Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
464
Views
5
Helpful
2
Replies

NAC integration with WLC

yprasannas
Level 1
Level 1

‎05-20-2008 11:16 AM - edited ‎07-03-2021 03:54 PM

Any doc on implementing inband wireless with NAC?

Lets say 2 SSIDs. 1 staff that has 30 networks based on 30 locations and 1 guest network for all locations. The Controller is trunked to the switch. How do u force the traffic to go to CAS?

Thanks in advance!

Labels:
0 Helpful
2 Replies 2

d.donnelly
Level 1
Level 1

‎05-22-2008 11:04 PM

Hi, found this link, may be of some use:

http://www.cisco.com/en/US/docs/wireless/technology/clean_access/technical/reference/cleanAN.html

Can you let me know how it goes? Have to deploy a similar solution in a couple of weeks!

0 Helpful

Scott Fella
Hall of Fame
Hall of Fame
In response to d.donnelly

‎05-24-2008 07:57 PM

In-Band Virtual Gateway is the recommended configuration. What you have in the link is In-Band Real IP. You can use either one... with real ip you will need static routes. In IN-Band virtual gateway, the NAC will bridge the traffic from the untrusted to the trusted.

Basically the ssid is mapped to a vlan like 50 and that is passed onto a dot1q trunk to the switch. Vlan 50 is not routed and the only other port on vlan 50 is the untrusted port on the CAS. The CAS then bridges that to... lets say vlan 51 which is routed on the network.

Every time I have to deploy one of these, it still confuses me somewhat... So hope this doesn't confuse you.

-Scott
*** Please rate helpful posts ***
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card