Configure VLAN Passthrough on Cisco

Tyler Brooks
Tyler Brooks used Ask the Experts™
I currently have a Watchguard Firebox in place and have recently purchased a Cisco Catalyst 2960 to server as our primary switch. Our Watchguard currently manages our WAP's (also Watchguard) which have a private and public wifi network which is segmented through the use of VLAN's.

I'm extremely new to Cisco and I'm trying to determine how I would go about configuring the ports on the switch to pass along all VLAN traffic which should allow the WAP's to continue functioning.
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Distinguished Expert 2018
interface Gi1/0/1
  ! configure description if you want/need
  description WAP_C140458756
  !  encapsulation command may not be accepted (depending on model)
  switchport trunk encapsulation dot1q
  switchport mode trunk
 ! next one is default
  switchport trunk allowed vlan all

to configure range of ports (here ports Gi1/0/1 Gi1/0/2 and Gi1/0/4 (and allowing just specific VLANs on those ports:
interface range Gi1/0/1-2 , Gi1/0/4
  desc WAP_
  switchport trunk encapsulation dot1q
  switchport mode trunk
  switchport trunk allowed vlan 1,4,50-70

To add VLAN to allowed list:
interface Gi1/0/1
  switchport trunk allowed vlan add 10

Command switchport trunk allowed vlan 10 would remove all other VLANs from trunk

switch will pass only VLANs that are configured on switch (So you need to configure all needed VLANs on switch):
vlan 10
 name CustomerA
vlan 20
 name CustomerB

Open in new window

Tyler BrooksNetwork and Security Consultant



This answered my question exactly.
Distinguished Expert 2018

You're welcome.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial