12-17-2010 06:52 AM - edited 02-21-2020 04:11 AM
Hello folks,
We have the following nac scenario:
This is working fine with wired clients.
We recently deployed a WLC 4402, initially without nac integration. There is 2 ssids, each one associated with a vlan and this is working fine.
Now we want to integrate the WLC with nac, so we read some documentation and we are confused. We know the need of different vlan ids as quarantine vlan to each dynamic interface.
Is possible to point the quarantine vlan to 136 at the WLC configuration to some ssid? Because of the vlan mapping (136 <=> 140) at CAS, we don't know if it will work correctly as expected. If it is not possible, we have to use a different quarantine vlan to wireless, for exemple 138. We will create the mapping 138 <=> 128 and what else must be configured?
Thanks in advance.
Daniel Frassetto
12-20-2010 12:48 AM
Hi,
The quaranine VLAN is basically the authentoication VLAN if you want to compare with the wired deployment.
You just need to create it on the WLC and allow that vlan on the trunk link of the WLC.
Here you have a config guide for that:
http://www.cisco.com/en/US/docs/security/nac/appliance/configuration_guide/48/cam/m_woob.html.
HTH,
Tiago
--
If this helps you and/or answers your question please mark the question as "answered" and/or rate it, so other users can easily find it.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide