Month: June 2015

Capturing WLAN Packets using WireShark

Posted on Updated on

If you are studying for CCNP Wireless or CWNP Certification, an essential part of the study process is actually getting to lab it all out so as to understand the concepts. I noticed that my Wireshark output lacked the 802.11 management or control packets while trying to capture Open System Authentication process. This blog will explain how to set up Wireshark for WLAN Capturing so that you do not miss the vital packet exchanges.
Read the rest of this entry »


June 2015 Study Plan

Posted on Updated on

This study plan was inspired by Rasika. Check out his blog. Very informative.

The Red days indicates days when I did not study at all. Let’s face it, we are all human and we have a tendency of being lazy :). Yellow is for days when I did actually study but did not meet the planned number of hours. Finally, Green symbolizes the days when I actually studied the planned number of hours. Dark green (which is no where right now), will indicate the days when I did more than was expected of me. Will that day ever come :(?? Sigh Read the rest of this entry »

CWNP’s CWSP-205 Official Study Guide Book Review | Part 1

Posted on Updated on

When I think of the CWNP Program, I think of actual Wireless knowledge that Vendor oriented programs have failed to deliver. I have always used CWNP books to complement information that was missing during my past CCNP Wireless exams (2 more to go). It was therefore only logical that I would turn to their CWSP book to help me prepare for the next exam – 642-737 IAUWS.

Luckily, the new CWSP-205 study guide had just been published so I figured I would order it. Got the book yesterday and I have to say, am a tad disappointed. I have not read the book. I simply skimmed through it to see what is included and to be honest, I cannot help but compare it with the previous CWSP book published by Sybex. Read the rest of this entry »

CWNA Summary Notes: Legacy 802.11 Security | MAC Filters

Posted on Updated on

MAC Filtering

MAC Filtering referes to the use of MAC addresses to client devices that can authenticate to a WLAN. MAC Filtering is not defined by 802.11 Standard and any implementation of it is Vendor specific. Read the rest of this entry »

CWNA Summary Notes: Legacy 802.11 Security | Static WEP Encryption

Posted on Updated on

Static WEP Encryption

This is a layer 2 encryption method using RC4 streaming cipher.

Main goals of WEP Encryption were:

  • Confidentiality (Data privacy through encryption)
  • Access Control ( Authorization if static WEP keys match)
  • Data Integrity ( Data Integrity Check-sum is computed before encryption to ensure that the data has not been tampered with)

Can be entered as a hex (0 – 9) or ASCII (A – F) characters.

Static WEP Encryption was on 2 forms: Read the rest of this entry »

CWNA Summary Notes: Legacy 802.11 Security | Legacy Authentication

Posted on Updated on

Legacy Authentication

Legacy authentication methods were more of an authentication of capability (verification between two devices that they were valid 802.11 devices) and not so much an authentication of user identity.

They are of two types: Read the rest of this entry »

CWNA Summary Notes: 802.11 Network Security Architecture

Posted on Updated on

Components of a Secure Network

Required components when securing a network are:

Data Privacy and Integrity

Access to Wireless medium is unrestricted hence the use of cipher encryption technologies is needed for proper data privacy.

A cipher is an algorithm that is used to perform encryption:

  • RC4 algorithm ( Ron’s Code / Rivest Cipher)
    • It encrypts data in a continuous stream (streaming cipher)
    • Used in technologies used to protect Internet traffic eg SSL (Secure Socket Layer)
    • Incorporated into 2 legacy encryption methods: WEP and TKIP
  • Advanced Encryption Standard Algorithm (AES) / Rijndael Algorithm
    • Encrypts data in fixed blocks
    • Much stronger than RC4
    • Uses Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP) encryption method
    • Encryption key strength options are 128, 192 or 256 bits.

Read the rest of this entry »

CCIE version 3.0 Wireless Summary Notes 1 : IEEE 802.11 Primary MAC Layer Functions Part 2

Posted on Updated on


To connect, the client must go through the following:

Scanning for networks

Includes passive or active scanning mode (or both). Many vendors use both.

Passive scanning:

  • Client tunes to each channel, listens for a period of time, and monitors 802.11 beacon frames (AP transmits beacons by default every 100 milliseconds on a specific RF)
  • Client records the RSS of the frame and continues scanning other channels.
  • After scanning all RFs, the client decides which AP to join (usually highest RSS or more information eg SNR)

Read the rest of this entry »

June update

Posted on Updated on

Most may have noticed a huge gap from January and that the Mobility summary notes are incomplete yet I have jumped straight to listing some CCIE Wireless v3 notes. This does not mean that I have stopped my incomplete CCNP Wireless Journey. In January, I noticed that I was rather behind schedule and decided that jotting my notes on pen and paper would fasten my speed a little. Yes, am that archaic! So basically, I have my notes and all I need to do is transfer them here. You know what they say, it takes 3 or more times to clearly understand the concepts – read, write, blog :). Read the rest of this entry »