IP-adres when using the portal for guest-wifi

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

IP-adres when using the portal for guest-wifi

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
IP-adres when using the portal for guest-wifi
IP-adres when using the portal for guest-wifi
2022-03-28 19:59:26
Hardware Version:
Firmware Version:

Team,

 

We have assigned wifi guest access to vlan 100.

And of course, this includes a different subnet for guest access.

The management is in vlan-1.

 

However, guests are still trying to connect to the management-vlan-IP-adres of the controller as being the portal

Versus the vlan-100 IP-adres of the controller (i.e. where the portal resides for that specific vlan).

 

For example - the management vlan is 192.168.9.0/24.

The default gw is 192.168.9.240. The controller, the wifi-guest-portal and the DNS-server are running on the same VM with ip 192.168.9.235.

 

For vlan-100 this 9-subnet is replaced with 192.168.100.*/24.

This includes the default gw (i.e. .100.240), the controller, the wifi-guest-portal and the DNS-server (all three are .100.235)

 

The Omada-cloud portal shows all the vlan IP's. Meanung it looks like the controller is vlan aware?

 

How do I enforce the wifi-guest-clients to use the portal-IP-address of vlan-100?

 

 

With warm regards - Will

 

*** making it run like clockwork ***
  0      
  0      
#1
Options
3 Reply
Re:IP-adres when using the portal for guest-wifi
2022-03-29 09:20:39

Dear @ITV ,

 

ITV wrote

However, guests are still trying to connect to the management-vlan-IP-adres of the controller as being the portal

 

Versus the vlan-100 IP-adres of the controller (i.e. where the portal resides for that specific vlan).

For example - the management vlan is 192.168.9.0/24.

The default gw is 192.168.9.240. The controller, the wifi-guest-portal and the DNS-server are running on the same VM with ip 192.168.9.235.

For vlan-100 this 9-subnet is replaced with 192.168.100.*/24.

This includes the default gw (i.e. .100.240), the controller, the wifi-guest-portal and the DNS-server (all three are .100.235)

The Omada-cloud portal shows all the vlan IP's. Meanung it looks like the controller is vlan aware?

How do I enforce the wifi-guest-clients to use the portal-IP-address of vlan-100?

 

This is normal, because your controller itself is in the management VLAN, and the controller itself has only one interface, if it is in the management VLAN then it can only have the IP of the management VLAN, and your client also needs to use the portal configuration on the controller, the client is required to communicate with the The client needs to communicate with the Controller for authentication.

 

Unless the controller goes offline, they can not communicate with each other, but in this time the controller's portal function will be also disabled.

 

Best Regards!

Best Regards! >> Omada EAP Firmware Trial Available Here << >> Get the Latest Omada SDN Controller Releases Here << *Try filtering posts on each forum by Label of [Early Access]*
  1  
  1  
#2
Options
Re:IP-adres when using the portal for guest-wifi
2022-04-18 09:07:43

  @Hank21 

 

Sorry for the late response - was pretty busy these last few weeks/days.

 

In our case the controller (i.e. Linux-software) is available in all vlans.

See also attached screenshot: this is (more-or-less) confirmed by the cloud portal.

Meaning the controller and guest portal is also in all vlans based on an IP-address within its own subnet.

 

2 questions:

(1) - Why create a security risk by giving guest-devices access to a management vlan?

(2) - How would you configure a guest-vlan when working with a guest-portal?

 

 

With warm regards - Will

 

 

 

*** making it run like clockwork ***
  0  
  0  
#3
Options
Re:IP-adres when using the portal for guest-wifi
2022-04-19 04:32:09
You can change the Controller HTTP/HTTPS port to improve the security. It's on Settings-->Controller-->Access Config-->HTTPS Port for Controller Management
  0  
  0  
#4
Options