Secure private network from public with cisco 4402 controller

Unanswered Question
Jan 11th, 2008

I am trying to create a public ssid that goes straight to our pix 501 and out the cable modem without any access to our internal network.

Is this something I can do with an access control list on the 4402 so I can have an address in the say network go straight to our pix and cable modem at say ?

Or is this something I should do on the core router?

Any help would be greatly appreciated i am brand new to ACL's..

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
keegan.holley Sat, 01/12/2008 - 17:00

This is usualy done on the wired network. The ssid's are dumped into vlans with some device doing intervlan routing. You can create acl's on the intervlan device to control network access.



Robert Rowland III Mon, 01/14/2008 - 04:27

You could configure the PUBLIC ssid to use address space in the network as seen in this link but you would still have to vlan the wlc over to that area ( normally the would use a point to point link w/30 but a /24 between pix and router is "ok" ) and then you would issue ip addresses from the scope to your PUBLIC users.

Make sure Router B does not route internally and you would be good to go.

Or ...

Replace that 501 with a ASA 5505 and you have oodles of options including support for vlan/sub-interfaces ( 501 reaches end of support next year). Then you could trunk a vlan from wlc through switch and router and terminate it(default gw) in the ASA. You could even use address space not in use elsewhere with your network to secure it even more so. You can do this with the BASE version of the 5505.

Look at figure 4.1 and substitute the word "HOME" with "PUBLIC" and you will see your network -

Email me if you want more info.

glynncounty Mon, 01/14/2008 - 07:23

Okay not a problem being able to use use a certain DHCP scope like network.

I am confused on what you mean by, "but you would still have to valn the wlc over to that area".


This Discussion