Cisco Cisco 4404 Wireless LAN Controller 技术参考

For the example in this deployment guide, the remote and the DMZ anchor controllers are assigned to 
the same mobility group. Generally, implementing the guest tunneling feature does not require that the 
remote and DMZ anchor controllers be in the same mobility group. 

The anchor function on a controller includes tunnel termination, web authentication, and access control.

A Cisco 4400 series controller is the most cost effective controller that can be used as an anchor 
controller in the DMZ interface off the firewall. 

If the controller is used for guest access and tunnel termination functions only, a Cisco 4402 with 
12 access point support is sufficient as it is not used to manage LWAPP access points in the network. 
Additionally, the Cisco 4400 supports up to 2,500 simultaneous users and has a forwarding capacity 
of 2 Gbps. 

If your guest access network deployment requires more than 2-Gbps throughput, you can use a Cisco 
4404 or Cisco WiSM as an anchor controller. 

A single Cisco 4400 series controller or Cisco Catalyst 3750G Integrated wireless LAN 
controller can support EoIP tunnels from up to 40 other controllers. 

Wireless

VLANs

Internet

WLC

Guest

EtherIP

"Guest Tunnel"

EtherIP

"Guest Tunnel"

Guest VLAN - 10.10.60.x /24
Secure VLAN - 10.1.30.x /24
Management - 10.10.50.2
AP-Manager - 10.10.50.3

Guest VLAN - 10.10.60.x /24
Secure VLAN - 10.1.30.x /24

Campus Core

LWAPP

Secure

LWAPP

Guest  Secure

170446

Guest  Secure