Guest Network help

I have a cisco network that has a number of different Vlans.  Once of those vlans is for my guest wireless network.  It is a simple setup where if someone connects to the guest ssid, they are put on a different vlan that just goes out to a Linksys router connected to it's own dedicated
internet connection with full access.

Problem is, my employees are now connecting to guest with the business machines and using it to gain access to sites that are restricted on the business vlan.

so, I want to do something like they do at hotels where if you connect to the guest ssid, a website splash screen will come up prompting you for a code.  The code would be issued by IT with an expiration date.  They enter in the code, agree to terms and conditions and then have access as long as the code is valid.

Can anyone suggest such a hardware based device that can handle this?  Nothing too expensive or complicated.  My budget is no more than $1000 if possible.

Thanks

LVL 5
TheMetalicOneAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Craig BeckConnect With a Mentor Commented:
Buy a Zyxel N4100 - its a hotspot router.  Just plug it in, configure a couple of policies and away you go.
0
 
KGNicklCommented:
Try to google "captive wireless portal".

Depending on the number of guest you have you could just have no wireless password and setup the router so only authorized MAC addresses can access anything after connected.

When the guest arrives you add the computer(s) MAC address to the authorized MAC address list in the router. You record on a spreadsheet the Guest Name, MAC address, date activated,  date it should be removed, and contact information for the employee responsible for the guest. You could even set up a calendar reminder to delete a specific MAC address or just do it once a week or something.
0
 
Dangle79Commented:
we have a similar problem, only difference being that my users have to go through a proxy server for internet, however they connect to our public SSID and suddenly none of their applications work because they're on the wrong VLAN.

best solution i've come up with is to load the manufacturer's wireless utility and lock down what SSIDs the clients can connect to. easier if you've got Vista clients or better but can't do it via AD group policy for XP machines.
0
NEW Internet Security Report Now Available!

WatchGuard’s Threat Lab is a group of dedicated threat researchers committed to helping you stay ahead of the bad guys by providing in-depth analysis of the top security threats to your network.  Check out this quarters report on the threats that shook the industry in Q4 2017.

 
djpazzaCommented:
Take a look at squid proxy it's free. I'm sure you can lock out people's access based on ntlm authentication.

http://www.squid-cache.org/Intro/
0
 
kdearingCommented:
I've used IP3 Networks equipment in the past, but I'm not sure the company is still around.
0
 
TheMetalicOneAuthor Commented:
Perfect, thank you.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.