Welcome to Scribd!

Differentiate Public and Enterprise Wi-Fi Users

Uploaded by

0% found this document useful (0 votes)

204 views5 pages

This document describes a Packet Tracer lab that configures a campus network to provide differentiated wireless access. An access switch connects two access points to broadcast separate public and secured SSIDs, each mapped to a different VLAN. The secure SSID traffic routes directly to the datacenter, while the public SSID traffic passes through an ASA firewall for inspection before entering the campus network. The core switch, ASA firewall, and access switch are all configured to support this network architecture and wireless access differentiation.

Original Description:

Original Title

Lab 21 - Public & Enterprise Wlan Users Differentiation

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

204 views5 pages

Differentiate Public and Enterprise Wi-Fi Users

Uploaded by

Arocha Cesarin

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 5

Search inside document

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

Lab21Public&Enterprisewlanusers
differentiation
Rating4.00(1Vote)
LastUpdated:Monday,21December201509:21
Hits:799

Labdescription
TheaimofthisPacketTracer6.2labistoconfigureancampusnetworkallowingauthenticatedenterpriseusersto
accessenterpriseressourcesusingtheirmobiledeviceswhileallowingafilteredpublicwirelessaccessforunregistered
users.
TwoaccesspointsareconnectedtoanaccessswitchtopublishtwodiffrentSSID("default"and"Secured").The
basicaccesspointbroadcaststhepublicSSID.TheLinksysAPbroadcaststheprotectedSSIDasthisAPcanbe
configuredforWPAEnterprisesecurity.EachSSIDismappedtoasinglevlan:vlan20forsecureSSID,vlan30for
publicSSID.Inarealworldarchitecture,wewouldbeusingaCiscoWirelesLanController(WLC)andLeightWeight
APbutthosedevicesarenotavailableinPacketTracer6.2.RumorsindicatethatWLCcoludbeavailableinthnext
PacketTracerversion(PacketTracer7.0).
TheVLANinterfaceofthesecuressid(interfacevlan20)ishostedbythecampuscoreandhetrafficisdirectlyrouted
tothedatacenter.TheVLANinterfaceofthepublicssid(interfacevlan30)ishostedbytheASAfirewallonit'soutside
interface.Thepublictrafficisfilteredbeforeenteringthecampus

LabTopology

http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

1/5

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

Labsolution
Step1:CampusCOREconfiguration
Thecampuscoreprimaryfunctionishighspeedrouting.Inthissmallcampusdesign,coreanddistributionfunctions
arecollapsedonthesameL3switch.OSPFisconfiguredforadvertisingclassless10.0.0.0/8subnets(ipclassless).A
staticrouteisconfiguredthroughtheASAfirewalltoallowroutingtothepublicwirelessnetwork.Thestaticrouteis
redistributedinOSPFandadvertisedasanexternalroute(E2).
version12.2
noservicetimestampslogdatetimemsec
noservicetimestampsdebugdatetimemsec
noservicepasswordencryption
!
hostnameCAMPUSCORE
http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

2/5

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

!
iprouting
!
interfacePortchannel1
noswitchport
ipaddress10.1.0.1255.255.255.248
!
interfaceFastEthernet0/1
noswitchport
channelprotocollacp
channelgroup1modeactive
noipaddress
duplexauto
speedauto
!
interfaceFastEthernet0/2
noswitchport
channelgroup1modeactive
noipaddress
duplexauto
speedauto
!
interfaceFastEthernet0/23
switchportaccessvlan30
!
interfaceFastEthernet0/24
noswitchport
ipaddress10.1.0.9255.255.255.248
duplexauto
speedauto
!
interfaceGigabitEthernet0/1
switchporttrunkencapsulationdot1q
switchportmodetrunk
!
interfaceGigabitEthernet0/2
switchporttrunkencapsulationdot1q
switchportmodetrunk
!
interfaceVlan1
noipaddress
shutdown
!
interfaceVlan10
ipaddress10.1.10.1255.255.255.0
!
interfaceVlan20
ipaddress10.1.20.1255.255.255.0
http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

3/5

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

!
routerospf1
logadjacencychanges
redistributestaticsubnets
network10.0.0.00.255.255.255area0
!
ipclassless
iproute10.1.30.0255.255.255.010.1.0.10
!

Step2:ASAFirewallconfiguration
TheASAfirewallownthepublicsubnetgateway.Thisvlaninterfaceisconfiguredwithazerosecurityleveltodropall
incomingtrafficbydefault.ICMPtrafficfromthecampustopublicsubnetisallowedandinspectedbythepolicymap.
Thetrafficinspectionallowsthereturntrafficcomingfromthepublicsubnettocrossthefirewall.
ASAVersion8.4(2)
!
hostnameciscoasa
names
!
interfaceEthernet0/0
switchportaccessvlan30
!
interfaceVlan1
nameifinside
securitylevel100
ipaddress10.1.0.10255.255.255.248
!
interfaceVlan2
nonameif
nosecuritylevel
ipaddressdhcp
!
interfaceVlan30
nameifoutside
securitylevel0
ipaddress10.1.30.1255.255.255.0
!
!
routeinside0.0.0.00.0.0.010.1.0.91
!
classmapicmpclass
matchdefaultinspectiontraffic
!
policymapicmp_policy
classicmpclass
http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

4/5

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

inspecticmp
!
servicepolicyicmp_policyglobal

Step3:Accessswitchconfiguration
version12.2
noservicetimestampslogdatetimemsec
noservicetimestampsdebugdatetimemsec
noservicepasswordencryption
!
hostnameCAMPUSACCESS01
!
spanningtreemodepvst
!
interfaceFastEthernet0/1
switchportaccessvlan30
!
interfaceFastEthernet0/2
switchportaccessvlan20
!
interfaceGigabitEthernet0/1
switchportmodetrunk
!

http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

5/5

Lab 6.2.12a Configure Remote Access Using Cisco Easy VPN: Objective
Document9 pages
Lab 6.2.12a Configure Remote Access Using Cisco Easy VPN: Objective
Ovidiu Manolescu
No ratings yet
How To Configure VPN Remote Access With OTP 2-Way Factor and Authenex Radius ASAS Server
Document19 pages
How To Configure VPN Remote Access With OTP 2-Way Factor and Authenex Radius ASAS Server
greenbow
100% (2)
CCNPv7 ROUTE Lab3-2 Multi-Area-OSPF Student
Document36 pages
CCNPv7 ROUTE Lab3-2 Multi-Area-OSPF Student
joan
100% (1)
L2Tp/Ipsec Remote Access VPN Configuration Example
Document4 pages
L2Tp/Ipsec Remote Access VPN Configuration Example
Bruno Pereira
No ratings yet
Configuring Remote Access VPN Via ASDM - Posted - 1!15!09
Document45 pages
Configuring Remote Access VPN Via ASDM - Posted - 1!15!09
Mauro Guaño
No ratings yet
CCNP Advanced Routing 4
Document29 pages
CCNP Advanced Routing 4
minhlilili
No ratings yet
How To Install ONOS On Ubuntu PDF
Document8 pages
How To Install ONOS On Ubuntu PDF
SeyhaSun
No ratings yet
GNS3 Lab: Configure Static Routing
Document18 pages
GNS3 Lab: Configure Static Routing
Shahzad Hussain
No ratings yet
Activity-8 Configure Layer3 Switch Inter-VLAN Routing With Two Switches
Document6 pages
Activity-8 Configure Layer3 Switch Inter-VLAN Routing With Two Switches
raffy arranguez
No ratings yet
5.1.2.13 Lab - Configuring OSPFv2 On A Multiaccess Network
Document6 pages
5.1.2.13 Lab - Configuring OSPFv2 On A Multiaccess Network
رافد البركي
No ratings yet
Lab 8.3.3.6
Document10 pages
Lab 8.3.3.6
Justine Duran
No ratings yet
How Do I Setup Cisco VPN Client
Document2 pages
How Do I Setup Cisco VPN Client
sergiorsantos
No ratings yet
Guest Wlan and Internal Wlan Using Wlcs Configuration Example
Document17 pages
Guest Wlan and Internal Wlan Using Wlcs Configuration Example
Bora Ozver
No ratings yet
Cisco Certified Security Professional A Complete Guide - 2020 Edition
From Everand
Cisco Certified Security Professional A Complete Guide - 2020 Edition
Gerardus Blokdyk
No ratings yet
CCNPv7 ROUTE Lab3-1 OSPF-Virtual-Links Student
Document12 pages
CCNPv7 ROUTE Lab3-1 OSPF-Virtual-Links Student
garp5791
50% (2)
Configuring Multi-Area OSPFv3
Document16 pages
Configuring Multi-Area OSPFv3
etitah
No ratings yet
Cisco Switch Layer2 Layer3 Design and Configuration PDF
Document8 pages
Cisco Switch Layer2 Layer3 Design and Configuration PDF
Simar Nagra
No ratings yet
4.4.1.1 Lab - Configuring Zone-Based Policy Firewalls - Instructor
Document35 pages
4.4.1.1 Lab - Configuring Zone-Based Policy Firewalls - Instructor
Lupita Vázquez
No ratings yet
6.2.3.9 Lab - Configuring Multiarea OSPFv3 - ILM PDF
Document19 pages
6.2.3.9 Lab - Configuring Multiarea OSPFv3 - ILM PDF
Maksim Korsakov
96% (26)
Destination NAT Lab:: Basic Devices Configuration
Document12 pages
Destination NAT Lab:: Basic Devices Configuration
Ayan
No ratings yet
LAB RPT Site-Site IPSec
Document11 pages
LAB RPT Site-Site IPSec
v4meet
No ratings yet
CCNA Final Project Tast
Document3 pages
CCNA Final Project Tast
sathish77s
100% (1)
Acl Extendida PDF
Document13 pages
Acl Extendida PDF
mauricio1555
No ratings yet
9.4.1.7 Lab - Configuring ASA 5510 Basic Settings and Firewall Using ASDM - Instructor
Document56 pages
9.4.1.7 Lab - Configuring ASA 5510 Basic Settings and Firewall Using ASDM - Instructor
Salem Trabelsi
No ratings yet
Nurwajianto Switching Vlan
Document8 pages
Nurwajianto Switching Vlan
Scottie Erickson
No ratings yet
Chapter 7 Lab 7-1, Configuring BGP With Default Routing: Topology
Document33 pages
Chapter 7 Lab 7-1, Configuring BGP With Default Routing: Topology
orlando cartagena
No ratings yet
Ospf Acl PT Practice Sba 100% (CCND Discovery 3 and 4)
Document10 pages
Ospf Acl PT Practice Sba 100% (CCND Discovery 3 and 4)
Ranga Sanjeewa
100% (1)
ES CCNPv6 ROUTE Lab7-1 Branch Office Config Instructor
Document15 pages
ES CCNPv6 ROUTE Lab7-1 Branch Office Config Instructor
Sebastian Molina Fernandez
No ratings yet
Lab 3 - AAA Authentication On Cisco Routers - Instrucciones
Document6 pages
Lab 3 - AAA Authentication On Cisco Routers - Instrucciones
Felipe Andres Oyarzun Quiroz
No ratings yet
Best Practice 6500
Document136 pages
Best Practice 6500
briannickie
100% (1)
At Tshoot 642-832
Document249 pages
At Tshoot 642-832
_asdffg
No ratings yet
Router-on-a-Stick
Document5 pages
Router-on-a-Stick
Gabriel Julio Navarro Pianeta
No ratings yet
ITP4111 - Open Standards Networking Time Allowed: 1.5 Hour Marking Scheme This Paper Contains FIVE Questions. Answer ALL Questions
Document10 pages
ITP4111 - Open Standards Networking Time Allowed: 1.5 Hour Marking Scheme This Paper Contains FIVE Questions. Answer ALL Questions
dielo
No ratings yet
Nokia Firewall, VPN, and IPSO Configuration Guide
From Everand
Nokia Firewall, VPN, and IPSO Configuration Guide
Andrew Hay
No ratings yet
IBM Security QRadar DSM Check Point FireWall-1 Configuration
Document18 pages
IBM Security QRadar DSM Check Point FireWall-1 Configuration
zefrench
No ratings yet
OSPF Practice Skills Assessment - Packet Tracer
Document13 pages
OSPF Practice Skills Assessment - Packet Tracer
john doe
No ratings yet
Server 2008 NAT Network Address Translation
Document12 pages
Server 2008 NAT Network Address Translation
Paul
100% (1)
Packet filter with iptables lab
Document2 pages
Packet filter with iptables lab
KurobaKaito
No ratings yet
VPN (Any Type) Between 2 Mikrotik Routers and No Static IP Addresses - MikroTik Wiki
Document2 pages
VPN (Any Type) Between 2 Mikrotik Routers and No Static IP Addresses - MikroTik Wiki
Ajay J Verma
No ratings yet
Cis 83 Vlan Lab: - Creating Vlans - Using VTP Intervlan Routing
Document15 pages
Cis 83 Vlan Lab: - Creating Vlans - Using VTP Intervlan Routing
isbat nadhori
No ratings yet
10.1.4.8 Lab - Configure ASA 5506-X Basic Settings and Firewall Using ASDM
Document16 pages
10.1.4.8 Lab - Configure ASA 5506-X Basic Settings and Firewall Using ASDM
eliza
No ratings yet
Lab-00-01 - Configure Cisco 3600 Router To Use As A Switch in GNS3
Document1 page
Lab-00-01 - Configure Cisco 3600 Router To Use As A Switch in GNS3
Muhammad Asghar Khan
No ratings yet
8.4.1.2 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN Using CLI
Document5 pages
8.4.1.2 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN Using CLI
Talha Ur Rehman
No ratings yet
How To Upgrade IOS Image On Cisco Catalyst Switch or Router
Document4 pages
How To Upgrade IOS Image On Cisco Catalyst Switch or Router
Barbara Chamberlain
No ratings yet
CCNA 3 (v5.0) OSPF Practice Skills Assessment Exam Answer: Network Diagram
Document22 pages
CCNA 3 (v5.0) OSPF Practice Skills Assessment Exam Answer: Network Diagram
Mark Brown
No ratings yet
Cisco CCNA - Layer 3 Switches
Document3 pages
Cisco CCNA - Layer 3 Switches
Mohammed Hazzaa
No ratings yet
CCNP3V30 Lab Correction
Document16 pages
CCNP3V30 Lab Correction
veeramachanenipurnaprasad
No ratings yet
Configuring A Cisco Router As A PPPoE Client For DSL Connectivity
Document6 pages
Configuring A Cisco Router As A PPPoE Client For DSL Connectivity
Cassandra Shaffer
No ratings yet
5.2.2.5 Packet Tracer - Configuring Dynamic NAT Instructions IG PDF
Document2 pages
5.2.2.5 Packet Tracer - Configuring Dynamic NAT Instructions IG PDF
blado1
No ratings yet
Network Commands
Document4 pages
Network Commands
Ali Mohammad
No ratings yet
Mikrotik - IPv6
Document45 pages
Mikrotik - IPv6
Musyaffak S
No ratings yet
Mikrotik HTTPS PDF
Document20 pages
Mikrotik HTTPS PDF
Vladan Colakovic
No ratings yet
Dynamips Tutorial 11032010
Document23 pages
Dynamips Tutorial 11032010
HUT_8X_PROO
No ratings yet
Mikrotik VRRP and Load Sharing
Document12 pages
Mikrotik VRRP and Load Sharing
Carlos
No ratings yet
Chapter2 - Virtualization
Document12 pages
Chapter2 - Virtualization
Afia Kamran
100% (1)
SP912G Manual
Document11 pages
SP912G Manual
esilvaop
No ratings yet
Cisco UCCX A Clear and Concise Reference
From Everand
Cisco UCCX A Clear and Concise Reference
Gerardus Blokdyk
No ratings yet
Netstat A Complete Guide - 2021 Edition
From Everand
Netstat A Complete Guide - 2021 Edition
Gerardus Blokdyk
No ratings yet
DDoS Mitigation A Complete Guide - 2019 Edition
From Everand
DDoS Mitigation A Complete Guide - 2019 Edition
Gerardus Blokdyk
No ratings yet
Cisco 642-892 Practice Exam
Document346 pages
Cisco 642-892 Practice Exam
Chavara Matekwe
No ratings yet
Calentamiento Ccna4
Document17 pages
Calentamiento Ccna4
Arocha Cesarin
No ratings yet
Configuring NAT Overload On A Cisco Router
Document4 pages
Configuring NAT Overload On A Cisco Router
Arocha Cesarin
No ratings yet
Conf B
Document1 page
Conf B
Arocha Cesarin
No ratings yet
eBGP + REDISTRIBUCIÓN
Document7 pages
eBGP + REDISTRIBUCIÓN
Arocha Cesarin
No ratings yet
Caso de Estudio
Document1 page
Caso de Estudio
Arocha Cesarin
No ratings yet
Configuring Ether Channels
Document18 pages
Configuring Ether Channels
John H Njii
No ratings yet
13 OSPFv3 RickGraziani
Document66 pages
13 OSPFv3 RickGraziani
Aboubakry Sy
No ratings yet
BGP Con Redistribución
Document7 pages
BGP Con Redistribución
Arocha Cesarin
No ratings yet
Configuracion Router (Comandos)
Document1 page
Configuracion Router (Comandos)
Arocha Cesarin
No ratings yet
Cisco Packet Tracer 6.1 - Router devices and WIC modules overview
Document5 pages
Cisco Packet Tracer 6.1 - Router devices and WIC modules overview
Arocha Cesarin
No ratings yet
Configuraci (On de Stactica
Document1 page
Configuraci (On de Stactica
Arocha Cesarin
No ratings yet
F.R E4 - PTAct - 3 - 2 - 2
Document3 pages
F.R E4 - PTAct - 3 - 2 - 2
Arocha Cesarin
No ratings yet
F.R E4 - PTAct - 3 - 2 - 2
Document3 pages
F.R E4 - PTAct - 3 - 2 - 2
Arocha Cesarin
No ratings yet
Configuraci (On de Stactica
Document1 page
Configuraci (On de Stactica
Arocha Cesarin
No ratings yet
Configuraci (On de Stactica
Document1 page
Configuraci (On de Stactica
Arocha Cesarin
No ratings yet
RTT of FTP Server
Document4 pages
RTT of FTP Server
Raju Sutradhar
No ratings yet
PH - Scalance XB 200 XC 200 XF 200ba XP 200 XR 300WG Cli - 76
Document720 pages
PH - Scalance XB 200 XC 200 XF 200ba XP 200 XR 300WG Cli - 76
jvautomac
No ratings yet
Vtu 6TH Sem Cse Computer Networks 2 Notes 10CS64
Document72 pages
Vtu 6TH Sem Cse Computer Networks 2 Notes 10CS64
EKTHATIGER633590
100% (8)
DS 2dy9188 Aia
Document4 pages
DS 2dy9188 Aia
Ghulam Ahmed Parvaiz
No ratings yet
Ess6 CPM
Document9 pages
Ess6 CPM
Rizki Hatake Uchiha
No ratings yet
GE Reason S20 Industrial Managed Ethernet Switches Technical Manual
Document192 pages
GE Reason S20 Industrial Managed Ethernet Switches Technical Manual
diyan
No ratings yet
Excel - LOOKUP, INDEX, MATCH, SUMIFS
Document56 pages
Excel - LOOKUP, INDEX, MATCH, SUMIFS
Nirmal Kumar
No ratings yet
Test and Diagnosis
Document26 pages
Test and Diagnosis
Mariana Ribeiro Genta
No ratings yet
4G KPI Report Acceptance-WS RSLTE-LNBTS-2-day-PM 24227-2020 10 05-15 55 15 434
Document140 pages
4G KPI Report Acceptance-WS RSLTE-LNBTS-2-day-PM 24227-2020 10 05-15 55 15 434
Hubert Arthur
No ratings yet
UGRD-IT6200A Data Communication and Networking 1 FINAL QUIZ 1&2
Document24 pages
UGRD-IT6200A Data Communication and Networking 1 FINAL QUIZ 1&2
Kaye Cariño
No ratings yet
Packet Tracer - Basic Switch Configuration
Document2 pages
Packet Tracer - Basic Switch Configuration
Krystelle Ungria Timtim
No ratings yet
Configure iBGP Route Redistribution into OSPF on Nexus Switches
Document4 pages
Configure iBGP Route Redistribution into OSPF on Nexus Switches
Kishore Reddy Kandi
No ratings yet
Introduction To Wan Technology and Services
Document30 pages
Introduction To Wan Technology and Services
Laura Tampubolon
No ratings yet
Configuracion 1ra Red
Document5 pages
Configuracion 1ra Red
Jose Omar Sierra Serrano
No ratings yet
CCNPv6 ROUTE SBA Skills-Based Assessment
Document3 pages
CCNPv6 ROUTE SBA Skills-Based Assessment
Brian Svendsen
100% (1)
Error: Cause: Errors:: VPN Client Error Messages - Reason From 401 To 410
Document6 pages
Error: Cause: Errors:: VPN Client Error Messages - Reason From 401 To 410
Amit Kumar
No ratings yet
Untitled
Document241 pages
Untitled
Kan15
No ratings yet
TCP Stream Reassembly
Document23 pages
TCP Stream Reassembly
armin
No ratings yet
OptiX RTN 900 V1R3 Product Introduction
Document24 pages
OptiX RTN 900 V1R3 Product Introduction
Rafael Lessa
No ratings yet
Use Route Command To Test The Performance of The Given Network
Document14 pages
Use Route Command To Test The Performance of The Given Network
Nikita kamble
No ratings yet
1802 3d-1993
Document96 pages
1802 3d-1993
Павел Янков
No ratings yet
CCNP SWITCH Chapter 1 Answers
Document5 pages
CCNP SWITCH Chapter 1 Answers
Fady Khalil
50% (2)
CS 1305 - Network Lab Manual
Document54 pages
CS 1305 - Network Lab Manual
Tarun Dhiman
No ratings yet
Counter Related UMTS To LTE Statistic Measurement
Document14 pages
Counter Related UMTS To LTE Statistic Measurement
danangbayuaji76
No ratings yet
SS7 Evolution-To-Diameter PDF
Document14 pages
SS7 Evolution-To-Diameter PDF
Vladimir Tsagov
100% (1)
Error
Document2 pages
Error
lnppalai
No ratings yet
11.4.1.2 Packet Tracer - Skills Integration Challenge PDF
Document4 pages
11.4.1.2 Packet Tracer - Skills Integration Challenge PDF
Mpaphi Map'z Dambe
No ratings yet
9.3.8 Lab - Exploring Nmap
Document7 pages
9.3.8 Lab - Exploring Nmap
Nguyễn Bảo Hưng
No ratings yet
14.1 Manage Red Hat Enterprise Linux Networking
Document9 pages
14.1 Manage Red Hat Enterprise Linux Networking
amit_post2000
No ratings yet
XDM 100 Product Note
Document8 pages
XDM 100 Product Note
Kavish Jaggi
No ratings yet