https://community.cisco.com/t5/wireless/guest-wireless-security/m-p/2143145#M143796 <HTML><HEAD></HEAD><BODY><P>Please follow this doc for guess access</P><P></P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/solutions/Enterprise/Mobility/emob41dg/ch10GuAc.pdf">http://www.cisco.com/en/US/docs/solutions/Enterprise/Mobility/emob41dg/ch10GuAc.pdf</A></P></BODY></HTML> Tue, 23 Apr 2013 02:29:02 GMT Saurav Lodh 2013-04-23T02:29:02Z https://community.cisco.com/t5/wireless/guest-wireless-security/m-p/2143142#M143793 <P>My client concerns about the guest WLAN security, and the client would like the guest WLAN only access to the Internet and not its other vlans, specailly the server vlans. Could any one kindly provide the steps/methods to follow? BTW, the client uses cisco WLC 5508 and AP 3602i. Many thanks and kind regards,&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </P> Sun, 04 Jul 2021 06:55:14 GMT https://community.cisco.com/t5/wireless/guest-wireless-security/m-p/2143142#M143793 zli 2021-07-04T06:55:14Z https://community.cisco.com/t5/wireless/guest-wireless-security/m-p/2143143#M143794 <HTML><HEAD></HEAD><BODY><P>You have to take care of that from the core side. You need to allow routing for that VLAN to outside only.</P><P>The other option (which requires two WLCs) is to set up an anchor controller in the DMZ and tunnel guest traffic between your internal WLC and the anchor WLC in DMZ.</P><P><SPAN>read this: </SPAN><A class="jive-link-external-small" href="http://www.cisco.com/en/US/products/ps6366/products_qanda_item09186a00809ba482.shtml" rel="nofollow">Wireless Guest Access FAQ</A></P><P></P><P>Regards,</P><P></P><P>Amjad</P><P></P><P><SPAN style="color: blue;">Rating useful replies is more useful than saying <SPAN style="color: green;"> "<SPAN style="text-decoration: underline;">Thank you</SPAN>"</SPAN></SPAN></P></BODY></HTML> Tue, 16 Apr 2013 05:43:36 GMT https://community.cisco.com/t5/wireless/guest-wireless-security/m-p/2143143#M143794 Amjad Abdullah 2013-04-16T05:43:36Z https://community.cisco.com/t5/wireless/guest-wireless-security/m-p/2143144#M143795 <HTML><HEAD></HEAD><BODY><P>HI Zhi,</P><P></P><P>1. Police that vlan traffic either on the inside switch or on the ASA.</P><P><A _jive_internal="true" href="https://community.cisco.com/docs/DOC-1230" rel="nofollow">https://supportforums.cisco.com/docs/DOC-1230</A></P><P></P><P>2. Use websense for content scanning/filtering or use the CSC module on the ASA for http scanning/URL filtering.</P><P><A href="http://www.cisco.com/en/US/docs/security/csc/csc6.1.1569.0/administration/guide/csc4.html" rel="nofollow">http://www.cisco.com/en/US/docs/security/csc/csc6.1.1569.0/administration/guide/csc4.html</A></P><P></P><P>Regards</P></BODY></HTML> Tue, 16 Apr 2013 06:07:26 GMT https://community.cisco.com/t5/wireless/guest-wireless-security/m-p/2143144#M143795 Sandeep Choudhary 2013-04-16T06:07:26Z https://community.cisco.com/t5/wireless/guest-wireless-security/m-p/2143145#M143796 <HTML><HEAD></HEAD><BODY><P>Please follow this doc for guess access</P><P></P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/solutions/Enterprise/Mobility/emob41dg/ch10GuAc.pdf">http://www.cisco.com/en/US/docs/solutions/Enterprise/Mobility/emob41dg/ch10GuAc.pdf</A></P></BODY></HTML> Tue, 23 Apr 2013 02:29:02 GMT https://community.cisco.com/t5/wireless/guest-wireless-security/m-p/2143145#M143796 Saurav Lodh 2013-04-23T02:29:02Z