We have a 4402 plugged into a switch via a trunk. This is the DMZ switch. There is a fw interface plugged in with .1 address. We can get to the controller from our internal network just fine after openin the appropriate fw ports.
We want to put a 831 in between the controller and the DSL modem for security and monitoring. the default gateway of the WLC is the fw interface so how do I get traffic to go to internet?
So your 4402 has a trunk connection to the dmz switch and you open up ports on the FW so you can manage the WLC. Now the internet is going to go out a DSL connection and not out the FW, so you want to put a 831 for internet that will do NAT out to the DSL modem?
So on the wlc, you have setup your management and ap-manager on a subnet whichyou can get through from your FW. So you create a dynamic interface on the wlc that will point to the 831 interface as your default gateway..... that should work. So the trunk port would allow the management vlan and the L2 vlan to the 831. That sould work.