Benefits of using APs without Wireless Controller and based on Cloud

Solved
Hussam-Bay
Here to help

Benefits of using APs without Wireless Controller and based on Cloud

Hello Guys,

 

I need to specify the drawbacks of using a WLC and I need to make sure the below is right:

 

1- Once you use a WLC then the traffic is encrypted between the AP and WLC, Therefore when the capwap tunnel passes through the DC firewall it will not be inspected and that's a security issue.

 

2- All the user traffic is terminated on the WLC via the CAPWAP which means if your WLC has 1G port this will limit the traffic a lot. However, if there is no WLC, you'll be able to use the full port speed of the AP.

1 Accepted Solution
TheITWay
Getting noticed

3. With a WLC, you have another device to worry about regarding security, configuration, redundancy, energy consumption and hardware failure. 

 

4. Increasing the number of APs could bring the problem of buying new WLC that can support such amount of devices

 

 

View solution in original post

3 Replies 3
cmr
Kind of a big deal
Kind of a big deal

1 is true but traffic from WLC to DC edge is not encrypted by WLC so monitor it there.

2 is definitely true

3 is that your WLC is limited to a number and type of APs, we moved away when ours couldn't support enough / newer APs

 

If my answer solves your problem please click Accept as Solution so others can benefit from it.
TheITWay
Getting noticed

3. With a WLC, you have another device to worry about regarding security, configuration, redundancy, energy consumption and hardware failure. 

 

4. Increasing the number of APs could bring the problem of buying new WLC that can support such amount of devices

 

 

BrechtSchamp
Kind of a big deal

You can also deploy WLC's in FlexConnect which invalidates both points.

 

Some good points already mentioned here. A couple I could add:

 

  • With Meraki and its cloud management you can do the management from wherever and whenever by default. No need to mess with VPN to make that possible.
  • With centralized controllers and remote APs you need to ensure the two have layer 3 connectivity and there are limits regarding latency and MTU. Meraki's APs just need an internet connection and some outgoing ports opened in the firewall. When not using centralized controllers you need a piece of equipment on every site which can get costly too.

 

Get notified when there are additional replies to this discussion.