5 Replies Latest reply on Sep 5, 2013 11:54 AM by noor

    Guest Wireless and VLans

    slynk New Member

      I am trying to add a Guest Wireless network on top of our current infrastructure.

       

      I have created VLAN 11 for the guest traffic.

      APs are configured with the guest SSID on VLAN 11.

      The firewall is configured with a Guest Wireless interface that is configured as a DHCP server and is on VLAN 11.

      VLAN 11 has been configured on all switches (NetVanta 1234 POE and 1238 POE) with the port that connects to the firewall configured to VLAN 11.

      The APs are connected to ports configured as Trunks.

       

      The basic structure is:

      AP connect to switchport configured as trunk on 1 NetVanta 1234.

      This is trunked via gigabit port to a NetVanta 1238.

      The firewall is connected to a 2nd NetVanta 1234 on a switchport configured to VLAN 11.

      The 2nd NetVanta is also trunked via gigabit port to the NetVanta 1238.

       

      AP -> 1st 1234 -> 1238 -> 2nd 1234 -> Firewall

       

      I cannot get a DHCP address on the guest network. Cisco has verified my firewall configuration is correct. Can anyone see why my VLAN 11 traffic may not be passing through?

        • Re: Guest Wireless and VLans
          levi Employee

          slynk:

           

          Thank you for asking this question in the support community.  There is a post that addresses a very similar question:  https://supportforums.adtran.com/message/5461#5461.  However, if you would like to reply with the configuration of the ADTRAN wireless controller, (please remember to remove any information that is sensitive to the organization), I will be happy to review it for you.

           

          Levi

            • Re: Guest Wireless and VLans
              slynk New Member

              levi,

                   Thanks for your reply. We do not have an Adtran wireless controller, only Adtran switches. The APs and Firewall are Cisco.

                • Re: Guest Wireless and VLans
                  levi Employee

                  slynk:

                   

                  As long as the VLANs are defined properly on all the ADTRAN switches, and the APs are correctly tagging the "guest" VLAN on the trunk ports, then the ADTRAN switches should just pass them through.

                   

                  If you connect a PC to a port in VLAN 11 on the "2nd 1234" does it obtain an IP address from the firewall?  What if you plug a PC into the "1st 1234" on VLAN 11, does it obtain an IP address from the firewall?

                   

                  Levi

                  1 of 1 people found this helpful
                    • Re: Guest Wireless and VLans
                      slynk New Member

                      I have, one at a time, taken each device out of the loop until I hooked directly to the firewall. I still did not get an address. It appears that the firewall configuration is the issue.

                      Thanks for taking the time to look at this.

                        • Re: Guest Wireless and VLans
                          Employee

                          slynk-

                          I went ahead and flagged the "Correct Answer" on this post to make it more visible and help other members of the community find solutions more easily. If you don't feel like the answer I marked was correct, feel free to come back to this post to unmark it and select another in its place with the applicable buttons.  If you have any additional information on this that others may benefit from, please come back to this post to provide an update.  If you still need assistance, we would be more than happy to continue working with you on this - just let us know in a reply.

                           

                          Thanks,

                          Noor