chanfandk
asked on
Setting up Cisco 2960 with VLANs
I have the following devices:
- 6 x accesspoints (Cisco AP1131AG)
- 1 x switch (Cisco 2960)
- 1 x Firewall (Cisco ASA5510)
The switch collects the six APs and connects to its own interface on the ASA.
Every AP have 2 SSIDs; a private net and a guest net. These two SSIDs have been given the vlan numbers 2 and 3 in the APs. The six APs are spread widely among the area to provide best coverage and roaming.
The ASA will route clients based on its vlan number.
I have plugged it like this:
F0/1: AP1
F0/2: AP2
F0/3: AP3
F0/4: AP4
F0/5: AP5
F0/6: AP6
F0/11: LAN (for mangement)
F0/12: ASA5510 (unique interface)
How do i configure the switch to allow these two vlans on every port to go forward to the ASA?
And is my solution optimal? I want to get 2 wireless nets that people can access all over the company.
- 6 x accesspoints (Cisco AP1131AG)
- 1 x switch (Cisco 2960)
- 1 x Firewall (Cisco ASA5510)
The switch collects the six APs and connects to its own interface on the ASA.
Every AP have 2 SSIDs; a private net and a guest net. These two SSIDs have been given the vlan numbers 2 and 3 in the APs. The six APs are spread widely among the area to provide best coverage and roaming.
The ASA will route clients based on its vlan number.
I have plugged it like this:
F0/1: AP1
F0/2: AP2
F0/3: AP3
F0/4: AP4
F0/5: AP5
F0/6: AP6
F0/11: LAN (for mangement)
F0/12: ASA5510 (unique interface)
How do i configure the switch to allow these two vlans on every port to go forward to the ASA?
And is my solution optimal? I want to get 2 wireless nets that people can access all over the company.
ASKER
Hi pseudocyber,I can see a point with the 2106, but will stick to the equipment i already have.
There is a single line between the 2960 and the ASA. Routing will be done in the ASA, based on VLAN number.
Could you please provide me with the commands needed for configuring the 2960?
There is a single line between the 2960 and the ASA. Routing will be done in the ASA, based on VLAN number.
Could you please provide me with the commands needed for configuring the 2960?
ASKER
I saw that doc before i posted this question. You need to understand the theory in full to use it. And i dont.
I guess i should set "switchport mode trunk" on interface 1-6+12 ?
Is that it, or must i specify both vlans on every interface?
I guess i should set "switchport mode trunk" on interface 1-6+12 ?
Is that it, or must i specify both vlans on every interface?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Optimally, you would use a wirless controller and convert your AP's to "light" AP's so that all the config is done in the controller. Then the APs build their own tunnels through your network back to the controller and you only have to worry about the vlans in once place, on the controller.
http://www.cisco.com/en/US/products/ps7206/index.html