Upload
others
View
0
Download
0
Embed Size (px)
Citation preview
Wireless Network Strategy Proposal 1
Wireless Network Strategy Proposal
Laura M. Ross
Bryant and Stratton College
Wireless Network Strategy Proposal 2
Table of Contents
Why Wireless?.....................................................................................................................3
Wireless Technology Basics................................................................................................3
Wireless Network Architecture........................................................................................3
Wireless Network Types..................................................................................................4
Wireless Network Standards............................................................................................5
Wireless Network Hardware............................................................................................5
Wireless Configuration....................................................................................................7
Wireless Network Security..............................................................................................7
Wireless Network Equipment Recommendations...............................................................8
Wireless Access Point Recommendations.......................................................................8
Wireless Access Point Specifics..................................................................................9
Wireless Access Point Costs......................................................................................11
Wireless Access Point Locations...............................................................................11
Wireless Access Point Management..............................................................................12
Wireless Network Map......................................................................................................13
Network Specifications......................................................................................................14
References..........................................................................................................................16
Wireless Network Strategy Proposal 3
Why Wireless?
Wireless networking is an integral part of a digital network strategy. Wireless devices
have changed the way we communicate and share information, and they offer many important
advantages, particularly for businesses. One advantage is the mobility allowed by wireless
technology, so business can be conducted from just about anywhere. It may be as simple as
taking laptops and tablets around the office to collaborate, or it may be the benefit of working on
the road during a daily commute or at the airport. Another advantage offered by wireless
technology is scalable. A new device can be connected instantly without worrying about running
cords and wires (which can also be unsightly). A wireless network can also reach further than is
reasonable to run wires and connectors. For these reasons and more this proposal seeks to
explain the fundamental principals of wireless technology so it can be better implemented and
utilized by Bryant and Stratton.
Wireless Technology Basics
The following section outlines basic principles of wireless networking, such as the types
of wireless networks, wireless standards, wireless hardware, how wireless networks are
managed, and wireless security.
Wireless Network Architecture
There are two basic architectures for Wireless Networks. These are ad-hoc and
infrastructure. Ad-hoc networks are created by each device making a direct connection with
every other device on the network. These are largely impractical, because once the size of the
Wireless Network Strategy Proposal 4
network exceeds a few devices the connection become difficult to manage. Infrastructure
networks, on the other hand, use wireless access points (WAPs). Data is sent to the WAP and
then forwarded by that access point to the intended recipient.
Wireless Network Types
There are several wireless network types that are distinguished by scope.
Personal Area Network (PAN): A personal area network is the smallest type of network.
It connects a few personal devices, such as a tablet, printer, computer, speakers, and
phones. These types of networks aren’t meant to connect devices accessed by many
people.
Local Area Network (LAN) and Wireless Local Area Networks (WLAN): This is a
relatively small network that connects devices that are part of the same
organization/group and are located in a reasonably small proximity to each other, such as
an office building. LANs use wires to connect devices together, while WLANs use
wireless radio signals to connect devices.
Metropolitan Area Network (MAN): This is a network owned and operated by a city.
Wide Area Network (WAN) and Wireless Wide Area Network (WWAN): This is a
larger network that connects LANs and WLANs together. As with LANs and WLANs,
WANs are connected using wires, and WWAN are connected using wireless radio signals.
These networks may connect an organization spread over multiple geographic locations
to form an organization-wide network. The internet is a type of WAN, because it connects
several other (W)WANs and (W)LANs to form one enormous network of connected
devices.
Wireless Network Strategy Proposal 5
Wireless Network Standards
Wireless Networks operate using the 802.11 and 802.11x standards developed by the
Institute of Electrical and Electronics Engineers (IEEE). These standards explain the various
radio frequencies and channels that are used to transmit data. The chart below explains the
primary standards used in the USA to create wireless networks.
Standard Frequency Range
Data Speed (MAX)
Approximate Indoor Range (MAX)
Number of Channels
802.11a 5 GHz 54 Mbps 100 ft. 23 (12 that don’t overlap)802.11b 2.4 GHz 11 Mbps 100ft. 11 (3 that don’t overlap)802.11g 2.4 GHz 54 Mbps 125 ft. 11 (3 that don’t overlap)802.11n 2.4 GHz or
5 GHz600 Mbps 225 ft. 2.4 GHz: 11(3 that don’t overlap)
5 GHz: 23 (12 that don’t overlap)802.11ac 5 GHz 1.3 Gbps 90 ft. Depends on how it is configured
Wireless Network Hardware
Wireless networks use several types of hardware to connect devices. These include
wireless access points, wireless routers, wireless repeaters, network switches, and wireless access
cards. Before covering the various devices it’s important to know how data is sent from one
device to another. Every device has a MAC address. This is a unique number assigned and
hardwired into every network device by the manufacturer. Network devices also have an IP
address, which are numerical numbers assigned to a network device. Unlike MAC addresses IP
address numbers can be assigned to a device, and they can and do change depending on the
configuration. The basic concept of MAC addresses and IP addresses help when learning how
network devices forward information from one device to another.
Wireless Network Strategy Proposal 6
Wireless Access Points: These are generally used in office buildings to form a WLAN.
These are connected to either a router, switch, or hub and converts a wired signal to a
wireless one. They don’t perform routing, but instead forward data to another device that
will determine where the information is supposed to be sent.
Wireless Access Point Controller: This device allows for easy management of several
wireless access points. It helps detect interference, load balance, and detect where
overlapping and coverage holes occur and make corrections.
Wireless Routers: These devices forward information based on IP addresses. Data is
separated into packets, and a destination IP is added to each packet so that the router
knows who the intended recipient is.
Wireless Repeater/Range Extender: This device boosts a wireless signal so that it can
reach longer distances.
Wireless Bridge: A wireless bridge connects network segments. It can connect wired
segments to wireless segments so they link together.
Network Switch: Network switches are used for LAN and WLAN communication. The
switch forwards data based on MAC addresses rather than IP addresses to reach the
intended recipient. If data need to be sent beyond the local network, it needs to be sent
via a router.
Wireless Access Cards/Network Access Cards: These are almost always pre-installed
on today’s devices to receive and transmit wireless signals so that the device can establish
a wireless connection.
Wireless Network Strategy Proposal 7
Wireless Configuration
Configuration of a wireless access points can be done either autonomously, with a
WLAN controller, or controller-less. Autonomous (stand-alone) access points were the earliest
iteration of wireless access points and are fairly limited, because autonomous WAPs have no
knowledge or interaction with other WAPs. WLAN controllers are physical devices that
configure the wireless access points on the network, allowing the network technician to make
changes and adjust settings. Controller-less WAPs allow the network technician to make changes
and adjust settings, but don’t require a physical device be installed to do so. Instead, the WAP’s
internal chip allows for the configuration that would normally be done by a controller.
Wireless Network Security
Wireless routers can be configured to use specific types of authentication and encryption.
Authentication means that the device trying to connect to the wireless network can be verified as
belonging on the network, and encryption means that the data sent over the wireless network has
been encoded so that it can’t be read without knowing the key to decrypt it. There are several
security modes that can be used when connecting to a WAP or router. These include:
Wired Equivalent Privacy (WEP): This is a form of security that is not used anymore,
because several security flaws were found and exploited (despite using 128-bit or 256-bit
encryption).
Wi-Fi Protected Access (WPA): This uses pre-shared keys and 256-bit encryption. Like
WEP, WPA security flaws have been found, so this encryption type also not
recommended.
Wireless Network Strategy Proposal 8
Wi-Fi Protected Access II with AES (WPA2-PSK (AES)): This uses AES algorithms
for encryption and a pre-shared key. This is the most commonly used encryption for most
WAPs and routers.
Wi-Fi Protected Setup Access II for Enterprise (WPA2-Enterprise (AES)): This
version of encryption uses pre-shared keys. Unlike WPA2-PSK, this uses a RADIUS
server to authenticate devices to the network, which offers security advantages (although
it also requires more oversight).
Wireless Network Equipment Recommendations
This section addresses the specific device recommendations for wireless network
coverage of Bryant and Stratton College. Some factors that were considered were room sizes and
uses, building materials that may present interference, the potential maximum number of devices
that must be supported, and outdoor coverage.
Wireless Access Point Recommendations
There are many vendors for wireless access points. After conducting a review of features
and services the recommendation is to purchase devices from the same manufacturer, Cisco.
Cisco is a well-recognized leader in networking equipment, and they are known from having
thorough information on the setup, maintenance, and troubleshooting needs of their networking
equipment. Additionally, there is 24-hour customer service support.
Wireless Network Strategy Proposal 9
Wireless Access Point Specifics
The following wireless access points are recommended:
Cisco Aironet 1562E (2 units)1: This model is designed for outdoor coverage. It
uses the 802.11ac standard for high data transfer speeds and backwards
compatibility. It operates in both the 2.4 GHz and 5 GHz frequencies. Features
include:
o MIMO technology for up to three spatial streams.
o Four radios
o Interference detection (Cisco CleanAir)
o Noise reduction
o Can operate in a wide range of temperatures and climates
o Cisco Mobility Express, which is a controllerless technology that allows
for management of a large number of access points.
o Supports up to 400 users
o Cost: Approximately $1,150 each
o See the Wireless Network Map (pg. 13) for placement
Cisco Aironet 4800 (3 units)2: This model is designed for heavy usage. It uses
the 802.11ac standard for high data transfer speeds and backwards compatibility.
It operates in both the 2.4 GHz and 5 GHz frequencies. Features include:
1 Cisco. (November 15, 2018). Cisco Aironet 1560 Series Outdoor Access Points Data Sheet. Retrieved from https://www.cisco.com/c/en/us/products/collateral/wireless/aironet-1560-series/datasheet-c78-737416.html
2 Cisco. (February 15, 2019). Cisco Aironet 4800 Access Point Data Sheet. Retrieved from https://www.cisco.com/c/en/us/products/collateral/wireless/aironet-4800-access-point/nb-09-air-4800-acces-ds-cte.html
Wireless Network Strategy Proposal 10
o MIMO technology for up to three spatial streams.
o Four radios
o Uses Category 5e ethernet for gigabit speeds
o Interference detection (Cisco CleanAir)
o Noise reduction
o Cisco Mobility Express, which is a controllerless technology that allows
for management of a large number of access points.
o Security that detects anomalies and network issues.
o Supports up to 400 users (although in practice this may be closer to 300)
o Cost: Approximately $600 each
o See the Wireless Network Map (pg. 13) for placement
Cisco Aironet 1815M (5 units)3: This access point is great for offices, because it
can penetrate walls and doors. It uses the 802.11ac standard for high data transfer
speeds and backwards compatibility. It operates in both the 2.4 GHz and 5 GHz
frequencies. Features include:
o AES encryption
o Two radios
o MU-MIMO that allows for simultaneous data transmission
o Cisco Mobility Express, which is a controllerless technology that allows
for management of a large number of access points.
3 Cisco. (February 14, 2019). Cisco Aironet 1815m Series Access Points Data Sheet. Retrieved from https://www.cisco.com/c/en/us/products/collateral/wireless/aironet-1815-series-access-points/datasheet-c78-738499.html
Wireless Network Strategy Proposal 11
o Supports up to 400 users
o Cost: Approximately $420 each
o See the Wireless Network Map (pg. 13) for placement
Wireless Access Point Costs
The total estimated cost for these devices is $6,200. Because they have controllerless
management there is no need to purchase an additional controller. Other costs include Cat 5e
cabling and any cable covers necessary.
Wireless Access Point Locations
The Cisco Aironet 4800 wireless access points will be located in the gymnasium, the
library, and in the center of the largest classrooms. This access point can handle the high traffic
needs of very large groups. Two Cisco Aironet 1562E wireless access points will be placed
between the main building and the gymnasium. This should ensure that there are no gaps in
outdoor coverage in the area surrounding the gymnasium and towards the front of campus. The
five Cisco Aironet 1815M wireless access points will be placed strategically throughout the
building to ensure all smaller classrooms and offices are covered. This layout should provide
maximum coverage throughout the campus, so devices can remain connected from any location.
The recommended layout of the wireless access points can be seen in the chart below.
Wireless Network Strategy Proposal 12
Wireless Access Point Management
The wireless access points will be managed by Cisco Mobility Express. The instructions
can be found here: https://www.cisco.com/c/en/us/td/docs/wireless/access_point/mob_exp/83/
user_guide/b_ME_User_Guide_83.html.
The instructions explain how to use the mobility wizard to set up the controller, create the
wireless network, and use the Mobility Express software to manage the access points. A
“master” AP must be designated, and the remaining APs will be associated with it. The interface
is browser based, and provides all of the network management tools to oversee the network.
Wireless Network Strategy Proposal 13
Wireless Network Map
Wireless Network Strategy Proposal 14
Network Specifications
The network architecture recommended is infrastructure, as this is best for larger
networks and easier to manage than ad-hoc. The network type will be a Wireless Local Area
Network (WLAN), and is recommended to contain two Virtual Local Area Networks (VLANs).
This is to increase security through network segmentation. The VLANs will be created by
area/department so that access to one VLAN does not allow access to all hosts on the network.
Network security is a concern, because the open nature of the wireless network. There
should be a VLAN created for teachers and staff with access to their secure resources. This
VLAN should use WPA2 with AES encryption. The teachers will need to have the network key,
and they will further need to authenticate to the network (managed through the school’s VPN
technology). The SSID for the secure VLAN is recommended to be “BryantStratton_Secure”.
Others will be able to use the guest VLAN network, and this will not require an encryption key.
The SSID for the open network is recommended to be “BryantStratton_[location]_Guest”. I
recommend “guest” because this is a common way to designate the open nature of this network.
MAC address control will not be used for the WLAN, because there are many devices that will
be connecting, and these may be constantly changing.
The recommended network standard is 802.11ac. This standard provides high speed data
transfer and backwards compatibility so that older/legacy devices can be used. The 802.11ac
standard operates at both the 2.4 GHz and 5 GHz standards, and is compatible with the older
802.11b/g/n standards. This standard also uses channel bonding to increase throughput.
As mentioned in the Wireless Access Point Management section, the access points will be
managed through Cisco Mobility Express (wherein a master AP controller is designated and the
Wireless Network Strategy Proposal 15
other APs are considered underneath this master). The channel configuration will need to be
determined after conducting a site survey. Because maximum wireless coverage is the goal, the
power settings will be set to their highest capacity, as this will help to ensure that more students
and teachers can access the WLAN as they move around campus.
Wireless Network Strategy Proposal 16
References
1. L-Com. (2016, May 17). An A to Z review of the 802.11 standards. Retrieved from http://www.l-com.com/content/Article.aspx?Type=N&ID=10638
2. TestOut Network Pro. (n.d.). Section 10.2.x. Retrieved from https://www.testout.com
3. Hoffman, Chris. (2017, July 20). Wi-Fi Security: Should You Use WPA2-AES, WPA2-TKIP, or Both? Retrieved from https://www.howtogeek.com/204697/wi-fi-security-should-you-use-wpa2-aes-wpa2-tkip-or-both/
4. Wikepedia. (n.d.) Wireless LAN controller. Retrieved from https://en.wikipedia.org/wiki/Wireless_LAN_controller
5. Cisco. (November 15, 2018). Cisco Aironet 1560 Series Outdoor Access Points Data Sheet. Retrieved from https://www.cisco.com/c/en/us/products/collateral/wireless/aironet-1560-series/datasheet-c78-737416.html
6. Cisco. (February 15, 2019). Cisco Aironet 4800 Access Point Data Sheet. Retrieved from https://www.cisco.com/c/en/us/products/collateral/wireless/aironet-4800-access-point/nb-09-air-4800-acces-ds-cte.html
7. Cisco. (February 14, 2019). Cisco Aironet 1815m Series Access Points Data Sheet. Retrieved from https://www.cisco.com/c/en/us/products/collateral/wireless/aironet-1815-series-access-points/datasheet-c78-738499.html