Re: WRVS4400N: Configuring multiple SSIDs for Public and Priva
Yes it can be done, mate.
Configure the router with multiple vlans (router interface is configured as a 802.1q trunk interface with multiple sub-interfaces) and apply an ACL (that governs internet access and DHCP access if necessary to the internal network only) on the guest vlan sub-interface.
I am assuming you have a WINDOWS DC which you are setting up as a DHCP server, correct? If so, then configure multiple DHCP scope for the public and private vlans. Configure the private VLAN dhcp scope for an internal DNS server you would want to use for the users and configure the public VLAN DHCP scope for an external DNS server for the guests (you can use 184.108.40.206/220.127.116.11). This way, both private and public users have different DNS servers resolving FQDNs.
Here is where it gets interesting:
Configure the AP for multiple VLANS which correspond to the vlans you configured on the router. VLAN 1 (native) has to be configured on both the AP and Router.Then assign VLAN 1 on AP an ip address which will serve as the management ip address for telnet/ssh/http access to AP.
Then configure the multiple SSIDs and map them to the VLANS you created on the AP. Make sure these SSIDs are configured as "guest SSIDS" otherwise the SSIDS will not be broadcasted. Afterwards you can now configure your encryption ciphers and authentication modes per SSID.
Note that by configuring multiple vlans and ssids, you have effectively turned the fast ethernet port on the ap into a 802.1q trunkport carrying multiple vlans.
So you would want to use a network cable to connect either via a switchport (which is also a 802.1q trunkport carrying all those configured vlans) to the router OR Connect directly to the router using a xover cable.
Special thanks to Alex McDonald for sharing his favorite tip:My favorite
tip is the ‘write default’ command on autonomous wireless access points,
it simplifies manual conversion of a WAP with a static ip address to a
LAP with a DHCP address.This saved a l...
With the latest release of firmware for the WAP 561, 551, 371, 351 a new
feature was added that would allow customers to upgrade the firmware for
their clustered access points from the main access point.The basic steps
to accomplish this is:1) Download th...