Lee, I think Cisco had a feature, (forgive me, I'm working from memory so I might mangle the names) called mobility anchor. You could make a SSID live on a single controller, and all of the other controllers would tunnel clients to that controller. I believe the feature was designed so that the "anchor" controller could be placed outside the firewall, and drop it's traffic off out there. But you don't have to go that far.
*Edit* Just looked it up. They call it Auto-Anchor now: http://www.cisco.com/en/US/docs/wireless/controller/4.0/configuration/guide/c40mobil.html#wp1098994 Mike On Tue, Jan 6, 2009 at 12:26 PM, Lee H Badman <[email protected]> wrote: > Hi Hector- > > > > How (or where) do you enforce the http/https restriction? Any demand to > allow VPN protocols out? I'm guessing that the admin website for account > creation is on another box- can you describe the integration? And I'm > guessing this is on a guest SSID? Finally- one thing that perplexes me a > bit- we have 24 controllers- how would you gracefully coordinate the portal > across all of them? Isn't it really one portal per controller and there's no > way to force users from other APs on other controllers through a common > portal? > > > > Thanks- > > > > Lee > > > > Lee H. Badman > > Wireless/Network Engineer > > Information Technology and Services > > Syracuse University > > 315 443-3003 > ------------------------------ > > *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto: > [email protected]] *On Behalf Of *Hector J Rios > *Sent:* Tuesday, January 06, 2009 12:19 PM > *To:* [email protected] > *Subject:* Re: [WIRELESS-LAN] Cisco LWAPP Guest Portal Satisfaction > > > > Anything specific you are looking to do? We use the web access portal > strictly for guest access, we limit it to http and https only, and we > require user authentication. Sponsored guest accounts can be created by any > staff or faculty through a website (we don't use the lobby ambassador > because it was just not flexible enough for our needs). Accounts are only > valid for up to 7 days. > > > > The only issue I've had with it was when I tried to add HTML code into the > message field. Evidently there was a bug that caused the controller to > crash. I'm sure it's been resolved in newer releases. Other than that it > has worked fine. > > > > Hector Rios > > Louisiana State University > > > > > > *From:* The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto: > [email protected]] *On Behalf Of *Lee H Badman > *Sent:* Tuesday, January 06, 2009 10:42 AM > *To:* [email protected] > *Subject:* [WIRELESS-LAN] Cisco LWAPP Guest Portal Satisfaction > > > > Looking for feedback- on or off list- from anyone who is using the built-in > web access portal for guest use on a production scale. > > > > Thanks- > > > > Lee > > > > Lee H. Badman > > Wireless/Network Engineer > > Information Technology and Services > > Syracuse University > > 315 443-3003 > > > > ********** Participation and subscription information for this EDUCAUSE > Constituent Group discussion list can be found at > http://www.educause.edu/groups/. > ********** Participation and subscription information for this EDUCAUSE > Constituent Group discussion list can be found at > http://www.educause.edu/groups/. > > ********** Participation and subscription information for this EDUCAUSE > Constituent Group discussion list can be found at > http://www.educause.edu/groups/. > > ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
