Need an 802.11 b/g/n WAP in a corporate environment

Discussion in 'Shiny Things' started by troidus, Jan 30, 2013.

  1. troidus

    troidus Long timer

    Joined:
    Sep 1, 2010
    Oddometer:
    16,715
    Have two Cisco 4410Ns that are utter crap. There is a Cisco WAP121 that's not much better. Looking for something good that doesn't cost a fortune. Need N support, but not necessarily 5GHz. Any suggestions? Been looking at the HP M220, but can't find any reviews and don't know if the boss will balk at the $300 price tag.
    #1
  2. a1fa

    a1fa Throttle Jockey™

    Joined:
    Nov 1, 2006
    Oddometer:
    13,919
    Location:
    Arkansas
    What kind of back-end security are you doing? WPA2 is not enough for corporate enviroments, especially if you are getting audited against it. Are you doing any Cisco proprietary agents and certificate first layer authentication? If not, look into ubnt.com, very well designed equipment by ex Motorola engineers.
    #2
  3. a1fa

    a1fa Throttle Jockey™

    Joined:
    Nov 1, 2006
    Oddometer:
    13,919
    Location:
    Arkansas
    PS: and if you are doing any of the Cisco proprietary stuff, ditch it, and run SSL VPN (OpenVPN, or such) for your authentication on top of the WPA2... save you a pretty penny. :evil
    #3
  4. troidus

    troidus Long timer

    Joined:
    Sep 1, 2010
    Oddometer:
    16,715
    NOTA, unfortunately. I only recently (last summer) talked them in to letting me switch to WPA2 from WAP. There are other problems that need to be addressed, but I can't do anything about that at the moment.
    #4
  5. troidus

    troidus Long timer

    Joined:
    Sep 1, 2010
    Oddometer:
    16,715
    Thanks for that suggestion. Their gear sounds really good, and for what we're looking for, not expensive.
    #5
  6. Dismount

    Dismount Boring bastard

    Joined:
    Feb 6, 2007
    Oddometer:
    9,311
    Location:
    Beckley wv
    We're using the ubnt stuff. Good gear.

    I think I have about 20 of their access points up.
    #6
  7. snarf

    snarf WFO and clueless

    Joined:
    Aug 21, 2007
    Oddometer:
    659
    Location:
    Wichita, KS
    We run Pepwaves for the rest of our clients that arent on cisco gear. They run great, have very strong signal quality, and have lasted a good long while.

    If your boss is balking at $300.. well.. lol.. you can't get a baller, business class unit for $59.95 at office depot.. just saying..
    #7
  8. a1fa

    a1fa Throttle Jockey™

    Joined:
    Nov 1, 2006
    Oddometer:
    13,919
    Location:
    Arkansas
    but you can get even better quality gear for under $100 from ubnt.com..

    cisco fan boys cry morah.. :D
    #8
  9. Attico

    Attico Wrong way 'round

    Joined:
    Sep 7, 2006
    Oddometer:
    2,061
    Location:
    Aylmer, Quebec
    Take a look at asus routers like the rt n66u. Enable mac address filtering as an extra layer to the wpa2. You should be below 200. Its consumer gear, but you can crank the power up and cover a decent building. For 300, your options are limited.
    #9
  10. troidus

    troidus Long timer

    Joined:
    Sep 1, 2010
    Oddometer:
    16,715
    Not happening. I'm not chasing down every laptop and mobile phone that needs access. Besides, MAC addresses can be spoofed.
    #10
  11. KSJEEPER

    KSJEEPER Long timer

    Joined:
    May 3, 2005
    Oddometer:
    4,401
    Location:
    Kansas City area
    We went Aruba, have over 1k of them up and relatively problem free.
    #11
  12. SimpleSimon

    SimpleSimon Aspiring advrider

    Joined:
    Feb 28, 2007
    Oddometer:
    3,399
    Location:
    Lake Stevens, WA
    I'd look at something inexpensive like a combination of dd-wrt and freeradius with 802.1x and an EAP-TLS method. Freeradius seems well supported, as does dd-wrt. DD-wrt affords you the ability to re-use off-the-shelf hardware.
    #12
  13. a1fa

    a1fa Throttle Jockey™

    Joined:
    Nov 1, 2006
    Oddometer:
    13,919
    Location:
    Arkansas
    dd-wrt == overhead and support costs not included..

    ubnt is probably the industry best when it comes to price, performance and support. everything else is headache.
    #13