Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSD-Team 13 Oasis v.2. Introduction Oasis v.1 ISPs share access network Security Choice for end-users Compatible with legacy systems Problems with the.

Published byLydia Wilson Modified over 10 years ago

Similar presentations

Presentation on theme: "CSD-Team 13 Oasis v.2. Introduction Oasis v.1 ISPs share access network Security Choice for end-users Compatible with legacy systems Problems with the."— Presentation transcript:

1 CSD-Team 13 Oasis v.2

2 Introduction Oasis v.1 ISPs share access network Security Choice for end-users Compatible with legacy systems Problems with the current solution

3 Current Solutions Access based on MAC-address, easy to crack No encryption over the wireless link No easy-to-use interface to add ISPs

4 Our Solution Takes advantage of the latest technologies  Everything that supports 802.1X (Win XP, Linux, Mac OS X)  Highest security provided by hardware Supports legacy hardware/software  Everything that supports PPTP

5 Our Solution Easy-to-use interface to add ISPs Few requirements for ISPs Easy-to-use for end-user

6 Oasis ISP1ISP2ISP3 AP Network OP web-based Radius-FreeRadius Database-SQL VLAN Monitor-Cacti Management server Oasis Server

7 Oasis ISP1ISP2ISP3 AP Network OP web-based Supplicant

8 Oasis ISP1ISP2ISP3 AP Network OP web-based Supplicant user@isp1.se Identifies ISP  Which server?  Which VLAN? user@isp1.se

9 Oasis ISP1ISP2ISP3 AP Network OP web-based Supplicant user@isp1.se RADIUS server ISP user Yes Yes VLAN

10 Oasis ISP1ISP2ISP3 AP Network OP web-based Client user@isp1.se Fall back server PPTP 802.1X Fallback VLAN

11 Oasis ISP1ISP2ISP3 AP Network OP web-based Client user@isp1.se

12 Oasis ISP1ISP2ISP3 AP Network OP web-based Client user@isp1.se SNMP

13 Front-end to RRDTool Front-end to RRDTool SNMP support SNMP support Store data into MySQL DB Store data into MySQL DB Done in PHP Done in PHP Integrating into OASIS v.2 Integrating into OASIS v.2 Scripts Scripts

14

15 Testing @ KistaIP Tested both native and fallback Tested with different platforms Tested with switches and access points

16 Current KistaIP VLANs used to seperate the ISPs. Short lease time IP address User chooses the ISP via web page. Switched to VLAN depends on selection

17 Native setup

18 Fallback setup

19 Problems faced DHCP plugin to look for a DHCP server. DNS information doesn’t receive from ISP. Default route and Routing tables. Access points need additional features. Certificate Issues

20 Accomplishments Management Server using XMLRPC  Configuration of FreeRADIUS Management Interface Fallback Server  Transparent for ISPs Cacti integration Successful test with two ”fake” ISPs

21 Problems and limitations Complicated setup Hardware configuration  Adding ISP requires reconfiguration of switches/access points Fallback is limited by hardware support  For wireless, needs multiple BSSIDs or multiple APs  For wired, needs ”unauth vlan”

22 Future work Packaging Certificates Automatic hardware configuration Local services

23 Team Members: Ang Ma Lucas Díez Pratheepan Gunaratnam Mikael Pettersson Sasikumar Purushothaman Thanks! And Questions?

Download ppt "CSD-Team 13 Oasis v.2. Introduction Oasis v.1 ISPs share access network Security Choice for end-users Compatible with legacy systems Problems with the."

Similar presentations

Application Guide For Mesh AP – MAP-3120

Application Guide For Mesh AP – MAP-3120
MikroTik Vendor Session © MikroTik 2005 1 MikroTik Vendor Session WISPNOG February 17-18 th, 2005 Chicago, IL.

MikroTik Vendor Session © MikroTik MikroTik Vendor Session WISPNOG February th, 2005 Chicago, IL.
Network Asset Management at Jefferson Lab Bryan Hess, Andy Kowalski, Brent Morris,

Network Asset Management at Jefferson Lab Bryan Hess, Andy Kowalski, Brent Morris,
Wireless and Switch Security NETS David Mitchell.

Wireless and Switch Security NETS David Mitchell.
Allied Telesyn Wireless LAN Solutions AT-WL2411 Access Point AT-WR2411 Wireless LAN PCMCIA Card.

Allied Telesyn Wireless LAN Solutions AT-WL2411 Access Point AT-WR2411 Wireless LAN PCMCIA Card.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
Configuring Linux Radius Server

Configuring Linux Radius Server
Monitoring a Large-Scale Network: Selecting the Right Tool Sayadur Rahman United International University & Network Manager, Financial Service.

Monitoring a Large-Scale Network: Selecting the Right Tool Sayadur Rahman United International University & Network Manager, Financial Service.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialBCMSN 6 - 6 1 Configuring Wireless LANs BCMSN Module 6 Lesson 6.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialBCMSN Configuring Wireless LANs BCMSN Module 6 Lesson 6.
AutoMAC: A Tool for Automating Network Moves, Adds, and Changes Christopher J. Tengi Princeton University.

AutoMAC: A Tool for Automating Network Moves, Adds, and Changes Christopher J. Tengi Princeton University.
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Chapter 5 - TRANSPORT and NETWORK LAYERS - Part 2 - Static and Dynamic Addressing Address Resolution Dr. V.T. Raja Oregon State University.

Chapter 5 - TRANSPORT and NETWORK LAYERS - Part 2 - Static and Dynamic Addressing Address Resolution Dr. V.T. Raja Oregon State University.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 7: Planning a DNS Strategy.
Microsoft Server Technology An Overview By Christopher W. Baran.

Microsoft Server Technology An Overview By Christopher W. Baran.
Wireless Security with 802.1X Copyright 2005 Michael Griego This work is the intellectual property of the author. Permission is granted for this material.

Wireless Security with 802.1X Copyright 2005 Michael Griego This work is the intellectual property of the author. Permission is granted for this material.
1 Configuring Linksys Wireless Router Prof. Valencia Community College.

1 Configuring Linksys Wireless Router Prof. Valencia Community College.
Network Registration and User Tracking An Open Source Approach Mark Berman Ashley Frost Williams College.

Network Registration and User Tracking An Open Source Approach Mark Berman Ashley Frost Williams College.
Printer Installation Ben Wu A&S IT 09/18/2007. Outline  Preparation  Local Printer Installation  Network Printer Installation  Printer Sharing  Other.

Printer Installation Ben Wu A&S IT 09/18/2007. Outline  Preparation  Local Printer Installation  Network Printer Installation  Printer Sharing  Other.
RADIUS Secured and Authenticated WiFi Robert Leahy Charles Bodman Brandon Ellis.

RADIUS Secured and Authenticated WiFi Robert Leahy Charles Bodman Brandon Ellis.
PKI Network Authentication Dartmouth Applications Robert Brentrup Educause/Dartmouth PKI Summit July 27, 2005.

PKI Network Authentication Dartmouth Applications Robert Brentrup Educause/Dartmouth PKI Summit July 27, 2005.

Similar presentations

Ads by Google