Interop Las Vegas 2015 was a blast! Few conferences bring together a rich mix of vendors, products, solutions and attendees all in one place. I was particularly interested in Cisco's Hyperlocation, which just so happen to win Best of Interop Award - 2015 Mobility. Interop was a gathering of old friends and meeting new ones. I thought the mobility track was exceptional this year. 

Cisco Hyperlocation:
http://www.interop.com/lasvegas/special-events/best-of-interop-awards.php?itc=we_ilv_le_ilv_drp_text 

I was also a panel guest at Cisco's Mobility lunch where WiFi Mobility, 802.11ac and our AWO (All Wireless Office) was topic of discussion. It was 60 minutes of great discussion and guest interaction. I would like to thank Cisco's Bill Rubino for the invite. 

I spoke at my own session "Designing Todays WiFi Network for Tomorrow's Applications". I always enjoy sharing my real world hands on experience with others. WiFi is still black magic to many IT folks in the industry. The goal in my session, take 2 things away that you didn't know before. I think the attendees agreed. My session made Interop's Top 10 Sessions and ranked #6 in the standings as voted by attendees. I would like to thank Andrew Murray for the invite and having me back at Interop. 

Interop Top 10

http://www.informationweek.com/interop/top-10-sessions-from-interop-las-vegas/d/d-id/1320459? 

In closing three articles were published from my Interop session. 

Remember The Restroom When Deploying Wireless

http://www.informationweek.com/mobile/mobile-devices/remember-the-restroom-when-deploying-wireless/d/d-id/1320230 

What happens if you remove an acceptable use policy from guest Wi-Fi?

http://searchnetworking.techtarget.com/news/4500245600/What-happens-if-you-remove-an-acceptable-use-policy-from-guest-Wi-Fi 

Diversity of connected devices in hospitals poses unique challenge for going fully wireless

http://www.fiercemobileit.com/story/diversity-connected-devices-hospitals-poses-unique-challenge-going-fully-wi/2015-05-04   

Cheers!

It’s an honor to be asked to speak at the Cisco Healthcare User Group event being hosted by Cisco and The Methodist Hospital System.

The event sign in starts at 1:30pm. If you’re in the Houston area and have an interest in WiFi and Healthcare, stop by. I plan to present the common hurdles of WiFi in healthcare, design practices, security, Cisco Clean Air and how to use TAC to your benefit!



My article about hacking a Cisco WLAN with a Rogue WCS/RRM packet exploit was published by and on Author and CCIE Brandon Carroll’s blog @ Networkword.com.

 Read about it here:

http://www.networkworld.com/community/node/45961 

Is your network Vulnerable? If you are running 4.x and 5.x WLC software you may be. Ask yourself, "Did I follow Cisco Best Practices?" If you didn't you may be sorry. A recent issue with OTAP has been widely discussed in online forums, blogs, and such. You may be familiar, but, If you don't understand OTAP (Over the Air Provisioning) visit the following site to get you up to speed:

http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a008093d74a.shtml

And if you are familiar with how OTAP works but not with the vulnerability, check out the following URL:

http://tools.cisco.com/security/center/viewAlert.x?alertId=18919

George Stefanick at http://www.my80211.com claims that there may be more to it than Cisco is mentioning.  His post with Video detailes it here:
http://www.my80211.com/security-labs/2009/9/5/there-is-more-to-the-recent-cisco-wireless-otap-issue-that-i.html

But aside from that, could your network be even MORE vulnerable?  Hard to imagine right? But check out Georges latest post where he discusses how default SNMP strings could further add to the issue, leaving your network open to some major issues.  

http://www.my80211.com/home/2009/10/6/cisco-wlc-rogue-wcs-attack-all-your-base-are-belong-to-us.html

Nice find George!  Great way to dig deep, find an issue, and teach people what they should do to correct the issue.  It shows that you care about the technology and what can happen if you just take shortcuts (like leaving SNMP strings with default values) to get things up an running in a hurry.

George Stefanick is a  Senior Wireless Engineer at Texas Medical Center, working on a large wireless network for a major heathcare system.  Guys like this are invaluable.

Computerweekly.com picked up my article "There is more to the recent Cisco Wireless OTAP issue that isn’t being widely reported." about the controller information being sent in the clear when OTAP is disabled.

Read more about it here:

http://www.computerweekly.com/Articles/2009/09/07/237584/video-cisco-access-points-give-away-network-secrets.htm

Cisco wireless routers may still be vulnerable to remote attacks even if remote management is disabled, a wireless engineer has warned.

As Computer Weekly previously reported, Cisco access points have a potential vulnerability in the Over the Air Provisioning (OTAP) feature.

This function allows a Cisco access point that is not connected to a Cisco controller to listen to traffic from other nearby Cisco access points and to use that information to quickly locate and connect to a nearby wireless Lan controller. However, AirMagnet, a supplier of network sniffing tools, has warned that a rogue access point could use the OTAP feature to connect to a corporate network.

Cisco recommends disabling OTAP after a wireless access point has been deployed, but wireless engineer George Stefanick has posted a video in which he claims Cisco access points can be attacked, even when OTAP is disabled. "If you run a corporate network, you do not want to broadcast any more information that you have to, especially if [the network] is wireless. Even if OTAP is disabled, information is still being broadcast."        

In particular, information about the network address of the wireless controller and the IP address of the management console are broadcast, irrespective of whether OTAP is enabled, he said.

Stefanick said that since the OTAP protocol runs at low bandwidth, it can travel long distances, as much as 100ft, allowing a hacker to find information about the corporate network. Such information could be used to attack the network.

Cisco recommended using DHCP or DNS as the preferred way to configure wireless access points. Disabling OTAP is purely a best practice to eliminate unused features, Cisco said.