Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

WLC and DMZ Zone ???

Hi all.

I have the problem with WLC when I put it in DMZ Zone like that:

When I put WLC in DMZ Zone.

In WLC, I create dynamic interface vlan3 that has default-gateway is Netscreen. And one SSID map with vlan3 for WirelessUsers.

DHCP Srv work perfectly. AP can understand WLC and WirelessUsers can receive DHCP ip. WLC and LWAP creat LightWeight tunnel.

In Netscreen Firewall, policy is permit any any from Trust Zone ? DMZ and DMZ-Trust. I permit any-any in this FW.

When WirelessUsers connect to SSID, it can receive ip-address, it ing to WLC ?s interfave vlan3, but can not ping to Netsreen ?s default-gateway.

But if I put WLC in Trust Zone, every thing work perfect.

I don?t know this problem.

Plz, help me with this.


CreatePlease to create content