HOW WI-FI WORKS AND WHY IT BREAKS WI-FI MECHANICS
THE WI-FI COMMUNICATION PROCESS MECHANICS
MECHANICS: HOW WI-FI COMMUNICATION WORKS WHAT WE LL BE COVERING Brief Discourse on Frame Types Discovery of Wi-Fi Networks Joining Associating with a Network (and Disassociating) General Communication Process
THE MECHANICS A BRIEF DISCOURSE ON FRAME TYPES 1. Management 2. Control 3. Data
FRAME TYPES MANAGEMENT FRAMES Used to discover, join, and leave a network: Beacon Probes/Probe responses Association requests/response Reassociation request/response Deauthentication Disassociation
FRAME TYPES CONTROL FRAMES Manage delivery of traffic on a network Request to Send (RTS) Clear to Send (CTS) Acknowledgement (ACK)
FRAME TYPES DATA FRAMES Contain the actual data
FINDING NETWORKS TO JOIN DISCOVERY
LISTEN FOR BEACON FRAMES PASSIVE SCANNING
PASSIVE SCANNING BEACON FRAMES Access Points continually transmit Beacon Frames, usually at a rate of roughly 10 per second. Essentially an announcement of presence and capabilities.
SEND PROBE REQUESTS ACTIVE SCANNING
ACTIVE SCANNING PROBE REQUESTS AND RESPONSE WHO S OUT THERE? I am here, and here is the information about me.
DISCOVERY EMPHASIZING THE IMPORTANCE OF CHANNELS APs send beacon frames only on the channel they are configured to use. A client STA that s listening for beacons listens on a single channel, then switches, then listens some more. A client STA sending a problem sends it on a single channel, then switches channels and sends another.
Wi-Fi Frequency Band Channel Width Channels Total 2.4 GHz ISM 22 MHz 1,2,3,4,5,6,7,8,9,10,11 11 (3 non-overlapping) 5 GHz U-NII-1 20 MHz 36,40,44,48 4 5 GHz U-NII-2 20 MHz 52,56,60,64 4 5 GHz U-NII-3 20 MHz 149,153,157,161,165 5 5 GHz U-NII-2 Extended 20 MHz 100,104,108,112,116,120, 124,128,132,136,140,144 12
JOINING NETWORKS AUTHENTICATION AND ASSOCIATION
AUTHENTICATION AND ASSOCIATION WHAT IS WI-FI AUTHENTICATION? Wi-Fi Authentication is essentially confirmation that the devices at each end are 802.11-capable devices. For actual data protection of data integrity and privacy, stay tuned.
AUTHENTICATION AND ASSOCIATION ASSOCIATION Occurs after authentication A client STA sends an association request to an AP which requests permission to join that AP s Basic Service Set (BSS) The AP sends an association response back to the client STA containing an Association ID (AID)
AUTHENTICATION AND ASSOCIATION AUTHENTICATED AND ASSOCIATED. NOW WHAT? In the case of an open network, the client STA can start to work with the rest of the network stack, e.g. obtaining a DHCP lease and beginning to use applications.
AUTHENTICATION AND ASSOCIATION AGAIN Protection of data privacy and integrity now comes at a different stage.
LEAVING A NETWORK DISASSOCIATION
DISASSOCIATION A NOTIFICATION, NOT A REQUEST Either an AP or a client STA can choose to leave a BSS. The device leaving sends a disassociation frame, which is a statement of occurrence.
RULES OF THE WI-FI ROAD COMMUNICATION PROCESS
IN WI-FI, ONLY ONE DEVICE AT A TIME CAN TRANSMIT ON A CHANNEL HALF-DUPLEX TECHNOLOGY
HOW DOES THAT EVEN WORK? CARRIER SENSE MULTIPLE ACCESS WITH COLLISION AVOIDANCE
CSMA/CA STEPS TO DETERMINE CONTROL OF THE MEDIUM 1. Carrier Sense Virtual Physical 2. Random Backoff Timer 3. Request to Send (RTS) and Clear to Send (CTS)
CSMA/CA VIRTUAL CARRIER SENSE Transmitted 802.11 frames contain a Duration/ID field Duration field on the frame header tells a STA how long the medium will be busy
I EXPECT THE NETWORK TO BE BUSY FOR ABOUT X AMOUNT OF TIME NAV TIMER
CSMA/CA PHYSICAL CARRIER SENSE The client listens to the network; it tells the client things: 1. Whether there is traffic inbound for the STA? 2. Whether the medium is busy using Clear Channel Assessment.
CSMA/CA RANDOM BACKOFF TIMER Different from the NAV Timer Performs a separate countdown
CSMA/CA RANDOM BACKOFF TIMER This final check uses two factors to define a countdown time: 1. Contention Window (CW): random 2. Slot Time: defined by the PHY mode
WAIT. THERE S MORE! REQUEST TO SEND (RTS) CLEAR TO SEND (CTS)
TRANSMISSION PERMISSION REQUEST TO SEND/CLEAR TO SEND (RTS/CTS) 1. Client STA transmits a Request to Send (RTS) 2. AP receives the RTS, then transmits a Clear to Send (CTS) 3. Clients associated to the AP use the information contained in the CTS to reset their NAV timers Essentially, the client STA is asking for control of the medium, and the AP is notifying everyone in range that the client has control of the medium.
TRANSMIT!
IT S NOT OVER, NOT YET
TRANSMITTER HAS TO WAIT FOR ACKNOWLEDGEMENT (ACK)
RETRANSMISSIONS ACKNOWLEDGEMENT IS CRITICAL Receiver sends ACKs to verify that the receipt of unicast frames. Acknowledgement is the only way the sender knows the transmission was received. Lack of acknowledgement is interpreted as a collision and failure of delivery.
IF THERE S NO ACKNOWLEDGEMENT? RETRANSMISSION
UNDERSTAND THE PROBLEM FOR SUPERIOR TROUBLESHOOTING TECHNIQUE HOW IT BREAKS
HOW IT BREAKS THREE FUNDAMENTAL WI-FI PROBLEMS 1. Excessive Retransmissions 2. Medium Contention 3. Not the Wi-Fi (Blame it Anyway )
DO OR DO NOT, BUT THERE IS TRY, TRY, TRY, TRY, TRY EXCESSIVE RETRANSMISSIONS
EXCESSIVE RETRANSMISSIONS VISUALIZATION Analysis tools can show you evidence for congestion. Wireshark Metageek Eye P.A.
FUNDAMENTAL PROBLEM #1: EXCESS RETRANSMISSIONS EXCESS RETRANSMISSIONS Could be caused by Low Signal to Noise Ratio RF Interference Adjacent Channel Interference
FUNDAMENTAL PROBLEM #1: EXCESSIVE RETRANSMISSIONS LOW SIGNAL TO NOISE RATIO Signal to noise ratio is the most important metric we care about Subtract RSSI level from Noise level to derive SNR Lower SNR means higher likelihood of collisions or retransmissions
LOW SIGNAL TO NOISE
SENSITIVE TO PHYSICS ATTENUATION Loss of signal amplitude (intensity) Materials/obstacles Distance
SIGNAL LEVELS AND COVERAGE TRANSMIT POWER ASYMMETRY 1. I AM HERE! 2. HELLO AP! CAN WE TALK?
SIGNAL LEVELS AND COVERAGE TRANSMIT POWER ASYMMETRY 3. BY ALL MEANS 4. HOW ABOUT THAT LOCAL SPORTS FRANCHISE?
SIGNAL LEVELS AND COVERAGE TRANSMIT POWER ASYMMETRY 2. HELLO AP! CAN WE TALK? 3. HELLO AP! CAN WE TALK? 4. HELLO AP! CAN WE TALK? 1. I AM H
EXCESSIVE RETRANSMISSIONS RADIO FREQUENCY INTERFERENCE
EXCESSIVE RETRANSMISSIONS RADIO FREQUENCY INTERFERENCE Something that modifies or disrupts a signal as it travels Unwanted signal added to wanted signal
ADJACENT CHANNEL INTERFERENCE
ADJACENT CHANNEL INTERFERENCE ADJACENT CHANNEL INTERFERENCE Use non-overlapping channels. In the 2.4 GHz band, use only channels 1, 6, and 11.
WHO GETS TO TALK? MEDIUM CONTENTION
FUNDAMENTAL PROBLEM #2: MEDIUM CONTENTION VISUALIZING MEDIUM CONTENTION Some Wi-Fi equipment reports channel utilization via the BSS beacon frame.
FUNDAMENTAL PROBLEM #2: MEDIUM CONTENTION MEDIUM CONTENTION ROOT CAUSES Co-Channel Interference (CCI) Network Capacity Airtime Issues
MANY DEVICES COOPERATING VIA CSMA/CA CO-CHANNEL INTERFERENCE
Channel 44 Channel 44
Channel 36 Channel 44
CO CHANNEL INTERFERENCE REMEDIATIION Design your network for a minimal channel overlap.
AGAIN, MANY DEVICES COOPERATING VIA CSMA/CA NETWORK CAPACITY
NETWORK CAPACITY CAPACITY REMEDIATION More Access Points Smaller Coverage Cells Band Steering and Load Balancing* *Here Be Dragons, though.
THE MOST COUNTERINTUITIVE OF ALL AIRTIME
TEXT
FUNDAMENTAL PROBLEM #3 NOT THE WI-FI (BLAME IT ANYWAY ) DNS DHCP Slow Internet Connection VLAN Configuration Issues