Open Guest Network and DHCP utilisation

Unanswered Question
Mar 4th, 2008
User Badges:

For guests to be able to easily access our wireless network, the Layer 2 security is Open, with Web Authentication implemented at Layer 3.

The problem I have is with having no layer 2 security (open), is that my dhcp pool is utilised by devices that may never authenticate. It becomes more of a problem if the DHCP pool is associated with DMZ Public addresses...

Is there anyway of moving the client to a different DHCP pool after web authentication? (ie. from a Private pool to Public pool).

I can see from the documentation that Dynamic VLAN assignment is not possible with web authentication :(

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Scott Fella Mon, 03/10/2008 - 21:14
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 Wireless

Are you saying that the clients are getting public dhcp address? What you should do is setup DHCP on the WLC for the guest. You will have to create a guest vlan and a dynamic interface that is on that vlan. Then place that vlan on your DMZ that would NAT to one of your public ip address.


This Discussion



Trending Topics - Security & Network