Wireless Networks Causing Headaches For Businesses

ElvaWSJ writes "Wi-Fi was supposed to reduce complications, not create new ones. But in many offices Wi-Fi has been a headache. Like all radio signals, Wi-Fi is subject to interference. Its low power — less than even a typical cellphone — means that walls and cabinets can significantly reduce signal strength. Wi-Fi also creates networks that are more open than wired ones, raising security issues. And Wi-Fi has caused problems for virtual private networks. Some VPNs require a lot of processing power. If a wireless access point — at home, at the office, or on the road — isn't robust enough, a user often gets bumped off the connection."

Um...

[cromar]

Duh?

Re:Um...

[Aqua_boy17]

Was that a tag, or a comment? Either way, it fits.

Bullshit

[DJCacophony]

VPNs require exactly the same amount of processing power on an access point as any other network application. The access point doesn't encrypt or decrypt anything on a VPN. All it sees are packets and frames, regardless of the application.

Re:Bullshit

[Mike Buddha]

VPN sessions are much more time sensitive than other applications. Any latency caused by, oh say, packet retransmission due to interference will cause the session to be invalidated. Try connecting a VPN through a satellite connection (HughesNet), or through an access point in an area with lots of other wireless networks overlapping. You WILL lose your connections. Heck, I've had problems using some dial-up services even.

Re:

[Baron_Yam]

If you're doing that sort of thing, I strongly suggest getting a commercial mobile connectivity solution instead of relying on what comes with your OS.

I can think of at least two Canadian-based solutions that would resolve the issue of intermittent connection loss without even letting your apps be aware of the issue.

Re:

[Kijori]

If you're doing that sort of thing, I strongly suggest getting a commercial mobile connectivity solution instead of relying on what comes with your OS.

I can think of at least two Canadian-based solutions that would resolve the issue of intermittent connection loss without even letting your apps be aware of the issue.

Are they secret?

Re: Connectiviy solution

[Baron_Yam]

My personal recommendation can be found at http://www.radio-ip.com/ [radio-ip.com]

Re:

[YouTookMyStapler]

It really shouldn't be a surprise that a wi-fi signal gets weaker as you move away from the source. This would be the same as people saying "I had no idea that the further away from a cell tower you get the weaker the reception."

"It was almost like if you wanted to have remote access, you'd better expect to not have a good experience," says Mr. Friemann, 38 years old, who is based in Cherry Hill, N.J.

Some people are just so negative.

Re:

[Dog-Cow]

I use wireless at home for my laptop and the upstairs computer. The only time a signal is lost is when someone knocks out the plug for the AP.

My county is providing free wireless and I live in one of the test areas. I can get a signal in my basement.

I think you just plain suck.

Re:

[The_Quinn]

This is one of the reasons I am greatly anticipating Sprint's new WIMAX wireless broadband network. [gizmodo.com]

I think it will be one of those breakthroughs where you won't even realize how cool it is until you start seeing people wandering around with wireless devices that "just work", anywhere, without much thought of how or why.

Re:

[walt-sjc]

Anyone remember Sprint's failed Broadband Direct? I had it back in the late 90's in San Jose. It was basically cablemodem type speeds over wireless, but the latency was HORRIBLE, and so was the reliability. Let's see if they can do wireless internet RIGHT this time...

Re:

[rhizome]

I think it will be one of those breakthroughs where you won't even realize how cool it is until you start seeing people wandering around with wireless devices that "just work", anywhere, without much thought of how or why.

How many of these have we seen in the last 20 years?

"YOU WILL."

No, not duh

[Poromenos1]

That's not the actual worst thing. I can handle all the "access from anywhere", that was what it's designed to do. The worst thing is when the access point sometimes decides to reset (I have a Linksys AP) and it reverts back to it's original, OPEN SETTINGS. I go to work one day and I notice that the AP changed its ssid back to "linksys", giving free access to everyone within the radius for the past week.

Seriously, wtf.

Re:

[SCHecklerX]

why are you using consumer-grade APs in a business network?

Re:

[Poromenos1]

It's actually a company, but it's not large enough that they'd care about this, Cisco is too expensive. I haven't installed the latest firmware, I guess I thought something this glaring would be a "feature". I will, though, now that you mention it. My home network runs DD-WRT on a GL and OpenWRT on a DSL-504T, nothing like that ever happens (although the latest Kamikaze OpenWRT SVN version is a bit unstable, otherwise it's great).

Re:

[sumdumass]

Try a Zywall 5 (ZyXel) [zyxel.com] or something similar. You can use the built in virtual port thing, built in firwall and VPN support to set up a firewall and lock the ports coming off it down. You can add a wireless card to the Zywall or connect the wireless AP you already have to to a port on the back. The Zywall is a pretty poppin VPN device too so you can lock everyone out and give them access by VPN and have somewhat of a reliable setup without much problems.

I did this about a year ago, Had an issue getting the V

Re:Um...

[SenFo]

A while back, I thought this was general knowledge. What I found is that people get caught up in all the hype and think only of the positives. If you try to persuade them otherwise, you're ostracized.

A few years ago, I was tasked with setting up the network in a new building. There was already wiring in the building. Unfortunately, it was all CAT-3 (even the data lines). I was the only person on staff in the IT department so I asked if we could hire an outside consultant to help with the task of running new network lines that would be adequate for our company needs. My request was rejected and I was instructed to install WiFi for the entire company to run on (about 50 people, including sub-tenants, which shared the LAN for Internet access). I advised my company of the pitfalls involved with running a WiFi-only LAN; however, I was told I needed to "come into the 21st century". Not feeling as though it was reason enough to quit on the spot, I did as I was told and installed the wireless network. With the exception of my workstation and all of the servers, everybody connected to the LAN through a wireless access point. Within the first few hours of operation, I had already gotten a number of complaints about systems loosing connectivity to the servers. This became the norm as my days soon involved at least one reset of the access point at some point in the day. This lasted about a year and a half before my direct manager was walking over to my desk to ask me if I could reset the access point. To her surprise, I was sitting there working and still connected to the LAN. She asked me how that was possible and I explained to her that I was on a wired connection. The next thing I knew, I was installing CAT-5e throughout the entire building. In the end, it cost a lot of money in lost productivity, as well as the wireless hardware that barely gets used. Reasons like this are why I abandoned the system administrator world a few years ago in favor of becoming a software engineer. I have never looked back.

Re:

[sumdumass]

I had a similar situation. Except they didn't' say anything about the 20th century, they said "how likely is that" when I told them there would be problems and security issues. When I went for the authorization to order the parts, I passed a form letter and asked them to sign it.

The letter listed my objections about security and reliability and specifically said I advised not to set up this way. They asked me what it was about, and when I told them I wasn't going to be the fall guy when something happened,

Re:

[sumdumass]

I wish you weren't an AC because that is spot on.

I mean, don't get petty will the color of cable or shit like that, but if there is a security, liability, warranty issue connected to it, don't let the bean counter or lawyers defending from a lawsuit coming in 2 years later attempt to hold you accountable for it. At least make it clear that your following their instructions and not your plan. And this goes pretty mcuh for anything too, not just IT work. Of course you have laws and building codes limiting som

Re:

[Stormie]

Reasons like this are why I abandoned the system administrator world a few years ago in favor of becoming a software engineer. I have never looked back.

Good move, I congratulate you on your change of career path. There really is no point slogging away at a job where clueless managers make unreasonable demands and complain about your failure to achieve the impossible.

Well Then...

[AdmNaismith]

Make sure there are some bloody data ports where they are useful. The gods know how many office conference rooms I have walked into where there are two power/data/phone outlets on the far ends of the room behind heavy credenzas, instead of in the middle of the room accessible from the table top. Otherwise just blanket the place with WiFi and suck it up.

Re:Well Then...

[MightyMartian]

Having talked with a few guys in my neck of the woods that sell themselves as network architects, I have the feeling that most of these guys really don't have the vaguest idea how to properly plan and roll out a network. They're too lazy, or their bosses are too cheap, to put in, maintain and extend a decent wired network, and so buy into the idea that going out and buying some NetGear routers and access points will mean everything is hunky dorey. Then, as the months roll by, and people have an increasing number of problems both with security and with basic access, the whole pile of steaming crap starts to unravel.

To my mind anyone who comes up to me and says "Our network has problems, and I can't keep my VPN up because they put in a new partition walli n accounting" is pretty much stating that whoever it is that maintains and plans their network ought to be forceably removed from the building.

Re:

[jacksonj04]

We've recently had a lot of thought put into upgrading our school network as part of a multi-million refit. Some smartass thought it'd be clever to say "We want everything wireless". It was gonna be as well, until all the IT techs looked at the plans and basically said "If you do that, we're resigning".

Result - every permanent terminal (ie in the ICT rooms, PCs which drive the virtual whiteboards etc) is hardwired, and each classroom has its own AP to allow for portable devices. Some rooms like the art clas

Re:

[MightyMartian]

I may have come off like a hated wireless, which I don't. I think it has its place in a network, particularly where you will have some people or equipment roaming about. I just think that some people are under the illusion that getting rid of network cables means the end to all their problems. There are some serious security issues which would make it very hard for me to recommend it to my bosses for a large-scale general roll-out.

Re:

[walt-sjc]

Not to mention bandwidth. I touch on that on a post above. I have no problem with wireless either. I do have a problem with ONLY wireless - it's totally inappropriate in a business environment.

Re:

[hjf]

I think everything has its place. Most regular, low-bandwidth content works great in Wireless. But I wouldn't take the risk to run everything on wireless. I mean, I have a desktop computer. I won't me moving it anytime soon, so why would I replace my CAT6 with a wireless card? If I had a laptop computer, of course I'd go for a wireless network. So, why replace wires?

I know I'm a special kind of user. I have a home network and a file server, network shares, whatever. In particular, that home server/linux rou

Re:

[walt-sjc]

Absolutely. You can easily stream HD content over wireless IF you are only streaming from a VERY small number of nodes.. Like 1 or 2. One of the things that many people don't "get" with wireless is that it's SHARED BANDWIDTH. There are VERY few channels that can work together (3 in the US on 2.4G) without interference, so your total backbone bandwidth is pretty small (150Mb max theoretical on a standard G network.) In a Real production network with dozens of AP's in a building and hundreds of users all usi

Conference rooms

[sczimme]

The gods know how many office conference rooms I have walked into where there are two power/data/phone outlets on the far ends of the room behind heavy credenzas, instead of in the middle of the room accessible from the table top.

Conference rooms are often populated by guests. I would not be surprised if your local security policy states that guests are not permitted to connect to the company network: having no easily-accessible jacks can be a decent physical security measure. Of course, this requires that guests not be left unattended, etc.

The placement of the credenza is either a calculated security move or a blunder of forehead-slapping magnitude, depending on your outlook. :-)

Re:

[CthulhuDreamer]

I'll go with forehead-slapping. Our company ordered all new furniture for the offices: big heavy desks with attached credenzas and file drawers, all with solid wood privacy panels pushed up against the wall jacks on three walls of each office. It took weeks to disassemble the furniture, rewire with low-profile plugs, then reassemble everything.

Re:

[Kizeh]

There's the problem of wiring and cost; especially in a retrofit situation wiring up a conference table often requires a poke-through or trenching to get the cables there, and this can be expensive enough to be nixed by managers. Even in new construction in my organization our suggestions for data jack locations are constantly overruled by reasons of "Nobody's ever going to need that" and "floor boxes are ugly" and the like. I'd be well set if "I told you so" would bring me any joy.
Even the low-tech solutio

Re:

[RubberDogBone]

Here's some hilarity. My workplace has wifi but they decided it was a security risk and disabled the connection. All you could do with it was print to one printer and surf the outside internet. It had no access to network shares.

But the odd client or employee from another branch still needs network access, so they wired up one of the conference rooms with a switch and ethernet cables, all of which tie right into our lan.

Apparently it's totally OK if unknown laptops make an unauthenticated physical connec

Re:

[walt-sjc]

It's quite easy to setup conference room and other public access that allows corp users to access the full corp network and guests to access a much smaller restricted net (simple guest file server, printer, internet.) It's done via a special DHCP server looking for registered corp mac addresses, and scripting which reconfigures the switchport on the fly - joining it to one VLAN or another. Is it perfect security? No, but it stops all the casual "hacking."

The reason wireless is more of an issue is that you c

Re:

[mrbooze]

At my company we kept having whole networks on some office floors go down periodically. Supposedly, the problem was tracked down to the switches they had sitting in conference rooms. Apparently, if someone for some reason plugged a cable from one port directly into another port, this caused that whole vlan to become unusable. (Why would someone do that? Apparently, some people are stupid.)

The response was to remove all switches/hubs from conference rooms. When it was suggested that we just put up signs

Re:

[walt-sjc]

Spanning tree can also cause problems with DHCP. There are workarounds, such as portfast, but what this basically means is that you have to design and implement your network carefully, and avoid the use of non-enterprise class networking gear.

Surprising!

[gen0c1de]

Not really, if you are a business that is deploying wifi as a solution to allow laptop users to move around fine, however if it is cheap solution to installing hard wired cables to each desk then someone needs to be re-informed about the pitfalls.

Re:

[TrippTDF]

I hear you- I was hired by my girlfriends company (5 people) to help "upgrade" their systems after a renovation. They decided to rip out the already installed Cat5 and go with an all-wireless network before they had contacted me. I told them this was going to cause more problems than it solved, but they still had me go ahead with it. Now I get at least one phone call a week because the wireless print server I had to install isn't working, one person can't get online, or some other such nonsense.

Wirel

Re:

[sumdumass]

I have thought about situations like that. It seems to me that when I disagree with something that strongly, I just don't do the job. Your reputation is at stake with this. When they call you all the time, when something always isn't working, when shit beyond your control happens because they wanted to do it a way you already objected to because it wouldn't work reliably or whatever, all the employees, management outside the ones making the decisions and whoever else is around are thinking you don't know wh

Re:

[gen0c1de]

It sounds like the people she works for don't understand technology and just don't like wires, and to top it off i bet you they are the same people that go and by the 39.99 Netgear wifi router for there office solution. There are a lot of business owners like that so it doesn't really surprise me, and it shouldn't come down on the person head that actually installed the stuff as they may not have had any say in the decision.

drivers

[mrsmiggs]

Alot of problems are caused by poorly written drivers, if I haven't done so before the first thing I do when someone presents with poor wireless connectivity is update their drivers and ditch the 3rd party software connection software.

Re:drivers

[quanticle]

Oddly enough, with D-Link cards I've noticed that the third party connection software (D-Link Connection Manager) often works better than the Windows wireless network manager.

Supplement not Replacement

[jeffy210]

Wifi should be a supplement for larger areas with changing configurations (meeting rooms, conference rooms, etc) not as a replacement for a typical wired setup. Unless you plan on constantly rearranging your cubes, there's no reason to do that. Also you should think of the two networks as being completely separate and treat the wireless network as a public access point (i.e. force VPN access to the wired portion of your network).

I see the problem coming in where people think it's a wired replacement.

Re:

[The-Ixian]

Yep, that is exactly how I have it set up here. I cringe every time I go into a new client site and see them using OPEN wireless access points as an extension of their wired LAN. At the very least encrypt it....

Re:Supplement not Replacement

[Kadin2048]

Yep, that is exactly how I have it set up here. I cringe every time I go into a new client site and see them using OPEN wireless access points as an extension of their wired LAN. At the very least encrypt it....

There's no good reason to use encryption in a corporate environment. Put all the wireless APs in the DMZ, so that they're outside the network, and leave the APs open. That way you don't have to make users screw around trying to get WEP/WPA/whatever to work, or use crummy MAC-based authentication schemes (that are a steaming pile anyway; whoever decided authentication based on MAC addresses was a good idea should be shot). Until you do that, wireless security is (in my experience anyway) harmful, because it makes the PHBs think they're on a "secure network" and shouldn't have to VPN. And once you require everyone to VPN when they use wireless, there's no point in using WEP/WPA on top of it (particularly considering that WEP is so broken as to be useless, and lots of devices don't support WPA).

The problem isn't lack of encryption, it's putting wireless APs in on the trusted side of the network at all. Avoid doing that, and treat someone connecting from an AP just like you'd treat someone connecting from Kalamazoo (meaning they have to connect via a VPN and authenticate), and you avoid most of the security vulnerabilities that plague wireless installs.

Clarification

[Kadin2048]

There's no good reason to use encryption in a corporate environment.

I mean, there's no reason to use client-to-accesspoint encryption. Instead you should be encrypting directly from the client to the VPN gateway.

Re:

[blhack]

(particularly considering that WEP is so broken as to be useless, and lots of devices don't support WPA).

If you find me a decent handheld 5250 thin client that will run openVPN, and tell me a way to make my zebra ql420 printers use it too, i will ship you a case/box/keg/whatever of your favorite beer.

Re:

[wperry1]

This may be a good way to protect your servers and other internal systems but without encryption enabled you still allow anyone to hop on your WiFi and attempt to hack your clients.

Re:

[julesh]

Wifi should be a supplement for larger areas with changing configurations (meeting rooms, conference rooms, etc) not as a replacement for a typical wired setup. Unless you plan on constantly rearranging your cubes, there's no reason to do that.

Except cash. Installing cabling can be quite expensive. A 5 person office could easily cost £500 to cable up, including health & safety inspections (which may or may not be mandatory depending on your locality, but are almost always a good idea when instal

low power -- less than even a typical cellphone

[niceone]

Good thing it doesn't have to work over as great a distance as a cell phone then. It's almost as it it was designed that way!

Re:

[julesh]

The real problem is that the frequency is substantially higher than mobile phone frequencies. 2.4GHz has substantially less capacity to penetrate stuff that might be in the way than 900MHz.

Re:

[sumdumass]

Yap, and 2.44 is really problematic with moisture too. Dew on the leaves of a tree will kill one wireless link I have connecting a workshop about 500 yards from the house.

This is also one of the reasons the TV channel spectrum is so valuable. Once everyone goes to digital and the FCC starts selling the frequencies, Expect to start seeing cell phones among other things using the spectrum because it penetrates building and goes around obstructions better then what they use today.

boost it

[billmcc]

9dB antennas are cheap and work great.

I've always heard...

[Overzeetop]

...that it takes more wire to set up a good wireless network than it does to set up a wired network. The number of APs required to get good, even coverage is far larger than anyone thinks, and the overall complexity tends to really tax all by the best installers.

Re:

[drinkypoo]

it takes more wire to set up a good wireless network than it does to set up a wired network.

It still might be cheaper, because in many (most?) cases you pay per drop and not per foot. If you're paying for both, it still might come out cheaper.

Of course, as you probably^Walmost certainly know already, WiFi is a better fit for edge conditions than it is for every computer in your network (even if you don't count servers.)

Re:

[Dare nMc]

I've always heard that it takes more wire to set up a good wireless network than it does to set up a wired network.

guess it really depends on a number of things. We have found that it works best for our critical deployment (and I do mean critical) that you need a seperate backbone than your network. You can setup a bunch of repeaters that are not wired (In AZ, their solar powered, battery backed) but then when you get something at high bandwith, the users at the end of the line ends up less reliable (data

Metal objects block radio

[also-rr]

News at 11.

I used to do wireless mesh network algorythm development and we had (with 802.11b) acceptable, AES encrypted, coverage of a motor factory (think *lots* of wire and EM) with nodes running on 200mhz arm systems and 64mb of ram. No problems with VOIP either. You just need to do some (ok, expensive) system design and there's no reason why it wont work. In the demo system the nodes updated their routing tables using a ropey bash script even :)

Expecting that off the shelf gear can magically set itself up is the problem, not the protocol itself (which can be worked around in many interesting ways).

What's next?

[xinjiang77]

The future seems bleak for a service like WiFi. Seeing as it is a fairly new breakthrough, large corporations have not yet capitalized on it, the WiFi Alliance is the only major controlling body of the communication, and that is a nonprofit organization. Much as Microsoft capitalized on the computer industry, making mainstream, insecure computers, I expect a number of corporations to begin buying WiFi rights and making the system even less secure.

Corporate Solution

[TheMadcapZ]

At some point companies may wrap the exterior of the building with Faraday mesh to prevent radio signals from exiting the building with any significant range. External radio signals could be ported and broadcast within the building similar to the project to extend radio station signals into road tunnels as test in Pittsburgh, Pa. This would allow the company to control the signals that enter and exit the building while also allowing for cellphones and radios to work.

Now the cost to benefit ratio of such a s

This caught my eye

[N3WBI3]

"Things got so bad that Mr. Friemann sometimes had employees piggyback on a neighboring business's wireless connection that was more stable -- without the other business's consent or knowledge." -- Ok so your neighbor could set up a network which worked fine even for you whom, presumably, are further away from his source than you are from your own. Despite this its somehow the technologies fault? WiFi is fine, established, and mature this admins understanding of it is not. and then there is this -- "So

Re:This caught my eye, lets try formatting ;)

[N3WBI3]

"Things got so bad that Mr. Friemann sometimes had employees piggyback on a neighboring business's wireless connection that was more stable -- without the other business's consent or knowledge."

--

Ok so your neighbor could set up a network which worked fine even for you whom, presumably, are further away from his source than you are from your own. Despite this its somehow the technologies fault? WiFi is fine, established, and mature this admins understanding of it is not.

and then there is this

--

"Some wireless networking companies are taking steps to try to deal with customers' problems. One major issue is the stability of the wireless signal. Ruckus Wireless Inc., a wireless networking company based in Sunnyvale, Calif., tries to address that problem by providing wireless access points that have multiple antennas. That allows a Wi-Fi signal to have more than one pathway to an access point -- which can come in handy if something is in the way."

--

Its called a cable folks, there are plenty of ways to rig antennas and get them in existing wap points. Thats not to say there is no value in what Ruckus is doing just that its not like we cant do that.

Site survey

[ch-chuck]

Before rolling out a big business wireless network, the installers should do a check of existing interference, then setup a simple access point/client and check it out in different places using a spectrum analyzer [circuitcellar.com]. Just like cable techs sometimes need a cat-5 analyser to trouble wiring plant problems, the wireless tech needs an instrument to measure the rf environment.

Heck, my wireless pda loses signal while standing near the microwave popping pop corn. Some buildings, especially in industrial areas, can g

Re:

[MavEtJu]

Before rolling out a

Only before?

Every three months is a good interval, because it's not you who is incompetent with this, it's all your neighbours who have no clue about this. On our wireless floors (luckely only three) we have had to modify channels twice in the last two years because of neighbours being stupid.

Easy solution.

[Anonymous Coward]

Wireless Networks Causing Headaches For Businesses

A tin-foil hat. The problem goes away.

(You want me to read the what?)

Some buildings just aren't "Wi-Fi compatible"

[pclminion]

I have issues at home with this. The roof of my house is made of aluminum (not that cheap corrugated stuff like on a barn, but interlocking strips). This wreaks absolute HAVOC on WiFi signals inside my house.

If I put an access point at one end of the house, I can't pick it up AT ALL from the other end. I'm not talking microscopic SNR, I'm talking ZERO SNR. It's like I don't even have an access point. I'm lucky to get a quarter of the rated bandwidth if I'm only one room away.

For a while I had a ridiculous setup consisting of an access point and two repeaters just to get the signal to the other end of the house. TWO REPEATERS. That's THREE HOPS to travel about 100 feet. And of course, the concommitant loss in data rate due to the repeater action. After a few weeks of that (and even that setup was flaky at best) I said "Fuck it" and dragged a CAT-5e cable across the house. The wife hates it but at least I can use the Internet.

I have no idea how exactly the metal roof is destroying the signal, whether it is causing severe multipath or simply absorbing it completely, but it does it quite effectively.

Re:Some buildings just aren't "Wi-Fi compatible"

[multipartmixed]

Try putting your WiFi AP in your basement, on a floor joist. If it really is the roof that's giving you grief, that might be far enough away to weaken multipathed signals out of detection.

You could also try decreasing the transmit power if you suspect multipathing. And, of course, lower the basic rate.

Re:

[pclminion]

What confuses me is that OFDM was specifically designed to be resistant against multipath. I feel embarrassed now -- I've actually implemented OFDM before, and it hadn't occurred to me that if I just turn the data rate down, the guard interval gets longer, potentially long enough to completely ameliorate the multipath effects. I was under the impression that 802.11 automatically negotiated such things, but maybe not? I'm going to try that the second I get home.

Re:

[multipartmixed]

If that doesn't work, BTW, you could also try an AP with a better radio.

Signal with the Linksys WRT54G version 1.2 in my house is basically unusable, due to (at least in part) my cordless phones, even with OpenWRT firmware. I can literally be 2 feet away from the AP (with a floor and desk in between) and have it flake out.

And yet, my Routerboard RB532A (w/Mikrotik software) with an Atheros AR5413 radio works like a charm. 100%, all the time, every time, right into my backyard.

Re:

[pclminion]

Hah. The WRT54G is precisely the AP I've been using. I guess it's time to upgrade.

Re:

[multipartmixed]

Hah, that's funny. Maybe that's why I felt like trying to help, I totally feel your pain.

This is what I got, plus the Atheros radio and a 10" or so antenna:

http://www.nwcis.com/store/product_info.php?manufa cturers_id=10&products_id=141 [nwcis.com]

It's probably not cost effective for you (I just took one home from work), but man, these are REALLY nice pieces of kit. If you are somewhat technical, you will be right at home. It's a full IP router, hotspot, DHCP server, etc, in a box. At home I run it as a dumb brid

Re:

[multipartmixed]

Is the AP at your yacht club running with a sector antenna? It should be. You should also look at a cantenna-style directional antenna for your boat.

300 meters in that environment IS challenging, but totally doable.

Re:

[ebbe11]

The WRT54G is precisely the AP I've been using.

Uh-oh. That's what I have - and I'm having a steel roof put on my house in September. On the bright side, my AP is placed in the basement.

Well, if the WiFi starts acting up at least I'll know why.

Re:

[julesh]

I have no idea how exactly the metal roof is destroying the signal, whether it is causing severe multipath or simply absorbing it completely, but it does it quite effectively.

It'll be the former. It can't absorb signals that aren't sent in its direction (which typically the ones you want won't be), but what it can do is reflect back lots of slightly-out-of-phase signals from different points that confuse your receivers. Stick up a metal plate about a metre behind your TV antenna and see what happens to th

Re:

[pclminion]

I also forgot to mention that my cellphone hardly works at all inside, either. I have to literally lean up against a window, or go to one of about 5 "magic spots" in the house where it works. If I waver more than a few inches in any direction, instant dropped call.

Re:

[TClevenger]

I did work for a guy who has a media center in an area of his house I couldn't reach with CAT5 without opening a hole in the ceiling (two-story house.) I tried several combinations of G and N routers and repeaters over the course of 6 months, but neighboring access points would interrupt the signal enough to cause his streaming music (transmitted from his desktop running Rhapsody to his media center) to skip or stutter. Finally, I tried the Netgear HSXB101 [netgear.com] wireless set, which uses the power lines for tran

Poorly designed networks don't work well.

[tji]

This doesn't change for wired or wireless. But, with wireless there may be even more temptation to do it cheaply because everyone has it at home and thinks it's simple. Clearly it wasn't just a technological problem, because the IT guy said he sometimes told people to connect to their neighbor's WiFi. It seems that his WiFi was just unusually poorly implemented.

Step back, look at the network, assess where wired ports are needed and where wireless is the best/only option. Then buy some decent gear th

Simple solution

[steveo777]

Just paint the outer interior walls of your building or corporation with a few layers of lead-based paint. Hopefully, you do not run a day-care.

I worked at a wifi-powered place once.

[mrjb]

...The net went down all the time. Not acceptable for pro use. Brother has wifi at home and it's the same story. It is a main reason that at home I'm still wired up- as a result, the network Just Works, all the time- parts of it run at 1 gigabit/sec. While wifi still seems to have some serious maturing to do, I'll wait a bit more and enjoy the benefits: always up, no concerns about neighbors piggybacking on the connection, and the wife is delighted that I don't take a laptop to bed.

Article begins with wrong premise.

[Vellmont]

Wi-Fi was supposed to reduce complications, not create new ones.

No. Wi-Fi was supposed to let you maintain a network connection without wires. For the most part it does that fairly well, just not as well as a wired connection.

If anyone is relying on wi-fi for an always-on, never breaks technology, they're fooling themselves. What wireless technology works like that? Cell phones have been around for at least 30 years and we all still know it's not as reliable as a land line.

WiFi isn't perfect, streaming video on .11

[maggard]

Rules of WiFi:

1. Determine needs. How many users in an area. What kind of usage?
2. Do a site plan. Where will access points be placed. How will they be networked? How will they be powered?
3. Test signal propagation. Are there competing nodes? Are there reflections/absorbers?
4. Evaluate hardware. Is the firmware stable? Are the antennas good enough? How much heat does it produce/can it take? How is it all managed?
5. Set expectationsof the IT staff, of the managers, of the users.
6. Plan for hardware failures. I anticipate a 24 month lifespan of each access point, and plan for an up to 10% failure rate in any month.
7. Monitor, both the internal networks and the general environment. Have a running watch of all access points with alerts for rogue ones, particularly dupes.

Put in dedicated services for visitors with instructions conspicuously posted in conference areas (along with sufficient power supplies.) Inform staff if they are caught using these open systems their devices will be taken away, and if they relied upon such to do their jobs they will then be unsuitable for continued employment.

Finally, consider alternatives to WiFi. There are any number of products that will carry WiFi-equivalent bandwidth over residential wiring. If youre looking to connect fixed devices without running ethernet then these are a no-hassle approach with competitive costs.

Am I the only one

[DFDumont]

I've done wireless assessments and installations for offices, hotels, school buildings (think bomb shelters) and even manufacturing plants. Anything IS possible, but not if you hire a kid recently graduated from ITT Tech(as an example only) to do it. I'd take a recent physicist graduate first because at least they would understand wave propagation. The use of tools such as Air Magnet make performing such an assessment easier, but a good tool won't fix ignorance.
This actually begs of a greater question wi

Re:

[Compholio]

Lawyers, Doctors and Accountants all have an entrance exam. Why do we in IT think we're different.

Maybe because we figured out that it didn't work for fixing their problems, so it won't work for ours. People will "game" the system no matter what field they're going into, so why make it so difficult for everyone honest when the dishonest people will find a way around anyway? It's like DRM or (some) gun laws - it only hurts the people who play by the rules.

Re:

[Jesus_666]

So if I go into AI, what will I become? "The angsty brat that will later become Darth Vader"? Thanks, but no.

A well designed system doesn't have problems

[Newer Guy]

I have designed many 2.4 gig WiFi systems that have none of these issues. First off, you have to consider the design of the area you want to use WiFi in. Lots of steel studs or concrete walls mean more access points (though I don't use AP's because routers are cheaper and can be used as APs). Generally speaking, you need an AP for every four 10x20 rooms and for every ten computers. Trying to use less AP's or more computers will create an overloaded system. Next, the quality of the AP's is paramount. As a minimum, I generally use Linksys or Buffalo equipment. Next, channel selection is important. Channels 1,6 and 11 do not overlap at all, and my experience is that channel 1 is lightly used. Channels 1.4.8 and 11 barely overlap, and can be used in bigger networks. I like to use channels 4 and 8 when I'm in an area where 1,6, and 11 are heavily used. If you use the same SSID for each AP, there will be almost seamless roaming between APs. I never use wireless repeaters-all AP's are wired back to the router. Yes it's more work, but the results are so much better! Finally, I use third party firmware on all routers, because I find it more stable then the firmware provided by the manufacturers. It also has the capability to be used for a field survey, which is useful to find any new wireless gear that's been installed lately.

Of course, it goes without saying that encryption should always be used, the tighter the better!

Re:

[PayPaI]

Wow. This deserves a +5 Funny, but I think you're serious.

Some experiences....

[jonoton]

I'm in the middle of the 3rd generation of our wireless network.

First generation was "Thick" access points individually managed.

Second generation was the first generation of "Thin" access points.

Third generation is "Thin" access points using CAP-WAP tunneling to a central management platform.

For the First & Second generations we had consultants in to do surveys and radio measurements, we spent days roaming the site with radio gear and plans working out the best locations for the AP.

That turned ou

wireless and roaming profiles

[Squeezer]

i've found that wireless networking and roaming profiles don't work on cheap linksys access points. they just can't handle the packet flooding.

So to resume...

[Wayne247]

WiFi isn't a free ride. If you need it for serious business, you buy serious equipment installed and configured by serious individuals.

I'm dead serious.

Next week: Mail servers: it can lead to headaches.

Fucking Crybabies

[gig]

I bought an Apple AirPort Base Station in 1999 for $299 and plugged it onto a broadband connection in the garage ceiling under the house, turned on the encryption, closed the network, and for 5 years after that computers came and went and all you ever had to do was tell the computer the network name and enter a password and everyone was on the Internet. We had occasional business meetings where you would have 5 notebooks and no problem, you are all on the Internet. New computer? It takes less than a minute

Wireless does suck

[Master of Transhuman]

I mean, really, it's friggin' obvious. Every one of these wireless companies throws out a new router every month, then spends the next six to 12 months uploading firmware fixes for that model to their Web sites because of the bugs. It's obvious that the whole thing is being driven by marketing, not the actual technology.

They simply can't make the stuff work reliably with their OWN hardware, let alone connecting to anybody else's hardware.

And when you add in the flaky wireless software drivers and management

Re:Transmitter power

[morgan_greywolf]

lets see poor transmitter power output, integrated 1/8th wave PCB antennas, microwave frequencies, $3 of electronics
gee i wonder why its crap ?

1) To keep the cost down. Even 'commercial-grade' access points use inexpensive components to help keep the costs down to the point that people can afford them. Compare the cost of ham radio -- and then consider if you would buy a WAP that had that amount tacked on the sale price.

2) Government regulation. Governments around the world regulate these 2.4 GHz-range frequencies and given the number of devices in the range, transmitter power is kept necessarily low by regulation.

3) To keep the equipment from interfering with other devices such as cellphones, 2.4Ghz-range walkie talkies, and countless other devices that use this frequency range. See #2.

Re:

[The-Ixian]

you still took the time to read and comment on it, now didn't you?

Re:

[HotNeedleOfInquiry]

What's your point? That it must have been useful because I read it? No. It wasn't. The issue is the dumbing down of slashdot, once an insightful and witty place, into a forum of "firm grasp of the obvious" articles and posts.

Re:

[SatanicPuppy]

I can almost guarantee my boss read this, and he's been pushing for wireless for a while now. This is an excellent heads up, as far as I'm concerned.

My biggest problem with the wireless he wants isn't even the wireless...I can deal with that. It's the fact that he wants to do the wireless to make up for the deficiencies of the wired network. But of course, he's not paying for the fiber drops we're going to need, so we're going to have massive network bottlenecks. Oy vey. Everyone thinks they can get somethi

Re:

[sgtrock]

Oh? What about warehouse floors? Ancient buildings where you can't pull new cable for a reasonable cost? Service in open areas?

WiFi is just another technology that has its uses. The problem is that people rarely think about its limitations. However, that problem is not exactly limited to any particular technology, is it? :)

Re:

[llefler]

In warehouses, people typically use handheld devices, today. They're much, much, much more reliable than wi-fi.

Nearly all of the wireless handheld devices used in warehouses have moved to 802.11. And it made life a whole lot easier when they did, no more proprietary protocols like we had in the 900 band.

If they seem more reliable, it's because they tend to be low data rate devices. At least I've never seen a forklift driver browsing multimedia web sites on their 3"x4" screens. The lower data rate allows the

Re:

[Kizeh]

I beg to disagree.
1) You need to know what is in your radio environment, either via an integrated product like Cisco's or Aruba's or that of any number of other vendors, or a third-party solution, to guarantee that there are no wireless networks being broadcast that your users could accidentally associate with.
2) You need to have control over laptops and other portables anyway; as part of this you can only allow them to associate to your WPA2 enterprise protected network, or only communicate over a VPN conn

Re:

[Achromatic1978]

Wow. I'm impressed. I work for one of the world's largest IT companies and we have rigid WiFi policies, and WiFi available everywhere, and apparently we're doing it wrong, we're incompetent.

Let me break it down for you. We have three separate WiFi networks: for the corp network, for authenticated guests, and 'free internet'. To get on the corp. network you need to first log in via a wired connection and get a client cert. At the same time, network enforced policy will configure your connectivity to the net

Re:

[computational super]

A wired network for desktops. No floppies. No USB. The sensitive files stay within the building.

That doesn't guarantee security. If you really want to take security seriously, post snipers on the roof and have them shoot employees before they can make it into the building.

Re:

[frdmfghtr]

That doesn't guarantee security. If you really want to take security seriously, post snipers on the roof and have them shoot employees before they can make it into the building.

No no no!

You shoot them if they try to LEAVE the building...if you shoot them before they get in, they can't do any work.

Re:

[Anonymous Coward]

mod be down you wankers

Won't some kind moderator please help out this poor poster? If I had mod points, I'd gladly help. -1 Offtopic, before you could answer the question, "mod be down with what?"

Re:

[Jesus_666]

It really depends on the hardware. I used to bring my old Microsoft MN700 (hey, I only needed it for one room and it was cheap) to a certain semi-annual event where some of the denizens of a web forum occupy a youth center for a week. Due to the center's thick walls, connectivity was restricted to the one room I set the device up in.

Later the Microsoft AP had died due to a failed reflashing attempt and I switched to a Siemens Gigaset SE505. Suddenly we had connectivity in the surrounding rooms and even be