We are planning on installing a WLC 4402 and about a half dozen 1131 AP on our network and over time about 6 more APs will be installed. The WLC and APs will be connected to a new HP switch which supports VLANs but not layer 3 switching/routing. Our network is simple and consists of a private IP class C network. In preparation for deploying the hardware I've been reading some tech docs and the Cisco 440X Series Wireless LAN Controllers Deployment Guide, which has been very helpful.
The guide talks about multiple VLANs and IP addresses from another network assigned to the VLANs, Management interface and the DHCP server on another IP network. Our goal is simple and to use the APs for wireless throughout our building on our class C network and use the WLC for centralized management.
I would like to know if all the VLANs and IP addresses as shown in the guide is necessary for what we need to accomplish?
In my opinion...no, they are not that necessary, depending on the scope of your plans. VLANs can do a lot in terms of security, but if your network is properly segmented and protected, you won't need them.
What you do need to plan out, and do so very carefully, is the security of that network. Wireless is a HUGE hole in your network perimeter unless you properly configure it. WPA2 should be a requirement at the bare minimum.
If you'd like more info and feedback, feel free to post more details about your plans, and we should be able to help some more.
My opinoin is that since this is a new install to do it right. Have the 4402 on the management vlan (create one if you don't have one already)and you can place your ap's on the same subnet also to make it simple. Create another vlan for the wireless users, because you will have issues if you have wireless users on a wired subnet. So you will have to have 3 subnets, one for management, one for wired and one for wireless.
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...