translated by Google

Machine-translated page for increased accessibility for English questioners.

You can connect your notebook to the faculty network (or Internet) in the following ways:
  • 100Mbit / 1000Mbit Ethernet (wired)
  • Wi-Fi wireless network (IEEE 802.11a / g / n); this is managed by Access Points RouteBoard (ESSID wlan_fi) covering almost the entire faculty space

As a new member of the faculty network (any of the connectivity types), first obtain IP / DNS data for your network interface using DHCP. You still have access only to faculty DNS servers and to HTTPS (this time not HTTP) on fadmin.fi.muni.cz. Use them to open a page in your web browser https://wifi.fi.muni.cz . After successful authentication, all notebooks should be included in the faculty network and the Internet. In the terminology of faculty administration your IP address has been activated.

Once activated, access to the Internet from any appropriate IP address is allowed. The faculty network treats the address as any other computer in the outside world. Therefore, all services on FI should work, for example, if you are connected via another Internet provider. On the other hand, some services will not work - for example, sharing NFS and SMB (Windows).

The faculty firewall continuously checks if the activated computer is still active. If it does not respond to an ICMP echo request for more than 5 minutes, the activation of that IP address is canceled and the user must reactivate their address using the above URL. Keep this in mind when configuring your firewall on your laptop.

Network Security

Please note that all communications leading to / from your computer are interceptable on the intermediate network elements, so use encrypted protocols (eg HTTPS, IMAPS, POP3S, SSH) instead of unsafe, unencrypted (IMAP, POP3, FTP) if possible. , HTTP). This problem is particularly acute when connected to a network wirelessly: all network traffic related to your computer is transmitted not only to you but also to all wireless network subscribers of that access point. Hardware-level encryption (eg WEP) is not turned on for faculty Wi-Fi access points due to the lack of support for reasonably strong cryptography.

In this context, we also urge you to be collegial to other network participants: Provide your system with sufficient protection software to prevent your computer from being attacked by viruses and similar pests who, without your knowledge, will abuse your faculty network to send spam, hacking attacks on nearby computers, and so on. This is especially true for Windows users. Keep all your software up-to-date: a security incident can also happen through unexpectedly hidden, sunken paths.

It is necessary to add that if your notebook starts to report unwanted network activity (eg scanning of surrounding computers caused by the introduced virus), it will not only be disconnected from the faculty network, but you will also be banned from accessing the faculty network from your notebook (user name blocking) ) for one week or more.

Finally, we recommend that you do not save your faculty administration password in a web browser or any script (for example, to enable IP address activation). In the past, a bug has been discovered in some of the common browsers that have made it possible for an evil web programmer to extract the stored passwords from the browser, of course, without your knowledge. Abusing your FI account may cause you irreparable difficulties.

Links, documentation