[c-nsp] Hooking cisco Aironets up to colubris gear

Ed Whitesell edwlist at airpathwireless.com
Mon May 2 10:15:51 EDT 2005 

Eric -



Unless you're looking to do something special with the traffic on the Cisco 
APs, you should just set them up up as "dumb" as possible.  Have them bridge 
the traffic, no VLANs, no authentication, etc. (though multiple SSIDs should 
be OK).  Let the 3500 handle all of the DHCP, DNS, Authentication, captive 
portal re-direct, etc.



If this is an enterprise type rollout, you could go far enough to use VLANs 
on the APs and your existing infrastructure, provided the users end up on 
the same broadcast domain as the 3500's LAN interface.  The important part 
is that the 3500 needs to see the end-user's ARP traffic to track sessions 
appropriately.  Unless there's something brand-new that I haven't seen from 
them (Colubris) yet...



If you still have questions, I'd suggest contacting Colubris support.  I'm 
sure they can help out.



-----------------------------------------------------------------------------

Ed Whitesell

Network Manager


Airpath

"Clearing the Way"

edw at airpath.com

http://www.airpath.com

-----------------------------------------------------------------------------





-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net 
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Eric Whitehill
Sent: Monday, May 02, 2005 10:00 AM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Hooking cisco Aironets up to colubris gear



Good morning!



I am in the process of hooking up my Cisco Aironets (1100 and 1200's

respectively) and I am attempting to get them to authenticate to a Colubris

3500, for my wireless deployment.  From my understanding, I can just set the

aironets up to use radius authentication against the Colubris.  (aaa

authentication radius server, etc)



What I would like to do is allow anyone to connect to the Aironets, but in

order to use services behind them, the user must authenticate against our

radius database, much like a Wireless Café.



I've tried finding details on how to do this in the Cisco TAC database, but

I couldn't find anything either there or on a quick Google search.  Any

assistance would be appreciated.



Thanks,



-Eric



-- 

Eric Whitehill - 44.58.39N, 93.15.56W

Data Network Engineer - 702 Communications

ewhitehill at 702com.net - ASN 15267 - INOC-DBA - 15267*ERW

"Out the Gig-E, through the router, down the OC-12's, over the leased

line, off the bridge, past the firewall...nothing but Net."





_______________________________________________

cisco-nsp mailing list  cisco-nsp at puck.nether.net

https://puck.nether.net/mailman/listinfo/cisco-nsp

archive at http://puck.nether.net/pipermail/cisco-nsp/

More information about the cisco-nsp mailing list