View Single Post
Old 04-21-2019, 05:12 PM   #4
jpmvan
New Member
 
Join Date: Apr 2019
City & State: Vancouver, BC
My Country: Canada
I'm a: Knowledge Seeker
Posts: 1
Default Re: Questions about VLANs and Cisco Hardware

Quote:
Originally Posted by Spork Schivago View Post
Does anyone have any experience with Cisco hardware, specifically WLCs, Wireless APs, and VLANs?

I took the CCNA courses, but it was a very long time ago. We didn't go over wireless technologies in the course because back then, I believe wireless was fairly new in the business sector.

To start with, I'm having some trouble understanding VLANs. I realize on Cisco hardware at least that a VLAN ID is layer 2, a VLAN interface is layer 3. I am a bit confused with VLAN tagging though.

I have a setup like this:
Code:
Cisco Router
--------------
Interface GigabitEthernet 0/0/1 <-- access port, Public Static IPv4 address

Interface Wlan-GigabitEthernet0/1/8
 Description: Internal switch interface connecting to the embedded AP
 switchport trunk native vlan 999
 switchport trunk allowed vlan 10,20,40
 switchport mode trunk
end

VLAN ID 10
VLAN ID 20
VLAN ID 40

Interface VLAN 10 <-- Network Address 10.0.0.0 / 24, IP address 10.0.0.1
Interface VLAN 20 <-- Network Address 10.0.20.0 / 24, IP address 10.0.20.1
Interface VLAN 40 <-- Network Address 10.0.40.0 / 24, IP address 10.0.40.1

WLC
-----
Interface management <-- Untagged, IP address 10.0.0.2
Interface vlan_employees <-- Tagged VLAN 20, IP address 10.0.20.2
From the built-in WLC, I have trouble pinging the router. I read the management interface needs to be left untagged. But if it's left untagged, how does it work? The packet leaves the WLC, untagged, enters the WLan-GigabitEthernet 0/1/8 interface, and then gets tagged with VLAN 10? Or does the packet reach the GigabitEthernet 0/1/8 interface, sees that it doesn't belong to a VLAN, and the interface drop the packet?

My understanding about the native VLAN is if the packet coming into the interface is tagged with the same VLAN that is set as the native VLAN, the interface will remove the tag and forward the packet to it's destination, untagged. Is that correct?

Thanks!
You should set the WLC to tagged, VLAN 10 and then 10.0.0.1 and 10.0.0.2 should be able to ping each other.

From the WLC command line:
config interfacevlan management 10
jpmvan is offline   Reply With Quote