I have a 4402 behind our firewall acting as the anchor for our guest wireless and wired WLANs, the mobility tunnels work via holes through the firewall to port 1 on the WLC and then the traffic goes back out of port 1 to the firewall to get to the internet, no problems there.
I am now trying to get a third guest ssid working, but this time taking the Internet side of the traffic out of a second firewall which is connected to port 2 on the Anchor WLC. I can see the test client hitting the new firewall but the system seems to fail when the client tries to browse as the redirection to the web authentication page doesn't happen. If I point the ssid out of the WLC's port 1 it works straight away.
I really don;t know where to start looking to fault find, can anyone help?
Re: Guest Access - using 2nd 4402 port not working
I worked it out - turns out it was the external firewall had a reference to the wrong interface in the static translation (was a colleague that set that bit up, honest!) rather than anything to do with the WLC.
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...
I have created a Powershell script to automatically add a Wireless Guest
User on Cisco WLCs. (tested on 2500 Series) The script should be
completely self explanatory. Prerequisites: Powershell SNMP Module
(Install-Module -Name SNMP) SNMP Write Access to y...