This sample scenario represents a HSG deployment for large hotspot network, where you broadcast multiple SSID and require each SSID to offer differentiated user experience with unique portal per SSID (eg. each SSID mapping to its own VLAN), as a typical on-premise deployment for large networks.

• Can use any type of AP at LAN side

• Have dedicated management VLAN for AP management addressing (VLAN1)

• Multiple SSID and each SSID maps to its own specific VLAN

• Each SSID/VLAN has its unique landing page. unique experience per SSID

Common use cases

• Hotels

• Shopping malls

• tourism places

• Airports, stadiums, etc.

Deployment preparation

• Connect HSG eth0 (WAN) to Internet (ISP link ONT or modem). NOTE: If you're using 10G ports for LAN and WAN, the port number is different, please consult vendor.

• Connect HSG eth1 (LAN) to LAN switch

• Connect HSG eth2 to management PC (configure PC with DHCP, then connect to mbox GUI using http://10.10.10.1, login with mboxadmin/Letthem0ut7&)

• HSG eth3 is reserved for private LAN. It's pre-configured to issue DHCP IP.

• Connect AP to LAN PoE switch

  • • use default VLAN1 as management VLAN for AP/WLC.

      • AP will be getting DHCP IP from HSG from network 192.168.8.0/22

      • Reserved IP for WLC or other device, range from 192.168.8.2 to 192.168.8.99

    • add all VLANs on switch (VLAN10, 20, 30, 40, 50,60,70,80,90), configure all switch-ports to be in trunk mode, and permit all VLANs for each port (default)

    • configure AP to broadcast desired SSID and assign each SSID to pre-configured VLAN

      • HSG default pre-configured VLANs are VLAN10, 20, 30, 40, 50,60,70,80,90

      • please refer to respective vendor doc for configuring AP to map SSID to VLAN

3-Step deployment from sample config

NOTE: please upgrade your box to firmware version 20190801-0200, and above (follow this guide to upgrade firmware)

1. download Sample config for HSG2-MultiSSID-MultiVLAN-MultiPortal

2. follow this video guide to deploy HSG by restoring from sample config

3. follow this video guide to customize landing page and login options and create schedule reports.

NOTE: each VLAN is assigned with a unique portal (eg. VLAN10 --> portalvlan10, VLAN20 --> portalvlan20, etc). If you need to change portal template for each a vlan, please delete current portal and re-create a new portal with the same name. For example, if you want to change portal for VLAN20, from mbox GUI, delete portalvlan20, and select a preferred template and create a new portal with the same name portalvlan20; or if the portal doesn't exist yet, create a new portal with name "portalvlanxx" (xx is the vlanID).

Sample config default settings

• the eth0(WAN) port is pre-configured to get dhcp IP from ISP ONT/modem (or upstream router). If you need to change interface IP/route, please follow this guide.

• syslog server (user access logging) is enabled to collect DNS access logs and storing data up to last 5 days (see more details on DNS logging)

• user access records are stored up to last 90 days

• user info (username and profile data) is kept unlimited

• monthly auto backup is configured, keeping the last 3 backup files (see details on backup & restore)