Hi
i trying to get guest access working in our remote AP branche offices.
For general split-tunnel for corporate devices is working. Corporate iphones are route src natted to local internet acces where rap is connected to.
So i wanted to get guest ssid working. So I followed the guide here:
Airheads CommunityI created a dedicated vlan on controller for providing dhcp to the clients.
So I have a question for DNS:
Is it possible to use external DNS Servers in the Internet?
I don't not want to have any traffic from guest users within my corporate network.
Because of the fact my clearpass login-page is reachable over internet for my opinion there is no need to use corporate DNS servers.
So I try to keep things simple I wrote new logon role where i permit dhcp and route src-nat https traffic to cp.
Result: Spalsh page is not appearing and not reachable by manual connect.
So will external dns and external cp work?
------------------------------
Florian Kueck
------------------------------