We currently tunnel guests to a 4402 that sits behind our firewall and it's been working well for a few years but I am aware that the 4402 is now EoL so I am exploring alternatives:
We also have several 5508s deployed and I'm wondering if - in any new guest access config - I can allocate one of its free h/w ports to connect to the firewall, even though the 5508 is configured to use LAG.
To put it another way can I configure a new port to a seperate VLAN and not be part of the the LAG'd ports or are you tied to having all ports acting as a group if LAG is switched on?
It might be a basic piece of knowledge but I really don't know.
No you can't. It is either all LAG or none at all. It would be nice to be able to define your lag ports and also define a separate port for another vlan, but it just doesn't work that way.
Sent from Cisco Technical Support iPhone App