Solved

Trying to create vlan for public wireless using cisco 1130AP and Dell 6248

Posted on 2008-10-22
3
753 Views
Last Modified: 2012-05-05
My current configuration consists of Cisco ASA 5510 firewall. 192.168.1.254
layer 3 switch Dell Powerconnect 6248 which I am using as the main router 192.168.1.1
Cisco 1130AP 192.168.1.30

The configuration for networking is 192.168.1.1 (Dell Layer3) is the gateway so everything outbound is routed to 192.168.1.254 (Cisco ASA).  In order to route through the Dell I placed the management interface on VLAN2 with an address of 192.168.50.2.  The Cisco 1130AP is setup with no VLAN and 1 SSID.  I know that I can create seperate SSIDs on seperate VLANs with the AP.

I am trying to create a VLAN (i.e. VLAN 5) that will be public wireless on the Cisco AP that is outside world only access and blocked from other VLANs.  With that being said I want to keep the private wireless intact on the same AP but on a different VLAN (i.e. VLAN 1)

By default Dell has VLAN 1, and now with management interface VLAN 2, how do I create VLAN 5 and make the Public traffic route directly out?

Thanks in advance,
0
Comment
Question by:blazndog
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 6

Assisted Solution

by:ajeab
ajeab earned 50 total points
ID: 22815743
who is your dhcp server?? ASA??

on ASA
create 2 scopes for DHCP
make sure the new vlan is in allow in-->out list

on DELL
create vlan 5
on port that connect to AP set it to trunk or similar

on AP
add vlan 5 to AP and assign VLAN to it.
0
 

Accepted Solution

by:
blazndog earned 0 total points
ID: 22895662
I finally got this going after talking to dell support.
For some reason Dell engineers on the 6200 series switches seem to think users will use "General" on port settings to equal "Trunk"
So yes DHCP server for public vlan 5 is ASA for private msDHCP server.  Created vlan 5 on layer 3 6248 assigned to port and directly connected 6248 to available interface on ASA.
On ASA created policy to --> out and created dhcp pool.
on 6248 designated another port as "general" and "untagged" on vlan1(native) and "tagged" on vlan 5 then connected that to AP.
AP created vlan 5 and seperate SSID to traffic public vlan 5 straight out the ASA.
If you use Dell 3400 series you use "Trunk" or "General"
0
 
LVL 1

Expert Comment

by:tacsatfreq
ID: 33628543
Blazendog

Can you send me a possible snippet of your config? I have basically the same network layout and am interested to see how you made your system work.

Thanks
0

Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Multi-source agreements are important because they set standards that all manufacturers should follow to ensure that devices are compatible with multiple vendors. The multi-source agreement (MSA) is an agreement that establishes how multiple vendors…
This subject  of securing wireless devices conjures up visions of your PC or mobile phone connecting to the Internet through some hotspot at Starbucks. But it is so much more than that. Let’s look at the facts: devices#sthash.eoFY7dic.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question