12-15-2022 05:52 PM
Hello Team,
we are using flex connect mode of access point, in which the data traffic switching locally and central authentication.
here i have doubt, whether the user authentication traffic (control traffic) how it will reach controller.
user>> cawaptunnel>> wlc>>> aaa
( or)
user>> ap>> switch>> coreswitch>> isp?? wlc.
whether the branch site isp have any impact on the control traffic.
in case if the branch has high bandwidth utilization users cant authenticate or any disconnection may happen?
Regards,
Anjana
12-15-2022 05:58 PM
In flexconnect central auth local switching traffic flow is:
Based onf 802.1x Auth (remove RADIUS if just PSK):
Client>AP>WLC (Via what ever transport is between AP and WLC (LAN/WAN etc)>RADIUS server (via what ever transport is between WLC and RADIUS Server)>WLC>AP> Client
In event of high bandwidth WANs then recommend QOS to proritise CAPWAP control traffic.
Other option is Flexconnect Local Auth if you need everything to remain within the site
12-15-2022 07:00 PM
Hello Andrew..
pls confirm how to priotrise the capwap tunnel traffic, by priotrise the ap management vlan or qos on the router?
Regards,
Anjana
12-15-2022 07:17 PM
On the AP management VLAN create a QOS policy to poritise CAPWAP Control UDP 5246 to the WLCs
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide