So I’ve been testing out the concept of supplying public IPs to wireless subscribers using VPLS with MPLS.
With my MPLS and VPLS circuit being terminated at my tower’s router, how do I supply both private and public IP addresses via the same sector antenna?
That is, two subscribers physically side by side connecting via the same sector antenna to my network but one has a basic subscription with a private IP and the other has a premium service subscription with a public IP.
I’m guessing the answer here is to use VLANs. How are you guys doing this today?
It’s possible to use more than one address on one interface of the router - one public and one private.
Use the public address as the gateway for premium customers and the private for basic customers.
It’s a very simple way to do it, the clients are not separated in terms of L2. There are several more complicated ways to do it, using virtualAP’s is one of them.
This sounds like the same concept as putting a Cable Modem from one ISP on a switch then adding a DLS modem from another ISP on to the same switch (same ethernet segment), then connecting a client to the same switch. The client (CPE) would then just have a manually configured address which would either be from one of two ISPs.
This doesn’t sound to secure to me. I guess it’s fine once the end users don’t have access to modify the CPE configuration.
Anyone else? Any other thoughts on this? Is there anything to be gained by a ‘more complex’ configuration?
Are you referring to virtual APs? Guess not, as each virtual ap behave like independent interface which can be used not only for bridging but also for routing and vlan tagging. And you can use firewall, even on the bridge. Other way is to use tunnel between the client device and a place where you manage the ip addresses.
