Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1598
Views
5
Helpful
10
Replies

WLC 5508 : Physical port devoted for a specific VLAN / function?

Go to solution
holzhirt1
Level 1
Level 1

‎04-03-2013 10:44 AM - edited ‎07-03-2021 11:49 PM

Hello,

We have currently a WLC 5508 using 8 ports bundled into an etherchannel.

We would like to remove one physical from this etherchannel and use it for providing an access to Internet only,

Is it possible to create an virtual interface on the WLC that points only on this port?

If yes what could be the best option ? (we would like to have a physical separation for the Internet traffic only and encrypt the capwapp up to the WLC).

Thanks for your advices,

Regards

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎04-03-2013 10:49 AM

The best way is to have an anchor WLC. This way you can tunnel traffic to a guest anchor WLC located in the DMZ.

http://www.cisco.com/en/US/docs/wireless/technology/guest_access/technical/reference/4.1/GAccess_41.html

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

View solution in original post

0 Helpful

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to holzhirt1

‎04-03-2013 11:10 AM

When you break LAG then each port is its own, meaning that you would tie say your data vlan to port 1. The Swicth port going to port 1 could be a truck and the data vlan is configured on this switch port and tagging. You could then add port 2 as a back up shoud port 1 go down.

As far as load balance traffic. You would turn off etherchannel on the switch side, so no.

Normally if you have 3 WLANs you can tie 1 to each WLC port, 1 - data, 2 - voice, 3 - medical.

__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________

View solution in original post

0 Helpful
10 Replies 10

Go to solution
George Stefanick
VIP Alumni
VIP Alumni

‎04-03-2013 10:48 AM

Im afraid not. Once you LAG all the ports become (1). Only want is to break LAG and go PORTS.

__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎04-03-2013 10:48 AM

It is not possible. It's either all in a LAG or now at all.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame

‎04-03-2013 10:49 AM

The best way is to have an anchor WLC. This way you can tunnel traffic to a guest anchor WLC located in the DMZ.

http://www.cisco.com/en/US/docs/wireless/technology/guest_access/technical/reference/4.1/GAccess_41.html

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
holzhirt1
Level 1
Level 1

‎04-03-2013 10:52 AM

Thanks for your answers,

That means we would lose the whole LAG even if we break one interface?

And if we agree to do that we can achieve this ? But load-balancing won't be effective on the 7 other ports correct?

Otherwise what would be suggested to ensure a good separation for such purpose ?(using a minimum devices in between)

0 Helpful

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to holzhirt1

‎04-03-2013 11:10 AM

When you break LAG then each port is its own, meaning that you would tie say your data vlan to port 1. The Swicth port going to port 1 could be a truck and the data vlan is configured on this switch port and tagging. You could then add port 2 as a back up shoud port 1 go down.

As far as load balance traffic. You would turn off etherchannel on the switch side, so no.

Normally if you have 3 WLANs you can tie 1 to each WLC port, 1 - data, 2 - voice, 3 - medical.

__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful

Go to solution
holzhirt1
Level 1
Level 1

‎04-03-2013 11:12 AM

Ok but we can have port 1 into a trunk and pass several VLANs into it ?

0 Helpful

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to holzhirt1

‎04-03-2013 11:22 AM

Yes of course. You could tie all your WLANs to port 1 if you like. Make sure you truck the switch port and dont signify a vlan ID on the port in the WLC.

__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________

Go to solution
George Stefanick
VIP Alumni
VIP Alumni
In response to George Stefanick

‎04-03-2013 11:42 AM

If this answers your questions, please kindly mark the question as answered. Thanks

__________________________________________________________________________________________
"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
__________________________________________________________________________________________
‎"I'm in a serious relationship with my Wi-Fi. You could say we have a connection."

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________
0 Helpful

Go to solution
Scott Fella
Hall of Fame
Hall of Fame
In response to George Stefanick

‎04-03-2013 02:31 PM

+5 George for the correct answer:)

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***
0 Helpful

Go to solution
holzhirt1
Level 1
Level 1

‎04-03-2013 11:38 PM

Thank you all for your support in that matter,

I have now a better view on what's technically possible,

Kind regards

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card