Mesh Networking Advice Needed

Cybjun

Cybjun

Member
Reaction score
7
Location
Sacramento, CA
I have a client that is remodeling a large 200 sq. ft. x 200 sq. ft. two story building and they want a wireless network. I want to make sure the wireless has good security yet keeping it easy to use. I'm wondering if anyone here can give me some of there input on different mesh network setups. What you have used? the pros & cons? not looking for instructions on how to set it up just what people have had to best luck with and what to say away from

thank you
 
mesh is junk, unless the units has 2 radios 1 for the ap and 1 for a backhaul link

mesh cuts the speed in half on every link create

stand away, if they are remodeling have them install network cable throughout the building and then run cable to each AP and use a wan controller based system such as ubnt unifi
 
I know two solutions that will work for you. The first is using Cisco Unified Wireless. This involves setting a Wireless Controller that manages a dumb access point "AP". The AP doesn't contain any data that can be use to break the security if stollen. If it's deployed properly (at least three AP per common area), then you can triangulate the exact location of the client. With this set up, your client can move from one end of the building to the other end without losing connection. You can also deploy multiple SSID and assign different bandwidth, security, etc.

Second solution is using DD-WRT. Similar to the above but all AP must be wired otherwise you will cut the WIFI bandwidth in half.

I've deployed both products. Cisco is more reliable but DD-WRT is much affordable. Cisco is complex but straight forward and easy to troubleshoot. DD-WRT is easy to setup (lots of youtube how to) but you need to have a good understanding of WIFI to troubleshoot

Both will provide the MESH setup your looking for.

Fyi, there are 14 channels. Make sure each channel is at least 5 channel apart
Let say you AP1 is on Channel 1, AP2 is on Channel 6 and AP3 is on channel 11. All three "AP1, AP2 and AP3" have a common area. You can put AP4 on channel 2 where AP4 has a common area with AP3 but not with AP1.



Hope this helps.

__________________
Roel

Sarceno Network Consulting
http://www.snccomputerrepair.com/
 
Last edited:
rsarceno said:
I know two solutions that will work for you. The first is using Cisco Unified Wireless. ...
Click to expand...

I haven't even considered Cisco, since I'm a Cisco partner I'll check this out.

We are not all that worried about bandwidth as they have a good T1 connection. I was asked about mesh networking by one of the technically savy employees at the client location thats why I want to include a few option for them at least.

Have you tried any particular mesh network setup like Meraki or OpenMesh. and if so what was it you liked/disliked about it?
 
You can use them all on Auto Channel; yeah, they WILL overlap a bit in the 2.4ghz space, but it shouldn't be a problem.

You are more likely to take a hit if you manually configure them.

200 ft. by 200 ft. is 4000 sq. ft... a small customer who needs maybe 2 access points at most. Just configure them with the same SSID and WPA2-PSK key... and you should be good.
 
NETWizz said:
You can use them all on Auto Channel; yeah, they WILL overlap a bit in the 2.4ghz space, but it shouldn't be a problem.

You are more likely to take a hit if you manually configure them.

200 ft. by 200 ft. is 4000 sq. ft... a small customer who needs maybe 2 access points at most. Just configure them with the same SSID and WPA2-PSK key... and you should be good.
Click to expand...

For my recommended setup I'm strongly leaning towards a Cisco solution, but as I stated earlier the customer does want a quote for mesh with the pro & cons, I like giving my customer a few choices with a good amount of info. especially when they ask about specific setups but since I have not done a mesh network looking for other techs that have and can share the pros & cons for what they used.

thanks for the info so far.

EDIT: being that Cisco did refer us to this customer probably a good I idea to recommend there product too
 
Last edited:
Yeah the Cisco Wirless Lan Controllers are nice. I tried to get my company to invest in one as we have about 30 cisco AP's company wide in different offices, but they didnt like the 25k pricetag.

The access points themselves use Lightweight Access Point Protocol (LWAPP) and get their config, firmware etc from the controller.
 
It is a waste for such a small network to use Cisco. The advantages of Cisco are simply the GUI that lets you configure ALL your access points throughout your corporate infrastructure simotaneously.

i.e. If I wanted to, I could set a WPA2-PSK key and set it on all our 600+ access points in about 5 minutes. Each and every Access Point would be ready.

That said, we are actually using Aruba, which is like HP ProCurve, which is like Cisco... Either way we are using $400 access points... any of them in that price range have the same features as the Cisco (for the most part). Obviously, TACACS+, LEAP, and CDP are all proprietary though a few non-Cisco devices support these.

That said, I would opt for RADIUS over TACACS+ any day of the week... LEAP sucks... PEAP is WAY better (just make sure to use a Certificate) & setup MS-CHAP-V2... for the handshake... CDP is something that gives information to neighboring devices; I turn it off. Who cares if "show cdp neighbors" doesn't work? Besides, LLDP is way, way better than CDP and works on more devices if you are keen on using one.

Me personally, I disable CDP & SNMP, too (except for what ProCurve Manager sets up).


****************************

If you are going to buy Cisco then go all out and configure it right:

1. Setup a Private Key Infrastructure (PKI) with your CAs, Trusted Root, Intermediaries, etc.

2. Setup your Active Directory

3. Setup your Network Policy Server (NPS) to do 802.1X

4. Setup your Remote Access Policy to allow "Domain Computers" and any group you want to access WiFi...

5. Create a Certificate for PEAP and use the CA to Trust your own Cert via Group Policy.

6. Configure the Access points to do Auto Channel, have the same SSID, use WPA2-ENTERPRISE (or WPA2-RADIUS -> They are the same).

7. Enable 802.1x authentication on the Wireless Network Adapters & Select PEAP...

8. Add your Public Key for the Cert if you haven't already had AD install it...

9. Turn on MS-CHAP-V2 to do the handshake and authentication.

10. Have it automatically send the Username, Password, & Domain (there is a check-box)

11. Set them to "Automatically Connect when In Range"


When everything works, setup an 802.11 policy to auto-configure ALL your laptops.



The above is how I do it at work...


Don't buy Cisco for the name. In a small, 4000 sq. ft. facility that is going to use WPA or WPA2 with a Pre-Shared-Key, save the money & buy two access points... strategically place them with the same SSID and security settings (auto channel)... connected to the same network & call it good...

Your clients will have the SAME end-result for 25% the cost.
 
You must log in or register to reply here.

Similar threads

britechguy
Current "tech favorites" for mesh WiFi for a large home or business covering about the same square footage
Replies
12
Views
7K
NETWizz
NETWizz
HCHTech
Planning AP configuration for large space
Replies
10
Views
2K
Metanis
Metanis
thecomputerguy
I need a cloud storage option for potentially 10TB of data.
2
Replies
22
Views
821
YeOldeStonecat
YeOldeStonecat
britechguy
Apple Migration Assistant vs Time Machine for transfer between machines
Replies
4
Views
1K
Markverhyden
Markverhyden
Pork Chop
[SOLVED] Should I offer my clients a choice of Win 10 or incompatible Rufus Win 11?
Replies
13
Views
2K
sits
S
Back
Top