We have a separate Network team here, but I do know that they use Aruba APs, which have policies that tie into AD groups. We have a Guest network, that has limited access, mainly just gets out to the WWW and the applicable server-related apps.
Don Guyer Systems Engineer - Information Services Prudential, Fox & Roach/Trident Group 431 W. Lancaster Avenue Devon, PA 19333 Direct: (610) 993-3299 Fax: (610) 650-5306 don.gu...@prufoxroach.com -----Original Message----- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, June 08, 2010 7:29 PM To: NT System Admin Issues Subject: OTish: Wireless network configuration All, We've got a decent wireless network at $WORK, but I'm dissatisified with it, because it lacks good guest access. We have 18 Cisco 1240ag WAPs talking with 3 HP POE switches, which currently are in our HP 3400cl layer 3 switch on our production network. There's a single SSID across all of them, and I've got them all configured on a single VLAN. Works great, but as mentioned there is no guest access. I could just stick them all physically outside our firewall, and give the wireless users an IPSec VPN client, but I really would prefer not to do that. I've been doing some reading, but don't have a good handle on how to move to a configuration that would work well - without the VPN, that is. I'm casting about for ideas - anyone have a solution they like? Preferably without spending tons of money, of course. Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~