Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1547
Views
0
Helpful
0
Replies

Ubiquiti Nanobeam AC Management VLAN via Cisco 4948 Trunk Ports

SCS1010
Level 1
Level 1

‎11-05-2020 10:57 AM

Hello.

Prayer and direction to pages, and pages, and pages of community posts across CISCO, Ubiquiti and the internet in general helped me sort out this problem of not being able to communicate to Ubiquiti's Nanobeam AC Antenna when Management VLAN is set to "on" and VLAN ID is entered. Nanobeam AC IP address is set to static, Configuration Mode is "simple". 

 

This post is directed solely at being able to communicate to the Nanobeam AC via it's Management VLAN IP Address. 

 

For this to work, the 4948 Switch VTP Mode is set to off. (Transparent Mode) VTP Version is set to 1. IP Routing Enabled. This particular 4948 is not being used as a core switch. It is being used as a lab / test switch to make sure things work the way we want them to work in the field.

 

We first configured the first 16 ports to vlan 400 in the 192.168.1.0/24 network. The Nanobeam AC when new or factory reset will boot to 192.168.1.20/24 address. After boot complete and initial username / password configuration is complete, we enter static IP address for WLAN Network. As an example, 100.64.10.10/16 with gateway and DNS. Save. Disconnect from port, and cycle POE.

 

The next 16 ports on the 4948 are configured to vlan 64 in the 100.64.0.0/16 network. After we cycle the Nanobeam AC Antenna, we plug it into vlan 64 port, and confirm we can access via our assigned IP of 100.64.10.10/16. Once we can do that, then we switch Management Vlan to "on" and set the Vlan ID "64" (in our case). After we do that, connection is lost. Nanobeam now looking for "tagged" vlan frames.

 

The last 4 ports, (45-48) are configured as Trunk ports with allowed vlans of 64, 400, 728, etc. No native Vlan is set. We then plug Nanobeam AC into all of those ports, and ping ip address from within Switch, and from Computer plugged into Vlan 400 which has access to Vlan 64 network. For Cisco 4948 IOS 4500 L3 Software IPBASEK9-M 15.0(2) SG11 and similar, this should work.

 

Really hope this helps someone in need, and saves you from days of research, trial and error if you're no expert like myself, but are constantly being called "professional" by people who know you ain't, but wanna have that inside joke, as if by rumor! :-))

 

Config File (in part) follows:

 

version 15.0
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
service compress-config
!
hostname office-itc-sw01
!
boot-start-marker
boot system flash bootflash:cat4500-ipbasek9-mz.150-2.SG11.bin
boot-end-marker
!
enable secret 5 -----------
!
!
!
no aaa new-model
ip subnet-zero
!
!
ip vrf mgmtVrf
!
vtp mode off

power redundancy-mode redundant
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
vlan 64
name WLAN MGMT 64
!
vlan 80
name COMPUTERS 80
!
vlan 82
name PRINTERS 82
!
vlan 90
name WIFI 90
!
vlan 400
name LANCTV 400
!
vlan 728
name SWMGMT 728
!
!
!
interface FastEthernet1
ip vrf forwarding mgmtVrf
no ip address
speed auto
duplex auto
!
interface GigabitEthernet1/1
switchport access vlan 400
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/2
switchport access vlan 400
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/3
switchport access vlan 400
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/4
switchport access vlan 400
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/5
switchport access vlan 400
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/6
switchport access vlan 400
switchport mode access
spanning-tree portfast
!

interface GigabitEthernet1/33
switchport access vlan 64
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/34
switchport access vlan 64
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/35
switchport access vlan 64
switchport mode access
spanning-tree portfast
!
interface GigabitEthernet1/36
switchport access vlan 64
switchport mode access
spanning-tree portfast

interface GigabitEthernet1/45
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 64,400,728
switchport mode trunk
!
interface GigabitEthernet1/46
!
interface GigabitEthernet1/47
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 64,80,82,90,400,728
switchport mode trunk
!
interface GigabitEthernet1/48
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 64,80,82,90,400,728
switchport mode trunk
!
interface TenGigabitEthernet1/49
!
interface TenGigabitEthernet1/50
!
interface Vlan1
no ip address
!
interface Vlan64
ip address 100.64.254.201 255.255.0.0
!
interface Vlan400
ip address 192.168.1.201 255.255.255.0
!
interface Vlan728
ip address 100.72.8.101 255.255.255.128
!
no ip http server
ip http secure-server
!

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents