Wireshark Saves the WLAN!

Similar documents
Monitoring the Mobility Express Network

High Performance Wi-Fi Essentials. BICSI Rome

Q&As. Implementing Cisco Unified Wireless Voice Networks (IUWVN) v2.0. Pass Cisco Exam with 100% Guarantee

Viewing Status and Statistics

General Troubleshooting Guidelines

How To Do a Successful RF Site Survey. Overview

Cisco Exam Conducting Cisco Unified Wireless Site Survey V2 Version: 10.0 [ Total Questions: 193 ]

Monitoring Mobility Express Network

Survey Name ABC123 Ltd Surveyor Adam Loca on Descrip on Wireless Site Survey Date(s) 05 October 2017

exam. Number: Passing Score: 800 Time Limit: 120 min CISCO Deploying Cisco Wireless Enterprise Networks. Version 1.

WLANs = Counterintuitive

Cisco Exam Implementing Cisco unified Wireless Voice Networks (IUWVN) v2.0 Version: 10.0 [ Total Questions: 188 ]

Table of Contents. NEC Unified Solutions, Inc. August 3, 2009 Page 1 of 6

Myths and Realities of Wi- Fi. ACTEM Conference, April 2017 Michael McKerley, CTO

Configuring Basic Wireless Settings on the RV130W

Application Note: WLAN Troubleshooting Using AirCheck G2 Wireless Tester

Application Note: WLAN Troubleshooting Using AirCheck G2 Wireless Tester

MTTplus Modular Test Platform

What s New in ZoneFlex Software Release 9.4

Troubleshooting the 792xG Series Wireless IP Phone

Designing Cisco Wireless Enterprise Networks (WIDESIGN)

Application Note: WLAN Troubleshooting Using AirCheck G2 Wireless Tester

Wireless technology Principles of Security

ENH200 LONG RANGE WIRELESS 11N OUTDOOR CB/AP PRODUCT OVERVIEW. IEEE802.11/b/g/n 1T+1R 150Mbps 25 km High Performance

Ruckus ZoneDirector 3450 WLAN Controller (up to 500 ZoneFlex Access Points)

Meraki vs. Ruckus: The Reality Check

LAB: Configuring LEAP. Learning Objectives

Enterprise Mobility with Smarter Wi-Fi

Building a Secure Wireless Network. Use i and WPA to Protect the Channel and Authenticate Users. May, 2007

Configure n on the WLC

SharkFest 18 Europe. Troubleshooting WLANs (Part 2) Troubleshooting WLANs using Management & Control Frames. Rolf Leutert

Walking is Good for the Health of Your Wi-Fi. Jussi Kiviniemi Ekahau

Wireless Voice Troubleshooting hints

Creating Wireless Networks

CWTS Exam Objectives (Exam PW0-070)

EOC2611P. Long Range Wireless Access Point / Client Bridge PRODUCT DESCRIPTION. 2.4GHz 108Mbps b/g/super G MSSID, WDS

WLAN Analysis with Wireshark & AirPcap Wednesday June 15 th, 2010

Per-WLAN Wireless Settings

User Manual. WLAN USB Adapter for b/g/n

Session 1 exercise Download and save locally. When completing the exercise, please mail it to

EOC1650. Wireless Access Point / Client Bridge / Client Router. 2.4GHz 54Mbps b/g Superior Performance

2.4GHz 108Mbps b/g/Super G MSSID, WDS

WISNETWORKS. WisOS 11ac V /3/21. Software version WisOS 11ac

NAP ac Dual-Radio Smart Antenna 3x3 Nebula Cloud Managed Access Point

CWNA-107.exam.45q. Number: CWNA-107 Passing Score: 800 Time Limit: 120 min File Version: 1. CWNA-107

Key Features EnGenius Outdoor Access Points, High Sensitivity and Strong Reliability Solutions under Harsh Environment

EOC1650. Wireless Access Point / Client Bridge / Client Router PRODUCT DESCRIPTION. 2.4GHz 54Mbps b/g Superior Performance

Cisco TrustSec How-To Guide: Universal Configuration for the Cisco Wireless LAN Controller

Assure the Health of Your Network

Key Features EnGenius Outdoor Long Range CPE, High Sensitivity and Strong Reliability Solutions under Harsh Environment

Wireless Networks. Authors: Marius Popovici Daniel Crişan Zagham Abbas. Technical University of Cluj-Napoca Group Cluj-Napoca, 24 Nov.

WisCloud Access Controller V /6/9

Ruckus ZoneDirector 1106 WLAN Controller (up to 6 ZoneFlex Access Points)

Wireless Challenges and Resolutions

APi2750D dual band 2x2 Indoor Wireless Access Point

NXC Series. Handbook. NXC Controllers NXC 2500/ Default Login Details. Firmware Version 5.00 Edition 19, 5/

] Designing Cisco Wireless Enterprise Networks

M5000 Wireless a/b/g Outdoor AP

EOC-2610 Long Range Wireless Access Point / Client Bridge

Vocera Infrastructure Planning Guide. Version 4.2

Datasheet: AirMagnet Survey

DATA SHEET MODEL AXC1000 HIGHLIGHTS OVERVIEW. Redefining Enterprise Wireless Management

Cisco Connected Stadium Wi-Fi Services

General Troubleshooting Information, on page 1 Phone Does Not Go Through the Normal Startup Process, on page 3 Connection Problems, on page 4

Securing Wireless Networks by By Joe Klemencic Mon. Apr

Configuring the EAPs Separately via Omada Controller

Multiple Access in Cellular and Systems

EOC5611P. Wireless a/b/g Outdoor AP. Package Content PRODUCT DESCRIPTION. 2.4GHz / 5 GHz 54Mbps a/b/g 24V PoE

M5000. Wireless a/b/g Outdoor AP PRODUCT DESCRIPTION

Converged Access: Wireless AP and RF

CWAP-402.exam. Number: CWAP-402 Passing Score: 800 Time Limit: 120 min File Version: CWAP-402

NAP ac Dual-Radio Nebula Cloud Managed Access Point

CSNT 180 Wireless Networking. Chapter 7 WLAN Terminology and Technology

This course provides students with the knowledge and skills to successfully survey, install, and administer enterprise Wi-Fi networks.

M5000. Wireless a/b/g Outdoor AP PRODUCT DESCRIPTION

EOC Wireless a/b/g Outdoor AP 2.4GHz / 5GHz 54Mbps a/b/g 24V PoE

Chapter 5 Contents. Site Survey pg 81. AP Location for Site Survey pg 81. Performing the Survey pg 82. Analyzing Your Site pg 84.

Exam Questions CWSP-205

ARUBA RAP-3 REMOTE ACCESS POINT

Wireless Networks. CSE 3461: Introduction to Computer Networking Reading: , Kurose and Ross

White Paper Wi-Fi System Maintenance

Welcome! SharkFest 16 Europe. Troubleshooting WLANs (Part 2) Rolf Leutert

EOA3630 Outdoor 7 Multi-Function AP/CB

Configuring AP Groups

Table of Contents. This guide describes the configuration of ADTRAN NetVanta 150 AP with the NEC MH240 Mobile Handsets. NEC Unified Solutions, Inc.

Table of Contents 1 WLAN Service Configuration 1-1

2.4 GHz b/g IP65 RSSI Indicator 7 Multi-Function

EAP9550 is a powerful and multi-functioned 11n Access Point

EOC5611P. Wireless a/b/g Outdoor AP PRODUCT DESCRIPTION. 2.4GHz / 5 GHz 54Mbps a/b/g 24V PoE

TopGlobal MB8000 Hotspots Solution

WX150. Platform Highlights. WiFi Air Expert Test Set. WiFi Air Expert

Public Wireless LAN Service.

ECB N Multi-Function Client Bridge

SharkFest'17 US. Validating Your Packet Capture: How to be sure you ve captured correct & complete data for analysis

ECB N Multi-Function Gigabit Client Bridge

HP ProCurve Mobility Access Point Series

Positioning Wireless Devices

Implementing X Security Solutions for Wired and Wireless Networks

Basic Wireless Settings on the CVR100W VPN Router

EOC GHz 54Mbps b/g Multi-Function AP

Transcription:

Wireshark Saves the WLAN! A WLAN Case Study June 2009 Joseph Bardwell Chief Scientist, Connect802 Corporation www.connect802.com joe@connect802.com SHARKFEST '09 Stanford University June 15 18, 18 2009

Connect802 was contracted to provide design, RF spectrum analysis and postinstallation verification services for a client s major Cisco 802.11n deployment Both because 802.11n is an emerging technology and because we differentiate ourselves through our rigorous engineering methodology we were exceptionally diligent in the planning and design of the network We performed extensive on site equipment testing We created tda 3 dimensional i RF CAD model dlof the facility We performed signal coverage predictions to optimize access point placement and to assure that the installed system would meet the design specifications We confirmed our predictive RFCAD designs through on site testing Our client installed the pilot network (the first of over 100 buildings) The client reported that the network didn t work We found that signal strength remained at and above the specified levels The wireless LAN controller showed that all access points were operational Throughput testing confirmed that every three minutes the network would stop passinguser traffic 3

Preparing for a Troubleshooting Effort You have to know that you know what you think you know so you can know how to know what you don t know.

Careful Quantification of Equipment and Project Specifications x Wireshark will report information concerning WLAN performance. You have to know whether this is good or bad, expected or unexpected.

3 Dimensional RF CAD Modeling and Simulation You have to be sure that your WLAN design will perform as expected.

Real World Testing and Design Calibration

Design Review with Client x Stakeholders must be on-board with the system and design specifications so that you have a line-in-the-sand to differentiate acceptable versus unacceptable behavior and performance performance.

Careful On Site Spectrum Analysis You have to be sure that background noise or interference isn t going to impact the behavior of your network. Wireshark will show you 802.11 retransmissions and packets with CRC errors both indicative of RF noise or interference problems.

Knowing What You Know You have to understand how RF issues can impact WLAN performance and operation You have to understand 802.11 protocol behavior Client Association You have to understand L2 and L3 initialization behavior DHCP (and possibly VLAN to SSID mapping) RADIUS Authentication (EAP) Possibility of Captive Portal Authentication Once the client is Associated and Authenticated, everything else is conventional Ethernet packet analysis

An Idle 802.11 Wireless LAN

Checking RF Characteristics with Wireshark Signal to Noise Ratio (SNR) The difference between Signal and Noise: > 30 db Excellent! > 20 db No Worries < 15 db Worry. < 10 db Bad Thing! Beacon Frames are always transmitted at the lowest data rate for the air standard: 802.11b 1 Mbps 802.11b/g Mixed Mode 1 Mbps 802.11g Greenfield 6 Mbps 802.11a 6 Mbps 802.11b/g/n Mixed Mode 1 Mbps 802.11g/n Mixed Mode 6 Mbps SignalStrength Strength Indicatorvalues provide an indication of power, not of quality: > 65 dbm Excellent! > 75 dbm No Worries > 80 dbm Acceptable for Web/Email < 80 dbm On the Edge Be Careful

Normal Client Association Behavior Probe / Probe Response / Ack Authentication Request / Ack Authentication Response / Ack Association Request / Ack Association Response / Ack Data (Which could be AAA credential exchange and verification)

Raw Captured Data from the Troubleshooting Scenario

Filtering to Select Only Beacon Frames

Configure to View Time Since Previous Displayed Packet

Export the Resulting Trace File

Graphing the Results in Excel Open the.csv fl file in Excel Select the Time Column Insert Line Chart

Identifying the Anomaly

Evaluate the Behavior 1. Walk through the trace, frame-by-frame 2. Ask yourself: Why was this frame transmitted? What is the expected response? Did the expected response occur? 3. When you find the departure from the expected response you ve either found a manifestation of the problem or you ve discovered something that was outside your protocol analysis experience.

Evaluate the Behavior

The Think Method You now must determine what problems or configuration issues result in the identified behavior. This is where vendor technical support and collaboration play a critical part In the present scenario, the question is: What makes an access point stop beaconing for a consistent time period at reasonably regular intervals? Once you ve isolated and described the problem and formulated a concise question the answer is often quite simple

Know Your Vendor s Products

The Solution!

Wireshark Saves the WLAN! You have to know that you know what you think you know so you can know how to know what you don don tt know. know Questions? www.connect802.com joe@connect802.com (925) 552 552-0802 0802 Understand the RF design and RF signal behavior Understand the expected 802.11 protocol behavior Understand the expected L2 and L3 protocol behavior Capture the problem scenario with Wireshark W lk th h th til th bl Walk through the ttrace until the problem point is identified Pose a troubleshooting question to quantify the problem.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback