Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Creating a VLAn for open wireless connectivity

Posted on 2011-03-17
3
544 Views
Last Modified: 2013-12-27
I work in a law firm and we currently have the wireless locked down. I would like to create a open connection using the same wireless access points that are already in place. I am using Netgear ProSafe WG102 access points and a Cisco ASA 5505 router. Is the easiest and best thing to do in this situation to vreate a VLAN and let the open security connection use the new VLAN?

I have a Cisco guy that can configure the new VLAN on the router but after that I get kind of lost on how to go about setting everything up. I am very new to VLAN's but would appreciate any information you could provide. The WAP's do support VLANS and also have the option to Enable 802.1Q VLAN

Below is a screen shot of the WAP setup just to show you the options.

No. Profile Name SSID Security VLAN Status
1 NETGEAR COMPANYNAME WPA/WPA2 - PSK 1 Enable
2 NETGEAR1 NETGEAR - 1 None 2 Disable
3 NETGEAR2 NETGEAR - 2 None 3 Disable
4 NETGEAR3 NETGEAR - 3 None 4 Disable
5 NETGEAR4 NETGEAR - 4 None 5 Disable
6 NETGEAR5 NETGEAR - 5 None 6 Disable
7 NETGEAR6 NETGEAR - 6 None 7 Disable
8 NETGEAR7 NETGEAR - 7 None 8 Disable
0
Comment
Question by:jseadrew
  • 2
3 Comments
 
LVL 4

Expert Comment

by:Jerry Mills
ID: 35157851
I would create a VLAN on the ASA 5505 and connect the open connection to it.  You must create ACL's to control traffic to keep it off your office lan.  

I am assuming you only wish to let visitors have an internet access point.  I correct - consider connecting to the PUBLIC side directly with a wireless router if you have an available IP address.
0
 

Author Comment

by:jseadrew
ID: 35157891
Yes, only visitors would use the open connection.
So once the VLAN is setup in the Cisco you would suggest getting a seperate wireless router and configure it for open access? I do have an external address I coud use.
0
 
LVL 4

Accepted Solution

by:
Jerry Mills earned 500 total points
ID: 35157944
I would suggest not using the ASA 5505.  Put an inexpensive switch in front of the ASA 5505 - reconnect the 5505 and then connect your wireless router to the switch and use the public address - bypassing the ASA all together.    Total security and you don't need to mess with the ASA 5505.
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
eigrp - not allow a subnet from advertising 1 58
Home lab datacenter 9 100
Which ports are used when using implicit TLS? 8 29
nested esxi, NIC issues 1 32
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question