Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Guest network access lists

Hi all

AM installing a guest network for a large hotel, 200 wired points and a 30 access points. This network is physically separate from the hotel network, however there is a firewall that connects to the internet that does nating.Since this is a guest network and guys from inside network (security level 100) can access outside interface (level 0), is it necessary to configure any access lists for filtering any traffic from outside not to access the inside network? My thinking is that the network is secure due to the security levels mechanism and the fact that we have only private IPs on inside network and only guests on the network.

Kindly advice me whether my thinking is correct? If not, what kind of traffic do i have to block from outside?

regards

1 REPLY
Silver

Re: Guest network access lists

I would at least allow some icmp traffic into the network. See:

http://lists.sans.org/pipermail/unisog/2003-June/021996.html

Other than that, your conclusions are correct.

HTH pls rate!

223
Views
0
Helpful
1
Replies
CreatePlease to create content