08-21-2019 09:53 AM - edited 07-05-2021 10:53 AM
Hi All
I have been working on existing WLC 2500 with a single individual interface with a handful wlan Ids.
The interface is the management 192.168.120.0/25 192.168.121.10 the management interface
I wanted to create an additional ID that would be dishing out a different DHCP scope vlan 121
192.168.121.0/25 GW 192.168.121.1
ive managed to create this interface and create a new ssid to associate with it
when I connect to the SSID I get the correct DHCP range from 192.168.121.x
The switchport that was originally connected to the LAN controller was an access port vlan 120
However now ive got a 2nd interface it needs to be a trunk
switchport mode trunk
switchport trunk allowed vlan 120,121
switchport trunk native vlan 120 (not sure if this is necessary)
Now I beileve I need to do something on the interfaces
the management (120 default) is marked as untagged
the new vlan is marked as 121
Does the existing vlan 120 now need to be taken out of untagged and marked as vlan 120 ?
also is that not the only existing config I need to do on the controller ?
Many thanks
08-21-2019 11:40 AM
Current management interfaces is configured with vlan 0 (ie "untagged" on wlc side) then you have to make sure "sw trunk native vlan 120" is configured when you convert switchport to trunk mode.
If you tagged management interface to vlan 120, then you remove "sw tr native vlan 120" from switchport config.
HTH
Rasika
*** Pls rate all useful responses ***
08-21-2019 01:00 PM
@Rasika Nayanajith wrote:Current management interfaces is configured with vlan 0 (ie "untagged" on wlc side) then you have to make sure "sw trunk native vlan 120" is configured when you convert switchport to trunk mode.
If you tagged management interface to vlan 120, then you remove "sw tr native vlan 120" from switchport config.
HTH
Rasika
*** Pls rate all useful responses ***
Thanks for your response
I did do this and the ssids disappeared and the WLC came offline. Is there something else additionally that needs to be done. Does the WLC or Aps need to be power cycled
08-21-2019 01:55 PM
No need to power cycle AP or WLC.
Do you have access to WLC console. Then post " show interface detail management" output and from the switch "show run interface gx/x" where Gx/x is the interface connect to WLC
HTH
Rasika
08-22-2019 01:54 AM
(Cisco Controller) >show interface detailed management
Interface Name................................... management
MAC Address...................................... 10:f3:11:a4:96:00
IP Address....................................... 192.168.120.10
IP Netmask....................................... 255.255.255.128
IP Gateway....................................... 192.168.120.1
External NAT IP State............................ Disabled
External NAT IP Address.......................... 0.0.0.0
Link Local IPv6 Address.......................... fe80::12f3:11ff:fea4:9600/64
STATE ........................................... REACHABLE
Primary IPv6 Address............................. ::/128
STATE ........................................... NONE
Primary IPv6 Gateway............................. ::
Primary IPv6 Gateway Mac Address................. 00:00:00:00:00:00
STATE ........................................... INCOMPLETE
VLAN............................................. untagged
Quarantine-vlan.................................. 0
Active Physical Port............................. 1
Primary Physical Port............................ 1
Backup Physical Port............................. Unconfigured
DHCP Proxy Mode.................................. Global
Primary DHCP Server.............................. 192.168.120.10
--More-- or (q)uit
Secondary DHCP Server............................ Unconfigured
DHCP Option 82................................... Disabled
DHCP Option 82 bridge mode insertion............. Disabled
IPv4 ACL......................................... Unconfigured
IPv6 ACL......................................... Unconfigured
URL ACL.......................................... Unconfigured
mDNS Profile Name................................ Unconfigured
AP Manager....................................... Yes
Guest Interface.................................. No
L2 Multicast..................................... Disabled
08-22-2019 01:57 AM
Here is new interface
(Cisco Controller) >show interface detailed XXXXX-inXXX
Interface Name................................... XXXXX-inXXX
MAC Address...................................... 10:f3:11:a4:96:04
IP Address....................................... 192.168.121.10
IP Netmask....................................... 255.255.255.128
IP Gateway....................................... 192.168.121.1
External NAT IP State............................ Disabled
External NAT IP Address.......................... 0.0.0.0
VLAN............................................. 121
Quarantine-vlan.................................. 0
NAS-Identifier................................... none
Active Physical Port............................. 1
Primary Physical Port............................ 1
Backup Physical Port............................. Unconfigured
DHCP Proxy Mode.................................. Global
Primary DHCP Server.............................. 192.168.120.10
Secondary DHCP Server............................ Unconfigured
DHCP Option 82................................... Disabled
DHCP Option 82 bridge mode insertion............. Disabled
IPv4 ACL......................................... Unconfigured
URL ACL.......................................... Unconfigured
mDNS Profile Name................................ Unconfigured
--More-- or (q)uit
AP Manager....................................... No
Guest Interface.................................. No
3G VLAN.......................................... Disabled
L2 Multicast..................................... Enabled
08-22-2019 01:58 AM
Please see also the trunk config
interface GigabitEthernet1/0/11
description Wifi Controller
switchport trunk native vlan 120
switchport trunk allowed vlan 120,121
Many thanks
08-22-2019 02:29 AM - edited 08-22-2019 02:32 AM
Best way to do it, tag management vlan to 120 & remove "sw tr na vl 120" under switch port.
(WLC) config interface vlan management 120
Once you do that, you should be able to access WLC
Pls test
HTH
Rasika
08-22-2019 03:41 AM
Sorted
One should remember to tell a port that it is a trunk
switchport mode trunk :)
Thank you for your help
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide