I would like to know if it is possible to use H-REAP APs connected via IPSec to the central side and Secure Guest Access?
The anchor controller is installed in the DMZ and the H-REAP APs are installed in branch offices which are connected via VPN. Guest WLAn is configured as Web authentication.
I have read in the design guide that this is not possible. See this:
"Note The IPSec and L2TP Layer 3 security policies are unavailable for WLANs configured with a mobility anchor"
Does anybody have a design running like this?