04-03-2014 05:10 AM - edited 07-05-2021 12:36 AM
I have a project to setup wireless internet for guests and employees and i am new to this i have the following questions
Hardware we Have
1) Do we need to setup two interfaces (one is for internal and another external(internet VLAN) on wireless controller to provide internet connectivity
2) If i want to restrict users to access only specific ports(80,443,25 etc) through wireless how do i do this?
Can some one help me understanding the proper solution for this
Thanks for your help
04-03-2014 12:42 PM
1. Yes create two interface and map it to two SSID's just for ease.
2. NO, its not possible with wlc
04-06-2014 08:09 PM
Hi,
2) If i want to restrict users to access only specific ports(80,443,25 etc) through wireless how do i do this?
You may take a look on controller Application Visibility and Control (AVC) to see if it can fulfill your requirement.
http://www.cisco.com/c/en/us/support/docs/wireless/5500-series-wireless-controllers/115756-avc-guide-00.html
Cheers,
KK
04-07-2014 09:33 AM
well you can have ACL for that network at the firewall (guest network) but a better solution would be ISE for guest access
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide