Buy or Renew
Buy or Renew
Cisco + Splunk: Itā€™s a new day for your data. Learn more.
Ā 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1334
Views
3
Helpful
4
Replies

Native Vlan as Management Vlan

mikemanz83
Level 1
Level 1

ā€Ž04-14-2023 08:36 PM

Hello!

We are configuring a bunch of Cisco Merakis APs  in a switch, and the switchports are being configured as Trunks with the native vlan the same as the management vlan of the APs, for example Vlan 100. This Native Vlan is different as the Switch Native vlan. The Aps are getting their Ips through DHCP.

The same is true for some point to point ubiquitis with the native vlan being the same as their management vlan, for example vlan 150.

Why is the reason for this?

Thank you!!

M.M.
Labels:
0 Helpful
4 Replies 4

Kasun Bandara
VIP
VIP

ā€Ž04-14-2023 08:54 PM

you can configure specific native vlan per each trunk port. so make sure all devices which required native vlan, are connected to trunk ports have correct native vlan. also what is the switch model? if its CBS series, make sure you disable smart port feature.

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB

Flavio Miranda
VIP
VIP

ā€Ž04-15-2023 05:49 AM

Hi

 Native vlan is per trunk configured and is locally significante, thatĀ“s why  you see more then on vlan as native. And you use native vlan when you dont want to tag a packet. Meaning, the DHCP request from the Access Point to the DHCP server will cross the trunk with no tag on it. And will be replied by the DHCP server with no tag on it.

The real reason why we use native vlan is here:

"The switch port to which the primary AP is connected can be a trunk port or an access port and must be configured to trunk Native VLAN for management traffic. Data traffic must be trunked with appropriate VLANs for local switching as well"

 

 

mikemanz83
Level 1
Level 1
In response to Flavio Miranda

ā€Ž04-15-2023 06:11 AM

Hi Flavio! Thanks for your answer.

One of my questions is, why that traffic have to be untagged?

M.M.
0 Helpful

Karsten Iwen
VIP
VIP
In response to mikemanz83

ā€Ž04-15-2023 06:58 AM

In fact, the APs can operate with tagging for the management connection. But with any system, the initial communication to the cloud (Meraki) or controller (like Catalyst APs) has to work. And this is much easier when the native VLAN can be used for this functionality. If you want you can later add tagging to this communication, but both maintenance and troubleshooting is complicated. Having AP management on the native VLAN is likely a good idea. 

For my Meraki deployments I prefer to terminate this VLAN on the firewall and use it not only for MRs, but also for the Meraki switches for dashboard connectivity.

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card