to work.”<BR> </SPAN></FONT></FONT><FONT FACE="Times New Roman"><SPAN STYLE='font-size:11pt'><BR> </SPAN></FONT><SPAN STYLE='font-size:11pt'><FONT FACE="Calibri, Verdana, Helvetica, Arial">Of course you can use a web-auth bundle to overcome this limitation but you should keep it in mind if you’re using the built in captured web portal.</FONT></SPAN> Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-20163309394588662232010-08-23T12:48:00.000-05:002010-08-23T12:49:06.733-05:00AeroScout Exciter firmware notice<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>This just in from Aeroscout:<BR> <BR> </SPAN></FONT><FONT COLOR="#666666"><FONT SIZE="5"><FONT FACE="Arial Bold"><SPAN STYLE='font-size:18pt'>EX2000 Exciter Bulletin - Firmware Upgrade Required </SPAN></FONT></FONT></FONT><FONT COLOR="#323232"><FONT SIZE="2"><FONT FACE="Arial"><SPAN STYLE='font-size:10pt'> <BR> <BR> </SPAN></FONT></FONT><FONT FACE="Arial"><SPAN STYLE='font-size:11pt'> <BR> An EX2000 Exciter firmware upgrade is currently required to prevent compatibility issues of certain tags not responding to Exciter</SPAN><FONT SIZE="2"><SPAN STYLE='font-size:10pt'>s</SPAN></FONT><SPAN STYLE='font-size:11pt'>.<BR> <BR> All customers who have EX2000 Excite</SPAN></FONT><SPAN STYLE='font-size:11pt'><FONT FACE="Arial Bold">rs are requi</FONT><FONT FACE="Arial">red to upgrade the Exciter firmware to DSP223. In addition, if you have Cisco Context Aware Engine for Tags (CLE), you are required to upgrade the CLE to version 4.2.3.5 or abo</FONT></SPAN><FONT FACE="Arial"><FONT SIZE="2"><SPAN STYLE='font-size:10pt'>v</SPAN></FONT><SPAN STYLE='font-size:11pt'>e.<BR> <BR> Please refer to article #2178<U> on <a href="http://support.aeroscout">http://support.aeroscout</a></U>.com for complete details. You can also reply to this email or call us at U.S. +1-877-AERO-555 (or +1-650-292-4953), EMEA & APAC +49-302-5555-</SPAN><FONT SIZE="2"><SPAN STYLE='font-size:10pt'>0</SPAN></FONT><SPAN STYLE='font-size:11pt'>94.<BR> <BR> Determining the Exciter model can be done by one of the following met</SPAN><FONT SIZE="2"><SPAN STYLE='font-size:10pt'>h</SPAN></FONT><SPAN STYLE='font-size:11pt'>ods:<BR> a. The label on the back of the Exciter would say “EX2000” (not “EX2000B”) <BR> b. Open AeroScout System Manager, right-click on the Exciter icon and select “Get Status” from the menu. For the EX2000, the HW version would be</SPAN><FONT SIZE="2"><SPAN STYLE='font-size:10pt'> </SPAN></FONT><SPAN STYLE='font-size:11pt'>“2”.<BR> <BR> If you have any further questions, please do not hesitate to contact AeroScout Technical Suppor<U>t at: <a href="http://support.aerosco">http://support.aerosco</a></U>ut.com, U.S. +1-877-AERO-555 (or +1-650-292-4953), EMEA & APAC +49-302-5555-094.<BR> </SPAN></FONT></FONT><SPAN STYLE='font-size:11pt'><FONT FACE="Calibri, Verdana, Helvetica, Arial"><BR> </FONT></SPAN> Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-48353731624214727572010-08-16T10:01:00.001-05:002010-08-16T10:01:21.404-05:00Cisco has pulled the release notes for WLC version 6.0.199.0<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'><a href="http://www.cisco.com/en/US/products/ps6366/prod_release_notes_list.html">http://www.cisco.com/en/US/products/ps6366/prod_release_notes_list.html</a><BR> <BR> Coincidence? Could this be due to the Vocera bug or just an oversight by a webmaster? The code is still available for download and it’s still listed on the AssureWave site (hah!) - just no release notes...</SPAN></FONT> Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-51808719609613272912010-08-12T08:53:00.001-05:002010-08-12T08:53:18.462-05:00SQL Injection Vulnerability in Cisco WCS<FONT SIZE="2"><FONT FACE="Arial"><SPAN STYLE='font-size:10pt'>Cisco Wireless Control System (WCS) contains a SQL injection vulnerability that could allow an authenticated attacker full access to the vulnerable device, including modification of system configuration; create, modify and delete users; or modify the configuration of wireless devices managed by WCS.<BR> <BR> This has been fixed in version 6.0.196.0.<BR> More details at:<BR> <a href="http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091e.shtml">http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091e.shtml</a></SPAN></FONT></FONT> Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-36342795277551261312010-08-09T08:26:00.001-05:002010-08-09T08:26:48.845-05:00Planning your CleanAir refresh?<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>Read these and discuss it with your AM to make sure you’re getting the best price you can!<BR> <BR> <a href="http://www.cisco.com/en/US/prod/collateral/wireless/ps5678/ps10981/product_bulletin_c25-605628.pdf">http://www.cisco.com/en/US/prod/collateral/wireless/ps5678/ps10981/product_bulletin_c25-605628.pdf</a><BR> <BR> <a href="http://www.cisco.com/en/US/prod/collateral/wireless/ps5678/ps6108/eol_c51-506614.pdf">http://www.cisco.com/en/US/prod/collateral/wireless/ps5678/ps6108/eol_c51-506614.pdf</a></SPAN></FONT> Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-22781775287224162862010-08-08T11:15:00.000-05:002010-08-08T11:15:21.786-05:00Making the Cisco IOS DHCP server useful<span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;">Yay for learning! Two of the features that I was under the impression were missing from an IOS based DHCP server are infact present:</span></span><br />
<span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;"><br />
</span></span><br />
<span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;">1) The ability to ping clients prior to handing out an address:</span></span><br />
<span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;">Router(config)# ip dhcp ping packets 5<br />
<i>Specifies the number of ping packets the DHCP server sends to a pool address before assigning the address to a requesting client.</i></span></span><span class="Apple-style-span" style="font-size: small;"> </span><br />
<span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;">Router(config)# ip dhcp ping timeout 850<br />
<i>Specifies the amount of time the DHCP server waits for a ping reply from an address pool.</i></span></span><span class="Apple-style-span" style="font-size: small;"><i> </i></span><span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;"><i> </i></span></span><!--EndFragment--><br />
<span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;"><br />
</span></span><br />
<span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;">2) The ability to retain a DHCP leases table across reboots:</span></span><br />
<span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;">Router(config)#ip dhcp database flash:router-dhcp write-delay 60 timeout 10</span></span><span class="Apple-style-span" style="font-size: small;"> </span><span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;"> </span></span><!--EndFragment--><br />
<span style="font-family: Calibri, Verdana, Helvetica, Arial;"><span style="font-size: 11pt;"><span style="font-family: Calibri, Verdana, Helvetica, Arial;"><span style="font-size: 11pt;"><span class="Apple-style-span" style="font-family: 'Helvetica Neue', Arial, Helvetica, sans-serif;"><span class="Apple-style-span" style="font-size: small;"><i>Configure DHCP database location on a physical storage medium, this prevents the router from loosing all of it’s lease data after a reboot. By default, the router maintains the dhcp bindings in NVRAM.</i></span></span></span></span></span></span>Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0tag:blogger.com,1999:blog-890133542178120249.post-28728110141755308382010-08-08T11:09:00.001-05:002010-08-08T11:09:35.448-05:00WARNING: Vocera + Cisco Assurewave 6.0.199.0<FONT FACE="Calibri, Verdana, Helvetica, Arial"><SPAN STYLE='font-size:11pt'>Those of you that were getting ready to roll up into WLC release 6.0.199.0 soon may want to reconsider if you’re on a Vocera deployment. I don’t know anything more significant than the below warning from Vocera and am trying to get additional details. If you know of anything specific, please speak up! :)<BR> -Sam<BR> <BR> </SPAN></FONT><FONT COLOR="#0082BF"><FONT SIZE="4"><FONT FACE="Arial"><SPAN STYLE='font-size:13pt'>Vocera Advisory<BR> </SPAN></FONT></FONT></FONT><FONT FACE="Arial"><FONT COLOR="#2E2E2E"><FONT SIZE="1"><SPAN STYLE='font-size:7pt'>Vocera is aware of an issue that customers are experiencing after moving to Cisco WLC version 6.0.199 that manifests itself in a substantial increase in difficulty with badge communications to the Vocera Application Server over the network. Badges will display "Searching For Server" or "Searching For AP."<BR> Vocera is working closely with Cisco and its mutual customers on the problem</SPAN></FONT></FONT></FONT><FONT FACE="Times, Times New Roman"><SPAN STYLE='font-size:12pt'>.<BR> </SPAN></FONT> Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com1tag:blogger.com,1999:blog-890133542178120249.post-28491566226433892542010-08-08T11:06:00.000-05:002010-08-08T11:08:16.532-05:00What this is all aboutSo, a well-respected colleague of mine suggested that I create a place to put my various tidbits regarding wireless networking since I have a tendency to share them with my co-workers and various other small selected groups. This is that place. I plan to start sending thoughts and comments about the wireless world here as a place I can go to reference past suggestions and links. Primarily this will be regarding Cisco wireless products but occasionally I have something useful to say about RF in general and other related topics. If you find anything I say useful, let me know!Samhttp://www.blogger.com/profile/14960518392462563052noreply@blogger.com0