07-12-2017 03:44 PM - edited 07-05-2021 07:20 AM
Today I started deploy a cisco 1602 autonomous, but the client asked me to configure two different ssid's. I did,two different ssid's and two different vlans. My question is, should this access point operate in bridge mode ? I will connect this device in my firewall interface.If yes, how is the bridge configuration on a cisco autonomous ap ?On my firewall I did two sub-interfaces one for each vlan.
thank you guys...
07-12-2017 08:43 PM
No, You do not want to configure it as bridge. Sample AP config look like below. As long as you connect it to a port configured as trunk (something similar in FW) it should work.
hostname AP-01
!
dot11 ssid <SSID1>
vlan 10
authentication open
authentication key-management wpa version 2
mbssid guest-mode
wpa-psk ascii <SSID1_PASSWORD>
!
dot11 ssid <SSID2>
vlan 20
authentication open
authentication key-management wpa version 2
mbssid guest-mode
wpa-psk ascii <SSID2_PASSWORD>
!
interface Dot11Radio0
encryption vlan 10 mode ciphers aes-ccm
encryption vlan 20 mode ciphers aes-ccm
mbssid
ssid SSID1
ssid SSID2
no shut
!
interface Dot11Radio1
channel width 40-above
encryption vlan 10 mode ciphers aes-ccm
encryption vlan 20 mode ciphers aes-ccm
mbssid
ssid SSID1
ssid SSID2
no shut
!
interface Dot11Radio0.10
encapsulation dot1Q 10
bridge-group 10
!
interface Dot11Radio0.20
encapsulation dot1Q 20
bridge-group 20
!
interface Dot11Radio0.1
encapsulation dot1Q 1 native
bridge-group 1
!
interface Dot11Radio1.10
encapsulation dot1Q 10
bridge-group 10
!
interface Dot11Radio1.20
encapsulation dot1Q 20
bridge-group 20
!
interface Dot11Radio1.1
encapsulation dot1Q 1 native
bridge-group 1
!
interface GigabitEthernet0.10
encapsulation dot1Q 10
bridge-group 10
!
interface GigabitEthernet0.20
encapsulation dot1Q 20
bridge-group 20
!
interface GigabitEthernet0.1
encapsulation dot1Q 1 native
bridge-group 1
!
interface BVI1
ip address 192.168.1.2 255.255.255.0
ip default-gateway 192.168.1.1
HTH
Rasika
*** Pls rate all useful responses ***
07-13-2017 03:23 AM
Than you.
My configuration looks like yours.
But I won't connect to a switch, I will connect to a firewall, with sub-interfaces, and each sub-interface has an ip.
So I can't have a default gateway.
Why bridge mode doesn't work ?
Thank you again for your help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide