Lab 21 - Public & Enterprise Wlan Users Differentiation

This document describes a Packet Tracer lab that configures a campus network to provide differentiated wireless access. An access switch connects two access points to broadcast separate public and secured SSIDs, each mapped to a different VLAN. The secure SSID traffic routes directly to the datacenter, while the public SSID traffic passes through an ASA firewall for inspection before entering the campus network. The core switch, ASA firewall, and access switch are all configured to support this network architecture and wireless access differentiation.

Uploaded by

Arocha Cesarin

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

473 views

Lab 21 - Public & Enterprise Wlan Users Differentiation

Uploaded by

Arocha Cesarin

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 5

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

Lab21Public&Enterprisewlanusers
differentiation
Rating4.00(1Vote)
LastUpdated:Monday,21December201509:21
Hits:799

Labdescription
TheaimofthisPacketTracer6.2labistoconfigureancampusnetworkallowingauthenticatedenterpriseusersto
accessenterpriseressourcesusingtheirmobiledeviceswhileallowingafilteredpublicwirelessaccessforunregistered
users.
TwoaccesspointsareconnectedtoanaccessswitchtopublishtwodiffrentSSID("default"and"Secured").The
basicaccesspointbroadcaststhepublicSSID.TheLinksysAPbroadcaststheprotectedSSIDasthisAPcanbe
configuredforWPAEnterprisesecurity.EachSSIDismappedtoasinglevlan:vlan20forsecureSSID,vlan30for
publicSSID.Inarealworldarchitecture,wewouldbeusingaCiscoWirelesLanController(WLC)andLeightWeight
APbutthosedevicesarenotavailableinPacketTracer6.2.RumorsindicatethatWLCcoludbeavailableinthnext
PacketTracerversion(PacketTracer7.0).
TheVLANinterfaceofthesecuressid(interfacevlan20)ishostedbythecampuscoreandhetrafficisdirectlyrouted
tothedatacenter.TheVLANinterfaceofthepublicssid(interfacevlan30)ishostedbytheASAfirewallonit'soutside
interface.Thepublictrafficisfilteredbeforeenteringthecampus

LabTopology

http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

1/5

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

Labsolution
Step1:CampusCOREconfiguration
Thecampuscoreprimaryfunctionishighspeedrouting.Inthissmallcampusdesign,coreanddistributionfunctions
arecollapsedonthesameL3switch.OSPFisconfiguredforadvertisingclassless10.0.0.0/8subnets(ipclassless).A
staticrouteisconfiguredthroughtheASAfirewalltoallowroutingtothepublicwirelessnetwork.Thestaticrouteis
redistributedinOSPFandadvertisedasanexternalroute(E2).
version12.2
noservicetimestampslogdatetimemsec
noservicetimestampsdebugdatetimemsec
noservicepasswordencryption
!
hostnameCAMPUSCORE
http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

2/5

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

!
iprouting
!
interfacePortchannel1
noswitchport
ipaddress10.1.0.1255.255.255.248
!
interfaceFastEthernet0/1
noswitchport
channelprotocollacp
channelgroup1modeactive
noipaddress
duplexauto
speedauto
!
interfaceFastEthernet0/2
noswitchport
channelgroup1modeactive
noipaddress
duplexauto
speedauto
!
interfaceFastEthernet0/23
switchportaccessvlan30
!
interfaceFastEthernet0/24
noswitchport
ipaddress10.1.0.9255.255.255.248
duplexauto
speedauto
!
interfaceGigabitEthernet0/1
switchporttrunkencapsulationdot1q
switchportmodetrunk
!
interfaceGigabitEthernet0/2
switchporttrunkencapsulationdot1q
switchportmodetrunk
!
interfaceVlan1
noipaddress
shutdown
!
interfaceVlan10
ipaddress10.1.10.1255.255.255.0
!
interfaceVlan20
ipaddress10.1.20.1255.255.255.0
http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

3/5

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

!
routerospf1
logadjacencychanges
redistributestaticsubnets
network10.0.0.00.255.255.255area0
!
ipclassless
iproute10.1.30.0255.255.255.010.1.0.10
!

Step2:ASAFirewallconfiguration
TheASAfirewallownthepublicsubnetgateway.Thisvlaninterfaceisconfiguredwithazerosecurityleveltodropall
incomingtrafficbydefault.ICMPtrafficfromthecampustopublicsubnetisallowedandinspectedbythepolicymap.
Thetrafficinspectionallowsthereturntrafficcomingfromthepublicsubnettocrossthefirewall.
ASAVersion8.4(2)
!
hostnameciscoasa
names
!
interfaceEthernet0/0
switchportaccessvlan30
!
interfaceVlan1
nameifinside
securitylevel100
ipaddress10.1.0.10255.255.255.248
!
interfaceVlan2
nonameif
nosecuritylevel
ipaddressdhcp
!
interfaceVlan30
nameifoutside
securitylevel0
ipaddress10.1.30.1255.255.255.0
!
!
routeinside0.0.0.00.0.0.010.1.0.91
!
classmapicmpclass
matchdefaultinspectiontraffic
!
policymapicmp_policy
classicmpclass
http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

4/5

21/4/2016

Lab21Public&Enterprisewlanusersdifferentiation

inspecticmp
!
servicepolicyicmp_policyglobal

Step3:Accessswitchconfiguration
version12.2
noservicetimestampslogdatetimemsec
noservicetimestampsdebugdatetimemsec
noservicepasswordencryption
!
hostnameCAMPUSACCESS01
!
spanningtreemodepvst
!
interfaceFastEthernet0/1
switchportaccessvlan30
!
interfaceFastEthernet0/2
switchportaccessvlan20
!
interfaceGigabitEthernet0/1
switchportmodetrunk
!

http://www.packettracernetwork.com/labs/lab21wlandifferentiation.html

5/5

BeoSound 5 Encore
No ratings yet
BeoSound 5 Encore
90 pages
1.3.1.3 Packet Tracer - Skills Integration Challenge Instructions
No ratings yet
1.3.1.3 Packet Tracer - Skills Integration Challenge Instructions
2 pages
8.4.1.2 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN Using CLI
No ratings yet
8.4.1.2 Packet Tracer - Configure and Verify A Site-To-Site IPsec VPN Using CLI
5 pages
Lab Cisco CCNA
No ratings yet
Lab Cisco CCNA
4 pages
1.5.7 Packet Tracer - Network Representation
No ratings yet
1.5.7 Packet Tracer - Network Representation
3 pages
2.5.5 Packet Tracer - Configure Initial Switch Settings
No ratings yet
2.5.5 Packet Tracer - Configure Initial Switch Settings
5 pages
CCNA Case Study
0% (1)
CCNA Case Study
20 pages
4.5.1.2 Packet Tracer Skills Integration Challenge Instructions
0% (3)
4.5.1.2 Packet Tracer Skills Integration Challenge Instructions
2 pages
Huawei E5770 Manual
100% (1)
Huawei E5770 Manual
36 pages
Wireless Lab
No ratings yet
Wireless Lab
38 pages
WAN TECHNOLOGY FRAME-RELAY: An Expert's Handbook of Navigating Frame Relay Networks
From Everand
WAN TECHNOLOGY FRAME-RELAY: An Expert's Handbook of Navigating Frame Relay Networks
Mamta Devi
No ratings yet
REMOTE ACCESS VPN- SSL VPN: A deep dive into SSL VPN from basic
From Everand
REMOTE ACCESS VPN- SSL VPN: A deep dive into SSL VPN from basic
MAMTA DEVI
5/5 (1)
4.2.2.13 Lab - Configuring and Verifying Extended ACLs - ILM
No ratings yet
4.2.2.13 Lab - Configuring and Verifying Extended ACLs - ILM
16 pages
5.2.2.6 Lab - Configuring SNMP
No ratings yet
5.2.2.6 Lab - Configuring SNMP
12 pages
26.1.4 Lab - Configure Local and Server-Based AAA Authentication
No ratings yet
26.1.4 Lab - Configure Local and Server-Based AAA Authentication
12 pages
11.6.2 Lab - Switch Security Configuration - ILM
No ratings yet
11.6.2 Lab - Switch Security Configuration - ILM
19 pages
4.4.3.4 Lab - Configuring HSRP and GLBP
0% (1)
4.4.3.4 Lab - Configuring HSRP and GLBP
9 pages
En ENetwork IPTM v4040
No ratings yet
En ENetwork IPTM v4040
38 pages
CCNPv7 SWITCH - SBA Version A - STUDENT
0% (1)
CCNPv7 SWITCH - SBA Version A - STUDENT
5 pages
10.4.4 Lab - Build A Switch and Router Network
No ratings yet
10.4.4 Lab - Build A Switch and Router Network
13 pages
8.4.1.3 Lab - Configure Site-To-Site VPN Using CLI - Instructor
100% (1)
8.4.1.3 Lab - Configure Site-To-Site VPN Using CLI - Instructor
16 pages
8.2.2.4 Lab - Configuring SNMP - ILM PDF
100% (2)
8.2.2.4 Lab - Configuring SNMP - ILM PDF
20 pages
6.3.6 Lab - Basic Device Configuration and OSPF Authentication
No ratings yet
6.3.6 Lab - Basic Device Configuration and OSPF Authentication
7 pages
Chapter 7 Lab 7-1, Synchronizing Campus Network Devices Using Network Time Protocol (NTP)
No ratings yet
Chapter 7 Lab 7-1, Synchronizing Campus Network Devices Using Network Time Protocol (NTP)
20 pages
Lab 5
No ratings yet
Lab 5
12 pages
VLAN Workshop (2024)
No ratings yet
VLAN Workshop (2024)
6 pages
CCN Lab 6
No ratings yet
CCN Lab 6
7 pages
Routers: Modular Fixed
No ratings yet
Routers: Modular Fixed
17 pages
WLC Faq
No ratings yet
WLC Faq
21 pages
EJEMPLOS EJERCICIOS Packet Tracer - Layer 2 VLAN Security
No ratings yet
EJEMPLOS EJERCICIOS Packet Tracer - Layer 2 VLAN Security
23 pages
2.9.1 Packet Tracer - Basic Switch and End Device Configuration
No ratings yet
2.9.1 Packet Tracer - Basic Switch and End Device Configuration
2 pages
9.4.1.7 Lab - Configuring ASA 5510 Basic Settings and Firewall Using ASDM - Instructor
No ratings yet
9.4.1.7 Lab - Configuring ASA 5510 Basic Settings and Firewall Using ASDM - Instructor
56 pages
BSCI Lab 13 PDF
No ratings yet
BSCI Lab 13 PDF
8 pages
CCNA Exam v1.0 (200-301)
No ratings yet
CCNA Exam v1.0 (200-301)
4 pages
3.2.1.3 Packet Tracer - Configuring EtherChannel Instructions
0% (1)
3.2.1.3 Packet Tracer - Configuring EtherChannel Instructions
3 pages
CCNA 2 RSE Practice Skills Assessment v5
No ratings yet
CCNA 2 RSE Practice Skills Assessment v5
11 pages
Test CCNA
No ratings yet
Test CCNA
8 pages
Cis187 Switch 2 Vlans Part1
No ratings yet
Cis187 Switch 2 Vlans Part1
105 pages
Basic Qos Lab
No ratings yet
Basic Qos Lab
6 pages
IOT Lab File
No ratings yet
IOT Lab File
49 pages
BGP Confederation and Communities Labb
100% (1)
BGP Confederation and Communities Labb
11 pages
Configuracion en Packet Tracer
No ratings yet
Configuracion en Packet Tracer
5 pages
Cisco Unified Wireless Network Solution Overview
No ratings yet
Cisco Unified Wireless Network Solution Overview
20 pages
Lab 1: Basic Cisco Device Configuration: Topology Diagram
No ratings yet
Lab 1: Basic Cisco Device Configuration: Topology Diagram
16 pages
2.7.6 Packet Tracer - Implementing Basic Connectivity - ILM
No ratings yet
2.7.6 Packet Tracer - Implementing Basic Connectivity - ILM
4 pages
BCMSN Lab - Qos Lab 8-1-10 2 en
No ratings yet
BCMSN Lab - Qos Lab 8-1-10 2 en
6 pages
4.4.1.2 Lab - Configuring Zone-Based Policy Firewalls
No ratings yet
4.4.1.2 Lab - Configuring Zone-Based Policy Firewalls
13 pages
8.1.5.5 Lab Configuring Advanced EIGRP For IPv4 Features
No ratings yet
8.1.5.5 Lab Configuring Advanced EIGRP For IPv4 Features
11 pages
Lab: Vlan and Trunking
No ratings yet
Lab: Vlan and Trunking
4 pages
CCNP Enterprise Workbook v1.0
No ratings yet
CCNP Enterprise Workbook v1.0
99 pages
PT Activity 2.6.1: Packet Tracer Skills Integration Challenge
No ratings yet
PT Activity 2.6.1: Packet Tracer Skills Integration Challenge
5 pages
Free Download: BGP Lab Manual PDF
No ratings yet
Free Download: BGP Lab Manual PDF
5 pages
Lab-00-01 - Configure Cisco 3600 Router To Use As A Switch in GNS3
No ratings yet
Lab-00-01 - Configure Cisco 3600 Router To Use As A Switch in GNS3
1 page
CCNA 3 Exploration ESwitching Final Exam Form3 V 4.0
No ratings yet
CCNA 3 Exploration ESwitching Final Exam Form3 V 4.0
17 pages
Mastering The XMPP Framework: Develop XMPP Chat Applications for iOS
From Everand
Mastering The XMPP Framework: Develop XMPP Chat Applications for iOS
Peter van de Put
4.5/5 (2)
Learning SaltStack - Second Edition
From Everand
Learning SaltStack - Second Edition
Colton Myers
No ratings yet
Configuring IPCop Firewalls: Closing Borders with Open Source
From Everand
Configuring IPCop Firewalls: Closing Borders with Open Source
Barrie Dempster
No ratings yet
Basic Setup of FortiGate Firewall
From Everand
Basic Setup of FortiGate Firewall
Dr. Hidaia Mahmood Alassoulii
No ratings yet
Configuration of a Simple Samba File Server, Quota and Schedule Backup
From Everand
Configuration of a Simple Samba File Server, Quota and Schedule Backup
Dr. Hidaia Mahmood Alassouli
No ratings yet
Mastering The Spritekit Framework: Develop Professional Games With This New Ios 7 Framework
From Everand
Mastering The Spritekit Framework: Develop Professional Games With This New Ios 7 Framework
Peter van de Put
No ratings yet
Configuration of Microsoft ISA Proxy Server and Linux Squid Proxy Server
From Everand
Configuration of Microsoft ISA Proxy Server and Linux Squid Proxy Server
Dr. Hidaia Mahmood Alassouli
No ratings yet
Ultimate Azure IaaS for Infrastructure Management
From Everand
Ultimate Azure IaaS for Infrastructure Management
Dean Cefola
No ratings yet
Oracle VM Manager 2.1.2
From Everand
Oracle VM Manager 2.1.2
Tarry Singh
No ratings yet
SUNDRAY AP-S500 Pro Wireless Access Point: Product Overview
No ratings yet
SUNDRAY AP-S500 Pro Wireless Access Point: Product Overview
9 pages
Huawei
No ratings yet
Huawei
14 pages
User's Manual: Wireless LAN Access Point
100% (1)
User's Manual: Wireless LAN Access Point
30 pages
Entelizone Ezntwi Series
No ratings yet
Entelizone Ezntwi Series
127 pages
CCIE Enterprise Wireless v1 - 0 Lab Video Series 1 ToC
No ratings yet
CCIE Enterprise Wireless v1 - 0 Lab Video Series 1 ToC
11 pages
Wi Fi Stalking
No ratings yet
Wi Fi Stalking
18 pages
Introduction To 802.11ax
No ratings yet
Introduction To 802.11ax
11 pages
M C Module 4 - Wi-Fi
No ratings yet
M C Module 4 - Wi-Fi
64 pages
Chapter 7 v8.0
No ratings yet
Chapter 7 v8.0
29 pages
Chapter 21: Troubleshooting Wireless Connectivity: Instructor Materials
No ratings yet
Chapter 21: Troubleshooting Wireless Connectivity: Instructor Materials
30 pages
Supernet Instruction Manual
100% (1)
Supernet Instruction Manual
24 pages
User's Manual: Wireless Access Point Model No.: SP918GL
No ratings yet
User's Manual: Wireless Access Point Model No.: SP918GL
36 pages
Unit 2
No ratings yet
Unit 2
53 pages
Lab 11: Endpoint Profiling and Reports
No ratings yet
Lab 11: Endpoint Profiling and Reports
14 pages
Unit2 WLAN
No ratings yet
Unit2 WLAN
29 pages
RN Smcwebt-G Etsi v1 09 2
No ratings yet
RN Smcwebt-G Etsi v1 09 2
2 pages
User Guide - English PDF
No ratings yet
User Guide - English PDF
71 pages
Sdconnect C4 Wifi Settings Windows 10 & Windows 7
No ratings yet
Sdconnect C4 Wifi Settings Windows 10 & Windows 7
2 pages
PT WC G1 User Manual
No ratings yet
PT WC G1 User Manual
16 pages
Wireshark 802.11 v7.0
No ratings yet
Wireshark 802.11 v7.0
5 pages
User Manual: D-Link DMG-112A N300 Wireless Range Extender
No ratings yet
User Manual: D-Link DMG-112A N300 Wireless Range Extender
45 pages
Cisco DNA Center Assurance 1.3 - Instant Demo
No ratings yet
Cisco DNA Center Assurance 1.3 - Instant Demo
33 pages
WA6526E New Generation 802.11ax Indoor Series AP Datasheet
No ratings yet
WA6526E New Generation 802.11ax Indoor Series AP Datasheet
18 pages
T Mobile Arcadyan kvd21 User Guide English
No ratings yet
T Mobile Arcadyan kvd21 User Guide English
25 pages
jitu (1)
No ratings yet
jitu (1)
36 pages
Tl-wn8200nd User Guide
No ratings yet
Tl-wn8200nd User Guide
31 pages
DHCP Options
No ratings yet
DHCP Options
4 pages

Lab 21 - Public & Enterprise Wlan Users Differentiation

Uploaded by

Lab 21 - Public & Enterprise Wlan Users Differentiation

Uploaded by

21/4/2016

You might also like