All list, First, a little background. We are a Cisco shop with a few WiSM controllers and a WCS. APs are segmented into AP groups, each group assigns a different dynamic interface to the same SSID. Each dynamic interface is assigned to a separate VLAN and /24 network.
Now we are looking to deploy a guest WLAN on our network. I have a 3750G(25AP) that I am going to put in the DMZ and use as the anchor controller. I want a single SSID for guest access across all foreign controllers. 1. On the anchor controller I am limited to one guest WLAN and one dynamic interface. To support the 2048 client limit on the controller, can I safely make the guest VLAN a /21 network? Normally I would not want to make a broadcast domain this large, but the WLCs do not forward broadcast so am I correct to assume that this will function properly. Since there is no grouping functionality, is there a better way to support 2000+ guests on one anchor and one SSID? 2. On the foreign controllers, is it advisable to create a non-routed interface (2.2.2.2) and assign it to the guest WLAN? In the event the anchor controller is unreachable, I do not want guests to have access to the management interface. 3. I plan on assigning the lowest QOS priority to the guest WLAN and was thinking of also using the 'DHCP required' option. I have heard that the DHCP required option can cause problems with non Windows clients. What other measures should I look at to corral the guest traffic and keep it from impacting my other SSIDs? Feel free to contact me off list if you have some specifics you are willing to share. Andrew Davis Network Specialist - Wireless LANs Riverside Community College ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
