Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2745
Views
20
Helpful
16
Replies

Aironet 2702 setting VLANs with individual SSIDs

Go to solution
magic
Level 1
Level 1

‎12-06-2020 02:55 AM - edited ‎07-05-2021 12:52 PM

Hi,

 

 I tried to configure 3 VLANs each with own SSID but unsuccessfully. Here is my network setup:

- 2 AIR-CAP2702E-A-K9 all in autonomous mode;

- SG500-52P switch to which both access points are connected;

- additional router (DHCP, internet gateway).

I configured 3 VLANs (ids: 1-native, 2 and 3) each with own SSID (v1 – native, v2 and v3) on the APs. They seem to be working i.e. I’m able to connect to them but there is no IP routing outside of them except the native VLAN which is working perfectly fine. As there is no DHCP routing to the v2 and v3 VLANs, I set card IP address manually but still wasn’t able to communicate with outside networks. Therefore I think that there is something wrong with APs VLAN setup. Do you have any idea what I have missed?

 

Here is snippet from the APs config:

interface Dot11Radio0.1

 encapsulation dot1Q 1 native

 no ip route-cache

 bridge-group 1

 bridge-group 1 subscriber-loop-control

 bridge-group 1 spanning-disabled

 bridge-group 1 block-unknown-source

 no bridge-group 1 source-learning

 no bridge-group 1 unicast-flooding

!

interface Dot11Radio0.2

 encapsulation dot1Q 2

 no ip route-cache

 bridge-group 2

 bridge-group 2 subscriber-loop-control

 bridge-group 2 spanning-disabled

 bridge-group 2 block-unknown-source

 no bridge-group 2 source-learning

 no bridge-group 2 unicast-flooding

!

interface Dot11Radio0.3

 encapsulation dot1Q 3

 no ip route-cache

 bridge-group 3

 bridge-group 3 subscriber-loop-control

 bridge-group 3 spanning-disabled

 bridge-group 3 block-unknown-source

 no bridge-group 3 source-learning

 no bridge-group 3 unicast-flooding

!

interface GigabitEthernet0.1

 encapsulation dot1Q 1 native

 bridge-group 1

 bridge-group 1 spanning-disabled

 no bridge-group 1 source-learning

!

interface GigabitEthernet0.2

 encapsulation dot1Q 2

 bridge-group 2

 bridge-group 2 spanning-disabled

 no bridge-group 2 source-learning

!

interface GigabitEthernet0.3

 encapsulation dot1Q 3

 bridge-group 3

 bridge-group 3 spanning-disabled

 no bridge-group 3 source-learning

 

The Dot11Radio1 is configured by analogy. The switch works in trunk mode (all ports) and I configured the same VLAN ids as the APs, but I think there is something missing in the APs setup, as I’m not able to communicate from the VLANs to outside network.

 

Shall you need more setup information, please let me know. I got blocked and cannot find working solution to multiple VLANs on APs.

Labels:
0 Helpful
16 Replies 16

Go to solution
magic
Level 1
Level 1
In response to Scott Fella

‎12-07-2020 11:07 AM - edited ‎12-07-2020 11:23 AM

Eventually I could change switch functionality to router mode, as it is supported as well, and utilize this device as L2 device to sort out VLAN communication.

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to magic

‎12-07-2020 11:25 AM

Your switch would need to be able to be configured as a layer 3.  Then the switch connected to the router would be on vlan 1 since that is what your router only can use and the switch would do all the inter-vlan routing.  You might need to have a nat defined on the switch also.  Just do a search on your switch to see how to configure layer 3 if possible.

-Scott
*** Please rate helpful posts ***
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card