Configuring one SSID with Multiple VLANs

We have a schoolwide network with over 700 computers in multiple buildings.  We have a gigabit fiber backbone and appromiately 60 Cisco 3500XL switches and a 6500 series core switch tying it together..  We have installed about 40 1000 series access points in an attempt to create a mesh network using a Cisco 4404 controller.  The AP's appear on each of our 6 VLANs but we would like to have a single SSID across the campus.  We can only get the AP's on the same subnet as the controller to "come up"
1. Is this even possible?  
2. Could the problem lie in our port configuration to the controller?
mikerich61Director of TechnologyAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

If you use a controller, then the LWAPP software on the AP's tunnel all wifi traffic to the controller.

LWAPP-enabled access points do not support Layer 2 LWAPP. They must get an IP address and discover the controller using DHCP, DNS, or IP subnet broadcast.

On every vlan/subnet where you have AP's you will need to setup DHCP or DNS to help them find the Controller.

When you are installing a Layer 3 access point on a different subnet than the Cisco Wireless LAN Controller, be sure that a DHCP server is reachable from the subnet where you will be installing the access point, and that the subnet has a route back to the Cisco Wireless LAN Controller. Also be sure that the route back to the Cisco Wireless LAN Controller has destination UDP ports 12222 and 12223 open for LWAPP communications. Ensure the route back to the Primary, Secondary, and Tertiary Cisco Wireless LAN Controller allows IP packet fragments. Finally, be sure that if address translation is used, that the access point and the Cisco Wireless LAN Controller have a static 1-to-1 NAT to an outside address. (Port Address Translation is not supported.)


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
SSID = VLAN = subnet.
One SSID can only be associated with one VLAN. One VLAN is typically associated with one IP subnet. You can have all 6 SSID's on all AP's and users will get the proper IP address/access depending on the SSID/authentication
All ports that connect AP's need to be trunk ports.
mikerich61Director of TechnologyAuthor Commented:
Thanks for the help!
HI lrmoore - I'm experiencing an issue with 3 1130 AG's each configured with 2 vlans and 2 ssid's, each ssid is associated with a vlan - I can only get an IP address when connected to 1 of the ssid's, the other one doesn't give me an address - I believe I have the asa 5505(the ap's are connected to the 5505) configured as you describe above with the ports trunked on all AP connections - It seems that something is amiss with one of the ssid's - Is what you described above basically all that needs to happen for this to work?


ps I have a question opened concerning this also if the answer is more involved.
You must have a dhcp server for each subnet/vlan/ssid
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Wireless Networking

From novice to tech pro — start learning today.