Limit Wireless N Access

Unanswered Question
Sep 12th, 2008

I have a WiSM blade and about 25 LWAPP - all 1131s running 4.2.130. I do have 2 1252 APs and I want to limit the N access to only our management. We have tow SSIDs one is for guest access and it is using Web-Auth and the other is our Internal SSID which is using PEAP with a ACS server. Is there a way I can prevent an employee who has an N client access to the N network?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
jeff.kish Fri, 09/12/2008 - 08:30

You can disable N, but it might be disabled by default. In the GUI, go to the Wireless tab and look on the left. You'll see 802.11a/n and 802.11b/g/n drop-downs. Click one of these and you'll see an option at the bottom of the list called "High Throughput (802.11n)". Clicking this takes you to a screen where you can enable/disable 802.11n.

This disables the data rates for all clients and all SSIDs. I don't think there's a way to limit 802.11n data rates for a specific client or SSID.

Just out of curiosity, why do you want to restrict 802.11n?

Scott Fella Fri, 09/12/2008 - 12:02

Why don't you just create another ssid and create a policy in the radius to only allow management users. Then on the 1252, you configure WLAN Override and only allow that ssid. Of course you will have to create an AD group for management unless you already have one. This way, you need to know the ssid and be part of the management group to access that.

cjoseph23 Fri, 09/12/2008 - 14:03

Thanks, I figured I would need to create another SSID and allow only my management users access to the SSID. I was hoping I wouldn't have to tie the SSID to my 1252s. Now my 1252 will only be used for that single SSID but that may be want I have to do.

And I am implementing this upon our Owners request. We are getting clients asking how to accomplish this and we want to test it in our office first to see what all is involved.

Scott Fella Fri, 09/12/2008 - 14:11

Just keep not that you only want to use the 40mhz channel width on the 5ghz. So you actually still can have the other users utilize the 2.4ghz radio. Depending if the 1252 is required for additional coverage you need to have the said on the 2.4ghz side. If this will not be needed for additional coverage then you can disable the 2.4ghz radio.


This Discussion



Trending Topics: Other Wireless Mobility

client could not be authenticated
Network Analysis Module (NAM) Products
Cisco 6500 nam
reason 440 driver failure
Cisco password cracker
Cisco Wireless mode