2 Replies Latest reply on Feb 24, 2016 2:12 AM by nskarim

    BSAP location selection for wireless client

    nskarim New Member

      Hi Folks,

      We have an ssid which role maps to several different locations, lets say location Paris, London, tokyo. Assuming the controller is located at the main office in London

      When a client in Paris connects to an AP in Paris, authenticates and is mapped to the role( with several locations configured-- location group) how does the AP determines the location to put the client on? what is the process used?

       

      As per the documentation i found online here

      "If locations on a vWLAN system are inactive, even just on a few APs, many different problems can occur. If a client authenticates and is placed in a role that specifies a location which is inactive on the associated AP, the AP will first attempt to tunnel the client to another AP that has that location. If one is not available, the client may be forced into the native VLAN (albeit with the same role)."

       

      My question really is regarding the quote above "... If a client authenticates and is placed in a role that specifies a location which is inactive on the associated AP, the AP will first attempt to tunnel the client to another AP that has that location. If one is not available, the client may be forced into the native VLAN (albeit with the same role)..." How does AP select "the location" when many locations are included in the role?

       

      Thanks and regards

       

      /Karim

        • Re: BSAP location selection for wireless client
          evanh Employee

          Karim,

           

          This is a great question. I assume you are using the Location Groups feature and assigning that group to all your APs. In this context, when a client connects, vWLAN will look at the role and see the Location group. At this point, it will then check the AP to see which locations on it are active. At this point, it will select one based on the active locations on that particular AP. So if the Tokyo location is the only one active on the Tokyo APs, it will select that one.

           

          The problems that this can specifically cause are the tunneling issues you mentioned. If the locations are inactive at Tokyo, or some other locations are incorrectly active in Tokyo, then unwanted tunneling can occur.

           

          Because of this, ADTRAN recommends not using groups of locations for different physical sites and networks. I would suggest having separate locations or location groups for each separate geographical location. This will keep any tunneling that may result within those specific regions and networks.

           

          Please respond to this post if you have further questions.

           

          Thanks,

          Evan

          ADTRAN TSE

            • Re: BSAP location selection for wireless client
              nskarim New Member

              Hi Evan,

              Thank you for taking the time to reply to my question.

              My issue appears to be resolved already by somehow setting the switch port on the remote site to trunk although it is a small "flat" network there.

               

              As you said "The problems that this can specifically cause are the tunneling issues you mentioned. If the locations are inactive at Tokyo, or some other locations are incorrectly active in Tokyo, then unwanted tunneling can occur." when the issue occurred i checked the AP at the remote site, but could only see the "local" location as active on the AP. As we are using the same SSID and same radius it looked like the only way to separate things would have been to go for different domains. But would it be scalable to create different domain for every location (sites) in that case?

               

              Luckily making the port as trunk using the same formal access vlan as native vlan in the trunk solved it although i can't  understand it

               

              regards

               

              /Karim