Netgear WG302v2 Application Note: Deploy a ProSecure UTM in a Multi SSID Multi
Netgear WG302v2 - ProSafe 802.11g Wireless Access Point Manual
View all Netgear WG302v2 manuals
Add to My Manuals
Save this manual to your list of manuals |
Netgear WG302v2 manual content summary:
- Netgear WG302v2 | Application Note: Deploy a ProSecure UTM in a Multi SSID Multi - Page 1
describes the steps to undertake in configuring a UTM 10 (Firmware version 1.0.16-0) and a WNDAP330 (Firmware version 3.0.3) to host a multi- below shows a typical scenario. UTM 10 Configuration LAN IP 192.168.1.1 VLAN1 (Corporate - default) IP 192.168.1.1 Membership: Port 1, 2, 3, 4 DHCP enabled - Netgear WG302v2 | Application Note: Deploy a ProSecure UTM in a Multi SSID Multi - Page 2
Table of Contents Network Setup ...3 Physical setup...3 Logical setup ...3 UTM10 Configuration ...4 Create a new VLAN ...4 AP configuration (WNDAP330 5 Create a new SSID ...5 Further Notes ...6 Testing ...6 Managing devices ...6 Version 2.0 - Netgear WG302v2 | Application Note: Deploy a ProSecure UTM in a Multi SSID Multi - Page 3
Network Setup Physical setup Layer 2/Layer 3 switch Port 0/1 connected to UTM10 Port 2 Wireless AP LAN port connected to UTM10 Port 1 UTM10 WAN port connected to the Internet Logical setup UTM 10 Configuration LAN IP 192.168.1.1 VLAN1 (default) IP 192.168.1.1 Membership: Port 1, 2, 3, 4 DHCP - Netgear WG302v2 | Application Note: Deploy a ProSecure UTM in a Multi SSID Multi - Page 4
UTM10 Configuration Create a new VLAN Access the VLAN configuration via Network Config, LAN settings, LAN Setup. VLAN1 exists on the default configuration and all the ports are members of it. Change VLAN1 Profile name to Corporate by simply editing the VLAN profile. Click on Add... to create a new - Netgear WG302v2 | Application Note: Deploy a ProSecure UTM in a Multi SSID Multi - Page 5
(WNDAP330) Create a new SSID Access the AP configuration via Security, Profile settings (by default all only the SSID Netgear is active, whilst all the SSIDs are assigned to VLAN 1 In the bottom of the page click on Edit to modify the Netgear profile name and SSID to Corporate - note how - Netgear WG302v2 | Application Note: Deploy a ProSecure UTM in a Multi SSID Multi - Page 6
to access the Internet or ping the IP address assigned to the UTM in the VLAN associated to the SSID. Ensure the Wireless client obtains 30. WNDAP330 The unit will be managed, upon being configured, from a device (wired or wireless) connected to a port in VLAN1 ,as VLAN 1 is the management VLAN for
Version 2.0
UTM (Unified Threat Management) in a multi-SSID multi-VLAN network with
traffic separation
This document describes the steps to undertake in configuring a UTM 10 (Firmware version
1.0.16-0) and a WNDAP330 (Firmware version 3.0.3) to host a multi-SSID and multi-VLAN
network.
The solution will allow separating the Wireless traffic and Wired traffic of each of the VLANs
configured, from any other VLAN which will exist on the Wired or Wireless LAN
–
maintaining
same VLAN communication.
The diagram below shows a typical scenario.
AP configuration (WNDAP330)
LAN IP
192.168.1.235
Untagged VLAN: 1
–
Management VLAN: 1
SSID Corporate
–
VLAN 1(ID 1)
SSID Guest
–
VLAN 20 (ID 20)
SSID Engineering
–
VLAN30 (ID 30)
Corporate
Guest
Engineering
UTM Port 1 to AP LAN
UTM 10 Configuration
LAN IP
192.168.1.1
VLAN1
(Corporate - default)
IP 192.168.1.1
Membership: Port 1, 2, 3, 4
DHCP enabled 192.168.1.x/24
VLAN20
(Guest1)
IP 192.168.20.1
Membership: Port 1
DHCP enabled 192.168.20.x/24
VLAN30
(Engineering)
IP 192.168.30.1
Membership: Port 1
DHCP enabled 192.168.30.x/24
UTM Port 2 to Switch 0/1
Internet
Wired LAN 192.168.1.x/24
Layer 2/ Layer 3 switch configuration
LAN IP
192.168.1.239
Management VLAN: 1
Membership : all ports Untagged in
VLAN1