Solved

Need help with Cisco wireless and DHCP

Posted on 2012-03-22
6
781 Views
Last Modified: 2012-03-27
Hello. We have a Cisco wireless network with 4 APs in the main office, and 1 AP at a satellite location. The two location have different LAN IPs. I want to configure things so that wireless clients in the satellite office are pointed to the satellite office DHCP server. This is what i have done:
- defined two WLANs (Main & Satellite). They both connect to the same Controller Interface (port 1)
- In the Satellite WLAN properties, I went to the Advanced tab and checked to "Override DHCP server" specifying the IP address of the Satellite DHCP.
despite these, my Satellite wireless clients are getting an IP address from the main office DHCP. Need some help in setting this up properly. thanks!
0
Comment
Question by:criskrit
  • 4
  • 2
6 Comments
 
LVL 45

Expert Comment

by:Craig Beck
ID: 37759409
The easiest way to do this is to configure the satellite AP in H-REAP mode.  This will enable local switching, instead of sending all traffic via the AP to the controller.

By overriding the DHCP server, you're only telling the controller to forward DHCP requests to a different DHCP server.  That doesn't tell the client to pick up a different IP address though as the GIADDR will be forwarded within the request.

You could also use AP VLAN groups, but this is a little harder to configure.  H-REAP is a better solution as the WLAN will continue to function at the satellite office if the WAN link fails.
0
 

Author Comment

by:criskrit
ID: 37759433
Sounds like a good plan, can you explain how to do the H-REAP thing? Does this mean the AP will stop being controlled by the controller and work autonomously? How do i manage it in this case? deep thanks!
0
 
LVL 45

Accepted Solution

by:
Craig Beck earned 400 total points
ID: 37759552
The AP will still be controlled by the WLC but it won't send client traffic to the WLC - instead it will deal with client traffic as though it was an autonomous AP.

Here's the Cisco H-REAP configuration guide...

http://www.cisco.com/en/US/docs/wireless/controller/6.0/configuration/guide/c60hreap.html


And here's the configuration example...

http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807cc3b8.shtml
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 

Author Comment

by:criskrit
ID: 37768914
hi again, i went through the stuff you sent me and in all honesty got a bit confused. The example suggests i create separate WLANs for each mode of operation (Central or Local Authentication, Central or Local Switching). However I only want one mode: Local Authentication, Local Switching. Also, for now I don't care about user authentication (Radius, Local users etc), clients can simply connect if they have the Pre-Shared Key (PSK). Do i need to setup WLANs for all other modes? Can i "force" Local Authentication/Switching although the AP can "see" the Controller?

This is what i have setup:
- A WLAN using WPA2/PSK authentication, with H-REAP Local Switching Enabled, and with "DHCP Overrride" checked
- An AP operating in H-REAP mode. I haven't specified any VLANs in the H-REAP tab given that there is only one VLAN in the Satellite office.
- An AP Group that associates the WLAN with the AP

does all this sound right? What I am trying to achieve is for the clients to authenticate with the PSK, connect to the AP, and get a LOCAL ip address from the DHCP specified in the "DHCP override" field.

deep thanks!
0
 

Author Comment

by:criskrit
ID: 37772258
actually, no need to answer, the configuration works so this covers me! :-)
i will ask other questions in separate threads, i am closing/awarding this one.
thanks for the help! :-)
0
 

Author Comment

by:criskrit
ID: 37774253
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

With the purchase of CloudCommand by Comcast customers are left in a bind as subscriptions expire and render the AP's disabled. The following will explain how to flash your Ubiquiti AP's with CloudCommand firmware back to Ubiquiti firmware. HOWTO…
For Sennheiser, comfort, quality and security are high priority areas. This paper addresses the security of Bluetooth technology and the supplementary security that Sennheiser’s Contact Center and Office (CC&O) headsets provide.  
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now