- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-23-2022 05:07 AM - edited 06-23-2022 05:08 AM
Hi Cisco Community,
since this is my first post here on the forum, I hope the question was asked in the correct topic group.
We purchased several Cisco Catalyst 9120's for a small outdoor location.
Among them also 2 pieces with EWC image.
We have now commissioned the first embedded WLAN controller using Cisco's configuration guide.
Unfortunately, our controller only has the "SVI" item under the Layer 2 settings.
The items VLAN and VLAN group are missing.
Now I can't get any further with my Policy Profile, because I want/must select at least one VLAN here.
If I don't select anything here, I always end up in the network where the wireless management is configured.
The goal would be that the client comes into its own client VLAN.
Later it should even be so that the clients (cell phone / laptop) from the Cisco ISE in
own VLANs. (this would be the optimal solution)
Briefly about our environment:
Cisco C9200 Switch with POE+
Cisco 9120AXI-E with EWC image in version 17.7.1
(17.8.1 has also been tried)
Switchport configured as trunk with the accesspoint VLAN as
native VLAN
normal Windows 10 clients
Maybe someone has configured this scenario before and can help me.
Thank you very much and best regards,
Nico
Solved! Go to Solution.
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-23-2022 07:47 PM
The EWC only supports flexconnect mode for all the WLANs so the local VLANs on the EWC are not needed (that's why you don't see the configuration fields) so you need to add the desired VLANs to a flexconnect profile and attach it to your APs. The link below explains how to configure flexconnect and add the VLANs to your flexconnect profile:
Kind regards.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-23-2022 05:26 AM
- So , if you are already on-track with configuring the 9120 EWC access points review current configuration with the CLI command : show tech wireless , have the output analyzed by https://cway.cisco.com/
M.
-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-23-2022 06:55 AM
Hi,
thanks for your reply.
The output says that there is an SVI without an assigned VLAN.
But this is exactly my problem.
That I can't create a VLAN, because I don't have the menu item.
The SVI I have created for lack of alternatives times to test, but unfortunately that does not work.
Probably because no VLAN is created.
230058
Interfaces: Interface SVI (vlan) detected, but no corresponding vlan entry configured. Interfaces: Vlan261
Action: None
Also via CLI no VLAN can be created.
Thanks and greetings,
Nico
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-23-2022 07:04 AM - edited 06-23-2022 07:15 AM
- Did you create the particular vlan first , verify with (CLI) show vlan brief
Also via CLI no VLAN can be created. Can you show cli-output when this is tried ?
M.
-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-23-2022 11:33 PM
Hi,
the problem is that I cannot create a VLAN.
Here is the output of "show vlans":
WLC00DF.1DC2.8C40#show vlans
No Virtual LANs configured.
"show vlan brief" does not exist in the CLI for me.
Unfortunately, when I enter "vlan" in config mode, I can't create one either:
WLC00DF.1DC2.8C40(config)#vlan ?
accounting VLAN accounting configuration
Thank you very much and best regards,
Nico
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-23-2022 07:47 PM
The EWC only supports flexconnect mode for all the WLANs so the local VLANs on the EWC are not needed (that's why you don't see the configuration fields) so you need to add the desired VLANs to a flexconnect profile and attach it to your APs. The link below explains how to configure flexconnect and add the VLANs to your flexconnect profile:
Kind regards.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-08-2022 04:58 AM
Hi Jonathga94,
yes I had to create the VLANs in the Flexconnect profile.
However, my mistake was that I had not specified the native VLAN.
Therefore the whole thing did not work...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-24-2022 01:26 AM
Exactly as @jonathga94 says.
However it is not mandatory to create the VLAN names in the flexconnect profile - you can also simply specify the VLAN ID (the vlan number) directly - you just type in the number (eg: 199).
If you want to use vlan names then the names can only be defined in the flex profile as described above.
Please click Helpful if this post helped you and Select as Solution (drop down menu at top right of this reply) if this answered your query.
------------------------------
TAC recommended codes for AireOS WLC's and TAC recommended codes for 9800 WLC's
Best Practices for AireOS WLC's, Best Practices for 9800 WLC's and Cisco Wireless compatibility matrix
Check your 9800 WLC config with Wireless Config Analyzer using "show tech wireless" output or "config paging disable" then "show run-config" output on AireOS and use Wireless Debug Analyzer to analyze your WLC client debugs
Field Notice: FN63942 APs and WLCs Fail to Create CAPWAP Connections Due to Certificate Expiration
Field Notice: FN72424 Later Versions of WiFi 6 APs Fail to Join WLC - Software Upgrade Required
Field Notice: FN72524 IOS APs stuck in downloading state after 4 Dec 2022 due to Certificate Expired
- Fixed in 8.10.196.0, latest 9800 releases, 8.5.182.12 (8.5.182.13 for 3504) and 8.5.182.109 (IRCM, 8.5.182.111 for 3504)
Field Notice: FN70479 AP Fails to Join or Joins with 1 Radio due to Country Mismatch, RMA needed
How to avoid boot loop due to corrupted image on Wave 2 and Catalyst 11ax Access Points (CSCvx32806)
Field Notice: FN74035 - Wave2 APs DFS May Not Detect Radar After Channel Availability Check Time
Leo's list of bugs affecting 2800/3800/4800/1560 APs
Default AP console baud rate from 17.12.x is 115200 - introduced by CSCwe88390
