I am trying to determine if it is possible to advertise 2 separate SSIDs from a single Aironet LAP 1010 device. It is controlled using a WiSM module in the core Cisco site Catalyst 6500 environments which are in the system domain.
One of these SSIDs is configured to talk to a system domain using various security authentication 802.1x etc. I would like to know if it is possible to configure a separate SSID which might be like DMZ with a totally separate set of IP address ranges and which is totally segregated from the system domain.
This second network might then connect into an external connection providing internet access?
i am sorry this is a little vague, but i do not have the detailed system configuration and design
thanks - i appreciate any expertise that you can provide in this matter - even if is only to say that the 1010 cannot advertise 2 SSIDs
the 1010 can absolutely do that, and even more than 2 SSIDs.
You can simply configure on your Wism a second SSID and it will be serviced by your 1010s.
This second SSID you can assign it to a new interface on your Wism. So the wism can have interfaces in any subnet.
What you seem to mention is also another feature. If you have a second controller in a DMZ, then you can tunnel the traffic of the clients of one SSID from one WLC to the other WLC in the DMZ, simulating the fact that the clients of that SSID are directly in the DMZ. This is called mobility groups and guest anchor.
Hope it helps.
If this answers your question please mark the question as "answered" and rate it, so other users can easily find it.
thanks for your prompt reply - i have a further question - it would be necessary to keep the traffic from the two SSIDs entirely separate - are there any technical measures which could be applied to prevent traffic 'jumping' from one SSID to another - i.e. the segregation i was referring to.
and i refer to technical measures in the 1010 and the WiSM
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...