I want to setup a guest wireless network at a remote site(RS). RS is a node part of an MPLS network running BGP and receiving a default route for all internet bound traffic towards the datacenter (DC). I understand that I could create multiple SSIDs and VLANs at RS and segregate Corporate and Guest traffic. But what is unclear to me is how to isolate the Guest Network (GN) from accessing Corporate Network (CN) at the DC. Since the GN is on a separate VLAN it is unable to reach any hosts on the CN on the local LAN, but how can I limit it to only head towrads the internet router for outside access at the DC?
I thought about that but I don't think MPLS (ISP) provider will allow me to mess around with multiple VRFs. The other thing i thought about was to just get a dedicated internet connection (DSL, Comcast) at the RS and route Guest on it. This would be simpler but adds to the operational costs.
Well you can convert the AP's to lightweight and get like a 2504. You can put the AP in FlexConnect and centrally switch the guest back to the DC. The 2504 is a low end WLC that can support up to 75 access points.
Sent from Cisco Technical Support iPhone App
*****Help out other by using the rating system and marking answered questions as "Answered"*****
We are moving! Please use WLCCA Forum for updates and discussions
[toc:faq] Wireless LAN Controller (WLC) Config Analyzer Download Click
here to Download To request access, send an e-mail to
email@example.com. Please include your Cisco.com userna...
[toc:faq] IntroductionHere is the step by step process that we have to
take care of while converting LWAPP to IOS and then vice versa..LWAPP to
IOSThe hardware used = 1141 AP (make sure we are using the right
[toc:faq] Introduction AnyConnect Secure Mobility Client 3.0: Network
Access Manager & Profile Editor on Windows Summary Use the Cisco
AnyConnect Network Access Manager Profile Editor to build custom
profiles for the AnyConnect Secure Mobility Client. App...