|
|
|
|
|
|
| ISP Resources |
| ISP-Lists ISP Glossary ISP News The List ISPCON Events Free Newsletters |
|
|
|
||
| internet.commerce | ||
|
Partner With Us |
Wireless LAN Tools Part 3: Discovery and Planning — continued
VP Core Competence, Inc. [August 10, 2004] |
 |
Connection troubleshooting
To debug station connectivity problems, capture traffic between your test station
and all APs, and then again between your station and the desired AP. WLAN analyzers
provide protocol decode capabilities that let you examine captured packets to
look for problems.
For
example, this decode window from AiroPeekNX lets us look inside an 802.11 packet
to see the packet's source and destination, sequence number, and the encryption
parameters that have been used to scramble the data payload to prevent eavesdropping.
In
fact, real-time monitors and post-capture decode windows can't dig into the
IP packets carried by 802.11 unless (a) the AP and station have agreed not to
use WEP, TKIP, or AES link encryption, or (b) your analyzer has been configured
with the keys needed to decrypt packets. For example, this LinkFerret configuration
window lets you enter static WEP keys. Depending upon the analyzer, traffic
may be decoded "on the fly," or by pressing a "decode now" button. Decoding
works well with static WEP keys, but not with dynamic session keys that can't
be known by the analyzer.
When
you can see IP packets and their payload, WLAN analyzers can help you dig into
network connectivity problems. The peer map described previously is one way
to visualize where traffic is and isn't flowing. For TCP traffic, it can also
be handy to reconstruct sessions as shown in this Packetyzer example.
If the payload happens to be (mostly) ASCII text, analyzers let you view client/server dialogs (e.g., web browsing, file transfers, e-mail sessions). In some cases, captured payload can be fed into an application—for example, using a browser to view the web page actually retrieved by a wireless client. This very clearly demonstrates why some type of encryption should be used in a production WLAN. If you can decode traffic with WLAN analyzers, so can attackers. In the early stages of WLAN installation and debugging, you may disable encryption to permit connectivity verification, then enable encryption during a second pass.
Whether
data is encrypted or not, WLAN analyzers can help debug 802.11 association problems,
parameter mismatches, shared key or 802.1X authentication errors, etc. Use a
packet capture to record the sequence of 802.11 beacon, probe, authenticate,
and associate frames exchanged between a given station and AP, then step through
those frames to determine where and why failure occurred. Once the 802.11 association
is successful, move on to 802.1X. For example, this pair of AirMagnet tools
can diagnose association failure and show what happens when a station (tries
to) roam between APs.
Some WLAN analyzers can leave RFMON mode to act as stations themselves, associating with a target AP, requesting an IP address from a DHCP server, and using common network utilities like ping, traceroute, and lookup to verify network connectivity. You could perform these tasks from any test station with a client that lets you select a desired AP (not just SSID), but launching network utilities from within a WLAN analyzer can be more convenient.
Finally,
when you're having trouble connecting to your WLAN and suspect that you may
be the victim of non-802.11 interference or even jamming, it's time to break
out a true spectrum analyzer, like the BVS Yellowjacket tool shown at right.
Spectrum analyzers look at RF energy beyond 802.11 to isolate problems like
microwave oven and FHSS (e.g., Bluetooth) interference. Like WLAN analyzers,
spectrum analyzers can scan the entire band or focus on the range occupied by
one 802.11 channel (designated by the grey band in this example).
Stay tuned for next week
Once your WLAN is up and running, analyzers can help you track and fine-tune
things. Next week, we'll complete our exploration of WLAN analyzers by using
them to illustrate security assessment, performance monitoring, usage reporting,
and trend analysis.
|
Page
6: Connection troubleshooting
|
| Wirless LAN Tools Series: | ||
| [Aug. 24, 2004] | Wireless LAN Tools Part 4: Monitoring and Reporting | |
| [Aug. 10, 2004] | Wireless LAN Tools, Part 3: Discovery and Planning | |
| [July 27, 2004] | Wireless LAN Tools, Part 2: Building Your Toolkit | |
| [July 20, 2004] | Wireless LAN Tools: Analyze This Part 1 | |
|
|
| Best of ISP-Planet | ||
|---|---|---|
|
ISP-Planet
Guide
ISP-Planet's Principal Studies Directories:
Q3 2008 Top U.S. ISPs by Subscriber (Updated 12/02/2008)
ISP-Planet's Blogroll | ||
ISP-Planet's
RSS feed
Jupitermedia Corporation has two divisions: Jupiterimages and JupiterOnlineMedia
Legal Notices, Licensing, Reprints, Permissions, Privacy Policy.
Advertise | Newsletters | Tech Jobs | Shopping | E-mail Offers