I’m in the process of replacing our standalone Cisco Aironet 1130 APs with Aironet 1600 Series light weight APs and a 2504 WLC. Our network setup consists of an Cisco ASA-5510 firewall and a handful of Catalyst 2960 and 2960G switches all on a single VLAN.
I setup 2 WLANs on the 2504. The first is for our private network and uses WPA/WPA2 with TKIP, 802.1X Auth key management and uses Windows Server 2012 Network Policy Server RADIUS configuration—this WLAN works fine. I’m having issues setting up a guest WLAN. I don’t have any layer 3 switches on the network and we’re presently using a single VLAN. I want to allow visitors access to the internet using the 2504s web authentication. I have googled for the last couple of days and other than Cisco’s painfully overcomplicated (to me at least) “guides” have found little that’s been of use. We’re a non-profit and don’t have the budget to purchase additional gear so I need to work with what I have.
Is there any way to use the ASA to create a separate VLAN? I’m a bit out of my depth here and while I can generally muddle my way through these types of config issues this one has me stumped. Anyone have any suggestions on how best to proceed?
Thanks in advance -- Steve