NETGEAR ProSAFE WC7520 Wireless Controller

Similar documents
NETGEAR ProSAFE WC9500 High Capacity Wireless Controller

UTM10 in multi-ssid, multi-vlan network with WMS5316. Network diagram

FSM73xx GSM73xx GMS72xxR Shared access to the Internet across Multiple routing VLANs using a Prosafe Firewall

Layer 2 / Layer 3 switches and multi-ssid multi-vlan network with traffic separation

How to Configure a BYOD Environment with the DWS-4026

AP6511 First Time Configuration Procedure

GS700TS FS700TS Access to the Internet on multiple VLANS using Multi- Homing

How to Configure Guest Management on the DWC-1000

N300 WiFi Range Extender WN2000RPT User Manual

WLAN Outdoor CPE For 2.4G. Quick Installation Guide

Enabling Multiple Wireless Networks on RV320 VPN Router, WAP321 Wireless-N Access Point, and Sx300 Series Switches

Using Cisco UC320W with Windows Small Business Server

Chapter 1 Configuring Internet Connectivity

Installation of the On Site Server (OSS)

Cisco - Configure the 1721 Router for VLANs Using a Switch Module (WIC-4ESW)

ProSafe Plus Switch Utility

Application Notes. How to Configure Application Control for the UTM

Penn State Wireless 2.0 and Related Services for Network Administrators

ProSAFE 8-Port and 16-Port Gigabit Click Switch

Configuring Network Address Translation (NAT)

Chapter 4 Management. Viewing the Activity Log

TE100-P21/TEW-P21G Windows 7 Installation Instruction

ProSafe Plus Switch Utility

What is VLAN Routing?

8 Steps For Network Security Protection

Chapter 1 Configuring Basic Connectivity

Chapter 4 Customizing Your Network Settings

Setting up IP address distribution in a LAN

Configuring Routers and Their Settings

Configuration Guide. How to Configure SSL VPN Features in DSR Series. Overview

VLAN 802.1Q. 1. VLAN Overview. 1. VLAN Overview. 2. VLAN Trunk. 3. Why use VLANs? 4. LAN to LAN communication. 5. Management port

10/ English Edition 1. Quick Start Guide. NWA1100N-CE CloudEnabled Business N Wireless Access Point

Microsoft Lync Certification Configuration Guide for WiNG 5.5

Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

Switches recommended for use with RingCentral VoIP services

Wireless Edge Services xl Module 2.0 Update NPI Technical Training June 2007

GregSowell.com. Mikrotik Basics

Chapter 3 Management. Remote Management

N300 WiFi Range Extender

V310 Support Note Version 1.0 November, 2011

Optimum Business SIP Trunk Set-up Guide

1-Port Wireless USB 2.0 Print Server Model # APSUSB201W. Quick Installation Guide. Ver. 2A

Wireless Router Quick Start Guide Rev. 1.0a Model: WR300NQ

8 Steps for Network Security Protection

WiNG5 CAPTIVE PORTAL DESIGN GUIDE

Case Study - Configuration between NXC2500 and LDAP Server

Smart Control Center. User Guide. 350 East Plumeria Drive San Jose, CA USA. November v1.0

Click Main on the left hand side then click on Password at the top of the page.

How to put the DVR online

User Manual Network Interface

ASUS WL-5XX Series Wireless Router Internet Configuration. User s Guide

Chapter 8 Advanced Configuration

Configuring a customer owned router to function as a switch with Ultra TV

PIXMA MX920. series. Setup Guide

Chapter 1 Installing the Gateway

Chapter 6 Using Network Monitoring Tools

Using a VPN with Niagara Systems. v0.3 6, July 2013

To configure firewall policies, you must install the Policy Enforcement Firewall license.

Mobile Router MR600 User Guide

How To Set Up A Computer With A Network Connection On A Cdrom 2.5 (For A Pc) Or Ipad (For Mac) On A Pc Or Mac Or Ipa (For Pc) On An Ipad Or Ipro (

AC1200 Smart WiFi Router

NXC5500/2500. Application Note. Captive Portal with QR Code. Version 4.20 Edition 2, 02/2015. Copyright 2015 ZyXEL Communications Corporation

NBG2105. User s Guide. Quick Start Guide. Wireless Mini Travel Router. Default Login Details. Version 1.00 Edition 1, 11/2012

Steps for Basic Configuration

Desktop NETGEAR Genie

VLANs. Application Note

Preparing the Computers for TCP/IP Networking

MFC7840W Windows Network Connection Repair Instructions

Controller Management

BASIC INSTRUCTIONS TO CONFIGURE ZYXEL P8701T CPE USING THE WEB INTERFACE

UBIQUITI BRIDGE CONFIGURATION PROCEDURE (PowerStation & NanoStation Units ONLY)

GS510TP and GS110T Gigabit Smart Switches

TECHNICAL NOTE. GoFree WIFI-1 web interface settings. Revision Comment Author Date 0.0a First release James Zhang 10/09/2012

Check Your Package Contents. CD-ROM containing Manual and Warranty

CCT vs. CCENT Skill Set Comparison

Configuration Guide. How to Configure the AP Profile on the DWC Overview

Movie Cube. User s Guide to Wireless Function

Management Software. Web Browser User s Guide AT-S106. For the AT-GS950/48 Gigabit Ethernet Smart Switch. Version Rev.

Chapter 6 Using Network Monitoring Tools

NETGEAR /ValuePoint Networks Interoperability Report

Abstract. Avaya Solution & Interoperability Test Lab

BASIC INSTRUCTIONS TO CONFIGURE ZYXEL 660HW-D1 CPE USING THE WEB INTERFACE

How To Check If Your Router Is Working Properly

GS716Tv3, GS724Tv4, and GS748Tv5 Smart Switches

MN-700 Base Station Configuration Guide

Experience Next-Generation WiFi

Please prepare the following items

Support Package Contents AC1600 WiFi VDSL/ADSL Ethernet cable Trademarks Modem Router Compliance Phone cable Modem router

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.

Customer Installation Guide NBG-4615 v2 ZyXEL Wireless Router

WiFi DSL Modem Router

ProCurve Networking. Troubleshooting WLAN Connectivity. Technical White paper

StarMOBILE Network Configuration Guide. A guide to configuring your StarMOBILE system for networking

Ruckus Wireless access point set up from an Audio Everywhere streaming perspec;ve. Lance Glasser 6 June 2015

Extending the range of a wireless network by using mesh topology

Step-by-Step Setup Guide Wireless File Transmitter FTP Mode

PCI v2.0 Compliance for Wireless LAN

AC1600 WiFi VDSL/ADSL Modem Router

NWA1120 Series. User s Guide. Quick Start Guide. Wireless LAN Ceiling Mountable PoE Access Point. Default Login Details

Integrating a Hitachi IP5000 Wireless IP Phone

Transcription:

NETGEAR ProSAFE WC7520 Wireless Controller Confi guring Offi ce and Guest SSIDs Using a Layer 3 Switch on Separate Layer 3 Subnets APPLICATION NOTES

INTRODUCTION Business environments are dynamic in nature, with many different types of users, each with a wide range of networking needs. Employees and contractors require Internet connectivity and access to printers, files, and other shared resources through the wireless network. The organization may also want to enable Internet access for visitors, without allowing them to see the other users or access any corporate resources. This paper will discuss how to use the NETGEAR ProSAFE wireless system to provide an appropriate level of access to multiple groups of users while maintaining the highest level of security. OVERVIEW There are two ways to go about resolving this challenge. One way is to use two access points one for employees and contractors, and one for the guest users. However, this strategy requires twice the amount of equipment to be purchased, configured, and managed long-term, thereby increasing capital and operating expenses. A superior solution is to use access points that support multiple SSIDs, such as NETGEAR ProSAFE access points. Then, using the NETGEAR ProSAFE WC7520 Wireless Controller, the organization can easily configure and maintain two separate SSIDs on one access point one for employees and the other for guests. A single ProSafe WC7520 can manage up to 50 access points from a single interface, blending extraordinary flexibility with robust security administration. CONFIGURATION The first thing that needs to be done is to separate the guests from the employees using VLANs on the wired network. To do this, we ll create an Office VLAN and a Guest VLAN. Then, we ll enable routing on that VLAN and provide Guests with their own subnet. Page 2

Here s the address scheme we ll use: Switch VLAN1 (Management and internet) 192.168.1.2 VLAN10 (Office) 192.168.10.1 VLAN20 (Guest) 192.168.20.1 WC7520 192.168.1.250 PC 192.168.1.3 In this scenario we re assuming that there is already a wired network set up on VLAN 1, 192.168.1.0/24,with a router with a DHCP server and internet access on 192.168.1.1. Internet/Corporate Router 192.168.1.1 CONFIGURATION M4100 Switch Step 1 Add VLAN 10 and 20 for Wireless Select Routing VLAN VLAN Routing Wizard for each VLAN to add the VLAN, IP address and enable routing. Page 3

You only need to tag the ports that have the access points in them. Since the actual traffic will go through the switch, it doesn t go through the WC7520 itself. After, make sure that the ports for the APs and WC7520 have VLAN1 Untagged and PVID 1 set, for discovery of the access points later. Page 4

Page 5

Step 2 Configure the DHCP pools Select System Services DHCP Server. Select DHCP Pool Configuration and add 2 pools, one for each VLAN. Making sure you pick the correct subnet, assign default gateway matching the switch VLAN IP address created earlier in the wizard, and assign a DNS server. Don t forget to turn on the server under System Services DHCP Server DHCP Server Configuration. Page 6

Page 7

Step 3 Add ACLs to deny Guests from reaching the Office LAN and WLAN Add ACLs like in the screenshots below, making sure that there is a Permit Match Every at the end, and above that, rules to deny traffic to the Office LAN and Office WLAN, but allowing access to the router for DNS. After creating the ACLs, you have to bind them to the Guest VLAN. Page 8

Page 9

Page 10

Page 11

WC7520 Step 1 Configure the IP settings Log in to the WC7520 and select Configuration System IP/VLAN. Connect to the default IP of the WC7520, 192.168.0.250. Change the IP address; we ll use 192.168.1.250/24. The default gateway and the DNS server will be the router on 192.168.1.1. You ll have to change IP now, and reconnect to the WC7520 on its new IP address. Page 12

Step 2 Configure the Office SSIDs Select Configuration Profile Basic Radio. We will call the first wireless network Office; we won t use any encryption for now. We will call the second wireless network Guests. We ll enable client separation to prevent wireless guests from seeing each other. Page 13

Step 3 Plug in your Access Points to port 3 and 4 Make sure the Access Point is on Factory Defaults, and wait until it s fully booted up. Page 14

Step 4 - Discover and add your AP Select Access Point Discovery Wizard. Choose Factory Default state and Same L2 network. You should find the Access Point on its default IP address. Select it, and select Add. Leave the password field blank and select Add. Wait until you see Connected in the status column. This will take a few minutes Router Step 1 Add static routes to new Wireless LANs The router needs to know about these new IP subnets. So we need to add two static routes. One for 192.168.10.0/255.255.255.0 and on for 192.168.20.0/255.255.255.0, through the gateway, which is the switch on 192.168.1.2. NOTES This guide is based on a factory default WC7520, running firmware 2.5.0.5_3215. NETGEAR, the NETGEAR logo, ProSAFE and ProSECURE are trademarks and/or registered trademarks of NETGEAR, Inc. and/or its subsidiaries in the United States and/or other countries. Information is subject to change without notice. 2013 NETGEAR, Inc. All rights reserved. Page 15

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information