Wireless and DHCP

sdavids5670 · ‎05-09-2014

My colleague made a change to the wireless environment and I'm trying to understand why we observed the unexpected behavior I will now describe.

Prior to the change, the port configuration for all of our HQ-based WAPs was this:

interface Gix/0/z

switchport trunk native vlan 198

switchport trunk allowed vlan 198

switchport mode trunk

Vlan198 is the Vlan for the staff SSID. The WAPs got their IP address from the same network as the staff wireless users. Everything worked fine.

My colleague wanted the WAPs to get their IP address from a different network (the same network that the WLCs use for the management interface).

He changed the configuration of the switch ports for HQ-based WAPs to this:

interface Gix/0/z

switchport trunk native vlan 105

switchport trunk allowed vlan 105,198

switchport mode trunk

After making this change, wireless users (staff SSID) were getting their IP address from the 105 VLAN. I'm having trouble explaining this. Regardless of how the trunk port is configured on the switch, shouldn't the tunneled traffic enter the WLC tagged with vlan 198 if its coming from the staff SSID?

I don't know much at all about wireless so even though I can look through the management UI most of what I'm looking at is just guess work. Please tell me if there are configuration elements from the management UI that you want to see and I'll post it to this thread.

Regards,

Steven

Scott Fella · ‎05-09-2014

I'm guessing that your doing FlexConnect mode.... It's pretty simple... when you are trunking an access point, the ap has to and will get their ip from the native vlan. The ap will not use a tagged vlan for its management. On FlexConnect, or if your AP's are in local mode, bot the ap and the client will use native vlan. I'n FlexConnect, you can specify the SSID to vlan mapping, but this is strictly for FlexConnect.

Please rate helpful post and Cisco Support Community will donate to Kiva

Scotty

-Scott
*** Please rate helpful posts ***

sdavids5670 · ‎05-09-2014

"In FlexConnect, you can specify the SSID to vlan mapping, but this is strictly for FlexConnect"

Are you stating that regardless of what I have under "VLAN Mappings", it will not change the behavior that AP AND clients get their IP from the native VLAN when using FlexConnect mode? We presently have VLAN Mappings defined (see attached - page 5 of 9 in wlc-config.pdf)

Rasika Nayanajith · ‎05-09-2014

After this change did you try reload the AP & see wether staff users will get IP from vlan 198 ?

HTH

Rasika

sdavids5670 · ‎05-13-2014

The colleague who implemented the change claimed that the APs rebooted.

jmeachum · ‎05-28-2014

Without changing the design of how your clients get DHCP or how the traffic flows on the network you will need to do the following:

Log into the WLC
Click on the Wireless tab
Click on host name of an AP in the affected area
Click on the FlexConnect tab
Check the box for VLAN support (assuming it is not already checked)
Enter 105 in the "Native VLAN ID" field
Click Apply
Go back to the FlexConnect tab
Click on the VLAN Mappings button

10. Enter 198 for the Staff SSID and click Apply

Repeat the above steps for each AP in the affected area.

I hope this helps.

John

Scott Fella · ‎05-10-2014

How you have it setup on the AP, Vlan 105 is your ap Vlan and client associating to that SSID will be placed in Vlan 198. So on the trunk port, Vlan 105 is native and Vlan 198 is tagged. Vlan 105 and 198 allowed on the trunk.

-Scott
*** Please rate helpful posts ***