?
Solved

Trying to create vlan for public wireless using cisco 1130AP and Dell 6248

Posted on 2008-10-22
3
Medium Priority
?
754 Views
Last Modified: 2012-05-05
My current configuration consists of Cisco ASA 5510 firewall. 192.168.1.254
layer 3 switch Dell Powerconnect 6248 which I am using as the main router 192.168.1.1
Cisco 1130AP 192.168.1.30

The configuration for networking is 192.168.1.1 (Dell Layer3) is the gateway so everything outbound is routed to 192.168.1.254 (Cisco ASA).  In order to route through the Dell I placed the management interface on VLAN2 with an address of 192.168.50.2.  The Cisco 1130AP is setup with no VLAN and 1 SSID.  I know that I can create seperate SSIDs on seperate VLANs with the AP.

I am trying to create a VLAN (i.e. VLAN 5) that will be public wireless on the Cisco AP that is outside world only access and blocked from other VLANs.  With that being said I want to keep the private wireless intact on the same AP but on a different VLAN (i.e. VLAN 1)

By default Dell has VLAN 1, and now with management interface VLAN 2, how do I create VLAN 5 and make the Public traffic route directly out?

Thanks in advance,
0
Comment
Question by:blazndog
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 6

Assisted Solution

by:ajeab
ajeab earned 200 total points
ID: 22815743
who is your dhcp server?? ASA??

on ASA
create 2 scopes for DHCP
make sure the new vlan is in allow in-->out list

on DELL
create vlan 5
on port that connect to AP set it to trunk or similar

on AP
add vlan 5 to AP and assign VLAN to it.
0
 

Accepted Solution

by:
blazndog earned 0 total points
ID: 22895662
I finally got this going after talking to dell support.
For some reason Dell engineers on the 6200 series switches seem to think users will use "General" on port settings to equal "Trunk"
So yes DHCP server for public vlan 5 is ASA for private msDHCP server.  Created vlan 5 on layer 3 6248 assigned to port and directly connected 6248 to available interface on ASA.
On ASA created policy to --> out and created dhcp pool.
on 6248 designated another port as "general" and "untagged" on vlan1(native) and "tagged" on vlan 5 then connected that to AP.
AP created vlan 5 and seperate SSID to traffic public vlan 5 straight out the ASA.
If you use Dell 3400 series you use "Trunk" or "General"
0
 
LVL 1

Expert Comment

by:tacsatfreq
ID: 33628543
Blazendog

Can you send me a possible snippet of your config? I have basically the same network layout and am interested to see how you made your system work.

Thanks
0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Using in-flight Wi-Fi when you travel? Business travelers beware! In-flight Wi-Fi networks could rip the door right off your digital privacy portal. That’s no joke either, as it might also provide a convenient entrance for bad threat actors.
David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

800 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question