01-22-2013 07:48 AM - edited 07-03-2021 11:23 PM
hello,
We are connecting a cisco router (819) to wireless lan network (lwapp) through its wireless interface.
clients ---> 819 ---->AP (WGB) ------ lwapp ----- AP ---> LAN ---> servers.
since the clients are on the same subnet as the the VLAN on the lwapp, everything works great.
When we add a new L3 VLAN on the 819 router, and we try to ping the clients from the servers, the packets can reach the clients but never received by the servers back. it seems like the bridge is dropping the packets when they go back from the client to the servers.
NB: when we use a GRE tunnel from the 819 to the LAN, everything works great.
any idea?
thank you.
heloma.
01-22-2013 07:59 AM
Good question .. Can you post your config for the wgb ?
Sent from Cisco Technical Support iPhone App
01-22-2013 10:11 AM
thanks George for your quick reply.
here is the config of the wgb. the BVI interface is for mgmt use only.
heloma.
!
version 12.4
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname AP-819
!
logging rate-limit console 9
!
no aaa new-model
!
!
dot11 syslog
!
dot11 ssid ibusnet
authentication open
authentication key-management wpa
wpa-psk ascii 7 xxxxxxxxxxxxxxxxxx
!
!
!
username xxxxxxxxxx password 7 xxxxxxxxxxxxxxxxxxxxx
!
!
bridge irb
!
!
interface Dot11Radio0
no ip address
no ip route-cache
shutdown
!
encryption mode ciphers aes-ccm
antenna gain 0
station-role root
infrastructure-client
bridge-group 1
bridge-group 1 subscriber-loop-control
bridge-group 1 block-unknown-source
no bridge-group 1 source-learning
no bridge-group 1 unicast-flooding
bridge-group 1 spanning-disabled
!
interface Dot11Radio1
no ip address
no ip route-cache
!
encryption mode ciphers aes-ccm
!
ssid ibusnet
!
antenna gain 0
station-role workgroup-bridge
bridge-group 1
bridge-group 1 spanning-disabled
!
interface GigabitEthernet0
description the embedded AP GigabitEthernet 0 is an internal interface connecting AP with the host router
no ip address
no ip route-cache
bridge-group 1
bridge-group 1 spanning-disabled
!
interface BVI1
ip address xxxxxxxxx 255.255.192.0
no ip route-cache
!
no ip http server
no ip http secure-server
ip http help-path http://www.cisco.com/warp/public/779/smbiz/prodconfig/help/eag
bridge 1 protocol vlan-bridge
bridge 1 route ip
!
!
!
line con 0
line vty 0 4
login local
!
end
01-23-2013 09:41 AM
George,
is my scenario feasible without GRE tunnel ?
thank you.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide