Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
958
Views
0
Helpful
5
Replies

Prevent MAC addresses from DHCP

kmkrause2
Level 1
Level 1

‎06-18-2019 11:00 AM - edited ‎07-05-2021 10:34 AM

I have a WLC 5508 with several WLANs, one of which is a guest network. I want to be able to prevent company computers, identified by MAC address from pulling DHCP from the guest network WLAN (DHCP server on the WLC is enabled and working fine). Some of our users mistake the guest network SSID for the corporate network SSID. They get an IP from the guest network and can access the internet but not corporate assets. They get irritated and I get a call...

 

I want to be able to prevent those computers from obtaining an IP at all from the guest network DHCP. How can I do that on the WLC 5508?

 

Thanks

Labels:
0 Helpful
5 Replies 5

Flavio Miranda
VIP
VIP

‎06-18-2019 02:00 PM

Hi

   I´d say it is possible but looks like you have a quite simple environment, right?  

  There are wIPS solutions that allows specific devices to connect on specific SSIDs only and this control is done on the air interface. 

 

 

-If I helped you somehow, please, rate it as useful.-

 

 

 

0 Helpful

kmkrause2
Level 1
Level 1
In response to Flavio Miranda

‎06-19-2019 06:14 AM

Thanks for the response. Actually, it's a fairly complex environment. I just need to know if I can apply a "reverse" MAC filter on our guest network. We have a MAC filter on the corporate wlan which lists the MAC addresses of all wireless devices owned by the company and therefore, allowed to access the corporate wlan. I need to know if I can apply the same list of MAC addresses to the guest wlan, but instead of allowing access, I want to prevent access by these devices.

 

Thanks

0 Helpful

patoberli
VIP Alumni
VIP Alumni
In response to kmkrause2

‎06-19-2019 07:54 AM

Newer WLC versions will not anymore offer DHCP server on the WLC itself. For that reason I suggest you get another DHCP server solution (there are free ones running under Linux, for example). With those DHCP servers you can then create block lists typically.
0 Helpful

kmkrause2
Level 1
Level 1
In response to patoberli

‎06-19-2019 08:28 AM

Thanks, when you talk about newer versions, are you referring to software updates or entirely new physical devices? Ours was purchased in 2014.

0 Helpful

patoberli
VIP Alumni
VIP Alumni
In response to kmkrause2

‎06-19-2019 11:39 PM

I'm not entirely sure about the whole platform. I do know that the WLC 5520 doesn't anymore offer a DHCP Server feature though.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card