Private VLAN in Wireless

recep.sefer · ‎03-15-2010

I want no two wireless client on the same access-point can acces

s each other.

Is it possible for standalone AP? or Controller Based?

THANKS

Leo Laohoo · ‎03-15-2010

interface dot11radio0
bridge-group port-protected
!
interface dot11radio1
bridge-group port-protected

recep.sefer · ‎03-15-2010

Thank you very much,

If it is in controller-based AP? How?

Scott Fella · ‎03-16-2010

Under WLAN | SSID | Advanced tab, check the P2P Blocking Action and that should do it for you.

-Scott
*** Please rate helpful posts ***

MU_B · ‎08-28-2020

Thank You Scott this was a great helpful feature to have in our Guest Network to void each host communicating to each other.

P2P Blocking Action

Peer-to-peer blocking settings that you can choose.

• Disabled—(Default) Disables peer-to-peer blocking and bridges traffic locally within the Cisco WLC whenever possible.

Note Traffic is never bridged across VLANs in the Cisco WLC.

• Drop—Causes the Cisco WLC to discard the packets.

• Forward-UpStream—Causes the packets to be forwarded on the upstream VLAN. The device above the Cisco WLC decides what action to take regarding the packets.

For FlexConnect local switching WLANs, the settings are as follows:

• Disabled—(Default) Disables peer-to-peer blocking and bridges traffic locally within the AP whenever possible.

• Drop—Causes the AP to discard the packets.

• Forward-UpStream—Causes the AP to discard the packets.