FlexConnect (H-REAP) and Auto-Anchor functionality - WLC 5508
We have an H-REAP (FlexConnect) requirement for branch offices and also there is the requirement for guest access at the same time. Is it true that those features (FlexConnect and Auto-Anchor) should work together. Please refer to the following Network Diagram:-
There is a FlexConnect AP at one branch office. The traffic from internal users (SSID "Internal") should be switches locally at the LAP (Lightweight Access Point). At the same time the guest SSID (SSID "Guest") should be tunneled back via CAPWAP to the controller to which the LAP is associated ("Central Controller"). The guest traffic should not emerge (switched) at the "Central Controller", instead it should be tunneled to an anchor controller in a DMZ via an "Ethernet Over IP tunnel" (Auto-Anchor functionality).
Does this work (FlexConnect in conjunction with Auto-Anchor functionality)?
If this works, where's the web portal for guest authentication hosted (if using the internal web auth on WLC)? On the "central controller" or the Anchor controller? (I guess at the Anchor Controller in the DMZ, right?)
Is it possible to leave the guest SSID "open" with no webauth and still using the Anchor Controller? This would be needed if I have an external web authentication service, which would be hosted by a provider.
The above statement is in fact correct.
Your guest traffic will be sent back to the flexconnect wlc or wlc and then you would anchor that SSID to the dmz SSID. The anchor wlc in the dmz will host the webauth, passthrough splash page. This would be the same if you just wanted open auth. Anchoring works either way. Make sure these ports are open between the anchor and remote wireless LAN controller: UDP 16666 or IP 97
The anchor controller can be licensed with the smallest AP count, right? So a 5508 with 12 AP support should do the job. There are no APs associated at the anchor controller
Having an issue where some end devices are unable to view an SSID, and suspect it's due to their compatibility with the SSID being broadcast out of the 802.11ax radio. These devices can only operate at 2.4GHz (group policy/compatibility), so disablin...
Hi All, I have a slow memory leak noticable on WLC, and have scheduled a WLC reboot in 8 hours time to fix it temporarily. The OS is N-1 and there are no bug fixes released by Cisco to address this memory leak as yet for this OS - 22.214.171.124&nbs...
hi all i have a c1111-4plteea router it has a really poor LTE upload performance the router i have used till now has an average up 10-25Mbps down 5-45Mbps (depending on weather day time and so on) the c1111 hasup 1-5Mbps down 30-...
During a recent data center outage I lost admin access to the 5508 either via http or via SSH. But my Solar WInds is still monitoring everything via SNMP - and it has a read write string there as well. Might it be possible to use the SNMP write to give th...