Chapter 4 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Scenarios - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Chapter 4
On the RADIUS server
Define the following:
1. Define accounts for the CN3000, guests, and employees.
2. In the employee account, setup support for VLAN mapping by defining the following
3. In the CN3000 account, add an access list definition that blocks guests from
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 93 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
RADIUS attributes:
• Tunnel-type: Set to "VLAN".
• Tunnel-medium-type: Set to "802".
• Tunnel-private-group-id: Set to the VLAN number.
See
"VLAN support" on page 171
reaching the corporate network. For example,
access-list=guest,DENY,all,192.168.30.0/24,all
(Provided 30.x is the corporate network.)
See
"Access list" on page 168
for more information.
for details.