NetComms > Wireless > Access Policy
Access Policy
Definition
The access policy defines what traffic is and isn't allowed on each wireless service, and at what speed.
Each wireless service (WLAN) has it's own policy. Policies are basically a reflection of the security features and requirements of that WLAN and also the need to balance performance for all users. Different classes of user (e.g. staff vs students) may be offered a different level of service (speed). Traffic classification is relevant to this discussion, please review this page before continuing:
ANU-Access
Allowed Traffic (inbound connections)
None
Allowed Traffic (outbound connections)
| Service
| Description
| IP Protocol
| Port
| Destination
|
| Web
| -
| -
| -
| -
|
| HTTP
| Web Browsing
| TCP
| 80
| any
|
| HTTPS
| Web Browsing Securely (SSL)
| TCP
| 443
| any
|
| NLA Proxy
| National Library Web Proxy
| TCP/UDP
| 2048
| kestrel.nla.gov.au
|
| Mail
| -
| -
| -
| -
|
| SMTP
| Sending Mail
| TCP
| 25
| any on campus
|
| SMTPS
| Sending Mail Securely (SSL)
| TCP
| x
| any on campus
|
| IMAPS
| Receiving Mail Securely (SSL)
| TCP
| 993
| any
|
| POPS
| Receiving Mail Securely (SSL)
| TCP
| 995
| any
|
| LDAP
| ANU User Lookup (for mail clients)
| TCP
| 389
| ldap.anu.edu.au
|
| General
| -
| -
| -
| -
|
| Captions
| Captioning Services
| TCP
| 9405
| captions1.captioningstudio.com
|
| DNS
| Domain Name Services
| UDP
| 53
| any on campus
|
| ICMP
| Ping
| ICMP
| n/a
| any on campus
|
| RTSP
| Real-Time Streaming Protocol
| TCP
| 554/8080
| streaming.anu.edu.au
|
| SSH
| Secure Shell
| TCP
| 22
| any
|
| VPN
| GRE, IPSEC
| various
| n/a
| ANU VPN Concentrators
|
Offered Speed (inbound/outbound)
| Role
| On-Campus
| On-Net
| Off-Net
|
| Staff
| 256kbps
| 256kbps
| 256kbps
|
| Student
| 256kbps
| 128kbps
| 128kbps
|
| Affiliate
| 256kbps
| 128kbps
| 128kbps
|
| Conference Attendees
| 256kbps
| 256kbps
| 256kbps
|
ANU-Access Policy Notes
- Allowed Traffic is the same for Staff, Students & Affiliates
- Traffic is not classified into On-Campus, On-Net & Off-Net on ANU-Access therefore Offered Speed is the same
- Offered speeds are subject to change at short notice, to ensure a fair and equitable service for all users
ANU-Secure
Allowed Traffic (inbound connections)
None
Allowed Traffic (outbound connections)
ALL outbound connection are permitted EXCEPT the following blocked traffic:
| Service
| Description
| IP Protocol
| Port
| Destination
|
| DNS
| Domain Name Services
| UDP
| 53
| off-campus
|
| SMTP
| Sending Mail
| TCP
| 25
| off-campus
|
Offered Speed (inbound/outbound)
| Role
| On-Campus
| On-Net
| Off-Net
|
| Staff
| Maximum
| Maximum
| 1024kbps
|
| Student
| Maximum
| Maximum
| 1024kbps
|
| Affiliate
| Maximum
| Maximum
| 1024kbps
|
| Conference Attendees
| n/a
| n/a
| n/a
|
ANU-Secure Policy Notes
- Default policy is permissive, everything is allowed unless stated otherwise
- Denied Traffic is the same for Staff, Students & Affiliates
- Maximum indicates that no speed restrictions in place, however performance is subject to the normal constraints including interference, obstruction and current demand
- Offered speeds are subject to change at short notice, to ensure a fair and equitable service for all users
- Users wanting to send mail using a non-ANU SMTP server may do so by using a secure mail protocol such as SSMTP.
Eduroam
Allowed Traffic (inbound connections)
None
Allowed Traffic (outbound connections)
ALL outbound connection are permitted EXCEPT the following blocked traffic:
| Service
| Description
| IP Protocol
| Port
| Destination
|
| DNS
| Domain Name Services
| UDP
| 53
| off-campus
|
| SMTP
| Sending Mail
| TCP
| 25
| off-campus
|
Offered Speed (inbound/outbound)
| Role
| On-Campus
| On-Net
| Off-Net
|
| Eduroam Visitor
| Maximum
| Maximum
| 1024kbps
|
Eduroam Policy Notes
- Default policy is permissive, everything is allowed unless stated otherwise
- Maximum indicates that no speed restrictions in place, however performance is subject to the normal constraints inclu
ding interference, obstruction and current demand
- Offered speeds are subject to change at short notice, to ensure a fair and equitable service for all users
- Users wanting to send mail using a non-ANU SMTP server may do so by using a secure mail protocol such as SSMTP.
ResNet
ResNet has no wireless access policy enforced. An access policy still exists however for each ResNet VLAN (wired+wireless) but this is not controlled by wireless infrastructure. The access policy for ResNet VLANs as at the discretion of the administration in that area. Contact your LITSS if you have queries about access policy on ResNet.
The offered speed will be the maximum supportable by the wireless network at that time. This is theoretically 54Mbps, but is considerably less after allowing for other traffic on the WLAN, signal loss caused by obstructions, and interference caused by other wireless devices.
