• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 414
  • Last Modified:

Async through Guest WiFi

Hi, All.
I have some problem with my company user smartphones connecting to Exchange through our company WiFi.
WiFi LAN is in the different VLAN.
We have a WiFi access point.
SSID called Guest. The WiFi IP range is 192.168.227.x.
We have a RADIUS server connected to this AP.
We have a different VLAN and we use switch IP Helpder for DHCP.
DHCP running on DC and have two scopes: 192.168.227.x and 192.168.228.x
My LAN IP range is 192.168.228.x.
The problem is that my smartphone users have internet access but they cant connect with their smartphones via Guest WiFi to Exchange.
What I need to do to able connect from smartphone via Guest WiFi only to Exchange (via Async protocol), because its a Guest Wifi.
If you have any other ways to fix it - welcome,
Thank you.
0
levkiper
Asked:
levkiper
  • 2
1 Solution
 
Simon Butler (Sembee)ConsultantCommented:
This isn't really an Exchange issue, but a networking issue.
You are going to have to allow the Guest wifi network access to the production network.
Furthermore the URL used for ActiveSync will have to resolve on the guest wireless to the internal IP address of Exchange.
ActiveSync is just https, so that is all you will have to allow through from the VLAN.

Simon.
0
 
levkiperAuthor Commented:
Hi, Simon.
Thank you for your fast reply,
but how can I enable only ONE https link through VLAN? (for example from VLAN 2 to VLAN 5)
thank you.
0
 
TazDevil1674Commented:
I presume you dont want ASync to work from the Internet?

You need to create a rule on the Switch/Firewall to allow any traffic from 192.168.227.x to the IP of the Exchange box - you could also tie down to specific port - 443.

DNS Would need to be able to resolve the Exchange Server name to an IP address via the Guest WiFi.
0
 
Simon Butler (Sembee)ConsultantCommented:
No idea. That is a VLAN configuration issue. You need to speak to whoever supports the VLAN technology to work that out. It will not be just HTTPS, you will have to allow routing for that IP address, then use the firewall to limit the port traffic.

Simon.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now