Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
526
Views
0
Helpful
1
Replies

using Fortinac on wireless workgroup bridge

Kyle Morrison
Level 1
Level 1

‎04-03-2020 06:22 PM - edited ‎07-05-2021 11:54 AM

Hi

I have a work group bridge serving 4 non-root bridges. Each NRB has an access switch attached for user access.

 

We are implementing Fortinac across town. For places that are using access switches through OSP to the core, it's working fine. For the wrb-nrb it's not.

 

Clients should get DHCP from NAC for the registration process. The switch port changes to a registration vlan and a dissolvable agent loads and runs. After that is completed, NAC changes the switch port back to the production vlan and the user gets a regular DHCP address and it's done.

 

The users are getting in to the registration vlan, the switch port is changed to that vlan, but the user never gets a DHCP address from NAC. They end up with a 169.254.xxx.xxx address and the switch port remains in the registration vlan.

 

I'm thinking there needs to be some dhcp config on the wrb and nrb's to allow the dhcp from NAC to operate.

WRB is a 3702e running autonomous 153-3.JI3

NRB's are 2602e's running 153-3.JF9

Any suggestions appreciated.

Labels:
0 Helpful
1 Reply 1

patoberli
VIP Alumni
VIP Alumni

‎04-06-2020 08:48 AM

Do you get an IP address if you attach a client directly into that VLAN and the specific location? If not, maybe some IP-helper/DHCP Proxy or similar function is missing.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card