05-09-2014 10:43 AM - edited 07-05-2021 12:48 AM
Hi All,
Just looking at AP configuration using 5508 WLC.
We have APs deployed at all branch sites connected over a corporate L3 WAN to a Data Centre which houses the WLC(s)
When setting the AP for Flexconnect mode there is a requirement that one native VLAN must be configured for each FlexConnect AP. If the AP is attached to a L2 switch and I want to enable multiple VLAN Mappings then I would need to add these VLANs to the allowed VLAN list on a trunk link between the AP and the switch (802.1Q) on the branch site.
Normally if I configured a trunk link I would never add the Native VLAN to the trunk and never use it for any traffic. In this case it would appear that I MUST use the native VLAN (which seems to go against my better judgement). So my question (after all this) is: What must the AP use the Native VLAN?
Thanks All.
Solved! Go to Solution.
05-10-2014 08:28 AM
This has always been a standard practice for access points that has to connect to a trunk port. This goes back to the autonomous access points and also with FlexConnect and Mesh if your setting up Ethernet bridging. Wired side is different from the wireless side as you have noticed.
Please rate helpful post and Cisco Support Community will donate to Kiva
Scotty
05-09-2014 12:50 PM
The AP's management IP address needs to be on the native Vlan. There is no way around this at the moment and you can't have all your vlan's tagged as the AP has to be on the native Vlan.
Please rate helpful post and Cisco Support Community will donate to Kiva
Scotty
05-09-2014 02:17 PM
Thanks Scott. Is there an underlying reason for this feature? It seems to fly in the face of best practice for VLAN security (albeit the risk being small). I thought maybe I was misunderstanding something but if it's a requirement then I'll configure accordingly-just curious about the reason now. Thanks again.
05-10-2014 08:28 AM
This has always been a standard practice for access points that has to connect to a trunk port. This goes back to the autonomous access points and also with FlexConnect and Mesh if your setting up Ethernet bridging. Wired side is different from the wireless side as you have noticed.
Please rate helpful post and Cisco Support Community will donate to Kiva
Scotty
05-12-2014 08:00 AM
Thanks Scott. That's fair enough. Haven't had a great deal to do with wireless in the past and am reviewing a current configuration. Helpful answer - so thank you!
05-09-2014 01:49 PM
05-28-2014 04:00 PM
Wired is different from wireless as access point has to be connected through trunk port.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide