Here's a bit of a quandary that I can use some help with. Our company wants to install a wireless access point in a pubic place and then publish the one word English "key" on a screen where the person must then enter it in to their laptop to obtain free access.
Guy goes in to a food court watches a TV for a minute, see a WAP key word like
"tomato" and enters it in to his laptop to get free access.
We need to be able to:
- Easily change the key on the WAP unit every day automatically.
- Regulate the amount of bandwidth avail to each user.
- Filter out inapproate content because it's a public space.
I hope I can answer you questions to your satisfaction:-
- Easily change the key on the WAP unit every day automatically = You might want to enable open authentication using WPA for the association (no PSK required) but the rest of the traffic is encrypted using the dynamic negotiated key, then the user fires up a web browser they are automatically redirected to the WEB Login page, where they can input a userID and the password (which is on your TV). The user can be created from a WCS (under the lobby uid) - and in the settings, the password can be auto generated in a given time period, and the new password emailed to a list of people.
- Regulate the amount of bandwidth avail to each user = you can do this by applying a QoS policy on the WLAN (assuming you are using a WLC and LWAPP)
Filter out inappropriate content because it's a public space = not thru the AP, but you could make the default gateway assigned to the client via DHCP a URL/Content filtering device, or configure a URL redirect.
Thanks for the help â¦..and that's part of the problem .... we don't really need the user to have a username since its a public space and ANYONE can use the WAP.
So there's no user to create and there will be no password to get in. People will obtain free public internet access via the TV that's showing the WAP key.
BTW - I have never used any Cisco products for wireless so I haven't looked at Wireless LAN Controllers yet. Also to use the lightweight access point protocols means having to have the users run the upgrade util and that obviously can't happen.
I just need to try to find a way that the wireless point is open and avail to people who add that "access code" to their laptops wireless NIC.
But then in the background also: - control content - easily change the WAP key daily - regulate bandwidth for each connection.
The cli to change the keys is very easy - scripting it....I'm not so sure you would really want to do that - but that is for you to decide.
The AP's will be in autonomous mode (without a WLC, with a WLC the AP's will use LWAPP and be managed from the WLC) which means if you have more than 1, they all need to be configured per device, not to bad if you only have a fewâ¦..but a large wireless infrastructure - then a WLC does come in very handy!
I personally like the AIR-LAP1131AG-A-K9 and AIR-LAP1242AG-A-K9 (which can handle an external Arial like AIR-ANT5959 - ceiling mounted, very nondescript)
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...