Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 | 3 | 4
2030 posts

Uber Geek
+1 received by user: 333

Subscriber

  Reply # 719570 19-Nov-2012 15:46 Send private message

MattR:
wasabi2k: I have seen Unifi done really well in campus environments, but sales support is pretty average in NZ. How long does it take to get spares?


I get them next day from gowifi, but they're cheap enough to have some spares on-site.


Sales support is great from Go Wifi and as stated they are so cheap so we always have a spare 3-pack in the office ready to go.

5971 posts

Uber Geek
+1 received by user: 109

Trusted
Subscriber

  Reply # 719707 19-Nov-2012 19:59 Send private message

Hi, the MoE is currently (and finally) coming up with some documents as to how school wireless networks just like what you are wanting to are setup, and essentially they follow the themes some of the posters on this thread have made. I recently passed my comments on the document back to the MoE.

PM if you want some feedback and more detailed setup methods, but can I support comments from Chevrolux that Unifi is a good product, there are other products more appropriate to much larger campuses (although I still struggle with the $) but to be honest a well setup Unifi network will work very well both on security/performance and the pocket.

If you are doing BYOD then you should be considering putting some money into a good firewall/proxy (which could be free in the form of a Pfsense or similar setup) and have BYOD traffic controlled as to where it goes and what restrictions you want. Setting up a AD/radius server to control access is also a good idea, infact pretty essential.

Cyril



293 posts

Ultimate Geek
+1 received by user: 34


  Reply # 719713 19-Nov-2012 20:07 Send private message

Thank you all for your help.

It seems it is both more and less complicated than what I first thought, more complicated to do it DIY and less complicated to do it properly (and less expensive).  I will be responding to the PMs soon and I have some hardish facts to give to the DP and IT person.

Once again thank you

2329 posts

Uber Geek
+1 received by user: 79


  Reply # 719768 19-Nov-2012 21:24 Send private message

Ahh, another example of "She'll be right" lack of security as hilighted at Kiwicon ;)
(Glad you've seen the light).

See http://wand.net.nz/pubs/112823169-New-Zealand-Information-Security-Workforce-Development-Strategy-Nov-2012-V1.pdf

3015 posts

Uber Geek
+1 received by user: 197

Trusted
Subscriber

  Reply # 719823 19-Nov-2012 22:59 Send private message

kyhwana2: Ahh, another example of "She'll be right" lack of security as hilighted at Kiwicon ;)
(Glad you've seen the light).

See http://wand.net.nz/pubs/112823169-New-Zealand-Information-Security-Workforce-Development-Strategy-Nov-2012-V1.pdf


Bloody kiwis!





61 posts

Master Geek
+1 received by user: 8


  Reply # 720083 20-Nov-2012 14:08 Send private message

Otago University are spending $7,000,000.00 Yes that is $7 Million on expanding their wireless network!
http://www.odt.co.nz/campus/university-otago/233473/19m-broadband-upgrade-otago-university
Good contract for someone!

1969 posts

Uber Geek
+1 received by user: 83

Subscriber

  Reply # 720167 20-Nov-2012 15:48 Send private message

As a parent who spent good money on IT devices so my kids could BYOD at their high school, only to have them leave them at home because "the school has such useless wifi" (paraphrased to remove teen-speak) I can only encourage a proper system be installed. While I know it is public money you are trying to save, don't forget there is investment from families as well that is wasted if the system is subpar.




Areas of Geek interest: Home Theatre, HTPC, Android Tablets & Phones, iProducts.

2030 posts

Uber Geek
+1 received by user: 333

Subscriber

  Reply # 720179 20-Nov-2012 15:58 Send private message

msukiwi: Otago University are spending $7,000,000.00 Yes that is $7 Million on expanding their wireless network!
http://www.odt.co.nz/campus/university-otago/233473/19m-broadband-upgrade-otago-university
Good contract for someone!


Wow! I have never seen the Otago campus so don't really know how big it is. But I am guessing this is not just going to be a 'wireless upgrade'. It is probably going to involve a hell of a lot of cabling. Upgrading backbone fibres and existing copper outlets can cost quite a few dollars - especially when consultants whack on their fees.

138 posts

Master Geek
+1 received by user: 6

Trusted

  Reply # 720259 20-Nov-2012 17:55 Send private message

Zenbu http://www.Zenbu.net.nz is used by several schools and other government bodies.   But most government departments like to spend a LOT of money rather than have a really good system that's cheap, reliable and very easy to deploy and manage.    

If you want extra coverage, you can get it from GoWiFi  http://www.gowifi.co.nz/combo-wifi-kits/ubiquiti-ns2-zenbu-wireless-extension-outdoor-kit.html   Take the Ubiquiti Nanostation/s out of the box, plug it into port 1 on the Zenbu router and hey presto, problem solved.   

Print access vouchers and give them to students [or sell them if you want to collect a bit of money to cover the cost of the internet].   

Mqurice



2030 posts

Uber Geek
+1 received by user: 333

Subscriber

  Reply # 720289 20-Nov-2012 19:01 Send private message

Zenbu might be ok for hotels and public wifi but is hardly a good solution for a school.

138 posts

Master Geek
+1 received by user: 6

Trusted

  Reply # 720293 20-Nov-2012 19:14 Send private message

chevrolux: Zenbu might be ok for hotels and public wifi but is hardly a good solution for a school.


Why is that?    Those schools and other government places which have it seem very happy with it.



2030 posts

Uber Geek
+1 received by user: 333

Subscriber

  Reply # 720356 20-Nov-2012 20:48 Send private message

Well it isnt exactly a full solution if the school wants wireless access to their network. Isn't the whole point of getting zenbu is that it is a simple way for someone to give public wifi that keeps their internal network safe. If i was just wanting basic internet access for guests then zenbu is fine but it wont give access to the internal network.

138 posts

Master Geek
+1 received by user: 6

Trusted

  Reply # 720448 20-Nov-2012 23:10 Send private message

Blackjack specifically said they just want to provide internet access:  
chevrolux: Well it isnt exactly a full solution if the school wants wireless access to their network. Isn't the whole point of getting zenbu is that it is a simple way for someone to give public wifi that keeps their internal network safe. If i was just wanting basic internet access for guests then zenbu is fine but it wont give access to the internal network.


Here is what Blackjack wrote:   << what we want 
Quite simply we only want access to the internet, not the network or student drives.  For teachers we all have laptops with wired connections.  

We don't care if students show up on the weekends for free internet, the sites they want are mainly blocked (facebook, twitter, torrent, web streaming) (yeah I know they can get around the blocks).  If it became a problem we could simply but the access points on timers >>

Zenbu does what he has described.   Better and cheaper than anything else.   




332 posts

Ultimate Geek
+1 received by user: 54


  Reply # 720658 21-Nov-2012 11:20 Send private message

MauriceWinn: Blackjack specifically said they just want to provide internet access:  
chevrolux: Well it isnt exactly a full solution if the school wants wireless access to their network. Isn't the whole point of getting zenbu is that it is a simple way for someone to give public wifi that keeps their internal network safe. If i was just wanting basic internet access for guests then zenbu is fine but it wont give access to the internal network.


Here is what Blackjack wrote:   << what we want 
Quite simply we only want access to the internet, not the network or student drives.  For teachers we all have laptops with wired connections.  

We don't care if students show up on the weekends for free internet, the sites they want are mainly blocked (facebook, twitter, torrent, web streaming) (yeah I know they can get around the blocks).  If it became a problem we could simply but the access points on timers >>

Zenbu does what he has described.   Better and cheaper than anything else.   


Sounds like UniFi gear would have a pretty similar cost .. and is more future proof if the school later wants to e.g. provide a separate VLAN for staff laptops.

46 posts

Geek


  Reply # 721002 21-Nov-2012 22:16 Send private message

MauriceWinn:We don't care if students show up on the weekends for free internet, the sites they want are mainly blocked (facebook, twitter, torrent, web streaming) (yeah I know they can get around the blocks).  If it became a problem we could simply but the access points on timers >>


If the network is properly configured this won't happen.

Wactchdog is a fairly basic proxy service, it's security capabilities are out of date by around 8 years. It doesn't really do Layer 7 inspection, and apps will often tunnel. I've even seen porn getting through it (hullo real18.com :)  ).

First steps towards deploying BYOD is to properly secure the network. That means:
 - decent firewall
 - AD integration for user based policies
 - decent web filtering
 - decent application/Layer 7 filtering
 - decent reporting

THEN you can start looking at your BYOD rollout.

What happens if the school doesn't do this right:
 - potential exposer to copyright infringement notices, actions, and fines
 - potential exposer to bandwidth blowouts and resulting bills
 - potential lose of effective internet due to bandwidth blowout leading to rate limiting
 - potential expose to reputational and legal liabilities when students access inappropriate content
 - prone to misuse (at least one school provider has been involved in DoS attacks)

The reason for paying someone to do a right job up front is to save money and potential ones job.

Back onto the wireless. $3k per AP sounds ridiculous even for an enterprise grade AP - however it may be Xirrus APs, where a single AP acts as 8. Personally I don't like the Xirrus design. Even so you are going to be spending $600-$1000 for enterprise quality APs. Anything less is going to be consumer grade radio's, which means less clients per AP, less range, and less performance.

1 | 2 | 3 | 4
View this topic in a long page with up to 500 replies per page Create new topic




Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





Trending now »

Hot discussions in our forums right now:

Speed limit when overtaking? Teach me please.
Created by nakedmolerat, last reply by Hobchild on 26-Oct-2014 00:11 (92 replies)
Pages... 5 6 7


House Auctions
Created by t0ny, last reply by Elpie on 26-Oct-2014 00:54 (45 replies)
Pages... 2 3


VDSL, which router/modem sub $200?
Created by TeaLeaf, last reply by NonprayingMantis on 25-Oct-2014 19:48 (28 replies)
Pages... 2


Neon - Sky's new streaming service
Created by JarrodM, last reply by JimmyH on 25-Oct-2014 17:37 (29 replies)
Pages... 2


iPad Air 2 and iPad Mini 3. Gonna get one?
Created by Dingbatt, last reply by tungsten on 25-Oct-2014 20:22 (115 replies)
Pages... 6 7 8


5Ghz AP recommendations?
Created by ubergeeknz, last reply by sbiddle on 24-Oct-2014 12:42 (12 replies)

Snap have failed our company!
Created by dafman, last reply by kornflake on 23-Oct-2014 17:41 (37 replies)
Pages... 2 3


Thief taunts 12 year old via stolen laptop
Created by macuser, last reply by charsleysa on 22-Oct-2014 23:49 (12 replies)


Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.