we have x2 5406zl core switches linked with 10b links (trunked) and msm765zl wireless controller and need to change ip addressing from 10.10.1.0/16 to 10.10.1.0/24, 10.10.2.0/24 for example. we would like each subnet to be on its own vlans as at present everything is in one broadcast domain (including the wifi) to do this we need to
-create dhcp scopes for each subnet on the dhcp server
-add ip helper lines to each vlan config (pointing to dhcp server)
-enable ip routing on the core switches
-tag all core switch ports with vlans which will require access and tag the trunks to the outer switches with any vlans which will be used
- the main issue is how do i change the wifi controller to tunnel access point traffic directly to it rather than simply authenticating users and giving them direct access to the network on whichever switch the wifi point is connected.
- i would like to have for example 1 ssid which is employess (with access to say vlan10,20) and another ssid which is guest with only access to say vlan10). in capture1.png you can see the authentication option is selected but not the access control, effectively when that is selected the traffic is tunnelled to the controller. i need to know
A- how to setup the dhcp relay so that it will give the access points an ip address and the clients connected the correct ip based on vlan
B- how to handle the traffic when it reaches the controller, i believe this is the VSC egress settings??
please ask if i need to make anything clearer or if you need more info