Related Topics

AP Device Deployment with Simple Roaming

To extend the range of an SSID over a larger physical area, you can assign the same SSID to multiple AP devices. When a wireless user moves to a different location on your physical network, the wireless client can automatically connect to a different AP device that has a stronger signal for that SSID. This eliminates the need for users to manually reconnect when they move their wireless devices around your office. Simple roaming relies on the wireless client to switch between wireless access points.

For this deployment scenario, you can connect each AP device directly to a trusted Firebox interface, or to a switch on the trusted network. As long as you connect all AP devices to interfaces in the same network security zone, wireless clients that connect to the SSID can roam between the AP devices.

The diagram below shows three AP devices connected to the trusted network, two connected to a switch, and one connected to a trusted interface on the Firebox. All AP devices use the same SSID.

Diagram of a network with three AP devices on the same network

AP Deployment and Firebox Policies

Note these policy considerations depending on how you connect your AP devices to the network:

  • If you connect the AP device directly to a Firebox interface, the wireless users do not automatically have access to trusted resources connected to other trusted interfaces. You still need to create policies to allow that traffic because the wireless users are on a separate trusted network. The default policies only allow outbound traffic from trusted networks, but do not allow traffic between devices on different trusted networks.
  • If you connect the AP device to a switch on the trusted network, the wireless users can access other network resources on the network connected to the same interface. You do not need to create additional policies to allow access because the traffic does not go through the Firebox, but you do need to create policies for traffic to any other trusted interface.

Configure a Firebox Interface and Enable DHCP

To connect the AP device directly to a Firebox interface, configure that interface as a Trusted or Optional interface. Enable the DHCP server or DHCP relay on that interface so that the Firebox can automatically assign an IP address to the AP device and to wireless clients.

Add the SSID to the Gateway Wireless Controller

After you have configured the SSID, you can pair any additional AP devices with the Firebox, and assign this SSID to the radios on each AP device.

See Also

About AP Device Configuration

Configure AP Devices with the Gateway Wireless Controller

Give Us Feedback     Get Support     All Product Documentation     Technical Search