Choose one of the topics below for Cisco DNA Center Resources to help you on your journey with Cisco DNA Center
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC!
We will not comment or assist with your TAC case in these forums.
The 9200L switch is a basic equipment that intends to replace the 2960 for a branch office. The 9200 model allows up to 4 VN, but the cost of the uplink makes you almost have to put 9300 as an access switch to be able to implement SD-Access without restrictions. Be aware that with Wi-Fi controllers with 9200!
its actually the overlay. Also DNA Center is the controller, for managing everything including overlay network, the overlay can potentially span across multiple sites.
Interworking of SDA revolves around 3 protocols.
At Data plane - VxLAN
At Control plane - LISP
At Policy plane - Cisco TrustSec
This white paper is a good place to start learning more.
so this means i cannot have a 2 PC's ( Corporate PC and Guest PC) on this switch with different Virtual Network , for example if i want a guest virtual network and corporate virtual network to co exist on this switch it is not possible, becz when DNA will push virtual network to switch it will accept only one instead of two numbers.
Please correct me
You are correct. Maximum one SD-Access Virtual Network (VN) on 9200L. So you can have either CORP VN or GUEST VN, but not both. Please also be advised that the restriction applies to the whole fabric site, not just the switch. If you have an SD-Access site with 40x C9300s and 1x C9200L, then the whole site is limited to one VN. This is because users could roam to anywhere at a site, so it's not possible to have different VNs on fabric edge switches at same SD-Access site.
Please also be advised that the restriction applies to the whole fabric site, not just the switch. If you have an SD-Access site with 40x C9300s and 1x C9200L, then the whole site is limited to one VN.
please elaborate more on the above statement.
OR in the other way to explain is as below.
That if we have multiple VN's on the network and it will be push from DNA to every switch hence the switch 9200L will not accept more than 1 , but if a user who is sitting on 9300 CORP VN and if he is moving to 9200L he will not get the access becz his port cannot be configured on the corp VN. this is what u want to mentioned.
DNA Centre will look at lowest capability switch in a fabric site and restrict the number of VNs on entire fabric site to the VN limit of the lowest capability switch. So, if you have a fabric site with 40x Cat 9300 and 1x Cat 9200L then the whole fabric site, including the Cat 9300 switches is limited to one VN.