Hi Mr. Lereno,

Thank you for your quick reply and for being sharp on analysing the configuration.

I did change the default-router to 172.16.1.1.

I also changed the interface connected to the Access point to:

switchport trunk allowed vlan add 1,2

The thing is that I use an access point that's hosting two SSID's from different VLAN's 1, 2 on the same port FA2 in that case.

After making the changes i am still unable to have DHCP from SSID on VLAN 2, But like before VLAN 1 is Ok.

Please advice.

Best Regards,

Antoni

Hi Mr. Lereno,

Thank you again,

The router is a cisco 871.

The AP is a TP-Link without cli just a web interface config and it is limited to

1. multi SSID that assign to VLAN.

2.Here is an emulator for my AP.

http://www.tp-link.com/resources/simulator/TL-WA901ND_V3/Index.htm 

Thanks on advance

Antoni

Hi Mr. Moreno,

I do not have experience with TPLINK. From what I checked on the emulator make sure on (wireless configuration) :

operation mode -> multi-ssid

enable vlan box enabled

From the router side (interface configuration):

switchport mode trunk

switchport trunk encapsulation dot1q

The command the you added (switchport trunk allowed vlan add 1,2) will permit vlan 1 and 2 only when in trunking mode(forced or negotiated), you need to force the trunking mode with "switchport mode trunk".

Check the config with the following commands:

show int status

show int trunk

show vlans

Regards,

Pedro Lereno

Hi Mr. Lereno,

Thank you again.

I do not know if it is a good idea but my vlan2 is Interface VLAN2 and not vlan2.

Router#sh vlans

No Virtual LANs configured.

Jut added the configuration changes that you suggested and i will try this in the next minutes .

Kind Regards,

Antoni

Edit:

Still no dhcp on ssid2 vlan2 :(

Port      Mode         Encapsulation  Status        Native vlan

Fa3       on           802.1q         trunking      1

Port      Vlans allowed on trunk

Fa3       1-4094

Port      Vlans allowed and active in management domain

Fa3       1-2

Port      Vlans in spanning tree forwarding state and not pruned

Fa3       1-2

DOORS#show int stat 

FastEthernet0

          Switching path    Pkts In   Chars In   Pkts Out  Chars Out

               Processor          0          0          0          0

             Route cache          0          0          0          0

                   Total          0          0          0          0

FastEthernet1

          Switching path    Pkts In   Chars In   Pkts Out  Chars Out

               Processor     177213   43112337     502014  246694268

             Route cache          0          0          0          0

                   Total     177213   43112337     502014  246694268

FastEthernet2

          Switching path    Pkts In   Chars In   Pkts Out  Chars Out

               Processor     548225   67050713     889382  614508932

             Route cache          0          0     209760   12585600

                   Total     548225   67050713    1099142  627094532

FastEthernet3

          Switching path    Pkts In   Chars In   Pkts Out  Chars Out

               Processor     624774   79715009    1308638 1310136575

             Route cache          0          0     171547   10292820

                   Total     624774   79715009    1480185 1320429395

FastEthernet4

          Switching path    Pkts In   Chars In   Pkts Out  Chars Out

               Processor      67849    8100427      75332    7951694

             Route cache    1794772 2071656886    1157350      14895

                   Total    1862621 2079757313    1232682    7966589

Interface NVI0 is disabled

Vlan1

          Switching path    Pkts In   Chars In   Pkts Out  Chars Out

               Processor     150303   15243186      88597   10225572

             Route cache    1175818  163789663    1794769 2071080416

                   Total    1326121  179032849    1883366 2081305988

Vlan2

          Switching path    Pkts In   Chars In   Pkts Out  Chars Out

               Processor        523      48203        201      14034

             Route cache       1730     618548          0          0

                   Total       2253     666751        201      14034

Hi Mr. Moreno,

It seems right from the router!

Anyway issue the following commands: 

show vlan-switch

show ip interface brief

show run all | s FastEthernet3

Check if vlan 2 has a spanning-tree instance:

show spanning-tree

If not go to config mode and issue the command: spanning-tree  vlan 2

Then : show  spanning-tree vlan 2

Regards,

Pedro Lereno

Hi Mr. Lereno,

Thanks again and here it is:

Router#show vlan-swit

VLAN Name                             Status    Ports

---- -------------------------------- --------- -------------------------------

1    default                          active    Fa0, Fa1, Fa2

2    VLAN0002                         active    

1002 fddi-default                     act/unsup 

1003 token-ring-default               act/unsup 

1004 fddinet-default                  act/unsup 

1005 trnet-default                    act/unsup 

VLAN Type  SAID       MTU   Parent RingNo BridgeNo Stp  BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1    enet  100001     1500  -      -      -        -    -        1002   1003

2    enet  100002     1500  -      -      -        -    -        0      0   

1002 fddi  101002     1500  -      -      -        -    -        1      1003

1003 tr    101003     1500  1005   0      -        -    srb      1      1002

1004 fdnet 101004     1500  -      -      1        ibm  -        0      0   

1005 trnet 101005     1500  -      -      1        ibm  -        0      0   

Router#sh ip int bri

Interface                  IP-Address      OK? Method Status                Protocol

FastEthernet0              unassigned      YES unset  up                    down    

FastEthernet1              unassigned      YES unset  up                    up      

FastEthernet2              unassigned      YES unset  up                    up      

FastEthernet3              unassigned      YES unset  up                    up      

FastEthernet4              192.168.0.3     YES DHCP   up                    up      

NVI0                       unassigned      YES unset  administratively down down    

Vlan1                      172.16.0.2      YES NVRAM  up                    up      

Vlan2                      172.16.1.1      YES NVRAM  up                    up      

Router#show run all | s FastEthernet3

interface FastEthernet3

 switchport access vlan 1

 switchport trunk encapsulation dot1q

 switchport trunk native vlan 1

 switchport trunk allowed vlan 1-4094

 switchport mode trunk

 switchport voice vlan none

 switchport priority extend none

 switchport priority default 0

 snmp trap link-status

 ip igmp snooping tcn flood

Router#show spanning-tree

 VLAN1 is executing the ieee compatible Spanning Tree protocol

  Bridge Identifier has priority 32768, address xxxxxxxxxxx

  Configured hello time 2, max age 20, forward delay 15

  We are the root of the spanning tree

  Topology change flag not set, detected flag not set

  Number of topology changes 1 last change occurred 07:06:03 ago

          from FastEthernet1

  Times:  hold 1, topology change 35, notification 2

          hello 2, max age 20, forward delay 15 

  Timers: hello 0, topology change 0, notification 0, aging 300

 Port 2 (FastEthernet1) of VLAN1 is forwarding

   Port path cost 19, Port priority 128, Port Identifier 128.2.

   Designated root has priority 32768, address xxxxxxxxxxx

   Designated bridge has priority 32768, address xxxxxxxxxxx

   Designated port id is 128.2, designated path cost 0

   Timers: message age 0, forward delay 0, hold 0

   Number of transitions to forwarding state: 1

   BPDU: sent 12792, received 0

 Port 3 (FastEthernet2) of VLAN1 is forwarding

   Port path cost 19, Port priority 128, Port Identifier 128.3.

   Designated root has priority 32768, address xxxxxxxxxxx

   Designated bridge has priority 32768, address xxxxxxxxxxx

   Designated port id is 128.3, designated path cost 0

   Timers: message age 0, forward delay 0, hold 0

   Number of transitions to forwarding state: 1

   BPDU: sent 12792, received 0

 Port 4 (FastEthernet3) of VLAN1 is forwarding

   Port path cost 19, Port priority 128, Port Identifier 128.4.

   Designated root has priority 32768, address xxxxxxxxxxx

   Designated bridge has priority 32768, address xxxxxxxxxxx

   Designated port id is 128.4, designated path cost 0

   Timers: message age 0, forward delay 0, hold 0

   Number of transitions to forwarding state: 1

   BPDU: sent 25588, received 0

 VLAN2 is executing the ieee compatible Spanning Tree protocol

  Bridge Identifier has priority 32768, address xxxxxxxxxxx

  Configured hello time 2, max age 20, forward delay 15

  We are the root of the spanning tree

  Topology change flag not set, detected flag not set

  Number of topology changes 1 last change occurred 07:06:08 ago

          from FastEthernet3

  Times:  hold 1, topology change 35, notification 2

          hello 2, max age 20, forward delay 15 

  Timers: hello 1, topology change 0, notification 0, aging 300

 Port 4 (FastEthernet3) of VLAN2 is forwarding

   Port path cost 19, Port priority 128, Port Identifier 128.4.

   Designated root has priority 32768, address xxxxxxxxxxx

   Designated bridge has priority 32768, address xxxxxxxxxxx

   Designated port id is 128.4, designated path cost 0

   Timers: message age 0, forward delay 0, hold 0

   Number of transitions to forwarding state: 1

   BPDU: sent 12796, received 0

Thanks again

Best Regards,

Antoni

Hi Mr. Lereno,

Thank you again you are a Guinness.

It was the switch that was buried under my desk.

Its working now :)

I will set up the Vlan tagging on the switch and i'm done

Now i just need to isolate the SSID 2 on VLAN2 since i can from the guest VLAN ssh to the router and see the VLAN1 network.

Thank you again you are the best.

Have a nice weekend.

Best Regards,

Antoni