Discussion:
USR2450 implimentation
Scott Serr
2004-08-09 15:49:01 UTC
Permalink
[I was beginning to doubt the viability of my USR2450s, it seems you
guys are still interested in advancing with them...]

I am doing WDS and WEP on a 4 node (all USR2450) system. The
performance is pretty bad. I know that both of these kill
performance... Can someone tell me from experience what to expect from
WEP vs non-WEP? Speeds? Also, what are some alternatives to WEP?
IPSec? But can the 2450 do that?

I'm thinking that maybe I will have the users VPN into a server that is
accessible through the "public" non-WEP wireless mesh-thing. But it
would be better if I didn't have to throw a full sized computer at the
problem. Also, the public wireless network could be abused or DOSed.

Right now I have WDS on each of the 4 APs bridging to the other 3 APs.
I might have some weird cascading going on. But I thought WDS was
supposed to find shortest routes for you?

Any advice?

Thanks,
-Scott

PS- I have recently purchased a WRT54G to add to the mix or run beside.
Maybe that can have enough RAM and CPU to do IPSec for the others?
Eerin Rosenström
2004-08-09 20:20:41 UTC
Permalink
are some alternatives to WEP? IPSec? But can the 2450 do that?
Wery slow, and 1MB flash, ipsec code don't fit (?)

New card firmwares (?1.4 ->?) are capable to do WEP inside card. It speeds
some..
Right now I have WDS on each of the 4 APs bridging to the other 3 APs. I
might have some weird cascading going on. But I thought WDS was supposed to
find shortest routes for you?
No, WDS find only AP:s and do "direct tunnel" inteface to talk between
AP-AP. (first is wlan0wds0)

Bridge code use STP prototocol to avoid circular loops.

That's all.

No best route finding.
Any advice?
I have talked that "best route" broblem ca. 2 year ago in that list.
Somebody need to code special kernel module... (linklevel, linkcapacity,
link remaining capacity, packet type (SIP,DOOM,etc <-> FTP,HTTP))



-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*

**** Eerin Rosenström ****
** Servinmaijantie 12 F 77 **
** 02150 Espoo **
** p. +358 9 4682997 **
**** p.+358 40 5205030 ****

-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*-*
Bruno Lopes F. Cabral
2004-08-10 20:48:32 UTC
Permalink
Hi

I'm using vtun.sf.net on my linuxap modified version, but
the CIPE support on linuxap was OK last time I checked
(Keith uses it, AFAIK)

Cheers
!3runo
Post by Eerin Rosenström
are some alternatives to WEP? IPSec? But can the 2450 do that?
Wery slow, and 1MB flash, ipsec code don't fit (?)
New card firmwares (?1.4 ->?) are capable to do WEP inside card.
It speeds some..
Roy
2004-08-09 20:57:04 UTC
Permalink
As I found on inet, wep is quite useless anyway. it takes about 1-3 days to
hack in.

you can use cipe which is supposed to be secure. and is more or less
implemented in latest flash.
(it is same as ipsec)

I use unsecure network, and performance is still bad, 16mhz(bogomips) cpu is
capable for 350kbytes/s

if you set it to 32mhz it can transfer little more than 400kbytes/s but
requires heatsink on cpu.

this is between same type aps (USR2450)

USR2450 was capable to receive 500kbytes/s
and transmit 350kbytes/s tcp traffic for me.

since it is not duplex it decreases speed about 30% or teoretical maximum










----- Original Message -----
From: "Scott Serr" <***@theserrs.net>
To: "Linux Access Point Development" <linuxap-***@linuxAP.ksmith.com>
Sent: Monday, August 09, 2004 6:49 PM
Subject: [LinuxAP-dev] USR2450 implimentation
Post by Scott Serr
[I was beginning to doubt the viability of my USR2450s, it
seems you
guys are still interested in advancing with them...]
I am doing WDS and WEP on a 4 node (all USR2450) system. The
performance is pretty bad. I know that both of these kill
performance... Can someone tell me from experience what to expect from
WEP vs non-WEP? Speeds? Also, what are some alternatives to WEP?
IPSec? But can the 2450 do that?
I'm thinking that maybe I will have the users VPN into a server that is
accessible through the '"'public'"' non-WEP wireless mesh-thing. But it
would be better if I didn't have to throw a full sized computer at the
problem. Also, the public wireless network could be abused or DOSed.
Right now I have WDS on each of the 4 APs bridging to the other 3 APs.
I might have some weird cascading going on. But I thought WDS was
supposed to find shortest routes for you?
Any advice?
Thanks,
-Scott
PS- I have recently purchased a WRT54G to add to the mix or run beside.
Maybe that can have enough RAM and CPU to do IPSec for the others?
_______________________________________________
LinuxAP-dev mailing list
http://linuxAP.ksmith.com/mailman/listinfo/linuxap-dev
Scott Serr
2004-08-09 22:46:50 UTC
Permalink
I'm looking into cipe now.

Is WDS possible with CIPE? From what I understand CIPE will encrypt an
IP connection... I'm guessing that in a simple wireless bridging setup
you would do this on wlan0. But I'm wondering when you have a br0
wrapped around eth0 and multiple wds'... What to do?

If I have:

[Linux1] --- [AP1] === [AP2] === [WinXP1]
^ === [AP3] === [WinXP2]
^ --- [Win98]

"---" is wired
"===" is wireless

Even if all APs where not in a WDS mess, which they currently are, what
makes sense?

Seems like CIPE from AP1 to AP2 and AP1 to AP3 in a simpler WDS config
would work... But how would WinXP1 and WinXP2 talk CIPE without much hastle?

I'm open to any ideas...

Thanks,
-Scott
Post by Roy
As I found on inet, wep is quite useless anyway. it takes about 1-3 days to
hack in.
you can use cipe which is supposed to be secure. and is more or less
implemented in latest flash.
(it is same as ipsec)
I use unsecure network, and performance is still bad, 16mhz(bogomips) cpu is
capable for 350kbytes/s
if you set it to 32mhz it can transfer little more than 400kbytes/s but
requires heatsink on cpu.
this is between same type aps (USR2450)
USR2450 was capable to receive 500kbytes/s
and transmit 350kbytes/s tcp traffic for me.
since it is not duplex it decreases speed about 30% or teoretical maximum
----- Original Message -----
Sent: Monday, August 09, 2004 6:49 PM
Subject: [LinuxAP-dev] USR2450 implimentation
Post by Scott Serr
[I was beginning to doubt the viability of my USR2450s, it
seems you
guys are still interested in advancing with them...]
I am doing WDS and WEP on a 4 node (all USR2450) system. The
performance is pretty bad. I know that both of these kill
performance... Can someone tell me from experience what to expect from
WEP vs non-WEP? Speeds? Also, what are some alternatives to WEP?
IPSec? But can the 2450 do that?
I'm thinking that maybe I will have the users VPN into a server that is
accessible through the '"'public'"' non-WEP wireless mesh-thing. But it
would be better if I didn't have to throw a full sized computer at the
problem. Also, the public wireless network could be abused or DOSed.
Right now I have WDS on each of the 4 APs bridging to the other 3 APs.
I might have some weird cascading going on. But I thought WDS was
supposed to find shortest routes for you?
Any advice?
Thanks,
-Scott
PS- I have recently purchased a WRT54G to add to the mix or run beside.
Maybe that can have enough RAM and CPU to do IPSec for the others?
_______________________________________________
LinuxAP-dev mailing list
http://linuxAP.ksmith.com/mailman/listinfo/linuxap-dev
_______________________________________________
LinuxAP-dev mailing list
http://linuxAP.ksmith.com/mailman/listinfo/linuxap-dev
Roy
2004-08-09 23:08:49 UTC
Permalink
Your setup is quite comlex, and I think cipe is not very suitable here
afterall,

better use ipsec to only protect your internet access, and leave the network
itself open.
that way you may not care about your ap security.

so you will need to install one into linux box and others on client
machines.
but win 98 may not support ipsec






----- Original Message -----
From: "Scott Serr" <***@theserrs.net>
To: "Linux Access Point Development" <linuxap-***@linuxAP.ksmith.com>
Sent: Tuesday, August 10, 2004 1:46 AM
Subject: Re: [LinuxAP-dev] USR2450 implimentation
Post by Scott Serr
I'm looking into cipe now.
Is WDS possible with CIPE? From what I understand CIPE will encrypt an
IP connection... I'm guessing that in a simple wireless bridging setup
you would do this on wlan0. But I'm wondering when you have a br0
wrapped around eth0 and multiple wds'... What to do?
[Linux1] --- [AP1] === [AP2] === [WinXP1]
^ === [AP3] === [WinXP2]
^ --- [Win98]
'"'---'"' is wired
'"'==='"' is wireless
Even if all APs where not in a WDS mess, which they currently are, what
makes sense?
Seems like CIPE from AP1 to AP2 and AP1 to AP3 in a simpler WDS config
would work... But how would WinXP1 and WinXP2 talk CIPE without much hastle?
I'm open to any ideas...
Thanks,
-Scott
Post by Roy
As I found on inet, wep is quite useless anyway. it takes about
1-3 days to
Post by Roy
hack in.
you can use cipe which is supposed to be secure. and is more or
less
Post by Roy
implemented in latest flash.
(it is same as ipsec)
I use unsecure network, and performance is still bad,
16mhz(bogomips) cpu is
Post by Roy
capable for 350kbytes/s
if you set it to 32mhz it can transfer little more than
400kbytes/s but
Post by Roy
requires heatsink on cpu.
this is between same type aps (USR2450)
USR2450 was capable to receive 500kbytes/s
and transmit 350kbytes/s tcp traffic for me.
since it is not duplex it decreases speed about 30% or
teoretical maximum
Post by Roy
----- Original Message -----
To: '"'Linux Access Point Development'"'
Sent: Monday, August 09, 2004 6:49 PM
Subject: [LinuxAP-dev] USR2450 implimentation
Post by Scott Serr
[I was beginning to doubt the viability of my USR2450s,
it
Post by Roy
Post by Scott Serr
seems you
guys are still interested in advancing with them...]
I am doing WDS and WEP on a 4 node (all USR2450) system.
The
Post by Roy
Post by Scott Serr
performance is pretty bad. I know that both of these
kill
Post by Roy
Post by Scott Serr
performance... Can someone tell me from experience what to
expect from
Post by Roy
Post by Scott Serr
WEP vs non-WEP? Speeds? Also, what are some alternatives
to WEP?
Post by Roy
Post by Scott Serr
IPSec? But can the 2450 do that?
I'm thinking that maybe I will have the users VPN into a
server that is
Post by Roy
Post by Scott Serr
accessible through the ''"''public''"'' non-WEP
wireless mesh-thing. But it
Post by Roy
Post by Scott Serr
would be better if I didn't have to throw a full sized
computer at the
Post by Roy
Post by Scott Serr
problem. Also, the public wireless network could be abused
or DOSed.
Post by Roy
Post by Scott Serr
Right now I have WDS on each of the 4 APs bridging to the
other 3 APs.
Post by Roy
Post by Scott Serr
I might have some weird cascading going on. But I thought
WDS was
Post by Roy
Post by Scott Serr
supposed to find shortest routes for you?
Any advice?
Thanks,
-Scott
PS- I have recently purchased a WRT54G to add to the mix or
run beside.
Post by Roy
Post by Scott Serr
Maybe that can have enough RAM and CPU to do IPSec for the
others?
Post by Roy
Post by Scott Serr
_______________________________________________
LinuxAP-dev mailing list
http://linuxAP.ksmith.com/mailman/listinfo/linuxap-dev
_______________________________________________
LinuxAP-dev mailing list
http://linuxAP.ksmith.com/mailman/listinfo/linuxap-dev
_______________________________________________
LinuxAP-dev mailing list
http://linuxAP.ksmith.com/mailman/listinfo/linuxap-dev
Loading...