I'm in an environment where the vast majority of my 65 sites do not have vlan's defined. Everything is Procurve, defined in VLAN 1, and ulitmately plugged into an access port on a cisco 6513 that is in the VLAN I desire. From there DHCP requests are sent to my servers and a correct IP is handed out.
I've been deploying wireless in these buildings and as I have I've been creating wireless vlan's and seperating out the wireless traffic from regular user traffic and also implementing two vlans at each site. This appers to work great with my LWAPP's are connected directly to the controller and all the traffic is tunneled and I've created a dynamic interface on the WLC for the subnet in question.
The problem is -- In buildings were I have not been able to configure vlans as of yet and LWAPPs are deployed the AP's will hand out addresses to my clients in the subnet that the management interface is in. This subnet is unfortunately only a /24 and Addresses run out quickly. I've been experimenting with useing H-REAP to do central authentication and local switching but this does not seem to help. The clients either get NO address at all (0.0.0.0) or an address in the /24 of the management interface.
This is causes massive outages all over the enterprise due to the fact that when these new AP's are being installed they are unable to get IP's not matter what I do.
It should be said I work for a k12 and we had 200+ LWAPP's thrown on us without warning at 30 different sites. So there was zero time to plan for any of this. I'm in a pickle.
When this first happened our management interface was untagged while the native vlan was set the /24 where the management ip resides. One of the last things I have tried is to TAG the managment interface with the proper vlan ID and set the native vlan so some off-the-wall huge /16 I setup. I was hoping the clients would start getting IP's from THAT range if they were plugged into a building that was sitting in VLAN1 but had H-REAP enabled.
I'm at a total loss. I cannot explain why these damn clients are getting the IP's in the /24 of the manage interface. ANOTHER odd thing is that at -SOME- sites without any reason at all AP's plugged into VLAN1 switches are able to do central auth/central switching without ANY of this dhcp madness.
Any help would be appreciated.