View previous topic :: View next topic |
Author |
Message |
smartcap
Joined: 19 Oct 2004 Posts: 4
|
Posted: Mon Nov 22, 2004 8:19 am Post subject: Installation for a Centralized Network Topology |
|
|
We have just downloaded FS demo to test out in a Centralized Network Topology.
Question...seems like the installation instruction is geared more towards more for scenario 1 and 2.
What is the installation process for a Centralized Network Topology |
|
Back to top |
|
|
alan Forum facilitator
Joined: 26 Sep 2003 Posts: 4435
|
|
Back to top |
|
|
mouseonmars
Joined: 20 Nov 2004 Posts: 6 Location: Tasmania
|
Posted: Thu Nov 25, 2004 3:59 am Post subject: centralized network |
|
|
Hi, I had a look at the links here, but am still a little confused as to the suitablility of FS with regard to the application we need.
All I need to know is, Can we run (for example) 5 hotspots in remote locations over the WAN with just one firstspot server to authenticate them Or do we need to buy a seperate firstspot server for each location.
We need an authentication method where all that is going back to the firstspot is the authentication and login data, etc. Then each remote location is serving the customers pages from it's own connection.
From what I understand so far, every bit of Data MUST go through the firstspot server, which would seem a bit silly for a spread out WAN topology.
We actuallly have 22 remote locations so far as extensions of our cyberlounge. They are on linux VPN's and our remotes accept timecodes as though they were in the main cyberlounge. We need a similar system for our wifi, without having to spend $1150 on each location, most of which don't generate the traffic to warrant such a huge outlay.
From what I have read on this forum I suspect firstspot doesn't do this, but I am hoping there may be a workaround for it. If not, I will be able to go on to other options. Cheers, jonathon. |
|
Back to top |
|
|
mouseonmars
Joined: 20 Nov 2004 Posts: 6 Location: Tasmania
|
Posted: Thu Dec 02, 2004 5:58 am Post subject: no reply |
|
|
Hi folks, it seems i can't get an answer to the above question. I have tried emailing the question to patronsoft (twice) but still no reply. Can anyone tell me whether or not the remote access point only sends the login and authentication data back to the central server and then runs off it's own connection once authenticated or does all data (including pages the client is surfing) have to go back over the wan to the controller. Cheers, jonathon. |
|
Back to top |
|
|
alan Forum facilitator
Joined: 26 Sep 2003 Posts: 4435
|
Posted: Fri Dec 03, 2004 10:52 am Post subject: |
|
|
There is definitely trade-off here.
If you want the traffic for each site to use its own connection to surf the Internet (instead of going through a centralized location), you can use Scenario 2 ( http://www.patronsoft.com/firstspot/topologies.html ). Note that you can use FirstSpot Standard Edition in this scenario. The trade-off for this scenario is that you need to place a PC on-site. There are really no easy alternative solution (even though other vendor may claim that it is possible, beware) since the 802.11 standard on WLAN AP does not define this type of setup.
To sum-up, there are really 2 ways:
1) place a PC (or a hardware box, which for most of the case is just repackage Linux in a proprietary closed-box PC)
2) use non-standard proprietary AP
We are still convinced that FirstSpot has a better architecture. By placing a PC on site, it is much easier for you to upgrade if the hotspot becomes more popular. The proprietary close-box PC just locks you in to some inferior hardware.
For proprietary AP, it is even worse since the upgrade/expansion cost increases dramatically when you need to add AP. The economics just doesn't make sense for most Wi-Fi Hotspots. _________________ ~ Patronsoft Limited ~ |
|
Back to top |
|
|
mouseonmars
Joined: 20 Nov 2004 Posts: 6 Location: Tasmania
|
Posted: Sat Dec 04, 2004 9:58 am Post subject: still not sure |
|
|
Hi, thanks for your reply, although I am still a little unsure of what you mean. you say we would need a pc on site, which I expected anyway. And I assume we then run the firstspot standard on it, which is still quite an outlay. But you also mention that we could use a linux based system on that end. We are currently running a linux box at most of our remotes but are you suggesting we could use it to talk to the firstspot PRO, in place of the standard edition. Is it just a matter of vpn'ing back into the PRO from the access point, becasue we can do that. or do we need some other type of software on that box.
In the scenario 2, everything still happens inside the internet cloud before it goes out into the world. Do you have a graphic scenario (with hardware and software needed) for a WAN topology where every box is seperated from the PRO by the "internet cloud" I think this would be a big help, cheers, jonathon. |
|
Back to top |
|
|
alan Forum facilitator
Joined: 26 Sep 2003 Posts: 4435
|
Posted: Mon Dec 06, 2004 3:22 am Post subject: |
|
|
For Scenerio 3, the key point is to "mimic" exactly like a dedicated line. From FirstSpot point of view, it must be looked like just an internal network. Note that you don't tunnel via AP, but you tunnel using the VPN router that supports "non-split" tunnel (e.g. ZyWall 10)
Again, http://www.patronsoft.com/firstspot/topologies.html has the diagram that shows the topologies. The Scenerio 2 diagram should be quite exact. For the Scenerio 3 diagram, if you want to use VPN tunnel instead of dedicated line, just replaced "Router" with "VPN Router". _________________ ~ Patronsoft Limited ~ |
|
Back to top |
|
|
|