cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1471
Views
0
Helpful
11
Replies

Aironet Mobility Express with management on a different VLAN

epasqualotto
Level 1
Level 1

Dear all, I need to setup the Mobility Express controller (1832) + APs on VLAN different from default. In my case I got VLAN 5 for management and 1 for the PC.

I successully setup the mobility express controller and APs on VLAN 5 by setting "switchport native vlan 5" on the interface where the APs are connected and all WLAN except with VLAN 1 are working.

So AP on VLAN 5 and WLAN on VLAN 10 for example are working great, but if I set the VLAN id to 1 on WLAN to controller client can't connect (can't take IP from DHCP).

I've tried aaa-overide, forcing dhcp address, using internal DHCP but nothing works. I suppose it can be because APs management traffic (CAPWAP?) are untagged so AP and controller thinks there're and defualt VLAN (1).

 

Anyone have found an issue like me? Or know how to fix?

 

Thanks

Enrico

11 Replies 11

Sandeep Choudhary
VIP Alumni
VIP Alumni

paste the switchport config where WLC and APs are connected :

 

 

Regards

Dont forget to rate helpful posts

Like this:

interface FastEthernet0/24
description AP
switchport trunk native vlan 5
switchport mode trunk
!

config is ok.

 

Did you configured the DHCP server for vlan 1 (or dynamic interface vlan 1 on wlc) ?

Hi, we have a DHCP server (outside controller) but I've tried also with the internal DHCP of controller by setting VLAN 1. Nothing works.

In client stats we say client connected to VLAN1 but without IP.

if you configured the internal DHCP server on WLC then... did you configure DHCP server IP on Dynamic interface as WLC mgmt IP address ?

From web gui I think isn't available. I've tried from cli for the extenal DHCP server but I haven't  try by forcing the internal DHCP with the controller IP.

The internal DHCP it's only a test, I need to use the extenal one (from active-directory)

mentioned DHCP server IP (external DHCP)  under vlan 1 dynamic interface on WLC or did you put ip helper-address command under vlan 1 ?

I've tried with the cmd under wlan to specify the DHCP server. With the DHCP override command.

The strange things is that it's happen only if I put the controller/ap on a VLAN different from the default one (1).

Are you putting native VLAN as 5 and vlan ID 1 for your wlan configuration  under vlan & Firewall section ?

 

see the screenshot:

 

Native_Vlan.PNG

 

Regards

Dont forget to arte helpful posts

 

 

From debug I saw vlan 0... there some possibile that is doesn't read the vlan 1 I set into WLAN config? vlan 0 for me equal to 5 I think


*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a override for default ap group, marking intgrp NULL
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a apfApplyWlanPolicy: Apply WLAN Policy over PMIPv6 Client Mobility Type, Tunnel User - 0
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Check before Setting the NAS Id to WLAN specific Id ''
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a In processSsidIE:6998 setting Central switched to FALSE
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Set Client MSCB as Central Association Disabled
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Applying site-specific Local Bridging override for station 62:6f:af:da:ab:3a - vapId 1, site 'default-group', interface 'management'
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Applying Local Bridging Interface Policy for station 62:6f:af:da:ab:3a - vlan 0, interface id 0, interface 'management', nasId:''
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a Set Client Non AP specific WLAN apfMsAccessVlan = 1
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a This apfMsAccessVlan may be changed later from AAA after L2 Auth
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a processSsidIE statusCode is 0 and status is 0
*apfMsConnTask_0: Nov 17 16:51:17.764: 62:6f:af:da:ab:3a processSsidIE ssid_done_flag is 0 finish_flag is 0
*apfMsConnTask_0: Nov 17 16:51:17.765: 62:6f:af:da:ab:3a STA - rates (8): 140 18 152 36 176 72 96 108 0 0 0 0 0 0 0 0
*apfMsConnTask_0: Nov 17 16:51:17.765: 62:6f:af:da:ab:3a suppRates statusCode is 0 and gotSuppRatesElement is 1
*apfMsConnTask_0: Nov 17 16:51:17.765: 62:6f:af:da:ab:3a Marking this mobile as TGr capable.
*apfMsConnTask_0: Nov 17 16:51:17.765: RSNIE in Assoc. Req.: (20)

Means the WLC has management interface assigned to the wlan and vlan 0 means (Native vlan -5)

 

Regards

Dont forget to rate helpful posts

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: