Controllerless Networks

If you connect another machine directly to the switch on VLAN1 can you ping it?

Do you mean in an interface in Access mode with VLAN1? Yes, I can ping it!

I am having a similar problem.

My IAP config:

I have 2 wlan in IAP, and the management interface of IAP is in a native vlan 90 (mngt)

wlan1 - vlan 1

wlan4 - vlan 4

uplink management - trunk - native vlan 90 - allowed all vlans

wired-port-profile default_wired_port_profile
switchport-mode trunk
allowed-vlan all
native-vlan 90
no shutdown

wlan ssid-profile WLAN4
index 4
type employee
essid WLAN4
vlan 4

wlan ssid-profile WLAN1
index 1
type employee
essid WLAN1
vlan 1

In my switch (L3) i configured both interfcaces vlan 1 and 4 (with dhcp), and vlan 90 (no dhcp)

(the IAP has an fixed IPaddress).

The uplink to the IAP:

description *** IAP Aruba Test ***
switchport trunk native vlan 90
switchport trunk allowed vlan 1,4,90
switchport mode trunk
no cdp enable
end

The clients connecting to the wlan1 (vlan1) cant´t get an IP. It seems that they are falling into the native vlan 90.

Does the IAP tag the vlan 1? I am missing something?

Thank you all.

gmoutinho

I believe this is a bug in the current IAP firmware I suggest you to contact TAC to confirm it. We ran into similiar issue and got the response that currently IAP does not support using a native vlan other than VLAN 1 on a trunk port of the uplink interface.

Hi, apparently this 'bug' still exists...I've send the below question to support, but I probably should have posted it here.

Here's the question:

I have an issue with a customer who has a 'flat' vlan 1 network.
All clients have a fixed IP in vlan 1.

There was one Instant cluster of about 50 IAP-135 access points, with the following SSID's:
- EMPLOYEES: Radius authentication, client vlan assignment: default vlan, client ip assignment: network assigned (fixed IP's)
- PUBLIC: portal authentication, client ip assignment: Virtual controller assigned (internal dhcp)
- SMARTPHONES: WPA2, client vlan assignment: static vlan 20, client ip assignment: network assigned (external dhcp)

As he wanted different SSID's on different sites I've split the cluster in several small clusters. I've done that by putting the AP's in a seperate native vlan.

This worked fine, for the PUBLIC and SMARTPHONES SSID's, but not for the EMPLOYEES SSID.
As the default (native) vlan wasn't 1 anymore I adjusted the EMPLOYEES SSID to 'client vlan assignment: static vlan 1' (tagged in vlan 1).

But this doesn't seem to work. Somehow it seems impossible to tag VLAN 1 on the SSID / VC.

As I wanted to put the VC controller management IP in VLAN 1 (as all other devices) I've specified this as such in the <system> tab on the VC. After that I completely lost connection with the virtual controller.
The access points of that particular cluster were still accessible via their IP in the native vlan of the cluster.

EX:
cluster 100:
IAP101: 192.168.100.1 / 24
IPA102: 192.168.100.2 / 24
untagged: vlan 100, tagged vlan 1, 20
Virtual Controller: 192.168.100.100 255.255.255.255 -> VC reachable
Virtual Controller: 192.168.1.100 255.255.255.0 vlan 1 ---> after this setting no longer reachable

cluster 200:
IAP101: 192.168.200.1 / 24
IPA102: 192.168.200.2 / 24
untagged: vlan 200, tagged vlan 1, 20

dear,

do the bug steal exist or not . have you contact the Aruba support or not.

Hi

I'm not sure if it's a 'bug' or by design, but is isn't possible to tag vlan 1.

As the customer didn't have a support contract, Aruba support couldn't help me.

Br

Peter