11-17-2020 04:58 AM - edited 07-05-2021 12:47 PM
Dear all, I need to setup the Mobility Express controller (1832) + APs on VLAN different from default. In my case I got VLAN 5 for management and 1 for the PC.
I successully setup the mobility express controller and APs on VLAN 5 by setting "switchport native vlan 5" on the interface where the APs are connected and all WLAN except with VLAN 1 are working.
So AP on VLAN 5 and WLAN on VLAN 10 for example are working great, but if I set the VLAN id to 1 on WLAN to controller client can't connect (can't take IP from DHCP).
I've tried aaa-overide, forcing dhcp address, using internal DHCP but nothing works. I suppose it can be because APs management traffic (CAPWAP?) are untagged so AP and controller thinks there're and defualt VLAN (1).
Anyone have found an issue like me? Or know how to fix?
Thanks
Enrico
11-17-2020 05:02 AM
paste the switchport config where WLC and APs are connected :
Regards
Dont forget to rate helpful posts
11-17-2020 05:04 AM
Like this:
interface FastEthernet0/24
description AP
switchport trunk native vlan 5
switchport mode trunk
!
11-17-2020 05:31 AM
config is ok.
Did you configured the DHCP server for vlan 1 (or dynamic interface vlan 1 on wlc) ?
11-17-2020 06:30 AM
Hi, we have a DHCP server (outside controller) but I've tried also with the internal DHCP of controller by setting VLAN 1. Nothing works.
In client stats we say client connected to VLAN1 but without IP.
11-17-2020 06:42 AM
if you configured the internal DHCP server on WLC then... did you configure DHCP server IP on Dynamic interface as WLC mgmt IP address ?
11-17-2020 06:57 AM
From web gui I think isn't available. I've tried from cli for the extenal DHCP server but I haven't try by forcing the internal DHCP with the controller IP.
The internal DHCP it's only a test, I need to use the extenal one (from active-directory)
11-17-2020 10:47 AM
mentioned DHCP server IP (external DHCP) under vlan 1 dynamic interface on WLC or did you put ip helper-address command under vlan 1 ?
11-19-2020 05:02 AM
I've tried with the cmd under wlan to specify the DHCP server. With the DHCP override command.
The strange things is that it's happen only if I put the controller/ap on a VLAN different from the default one (1).
11-19-2020 05:18 AM
Are you putting native VLAN as 5 and vlan ID 1 for your wlan configuration under vlan & Firewall section ?
see the screenshot:
Regards
Dont forget to arte helpful posts
11-23-2020 05:28 AM
From debug I saw vlan 0... there some possibile that is doesn't read the vlan 1 I set into WLAN config? vlan 0 for me equal to 5 I think
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a override for default ap group, marking intgrp NULL
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a apfApplyWlanPolicy: Apply WLAN Policy over PMIPv6 Client Mobility Type, Tunnel User - 0
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Check before Setting the NAS Id to WLAN specific Id ''
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a In processSsidIE:6998 setting Central switched to FALSE
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Set Client MSCB as Central Association Disabled
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Applying site-specific Local Bridging override for station 62:6f:af:da:ab:3a - vapId 1, site 'default-group', interface 'management'
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Applying Local Bridging Interface Policy for station 62:6f:af:da:ab:3a - vlan 0, interface id 0, interface 'management', nasId:''
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Set Client Non AP specific WLAN apfMsAccessVlan = 1
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a This apfMsAccessVlan may be changed later from AAA after L2 Auth
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a processSsidIE statusCode is 0 and status is 0
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a processSsidIE ssid_done_flag is 0 finish_flag is 0
*apfMsConnTask_0: Nov 17 16:51:17.765: 62:6f:af:da:ab:3a STA - rates (8): 140 18 152 36 176 72 96 108 0 0 0 0 0 0 0 0
*apfMsConnTask_0: Nov 17 16:51:17.765: 62:6f:af:da:ab:3a suppRates statusCode is 0 and gotSuppRatesElement is 1
*apfMsConnTask_0: Nov 17 16:51:17.765: 62:6f:af:da:ab:3a Marking this mobile as TGr capable.
*apfMsConnTask_0: Nov 17 16:51:17.765: RSNIE in Assoc. Req.: (20)
11-23-2020 05:36 AM
Means the WLC has management interface assigned to the wlan and vlan 0 means (Native vlan -5)
Regards
Dont forget to rate helpful posts
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide