Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1762
Views
0
Helpful
5
Replies

My Vlan 10 will no handout DHCP addresses for WiFi guest network

SOEIT
Level 1
Level 1

‎10-06-2017 01:23 PM - edited ‎03-08-2019 12:17 PM

I have a wireless network separate from a production environment. On the UniFi AP I have created to separate Networks one for employees one for guests. My vlan 1 is being used for the employees I created a VLAN for the guest which is VLAN 10 my sonicwall firewall is acting as the DHCP server handing out the addresses. I get addresses on my employee SSID but my guest SSID is not handing out addresses for the end devices so I guessing I've configured something wrong on my 2960-L switch with the trunking I can provide the config as well for a reference to anyone, I'm kinda new at this.

 

Switch Config

Building configuration...

Current configuration : 1058 bytes
!
! Last configuration change at 20:16:15 UTC Fri Oct 6 2017
!
version 15.2
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Switch
!
boot-start-marker
boot-end-marker
!
!
no aaa new-model
!
!
!
!
!
!
!
!
!
!
!
spanning-tree mode rapid-pvst
spanning-tree extend system-id
diagnostic bootup level minimal
!
vlan internal allocation policy ascending
!
!
!
!
!
interface GigabitEthernet0/1
switchport mode trunk
!
interface GigabitEthernet0/2
!
interface GigabitEthernet0/3
!
interface GigabitEthernet0/4
!
interface GigabitEthernet0/5
!
interface GigabitEthernet0/6
!
interface GigabitEthernet0/7
switchport trunk native vlan 10
switchport mode access
!
interface GigabitEthernet0/8
!
interface GigabitEthernet0/9
!
interface GigabitEthernet0/10
!
interface Vlan1
ip address 10.10.16.10 255.255.255.0
no ip route-cache
!
interface Vlan10
ip address 10.10.10.2 255.255.255.192
no ip route-cache
!
ip http server
ip http secure-server
!
!
line con 0
line vty 5 15
!
end

Labels:
0 Helpful
5 Replies 5

Reza Sharifi
Hall of Fame
Hall of Fame

‎10-06-2017 02:07 PM

If interface GigabitEthernet0/7 is connecting to the firewall, you need to change that from access port to trunk and add vlan 10 to it.

config t

interface GigabitEthernet0/7

switch mode trunk

switchport trunk allowed vlan 10

 

You also need to create an interface for vlan 10 on the firewall and give it an IP address. That IP will be the default gateway address for guest users.

HTH

0 Helpful

SOEIT
Level 1
Level 1
In response to Reza Sharifi

‎10-23-2017 08:54 AM

my firewall is the DHCP server i have everything configured on the firewall 

0 Helpful

paul driver
VIP
VIP

‎10-08-2017 04:26 PM

Hello

I would suggest taking the guest routed vlan  off the L3 switch and let the FW perform the routing for it and just have L2 up to the fw

Can you confirm it these are Lightweight  or Autonomous aps?

 Res

paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful

SOEIT
Level 1
Level 1
In response to paul driver

‎10-23-2017 08:56 AM

the AP's are Autonomous 

0 Helpful

paul driver
VIP
VIP
In response to SOEIT

‎10-24-2017 02:53 AM

Hello

So as it a autonomous ap then you need to configure the Ap advertise an SSID and to point to the fw gateway access.

 

https://www.cisco.com/c/en/us/td/docs/wireless/access_point/15-3-3/configuration/guide/cg15-3-3/cg15-3-3-chap4-first.html

 

res
Paul


Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.

Kind Regards
Paul
0 Helpful
Customers Also Viewed These Support Documents