Hello,
I'm sure this is probably trivial for most on here, but I'm struggling enabling other VLANs on my 3600 controller running 6.1.3.1. Here is a snippet of the config.
vlan 2
vlan 3
vlan 4
vlan 5
vlan 6
vlan 7
vlan 8 "Guest"
vlan 300 "Northside Wireless VLAN Staff"
vlan 301 "Northside Wireless VLAN Student"
vlan 400 "Rockhill Wireless VLAN Staff"
vlan 401 "Rockhill Wireless VLAN Student"
vlan 500 "AELS Wireless VLAN Staff"
vlan 501 "AELS Wireless VLAN Student"
vlan 600 "Parkway Wireless VLAN Staff"
vlan 601 "Parkway Wireless VLAN Student"
vlan 700 "AMS Wireless VLAN Staff"
vlan 701 "AMS Wireless VLAN Student"
vlan 800 "AHS Wireless VLAN Staff"
vlan 801 "AHS Wireless VLAN Student"
interface gigabitethernet 1/0
description "GE1/0"
trusted
trusted vlan 1-4094
!
interface gigabitethernet 1/1
description "GE1/1"
trusted
trusted vlan 1-4094
switchport access vlan 8
!
interface gigabitethernet 1/2
description "GE1/2"
trusted
trusted vlan 1-4094
switchport access vlan 5
!
interface gigabitethernet 1/3
description "GE1/3"
trusted
trusted vlan 300-301,400-401,500-501,600-601,700-701,800-801
switchport mode trunk
switchport trunk allowed vlan 300-301
!
interface vlan 1
ip address 10.110.40.240 255.255.248.0
ip helper-address 10.110.40.154
!
interface vlan 8
ip address 10.110.96.2 255.255.248.0
shutdown
!
interface vlan 5
ip address 10.110.72.47 255.255.248.0
ip helper-address 10.110.40.154
!
interface vlan 2
ip address 10.110.48.16 255.255.248.0
!
interface vlan 300
ip address 10.110.116.2 255.255.254.0
no ip routing
ip helper-address 10.110.40.154
!
ip default-gateway 10.110.40.1
uplink disable
Right now I think all my traffic flows of G 1/0 It is on the default vlan. What I thought I could do is trunk port G 1/3 to the Cisco switch it is plugged into to get traffic for VLAN 300 if I allowed and trusted the VLANS on that physical port.
Right now I only have access to VLAN 1 for any clients. How would I configure another port on this controller to deal with traffic for other VLANs like 300, 301, 400 etc? As I was just sitting here typing this I thought of something....
Would I have to trunk or allow vlans on the ports the APs are plugged in to as well?
By the way I know the config is right on the Cisco switch because I was able to join to VLAN 300 on the wire with my Mac and a VLAN Interface.
What my goal is, is to have a user sign in to 802.1x and assign them to a VLAN based on Filter-ID which I've got working but just can't get an IP address from the DHCP server which does work with the setup above with the VLAN on my Mac as well.
#3600