Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2139
Views
0
Helpful
6
Replies

Multiple Vlans in a single SSID in Flexconnect Mode

Go to solution
SiJian Bao
Level 1
Level 1

‎06-06-2013 10:17 PM - edited ‎07-04-2021 12:11 AM

My WLAN is going to be configured as the flexconnect mode witch runs multiple vlans using ISE, in that situation, can my WLC be linked to an access-port instead of a trunk port?

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Stephen Rodriguez
Cisco Employee
Cisco Employee

‎06-07-2013 04:23 AM

No it would still need to go to a trunk port as you are going to have multiple
Vlans

Steve

Sent from Cisco Technical Support iPhone App

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered

View solution in original post

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎06-07-2013 05:18 AM

Just to add... Your saying that if all your AP's are in FlexConnect local switching and nothing gets tunneled back to the WLC, you could have the WLC connected to an access port but the vlan ID for the management interface would need to be set to zero (0). Like Steve mentioned, if your planning to add dynamic interfaces on the WLC for client traffic, then the WLC should be connected to a trunk port. It's best to just connect the WLC to a trunk port anyways and tag the management vlan.

Now it's a different story if your AP's are in FlexConnect locally switched, then the AP has to also be on a trunk port. So if you have WLAN's that are locally switched and more than one vlan, in which clients will be placed on, the switchport has to be a trunk port.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

View solution in original post

0 Helpful
6 Replies 6

Go to solution
Stephen Rodriguez
Cisco Employee
Cisco Employee

‎06-07-2013 04:23 AM

No it would still need to go to a trunk port as you are going to have multiple
Vlans

Steve

Sent from Cisco Technical Support iPhone App

HTH,
Steve

------------------------------------------------------------------------------------------------
Please remember to rate useful posts, and mark questions as answered
0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎06-07-2013 05:18 AM

Just to add... Your saying that if all your AP's are in FlexConnect local switching and nothing gets tunneled back to the WLC, you could have the WLC connected to an access port but the vlan ID for the management interface would need to be set to zero (0). Like Steve mentioned, if your planning to add dynamic interfaces on the WLC for client traffic, then the WLC should be connected to a trunk port. It's best to just connect the WLC to a trunk port anyways and tag the management vlan.

Now it's a different story if your AP's are in FlexConnect locally switched, then the AP has to also be on a trunk port. So if you have WLAN's that are locally switched and more than one vlan, in which clients will be placed on, the switchport has to be a trunk port.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
SiJian Bao
Level 1
Level 1
In response to Scott Fella

‎06-12-2013 07:01 PM

In fact my environment is like this:

We have a headquarter and 3 branches, each site has several APs and the WLC is at the headquarter. Each branch has different VLAN for one same SSID which is the wireless access for the employees and we decide to use the flex connect local switch mode. Two extra WLANs are configured for guest and VIP which have diferent VLANs. And we use the ISE for the AAA server to control the access.

Then for my environment. It's nothing about the dynamic VLAN, right? Can I just connect all my APs to a trunk port and my WLC to access port? Thanks a lot and happy Dragon Boat Festival which is a big festival in my country!

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎06-12-2013 08:16 PM

The WLC should be connected to a trunk port that allows the management vlan and any other vlans you create. If your doing LAG also, you definetly need trunk ports to create an etherchannel.

Local mode AP's connect to an access port and FlexConnect AP's connect to a trunk port also only allowing vlans for the ap manager and wireless traffic.

Happy Dragon Boat Festival!

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
SiJian Bao
Level 1
Level 1
In response to Scott Fella

‎06-16-2013 06:04 PM

Thanks Scott, I connect my WLC and APs to trunk port and they work fine now with ISE

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to SiJian Bao

‎06-16-2013 06:46 PM

Glad you got it working.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card