[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

How to limit bandwidth for PUBLIC wireless network with Cisco WLAN Controller and APs

Posted on 2013-11-14
7
Medium Priority
?
3,243 Views
Last Modified: 2013-11-16
We have a Cisco 4400 WLAN controller and several 3500 series APs.   I need some advice on how best to limit the bandwidth on a PUBLIC network but not limit for PRODUCTION.  All APs will support both networks. We should be able to safely allocate up to 20Meg for PUBLIC.   What is the best way to limit to 20Meg for the PUBLIC SSID?  Also, any insight on other configurations to enhance PUBLIC for performance, such as using 'Multicast Direct Feature, is appreciated!
0
Comment
Question by:davis
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 47

Accepted Solution

by:
Craig Beck earned 2000 total points
ID: 39651004
If you're running v7.0.116.0 or newer code on the WLC you can use Per-User Bandwidth Contracts.  That will let you give each user a specific amount of bandwidth, per SSID, although you'll need to ensure that other SSIDs don't use the same QoS profile.

Also, this is downstream only, so uploads won't be affected by this.

If you want to limit the SSID to 20Mbps total for all users collectively I'd do that at the upstream router.
0
 
LVL 1

Author Comment

by:davis
ID: 39653214
We are interested in limiting bandwidth usage only for guests connecting to a 'PUBLIC' WLAN, hosted on APs which also publish a 'PRIVATE/PRODUCTION' WLAN.  So, limiting at upstream router won't work. We also have many more wired clients at the sites.  However, some type of QOS on the 'PUBLIC' WLAN should work.  Sounds like per-user-bandwidth contract would help.  

For our needs, which would be a better solution -  application of 'Platinum, Gold, Silver, and Bronze QoS profiles', as stated in the article below, or using per-user-bandwidth contracts?  Thanks for your insight!

Configuring Quality of Service
0
 
LVL 47

Expert Comment

by:Craig Beck
ID: 39653222
Can you not limit bandwidth for a specific interface or subnet on the upstream router?

You would apply one of the Platinum, Gold, Silver or Bronze profiles to the Public WLAN, then simply adjust the variables in the Per User settings within the QoS profile.  I'd probably apply the Bronze profile as that's is usually applied to 'all other' traffic.
0
Are You Ready for GDPR?

With the GDPR deadline set for May 25, 2018, many organizations are ill-prepared due to uncertainty about the criteria for compliance. According to a recent WatchGuard survey, a staggering 37% of respondents don't even know if their organization needs to comply with GDPR. Do you?

 
LVL 1

Author Comment

by:davis
ID: 39653265
in thinking about it, throttling the bandwidth for both WLANs (Public & Private) at the upstream router/interface would probably work fine.  My thought is that users of the 'private/production' will (almost) never reach the bandwidth demands of a public user. They simply run Citrix connections to their production apps. both the WLANs are on the same VLAN, where we could rate-limit or apply QOS.
0
 
LVL 47

Expert Comment

by:Craig Beck
ID: 39653276
You'd have to do that at the WLAN then if they're both on the same VLAN, by applying the Bronze QoS profile to the Guest WLAN.

It's a bit off-topic, but I would implement a different VLAN for guest traffic.
0
 
LVL 1

Author Comment

by:davis
ID: 39653293
I would agree, best practice would recommend a separate VLAN for guest traffic.  As well, not to get too far of topic but interested to know - where would you monitor utilization to see if there is even a potential issue?
0
 
LVL 47

Expert Comment

by:Craig Beck
ID: 39653320
You'd need to do some debugging to see where clients are trying to get to.  That would generally require Wireshark for example.

You could create ACLs on the WLC and log them to see what people are up to, but that can put unnecessary overhead on the WLC, particularly if it's under heavy load to begin with.
0

Featured Post

Tech or Treat!

Submit an article about your scariest tech experience—and the solution—and you’ll be automatically entered to win one of 4 fantastic tech gadgets.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of the companies I’ve worked with have embraced cloud solutions due to their desire to “get out of the datacenter business.” The ability to achieve better security and availability, and the speed with which they are able to deploy, is far grea…
During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
Suggested Courses

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question