Devices blocked from accessing internet through Cisco Wirelss APs

Posted on 2016-10-05
Medium Priority
Last Modified: 2016-10-15
I just took over the IT Department here and things were quite the mess I'm still sorting it out.

Background: Several users were apparently taking up bandwidth on certain devices by streaming movies etc..  Previous Network Admin went in and blocked those devices from accessing the internet.  These devices are not blocked on the firewall.  Somehow what was done was done through the AP's.  These APs each have internal ip addresses I am unable to telnet or ssh into any of them.  I doubt that the previous network admin consoled into an AP to block these devices its specifically an Iphone and an IPad.  The Network Admin is no longer with the company nor is the person who previously used the device yet they are still blocked.

Current : I have already checked the firewall and there is no rule denying internet access to these devices which in my mind tells me it must be configured somewhere in the AP's.
Question by:Kim Williamson
  • 3
  • 2
LVL 47

Expert Comment

by:Craig Beck
ID: 41830270
Do you have a Cisco Wireless LAN Controller (WLC)?  It sounds like your APs are running lightweight code so It would have most likely been done at the WLC.

Author Comment

by:Kim Williamson
ID: 41830291
There is no documentation to support that we are using a WLC so the hunt begins!  They did not know that our AP's could transmit two SSID's so we literally have to separate AP's side by side in several locations one for our guestnet and one for our corpnet.  So that means two WLC?
LVL 47

Expert Comment

by:Craig Beck
ID: 41830317
No you can run multiple APs on one WLC and you can run multiple SSIDs on one WLC.

If you connect a console cable to one of the APs, what prompt do you get?

What part-code is on your APs (label on the underside starting AIR-)?

Accepted Solution

Kim Williamson earned 0 total points
ID: 41836739
So my predecessor consoled into every AP and blocked specific devices by mac on each AP.  I had to go into each one individually and unblock.  Problem resolved.  Thank you for your help.

Author Closing Comment

by:Kim Williamson
ID: 41844867
This resolved my issue.

Featured Post

We Need Your Input!

WatchGuard is currently running a beta program for our new macOS Host Sensor for our Threat Detection and Response service. We're looking for more macOS users to help provide insight and feedback to help us make the product even better. Please sign up for our beta program today!

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Tech spooks aren't just for those who are tech savvy, it also happens to those of us running a business. Check out the top tech spooks for business owners.
In this article I will be showing you how to subnet the easiest way possible for IPv4 (Internet Protocol version 4). This article does not cover IPv6. Keep in mind that subnetting requires lots of practice and time.
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

624 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question