Solved: Hi Rasika,Thanks for

nicolasvogel · ‎07-16-2015

Dear Support,

I have to configure a Wireless Trunk Link between two buildings. I'm using Outdoors AP 1532 with directional Antennas on 5GHz. I want my Wireless Trunk to word exactly like a Wired Trunk between two switches.
In each Building I have a 2960X Switch with 2 VLANs (Data and Voice).
I converted the 1532 APs to Autonomous APs
I configured the VLANs, Radio 1 sub-interfaces and G0 sub-interfaces.
I'm using VLAN 1 as native VLAN in all the network.
I configured only 1 SSID, mapped on VLAN 1 (native VLAN). Is that the right configuration? Or do I have to configure a SSID for each VLAN?
Are the Roles "Root Bridge" for AP01 and "Non-root Bridge" for AP02 alright?

Thank you.
Kind Regards,

Nicolas.

Rasika Nayanajith · ‎07-20-2015

If you want vlan 10 IP to be used as management of these bridges, then YES. Still note that bridge group should be 1 for those sub-interfaces.

Give it a try & let us know any issues.

HTH

Rasika

View solution in original post

Rasika Nayanajith · ‎07-18-2015

Hi Nicolas,

Pls find a reference wireless bridge configuration. Initial configuration is the basic one and then I have added EAP-FAST as security method. You can do WPA2/AES with PSK if needed.

http://mrncciew.com/2013/11/09/wireless-bridge-with-eap-fast/

AP management should be on native vlan in these configuration.

HTH

Rasika

*** Pls rate all useful responses ***

nicolasvogel · ‎07-20-2015

Hi Rasika,

Thanks for responding. So the first thing I have to change is to configure my VLAN 10 as native as it is used for management of the devices.

After that can I add as much VLANs as desired? The only thing I have to configure is a new VLAN with corresponding Radio sub-interface and Ethernet sub-interface?

Regards,

Nicolas.

Rasika Nayanajith · ‎07-20-2015

If you want vlan 10 IP to be used as management of these bridges, then YES. Still note that bridge group should be 1 for those sub-interfaces.

Give it a try & let us know any issues.

HTH

Rasika

nicolasvogel · ‎07-22-2015

Hi Rasika,

Here is my actual configuration:

dot11 vlan-name Data vlan 10
dot11 vlan-name Voice vlan 777
dot11 ant-band-mode single
!
dot11 ssid <my-SSID>
   vlan 10
   authentication open
   authentication key-management wpa version 2
   guest-mode
   infrastructure-ssid
   wpa-psk ascii 7 <my-psk>

!

interface Dot11Radio1
description 5GHz Interface for P2P Link
no ip address
!
encryption mode ciphers aes-ccm
!
encryption vlan 10 mode ciphers aes-ccm
!
encryption vlan 777 mode ciphers aes-ccm
!
ssid <my-SSID>
!
antenna gain 0
peakdetect
no dfs band block
packet retries 64 drop-packet
channel dfs
station-role root bridge
world-mode dot11d country-code CH outdoor
bridge-group 1
!
interface Dot11Radio1.10
encapsulation dot1Q 10 native
!
interface Dot11Radio1.777
encapsulation dot1Q 777
bridge-group 255
bridge-group 255 spanning-disabled
!
interface GigabitEthernet0
description REMA-URD-SW01 Trunk
no ip address
duplex auto
speed auto
!
interface GigabitEthernet0.10
encapsulation dot1Q 10 native
bridge-group 1
!
interface GigabitEthernet0.777
encapsulation dot1Q 777
bridge-group 255
bridge-group 255 spanning-disabled

The problem is that interface Dot11Radio1 is in bridge-group 1 by default and cannot be removed. So Interface Dot11Radio1.10 cannot be added in bridge-group 1 because "Configuration of subinterfaces and main interface within the same bridge group is not permitted"...

I'm trying to remove Interface Dot11Radio1 from bridge-group 1 but without success...

Any idea?

Nicolas.

nicolasvogel · ‎07-23-2015

Hi Rasika,

It's OK everything works fine now. It was a Native VLAN configuration mismatch.

I have all my VLANs carried over the Wireless Trunk.

Thank you for helping,

Kind Regards,

Nicolas.

Autonomous AP Trunk Configuration