Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
2215
Views
0
Helpful
7
Replies

guest internet local breakout

Go to solution
ahmad.syed
Level 1
Level 1

‎03-02-2021 02:47 AM - edited ‎07-05-2021 01:18 PM

Hi Team,

We are discussing to deploy guest internet locally at site rather than using Anchor controller present in DC using internet link at DC.

 

 

Can you please help with steps , how we can achieve

 

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions
7 Replies 7

Go to solution
Sandeep Choudhary
VIP Alumni
VIP Alumni

‎03-02-2021 03:45 AM

In that case you have to use flex connect Central authentication and local switching.

 

https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/81680-hreap-modes.html

https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wireless-lan-wlan/81680-hreap-modes.html

 

Regards

Dont forget to arte helpful posts

0 Helpful

Go to solution
ahmad.syed
Level 1
Level 1
In response to Sandeep Choudhary

‎03-15-2021 04:55 AM

With having foreign controller only , can we get Guest portal services from ISE. My question is , we want to have guest network locally with flexconnect design . But wanted that guest user should get access through ISE with guest portal .

 

Can we achieved? If yes how ?

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to ahmad.syed

‎03-15-2021 08:41 AM

Just search for “Cisco FlexConnect ISE CWA” and you will find information on how to configure what you want. If you have the 9800’s, then just add that into the above search to get configuration examples.

https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/213920-central-web-authentication-cwa-on-cata.html
-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
ahmad.syed
Level 1
Level 1
In response to Scott Fella

‎03-15-2021 11:02 PM - edited ‎03-15-2021 11:12 PM

Hello @Scott Fella ,

Thanks for response. We have 5520 WLC . Can we achieve this in 5520 as we want both corporate and Guest SSID to be served by same AP in flexconnect.

 

 

 

0 Helpful

Go to solution
Puru
Level 1
Level 1
In response to ahmad.syed

‎02-24-2023 01:00 AM

Hi Ahmad,

We have similar requirement, When you able to achieve this? If yes, can please advise how? Did you have to install additional Anchor controller locally and tunneled with Foreign controller over WAN Link?

Regards,

Puru

 

 

0 Helpful

Go to solution
JPavonM
VIP
VIP

‎02-24-2023 01:43 AM

That design with localy forwarded clients (not anchored) is same for both C9800 and AireOS WLCs using Flexconnect and you can have a mix of Corporates and Guests in different SSIDs been forwarded to different VLANs.

The routing decition to use a central Internet circuit to forward traffic would be accomplished using a IPSEC or GRE tunnel between the remote site and DC (using routers or FWs) or by using VRFs.

0 Helpful

Go to solution
Puru
Level 1
Level 1
In response to JPavonM

‎02-24-2023 01:59 AM

Thank you

Appreciate your Response. I was looking for anchored solution.

Regards,

Puru

 

 

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card
Top