12-07-2010 12:38 AM - edited 07-03-2021 07:30 PM
Hi there
I just set up a WGB with the following configuration:
dot11 ssid Demo
vlan 900
authentication open eap eap_methods
authentication network-eap eap_methods
authentication key-management wpa
dot1x credentials EAP-TLS
dot1x eap profile EAP-TLS
!
eap profile EAP-TLS
method tls
!
dot1x credentials EAP-TLS
username xxx
pki-trustpoint TP
!
interface Dot11Radio1
no ip address
no ip route-cache
!
encryption vlan 900 mode ciphers aes-ccm
!
ssid Demo
!
...
bridge-group 1
!
interface Dot11Radio1.900
encapsulation dot1Q 900
no ip route-cache
bridge-group 9
bridge-group 9 subscriber-loop-control
bridge-group 9 block-unknown-source
no bridge-group 9 source-learning
no bridge-group 9 unicast-flooding
bridge-group 9 spanning-disabled
!
interface FastEthernet0
no ip address
no ip route-cache
duplex auto
speed auto
bridge-group 9
!
interface BVI1
ip address dhcp client-id FastEthernet0
no ip route-cache
!
Everything works fine for the client behind the FastEthernet 0 interface. But now I would like to have the WGB getting the IP Address via DHCP. This doesn't work at the moment. Are there any wrong statements in my configuration concerning this problem?
Thanks a lot in advance and regards
Dominic
Solved! Go to Solution.
12-07-2010 06:46 AM
I do remember you too :-)
Strange.
Did you try setting the dhcp client-id to the dotradio interface ?
Do you see the dhcp request hitting the wired network ?
Nicolas
12-07-2010 01:00 AM
on the Root AP do we have the command "infrastructure-client"?? if not let me know by adding the same using CLI..
lemme know how this works out for you!!
Regards
Surendra
12-07-2010 01:19 AM
Hi Surendra
thanks for the reply. No I did not add the "infrastructure-client", we the root is treating the WGB as a client device.
I will have to rebuild the situation in our lab, but this needs some time. I will give feedback as soon as possible.
By the way, why are you asking about the broadcasting of the SSID, does this influence here?
Regards
Dominic
12-10-2010 04:38 AM
Hi Surendra
if I configure the "infrastructure-client" under the Dot11Radio, this only influences the workgroup bridges, as I understand in the configuration guide:
"You use the infrastructure-client configuration interface command to configure access points and bridges to treat workgroup bridges as infrastructure devices."
is that correct, not that the other clients get some problems because of this command.
thanks and regards
Dominic
12-07-2010 01:00 AM
Hope we are not broadcasting the SSID on the Root as well..
Regards
Surendra
12-07-2010 01:07 AM
I don't see the command "Station-role workgroup-bridge". Is it there ? Did you make it universal or not ?
Nicolas
===
Don't forget to rate answers that you find useful
12-07-2010 01:22 AM
Hi Nicolas
nice "meeting" you again, I was last week at the JTA in Brussels ;-)
sorry the command "station-role workgroup-bridge" is hidden under ..., it is not universal.
Regards
Dominic
12-07-2010 06:46 AM
I do remember you too :-)
Strange.
Did you try setting the dhcp client-id to the dotradio interface ?
Do you see the dhcp request hitting the wired network ?
Nicolas
12-07-2010 06:52 AM
Small Cisco world ;-)
Yes I changed the client-id to Dot11Radio 1 but didn't change anything.
No I was not able to do the troubleshooting on the root AP or on the wired side. I will be onsite next week again, but I hope I can reproduce it this week in our lab.
Dominic
12-13-2010 02:58 PM
Hi everyone
I now got a solution for dhcp on the BVI 1 with a Dot11Radio native and Fa0 native configuration:
interface Dot11Radio0.10
encapsulation dot1Q 10 native
no ip route-cache
bridge-group 1
!
interface FastEthernet0.10
encapsulation dot1Q 10 native
no ip route-cache
bridge-group 1
!
What if the VLAN on the root AP is not the native VLAN because there are a lot of other VLANs and the BVI is on another VLAN? Isn't it possible with a non-native configuration?
Any hints or ideas?
Regards
Dominic
12-20-2010 02:17 PM
Hi everyone
this is a working configuration:
Root AP:
dot11 vlan-name VLAN10 vlan 10 dot11 vlan-name VLAN20 vlan 20 ! dot11 ssid bridge vlan 10 authentication open ! bridge irb ! interface Dot11Radio0 no ip address no ip route-cache ! ssid bridge ! station-role root ! interface Dot11Radio0.10 encapsulation dot1Q 10 no ip route-cache bridge-group 10 bridge-group 10 block-unknown-source no bridge-group 10 source-learning no bridge-group 10 unicast-flooding bridge-group 10 spanning-disabled ! interface FastEthernet0 no ip address no ip route-cache duplex auto speed auto ! interface FastEthernet0.10 encapsulation dot1Q 10 no ip route-cache bridge-group 10 no bridge-group 10 source-learning bridge-group 10 spanning-disabled ! interface FastEthernet0.20 encapsulation dot1Q 20 native no ip route-cache bridge-group 1 no bridge-group 1 source-learning bridge-group 1 spanning-disabled ! interface BVI1 ip address 10.10.20.2 255.255.255.0 no ip route-cache ! bridge 1 route ip
WGB:
dot11 vlan-name VLAN10 vlan 10 ! dot11 ssid bridge vlan 10 authentication open ! bridge irb ! interface Dot11Radio0 no ip address no ip route-cache ! ssid bridge ! station-role workgroup-bridge bridge-group 1 ! interface Dot11Radio0.10 encapsulation dot1Q 10 no ip route-cache bridge-group 1 ! interface FastEthernet0 no ip address no ip route-cache duplex auto speed auto bridge-group 1 ! interface BVI1 ip address dhcp no ip route-cache ! bridge 1 route ip !
Regards
Dominic
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide