You are here
WL0055 - 9800 WLC L2 Security MPSK and iPSK (Part 3)
Difficulty Level:
Lab Document:
<Please login to see the content>
Category:
Wireless
Video Download:
Title: WL0055 - Video Download $14.00
The video introduces you to two additional L2 security features on Cisco 9800 WLC namely MPSK and iPSK. We will get to see how MPSK and iPSK provides extra security and flexibility over the traditional single preshared key by allowing a SSID to support multiple, group-level, and even endpoint-level preshared key.
Part 3 of this video covers endpoint iPSK
Topic:
- Multi-PSK (MPSK)
-
Identity PSK (iPSK)
- Per-Group
- Per-Endpoint
About Author
Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.
1 comments
Security over-the-air with iPSK
Hello,
First of all, thank you for making such a good and knowledgeable video. Easy to understand and easy to follow.
I have a question about iPSK security please. Scenario is two different end-points (two laptops) connecting to different iPSK group with different vlan tag. End-points connect just fine to correct iPSK group no problem. One observation is one end-point can see another end-point broadcast or multicast traffic over-the-air by wireshark capture on end-point wireless interface.
To be more clear scenario,
For example, there are two clients which one client connects to vlan-1 and another connects to vlan-2 per IPSK group. Vlan-1 client initiates ping to its own vlan-1 gateway IP or vlan-1 broadcast IP. Vlan-2 client runs wireshark capture on its wireless interface and could see ICMP traffic of vlan-1 client.
Is this behavior expected for IPSK standpoint?