02-22-2017 01:36 AM - edited 07-05-2021 06:35 AM
Hi Guys!
I am working on a project, we have a 5520 WLC and multiple APs connecting to it from 4 different branches. These branches are connected to the WLC's branch using VPN. Each branch has a different network completely.
What will be the best way to configure this network?
02-22-2017 02:21 AM
02-22-2017 03:18 PM
If you need wireless users at each branch to get IP from local to each branch, then you need to deploy FlexConnect mode AP at your branches. Main location, you can use Local mode APs.
You can use a single SSID with "FlexConnect local switching" feature enabled.
Refer below guide for more details
HTH
Rasika
*** Pls rate all useful responses ***
02-22-2017 07:54 PM
Hi, Thank you for your response!
Yes, I need to use a single SSID for all 4 branches, but users from different branches should get their local IP address.
How can i accomplish that using Flexconnect?
02-22-2017 08:09 PM
I need to use a single SSID for all 4 branches, but users from different branches should get their local IP address. How can i accomplish that using Flexconnect?
It is simple. You deploy those branch AP in FlexConnect mode (oppose to default Local mode). On SSID (under advanced tab) , you need to tick "FlexConnect local switching" option.
This document should explain detailed steps involved
https://supportforums.cisco.com/document/98646/wireless-lan-flexconnect-configuration-example
HTH
Rasika
*** Pls rate all useful responses ***
02-22-2017 09:31 PM
Thank you for your support!
I have been to the link you mentioned above, it was helpful. However, I am unable to understand one thing. The IP address used on the interface of the SSID on controller belongs to the Headquarters where WLC is located, how will the users from different branches connecting to that same SSID will get IP address from their respective branches(Local subnet).
02-23-2017 04:18 PM
The IP address used on the interface of the SSID on controller belongs to the Headquarters where WLC is located, how will the users from different branches connecting to that same SSID will get IP address from their respective branches(Local subnet).
Hope below helps you to understand it.
1. If AP is FlexConnect mode, then depend on how your configure SSID (local switching or central switching) behavior is different.
2. If SSID is configured with local switching, then traffic will terminate at the AP & then trunk back to local switch where AP connects. In this method, interface mapped to SSID by WLC has no use.
3. If SSID is configured with central switching, then that SSID traffic is CAPWAP from AP to WLC (vise versa) and users get IP from interface mapped to SSID at HQ.
4. If you have both Local mode & FlexConnect mode AP, then Local mode always use CAPWAP all traffic between AP-WLC. In flexconnect mode APs, only central switch SSID traffic will be CAPWAP back to WLC from AP and all local switch traffic terminate locally at the branch.
HTH
Rasika
*** Pls rate all useful responses ***
03-09-2017 01:51 AM
Hey, I am getting these logs continuously and some clients are getting disconnected from wireless network. can you help me with it?
*Dot1x_NW_MsgTask_5: Mar 09 15:13:33.180: %DOT1X-3-ABORT_AUTH: 1x_bauth_sm.c:450 Authentication Aborted for client 70:77:81:b0:93:ad Abort Reason:DOT1X RESTARTED DUE TO EAPOL-START/CLIENT ROAM
*Dot1x_NW_MsgTask_6: Mar 09 15:13:29.075: %DOT1X-3-ABORT_AUTH: 1x_bauth_sm.c:450 Authentication Aborted for client c0:18:85:48:cd:76 Abort Reason:DOT1X RESTARTED DUE TO EAPOL-START/CLIENT ROAM
*Dot1x_NW_MsgTask_6: Mar 09 15:11:35.079: %DOT1X-3-ABORT_AUTH: 1x_bauth_sm.c:450 Authentication Aborted for client f4:b7:e2:6a:e8:de Abort Reason:DOT1X RESTARTED DUE TO EAPOL-START/CLIENT ROAM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide