Cisco 2100 Series Configuration Manual page 657
Wireless lan controller
Hide thumbs
Also See for 2100 Series:
- Configuration manual (50 pages) ,
- Quick start manual (12 pages) ,
- Configuration manual (406 pages)
Table of Contents
Advertisement
Chapter 13
Configuring Hybrid REAPWireless Device Access
Note
Note
Click Apply to commit your changes.
c.
Click Save Configuration to save your changes.
d.
Follow these steps if you also want to create a centrally switched WLAN that is used for guest access.
Step 3
In our example, this is the third WLAN (guest-central). You might want to tunnel guest traffic to the
controller so you can exercise your corporate data policies for unprotected guest traffic from a central
site.
Note
Follow the substeps in
a.
"guest-central."
When the WLANs > Edit page appears, modify the configuration parameters for this WLAN. In our
b.
employee WLAN example, you would need to choose None for both Layer 2 Security and Layer 3
Security on the Security > Layer 2 and Security > Layer 3 tabs and check the Web Policy check box
and make sure Authentication is selected on the Layer 3 tab.
Note
Note
Click Apply to commit your changes.
c.
Click Save Configuration to save your changes.
d.
If you want to customize the content and appearance of the login page that guest users will see the
e.
first time they access this WLAN, follow the instructions in
To add a local user to this WLAN, click Security > AAA > Local Net Users.
f.
When the Local Net Users page appears, click New. The Local Net Users > New page appears (see
g.
Figure
OL-17037-01
When you enable hybrid-REAP local switching, the Learn Client IP Address check box is
enabled by default. However, if the client is configured with Fortress Layer 2 encryption, the
controller cannot learn the client IP address, and the controller periodically drops the client.
Disable this option so that the controller maintains the client connection without waiting to
learn the client IP address. The ability to disable this option is supported only with
hybrid-REAP local switching; it is not supported with hybrid-REAP central switching.
For hybrid-REAP access points, the interface mapping at the controller for WLANs
configured for H-REAP Local Switching is inherited at the access point as the default VLAN
tagging. This can be easily changed per SSID, per hybrid-REAP access point.
Non-hybrid-REAP access points tunnel all traffic back to the controller, and VLAN tagging
is dictated by each WLAN's interface mapping.
Chapter 10
provides additional information on creating guest user accounts.
Step 1
If you are using an external web server, you must configure a preauthentication access
control list (ACL) on the WLAN for the server and then choose this ACL as the WLAN
preauthentication ACL on the Layer 3 tab. See
Make sure to enable this WLAN by checking the Status check box on the General tab.
13-4).
to create a new WLAN. In our example, this WLAN is named
Chapter 5
Cisco Wireless LAN Controller Configuration Guide
Configuring Hybrid REAP
for more information on ACLs.
Chapter
5.
13-9
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
