menu

ONT Notes - 802.1x and Encryption on LWAPs

2010-02-12
#642-845  #802-1p  #802-1x  #aes  #campus  #ccmp  #ccnp  #certification  #cisco  #eap  #eap-fast  #eap-tls  #leap  #lwap  #lwapp  #mic  #ont  #peap  #peap-gtc  #peap-mschapv2  #psk  #ssid  #test  #tkip  #wifi  #wireless 
  • Traditional WLAN weaknesses
    • SSID for security
    • Vulnerable to rogue APs
    • MAC filtering for security
    • WEP
  • WEP weaknesses
    • Disribution of static keys is not scalable
    • WEP keys can be cracked easily
    • Vulnerable to dictionary attacks
    • No protection against rogue APs
  • Benefits of 802.1x
    • Centralized authentication through Radius via AAA
    • Mutual authentication between client and auth server
    • Can use multiple encryption algorithms (AES, WPA, TKIP, WEP)
    • Automatic dynamic WEP keys
    • Roaming
  • Requirements of 802.1x
    • EAP-capable client (supplicant)
    • 802.1x-capable AP (authenticator)
    • EAP-capable auth server

Table 1. Characteristics of the EAP variants

ONT Notes - QoS On Wireless Networks

2010-02-11
#642-845  #802-1p  #campus  #ccnp  #certification  #cisco  #dscp  #headers  #lwap  #lwapp  #ont  #precedence  #qos  #test  #wifi  #wireless