12-22-2023 07:00 PM
I'm curious about the criteria or differences that create SVI and VLANs in the 9800.
If you take multiple AP management bands (vlan) to the same network
Do I have to make several SVI?
Or do I just need to create a VLAN?
Solved! Go to Solution.
12-22-2023 09:56 PM
12-22-2023 07:39 PM
vlan is a layer 2 concept and svi is layer3, ideally you want to make one svi which is management vlan, which is where all APs from multiple network(or sites) will communicate to form capwap tunnel, rest of the network can have vlans on 9800 and svi can exist on wherever the core is.
here are 2 videos from Cisco which i will recommend to review
1. Cisco Catalyst 9800 - 101 Series Getting Started Episode-1
2. Cisco Catalyst 9800 -101 Series Basic WLAN Setup Episode-2
12-22-2023 08:30 PM
If the MGMT band of the AP is
Let's assume that there are 10, 20, and 30 VLANs
Do I have to make 3 SVI?
12-22-2023 08:58 PM - edited 12-22-2023 08:59 PM
AP management vlan is not on 9800, its on your local MDF. you can have 3 APs in 3 different vlan but they all will form capwap tunnel to single management IP on 9800.
source of the tunnel will be 3 different AP mgmt IPs but destination will be 1 9800 management IP.
feel free to share a topology if you have a specific usecase in mind with IP and vlan details.
12-22-2023 09:02 PM
Please see if what I understand is correct.
Number of ap: 700
wlc mgmt vlan : 10
ap mgmt vlan : 10,20,30
If it's this kind of composition
I only need 10 WLC SVIs
Do I need to create only 10, 20, and 30 VLANs?
12-22-2023 09:06 PM - edited 12-22-2023 09:06 PM
you don't need vlan svi 20,30 on 9800, you just need ability of those vlan svi to communicate with 9800 mgmt svi (aka routing), also good idea to keep AP mgmt vlan 10 different from 9800 Mgmt vlan 10.
12-22-2023 09:08 PM
Thank you for your answer.
Then WLC MGMT SVI and
Are you saying that the remaining 20 and 30 only need to create VLANs?
12-22-2023 09:28 PM
No, you don’t even need to create vlan20,30 on wlc, the tunnel from vlan 20,30 svi to wlc mgmt is layer 3 and not layer2.
12-22-2023 09:33 PM
What I don't understand is
vlan 10 - 10.10.10.0/24
vlan 20 - 10.10.11.0/24
vlan 30 - 10.10.12.0/24
If you don't need to create vlan 20,30
How can the aps in the 20s and 30s be signed with wlc?
12-22-2023 09:56 PM
because its over layer 3.
12-26-2023 11:52 PM
in addition to @ammahend 's post
you need a router OUTSIDE the WLC on your LAN to connect your vlan's over Layer-3 and route the packets to the WLC MGT SVI
I assume this router is already present ?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide