Skip to content
 
2023-09-29
Latest
My WLAN Security Boot Camp at WLPC EU
IEEE 802.1X and EAP – Part 2: Packet by Packet
IEEE 802.1X and EAP – Part 1: The Basics
CiscoLive for Newbies
Roaming with WPA3-SAE – Part 2

Karstens Cyber-Fi Blog

Thoughts on Cybersecurity, Wi-Fi and some other stuff

  • About / Impressum
  • Datenschutzerklärung
  • About / Impressum
  • Datenschutzerklärung
Categories : Security TrainingTags : SecurityWi-FiWLANWLPCLeave a comment

My WLAN Security Boot Camp at WLPC EU

On 2023-08-152023-09-14 By Karsten

Registration is now open for this year’s WLPC (Wireless LAN Professionals Conference) in Prague. These are the important dates: If there are enough registrations, I will teach the WLAN Security Boot Camp. Sadly, this training didn’t get enough bookings. Contact me if you are interested in this training individually for

continue reading
Categories : Cisco Meraki Networking Security SecurityTags : EAPIEEE 802.1XRADIUS1 Comment

IEEE 802.1X and EAP – Part 2: Packet by Packet

On 2023-05-312023-05-31 By Karsten

After looking at the 802.1X and EAP basics in part 1, in this part 2, we go through every packet in a simple EAP-Exchange. Although not used anymore in most situations, this example uses EAP-MD5 because it is easy to understand and perfect for learning how 802.1X and EAP communication

continue reading
Categories : Cisco Meraki Networking Security Security WirelessTags : 802.1XEAPIEEE1 Comment

IEEE 802.1X and EAP – Part 1: The Basics

On 2023-05-302023-05-31 By Karsten

IEEE 802.1X plays an essential role in network security. This blog post gives a basic introduction to the elements used in 802.1X. This content is mainly taken from my WLAN security workshop to introduce 802.1X before moving to more complex authentication scenarios. If you want to learn WLAN security or

continue reading
Categories : General5 Comments

CiscoLive for Newbies

On 2023-04-022023-04-06 By Karsten

There are lots of recommendations on the Intenet for people attending CiscoLive the first time. Here are mine. Perhaps they are helpful for one or the other. Before the conference at home Before the conference in Las Vegas At the conference After the conference Are you already excited? So I

continue reading
Categories : WirelessTags : CWSPWirelessWPA3Leave a comment

Roaming with WPA3-SAE – Part 2

On 2022-12-032022-12-11 By Karsten

Part 1 of my “Roaming with WPA3-SAE” blog showed the roaming process in a centralized environment without any Fast Roaming mechanisms enabled. In this second part I’ll look into the roaming process with “Fast BSS Transition (802.11r)” enabled in a centralized environment. TLDR: From the moment the client and the

continue reading
Categories : WirelessTags : CWSPWirelessWPA31 Comment

Roaming with WPA3-SAE – Part 1

On 2022-12-012022-12-01 By Karsten

How does roaming with WPA3-SAE (WPA3-Personal) work? We have the SAE exchange that is done at the beginning of our wireless session to compute the PMK. But do we need this extra exchange when roaming, or is there some kind of a “shortcut”? When starting this blog-post I thought that

continue reading
Categories : GeneralTags : IPv6O2TelefonicaLeave a comment

O2/Telefonica and IPv6

On 2022-08-312022-08-31 By Karsten

Part 4 of my hope to eventually get IPv6 from O2/Telefonica. From time to time I asked O2 when they will support IPv6 on my Business-DSL line. These were their previous answers: 2013: You don’t need IPv6 because we have “complete translation” 2014: IPv6 will be introduced at a later

continue reading
Categories : Cisco Meraki SecurityTags : 802.1XCiscoISEMerakiLeave a comment

Tuning the Cisco ISE for Meraki Networks

On 2022-08-172022-08-17 By Karsten

In general, the Cisco ISE and Meraki devices play nicely together. But when doing 802.1X Authentication, the ISE hides some information and by enabling these, the Logs have a more relevant output. Let’s start: Vendor Specific Attributes Meraki Devices send four Vendor Specific Attributes (VSA) in the RADIUS requests: To

continue reading
Categories : NetworkingTags : JNCISJuniperMistLeave a comment

The Juniper JNCIS-MistAI Certification

On 2022-07-152022-07-21 By Karsten

Last year I partnered with a new IT-consulting company to support them with their Cisco projects. And when they asked if I also want to go for Juniper Mist, I directly agreed. Every opportunity to do more wireless work is highly welcomed. Part of this was the qualification to the

continue reading
Categories : General Meraki NetworkingTags : High-AvailabilityMeraki MSMeraki MX1 Comment

How to connect the Meraki MX to MS switches

On 2022-03-132022-03-24 By Karsten

Connecting the Meraki MX to an internal switched network? Sounds easy and if the network is build without any redundancy, it is very easy indeed: It can get a little bit problematic if redundancy is added. If you come from the Cisco ASA, you have tools like routed interfaces Port-Channel

continue reading

Posts navigation

Older posts

Recent Posts

  • My WLAN Security Boot Camp at WLPC EU
  • IEEE 802.1X and EAP – Part 2: Packet by Packet
  • IEEE 802.1X and EAP – Part 1: The Basics
  • CiscoLive for Newbies
  • Roaming with WPA3-SAE – Part 2

Recent Comments

  • IEEE 802.1X and EAP – Part 1: The Basics – Karstens Cyber-Fi Blog on IEEE 802.1X and EAP – Part 2: Packet by Packet
  • IEEE 802.1X and EAP – Part 2: Packet by Packet – Karstens Cyber-Fi Blog on IEEE 802.1X and EAP – Part 1: The Basics
  • Shadab Abbasi on CiscoLive for Newbies
  • Karsten Iwen on CiscoLive for Newbies
  • Shadab Abbasi on CiscoLive for Newbies

Archives

Categories

  • Allgemeines
  • Apple Macintosh
  • books
  • Certification
  • Cisco
  • CWNP
  • General
  • iPhone / iPad
  • Linux
  • Meinungen
  • Meraki
  • Networking
  • QoS
  • Security
  • Security
  • Training
  • VMware
  • Wireless

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org
Copyright © All right reserved. | Theme: Newslite by eVisionThemes