Hi, all thanks for your suggestions RE the VLAN config, VLAN1 isn't necessary as its just the default VLAN but I did test adding this to the VLAN config and it didnt change anything RE the DHCP on the corporate WiFi.
Turns out I just had to set the VLAN to native on the SSID config rather than static which resolved the issue.
Original Message:
Sent: Apr 29, 2024 09:44 AM
From: HornAlum
Subject: 6200F not passing DHCP to a VLAN
in Aruba CX, the "native" VLAN is your "untagged" VLAN that you are used to, from the ProCurve/ArubaOS operating system you are used to on your 2900's. Since you made it native, it's not including the 802.1q VLAN tag in the ethernet header.
The post right above this is correct, you need to make vlan 1 the "native". In the CX world, that "allowed" command is what ends up tagging the frames with the VLAN tag.
Original Message:
Sent: Apr 26, 2024 04:22 AM
From: AdrianK
Subject: 6200F not passing DHCP to a VLAN
OK from the Aruba guide I read on translating the VLAN config from AOS to AOSCX this should work :
vlan trunk native 20
vlan trunk allowed 20,30
What should it be so that tagged traffic from VLAN 20 and 30 gets to the APs on 1-12?
The uplink on port 12 is configured correctly isnt it ?
Original Message:
Sent: Apr 26, 2024 03:31 AM
From: Jochem Knoben
Subject: 6200F not passing DHCP to a VLAN
Hi,
your config for port 1-6 (AP uplink) differes between 2930f and 6200F.
2930f: untagged vlan1 + tagged vlan 20,30
6200f: untagged vlan 20 + tagged vlan 30
-> so I guess changing the 6200f config to be the same as on 2930f might help.
Original Message:
Sent: Apr 25, 2024 05:16 AM
From: AdrianK
Subject: 6200F not passing DHCP to a VLAN
Hello,
I'm currently in the process of deploying some new AP505s that include a Guest WiFi implementation that breaks out on a separate VLAN. We tested this with a 2930F to start with as the 6200F was not available and it worked fine with the below config:
; JL258A Configuration Editor; Created on release #WC.16.10.0009
; Ver #14:67.6f.f8.1d.9b.3f.bf.bb.ef.7c.59.fc.6b.fb.9f.fc.ff.ff.37.ef:44
hostname "ARUBA-CENTRAL-POC-SW"
module 1 type jl258a
ip default-gateway 10.33.0.254
snmp-server community REDACTED
snmp-server contact REDACTED
vlan 1
name "DEFAULT_VLAN"
no untagged 7-8
untagged 1-6,9-10
ip address 10.34.0.110 255.255.0.0
ipv6 enable
ipv6 address dhcp full
exit
vlan 20
name "DATA"
untagged 7
tagged 1-6
ip address 10.33.50.110 255.255.0.0
ipv6 enable
ipv6 address autoconfig
exit
vlan 30
name "BREAKOUT"
untagged 8
tagged 1-6
ip address 192.168.31.250 255.255.255.0
ipv6 enable
ipv6 address autoconfig
exit
management-vlan 20
spanning-tree
password manager
When trying to convert this config for use on the 6200F DHCP does not pass over VLAN20 but does on VLAN30 with the below config:
Current configuration:
!
!Version ArubaOS-CX ML.10.13.1010
!export-password: default
hostname REDACTED
user admin group administrators password ciphertext REDACTED
ntp server 10.1.2.40 iburst
ntp server pool.ntp.org minpoll 4 maxpoll 4 iburst
ntp enable
!
!
!
!
!
!
ssh server vrf default
ssh server vrf mgmt
vsf member 1
type r8q72a
vlan 1
vlan 20
description DATA
vlan 30
description BREAKOUT
spanning-tree
interface mgmt
no shutdown
ip dhcp
interface 1/1/1
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/2
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/3
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/4
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/5
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/6
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/7
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/8
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/9
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/10
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/11
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/12
no shutdown
no routing
vlan trunk native 20
vlan trunk allowed 20,30
interface 1/1/13
no shutdown
no routing
vlan access 20
interface 1/1/14
no shutdown
no routing
vlan access 30
interface 1/1/15
no shutdown
no routing
vlan access 1
interface 1/1/16
no shutdown
no routing
vlan access 1
interface vlan 1
no ip dhcp
interface vlan 20
ip address 10.33.0.150/16
interface vlan 30
ip address 192.168.31.250/24
snmp-server system-description Wi-Fi Switch
snmp-server system-location REDACTED
snmp-server system-contact REDACTED
snmp-server community REDACTED
ip route 0.0.0.0/0 10.33.0.254
ip route 0.0.0.0/16 10.33.0.254
ip route 0.0.0.0/24 192.168.31.254
!
!
!
!
!
https-server vrf default
https-server vrf mgmt
I tried adding a DHCP helper to VLAN20 but this didn't work either, am I missing something ?
Access points are connected to ports 1-12 and need to take traffic from VLAN20 and VLAN30.
VLAN20 Connected to Corporate LAN and VLAN30 goes straight out to the internet via the router which supplies DHCP to both VLANs.