how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Goofoff109 · ‎10-27-2014

i will be blunt, how should i set this up? i mean nothing fancy but just get it working..

setup.

6 Aruba IAP-225's all updated to the latest firmware.

Cisco Catalyst 3750

CPPM (will take care of this later)

3 SSID ( Internal only Employees), (External only for guest), and one for managers who have all access and point them to existing DHCP server.

i already have the IAPs setup working with a virtual controller on the cisco switch.

LACP ether/port channels to each iap because of the dual connections.

these are VLAN 40, 192.168.40.x

switchport mode access

I know how to create the SSID's and have. How do i go about making sure those SSID get on the correct vlans? Internal is Vlan 50 192.168.50.x, External is Vlan 51 192.168.51.x, Management is vlan 53 192.168.53.x (these are trunk vlans)

Do i need to make them the dot1q encapsulation??

do i associate those vlans with the port groups?

Is there a way for those vlans to see the existing dhcp server with scopes for those ip ranges i have already created? (this is with ip helper address in the vlan correct??)

Sorry if this is a lot but i have not done networking in a long time and not done enterprise grade wireless ever. Got stuck on this project and i need some major major help

boneyard · ‎11-30-2011

it is quite easy, you just put all those VLANs on the port-channel (which should be in trunk mode) towards the IAP.

on the IAP (which is default in trunk mode) you then assign the client to the correct VLAN on your SSID config tab 2) VLAN, network assigned, static, VLAN number.

then it works as if your clients are in that VLAN.

Do i need to make them the dot1q encapsulation??

yes, on the cisco switch you do, on the IAP nothing is needed

do i associate those vlans with the port groups?

yes, you set the port channel to turnk mode with allowed VLANs all or the ones you want, the native VLAN is for the management IP of the IAP

Is there a way for those vlans to see the existing dhcp server with scopes for those ip ranges i have already created? (this is with ip helper address in the vlan correct??)

that will be the default, you dont need to do anything. the IAP just "puts" the client in the VLAN asif it was there via a wire.

if it doesnt work i would start simple and not work with the port-channel and don't try to restrict VLANs towards the IAP. start broad, get it working and then add the more complex stuf.

Victor Fabian · ‎07-20-2011

Aruba has a free training on how to setup Instants:
http://cloud.arubanetworks.com/instant-training

Goofoff109 · ‎10-27-2014

I think i got the aruba side with the with the SSIDs and the numbering of the vlans just fine.

could you give me a quick example of what i should see in the switch side?

the ports for the port channels

currently the port channel are default to what they were when they were created and to put dot1q you need to put them in truck mode correct?

then associate those port channels with the vlan correct?''

should it be something like this?

Interface port channel xxxx

switchport mode trunk

switchport trunk encapsulation dot1q

switchport trunk native vlan 40

switchport trunk allowed vlan 50,51,53

is that what i need to do on the port channels or on both the port channels and the interfaces?

Vlan 40 is an access vlan right now because its just a "management" vlan.

Anything else i should be doing?

Victor Fabian · ‎07-20-2011

Try this:
interface Port-channel1
description LACP
switchport trunk encapsulation dot1q
Switchport mode trunk
Switchport trunk native Vlan 40
Switchport trunk allowed VLAN 40,50,51,53

interface GigabitEthernet0/2
switchport trunk encapsulation dot1q
Switchport mode trunk
Switchport trunk native Vlan 40
Switchport trunk allowed VLAN 40,50,51,53
channel-group 1 mode active

interface GigabitEthernet0/1
switchport trunk encapsulation dot1q
Switchport mode trunk
Switchport trunk native Vlan 40
Switchport trunk allowed VLAN 40,50,51,53
channel-group 1 mode active

Goofoff109 · ‎10-27-2014

Thanks to both of you.

Innovate at the speed of mobile and IoT.

Be in the know.

Join, Learn, Share.

How can we help?

Essential Reading.

Ideas Exchange.

Controllerless Networks

how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

IAP Licenses

IAP and external Captive Portal

Instant AP DHCP with Ip helper

A little question about IAP

IAP autojoin mode - how?

Creative Configurations

Ap-80mb

CLI Command reference guide

Remote AP

AP Groups

WPA-PSK and VLAN assignment via MAC address

Cisco ACS and Aruba Radius Auth

ICMP Type and Code Filtering

Remove wireless profiles on Windows XP machines

Rolling out 802.1x with GTC

AirMesh Downloads

AirWave Downloads

Amigopod Downloads

Aruba Access Point 80 SB/MB Download

Aruba Instant Downloads

Indoor 802.11n Site Survey and Planning

Base Designs Lab Setup for Validated Reference Design

Optimizing Aruba WLANs for Roaming Devices

Managing and Optimizing RF Spectrum for Aruba WLANs

Guest Access with ArubaOS

Controllerless Networks

how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Re: how the heck should i set this up? Cisco Catalyst 3750x, Aruba IAP-225's, 3 SSID

Follow Us