Hi John,
Happy new year, all working now - I need to add Active route to ensure that guest traffic is forward to FW I/F 172.31.22.4 1
Active routes ? Interface Destination Mask Gateway Metric Delete LAN port 10.22.1.0 255.255.255.0 * 0 Guests 172.31.22.0 255.255.255.0 * 0 Internet port 172.31.2.0 255.255.255.0 * 0 LAN port 10.22.100.0 255.255.254.0 * 0 Guests 172.31.22.0 255.255.255.0 172.31.22.4 1
I have one questions – implementation as I have it – will route all guess traffic back to controller and leave controller via vlan 22 and to the FW. This is good, however – when expanding AP for remote offices – all guest traffic will be routed back to controller and back. In one office we have more than 60 users – although I don’t think traffic wouldn’t be large but if this traffic does get large - how can I change this so that guest traffic passes to out from AP to say new vlan 222 -> FW -> Internet – i.e. Decentralised – this option is offered when using automated workflow for employee vsc but not for guest.
Any advice appreciated. See below for final working network diagram.
Kind Regards,
Michael