Duke Wireless Problem Caused by Cisco, not iPhone

jpallas writes "Following up to a previous Slashdot story, it now turns out that the widely reported problems with Duke University's wireless network were not caused by Apple's iPhone. The problem was actually with their Cisco network. Duke's Chief Information Officer praises the work of their technical staff. Does that include the assistant director for communications infrastructure who was quoted as saying, "I don't believe it's a Cisco problem in any way, shape, or form?""

deficient

[Anonymous Coward]

Still others seem to imply that Duke's network was deficient in some way because the problem had not been encountered more broadly.

I would say that the network was deficient until the patch was applied. For him to say otherwise implies that there was no problem to begin with.

I'll feel bad...

[CCFreak2K]

...for the poor guy who said it wasn't a Cisco problem when he starts getting those Apple fanboy death threats.

Re:

[samkass]

when he starts getting those Apple fanboy death threats.

You mean when hack journalists start reporting unsubstantiated rumors of death threats.

More information?

[physicsnick]

I'm curious to find more information on this. TFA just says "Cisco has provided a fix". What nature of fix was this? Was it actually a flaw in the routers, or did someone just configure them wrong?

Given the widespread use of Cisco routers compared to the isolated nature of the problem, it sounds a bit like Duke is just trying to save face.

Re:

[Anonymous Coward]

They did this for my university too. And then made us sign an NDA so we wouldn't talk about their hardware sucking. Not me, though, so I don't care...I was just the guy that couldn't do my job until the techies figured out a solution.

http://hardware.slashdot.org/comments.pl?sid=25112 9&cid=19886053 [slashdot.org]

Our other routers and access points work perfectly. For instance, I have a dozen PCs with Intel network cards that when set to autonegotiate, they get pretty much crippled speeds (feels like dialup)...I hav

Re:

[mikkelm]

So because a handful of identical NICs didn't play well together with whatever Cisco equipment they were interfacing with, instead of investigating the problem and finding out whether the NICs were too liberal in their interpretation of the autonegotiation specifications of 802.3u, or the Cisco equipment somehow messed up a process that should be identical for all NICs with -only- those specific NICs, you chose to just blame Cisco and call their products sub-standard.

I don't know about anyone else, but I'm

Re:More information?

[ZWithaPGGB]

"Given the widespread use of Cisco". So Windows must be pretty good too, right?

Cisco is the Microsoft of networking gear. Their stuff is complete crap compared to the alternatives in every category. It's also overpriced.

People buy Cisco for the same reason Chambers used to be able to get them to buy IBM Front End Processors (where he cut his teeth as an exec), because No-one gets fired for buying what everyone else buys. They SHOULD be, because they are just buying on inertia, but they don't.

Re:More information?

[physicsnick]

"Given the widespread use of Cisco". So Windows must be pretty good too, right?

You misunderstood. I wasn't implying anything about the quality of Cisco routers.

Suppose Duke University (and only Duke university) suddenly has problems with all of their Windows boxes. Do you think it's a Windows problem? Given the widespread use of Windows compared to the isolated nature of the problem, it's far more likely that they themselves configured something incorrectly, otherwise all universities should be encountering similar problems.

This isn't to say that there aren't such problems; just as you said, both Cisco and Windows have widespread flaws that affect all universities. But for THIS particular problem, it's more likely to be just a misconfiguration, simply because of the fact that it's localized to Duke.

Re:

[ZWithaPGGB]

But it isn't Duke, and only Duke, or even iPhones, and only iPhones, that have been having problems with Cisco APs. It's anything other than Windows clients. Cisco has just done a good job of hushing it up by requiring that people sign NDAs to get the fix.

Re:

[hxnwix]

Yes, the "you're the only one having this problem" defense.

Tell me, do you work for Oracle's support dept? Seriously, I think we've spoken...

Re:

[bryan1945]

I've been out of the networking world for a while. Could you tell me which companies are better in the different categories? (such as home, small business, large business, really big ass deployment)

Or even some sites that do these kind of comparisons?

Thanks in advance.

Re:More information?

[HockeyPuck]

Cisco is the Microsoft of networking gear. Their stuff is complete crap compared to the alternatives in every category. It's also overpriced.

I think you hit the nail on the head. Alternatives in every catagory. Which means you have 500 different vendors. From core routers, to access switches to firewall appliances, to Content/Caching engines to telephony to wireless, heck Cisco even makes storage switches. If there's a nework problem, you call up ONE company. You sign one large support contract, makes it very easy to have 'one neck to choke' when there's an issue.

When you build a server (not a hobbiest linux box at home) would you rather buy all the parts (cpu, ram, disk, etc..) from ONE vendor, or would you rather buy each component from someone else? You'd call up IBM/hp/dell/sun and order a server, so when the ram breaks you call the same vendor as when the CPU breaks.

While cisco gear may not be the best in every catagory, the solution as a whole is pretty good and there's not a networking vendor that can provide an 'end to end' solution. Plus there's something to be said for being able to put firewall/content/PoE/WAN modules in a single chassis.

Integration and consolidation does save power.

Re:

[profplump]

There are benefits to having only one provider -- like consolidated support and supposed interoperability.

There are also costs, like lock-in -- not only are in a position to be taken advantage of by your single provider in terms of price, but you're actually likely to dimiss technically superior solutions if they don't come from your provider, and your solutions will be inflexible outside the bounds set by your provider.

Take Exchange email as an example. It's not a terrible way to do mail folders, and the i

Re:

[amper]

You sign one large support contract, makes it very easy to have 'one neck to choke' when there's an issue.

Unfortunately, the "one neck" often turns out to be yours, rather than the vendor's...

The reason Cisco's gear is dominant in the networking marketplace has nothing to do with superior hardware, software, or service. It does, however, have quite a lot to do with the fact that Cisco was one of the first players in the IP router market, with products that frequently failed to interoperate with other brands

Re:More information?

[ZWithaPGGB]

Juniper for routers. Extreme for Network Switches. Juniper/Netscreen, Fortinet, or even Checkpoint for firewalls. Intruvert for IDP. Aventail for VPN. Aruba for Wireless.

Even a Vyatta or other OSS router is as good as or better than all but the biggest, and most horribly expensive, Ciscos.

But you knew that, because you couldn't point to any evidence that refuted my opinion that Cisco has more than just market share in common with MS.

Re:More information?

[HockeyPuck]

I'm not saying that there aren't vendors with single produts that are better, but NOT all companies/customers are looking for 500 different vendors. You wouldn't build a server farm from 50 different linux servers b/c "IBM w/redhat is better at dns, HP w/Ubuntu is better at samba, Dell/slackware is better at sendmail..." you'd go outta your mind supporting such a hetergenous infrastructure.

Cisco/MSFT have plenty in common. All religions aside, when you hire someone it's much easier to find someone that is familiar (CCIE) with a broad range of cisco products than to find one that has (as you put it), "Juniper for routers. Extreme for Network Switches. Juniper/Netscreen, Fortinet, or even Checkpoint for firewalls." The same holds true if you were hiring someone with office skills. It's much easier to find someone that is well versed in MS-Office than it is to find someone that has the same skillset in lotusnotes, wordperfect, etc...

Building an IT infrastructure is more than just having the 'fastest, best out there'. It's building the best solution for YOUR environment. I work with plenty of clients that have Juniper in the core and cisco at the access/distribution layer.

Re:

[ZWithaPGGB]

Except the finger was pointed @ Apple in this case until a smart engineer @ Duke figured it was Cisco. Where was the benefit in the big company standing behind the stuff then?

Where is the benefit to everyone when the fix was subject to NDA?

In my experience, Cisco almost always pushes back with the same thing as Microsoft any time there is an interoperability problem: "We ARE the standard, so it must be them."

Old joke:
Q: How many big_dominant_company engineers does it take to change a Light Bulb?
A:

Correlation is not cause and effect

[PIPBoy3000]

This is unfortunately a common issue with people. When two events happen at about the same time, people assume they're somehow connected. The autism and vaccine link, for example, is one of those things where they get their shots and soon afterwards, they notice their child is acting strangely. Then there's the old "this coincidence must be a sign of the divine" theory.

We run into this all the time when doing server administration. For example, one of our developers found that web pages were slower on our new virtual servers. The obvious thought is that virtualization=slow. It turns out that compression hadn't been turned on for those servers. Since he was going over a slow VPN connection, it made a fairly significant difference. Once switched on, they worked about the same as real servers.

Re:

[kevorkian]

We run into this all the time when doing server administration. For example, one of our developers found that web pages were slower on our new virtual servers. The obvious thought is that virtualization=slow. It turns out that compression hadn't been turned on for those servers. Since he was going over a slow VPN connection, it made a fairly significant difference. Once switched on, they worked about the same as real servers.

Yea , but it was still 'something' related to the change that was made.

The dev may

Re:

[Zebra_X]

In your virtualization example - there are mnay more varibales to isolate before you can declare "virtualization is slow". To conclude this based on a remote employee on a new server with a configuration that may or may not be the same is a bit of reach.

If there is an exisiting network that "works" and then a new device is put into use on the network - and then the network breaks... it is reasonable to conclude either the device is a potential source for the issue.

While details are sparse I suspect the Appl

Re:

[trb]

Speaking of correlation, if I were at Duke, before blaming Apple or Cisco, I'd ask myself the question - is this problem happening anywhere else? If not, why not? Then how likely is it that the problem is with my basic system rather than with the way I've configured it?

Re:

[farker haiku]

For example, one of our developers found that web pages were slower on our new virtual servers. The obvious thought is that virtualization=slow. It turns out that compression hadn't been turned on for those servers.

So how was he wrong? The virtual servers were slower.

Re:

[sholden]

Because "virtualization=slow" is completely different than "The virtual servers were slower".

Re:

[farker haiku]

actually, you'll notice that the original poster's word choice didn't indicate what the dev said exactly. He said "The obvious thought is that virtualization=slow. " That may be how they interpreted the dev's complaint, but since he didn't quote the dev exactly, we can't know for sure.

But, what we know now is that there is a definite correlation between pointing out someone's mistake, and them flaming you on slashdot. Oh, and modding you troll. That's also much more likely to happen apparently.

Re:

[sholden]

The other bit I can't see that you seem to is where the dev was declared to be "wrong"?

Re:

[mercury83]

I get this all the time from my software engineer coworkers trying to resolve problems. They notice something that seems unusual and they also note a decrease in performance. They assume that the one caused the other immediately without any other reason and then spend hours trying to resolve the unusual condition that they first saw. It's amazing how often the unusual condition is completely unrelated. In fact, it seems like when something goes wrong, it's easy to spot a whole bunch of problems in your conf

Not the iPhone but the iPhone

[tepples]

So it wasn't Apple's iPhone but Cisco's Linksys iPhone [wikipedia.org] that was causing problems, am I right?

Most Don't understanding networking

[henryhbk]

Many network IT folks just understand how to change settings on routers (what you learn to do in a "certification" course on a router) and understanding networking. Networking is more than just some router settings, and understanding the organic interdependent flowing nature of a network is critical to debugging problems. Just knowing something is causing a problem, and blaming the most recent change as the cause (as opposed to some underlying problem that this change simply brings to light). A senior IT official should, even if he doesn't know the exact problem, know that weird entworking problems are often way more complex than they seem, and should not jump to knee-jerk conclusions (especially based on some 1994 anti-mac bias about networking)

Re:

[TheEmptySet]

"weird entworking problems"

Damn those Ents and their slow decision making. First they nearly refused to act to stop the downfall of middle Earth and now, even worse, they are causing problems with Steve's divine creation. Personally I think we should ban them from having I phones if they are going to do this.

Re:

[j00r0m4nc3r]

Maybe that's why the entwives left

Everyone is a winner

[BillGatesLoveChild]

Cool. Cisco screws up, iPhone gets blamed, but nobody minds, because iPhones are so cool.

Boss: "Did you get those reports done?"
Underling: "Sorry Boss, I Couldn't. iPhone Congestion."
Boss: "iPhone? ... (smiles) iPhones are cool aren't they!"
Underling: "They sure are boss!"

Boss wanders off feeling good.
Underling returns to screwing around with his iPhone.

Cisco gear just isn't that good.

[CRC'99]

I think that after spending a number of years working in Cisco only networks, I'm constantly amazed at the generally poor compatibility and functionality of Cisco equipment.

This ranges from critical recovery steps being removed from the 7200 series G2 NPE (NEVER make one of these crash to ROMMON on boot. The fix is to RMA the NPE) for Xmodem recovery of bootloaders - something a basic 827 router has to their latest 7961 VoIP SIP phones that are apparently RFC compliant for SIP communications - but aren't.

There are MANY things that make Cisco equipment worse and worse as the years go by. Part of it I believe is the outsourcing of the people who write the software for these things now. Chances are that they weren't even around with Xmodem was in use - and I bet a lot of the coders have NEVER admin'ed a network of Cisco gear. This is the only thing I can think behind removing essential recovery procedures for $35,000AU routers.

There's a whole new direction that Cisco is heading, and with the stupid things missing from their new gear, I'm starting to wonder if it's a direction that will have huge impacts for the worse in the network admin side of life.

Re:Cisco gear just isn't that good.

[jkbull]

...(NEVER make one of these crash to ROMMON on boot. The fix is to RMA the NPE)...

I understand the ROMMON, RMA, and NPE acronyms, but what's NEVER stand for?

Re:

[CRC'99]

...(NEVER make one of these crash to ROMMON on boot. The fix is to RMA the NPE)...

I understand the ROMMON, RMA, and NPE acronyms, but what's NEVER stand for?

The NEVER stands for what I mean when I don't want to sit through 8+ weeks of rubbish from Cisco to get the thing RMA'ed (lucky it was in our testing phase and not live equipment). The TAC closed the case off and refused the warranty and it's been put on the account managers plate to fix. You can think of it as _never_ or never - which ever you like. I still refuse to use the flash tag though ;)

Re:

[jkrise]

I think that after spending a number of years working in Cisco only networks, I'm constantly amazed at the generally poor compatibility and functionality of Cisco equipment.

There's a very simple explanation. Cisco, Oracle and Microsoft are 3 big gorillas who make a business of selling closed-source complicated implementations that are supposed-to-be standards-compliant. Unfortunately they are not truly standards-compliant, besides being overly complicated and obfuscated. Hence such compatibility issues.

Notice we have no clue in this particular incident, of what exactly triggered this response from Cisco equipment. It is like a Service Pack from Microsoft - we only get vague d

Re:

[CRC'99]

ROMMON doesn't have ANY networking support. I think you may be talking about the bootloader. The G2 has 3 different layers when it boots.

1) ROMMON - this is responsible for initialising the device and loading the bootloader from the bootflash: device. The bootflash is soldered onto the NPE.

2) Bootloader - This starts up and initialises the network. It parses the startup-config and then launches the IOS image.

3) IOS - This again parses the config and loads the actual unit.

The bootloader does have networking

To be fair....

[Vacuous]

To be fair, who hasn't had an issue where you were SURE it wasn't one thing, when it actually was. I would imagine most of you, like me, have seen issues where you still can't explain how you fixed it.

Obviously a Cisco Problem All Along

[smack.addict]

The sick thing is that it was OBVIOUS it was a Cisco problem from the start. If you make the assumption that the iPhones are somehow defective, it's still a Cisco problem because any defective behavior from an iPhone would be indistinguishable from malicious behavior from a student. The fact that the iPhone was involved really was a non-issue all along.

It was terribly irresponsible of them to go off blaming Apple and, worse, absolving Cisco of responsibility.

Re:

[Bill, Shooter of Bul]

Good point. I agree they shouldn't have exonerated Cisco, but you have to keep in mind the Denial of service angle. You can very well destroy all wireless network activity with enough noise at the right frequency. There really is no defense for that.

Re:

[smack.addict]

Or, you are an idiot who does not know what he is talking about...

It Was the Stripper's Fault

[Doc Ruby]

Everyone knows that Duke's got problems with open access [google.com]. It's the access point's fault, not the new units that play a little rough with seasoned pros.

Though the expert officials blaming the wrong party should find a new line of work [cnn.com]. I suggest politics.

Re:

[Doc Ruby]

I guess you missed the part in my post where I said exactly that.

Or the part where I linked to how the prosecutor was fired and disbarred (though it looks like the CNN article to which I linked is now broken).

Anonymous illiterate Coward can't even think straight when they agree with me. Maybe something's jamming the plate in their head, like fevered lust to join the Duke lacrosse team, though they're wedged between a gamer's chair and their keyboard, tied by a gamer's catheter to their mom's basement.

First blame the user

[metoc]

Typical reaction. Something goes wrong, blame the user.

After all you and your staff would never mess up, your high status, reputation and salaries are at stake. The fact that you have outstanding trouble tickets, perform patches and upgrades without testing are coincidental.

So something goes wrong, you blame the user, remove them and claim problem solved. In the background you quietly find the problem and fix it (as part of routine maintenance). Your reputation is intact and all is good with the world.

Jumping to conclusions

[faloi]

Seems to be all the rage at Duke. One would think they'd learn from their past mistakes.

Re:

[PM4RK5]

There's a reason they have a world-renowned business school. I'm pretty sure Jumping To Conclusions is a senior-level course.

*ducks*

Haha Called It

[g-san]

Smelled like a network problem. [slashdot.org]

rm999, blindbat, Doctor Memory, and Funk_dat69, you all owe me a beer. Go drink it for me and think about what you've done. ;)

Re:

[rm999]

One beer, 10-1 odds, I'll drink 10 for you ;)

Something is still unexplained though

[lena_10326]

In the original article:

18,000 requests per second from iPhones knocking out dozens of access points at Duke Universit

I don't understand why no one thinks it's a problem that the iPhone didn't back off. It still generated thousands of requests (or responses) to the broken router. It should have detected that and backed off. But then, I'm not very familiar with how ARP works.

first think, then post

[chriss]

It's kind of funny: most posts here complain about the Duke IT staff, either about their lack of competence or that they didn't wait until they had all the facts before claiming that this was an iPhone related problem.

Some people here who know the IT staff at Duke defended them and objected the claim of lacking competence, and there is no reason not to believe them, since everybody else is just guessing.

So most posters rushed to explain what happened without having seen the whole picture, didn't look in

Those responsible for the earlier comments...

[NateTech]

... have been sacked.

As someone in another forum pointed out, and it's a good point...

Cisco provided a NEW patch, or just finally got Duke's IT staff off their ass and over to a patch set that's been readily available for some time?

Re:

[janrinok]

However, no one actually makes sure it is correct.

Isn't that the entire basis for wikipedia?

Re:

[janrinok]

Whoosh. Sorry, I wasn't being serious.

Re:

[Anonymous Coward]

A decent CCNP or CCIE probably would have done packet dumps and debugs and sat there reading RFCs and following the state-flow diagram. Thats what I do, and I'm just a lowly CCNA.

Why do developer types always have be hating on your friendly IT folk? Developers are some of my best friends, and we ask each-other for advice all the time. I don't meet one stupid developer who I have to explain to what NAT, proxies or TCP options are and say 'ugh, those damn CS geeks!'

Re:

[fotbr]

Because there are so many BAD IT folks with certificates that aren't worth the paper they're printed on, that its given the entire field a bad name.

I know maybe a half dozen IT people that are worth their weight in gold pressed latinum, but I know many times that number more that are useless, and cannot figure out how to do simple things without having to have their hand held through the entire process, for something they do on a weekly basis. But they have certificates out the wazoo, so they look good on

Re:

[Anonymous Coward]

Hate to break it to you, but almost every industry sector is like that, be it software developers, construction workers, furniture makers, restaurant staff, and even medical staff.

It's actually rare to find an industry where almost everybody is top-notch, simply because most companies don't want to pay the premiums for these folks. I can only think of a few off the top of my head: NASA, Google, most engineering firms...

Re:

[ejtttje]

I don't meet one stupid developer who I have to explain to what NAT, proxies or TCP options are

That's because we already studied them in our Networking class and wrote our own implementations from scratch for homework assignments while we were getting four-year degrees... ;-P

Just pulling your leg (mostly) ;) I have a feeling you know a lot more by now than anyone finishing a one semester course... and a lot of CS grads get through without taking a networking course in the first place... but the trick is, we both know a lot more than the new recruits wearing their certification diapers and intonin

Re:

[FDDIcent]

Sounds like a fun class, I was a CS minor, but I never got around to taking Networks, just OS/Datastructures/AI etc. Bummer. Your admin does sound like an idiot. The reason to say 'no' to a Linksys in an environment like mine have mostly to do with support (4 hour RMA), interference with other devices (our Cisco APs all talk to each-other), and management (I want to enforce security policy on you). Who cares if Cisco bought Linksys ;) Its the same reason why our server admins want all HPs, because they

Re:

[Maniac-X]

I guess this truly puts me in the minority, because I do both IT and development stuff pretty equally well, though i do favor development a little (don't tell anyone)

Of course there are arguments to work in a homogenous environment, I encountered the same arguments in my first year IS classes. My teacher insisted it was much more efficient to buy mass amounts of generic-branded PCs because the "support was better" in case of hardware failure. Of course I argue that if I build them myself, I already know b

Re:idiots

[RzUpAnmsCwrds]

My teacher insisted it was much more efficient to buy mass amounts of generic-branded PCs because the "support was better" in case of hardware failure. Of course I argue that if I build them myself, I already know by the time each one is deployed that the hardware is not a lemon (burn-in testing), and it's probably going to last quite some time

You've never worked in a large-scale IT environment. At my company, we deploy over 7000 machines per year (1/3 of the entire infastructure) in hundreds of sites around the world.

Are you going to build and "burn in" 20 machines per day? How many people are you going to hire (probably at least two dedicated employees, which is at least $300k/year in expenses)?

Who's going to handle packaging and shipping the machines (HINT: Dell/HP/Lenovo spend a LOT of time testing to make sure the PCs arrive intact)?

When there's a problem, are you going to be able to repair them locally, or will you have to ship them back to headquarters? You can't have a dedicated tech for a 10-man site, but major manufacturers can offer support pretty much anywhere in the world.

How do you know that your images are going to work? You don't want to find out that some chipset mismatch on 2% of your PCs is causing kernel panics.

When you have a problem, who's going to fix it? HP/Dell release BIOS updates for years to fix bugs. Good luck getting ANY support out of AsusTek/ECS/Tyan/Biostar/MSI/Gigabyte/Whoever after even 1 year.

Where do you dispose of your PCs? HP/Dell have extensive recycling programs in place.

How do you handle your purchase orders? HP/Dell are very good at working with your accounting department. It's not as simple as "put it on the Visa".

Of course I argue that if I build them myself, I already know by the time each one is deployed that the hardware is not a lemon (burn-in testing), and it's probably going to last quite some time.

Of the 7396 PCs (desktop and notebook) we deployed in 2005, 143 have failed (1.9%). Generally, we find that the lifetime failure rate is below 3%. You're not even going to get close to that by building them in-house. One of my friends runs a custom-built PC business, and he sees a failure rate closer to 5%, with a large percentage being damaged during shipping.

As for "lasting quite some time", this indicates that you've never worked in a large IT environment at all. All major IT environments have some sort of lifecycle in place, typically 3 years but sometimes 4 or 5. A typical employee costs the company $150,000 per year (salary + benefits + taxes + etc) - if you replace a $1500 PC every three years, you're only spending $500 per year on the PC. It makes precisely zero sense to stick your $150,000 employee with old technology - if the new PC makes them even 0.5% more productive, you are saving $750 per year.

You may think that the big manufacturers just throw together parts, but nothing could be further from the truth.

Re:

[Retric]

Don't forget Dell also pays people to do build systems and do support. So when your buying a Dell your paying for the HW, SW, man power to build it, shipping costs, man power to support it, and some R&D.

Granted Dell gets huge discounts due to their size but you can build systems in house for around the same cost as a rebuilt Dell if you build a lot of systems. (AKA Assuming you don't pay full retail cost for windows.)

Don't forget Support Contracts make Dell a lot of cash and they outsource a lot of thi

Re:idiots

[nosilA]

I used to work with the "hair trigger IT moron." He has a CS degree from one of the best CS schools in the country, he has been running college networks since 2000, and he does, in fact, know what he's doing.

I will admit though, that he has been known to get ahead of himself. When he looked at the logs and saw a bunch of iPhone MAC addresses spewing garbage, but no other devices are, he assumed that it's an iPhone problem. The quote in Network World is unfortunate, but he is no "hair trigger IT moron." He continued working on getting to the root of the problem and solved it yesterday.

Re:

[gb506]

He continued working on getting to the root of the problem and solved it yesterday.

Well, he HAD to continue to work the problem, that's his job, he didn't really have the option of simply ignoring the situation, did he? Not sure that constitutes a pat on the back.

The quote in Network World is unfortunate, but he is no "hair trigger IT moron."

It does, in fact, show that he's willing to drop statements to the press such as "I don't believe it's a Cisco problem in any way, shape, or form," quite pre

Re:

[zippthorne]

Scott Adams wrote a whole chapter about people who add redundancy or nonsense to strengthen their statements.

Although I suppose I should say that they elucidate a plethora of needless added extra redundancy to give more force, pizazz and oomph to their otherwise mundane, banal and uncertain statements to elicit illicit confidence.

Re:

[gb506]

That response would last about one week into the new school year. Dude, there were over 150 of the darn things ALREADY on campus, and it's a ghost town compared to September when the kids return!

Three things:

1.) if you think that Duke students will put up with an IT staff too closed minded to resolve a problem with their own network, which would result in making their $500 iPhones useless on wifi, you're crazy. The kids pay the big $$$ to go there, IT toads can be easily replaced.

2.) Duke U. has be

Re:idiots

[peragrin]

go back and read the slashdot article on the subject when this first came out. Dozen of slashdot guys were reporting that cisco routers and WAP's have a flaw that would enable just such a solution and that you had to patch the routers with a patch that Cisco already had made.

Cisco makes some solid equipment, but when they let flaky stuff loose it's really flaky. It is also not something you announce to the world first, without throughly checking out your own equipment first, especially when the iPhone was working perfectly fine with tens of thousands of other access points around the country.

Re:idiots

[eli pabst]

He continued working on getting to the root of the problem and solved it yesterday.

See, that's what he gets for not reading Slashdot. If he would've just sat there eagerly refreshing his browser, he would've seen several people post the solution to their problem last week and could've taken the weekend off. Hope this is a lesson.

Re:

[tenman]

Okay.. I don't even know if mod points still exist in slashdot.... I haven't logged into this account in so long I don't even know what the rules are any more... this you comment made me chuckle. When i was in IT, I'd search google for it first... the use google to search slashdot for it second. Slashdot has provided me with many fixes over the years. It's to bad I don't have enough time to read it much any more. I'd add +1 funny.

hound

[Gary W. Longsine]

What about a publicity seeking IT hound, then?

Re:idiots

[eipo]

Your assumption at the skill of the network folks at Duke is sadly mistaken. The people at Duke are very intelligent and experienced group of folks that detected a problem on the network that seemed to be related to the iPhone. In turn they contacted BOTH Apple and Cisco and began running dumps to try to figure out what was going on. In the beginning it did appear to be caused by the iPhone and only after a lot of testing and help from Cisco was the true problem discovered. They had Cisco network that functioned perfectly until iPhones started popping up, it wasn't a far stretch to suspect the new device introduced into a working system.

The only thing they did poorly was fail to realize how much the techie world is hot and bothered over ANY news about the iPhone. Had the cause seemed to have been the the latest Crackberry this would have never sweep through the iPhone loving media/techie-verse this quickly.

So come off your superiority complex a bit and cut them some slack. They managed to detect and solve this issue within a week on a massive University network with half the tech world breathing down their collective necks. It wasn't the work of inexperienced MIS folks but group of talented network professionals that had the misfortune of publicly grappling with the iPhone juggernaut and half million know-it-alls on forums like this.

Re:idiots

[EGSonikku]

Perhaps they should have waited a week then and not announced prior to discovering the true issue that the iPhone was at fault.

Re:

[g-san]

What, and miss out on all that iPhone hype fueled publicity? Inconceivable! I'm considering swallowing one just to get on the front page of the local paper. Probably make MSNBC too.

Re:

[rollthelosindice]

Actually, that's exactly what it was. A far stretch. If you have a campus wide network and as few as ONE or TWO CELLPHONES, can disrupt it, you need to make sure you are looking at your information properly. The amount of requests per second that they were reportedly getting flooded with would require more processing power than both or those cellphones had combined. Even if they were buggy to shit and doing nothing but flooding with requests they couldn't have been doing that many requests.

It's like say

Re:idiots

[CryBaby]

The only thing they did poorly was fail to realize how much the techie world is hot and bothered over ANY news about the iPhone.

No, what they did poorly was their job as problem solvers. They made the classic mistake of trying to solve a problem in reverse -- they started out with an assumption and then looked for evidence to support that assumption. For whatever reason, they wanted to rule out Cisco as the cause, so they did. This prevented them from finding the real cause as quickly as they might have.

Had they kept an open mind, they would have looked for more evidence before making a determination. For example, they could have asked some other universities (who undoubtedly now have iPhones on their wireless networks) whether or not the same type of problem was occurring there. With the answer being "no", they would have learned that the problem must have something to do with the combination of the iPhone and their specific network. That would have opened the doors to start looking at network configuration and/or faulty networking equipment. Obviously, that's exactly what happened in the end, but my point is that they erected a barrier in the problem solving process by "trusting" their Cisco equipment rather than suspecting it along with everything else.

I don't think the Duke IT people are incompetent, unintelligent, lacking in education, etc. Rather, I think this is an interesting little case study that illustrates how even highly competent people can allow their preconceptions to undermine their problem solving efforts. After all, our instincts, gut reactions, feelings, etc. are extremely useful when diagnosing a problem. They are often correct or at least highly informed on a level that is difficult to quantify. So, it's not easy to consider that your instincts may be completely wrong -- that you may be looking at an entirely new and surprising situation in which your instincts only serve to mislead you. Effective problem solving requires creativity, deliberate role-playing (e.g. "playing devil's advocate") and a certain amount of (forced) objectivity. Unfortunately, too few technical professionals display these traits when attempting to diagnose a problem and fail to understand that problem solving, in a general sense, is a discipline unto itself.

Re:

[tgibbs]

The only thing they did poorly was fail to realize how much the techie world is hot and bothered over ANY news about the iPhone.

This hardly seems like a minor error. They apparently went public with a premature conclusion about a new product before they actually knew what was going on, thereby holding themselves and Duke University up to ridicule.

And it is an unfortunately typical knee-jerk reaction reflects the arrogance typical of many IT departments: "The problem isn't with our network; it must be your c

Re:idiots

[jayhawk88]

Uh huh. Because you've never made a mistake or misdiagnosed a problem when something is broken and your entire customer base is screaming at you to fix it.

Jesus, I love how you all are posting here like you single handly created the first router and invented TCP/IP. Let's try and look at this from the Duke IT perspective: 1. Wireless network is (presumably) working great. 2. iPhone is released, students start showing up with it. 3. Wireless starts getting slammed. Yes it was a wrong conclusion and faulty logic but come on, was it really that horrible? When something breaks the first thing you ask is "What has changed", in this case iPhones were introduced to the network. I guarentee that would have been the first thing I would have looked at.

Re:

[ktappe]

Let's try and look at this from the Duke IT perspective: 1. Wireless network is (presumably) working great.

That word "presumably" was pretty close to the heart of this entire debacle. It's an assumption and those are the first things you should throw out when performing logical troubleshooting.

2. iPhone is released, students start showing up with it. 3. Wireless starts getting slammed. Yes it was a wrong conclusion and faulty logic but come on

Come on what? Logically fixing this problem is their prim

Re:

[Thrudheim]

You forgot this point: "4. Why is it that our network is getting slammed but similar networks at other universities are not?"

One does not need a technical background to know that if the iPhone caused problems for these kind of networks, we should be seeing them all over the place. A simple, logical process of elimination would soon cast strong doubt on the iPhone as the cause. It had to be the way that particular network interacted with the iPhone. Hence, it was the network and not the phone.

Re:

[AmberBlackCat]

So if you get hired at a new company and a bunch of stuff gets broken or stolen, it's okay to blame it all on you and then figure out what happened, right?

Re:

[Ohreally_factor]

Jesus, I love how you all are posting here like you single handly created the first router and invented TCP/IP.

There can be only one Al Gore.

Re:idiots.. But it is true...

[Fallen Kell]

I and my group have experienced this at work all the time almost whenever a new person is hired into the network team. Cisco gear do NOT play nice with Sun Microsystems, be it their desktop workstations or their servers. The Cisco gear refuses to properly auto-negotiate with the equipemnt causing issues such as duplex/simplex mis-matches (i.e. the workstation thinks it is connected at 100 Full duplex, while the switch thinks it is connected at 10 Half duplex). Needless to say this causes all kinds of collisions, IErrors, OErrors, etc., on the system and the network. All the Sun gear must have their associate network partner's port forced to 100 Full, and we do the same for the system as well. How do I know the problem is with the Cisco gear? Because the workstation/server works fine if you use a HP, Xylan, Baynetworks, or other switch. The net network engineers immediately believe it is the Sun equipment because they have been brainwashed into believing that Cisco can't make a mistake or a poor product. It usually takes us to demonstrate using 2 or more other switches that the problem only happens on the Cisco. Cisco still denies that there is a problem as well.

Oh and if you don't believe me, do a google "Cisco problems with Sun"...

Re:

[TooMuchToDo]

This problem isn't restricted to Suns. In the last hosting environment I managed, all of the Cisco gear had to be hard-coded to full duplex/100Mb in the IOS, as auto-detect was busted. All of the Dell networking gear worked like a champ though. Cisco gear is overrated.

Re:

[amorsen]

This problem isn't restricted to Suns. In the last hosting environment I managed, all of the Cisco gear had to be hard-coded to full duplex/100Mb in the IOS, as auto-detect was busted. All of the Dell networking gear worked like a champ though. Cisco gear is overrated.

I just don't get this. Auto-detect has never failed me, except when I messed up myself. When one end is hard-coded to full duplex and the other end is autonegotiating, the other end picks half duplex. That's what the standard says must happen,

Re:

[drinkypoo]

Cisco is notorious for autodetect failures and some of their equipment has been known to fail to autodetect when connected to other examples of their equipment.

Re:

[tenman]

Notorious? You sound like you've done your homework on this one. What are some examples that make these problems "notorious"?

Re:

[drinkypoo]

Notorious? You sound like you've done your homework on this one. What are some examples that make these problems "notorious"?

I haven't seen the problems in a while, because I've been on the applications side for some time, but once upon a time you could see this problem just by connecting autodetecting, 100Mbps+FDX ports on two catalyst 5000 switches together. Sometimes they would figure things out and play nice. Sometimes they wouldn't, and bad things happened.

Beyond that concrete example (cat5ks aren't generally even in service any more because the backplane was somehow non-y2k-compliant) I've simply lost track of the number

Re:

[tenman]

Okay, now I'm not being antagonistic, I'm really curious (in a survey sort of way)... Cisco isn't the best, but what is your opinion what is?

Who puts together the best router solution?

Who's switches would run your ideal network?

Who kills at the SANS device space?

Who's VoIP gateways are seen as the best?

Who's Security devices rule?

What manufacturer offers all these type devices?

Who supports their products better?

Re:

[magneticstorm]

I also used to work with this "hair trigger IT moron" at the university where we both got our top-tier Computer Science degrees. Hands down, he is brilliant. I have seen him at his best, which includes: writing an entire network registration software suite for use at large institutions, diagnosing bizarro network problems, and managing network security issues. It is rather unfortunate that he was quoted as saying he was confident that it wasn't a Cisco-related problem. While that ended up not being the case

Re:you're

[uglyduckling]

Shouldn't that be "fuck's sake" or "fucks' sake" - certainly not "fucks sake"..?

Poor Sake

[Oyume]

Why is everyone picking on Sake? I mean, sure it's served slightly warm and in tiny cups, but it's not all that bad to drink, is it?

Re:

[Maserati]

<pedantic style="word to the wise">
Sake is only "bad to drink" until you figure out how wildly dangerous hot liquor can be. Once you get used to the difference, it's great. Just don't forget to take the cap off the bottle before you heat it up.
</pedantic>

Re:

[drinkypoo]

Sake is only "bad to drink" until you figure out how wildly dangerous hot liquor can be.

The tradition of heating sake started because it makes shitty sake more drinkable. Those who care still drink it cold.

And those who don't care, but prefer unfiltered sake, also drink it cold.

Re:

[foo fighter]

Depends. If you're telling a story about your friend Forest having sex with alcoholic beverages during a trip to Japan, then "For fucks sake." is appropriate.

Re:

[freeweed]

Take anything Gartner says and apply the old adage: a stopped clock is correct twice a day. That seems to just about cover their accuracy in most technical matters.

Re:So what was it

[sammy baby]

I prefer Charles Wang's assessment of the folks at Gartner.

"I want to choose my words carefully here, so I'm not misunderstood," he said. "They're a bunch of fucking idiots."

Sorry I can't provide an authoritative cite... but even if it's apocryphal, it's so perfect that I can't care.

Re:

[antifoidulus]

but even if it's apocryphal, it's so perfect that I can't care.

Are you sure you don't work for Gartner?

Re:

[CRC'99]

Wow - I think my experiences are quite the same... Check out my post above yours :P

If you're turning off autonegotiate...

[msauve]

and forcing 100/full, you had better be doing it at both ends.

If you aren't, then the devices will come up as half duplex (assuming they properly implement the standards), you have a duplex mismatch, and you _will_ have network problems. 802.3u requires an end which is set to autonegotiate to assume half duplex if the other end will not autonegotiate.

Except, some Suns can not be forced and will only autonegotiate, in which case you MUST set the switch port to half duplex if you're forcing.

Re:

[ivan256]

The whole thing wouldn't be an issue if Cisco hadn't patented their auto-negotiation process. If we had reliable auto-negotiation nobody would have to force anything.

Re:

[gelfling]

and electricity too and the damn horseless buggy. you kids get off my lawn

Re:

[foniksonik]

Yea and while their at it get rid of those dang newfangled auto-mobiles... I can never find a place to park my buggy, and them new quarter eatin' hitchin posts aren't worth the quarter... my horse just riggles his lead free in two minutes, too slick I tell ya... a good ol fashioned railroad tie is the way ta go.