1 00:00:05,610 --> 00:00:05,970 Okay. 2 00:00:05,970 --> 00:00:08,000 So that last ping succeeded. 3 00:00:08,010 --> 00:00:09,900 I'll ping the controller again. 4 00:00:10,290 --> 00:00:12,750 And as you can see, the pings are now succeeding. 5 00:00:12,900 --> 00:00:22,320 So I'll close this command prompt and go back to my browser and use HTTPS and browse to the IP address 6 00:00:22,320 --> 00:00:23,400 of the controller. 7 00:00:23,430 --> 00:00:33,990 If I used http, I get server reset connection needs to be https and now I can log in using my username 8 00:00:33,990 --> 00:00:38,220 of admin password of Cisco 1 to 3 click login. 9 00:00:39,120 --> 00:00:40,790 Again, it may be a bit slow. 10 00:00:40,800 --> 00:00:42,570 You need to be patient with us. 11 00:00:43,170 --> 00:00:49,110 If you go back to your packet tracer topology, you might see lots of traffic between the PC and the 12 00:00:49,110 --> 00:00:49,830 controller. 13 00:00:50,340 --> 00:00:53,130 Just wait for things to happen. 14 00:00:54,510 --> 00:00:54,780 Okay. 15 00:00:54,780 --> 00:01:02,170 So we can see the IP address of the controller IP version four IP version, six software version. 16 00:01:02,190 --> 00:01:05,360 We can see that it's been up for 2 minutes and 6 seconds. 17 00:01:05,370 --> 00:01:08,400 We can see other information about the controller. 18 00:01:08,490 --> 00:01:13,110 This is a very good representation of a real physical controller. 19 00:01:13,290 --> 00:01:17,820 Packet trace is great and once again is all you need for the CCNA exam. 20 00:01:18,180 --> 00:01:25,470 Spend time with the wireless LAN controller looking at the menu options for the exam, specifically 21 00:01:25,470 --> 00:01:27,750 under wireless LANs. 22 00:01:27,750 --> 00:01:36,240 So make sure that you understand, for instance, that when I click on w lan id one or wireless lan 23 00:01:36,240 --> 00:01:40,530 one, I can see the configuration of this wireless LAN controller. 24 00:01:40,800 --> 00:01:43,080 Now again, mine's running very slowly. 25 00:01:43,530 --> 00:01:47,040 You have to be patient with this program. 26 00:01:47,580 --> 00:01:52,470 So under general we can see profile name is staff, SSID is staff. 27 00:01:52,500 --> 00:01:53,790 It's enabled. 28 00:01:54,710 --> 00:02:02,510 We can see that radius policy is all management interfaces management spend time especially here under 29 00:02:02,510 --> 00:02:03,290 security. 30 00:02:03,530 --> 00:02:07,760 So layer two securities, WPA and WPA two. 31 00:02:08,530 --> 00:02:11,380 We're using a U.S. encryption. 32 00:02:11,950 --> 00:02:16,930 We're not using Ed or one X, we're using preset key. 33 00:02:16,930 --> 00:02:19,720 And here's our preset key if you need to change it. 34 00:02:20,960 --> 00:02:24,770 Under Layer three, no layer three security is enabled. 35 00:02:25,660 --> 00:02:28,670 And no triple-A servers are being used. 36 00:02:28,690 --> 00:02:31,690 We are not using Triple A in this example. 37 00:02:31,690 --> 00:02:34,600 We simply using preset keys. 38 00:02:34,990 --> 00:02:39,310 We can also see quality of service, staff, policy mapping and advanced settings. 39 00:02:39,670 --> 00:02:46,330 But now let's get the access points to register with the wireless LAN controller. 40 00:02:46,480 --> 00:02:54,310 Because at the moment under monitor, you'll notice that no access points have registered, no controllers 41 00:02:54,310 --> 00:02:56,770 have registered with the controller. 42 00:02:56,770 --> 00:03:02,680 And that's because we either need to configure them manually or we need to use a DHCP server. 43 00:03:02,860 --> 00:03:03,820 They have different options. 44 00:03:03,820 --> 00:03:09,010 You can use manual configuration on your access points to point them to the controller or use a DHCP 45 00:03:09,010 --> 00:03:12,910 server or use DNS to get them to learn about the controller. 46 00:03:12,910 --> 00:03:15,100 In this example, we'll use DHCP. 47 00:03:15,610 --> 00:03:20,080 So on the DHCP server, I'll click on the server and go to services. 48 00:03:20,230 --> 00:03:27,940 DHCP, we want to enable DHCP with the default gateway in this example being the switch. 49 00:03:27,940 --> 00:03:29,530 So I haven't configured the switch. 50 00:03:29,530 --> 00:03:31,720 So let's configure that right now. 51 00:03:32,440 --> 00:03:36,670 Otherwise you may keep wondering where is the default gateway? 52 00:03:36,910 --> 00:03:40,450 So I'll bypass the initial configuration on the switch. 53 00:03:40,720 --> 00:03:42,790 Give it a hostname of SSE one. 54 00:03:42,790 --> 00:03:45,700 Go on to interface VLAN one. 55 00:03:45,700 --> 00:03:46,780 No, shut it. 56 00:03:47,080 --> 00:03:48,160 IP address 57 00:03:48,160 --> 00:03:53,770 19216812542552450. 58 00:03:53,770 --> 00:04:01,870 So slash 24 mask and I'll save the config show IP interface brief scrolling all the way down. 59 00:04:01,870 --> 00:04:11,560 We can see the IP address is up up and we should be able to ping the controller from the switch assuming 60 00:04:11,560 --> 00:04:12,790 that everything is working. 61 00:04:12,790 --> 00:04:17,170 It took it a while, but there you go, switch keeping the controller. 62 00:04:17,230 --> 00:04:21,430 So the switch in this example is the default gateway. 63 00:04:21,670 --> 00:04:30,640 So back on the TFTP server, DNS server is going to be the local device 1921681253. 64 00:04:30,640 --> 00:04:36,220 So under config, we should probably configure the server with an IP address. 65 00:04:36,220 --> 00:04:46,600 So 1921681253 is going to be the IP address of this server and it's going to be configured with this 66 00:04:46,630 --> 00:04:54,490 DHCP information start IP address will be 1921681 100. 67 00:04:54,910 --> 00:04:59,170 I'll start the pool at 100 because the control is using one. 68 00:04:59,290 --> 00:05:03,490 So let's leave the lower IP addresses for the controller. 69 00:05:03,760 --> 00:05:09,370 Now, in a good deployment, you probably want to move your controller to the high end IP addresses 70 00:05:09,400 --> 00:05:12,790 in sort of the same range as the other network devices. 71 00:05:13,000 --> 00:05:17,950 But for the moment, again, I'm just wanting to keep it simple, so I'm going to leave it as that subnet 72 00:05:17,950 --> 00:05:21,850 mask is going to be 2552552550. 73 00:05:22,060 --> 00:05:25,720 Maximum number of IP addresses that will allocate is 50. 74 00:05:26,380 --> 00:05:27,850 This is really important. 75 00:05:27,850 --> 00:05:32,170 Make sure that you configure the wireless LAN controller IP address here. 76 00:05:32,350 --> 00:05:41,500 So 19216811 will be the wireless LAN controllers IP address and make sure that you click save to save 77 00:05:41,500 --> 00:05:42,520 that information. 78 00:05:42,820 --> 00:05:46,480 So I've just maximized the page. 79 00:05:46,930 --> 00:05:48,850 Here's a summary of what we've done. 80 00:05:48,850 --> 00:05:53,410 Server pool I left at default services enabled default gateways. 81 00:05:53,410 --> 00:05:55,720 The switch DNS server is the local server. 82 00:05:55,930 --> 00:06:03,970 Start IP address for the pool is 1921681 150 IP addresses will be allocated wireless LAN Controller 83 00:06:03,970 --> 00:06:06,670 IP address is 1921681.1. 84 00:06:07,390 --> 00:06:07,580 Okay. 85 00:06:07,690 --> 00:06:10,660 So that's the server configuration. 86 00:06:10,660 --> 00:06:13,660 Let's make sure that it can ping the wireless LAN controller. 87 00:06:14,020 --> 00:06:18,400 Basically, just want to test IP connectivity to make sure that things are working properly. 88 00:06:18,610 --> 00:06:22,270 And there you go so it can ping the wireless LAN controller. 89 00:06:23,080 --> 00:06:23,380 Okay. 90 00:06:23,380 --> 00:06:26,320 So on these access points, go to config. 91 00:06:27,050 --> 00:06:28,480 I don't want to use static. 92 00:06:28,490 --> 00:06:29,990 I want to use DHCP. 93 00:06:30,020 --> 00:06:36,890 I want it to get an IP address from the DHCP server and you can see it's already been given gateway 94 00:06:36,890 --> 00:06:39,260 information and DNS server information. 95 00:06:39,740 --> 00:06:46,610 So under wireless LAN controller, we have learnt who the primary wireless LAN controller is through 96 00:06:46,610 --> 00:06:47,390 DHCP. 97 00:06:47,420 --> 00:06:49,370 So it's 1921681.1. 98 00:06:50,200 --> 00:06:57,130 We can see other information about the app such as its IP address allocated once again using DHCP. 99 00:06:57,310 --> 00:06:59,540 We can see the radio information. 100 00:06:59,560 --> 00:07:01,870 I'm just going to leave that at default. 101 00:07:02,200 --> 00:07:06,820 Second access point makes sure that it's been given an IP address. 102 00:07:06,820 --> 00:07:08,380 So click on DHCP. 103 00:07:08,650 --> 00:07:09,790 There we go. 104 00:07:09,880 --> 00:07:11,070 Wireless LAN controller. 105 00:07:11,080 --> 00:07:14,050 It's learnt that IP address has been learnt. 106 00:07:14,050 --> 00:07:16,510 It's 19216811. 107 00:07:16,510 --> 00:07:20,380 So back on the PC, I'll make this bigger. 108 00:07:21,290 --> 00:07:23,300 I'll refresh monitor. 109 00:07:26,290 --> 00:07:30,100 Notice we've now learnt about two access points. 110 00:07:30,700 --> 00:07:33,070 Two apps have been discovered. 111 00:07:33,100 --> 00:07:38,620 If I click on detail, I can see access point one and access point two. 112 00:07:38,770 --> 00:07:40,270 Here the IP addresses. 113 00:07:40,270 --> 00:07:42,700 Here are the models of the access point. 114 00:07:43,000 --> 00:07:47,680 So the access points picked up the information through DHCP. 115 00:07:47,710 --> 00:07:52,060 They've got an IP address, they learnt about the controller and they've registered with the controller. 116 00:07:52,420 --> 00:07:53,890 So that's great. 117 00:07:54,340 --> 00:07:55,990 Go to monitor once again. 118 00:07:57,490 --> 00:07:59,710 IP address of controller. 119 00:08:00,220 --> 00:08:02,900 It's been up for 10 minutes scrolling down. 120 00:08:02,920 --> 00:08:07,870 We have got a 2.11 A and AC radios. 121 00:08:07,900 --> 00:08:10,150 We've also got BG and N radios. 122 00:08:10,150 --> 00:08:16,270 So two access points have been registered, but we have no clients at the moment. 123 00:08:16,630 --> 00:08:25,990 So let's go to Wireless LANs and let's add a new wireless LAN or wireless local area network. 124 00:08:26,230 --> 00:08:28,150 And I'm going to call this guest. 125 00:08:29,380 --> 00:08:30,520 And click apply. 126 00:08:30,880 --> 00:08:34,570 We've already got a staff or corporate. 127 00:08:35,309 --> 00:08:36,000 Network. 128 00:08:36,000 --> 00:08:37,710 So let's create a guest network. 129 00:08:38,280 --> 00:08:39,480 I'll enable this. 130 00:08:41,230 --> 00:08:42,730 Everything else is a default. 131 00:08:42,730 --> 00:08:43,990 Go to security. 132 00:08:44,500 --> 00:08:46,590 Layer two Security will be none. 133 00:08:46,600 --> 00:08:54,100 In this example, I want this to be an open guest network now again in the real world and in subsequent 134 00:08:54,100 --> 00:08:55,450 examples, I'll show you this. 135 00:08:55,450 --> 00:09:01,720 We definitely don't want the guest network in the same VLAN as the corporate network. 136 00:09:01,720 --> 00:09:04,930 We'd want to put that in a separate subnet. 137 00:09:05,230 --> 00:09:12,580 So we we'd want guests in a separate subnet to corporate network make sense for security reasons. 138 00:09:12,580 --> 00:09:15,310 But for the moment, we just want to get it started. 139 00:09:15,310 --> 00:09:17,140 I want to show you how to get an access point. 140 00:09:17,140 --> 00:09:19,600 Working with a wireless LAN controller. 141 00:09:19,600 --> 00:09:23,440 What's important is that you understand these options. 142 00:09:23,440 --> 00:09:26,230 So notice layer two, there's no security here. 143 00:09:26,470 --> 00:09:29,950 Layer three, no security, no triple A service. 144 00:09:30,340 --> 00:09:37,930 All I did was create a guest network and enable it and set the security to nothing. 145 00:09:38,500 --> 00:09:44,080 And I've clicked apply now, so we should have two wireless networks. 146 00:09:44,080 --> 00:09:45,790 I'll click back to go back. 147 00:09:46,580 --> 00:09:48,500 We should have two wireless networks. 148 00:09:48,500 --> 00:09:49,380 And there you go. 149 00:09:49,400 --> 00:09:51,280 Both of them are enabled. 150 00:09:51,290 --> 00:09:55,080 One is using WPA two authentication pre shared key. 151 00:09:55,100 --> 00:09:57,630 One of them is using no security. 152 00:09:57,650 --> 00:09:59,360 Both are enabled. 153 00:10:00,560 --> 00:10:03,380 So we've got our network, but we haven't got clients. 154 00:10:03,380 --> 00:10:06,290 So next step is let's get some clients into this network. 155 00:10:06,710 --> 00:10:09,320 So I'll move this up a little bit. 156 00:10:10,820 --> 00:10:15,470 Let's get two laptops into the network. 157 00:10:15,500 --> 00:10:19,910 So laptop one, laptop two, first laptop. 158 00:10:19,910 --> 00:10:26,750 Let's configure the laptop to use the guest network just so that we can start with something very basic. 159 00:10:26,960 --> 00:10:33,930 Now, at the moment, we haven't got a wireless network adapter in this laptop. 160 00:10:33,950 --> 00:10:38,120 If I go to config, I've got fast Ethernet zero and Bluetooth. 161 00:10:38,150 --> 00:10:42,150 What I want is a wireless network adapter in this laptop. 162 00:10:42,170 --> 00:10:48,260 This is an old laptop, so I'm going to swap out the Ethernet module for a wireless module. 163 00:10:48,290 --> 00:10:54,620 You have to turn the laptop off and then turn it on to insert that wireless network interface card. 164 00:10:54,710 --> 00:10:59,270 Now today in modern laptops, we generally have wireless, not physical Ethernet. 165 00:10:59,270 --> 00:11:05,270 But this shows you nicely how we replace a network interface card that's physical wired Ethernet with 166 00:11:05,270 --> 00:11:07,130 a wireless network interface card. 167 00:11:07,370 --> 00:11:13,760 So now under config notice, we have wireless on the other laptop, which I haven't made that change 168 00:11:13,760 --> 00:11:15,590 on notice under config. 169 00:11:15,590 --> 00:11:21,200 We still have fast ethernet, but this laptop now has wireless is zero. 170 00:11:21,470 --> 00:11:25,280 We don't want to use any authentication. 171 00:11:25,310 --> 00:11:30,680 We want to join the guest network and we want to use DHCP. 172 00:11:30,800 --> 00:11:33,560 Notice the IP address at the moment is 169. 173 00:11:35,690 --> 00:11:41,510 But if that's configured right and I've just moved out of that tab, you'll notice it's now connected 174 00:11:41,510 --> 00:11:50,840 to the wireless network and IP address has changed to one on 21681 104, which means that if I open 175 00:11:50,840 --> 00:11:54,920 up a command prompt, I should I'll make this bigger. 176 00:11:55,070 --> 00:12:01,220 I should be able to ping 1921681254, which is the switch. 177 00:12:01,220 --> 00:12:02,120 And I can. 178 00:12:02,330 --> 00:12:12,320 So I've now got a client connected to the network using the guest ssid let's get this guy connected 179 00:12:12,320 --> 00:12:14,510 to the corporate network. 180 00:12:14,720 --> 00:12:16,700 So first thing is under physical. 181 00:12:17,300 --> 00:12:19,130 I've got to turn the laptop off. 182 00:12:19,160 --> 00:12:21,740 Notice what happens when I try and take this. 183 00:12:21,740 --> 00:12:24,290 When it's turned on, I get an error. 184 00:12:24,500 --> 00:12:30,140 So I've got to turn it off, drag this network interface card out, put a wireless network interface 185 00:12:30,140 --> 00:12:33,020 card into the laptop, go to config. 186 00:12:33,440 --> 00:12:34,370 Well got it. 187 00:12:34,370 --> 00:12:37,100 Powered on first, then go to config. 188 00:12:37,280 --> 00:12:42,050 And now under wireless zero, I can specify what I'm using. 189 00:12:42,050 --> 00:12:45,540 I'm not using WPA k. 190 00:12:45,590 --> 00:12:49,790 I need to use WPA to ask why. 191 00:12:50,210 --> 00:12:54,980 Jumping back to the wireless LAN controller, we're using WPA two. 192 00:12:55,520 --> 00:12:59,240 So back on that laptop key is Cisco. 193 00:12:59,270 --> 00:13:00,410 One, two, three. 194 00:13:01,310 --> 00:13:03,190 I want to join. 195 00:13:03,200 --> 00:13:04,210 What did I call it? 196 00:13:04,220 --> 00:13:04,940 Stuff. 197 00:13:04,970 --> 00:13:07,040 I want to join the staff network. 198 00:13:07,580 --> 00:13:09,080 IP addresses this. 199 00:13:09,380 --> 00:13:11,000 Just want to show you the diagram. 200 00:13:11,390 --> 00:13:14,000 As soon as I make that change. 201 00:13:15,120 --> 00:13:16,980 So it's really actually picked it up. 202 00:13:17,010 --> 00:13:20,080 Notice it's now connected to the wireless network. 203 00:13:20,100 --> 00:13:22,510 It's been given this IP address. 204 00:13:22,530 --> 00:13:28,950 So under desktop command, prompt paying 192168254. 205 00:13:28,980 --> 00:13:29,690 That works. 206 00:13:29,700 --> 00:13:32,370 Can I ping the other laptop? 207 00:13:32,520 --> 00:13:33,630 104. 208 00:13:35,700 --> 00:13:36,840 That works. 209 00:13:37,110 --> 00:13:44,460 So this device has an IP address of 121681 105 on the other laptop. 210 00:13:44,790 --> 00:13:50,420 IP config has IP address 192168114. 211 00:13:50,460 --> 00:13:53,810 It should be able to ping 105 and it can. 212 00:13:53,820 --> 00:13:57,180 Now, in the real world, you don't want to do that. 213 00:13:57,210 --> 00:14:03,240 You don't want your well, generally, you don't want your guests having access to your corporate network, 214 00:14:03,240 --> 00:14:04,320 as I explained. 215 00:14:04,320 --> 00:14:13,170 But I wanted to show you how easy it is to get a network working in packet tracer with a controller 216 00:14:13,410 --> 00:14:16,530 with two access points with. 217 00:14:17,260 --> 00:14:18,100 PCs.