How to quickly deploy HotSpot with the requirement of the laws of the Russian Federation?
Imagine that you are the owner of a chain of small coffee shops. You need to release customers to the Internet, taking into account the requirements of the law on identification.
And since your business is catering, you probably do not have extensive knowledge in IT. Yes, and time for deployment, as always, no. The sooner we open a cafe - the greater the profit.
The fastest way to raise public Wi-Fi that I found.
')
We deploy Wi-Fi for customers in our coffee shop.
Minimum settings are made. The rest of the various settings are already according to your taste and needs.
1. We buy Wi-Fi point Zyxel with support for Nebula
2. Mount the point on the ceiling / wall.
3. We connect to an existing router
A new point will receive the previously created config.
Well, where is it even easier?
For comparison, the hour record of the webinar Roman Kozlov how to raise the hotspot on the Mikrotik .
Today it is fashionable to call the technology "Cloud" even if they have nothing to do with the clouds ("stone" in the direction of Mikrotik CCR) , devaluing the real technology that the concept of "cloud" hides.
Nebula pure water controller SDN network, which is provided to you as a service ( SaaS ).
Zyxel has developed a controller that provides you with a logical and clear interface for setting up and monitoring equipment. In this case, the devices themselves receive a clean config with the already calculated data. That is, with the same hardware inside the network device is more efficient, since it itself does not recalculate the parameters (the same routes).
Typically, this approach is implemented in large data centers and solutions implemented by them are not worth little money. But for medium and small businesses, such a model can be just as useful and not so expensive.
In Mikrotik, to set up the controller, you have to go through seven circles of hell . At the same time, Mikrotik does not support any of the existing standards for seamless roaming (802.11 k / v / r) ... At least I did not find such settings in either wiki.mikrotik.com or in the Winbox interface.
In Zyxel, these protocols are enabled at the touch of a button.
More information about roaming protocols is well described in this article.
In our context, there is enough eternal free . When registering my points, the PRO license until 2022 also arrived.
It is not uncommon to hear that someone is afraid to use the Nebula cloud: “But fdruh shpivons will soprut”.
But no one complains about AWS cloud services. Entire companies keep mail to gmail and yandex. Modern mobile phones lose their functionality without being tied to the cloud ...
Therefore, to be afraid that someone will support something with the Nebula, considering that only configs of your network are stored there - somehow stupid.
Nebula is constantly evolving.
In fact, part of the work that the network administrator must perform in setting up and maintaining the equipment was done by Zyxel and provides it as a service. In our case, we paid only the cost of equipment.
Setting up glands in conjunction with Nebula is very simple. No need to score 100,500 parameters to enable true seamless roaming.
With growing needs, this infrastructure can be easily developed. For example, if you have a need to filter traffic, then the Nebula for Wi-Fi can always be replaced by the Zyxel ZyWALL \ USG series .
Ask questions on the article and discuss this and other iron from Zyxel I suggest on the channel in Telegram @zyxelru. By the way, after the release of my previous article , official representatives of Zyxel Russia appeared on the channel.
If you know other fast and cheap methods of deploying HotSpot - share in the comments.
And since your business is catering, you probably do not have extensive knowledge in IT. Yes, and time for deployment, as always, no. The sooner we open a cafe - the greater the profit.
The fastest way to raise public Wi-Fi that I found.
')
We deploy Wi-Fi for customers in our coffee shop.
In the first institution:
1. We buy Wi-Fi point Zyxel with support for Nebula
on Yandex.Market from 5,000 rubles .
For 20 seats, I would take the NWA1123-AC .
If your cafe is in the city center with dense buildings and a lot of Wi-Fi routers around, then you should pay attention to the WAC6303D-S model with a smart antenna.
Do not forget to choose a power supply or PoE injector
For 20 seats, I would take the NWA1123-AC .
If your cafe is in the city center with dense buildings and a lot of Wi-Fi routers around, then you should pay attention to the WAC6303D-S model with a smart antenna.
Do not forget to choose a power supply or PoE injector
2. Mount the point on the ceiling / wall.
Or just throw on the table, as I watched in IL Patio in Novosibirsk
3. We connect to an existing router
which automatically distributes addresses (DHCP). Vendor router does not matter.
4. Register on https://nebula.zyxel.com/
5. With the help of the wizard create an organization.
6. Bind the device by entering only its serial number and poppy. You can several at once.
7. Configure the wifi for the main network.
8. Authorization of the clients by clicking the Agree button, complete the configuration later
9. Go to the control panel
10. We register on the service that provides identification of your customers by phone number.
According to the search gives them dofiga. I tried the service global-hotspot.ru. They give 10 days per test, which is enough for me to write an article. According to the instructions, I received a link that will come in handy later. 
A feature of this service is a non-standard way of identifying an incoming call.
That is, after entering the number in a special form, the client is offered to call from his number to the free number 8-800. The system sees the number of the subscriber and resets the call.
Subscription fee from 700 rubles per month. Restrictions on the number of points I did not see.
A feature of this service is a non-standard way of identifying an incoming call.
That is, after entering the number in a special form, the client is offered to call from his number to the free number 8-800. The system sees the number of the subscriber and resets the call.
Subscription fee from 700 rubles per month. Restrictions on the number of points I did not see.
11. We customize guest Wi-Fi
In Nebula go to AP -> Configuration -> SSIDs -> Edit on the selected network
Select Click-to-continue and enable seamless roaming Assisted roaming
By the way, here you can limit the speed of each specific client so that one person does not occupy the entire channel.
Select Click-to-continue and enable seamless roaming Assisted roaming
By the way, here you can limit the speed of each specific client so that one person does not occupy the entire channel.
12. Set up the authorization portal (captive portal).
Now the point will absorb the generated config and in a few minutes it will be possible to use Wi-Fi.Go to the portal authorization settings
Enable the use of an external portal and insert the previously received link
In the “To promotion URL” field, you can specify the page that will be opened to the client after successful identification, for example, the restaurant menu.
Enable the use of an external portal and insert the previously received link
In the “To promotion URL” field, you can specify the page that will be opened to the client after successful identification, for example, the restaurant menu.
Minimum settings are made. The rest of the various settings are already according to your taste and needs.
In other institutions:
1. We buy Wi-Fi point Zyxel with support for Nebula
2. Mount the point on the ceiling / wall.
3. We connect to an existing router
4. Add new points to Nebula
Or through the site
either from a mobile application
either from a mobile application
A new point will receive the previously created config.
Well, where is it even easier?
For comparison, the hour record of the webinar Roman Kozlov how to raise the hotspot on the Mikrotik .
How is this magic possible?
Today it is fashionable to call the technology "Cloud" even if they have nothing to do with the clouds ("stone" in the direction of Mikrotik CCR) , devaluing the real technology that the concept of "cloud" hides.
Nebula pure water controller SDN network, which is provided to you as a service ( SaaS ).
A software-defined network or a software-defined network (software-defined networking, SDN) is a data network in which the level of network management is separated from data transmission devices and is implemented programmatically. One of the forms of network virtualization. © Wikipedia
Zyxel has developed a controller that provides you with a logical and clear interface for setting up and monitoring equipment. In this case, the devices themselves receive a clean config with the already calculated data. That is, with the same hardware inside the network device is more efficient, since it itself does not recalculate the parameters (the same routes).
Typically, this approach is implemented in large data centers and solutions implemented by them are not worth little money. But for medium and small businesses, such a model can be just as useful and not so expensive.
Seamless roaming
In Mikrotik, to set up the controller, you have to go through seven circles of hell . At the same time, Mikrotik does not support any of the existing standards for seamless roaming (802.11 k / v / r) ... At least I did not find such settings in either wiki.mikrotik.com or in the Winbox interface.
Unfortunately, but Mikrotik, while far behind Wi-Fi from other vendors.
TapuNet - Mikrotik hap ac2; Zyxel-5G - NWA5123-AC HD. Physically stand in one place.
Mikrotik hap ac2 - 2.5 dBi 2x2 MIMO
Zyxel NWA5123-AC HD - 3 dBi 3x3 MIMO
Mikrotik hap ac2 - 2.5 dBi 2x2 MIMO
Zyxel NWA5123-AC HD - 3 dBi 3x3 MIMO
In Zyxel, these protocols are enabled at the touch of a button.
More information about roaming protocols is well described in this article.
Nebula license
In our context, there is enough eternal free . When registering my points, the PRO license until 2022 also arrived.
Cloud security
It is not uncommon to hear that someone is afraid to use the Nebula cloud: “But fdruh shpivons will soprut”.
But no one complains about AWS cloud services. Entire companies keep mail to gmail and yandex. Modern mobile phones lose their functionality without being tied to the cloud ...
Therefore, to be afraid that someone will support something with the Nebula, considering that only configs of your network are stored there - somehow stupid.
Nebula is constantly evolving.
While I was writing this article, control of the device firmware appeared in the nebula. that allows you to quickly eliminate the detected vulnerabilities.
Do not forget that Zyxel is a world-class company that monitors its reputation.Conclusion
In fact, part of the work that the network administrator must perform in setting up and maintaining the equipment was done by Zyxel and provides it as a service. In our case, we paid only the cost of equipment.
Setting up glands in conjunction with Nebula is very simple. No need to score 100,500 parameters to enable true seamless roaming.
With growing needs, this infrastructure can be easily developed. For example, if you have a need to filter traffic, then the Nebula for Wi-Fi can always be replaced by the Zyxel ZyWALL \ USG series .
Ask questions on the article and discuss this and other iron from Zyxel I suggest on the channel in Telegram @zyxelru. By the way, after the release of my previous article , official representatives of Zyxel Russia appeared on the channel.
If you know other fast and cheap methods of deploying HotSpot - share in the comments.
Source: https://habr.com/ru/post/446282/
All Articles