05-16-2014 12:44 AM
Hi all, has anyone ever tried and successfully change the Vlan assignment based on role derivation in Tunnled-node setup?
What Im getting at is, would it be possible for instance to have vlan 60 as a guest vlan pure internet access as a default vlan for a tunnled-node port.
But when an successfull AAA over wired is performed your vlan changes to for instance vlan 10 that is full access internal.
Im fully aware that you may change roles and restrict access within the same vlan thus getting the same amount of security, but im aiming at completly end up within another vlan and subnet.
Solved! Go to Solution.
05-16-2014 05:23 AM
You can do a vlan change for a TN client. However the problem you may run into is that the client does not re-dhcp on the new VLAN. There isn't a port bounce during the VLAN change.