Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
702
Views
0
Helpful
4
Replies

C3560G and C2960 VLAN Tagging

Go to solution
Greg Wrobel
Level 1
Level 1

‎03-17-2011 12:17 PM - edited ‎03-06-2019 04:08 PM

Hi,

I got one C3560G and 13 C2960, I wondered if anyone could tell me if I can setup vlan tagging on ports, so that if phone or computer is configured to be member of vlan 3 the port will make it self member of that vlan.

I will have 3 vlans beside the default and I want users to be just able to plug their stuff anywhere and it will join the right VLAN.

Please let me know if this is possible without RADIUS server, and how to do it.

Thanx!

Labels:
0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
jonathanaxford
Level 3
Level 3

‎03-17-2011 12:44 PM

Hi,

You will need some sort of external service/server to achieve this. The switches you have do not natively have the ability to dynamically assign ports to vlans.

Cisco used to have a system called VMPS which would so this without a radius server, but it is EOS now as far as I know.

Hope this helps

Jonathan

Sent from Cisco Technical Support iPhone App

View solution in original post

0 Helpful

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee
In response to jonathanaxford

‎03-17-2011 01:18 PM

Hello,

Jonathan is correct - what you are trying to do is basically assign devices to VLANs according to their MAC address. That can be done only using an external mapping service. The RADIUS would be probably the most correct way to go because it is standardized and open. Another possibility is to use the VMPS service (VLAN Membership Policy Server) which is somewhat similar to RADIUS but only maps MAC addresses to appropriate VLANs. The VMPS is a proprietary Cisco solution and may not be supported on your switches anymore (you would have to consult the Configuration Guide for your particular switch and IOS version). Importantly, the FreeRADIUS software supports both RADIUS and VMPS server functionality.

In any case, an external server is needed.

Best regards,

Peter

View solution in original post

0 Helpful

Go to solution
jonathanaxford
Level 3
Level 3
In response to Peter Paluch

‎03-17-2011 01:56 PM

Hi All,

VMPS is an option, but it is only supported on CatOS and I think its 4000 series switches and above.... I've run it on a Cat 6513 before.

Another option is to investigate a piece of software called FreeNAC.

www.freenac.org

It's basically an open source VMPS server - it uses a MySQL database to keep a record of MAC Addresses and VLANs and then listens for the Cisco VQP requests and responds with the correct VLAN. It can be a bit of a pain to get working, but as long as you have a machine to run it on, it works a treat with something like Ubuntu Linux, so you have yourself a free solution.

Otherwise, as Peter says, Free RADIUS is an option.


Cheers

Jonathan

View solution in original post

0 Helpful
4 Replies 4

Go to solution
jonathanaxford
Level 3
Level 3

‎03-17-2011 12:44 PM

Hi,

You will need some sort of external service/server to achieve this. The switches you have do not natively have the ability to dynamically assign ports to vlans.

Cisco used to have a system called VMPS which would so this without a radius server, but it is EOS now as far as I know.

Hope this helps

Jonathan

Sent from Cisco Technical Support iPhone App

0 Helpful

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee
In response to jonathanaxford

‎03-17-2011 01:18 PM

Hello,

Jonathan is correct - what you are trying to do is basically assign devices to VLANs according to their MAC address. That can be done only using an external mapping service. The RADIUS would be probably the most correct way to go because it is standardized and open. Another possibility is to use the VMPS service (VLAN Membership Policy Server) which is somewhat similar to RADIUS but only maps MAC addresses to appropriate VLANs. The VMPS is a proprietary Cisco solution and may not be supported on your switches anymore (you would have to consult the Configuration Guide for your particular switch and IOS version). Importantly, the FreeRADIUS software supports both RADIUS and VMPS server functionality.

In any case, an external server is needed.

Best regards,

Peter

0 Helpful

Go to solution
jonathanaxford
Level 3
Level 3
In response to Peter Paluch

‎03-17-2011 01:56 PM

Hi All,

VMPS is an option, but it is only supported on CatOS and I think its 4000 series switches and above.... I've run it on a Cat 6513 before.

Another option is to investigate a piece of software called FreeNAC.

www.freenac.org

It's basically an open source VMPS server - it uses a MySQL database to keep a record of MAC Addresses and VLANs and then listens for the Cisco VQP requests and responds with the correct VLAN. It can be a bit of a pain to get working, but as long as you have a machine to run it on, it works a treat with something like Ubuntu Linux, so you have yourself a free solution.

Otherwise, as Peter says, Free RADIUS is an option.


Cheers

Jonathan

0 Helpful

Go to solution
Greg Wrobel
Level 1
Level 1
In response to Peter Paluch

‎03-30-2011 07:33 PM

Thanks for help, looks like too much work for the size and complexity of network I'm working with. I will stick to static assignment.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card