Cisco Support Community
Community Member

Two SSIDs; different VLANs; second VLAN can't talk to Internet

I've got an ASA 5505 firewall with internal interface on port 1 and a WAP connected to port 5 with the address The WAP has two SSIDs configured; one is on VLAN 1 and the other on VLAN 14. The firewall has port 5 configured as a trunk for VLAN 1,14 and the interface was configured a VLAN 14.

If I connect to the WAP using the SSID on VLAN 1 I get an address of 192.168.x.x from our internal DHCP server and have full connectivity to the internal and external networks. If I connect to the SSID on VLAN 14 I get an address of 10.10.1.x from the firewall DHCP server but am unable to connect to anything.

When connecting to the SSID on VLAN 14 I want to be able to access the external interface but not anything internally. I have configured a firewall access rule to allow to outside and deny to but this hasn't worked.

Any ideas?

CreatePlease to create content