Hi,
Running v5.25 at present on an accesspoint, with currently 3 VLANs :
#x1 = mgmt (default gateway also there)
#x2 = office with 802.1X
#x3 = guest with captive portal
So far so good, everything seems to work just fine.
Guest network uses the AP to provide IP addresses, but our firewall could handle this as well (probably even preferred)
In any case, when user connects to the Guest network, it (as expected) uses the default gateway … which happens to lie in my mgmt network.
And that’s not really preferred.
Would it be possible to put the guest network in it’s own routing table with it’s own default gateway ?
I tried to put the VAP interface into it’s own VRF. This seemed to work well after creating some routes, but I doubt if it was really correct.
As I was still able to reach for example the mgmt IP of the AP
Hope someone could explain if it’s possible what I’d like to do (and preferably some pointers). Perhaps simply only some PBR and firewall rules ?
Thanks for any clue 