More VLAN on one Bridge

gbressanin · ‎04-03-2009

Hi,

I have 2 1240 in bridge. I need to transport on that bridge 3 vlan. I create 3 SSID , I see the dot11 association on both the AP but if I try to ping the remote it doesn't work.

Any suggestion?

Thank you in advance

Giovanni

jeff.kish · ‎04-03-2009

Hi Giovanni,

When in bridge mode, APs only need a single SSID to carry all VLANs. Delete two of the SSIDs, and remove the VLAN configuration from your remaining one. Be sure to configure "infrastructure-ssid" under the "dot11 ssid SSID_NAME" sub-command line.

You'll still need to make sure that you have the proper subinterfaces and bridge-groups. Let me know if that works, and if not please feel free to post your configuration and we'll get it resolved.

Jeff

gbressanin · ‎04-07-2009

Thank you Jeff,

unfortunately I have to go at the customer site for the test. I will update this conversation as soon as I have news.

Regards

Giovanni

gbressanin · ‎04-17-2009

Hi Jeff,

finally I can do some test with your suggestion but I don't able to obtain that the bridge carry all Vlan. Only Vlan 1 works.

I attach the config of both the AP.

hostname BridgeRoot

!

dot11 ssid Bridge1PR

authentication open

authentication key-management wpa

infrastructure-ssid

wpa-psk ascii pippo

!

power inline negotiation prestandard source

!

bridge irb

!

interface Dot11Radio0

no ip address

no ip route-cache

!

encryption mode ciphers aes-ccm tkip

!

ssid Bridge1PR

!

antenna transmit right

antenna receive right

channel 2412

station-role root bridge

world-mode dot11d country IT outdoor

bridge-group 1

!

interface FastEthernet0

no ip address

no ip route-cache

duplex auto

speed auto

hold-queue 160 in

!

interface FastEthernet0.1

encapsulation dot1Q 1 native

no ip route-cache

bridge-group 1

no bridge-group 1 source-learning

!

interface FastEthernet0.130

encapsulation dot1Q 130

no ip route-cache

bridge-group 130

no bridge-group 130 source-learning

!

interface FastEthernet0.344

encapsulation dot1Q 344

no ip route-cache

bridge-group 244

no bridge-group 244 source-learning

!

bridge 1 protocol ieee

bridge 1 route ip

================================================================================================================

hostname BridgenoRoot

!

dot11 ssid Bridge1PR

authentication open

authentication key-management wpa

infrastructure-ssid

wpa-psk ascii pippo

!

bridge irb

!

interface Dot11Radio0

no ip address

no ip route-cache

!

encryption mode ciphers aes-ccm tkip

!

ssid Bridge1PR

!

antenna transmit right

antenna receive right

station-role non-root bridge

world-mode dot11d country IT outdoor

bridge-group 1

no bridge-group 1 source-learning

no bridge-group 1 unicast-flooding

!

interface FastEthernet0

no ip address

no ip route-cache

duplex auto

speed auto

hold-queue 160 in

!

interface FastEthernet0.1

encapsulation dot1Q 1 native

no ip route-cache

bridge-group 1

no bridge-group 1 source-learning

!

interface FastEthernet0.130

encapsulation dot1Q 130

no ip route-cache

bridge-group 130

no bridge-group 130 source-learning

!

interface FastEthernet0.344

encapsulation dot1Q 344

no ip route-cache

bridge-group 244

no bridge-group 244 source-learning

!

bridge 1 protocol ieee

bridge 1 route ip

I done some test with different configuration but always only the Vlan 1 was OK.

Regards

Giovanni

gamccall · ‎04-17-2009

To fix:

dot11 ssid Bridge1PR

vlan 1

interface Dot11Radio0

no encryption mode ciphers aes-ccm tkip

encryption vlan 1 mode ciphers aes-ccm tkip

interface Dot11Radio0.1

encap dot1q 1 native

bridge-group 1

interface Dot11Radio0.130

encap dot1q 130

bridge-group 130

interface Dot11Radio0.344

encap dot1q 344

bridge-group 244 !note typo matches current configs

gbressanin · ‎04-17-2009

Thank you, it's work!

Regards

Giovanni