Network

From Camp 2011 Public Wiki

Jump to: navigation, search

There will be extensive network at the camp, which will also provide access to the internet.

Contents

Support

There is a Network Helpdesk in the Hackcenter that will gladly assist you with technical difficulties and answer general questions about the network.

Offerings

There will be a wired ethernet network over most of the campsite as well as wireless coverage. However, relying on the wireless exclusively is discouraged, so please bring at least a 5 meter ethernet cable.

The Hackcenter is a good place for some reliable wired internet access. Please bring your own ethernet cable. We recommend a length of 5 or 10 meters.

Our uplink will be providing us with several gigabit/s of symmetric internet bandwidth using various carriers.

There will be 802.11 wireless on the 2.4GHz ISM and 5 GHz bands. Do not bring run your own access point unless you intend to use it in a mesh network. Note that 802.11b will not be supported. See below for further details.

There will be ethernet coverage on the camping grounds as well as in the caravan area. The maximum line-of-sight distance to the next switch will be about 50 meters. This includes the silent area and villages. See below for details.

Wireless

There will be wireless coverage on most of the camp site, offering 802.11g, 802.11a and 802.11n access in the 2.4GHz ISM and 5 GHz bands. Please note that 802.11b will not be supported. We consider it obsolete, as it is no longer common and wastes a lot of airtime.

Be advised that you are not allowed to put up your own access points, especially but not exclusively in the 2.4GHz ISM band. The only exception is the operation of Freifunk nodes using OLSR over ad-hoc mode on channel 1.

On the campsite you will see the following ssid's that are relevant for you:

  • ccc-2011
  • ccc-2011-5ghz
  • ccc-2011-2.4ghz
  • ccc-2011-fixip

If you are unsure or don't care, use ccc-2011. This ssid will try to persuade your client to use 5Ghz, but this might cause problems for some 2.4Ghz clients. For them use the 2.4ghz ssid. If you want to force your client (for whatever reason) to use the 5ghz band, use the 5ghz ssid.

If you don't trust our carefully setup dhcp server, go to the noc helpdesk for a fixed ip and use it on the fixip ssid.

Be aware that all ssids are unencrypted and you should encrypt your traffic sent over the air to prevent snooping with tools like firesheep.

Camping Grounds and Caravan Area

There will be ethernet on the camping grounds and in the caravan area by means of so-called "Data Toilets" or "Datenklos". Look for construction toilets with tin foil wrapped around them.

You can lay your own cables, but please do so in a tidy manner. You may not cross any roads, paths or borders between camping grounds. Always lay your cable from the Datenklo towards your tent to keep any slack close to your tent. Leave 6m of slack cable at the Datenklo. You can simply leave the end of your cable at the Datenklo, it will be connected by helpers at regular intervals (during reasonable work hours). If you want your cable back, make a proper spool of it and leave that at the Datenklo. It will be disconnected for you to pick up.

The maximum line-of-sight distance to the next Datenklo will be approximately 50 meters. Cables will not be provided. A length of 50 meters is recommended. If that is insufficient, you will find someone within this range who has a switch and can plug you in. But bringing 60 or 75 meters won't hurt if you want to be sure.

Rules

First and foremost, follow general social rules:

  • Be nice and friendly! Do not do to others what you do not wish done to yourself.
  • Protect your computer! We cannot be taken responsible or held accountable for any damage your devices might sustain due to security problems, power spikes and other such perils.

We also have to impose some technical rules:

  • Do not run DHCP servers! If you do, we will have to find and advise or disconnect you. Please save us the effort!
  • Do not run wireless access points! We have to follow a tight frequency plan for the wireless or it will be crap for everyone.
  • Do not spoof ARP! Do not run DoS attacks! Do not disturb or impede other peoples network access! We are quite able to find and disconnect you. Repeated offenders will be dealt with harshly.
  • Do not waste wireless airtime! Downloading some stuff should be ok, but if you need to transfer a lot of data (as in gibibytes), please use wired networks.

Surveilance, Censorship and Privacy

xxx THIS IS A DRAFT AND CAN NOT BE RELIED UPON xxx

The NOC and other parts of the Camp organization do not practice active or passive surveilance on the traffic within the camp network and on the uplink. We reserve the right to look at packet headers for purposes of traffic engineering, abuse handling and other technical purposes, but we will not store them or pass them to third parties in non-anonymized form.

We may provide fully anonymized flow information to projects for visualization and statistical purposes. If this will be done, the information will at most consist of source and destination addresses and ports, all of them being randomized using an industry standard PRNG or better. Our privacy representative will be able to explain this in detail.

We do not, in any way, censor the traffic within the camp or on the uplink. We reserve the right to blackhole/filter traffic and DNS requests to our own servers for traffic engineering and abuse handling. We will not, however, manipulate the content of such traffic.

Specifically, we do not participate in "Vorratsdatenspeicherung" (as defined by german data retention law), as we are not obliged to do so due to the limited size of our user base.

All that being said, we can not and therefore will not prevent any surveilance by third parties, such as our uplink providers and fellow camp participants. We also can not prevent legal investigations from taking place in and around the camp network, but we consider our policy to remain applicable in such cases.

Security

xxx THIS IS A DRAFT AND CAN NOT BE RELIED UPON xxx

Be warned that your computer will be exposed to unfiltered Internet access while on the camp network. Therefore, we advise you to implement industry standard precautionary measures for improving the security of your systems. We can not be held responsible for any sort of damage to your systems or data loss, whether you have implemented appropriate measures or not. We recommend that you upgrade your systems and keep any confidential, secret or private information off the network with an air-gap unless you consider yourself qualified to defend yourself.

The camp network will be operated with industry-standard security measures in place. That, however, does not guarantee anything. Large networks have inherent security weaknesses, ranging from limited physical security to insecure software. You should therefore not depend on the security of the network infrastructure in any significant way.

Network Neutrality

We consider ourselves, within our own definition, a neutral network. This means that we do not examine or manipulate content (see the section on surveilance, censorship and privacy for details). We reserve the right to do traffic engineering for network operations purposes (we have to as that is how the whole internet works). We also reserve the right to prioritise brittle services (such as ssh and various forms of streaming). We will not, in general, prevent you from using services unless they pose a threat to network operations or deteriorate the experience of others.

This is not a strict policy, but you can consider it a sentiment and promise to keep our network open to unusual services, protocols and content.

The Earth
Archived page - Impressum/Datenschutz