• Advertisement

WLC+Anchor+Guest NAC

Configuring Wireless Cisco Networks and Wireless Controllers.

Re:WLC+Anchor+Guest NAC

Postby Guest » Mon Apr 23, 2007 3:36 am


So I really can't answer 1 and 3, and 2 actually brings up concern....

How do you plan to anchor to load-balanced WLCs? I'm pretty sure you anchor to one controller, but maybe I just haven't read much about Load-balancing. Clear to enlighten me?

furthermore, When configuring anchor wlans, I've always had to make the configuration Identical. Which included defining the DHCP server on the wlan that is trusted. As far as I know, you can only define 1 DHCP server, so I'm not really sure how you would even make two dhcp servers work (unless you don't have to define a dhcp server on the trusted WLC)...

But assuming you could make both dhcp servers work with the wlc, then you probably will need to split the scopes else you have no way to control address conflicts if you are really using two dmz controllers.

I guess I need to read-up a little on what you are calling "load balancing mode"...

Guest
 

Advertisement

Re:WLC+Anchor+Guest NAC

Postby Guest » Mon Apr 23, 2007 5:02 am


1. I think you should have physical port1 and mgmt interface for management purpose (tagged or untagged) and port2 and dynamic interface (I think of them as a VLAN interface on switch) for guest user.

2. As you said use two scope or external DHCP server for this scenario. "Load balancing" is possible.

3. Sorry I don't have any deployment with two NGS... but you can run two ngs in VMware server and test this (you can obtain 30 day free licens from Cisco site). Have you look here:

http://www.cisco.com/en/US/docs/security/nac/guestserver/configuration_guide/11/g_replication.html

Cheers

Gregory

Guest
 

Re: WLC+Anchor+Guest NAC

Postby ali » Tue Oct 25, 2011 8:54 am

HI,
design
Guest-->AP-->WLC(internal)--EOIP-->Anchor WLC -----Authentication--> NAC Guest Server

i have a problem in web-redirection, i configured the web authentication in Anchor WLC forwarding towards Nac guest Server using this url: https://x.x.x.x/sites/sitename/login.html.

from PC i am getting the IP from DHCP server which is configured on Anchor controller but not getting the web authentication page. using url : http://1.1.1.1

do i have to configure web authentication in WLC internal and also need to give same url for web authenticaion ?
second, in NAC guest in site directory i couldn't find the login.html file .
ali
Hello I'm new here
 
Posts: 1
Joined: Tue Oct 25, 2011 8:31 am

Previous


  • Advertisement


Similar topics

NAC Guest Server replication
Forum: Cisco Security
Author: Anonymous
Replies: 2

Guest network Anchor problem
Forum: Cisco Wireless
Author: Anonymous
Replies: 6

Clients on Guest WLAN Losing Layer 3 Connectivity
Forum: Cisco Wireless
Author: Anonymous
Replies: 28

can't get secure wlan to work with new guest wlan
Forum: Cisco Security
Author: Anonymous
Replies: 6

No Web Access for Guest Users
Forum: Cisco Wireless
Author: Anonymous
Replies: 6


Return to Cisco Wireless

Who is online

Users browsing this forum: No registered users and 2 guests