03-01-2023 03:30 AM
Hello,
We have on our network 2 different wlans. One is called "work" and the other is called "guest". Both have different interfaces connected to them. I can login to "work" and have a different ip address as that of "guest", so far so good. What i want to do now is that when im on the "work" ssid i cannot connect to "guest" and vica-versa.
Whenever i do a ping now from "work" to "guest" it goes through and i want to block this.
Can anyone tell me how to do this? (We have a cisco 2500 series wireless controller)
Regards,
Ramon
03-01-2023 04:13 AM
- Normally this kind of separation will be kind of a default result because standard practice is to terminate the SSIDs/WLANs on separate VLANS/subnets , if then routing is correct such as guest(vlan) only allowing Internet access you will (already) have what you want,
M.
03-01-2023 08:45 AM
You say you get different IP addresses - do you mean in a different subnet?
If so, then I assume you already have the WLANs connected to different VLANs.
But if you have (for example) a router terminating both those VLANs and routing between them then obviously you have connectivity.
You can use ACLs and/or firewall to keep those VLANs separate. It really depends how you have your network setup.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide