Solved

VLANs, Cisco Switch, and Ruckus Wireless AP

Posted on 2016-11-07
2
97 Views
Last Modified: 2016-12-06
I am looking to create a wireless guest network on my Ruckus Wireless AP for my work which has it's own VLAN that can't access any of the work environment VLANs.

Current setup:

Multiple VLANs within work environment.
VLANs of interest here are 4 and 6.
Both are setup within DHCP on server.
Both are setup within Cisco switch.
Cisco switch port 44 is port my wireless AP is plugged into.
Port 44 is currently on VLAN 4.

So, how can I properly add VLAN 6 to port 44 or is that not possible?
If I add this, would it make all traffic on VLAN 4 visible? If so, this is not desirable and I would need a different solution for setting up a guest network that can't access our private VLANS.

Thanks in advance for your help.
0
Comment
Question by:Andrew Derse
2 Comments
 
LVL 6

Accepted Solution

by:
Niten Kumar earned 500 total points
ID: 41878240
Wireless AP will need to be plugged into an access port and an access port can have only one vlan tagged to it.  If you want to pass two or more vlans through a port then it has to be configured as a trunk port.
0
 
LVL 42

Expert Comment

by:kevinhsieh
ID: 41914982
Change the port configuration on the switch from access to trunk. For my ruckus gear, I set the native vlan on the switch port so the AP itself gets on the correct vlan.

The guest SSID would be assigned vlan 6 in the controller. Vlan 6 would need an ACL on it to prevent guests from accessing the internal network. The Ruckus might be able to do it as well, but I am more familiar with doing it at the switch/router level.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

26 Experts available now in Live!

Get 1:1 Help Now