3850 Wireless Inter-VLAN routing not working

mark.stephens · ‎09-02-2014

I have a single stack of 3850 switches to which my APs are directly connected.

My APs are registered and I have created 2 WLANs to which I can authenticate, associate and pickup an IP address just fine.

VLAN 53 - Wireless APs (no WLAN configured) 10.33.53.1 /24

VLAN 54 - Corporate-Wifi 10.33.54.1 /24

VLAN 56 - Testing-Wifi 10.33.56.1 /24

When connected to either of my WLAN networks I can ping it's on default gateway SVI (VLAN Interface) on the switch but am unable to ping any other device on the network whether on a wired or wireless VLAN.

If I configure a wired client on any of the above VLANs I am able to ping everything (servers and VLAN interfaces)

Has anyone else come across this issue before or am I missing something!

Best Regards

Mark

Rasika Nayanajith · ‎09-02-2014

Hi Mark,

What is the IOS-XE you are running on your 3850 ?

Rasika

mark.stephens · ‎09-03-2014

Hi Rasika,

Thanks for your response. I am currently running 03.06.00E but have also tried 03.02.03 with the same results.

Thanks

Mark

Rasika Nayanajith · ‎09-03-2014

Hi Mark,

I am running 3850 in 3.6 code, but my SVIs are not in 3850. Set up is working fine.

I will give it a try your setup in one of my test 3850 to see if I can recreate your issue.

For the time being I would suggest reach TAC as issue looks weird.

HTH

Rasika

**** Pls rate all useful responses ****

mark.stephens · ‎09-03-2014

Hi Rasika

Thanks very much, appreciated.

I will get onto TAC and if you could let me know what you find that would be great.

I have to say, I have been reading your blog a lot recently! Great work.

Thanks

Mark

Rasika Nayanajith · ‎09-03-2014

Hi Mark,

I have tested in my lab environment & no problem of inter-valn routing.

Here what I have done

Vlan40 192.168.40.1 <- wireless user vlan map to SSID
Vlan41 192.168.41.1 <- AP management vlan
Vlan42 192.168.42.1 <- Wired vlan

Here is the SSID configuration

wlan OPEN 20 OPEN
no broadcast-ssid
client vlan 40
no security wpa
no security wpa akm dot1x
no security wpa wpa2
no security wpa wpa2 ciphers aes
no shutdown

Once I connect to this SSID, my laptop got 192.168.40.51. I have connected wired device to vlan 42 switchport & that got IP 192.168.42.52. As you can see below I was able to ping wired client from wireless client.

C:\Users\abc>ping 192.168.40.1

Pinging 192.168.40.1 with 32 bytes of data:
Reply from 192.168.40.1: bytes=32 time=3ms TTL=255
Reply from 192.168.40.1: bytes=32 time=4ms TTL=255
Reply from 192.168.40.1: bytes=32 time=3ms TTL=255
Reply from 192.168.40.1: bytes=32 time=3ms TTL=255

!

C:\Users\abc>ping 192.168.42.52

Pinging 192.168.42.52 with 32 bytes of data:
Reply from 192.168.42.52: bytes=32 time=1ms TTL=254
Reply from 192.168.42.52: bytes=32 time=1ms TTL=254
Reply from 192.168.42.52: bytes=32 time=1ms TTL=254
Reply from 192.168.42.52: bytes=32 time=1ms TTL=254

Switch Ports Model SW Version SW Image Mode
------ ----- ----- ---------- ---------- ----
* 1 56 WS-C3850-48P 03.06.00E cat3k_caa-universalk9 INSTALL

HTH

Rasika

**** Pls rate all useful responses ****

willsmith1701 · ‎05-22-2015

Mark,

Did you ever find a solution to your problem? I am seeing the same issue, except it is intermittent. It occurs every few days, and rebooting the 3850 fixes the problem. I haven't been able to figure out what exactly rebooting the switch clears.