Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 123
  • Last Modified:

Trunk port configuration for Wireless VLANs

Objective:      Trying to seperate SSID's into two VLANs.  Currently, two SSID's using VLAN 40, everything working fine.
Configuration:       Setup a port on our Catalyst 3750 as a trunk port for VLANs 40 & 45, added SSID and configured it for VLAN 45 on      Ubiquiti wireless controller.  (VLAN 40 is currently being used for the wireless system, AP's are plugged into Catalyst access ports set for VLAN 40).

Troubleshooting:  Would not communicate so, started tested with a laptop in which I can set VLAN tags.  Configured 40 and 45 on the laptop seperately with no luck.  Reconfigured Catalyst to an access port testing one VLAN at a time and only works when the laptop is configured with no vlans.  

Have only set trunk ports to connect between switches, never to handle multiple VLANs for endpoint devices,  Am I missing something?
Thank you.
0
Webcc
Asked:
Webcc
  • 5
  • 3
  • 2
  • +1
2 Solutions
 
masnrockCommented:
The controller has to be on the same VLAN as the APs. However, within the controller you can configure the SSIDs to use tagged VLAN IDs.

When you configured the trunk port, did you configure 40 to be the untagged VLAN and 45 to be a tagged one? You might want to configure the ports going to the APs as General ports instead, with the PVID being 40 and untagged, and 45 being tagged

This way, when your laptop are connected to general ports configured as such, they will be on VLAN 40 (if you put in for VLAN 45 on the NIC of the laptop, it will end up there). Also, then you should be able to configure your SSIDs to use VLAN 45.
0
 
WebccAuthor Commented:
Configured the trunk port as follows:
switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk allowed vlan 40,45
0
 
masnrockCommented:
What about the ports going to the laptop and the APs? Those should be configured as general ports (trunk ports do not always play nicely with non-Cisco devices).
0
Veeam and MySQL: How to Perform Backup & Recovery

MySQL and the MariaDB variant are among the most used databases in Linux environments, and many critical applications support their data on them. Watch this recorded webinar to find out how Veeam Backup & Replication allows you to get consistent backups of MySQL databases.

 
WebccAuthor Commented:
Should have asked how do you configure a Catalyst for "general" ports instead, with the PVID being 40 and untagged, and 45 being tagged?
0
 
Craig BeckCommented:
You do NOT need to have the APs on the same VLAN as the controller.  It makes it easier, but it's not mandatory.

The 3750 doesn't do general ports.  It does access or trunk.  It's Cisco-speak.

In your case, the port config needs to be...

switchport trunk encapsulation dot1q
switchport mode trunk
switchport trunk native vlan 40
switchport trunk allowed vlan 40,45

Open in new window


The laptop doesn't need to to any VLAN tagging.  That will be handled at the AP.
0
 
WebccAuthor Commented:
But if I want to test proper port configuration I should be able to set the laptop VLAN ID  to 40 or 45 right?
0
 
masnrockCommented:
I'm writing this under the assumption you're using a cable for the laptop...

If you want to test VLAN 40, you don't need to set a VLAN on the laptop. However, if you want to to test VLAN 45, then you do need to set it into the NIC.

As far as the APs go, you'll need to make sure that the SSIDs that will utilize VLAN 45 is correctly configured.
0
 
WebccAuthor Commented:
Thanks guys, working great!
0
 
Craig BeckCommented:
You just need to put a switch port on whichever VLAN you want to test. NO VLAN tagging at the laptop is necessary.
0
 
WebccAuthor Commented:
Just using the laptop to test port configuration before I connect the AP's and set the VLAN ID's on them to match.  Thanks
0
 
John ChumaCommented:
I normally don't do this, but thank you to Craig for the solution. I have the same switch at home and have multiple VLANS for WiFi and this worked.
0

Featured Post

WatchGuard Case Study: NCR

With business operations for thousands of customers largely depending on the internal systems they support, NCR can’t afford to waste time or money on security products that are anything less than exceptional. That’s why they chose WatchGuard.

  • 5
  • 3
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now