Cisco Cisco 4404 Wireless LAN Controller テクニカルリファレンス

The anchor function on a controller includes tunnel termination, web authentication, and access control.

A Cisco 4400 series controller is the most cost effective controller that can be used as an Anchor 
controller in the DMZ. 

If the controller is used for guest access and tunnel termination functions only, a Cisco 4402 with 
12 access point support is sufficient as it is not used to manage LWAPP access points in the network. 
Additionally, the Cisco 4400 supports up to 2,500 simultaneous users and has a forwarding capacity 
of 2 Gbps. 

If your guest access network deployment requires more than 2 Gbps throughput, you can use a Cisco 
4404 or Cisco WiSM as an Anchor controller. 

A single Cisco 4400 series controller or Cisco Catalyst 3750G Integrated wireless LAN 
controller can support EoIP tunnels from up to 40 other controllers. 

A Cisco WiSM, which consists of two independent controllers, can support up to 80 EoIP 
tunnels.

170418

Internet

Internet

routers

External

firewall

Internet

routers

Remote
building

Remote
building

SSID Client Default Gateway

= Guest
= Internal
= Internal

SSID: secure
SSID: guest

SSID: secure
SSID: guest

Internal

network

External DMZ

WLC

WLC

WLC

Tunnel to

Virtual Anchor

Virtual Anchor Controller
SSID: guest
RateLimit = 500Kbps

External Services
External DNS server
WEB Server