Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3550
Views
15
Helpful
12
Replies

Single SSID w/ 1000+ Clients

Go to solution
SchurmanRyan
Level 1
Level 1

‎12-01-2011 02:26 PM - edited ‎07-03-2021 09:09 PM

I'm working on setting up a single guest access SSID on a Cisco 5508 WLAN controller for clients to use on our campus.  When dealing with 1000+ clients, there are segmenting options such a single large subnet (/21 or so), AP groups w/ smaller subnets, and interface groups with smaller subnets (VLAN Select feature).  Which method is considered best practice?  Is there a "magic" number of clients where you would want to start using multiple smaller subnets instead of single large one? 

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎12-01-2011 02:51 PM

Ryan,

If your on 7.0.116.0 I would suggest using interface groups. It is easier than having to manage all the AP Groups if you ask me. If you any dhcp Mac reservations, interface group isn't for you. Since it performs a round robin on your selected interface, you will not know which interface a device will be placed on. Makes sense.

Sent from my iPhone

-Scott
*** Please rate helpful posts ***

View solution in original post

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to SchurmanRyan

‎12-02-2011 11:15 AM

I like just using /24.

Sent from my iPhone

-Scott
*** Please rate helpful posts ***

View solution in original post

0 Helpful
12 Replies 12

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎12-01-2011 02:51 PM

Ryan,

If your on 7.0.116.0 I would suggest using interface groups. It is easier than having to manage all the AP Groups if you ask me. If you any dhcp Mac reservations, interface group isn't for you. Since it performs a round robin on your selected interface, you will not know which interface a device will be placed on. Makes sense.

Sent from my iPhone

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
SchurmanRyan
Level 1
Level 1
In response to Scott Fella

‎12-02-2011 08:33 AM

Thanks for the advice Scott.  Do you have any recommended subnet size for the wireless VLANs?

0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to SchurmanRyan

‎12-02-2011 11:15 AM

I like just using /24.

Sent from my iPhone

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to Scott Fella

‎12-14-2011 10:01 PM

When having a 1,000 clients managing by a /24 it will mean more config work. Since the WLC proxys broadcast you can get away with a bit larger subnets. Ive seen /22 and even /21. Altough /21 are a bit much, but Ive seen them work on a busy WLAN before.

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________

Go to solution
Michael Burk
Level 1
Level 1
In response to George Stefanick

‎08-14-2013 12:14 PM

We have a /21 in place for a guest network that breaches 1,000 leases on a daily basis.

Just make sure you have broadcast forwarding: disabled.

I did a packet capture on the wlan during a busy time of day and saw about 6 broadcast pps, so quite low.

0 Helpful

Go to solution
Daniel Ordóñez Flores
VIP
VIP
In response to Scott Fella

‎08-14-2013 12:40 PM

Dear Scott.

I was reading the new post and I founf this, so I have this question, If a need to create a new WLAN and the scope is for 1500 user I can use interface group and not use a /21 ?

Espero que la información haya sido útil y si no tienes más preguntas recuerda cerrar el topic, seleccionando la respuesta como "Respuesta correcta"
**Please rate the answer if this information was useful***
**Por favor si la información fue util marca esta respuesta como correcta**
0 Helpful

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to Daniel Ordóñez Flores

‎08-14-2013 12:46 PM

Indeed.

If you have an existing WLAN or a new WLAN. You can add interface groups which will allow you to tie multiple wired side interfaces to a WLAN. The experience to the wifi client is the same, its just that clients will be dumped into different subnets.

__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful

Go to solution
devils_advocate
Level 7
Level 7

‎08-15-2013 08:32 AM

As George says, Interface Groups are the way to go as you can have lots of /24 interfaces, group these into an interface group and assign this group to your SSID. The controller uses a specific method to allocatate IP addresses fairly evenly among the DHCP scopes within the interfaces.

0 Helpful

Go to solution
Daniel Ordóñez Flores
VIP
VIP
In response to devils_advocate

‎08-15-2013 08:35 AM

So... one WLAN can have different ip addressing?

Espero que la información haya sido útil y si no tienes más preguntas recuerda cerrar el topic, seleccionando la respuesta como "Respuesta correcta"
**Please rate the answer if this information was useful***
**Por favor si la información fue util marca esta respuesta como correcta**
0 Helpful

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to Daniel Ordóñez Flores

‎08-15-2013 08:38 AM

How it works is you have a single wlan. Today you select a single dynamic interface for that wlan. If you create an interface group you add multiple dynamic interfaces to the interface group. You then select the interface group to the wlan rather than the single dynamic interface you do today. As clients connect they round robin through the dynamic interfaces you selected for the WLAN.

Make sense?

__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to George Stefanick

‎08-15-2013 10:52 AM

Thank you for supporting the rating system

Sent from Cisco Technical Support iPad App

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame
In response to Daniel Ordóñez Flores

‎08-15-2013 04:17 PM

Another thing to consider when planning for >1k users is your DHCP lease time.  It would be good if you have a DHCP server which you can control yourself and configure the lease time to be a low number, like 3 to 4 hours.  The lower the number the better.  This way, you won't have to worry when someone tries to take down the wireless network.

I've tried 30 minutes but it's on a DHCP server I control.  So no big deal for me. 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card