• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 408
  • Last Modified:

Async through Guest WiFi

Hi, All.
I have some problem with my company user smartphones connecting to Exchange through our company WiFi.
WiFi LAN is in the different VLAN.
We have a WiFi access point.
SSID called Guest. The WiFi IP range is 192.168.227.x.
We have a RADIUS server connected to this AP.
We have a different VLAN and we use switch IP Helpder for DHCP.
DHCP running on DC and have two scopes: 192.168.227.x and 192.168.228.x
My LAN IP range is 192.168.228.x.
The problem is that my smartphone users have internet access but they cant connect with their smartphones via Guest WiFi to Exchange.
What I need to do to able connect from smartphone via Guest WiFi only to Exchange (via Async protocol), because its a Guest Wifi.
If you have any other ways to fix it - welcome,
Thank you.
0
levkiper
Asked:
levkiper
  • 2
1 Solution
 
Simon Butler (Sembee)ConsultantCommented:
This isn't really an Exchange issue, but a networking issue.
You are going to have to allow the Guest wifi network access to the production network.
Furthermore the URL used for ActiveSync will have to resolve on the guest wireless to the internal IP address of Exchange.
ActiveSync is just https, so that is all you will have to allow through from the VLAN.

Simon.
0
 
levkiperAuthor Commented:
Hi, Simon.
Thank you for your fast reply,
but how can I enable only ONE https link through VLAN? (for example from VLAN 2 to VLAN 5)
thank you.
0
 
TazDevil1674Commented:
I presume you dont want ASync to work from the Internet?

You need to create a rule on the Switch/Firewall to allow any traffic from 192.168.227.x to the IP of the Exchange box - you could also tie down to specific port - 443.

DNS Would need to be able to resolve the Exchange Server name to an IP address via the Guest WiFi.
0
 
Simon Butler (Sembee)ConsultantCommented:
No idea. That is a VLAN configuration issue. You need to speak to whoever supports the VLAN technology to work that out. It will not be just HTTPS, you will have to allow routing for that IP address, then use the firewall to limit the port traffic.

Simon.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now