Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
869
Views
0
Helpful
3
Replies

H-REAP

Go to solution
skelley5000
Level 1
Level 1

‎07-23-2012 02:17 PM - edited ‎07-03-2021 10:26 PM

IS H-REAP thet best way to secure traffic from one your WLC to a remote AP? example, I have a place with a T1 connection and only 2 AP's...The traffic has to be encrypted, from the AP to the Controller, not just from the client to the controller.

hope this makes sense

Thanks

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎07-23-2012 02:26 PM

Data traffic is not encrypted unless you enable dtls. H-REAP/FlexConnect places traffic locally on your LAN so traffic would be the same as your wired.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

View solution in original post

0 Helpful

Go to solution
Saravanan Lakshmanan
Cisco Employee
Cisco Employee

‎07-23-2012 02:33 PM

capwap control traffic is always encrypted while capwap data traffic is not, so you're fine there.

locally switched traffic are off capwap and doesn't hit WLC.

if you need centrally switched data traffic encrypted then you need data DTLS license(its free) with DTLS option enabled on those APs.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎07-23-2012 02:26 PM

Data traffic is not encrypted unless you enable dtls. H-REAP/FlexConnect places traffic locally on your LAN so traffic would be the same as your wired.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
Saravanan Lakshmanan
Cisco Employee
Cisco Employee

‎07-23-2012 02:33 PM

capwap control traffic is always encrypted while capwap data traffic is not, so you're fine there.

locally switched traffic are off capwap and doesn't hit WLC.

if you need centrally switched data traffic encrypted then you need data DTLS license(its free) with DTLS option enabled on those APs.

0 Helpful

Go to solution
skelley5000
Level 1
Level 1
In response to Saravanan Lakshmanan

‎07-24-2012 05:54 AM

Thanks, HREAP will be doing central switching, so I need to turn on the dtls

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card