Changes between Version 10 and Version 11 of IETF99network


Ignore:
Timestamp:
15 Jul 2017, 06:43:05 (6 months ago)
Author:
panda@…
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • IETF99network

    v10 v11  
    6565
    6666All networks marked as encrypted will offer layer 2 security. This is done using WPA2 enterprise with 802.1X (PEAP or TTLS) authentication and AES encryption. As usual, we are all using the same credentials (user “ietf”, password “ietf”), yet each user will get unique session encryption keys. Stefan Winter has kindly provided signed profiles that will supply the appropriate SSL certs: https://802.1x-config.org/?idp=137&profile=101
     67
     68Our wireless LAN infrastructure implements the following two BCP38-like filtering.
     69* Packets from manually configured IPv4 addresses that are not assigned by DHCP are dropped. DHCP packets are snooped by our wireless LAN controllers to perform this filtering.
     70* Packets from IPv4 and IPv6 addresses that cannot be resolved via ARP/NS are filtered out. Proxy ARP/ND is performed by our wireless LAN controllers for this filtering.
    6771
    6872== Experiments ==