Which two statements best describe Cisco Wireless LAN Guest Access in a Cisco Unified Wireless Network? (Choose two.)
A.Dedicated guest VLANs are only extended to the wireless controllers in the network to ensure path isolation.
B.Guest tunnels have limitations on which wireless controllers can originate the tunnel.
C.Dedicated guest VLANs are extended throughout the network to the access points for path isolation.
D.Guest tunnels can originate and terminate on any wireless controller platform.
E.Guest tunnels have limitations on which wireless controllers can terminate the tunnel.
F.Dedicated guest access in the DMZ extends from the origination to the termination controllers without dedicated guest VLANs.
Correct Answer: EF Section: Wireless Explanation
Using EoIP Tunnels for Guest Services Basic solutions use separate VLANs for guest and corporate users to segregate guest traffic from corporate traffic. The guest SSID is broadcast, but the corporate SSID is not. All other security parameters are configured. Another solution is to use Ethernet over IP (EoIP) to tunnel the guest traffic from the CAPWAP to an anchor WLC.
As shown in Figure 5-17, EoIP is used to logically segment and transport guest traffic from the edge AP to the anchor WLC. There is no need to define guest VLANs in the internal network, and corporate traffic is still locally bridged. The Ethernet frames from the guest clients are maintained across the CAPWAP and EoIP tunnels.
Figure. EoIP Tunnels