An engineer is configuring Local WebAuth on a Cisco Wireless LAN Controller. According to RFC 5737, which virtual IP address must be used in this configuration?
An engineer is configuring Local WebAuth on a Cisco Wireless LAN Controller. According to RFC 5737, which virtual IP address must be used in this configuration?
According to RFC 5737, the blocks of IP addresses 192.0.2.0/24 (TEST-NET-1), 198.51.100.0/24 (TEST-NET-2), and 203.0.113.0/24 (TEST-NET-3) are reserved for documentation purposes. The IP address 192.0.2.1 falls within the 192.0.2.0/24 range and is intended for such purposes. Therefore, the correct virtual IP address for configuring Local WebAuth on a Cisco Wireless LAN Controller is 192.0.2.1.
3. Documentation Address Blocks The blocks 192.0.2.0/24 (TEST-NET-1), 198.51.100.0/24 (TEST-NET-2), and 203.0.113.0/24 (TEST-NET-3) are provided for use in documentation.
This can be confirmed in page 14 of this document: https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/config-guide/web-authentication/b-configuring-web-based-authentication-on-cisco-catalyst-9800-series-controllers.pdf
page 75 shows config better
This is a very tricky question because a few years back Cisco was recommending the use of 1.1.1.1 as VIP with the WLC. D is correct.
192.0.2.1 for sure
3. Documentation Address Blocks The blocks 192.0.2.0/24 (TEST-NET-1), 198.51.100.0/24 (TEST-NET-2), and 203.0.113.0/24 (TEST-NET-3) are provided for use in documentation.
RFC 5737 specifies the use of the following blocks of IP addresses for documentation purposes: 192.0.2.0/24 (TEST-NET-1) 198.51.100.0/24 (TEST-NET-2) 203.0.113.0/24 (TEST-NET-3) These addresses are reserved for use in documentation and sample configurations and are not routable on the public Internet. The address 192.0.2.1 falls within the 192.0.2.0/24 range and is intended for such purposes, making it the correct choice for configuring Local WebAuth on a Cisco Wireless LAN Controller in this context.
I did some labs in PT aobut LAP/WLC configs - the default virtual IP address that gets created when configuring the WLC is 192.168.2.1 so D.
According to RFC 5737, the virtual IP address that must be used for this configuration is 192.0.2.0/24. This is reserved for documentation and examples and should not be used in actual production networks.
D is correct
D. The virtual interface IP address (IPv4 or IPv6) is used only in communications between the controller and wireless clients. It serves as the redirect address for the web authentication login page. It is recommended that you configure a nonroutable IP address for the virtual interface, ideally not overlapping with the network infrastructure addresses. Use one of the options proposed in RFC 5737, for example, 192.0.2.0/24, 198.51.100.0/24, and 203.0.113.0/24 networks.
correct answer
D is correct
i know that 192.168.2.0/24 network is recommended for test;: but here in the quetion is production so i would chosse 192.168.0.0/24... but in the real word both are correct.
RFC 5737 defines the following address blocks for documentation purposes: 192.0.2.0/24 (TEST-NET-1) 198.51.100.0/24 (TEST-NET-2) 203.0.113.0/24 (TEST-NET-3) These address ranges are reserved for use in documentation, examples, and educational materials, and they should not be used in actual network configurations on the public internet.
local IP range for RFC 5737 is 192.168.0.0 to 192.168.255.255
It is interesting to note that 1.1.1.1 and the like are internet routable IPs and often misused for things such as L3 HA links between routers. Worked for a company that did that, found they could not use/reach WARP DNS. Has you wonder about common loopback and Router ID IPs.
RFC 5737 clearly shows 192.0.2.1, so D is correct
The answer is D