Wireless network at FI
The wireless network works over hardware that meets IEEE 802.11a, 802.11g, 802.11n standards. Since autumn 2019, the faculty's Wi-Fi infrastructure is based on access points UniFi AP HD .
Eduroam ( EDUcation ROAMing ) is an international project promoting mobility of users in academic networks. It allows users to connect to the networks of all involved organizations (especially wifi). In case of radio overlap of multiple networks (belonging to different resource providers, with different IP subnets, etc.) with the same SSID, this SSID is set in the "eduroam- [inst]" format, where [inst] is a well-understood abbreviation representing the organization name.
There is one Eduroam network provider in the FI building. ESSID eduroam covers the entire FI building. Communication between the computer and the wireless access point is secured by WPA / WPA2. For the wireless network eduroam is reserved segment 126.96.36.199/22, respectively. 2001: 718: 801: 22c :: 64. The connected stations obtain their IP address dynamically via DHCP. Unlike wlan_fi, after connecting to the network, you do not need to activate your machine.
Instructions how to connect to eduroam network .
To access this network, you must connect to the
wlan_fi ESSID. After the IP address is assigned, only access to DNS servers and to the server is allowed from the station
https://fadmin.fi.muni.cz . An authorized user has the option to activate his machine by accessing the URL
https://wifi.fi.muni.cz , where they must authenticate with the faculty login and faculty password. Access is limited to a maximum of several hours.
Since February 2020, an authorized user can activate his / her machine using the captive portal, which redirects him / her to the login page, where it is necessary to authenticate with the faculty login and faculty password. Access is also limited in time to a maximum of several hours. If you do not see the captive portal automatically, it is necessary to browse the browser and open the HTTP-only page, eg. http://neverssl.com , and you will be redirected to it.
Employees and doctoral students have the opportunity to create short-term accounts for guests or events.
The 188.8.131.52/24, resp. 2001: 718: 801: 22b :: 64. The connected stations obtain their IP address dynamically via DHCP.
After activation, access to the Internet outside the FI network is allowed from the assigned IP address. From a FI network perspective, a connected computer is treated similarly to any other non-FI computer. So all the services on the FI should work that you can use, for example, if you are connected through some other ISP. On the other hand, some services will not work - for example, sharing disks over NFS and SMB (Windows).
The Faculty Firewall tests whether the activated computer is still active. If the ping (ICMP echo request) or ARP request is not answered for more than 5 minutes, the activation of the given IP address is canceled and the user must reactivate the address using the URL above.
Users must be aware that all communication between their computer and the wireless access point is eavesdropping, even an attacker, in certain circumstances, can take their address and thus "hijack" the existing connection. Therefore, it is recommended that you use secure encrypted protocols (such as HTTPS, IMAPS, POP3S, and SSH) for both logon and data transfer.