Profile

CommunityPlatform_1350x900.jpg

Chuck Enfield III

Edit My Profile

My Content

1 to 20 of 50+ total

RE: VLAN Pruning AP Ports

Posted By Chuck Enfield 04-18-2024 09:25:55 AM
Found In Egroup: Network Management \ view thread
Not calling you out here JJ. I wanted to mention this yesterday but didn't get to it. Regarding, "[Tunneling] is the EASY button and will streamline operations and help with security by avoiding misconfigurations, stray VLANs, and stray routing. Plus you won't have to maintain ACLs everywhere." ...

RE: Managing Capacity Expectations of Outdoor Wi-Fi

Posted By Chuck Enfield 04-10-2024 05:42:39 AM
Found In Egroup: Wireless Local Area Networking \ view thread
I think you need to design for known usage and make everybody aware that's how it works. There's no way to design for unknown usage, and if you dream up scenarios for "if there's an event at this locations, what's the largest group and the greatest bandwidth requirement possible", 1) you probably can't ...

RE: Point 2 Point for Athletic fields?

Posted By Chuck Enfield 04-04-2024 11:04:05 AM
Found In Egroup: Network Management \ view thread
If you would like to discuss more in the community, I wouldn't mind reading it. I'm currently assisting a researcher design a roadside network spanning a couple km, and I was planning to use Ubiquity Wave 60GHz products. I may glean some useful info from the conversation. Thanks, Chuck Enfield ...

RE: SpeedQueen Laundry Machines and Gateways

Posted By Chuck Enfield 03-06-2024 11:48:24 AM
Found In Egroup: Wireless Local Area Networking \ view thread
Hi David, We don't have those laundry machines, but we have the same problem with other devices. 2.4GHz is unreliable in our res halls, and we haven't been able to make it reliable. We mange TX power, and disable some 2.4GHz radios, but there's just too much stuff in that band for the available ...

RE: Best DHCP Lease duration Practice for Small-Medium CANs?

Posted By Chuck Enfield 02-23-2024 09:17:48 AM
Found In Egroup: Network Management \ view thread
Just My $0.02, but it's possible that whatever is occurring in the late evenings is occurring all day. The difference could be how the students use the network. Except for real-time video (Zoom, Teams, Facetime, etc.) most daytime use is either intermittent, buffered, or both. Many brief interruptions ...

RE: Best DHCP Lease duration Practice for Small-Medium CANs?

Posted By Chuck Enfield 02-23-2024 08:39:12 AM
Found In Egroup: Network Management \ view thread
The only case I can make against really long lease times is that it can be an obstacle to renumbering. I acknowledge that's a rare issue when using private addresses with NAT, and you can get around it by reducing the lease time going into the network change like we do with DNS TTLs. That said, I don't ...

RE: Best DHCP Lease duration Practice for Small-Medium CANs?

Posted By Chuck Enfield 02-23-2024 08:33:16 AM
Found In Egroup: Network Management \ view thread
Hi Michael, We use 2-hour leases for our guest network and 8-hour leases for authenticated clients. We have a variety of Wi-Fi networks, and he experimented with a wide range of lease times over the years, from as low as 15-minutes to as long as 24-hours. We found that for any network where ...

RE: Upcoming HIPAA compliance requirement question

Posted By Chuck Enfield 02-09-2024 09:49:53 AM
Found In Egroup: Communications Infrastructure and Applications \ view thread
Hi Rhonda, At Penn State the HIPAA data would be restricted to servers in enclaves – isolated from everything else by default, and only reachable from specific networks with controlled access or by certain people/endpoints when connected to our VPN. Wired networks are an organizational responsibility, ...

RE: Working with other networks on campus

Posted By Chuck Enfield 01-23-2024 09:48:50 PM
Found In Egroup: Network Management \ view thread
Hi Alan, Wired networks are a cost-recovered service for central IT at Penn State. I've been in the telecom organization for 27 years, and to be frank, we weren't always very good at our jobs. We were competent network operators, but our service portfolio left a lot to be desired. Since the units ...

RE: Large scale NAT for LAN/WLAN clients

Posted By Chuck Enfield 01-17-2024 12:04:57 PM
Found In Egroup: Wireless Local Area Networking \ view thread
Thanks Kitri. I probably misremembered the pool size. I thought it was /23, but it was probably /24. It's possible what I was told about a global address limit wasn't correct, even at the time. We were new to Palo then, and somebody may have misinterpreted a per-pool limit as a global limit. ...

RE: Large scale NAT for LAN/WLAN clients

Posted By Chuck Enfield 01-17-2024 09:40:37 AM
Found In Egroup: Wireless Local Area Networking \ view thread
We use our Palo Alto perimeter firewalls for NAT. We don't do a ton of NAT under normal circumstances, but we once accidentally NAT'd the entire institution onto a pair of PA-5400's. The only problem we had was with systems that couldn't operate behind NAT. The firewalls handled it just fine. I'm ...

RE: Aruba Controller upgrade to 8.10.0.9

Posted By Chuck Enfield 12-22-2023 09:31:07 AM
Found In Egroup: Wireless Local Area Networking \ view thread
Hi Chintan, I don't see anything in the grease note indicating that problem #1 is fixed. Aruba has known about that problem for years. I assume that if they could fix it they would have done so by now. Amel Caldwell documented the workaround in an old post. Chuck I am old school and shy away from ...

RE: Wi-Fi issues caused by KB5032288?

Posted By Chuck Enfield 12-15-2023 05:15:55 PM
Found In Egroup: Wireless Local Area Networking \ view thread
We're among the few still using PAP, so it may be password auth rather than just MSCHAP.

RE: Wi-Fi issues caused by KB5032288?

Posted By Chuck Enfield 12-14-2023 11:46:21 AM
Found In Egroup: Wireless Local Area Networking \ view thread
Got another incident this morning and uninstalling KB5033375 fixed the problem. So far, we've only had three incidents in the last week about this, out of roughly 20,000 unique Windows devices that connect to our Wi-Fi on any given day. As long as the rate of incidents stays low, I'm not going ...

RE: Wi-Fi issues caused by KB5032288?

Posted By Chuck Enfield 12-14-2023 08:59:35 AM
Found In Egroup: Wireless Local Area Networking \ view thread
I'm aware of two incidents resolved by uninstalling a recent Windows update. They we're addressed via email and we didn't get feedback on the KB#. We're Aruba and have 11r enabled.

RE: Aruba AP-58x not connecting

Posted By Chuck Enfield 12-07-2023 02:27:18 PM
Found In Egroup: Wireless Local Area Networking \ view thread
Sorry, one last thought. You could also try bypassing ADP by configuring the master and server IP boot variables as described at https://www.arubanetworks.com/techdocs/ArubaOS_64x_WebHelp/Content/ArubaFrameStyles/AP_Config/AP_Console_Settings.htm. If that doesn't work then you know the problem has nothing ...

RE: Aruba AP-58x not connecting

Posted By Chuck Enfield 12-07-2023 02:18:20 PM
Found In Egroup: Wireless Local Area Networking \ view thread
Oh, and option 60 is case sensitive.

RE: Aruba AP-58x not connecting

Posted By Chuck Enfield 12-07-2023 02:16:08 PM
Found In Egroup: Wireless Local Area Networking \ view thread
HI Derrick, We don't have any AP-580's, but we have had some APs not find the controllers for various reasons. Regarding DNS discovery, watch the consol output as the AP boots and check the DNS name it looks for when doing ADP. We had a bunch of Aps years ago with corrupted boot configs that were ...

RE: Update on preconference workshop in Chicago next week

Posted By Chuck Enfield 10-09-2023 03:54:05 PM
Found In Egroup: Network Management \ view thread
Thank you to everybody who organized today's event or presented. I rarely get to attend Educause and normally would have missed out on this. I learned several timely and helpful things today because you went the extra mile. Chuck Enfield Manager, Wireless & Cellular Penn State IT 814-863-8715

RE: MacOS Sonoma Problems

Posted By Chuck Enfield 10-02-2023 10:26:11 AM
Found In Egroup: Wireless Local Area Networking \ view thread
Thanks Jeff. We found the same thing Late Friday, but with nobody else reporting it we concluded it was specific to Global Protect. I planned to post an update once we replicated it a few times. Chuck