Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
494
Views
0
Helpful
8
Replies

wireless design options

Go to solution
Khawar Khan
Level 1
Level 1

‎11-20-2016 06:05 PM - edited ‎07-05-2021 06:08 AM

Hi,

We have centralized WLCs in datacentre to which all APs in campus associate.

The VLANs in DC are different from the ones in campus (VLANs don't extend).

There is a requirement in one lab (currently 2 APs) where the wireless users should be on the same VLAN as wired desktops. The wireless devices need to access application running on the desktop and protocol uses broadcast in the same VLAN to discover desktops running the application.

I am thinking about few options and would like to know what you think about it:

1) use centralized controller:

-create new SSID with PSK (just to be used in lab)

-create new AP group and add existing SSIDs along with new one

-have this new AP group on APs in lab

Problem: wireless users will be on different VLAN than desktops (VLANs don't extend between campus and DC)

2) deploy new local controller (wlc 2504)

-configure it to have same SSID's as centralized WLCs with additional SSID just for lab

-the APs in lab associate to it

-configure new SSID to use same VLAN as used by desktops in that lab

3) same as option 2 instead use ios switch 3650 as local controller

-not sure about it since i have never used ios switches to serve as controllers

4) use autonomous AP's in lab

-create new SSID just for lab

-link new SSID to vlan used by desktops

Problem: will lose other SSIDs (wireless networks - employee and guest networks).

I am more in favor of option 2 (wlc 2504 as a local controller).

Please let me know which option you will pick and why. If you would do it some other way, please state it as well. Do you see any issues with above options which i have overlooked ?

Thanks

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Rasika Nayanajith
VIP
VIP

‎11-20-2016 06:47 PM

Why not converting those two AP as "FlexConnect" & terminate traffic locally for a given SSID & put them on to  the same VLAN of wired device ?

HTH

Rasika

View solution in original post

0 Helpful

Go to solution
Rasika Nayanajith
VIP
VIP
In response to Khawar Khan

‎11-20-2016 11:36 PM 

-AP will switch and authenticate locally for the new SSID and remaining SSIDs will still use central resources (switch and authenticate via centralized WLC as before) ?

Yes, that is the way.

currently switch interface to AP is access, after converting APs to flexconnect the port will be trunk ?

Yes, AP management should be on the native vlan of this trunk link. Pls refer below reference guides for more understanding

http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-1/Enterprise-Mobility-8-1-Design-Guide/Enterprise_Mobility_8-1_Deployment_Guide/ch7_HREA.html

https://supportforums.cisco.com/document/98646/wireless-lan-flexconnect-configuration-example

HTH

Rasika

*** Pls rate all useful responses ***

View solution in original post

0 Helpful
8 Replies 8

Go to solution
Rasika Nayanajith
VIP
VIP

‎11-20-2016 06:47 PM

Why not converting those two AP as "FlexConnect" & terminate traffic locally for a given SSID & put them on to  the same VLAN of wired device ?

HTH

Rasika

0 Helpful

Go to solution
Khawar Khan
Level 1
Level 1
In response to Rasika Nayanajith

‎11-20-2016 08:03 PM

Thanks Rasika for the quick reply.

Few questions in regards to flexconnect:

Those 2 APs in lab will have other SSIDs as well (employee, guest etc.)

-AP will switch and authenticate locally for the new SSID and remaining SSIDs will still use central resources (switch and authenticate via centralized WLC as before) ?

-currently switch interface to AP is access, after converting APs to flexconnect the port will be trunk ?

For example, the new config will look like below ?

new SSiD = lab

desktop vlan = 101

AP vlan = 100

interface x
description Access Point x
switchport trunk encapsulation dot1q
switchport trunk native vlan 100
switchport trunk allowed vlan 100,101
switchport mode trunk
spanning-tree portfast
-can AP and clients (connecting to this new SSID) get IP address from same old central DHCP server in DC ?
cheers
0 Helpful

Go to solution
Rasika Nayanajith
VIP
VIP
In response to Khawar Khan

‎11-20-2016 11:36 PM 

-AP will switch and authenticate locally for the new SSID and remaining SSIDs will still use central resources (switch and authenticate via centralized WLC as before) ?

Yes, that is the way.

currently switch interface to AP is access, after converting APs to flexconnect the port will be trunk ?

Yes, AP management should be on the native vlan of this trunk link. Pls refer below reference guides for more understanding

http://www.cisco.com/c/en/us/td/docs/wireless/controller/8-1/Enterprise-Mobility-8-1-Design-Guide/Enterprise_Mobility_8-1_Deployment_Guide/ch7_HREA.html

https://supportforums.cisco.com/document/98646/wireless-lan-flexconnect-configuration-example

HTH

Rasika

*** Pls rate all useful responses ***

0 Helpful

Go to solution
Khawar Khan
Level 1
Level 1
In response to Rasika Nayanajith

‎11-21-2016 02:12 PM

Thanks Rasika for your assistance. I tested flexconnect yesterday in my lab and it worked, will soon run POC with client and see how it goes.

Thank you so much!

cheers

0 Helpful

Go to solution
Rasika Nayanajith
VIP
VIP
In response to Khawar Khan

‎11-21-2016 02:41 PM

Great to hear.

See, we have saved some $$ for you ;)

Let us know how your POC goes with FlexConnect option

Rasika

0 Helpful

Go to solution
Khawar Khan
Level 1
Level 1
In response to Rasika Nayanajith

‎11-22-2016 03:20 PM

you surely did, let me know when you're in Sydney and i will take you to lunch/dinner :)

BTW, will flexconnect solution suit whole building as well ? or it's recommended for a location where there are small number of APs and for more Local Controller option is best ?

Cheers

0 Helpful

Go to solution
Rasika Nayanajith
VIP
VIP
In response to Khawar Khan

‎11-22-2016 04:18 PM 

you surely did, let me know when you're in Sydney and i will take you to lunch/dinner :)

Will do ;-)

If you come down to Melbourne for Ciscolive 2017 let me know. We can meet up.

BTW, will flexconnect solution suit whole building as well ? or it's recommended for a location where there are small number of APs and for more Local Controller option is best ?

From the design point of view, FlexConnect solution developed by Cisco for customers who has a large number of branch sites (where they do not want to deploy WLC at each site) and connected to HQ over the WAN.  Since traffic locally terminating at the branch & can survive even during a  WAN link failure, this is a big advantage for such customers.

Here are basic design guidelines for FlexConnect

Pls go through this Ciscolive presentation as it will cover what features available & what limitations as of today. You can freely register for ciscolive365 if you currently not registered.

https://www.ciscolive.com/online/connect/sessionDetail.ww?SESSION_ID=90745

In a campus network, if you have 1Gbps or higher building interconnection, I would prefer local mode AP unless you have specific requirement to terminate traffic at a local switch (like what you have at the moment)

HTH

Rasika

*** Pls rate all useful responses ***

0 Helpful

Go to solution
Khawar Khan
Level 1
Level 1
In response to Rasika Nayanajith

‎11-22-2016 09:53 PM

Thanks Rasika for all your help with this. I will read the document and watch video.

Sure, i will let you know if my manager send me again to ciscolive :P

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card