Guest network integrating a self registration CWP and GRE tunnel?

  • 1
  • Question
  • Updated 2 years ago
I have a remote site in need of guest access. I have successfully created an open ssid with GRE tunneling into our dmz.

I am now attempting to integrate a self registration cwp in order to provide encrypted WLAN access to authorized users. I am using the AP with dmz access as the PPSK server. My issue: It seems once a device is placed in the dmz across the tunnel, it is unable to access the cwp to progress through the normal procedure.

In my testing, I used the "Override the VLAN ID used during registration" in the self registration ssid config, which puts me in the internal remote vlan in order to get an ip address via dhcp. At this point I receive an internal ip address, which allows me to manually open a browser, manually open a connection to (cwp), register and receive the PPSK, manually connect to the hidden guest ssid, enter the PPSK, then finally get placed in the guest vlan to traverse across the tunnel and receive remote internet access. 

I certainly cannot expect guest users to attempt to figure this out without being barraged. Has anyone out there faced this scenario?

Photo of BJ

BJ, Champ

  • 373 Posts
  • 45 Reply Likes

Posted 3 years ago

  • 1
Photo of Uli Saur

Uli Saur

  • 26 Posts
  • 1 Reply Like
Hi BJ,

if you sent a dns server with dhcp that is reachable from your internal remote VLAN the guest only has to open a random URL in his browser and will be redirected to the cwp. That works usually the same way as without a GRE tunnel.