Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Stop advertising hosts on Wifi network

Any there a way to stop advertising Cisco appliances on a WiFi network. For example when I logon to our in-band Guest Wifi using nmap I can see the Cisco Controller interfaces and the NAC server trusted and untrusted interfaces as well as the Web Server for authentication. I would rather not have these hosts advertised on our Wifi Guest network and only for the client to see DHCP Default Gateway. Is this possible or is this more of a topolgy design issue?


Re: Stop advertising hosts on Wifi network

For the WLC at least you could define an ACL that blocks the client subnets and apply it as a CPU ACL.  For WCS and NAC, you would need ACL at L3, but I would definitely test in a lab environment to make sure all necessary ports are open.

HTH, Steve ------------------------------------------------------------------------------------------------ Please remember to rate useful posts, and mark questions as answered
CreatePlease login to create content