Cisco :: 5500 - Make Guest Wi-Fi Only Available During Business Hours
Jan 22, 2012
I have a Cisco 5500 series WLC and though we don't have a guest network up yet... we want to. One of the ideas was to make this guest wifi only active during normal buisness hours, so we don't get people in parking lots late at night trying to do funny stuff.
I can EASILY do this with my home wireless (DD-WRT loaded Linksys router) but I can't find this on the 5500 WLC. Is there a particular place I can look?
We have a secured WPA2 Enterprise network now, but looking to turn up a "guest" with web-auth. We would provide a positive message password to guests that we would change every 3 months or so. We already made a cool landing page and tested it briefly
View 4 Replies
ADVERTISEMENT
Oct 17, 2012
Any problems with the guest network on the ea4500 with the cloud firmware? I am losing guest clients after about 24 hours and the re-authentication fails. you enter the guest password and nothing happens until you reboot the router.
View 2 Replies
View Related
Apr 1, 2012
I'm new to an ASA 5510 running 8.4(3) and am trying to figure out something regarding time ranges in ASDM. I simply want to allow a single port during business hours only (I'm not concerned about open sessions needing to be closed). So as an example I add a rule something like:
(RULE1 on the internal interface) SRC=INTERNAL DEST=ANY SERVICE=RDP ACTION=PERMIT with a time range set for weekdays 8:00-16:59. I did a test after 5pm on a weekday and was still allowed to do RDP to a server (from INTERNAL), and after using the packet trace tool saw it was still passing through due to a rule a couple lines down (rule 4) that allowed a port range that happened to include port 3389. So my question is if I specify an "allowed" time range and someone attempts access outside that time range, why doesn't it drop it right there? I guess I'm assuming that anything outside the "allowed" time range would be dropped but that doesn't seem to be the case. I'm also assuming the rule base is processed top to bottom.
View 2 Replies
View Related
Jun 19, 2012
For my company, I am running a Cisco 5508 WLC with a 4400 WLC as a guest anchor in our DMZ. There is a guest SSID and several business SSID's for internal equipment. Guest traffic should be tunneled out to the 4400 controller where [the client] gets its IP address and is sent out to the internet. No internal corporate access is possible. However, when I do a packet capture from my wired PC, I'm seeing traffic generated by different iPhones. It appears to be mostly IPv6 mDNS or ICMPv6 traffic. How would this traffic make it onto the corporate wired network, when it should be staying on the guest network? None of the iPhones have been setup on the business SSIDs, so I know it isn't legit traffic. Is there a setting in the WLC that will block this? Will an ACL work?
These are examples of some of the traffic that wireshark is capturing:
349 7.794875 fe80::e77:1aff:fe3c:f81 ff02::fb MDNS 253 Standard query response PTR, cache flush Tonyas-iPhone-2.local PTR, cache flush Tonyas-iPhone-2.local
356 7.802667 fe80::e77:1aff:fe3c:f81 ff02::fb MDNS 151 Standard query ANY Tonyas-iPhone-2.local, "QU" question ANY Tonyas-iPhone-2.local, "QU" question
361 7.806964 fe80::e77:1aff:fe3c:f81 ff02::fb MDNS 151 Standard query ANY Tonyas-iPhone-2.local, "QM" question ANY Tonyas-iPhone-2.local, "QM" question
Both controllers are running software version 6.0.196.0. I also have a WCS server running version 7.0.220.
View 3 Replies
View Related
Aug 8, 2012
In the ISE documentation is states that under a Guest_Activity report you must have guest access logging enabled on the NAD in the ISE network. My question is where do I enable guest access logging in the WLC that is our NAD?
View 1 Replies
View Related
Mar 21, 2013
We recently implement WLC 5500 Series, I found out guest user once period of that user expired it will not appear at lobbyadmin page where you can see list of users.
Is there any way to see expired guest users and also IP address which assign to guest user?
View 2 Replies
View Related
Oct 30, 2012
with our WLC 5500 controller, once the clients get the DHCP address the page is not redirecting them to the guest portal.What is the best way to check as to why the redirection is failing.
View 8 Replies
View Related
Dec 31, 2011
Having just installed the E1000 why have I got a public network address '####' which is security type WPA2 -PSK and also public network address '#### - Guest' which is security type - unsecured.Anyone can log onto either wireless network connection but only with the correct password.How do I remove the '####' address and also how do I make the '#### - Guest' address a secure one.
View 1 Replies
View Related
Apr 19, 2012
I got the task of setting up a Guest wireless network for one of our remote campuses. We already have some APs that are connecting to our WLC.
The Enviroment:WLC Cisco 5500 is at our Corporate office. Connects to our Core Switch then to our Router Router connects to our remote campuses over mpls.
We currently already have APs at this campus that are connecting back to our WLC.
We have a DSL line at the remote campus that we want this Guest wireless routed to.
I have already created the guest network on the WLC and a guest VLAN on the Core switch.
My main question is how to configure the two routers for this and have this go out the DSL modem?
View 9 Replies
View Related
Aug 18, 2011
Is it possible to allow certain websites to bypass the web authentication pages, so that they do not need to authenticate to get to our own website, but do have to if they wish to go anywhere else?Looking at a 5508 model at the moment
View 4 Replies
View Related
Jan 24, 2013
I want to prevent guest from doing peer - peer communication on my Guest (5508) controllers. Is this a feature on the WLC or only by applying an ACL on the router interface?
View 2 Replies
View Related
May 19, 2012
I currently am using a DVR with cameras wired into a Netgear N150 router and obviously viewed on computer screen (UK)I attach the settings which I think are important.Now got a BT Business Hub 2701HGV-C which I can't work out how to configure to make this DVR work with it
View 1 Replies
View Related
Dec 29, 2011
I'm currently using LMS 3.2 to monitor my network. We've recently purchsed a few of the Cisco Small Business Switches, the SF 300-24 model to be exact. They're considered 'managed switches' (tho thier CLI is terrible) and I would like to monitor them in CWLMS. My problem is that once I add it to CS, it doesn't resolve to anything, just sits there as a blue box with a question mark. I'm assuming this means that these devices are not (currently) supported by LMS 3.2 - do you know if that will change, or how I can go about managing this device with LMS 3.2?
View 2 Replies
View Related
Nov 16, 2012
I'm involved in setting up a new office for a business that's just starting out. I have some computer experience but not a whole lot in networking and security. We just have 3 people that will be working in the office and we need a way to store/backup/share files on the network as well as a way to access them remotely if need be. Our internet service is going to be providing us with a static IP. I was thinking that we could use an NAS with RAID 1 attached to the router, which is in turn connected to the cable modem, but I'm not sure if this is secure. Do we need some type of hardware firewall in between the cable modem and the router to protect us from the outside?
View 2 Replies
View Related
Sep 30, 2012
I need to connect over 30(clients) computers on a server(host),what do i need? and what are the step to step connections.
View 1 Replies
View Related
Feb 4, 2013
I'm installing WIFI for my personal business, and want to make sure my server and modem are unaccessable by WIFI users. I have the modem set to 192.168.1.1 and router(wifi) to 10.0.0.1. The problem is i can still type in 192.168.1.10 (server's ip address) or 192.168.1.1 while on WIFI and i get can still get to both.
View 2 Replies
View Related
Jun 19, 2011
6504 Sup720 ----Dot1q Trunk ----6504 Sup270VPN SPA VLAN 20,30 VPN SPA VLAN 20,30Normal VLAN 10,40 Normal VLAN 10,40,Every 18-24 hours the 6500's- the 6500 go to 100 % CPU - the work around is to reboot one of the switches. Then they will run 18-24 hours.The fix was to only trunk VLAN 10,40 (Networks that needed to see each other) between the switches. If the vlans that the VPN SPA was trunked you would Every 18-24 hours the 6500's- the 6500 go to 100 % CPU.Simple design GRE IPSEC tunnels that work fine and the latest SXI code. It appears that if you trunk the VPN SPA trunks and they are the same VLAN that it going into some kind bridging loop. No errors. Just unresponsive.
View 2 Replies
View Related
May 28, 2013
We've got a central office (actually quite small) where several IPSec connections connect to. Two of these connections are Cisco 881 routers. One of them works fine, the other craps out after 24 hours (coincidentally also the IKE key lifetime). When I mean "craps out", it means the VPN worked fine from the get go, until 24 hours later. Only a reload will bring back the VPN tunnel. I've verified my PFS and DPD configurations are solid, because these kind of symptoms would most likely occur when these configurations aren't in order.
The two 881 configurations are quite similar. The only differences between the two are some details in the PPPoE configurations and (quite obviously) the IP address space for the two sites. Both operate on the premise of a point to point connection (no multipoint stuff going on here).
[code]....
View 7 Replies
View Related
Aug 29, 2011
On the CLI, we have ACS showing:
clock timezone Etc/GMT-6
!
ntp server 10.10.10.1
A show clock shows the correct local time. When in the GUI of ACS the clock reads
Tue Aug 30, 2011 21:13:58 GMT+06:00
View 1 Replies
View Related
Nov 30, 2011
The Cisco VPN client is disconnected after 4 hours of inactivity. Is there a setting on the ASA that would timeout after 4 hours? I want to disable this setting. I am running IOS 8.2(4).
View 3 Replies
View Related
Sep 30, 2011
I just took a position and never had to work with networks that much before. Our lan is very slow and trying to figure out why. We have verizon business class 3 t1 lines dedicated 4 M. When I do a speed test we get about 4.05 average and 4.23 down. We have 11 computers on the network connected to a Dell power connect 2716. We have Two network printers and that is it. We are having problems with it being very slow when connecting to a share on the server or using RDP.
View 4 Replies
View Related
Aug 22, 2011
I do alot with computers themselves, but, my networking skills are rusty and lacking....so, I'm hoping this is a simple one!I have a customer with a medium sized network (about 20 desktop computers) that are setup with a Domain.The business is a car dealership and he wants to be able to offer wireless to the folks that are waiting (but not give them access to the network, printers, server).I've never setup a wireless network where access to only the internet and not the network itself is the goal, so I'm not sure how to do it properly.Is there an easy way to explain how I should be hooking it up? Or will the network information, type of router, etc. be necessary?
View 2 Replies
View Related
Jul 31, 2012
I have a 'Comcast Business Gateway' a friend gave me and I would like to use it instead of the regular gateway. The business gateway has extra Ethernet ports on the back where as the regular gateway just has one for your router. I plugged in the business gateway and I couldn't access the network. I used 10.1.10.1 which I thought was comcast's default but to no avail. I am not a tech so I am now stuck.The whole reason I am trying to do this is because the wireless routor is in the house, with a ethernet wire running to the shop. This distance is about 60 feet. I have the computer pluged into the wire but I can't get the printer or the other computer to connect to the wireless. I would like to connect the Business Gateway to the house wireless and then run the hard wire to the shop and connect another wireless router to the wire and run the shop on its own wireless. I tried one of the wireless extenders and it does not have enough juice.
View 1 Replies
View Related
Jun 3, 2011
I work for a small business of five computers. We have a wireless network for internet traffic, and a wired network for file sharing. The wireless network works great for using the internet, but we are having trouble with the wired network.The issue is being able to communicate with all of the computers on the wired network. The ability to speak with all of the computers on the network is hit or miss. Generally, computer A can speak with computer B, C, and D, but D can only speak with A.
View 4 Replies
View Related
Feb 13, 2012
He currently has 1 server, and 11 workstations, he also has a network switch that we will be replacing.We have picked out a Dell server, running Windows Server 2008 R2 that will be used as the main file server, as well as the domain controller. Where I seem to be confused is on setting up the networking component, particularly how the machines will get IP addresses. As mentioned, I will be purchasing a new Ethernet switch, in order to get the fastest LAN speed possible; I have selected the Dell PowerConnect 2816, which is a 10/100/1000Mbs switch. My question is, will I be letting the switch handle the IP's/DHCP or would I be better off, setting up the server for DHCP? If so, do I also setup the server as the DNS server? From what I am reading online using the server as the DHCP/DNS server gives us more management capabilities and is more "secure". As a test, I loaded Windows Server 2008 R2 on a home machine and played around with this. I got a bit lost on the DHCP and DNS setup and it appears that one needs a Static IP from your ISP in order to setup your serve as the DHCP/DNS server for the domain. Is this correct? I haven't been to his office yet to check out all the existing equipment, is it safe to assume that his ISP provides a router or whatever is needed to feed the switch?
View 3 Replies
View Related
Jul 12, 2011
I have recently purchased a Cisco 887w router for my small business to replace our Netgear DGN-3500. We have made the change to allow greater access to our internal IT infrastructure from remote locations. For the most part I have been able to work through the configuration but I have reached a point now where I can go no further. The WLAN, LAN and WAN all seem to be working well together as a basic setup but I cannot get any port forwarding/NAT to work.
So far I have attempted to configure two NATd services, both with the same result. I am trying to direct port 80 through to our web server, and port 444 to our VPN server. Both seem to undergo translation ok (if i am reading ip nat trans output correctly) but then the packets disappear. The VPN client annouces that the connection timed out, and the browser goes nowhere. Also, if i use an online port check it tells me that 80 and 444 are closed, with no packets returned.
I have spent a few days with no progress. The output of the log (attached txt file) might be meaningfull to somone with a stronger background with Cisco routers... I have also included the config and some other output that might be useful.
View 4 Replies
View Related
Jun 12, 2012
I'm trying to configure the newly install Cisco Small Business router SRP527W. This router is provide by one of Malaysia ISP
Problem I found is that, when a user (me) login to the router via web access, than I request my colleague (B), to test the feature I set to the router and try to login to the router via web access at his laptop.
Suprise, suprise, user B redirect to the basic setup page with Admin privilege without enter username and password. By upgrade latest firmware still unable to solve it.
View 1 Replies
View Related
Mar 5, 2012
I have 4 SF300 switches I need to cascade together but the user guides do not seem to cover the physical aspects of cascading the switches.Here is what I was planning.
SW1 (port GB2) --> SW2 (port GB1)
SW2 (port GB2) --> SW3 (port GB1)
SW3 (port GB2) --> SW4 (port GB1)
SW3 (port GB2) --> SW1 (port GB1) - loopback for cascade cable redundancy.
Does this sound about right?after initial use the setup will be changed to place switches 3 and 4 in a factory at which time we will then use the GBIC connectors and fibre to connect SW2 to SW3 and then SW4 back to SW1.
View 2 Replies
View Related
Jun 26, 2012
The "Cisco Small Business 300 Series Managed Switches Administration Guide" and the data sheet indicate that this switch can do accounting requests with a Radius server. On the SF300 switch interface/CLI, there is only the authentication port, the accounting port can not be set (and nothing is sent by the switch to the default port). I suppose that the SF300-08 does not handle accounting. Maybe I have to change for another model.
View 4 Replies
View Related
Nov 19, 2012
Windows 7
Router Zyxel p330w
Vonage phone serviced
D3.0 Ubee modem.
i have 5 computers connected 3 are connected via Wifi and 2 are wired plus whatever device i have is on wifi veryday for the last 2 weeks my internet goes out every few hours. Yesterday i had internet all day until this morning when it disconnected again, in order to have my internet up again i have to reboot my router by disconnecting the adaptor.Heres the weird thing all of my computers internet goes down but the vonage service still works and iif i connect my PC directly to the Ubee modem my internet stays on without issue problem is i need vonage for my phone plus all my other computer in the house ive tried to renew and release my ip in my main rig which i guess worked a bit since when this problem started the internet would go off every 10-20 min after i did the renew release the internet stays on for atleast 3 - 6 hours?
Windows IP Configuration
Ethernet adapter Local Area Connection 2:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
[code]....
View 7 Replies
View Related
Nov 22, 2011
I have a Motorola SB5101 Cable modem, it connects to a Linksys BEFSR81 8-port router. A WRT54G and a vonage voip device also plug into the BEFSR81 lan ports. I am running Win 7 (32bit). When it works, everything works great, but eventually my pc goes link dead, there will be a little yellow apostrophe over the network icon down in the toolbar (next to the clock). I dont have to reboot anything except the BEFSR81 and then everything comes back up and runs fine for a few more hours.
View 6 Replies
View Related
Apr 10, 2011
a few weeks ago I started hosting a server for a game from my computer. It's been working fine and I've been having no problems except for one.After a few hours of hosting my server, my internet connection will immediately drop down to 1.0mbps, and I lose all connection to everything until I reboot my computer.I'm using a wireless internet adapter right now and having this problem, but when I used a wired connection a similar thing would happen where my entire connection would "lock up" in a way. I couldn't connect to anything until I rebooted my computer
View 4 Replies
View Related
Mar 16, 2013
I have a problem with the RV042G V01 router manufactured 12/2012.
After router settings the router works fine without any problems. After 10 or 12 hours I got the message that the side could not be opened, while no DNS. I checked inside the router and all settings looks ok DNS adresses from ISP are present on both WAN settings . When I use inside the router the funktion for DNS it will work but from any client is does not work. When I restart the router alls works fine. After few hours ( it's differnt 1,2 or 6 ) I have the same problem. No entry in the log's !
View 7 Replies
View Related
