Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new blog
12294
Views
5
Helpful
2
Comments

Flexconnect Vlan Override Local Switching Clients

Vinay Sharma
Level 7
Level 7
‎10-30-2012 04:25 AM

vitpatel.jpg

 

Viten Patel is is a Wireless Expert working in Cisco TAC. In this Video, Viten has shown How to do the Flexconnect Vlan Override Local Switching Clients configuration on Wireless LAN Controller (WLC) and Cisco Secure Access Control Server (ACS).

In the current FlexConnect architecture, there is a strict mapping of WLAN to VLAN, and thus the client getting associated on a particular WLAN on FlexConnect AP has to abide by a VLAN which is mapped to it. This method has limitations, because it requires clients to associate with different SSIDs in order to inherit different VLAN-based policies.

From 7.2 release onwards, AAA override of VLAN on individual WLAN configured for local switching is supported. In order to have dynamic VLAN assignment, AP would have the interfaces for the VLAN pre-created based on a configuration using existing WLAN-VLAN Mapping for individual FlexConnect AP or using ACL-VLAN mapping on a FlexConnect group. The WLC is used to pre-create the sub-interfaces at the AP.

 

flex7500-wbc-guide-70.gif

 

Summary
  • AAA VLAN override is supported from release 7.2 for WLANs configured for local switching in central and local authentication mode.
  • AAA override should be enabled on WLAN configured for local switching.
  • The FlexConnect AP should have VLAN pre-created from WLC for dynamic VLAN assignment.
  • If VLANs returned by AAA override are not present on AP client, they will get an IP from the default VLAN interface of the AP
Limitations
  • Cisco Airespace-specific attributes will not be supported and IETF attribute VLAN ID will only be supported.
  • A maximum of 16 VLANs can be configured in per-AP configuration either via WLAN-VLAN Mapping for individual FlexConnect AP or using ACL-VLAN mapping on the FlexConnect group.

 

video pic.jpg

 

 

 

 

 

 

 

 

For More configuration details, please refer to FlexConnect VLAN Override section under Flex 7500 Wireless Branch Controller Deployment Guide.

 

Do Rate the Video.

2 Comments
zeeshan.ah
Level 1
Level 1
‎06-20-2016 03:01 AM
‎06-20-2016 03:01 AM

Hi,

I am configuring a cisco 5508 ver 8.2.110.0 in flexconnect mode with central authentication, local switching. everything is fine along with local VLAN configuration, but when I create a flexconnect group and add specific AP's in that, those APs shows all the SSID configured under WLAN, how I can restrict a specific flexconnect group to show only specific SSID not all of them, although i have added only 1 SSID under WLAN VLAN MAPPING tab.

Any advice?

0 Helpful
Ronakvyas
Level 1
Level 1
‎10-27-2017 03:43 AM
‎10-27-2017 03:43 AM

Hi Zeeshan,

 

With the help of AP groups, you can control which SSIDs are present on which APs.
WLANs > Advanced > AP Groups

Create an AP groups, select the SSIDs you wish a specific set of access points to have.

NOTE : Each time you add/remove an access point from the AP Group, the AP reboots.

 

Hope this helps !

 

Regards,

Ronak Vyas.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Popular Articles
Customers Also Viewed These Support Documents
French webcast-routing