Skip to content
 
2023-06-05
Latest
IEEE 802.1X and EAP – Part 2: Packet by Packet
IEEE 802.1X and EAP – Part 1: The Basics
CiscoLive for Newbies
Roaming with WPA3-SAE – Part 2
Roaming with WPA3-SAE – Part 1

Karstens Cyber-Fi Blog

Thoughts on Cybersecurity, WiFi and some other stuff

  • About / Impressum
  • Datenschutzerklärung
  • About / Impressum
  • Datenschutzerklärung
Categories : Cisco Meraki Networking Security SecurityTags : EAPIEEE 802.1XRADIUS1 Comment

IEEE 802.1X and EAP – Part 2: Packet by Packet

On 2023-05-312023-05-31 By Karsten

After looking at the 802.1X and EAP basics in part 1, in this part 2, we go through every packet in a simple EAP-Exchange. Although not used anymore in most situations, this example uses EAP-MD5 because it is easy to understand and perfect for learning how 802.1X and EAP communication

continue reading
Categories : Cisco Meraki Networking Security Security WirelessTags : 802.1XEAPIEEE1 Comment

IEEE 802.1X and EAP – Part 1: The Basics

On 2023-05-302023-05-31 By Karsten

IEEE 802.1X plays an essential role in network security. This blog post gives a basic introduction to the elements used in 802.1X. This content is mainly taken from my WLAN security workshop to introduce 802.1X before moving to more complex authentication scenarios. If you want to learn WLAN security or

continue reading
Categories : General5 Comments

CiscoLive for Newbies

On 2023-04-022023-04-06 By Karsten

There are lots of recommendations on the Intenet for people attending CiscoLive the first time. Here are mine. Perhaps they are helpful for one or the other. Before the conference at home Before the conference in Las Vegas At the conference After the conference Are you already excited? So I

continue reading
Categories : WirelessTags : CWSPWirelessWPA3Leave a comment

Roaming with WPA3-SAE – Part 2

On 2022-12-032022-12-11 By Karsten

Part 1 of my “Roaming with WPA3-SAE” blog showed the roaming process in a centralized environment without any Fast Roaming mechanisms enabled. In this second part I’ll look into the roaming process with “Fast BSS Transition (802.11r)” enabled in a centralized environment. TLDR: From the moment the client and the

continue reading
Categories : WirelessTags : CWSPWirelessWPA31 Comment

Roaming with WPA3-SAE – Part 1

On 2022-12-012022-12-01 By Karsten

How does roaming with WPA3-SAE (WPA3-Personal) work? We have the SAE exchange that is done at the beginning of our wireless session to compute the PMK. But do we need this extra exchange when roaming, or is there some kind of a “shortcut”? When starting this blog-post I thought that

continue reading
Categories : GeneralTags : IPv6O2TelefonicaLeave a comment

O2/Telefonica and IPv6

On 2022-08-312022-08-31 By Karsten

Part 4 of my hope to eventually get IPv6 from O2/Telefonica. From time to time I asked O2 when they will support IPv6 on my Business-DSL line. These were their previous answers: 2013: You don’t need IPv6 because we have “complete translation” 2014: IPv6 will be introduced at a later

continue reading
Categories : Cisco Meraki SecurityTags : 802.1XCiscoISEMerakiLeave a comment

Tuning the Cisco ISE for Meraki Networks

On 2022-08-172022-08-17 By Karsten

In general, the Cisco ISE and Meraki devices play nicely together. But when doing 802.1X Authentication, the ISE hides some information and by enabling these, the Logs have a more relevant output. Let’s start: Vendor Specific Attributes Meraki Devices send four Vendor Specific Attributes (VSA) in the RADIUS requests: To

continue reading
Categories : NetworkingTags : JNCISJuniperMistLeave a comment

The Juniper JNCIS-MistAI Certification

On 2022-07-152022-07-21 By Karsten

Last year I partnered with a new IT-consulting company to support them with their Cisco projects. And when they asked if I also want to go for Juniper Mist, I directly agreed. Every opportunity to do more wireless work is highly welcomed. Part of this was the qualification to the

continue reading
Categories : General Meraki NetworkingTags : High-AvailabilityMeraki MSMeraki MX1 Comment

How to connect the Meraki MX to MS switches

On 2022-03-132022-03-24 By Karsten

Connecting the Meraki MX to an internal switched network? Sounds easy and if the network is build without any redundancy, it is very easy indeed: It can get a little bit problematic if redundancy is added. If you come from the Cisco ASA, you have tools like routed interfaces Port-Channel

continue reading
Categories : General WirelessTags : 9800 WLCCiscoEWCFlexConnect2 Comments

Central Web Authentication (CWA) with Cisco EWC/ FlexConnect APs

On 2021-11-022022-03-24 By Karsten

Recently I had to implement Central Web Authentication (CWA) on a network that uses the Cisco Embedded Wireless Controller (EWC) on Catalyst 9100 APs. Configuration is not that hard, but there is some misleading information in the documentation. Although this blog post is about EWC, it is nearly the same

continue reading

Posts navigation

Older posts

Recent Posts

  • IEEE 802.1X and EAP – Part 2: Packet by Packet
  • IEEE 802.1X and EAP – Part 1: The Basics
  • CiscoLive for Newbies
  • Roaming with WPA3-SAE – Part 2
  • Roaming with WPA3-SAE – Part 1

Recent Comments

  • IEEE 802.1X and EAP – Part 1: The Basics – Karstens Cyber-Fi Blog on IEEE 802.1X and EAP – Part 2: Packet by Packet
  • IEEE 802.1X and EAP – Part 2: Packet by Packet – Karstens Cyber-Fi Blog on IEEE 802.1X and EAP – Part 1: The Basics
  • Shadab Abbasi on CiscoLive for Newbies
  • Karsten Iwen on CiscoLive for Newbies
  • Shadab Abbasi on CiscoLive for Newbies

Archives

Categories

  • Allgemeines
  • Apple Macintosh
  • books
  • Certification
  • Cisco
  • CWNP
  • General
  • iPhone / iPad
  • Linux
  • Meinungen
  • Meraki
  • Networking
  • QoS
  • Security
  • Security
  • Training
  • VMware
  • Wireless

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org
Copyright © All right reserved. | Theme: Newslite by eVisionThemes