OEAP - Office Extend AP
Uses the WLC to connect remote users by using Access Points and DTLS tunnels.
Can use most APs, specific APs (600 and 700 series) add extra features for this use case.
- Ethernet ports on the AP can also be tunneled back to the WLC
- Can have a second guest SSID that the user can use for their home network
WLC can have public IP or NAT UDP ports 5246 and 5247
WLC needs to have the data encryption licence
Create WLAN
Create a new WLAN and configure security settings
Create a new Remote LAN (if also using the wired ports)
Create AP Group
- Add WLAN and Remote LAN
- Add APs
- Enable Ethernet ports and select Remote LAN
AP Configuration
Change AP Mode to FlexConnect
On the High Availability tab, enter the public IP of the WLC
On the FlexConnect tab, enable OfficeExtend AP
WLC NAT Configuration
On the interface settings, enable NAT and enter the public IP of the controller.
Once the interface is in NAT mode, APs on the local network will be unable to register with the controller. Create an additional interface on the WLC for the local APs to utilize.
Local AP Settings
Connect to the IP address of the AP with a web browser.
Default username and password is admin
The personal SSID can be configured similarly to a typical home router.
Local access can be disabled globally.
