multiple ssid with multiple vlans configuration example on cisco aironet aps.doc
TRANSCRIPT
-
7/30/2019 Multiple SSID With Multiple VLANs configuration example on Cisco Aironet APs.doc
1/9
Multiple SSID With Multiple VLANs configuration
example on Cisco Aironet APs
VERSION 12
o Introduction
o Components used
o Assumption
o Design
o Configuration on the AP
Step 1
Step 2
Step 3
Configuration on the Switch Step 4
o MANAGING THE AP WITH MANAGEMENT IP ADDRESS
o Verify
o Video as well on the same
Introduction
Configuration example using multiple VLANs with multiple SSIDs
Components used
Any MLS switch which runs IOS
Aironet Access Points
Assumption
https://supportforums.cisco.com/docs/DOC-14496#Introductionhttps://supportforums.cisco.com/docs/DOC-14496#Components_usedhttps://supportforums.cisco.com/docs/DOC-14496#Assumptionhttps://supportforums.cisco.com/docs/DOC-14496#Designhttps://supportforums.cisco.com/docs/DOC-14496#Configuration_on_the_APhttps://supportforums.cisco.com/docs/DOC-14496#Step_1https://supportforums.cisco.com/docs/DOC-14496#Step_2_https://supportforums.cisco.com/docs/DOC-14496#Step_3https://supportforums.cisco.com/docs/DOC-14496#Configuration_on_the_Switchhttps://supportforums.cisco.com/docs/DOC-14496#Step_4https://supportforums.cisco.com/docs/DOC-14496#MANAGING_THE_AP_WITH_MANAGEMENT_IP_ADDRESShttps://supportforums.cisco.com/docs/DOC-14496#Verifyhttps://supportforums.cisco.com/docs/DOC-14496#Video_as_well_on_the_samehttps://supportforums.cisco.com/docs/DOC-14496/diff?secondVersionNumber=12https://supportforums.cisco.com/docs/DOC-14496#Introductionhttps://supportforums.cisco.com/docs/DOC-14496#Components_usedhttps://supportforums.cisco.com/docs/DOC-14496#Assumptionhttps://supportforums.cisco.com/docs/DOC-14496#Designhttps://supportforums.cisco.com/docs/DOC-14496#Configuration_on_the_APhttps://supportforums.cisco.com/docs/DOC-14496#Step_1https://supportforums.cisco.com/docs/DOC-14496#Step_2_https://supportforums.cisco.com/docs/DOC-14496#Step_3https://supportforums.cisco.com/docs/DOC-14496#Configuration_on_the_Switchhttps://supportforums.cisco.com/docs/DOC-14496#Step_4https://supportforums.cisco.com/docs/DOC-14496#MANAGING_THE_AP_WITH_MANAGEMENT_IP_ADDRESShttps://supportforums.cisco.com/docs/DOC-14496#Verifyhttps://supportforums.cisco.com/docs/DOC-14496#Video_as_well_on_the_same -
7/30/2019 Multiple SSID With Multiple VLANs configuration example on Cisco Aironet APs.doc
2/9
I assume that you have configured the DHCP pool on the IOS switch or the Router or on
the dedicated DHCP server.
Design
Assuming we have 3 VLANs (1,2 and 3) with native as 1 and mapping to 3 different SSIDs (one ,two and three) on any Aironet Access Points.
SSID ONE uses WEP encryption SSID TWO uses WPA-PSK
SSID THREE uses WPA-2-PSK
Assuming the AP Ethernet port is connected to fa 2/1 port of the switch.
Broadcasting all the 3 SSIDs.
Configuration on the AP
Step 1
>> Configure the SSID and Map it to respective VLANS..
Enable
Conf t
Dot11 ssid one
Vlan 1
-
7/30/2019 Multiple SSID With Multiple VLANs configuration example on Cisco Aironet APs.doc
3/9
Authentication open
Mbssid Guest-mode
End
Enable
Conf t
Dot11 ssid two
Vlan 2
authentication open
authentication key-management wpa
wpa-psk ascii 7
Mbssid Guest-mode
End
Enable
Conf t
Dot11 ssid three
Vlan 3
authentication key-management wpa version 2
wpa-psk ascii 7
Mbssid Guest-mode
End
-
7/30/2019 Multiple SSID With Multiple VLANs configuration example on Cisco Aironet APs.doc
4/9
Step 2
>> Assigning the Encryption to different SSIDs with respective VLANs.
Enable
Int dot11 0
Mbssid
ssid one
ssid two
ssid three
encryption vlan 1 mode wep mandatory
encryption vlan 1 key 1 size 40bit
encryption vlan 2 mode ciphers tkip
encryption vlan 3 mode ciphers aes-ccm
Step 3
>> Configuring the sub interface for Dot11 radio 0 and Ethernet.
AP# configure terminal
Enter configuration commands, one per line. End with CNTL/Z.
AP(config)# interface Dot11Radio0.1
-
7/30/2019 Multiple SSID With Multiple VLANs configuration example on Cisco Aironet APs.doc
5/9
-
7/30/2019 Multiple SSID With Multiple VLANs configuration example on Cisco Aironet APs.doc
6/9
-
7/30/2019 Multiple SSID With Multiple VLANs configuration example on Cisco Aironet APs.doc
7/9
On the AP issue the command show dot11 associations and you need to see all the 3
SSIDs
ap#show dot11 associations
802.11 Client Stations on Dot11Radio0:
SSID [one] :
SSID [two] :
SSID [three] :
2. Try pinging from the AP to the Switch VLAN interface, you should be able to ping.
MANAGING THE AP WITH MANAGEMENT IP ADDRESS
This is done by assigning the IP address to the BVI interface of the AP, that is.
Enable
Conf t
Int bvi 1
Ip address
No shut
-
7/30/2019 Multiple SSID With Multiple VLANs configuration example on Cisco Aironet APs.doc
8/9
-
7/30/2019 Multiple SSID With Multiple VLANs configuration example on Cisco Aironet APs.doc
9/9