Vlan Setup issue with Wireless Access Point

downtownit · 2013-09-24T11:32:41.000Z

I recently purchased 30 SonicPoint NDR access points.

I have plugged in the AP’s directly into the x5 interface of my sonicwall and configured everything including the vLan’s. Everything is working beautifully until I plug in the AP and the interface into my 3com switch. Per Sonicwall support, the ports on the switch need to be trunk ports running 802.1q. This is the case.

The interface sees the AP but the clients are unable to connect.

My switch is a 3com 5500G.

Any help would be appreciated as Sonicwall support is indicating it’s a switching issue.

leifjohnson · 2013-09-24T11:52:12.000Z

I’m not sure about the trunk ports and the 802.1q. But I’ve had success setting up vlan’s on that switch, it’s straight forward enough and you just tag the port.

Could you give a bit more info about the vlans and how it’s all going together?

ronfcampbell · 2013-09-24T11:56:38.000Z

I think you have a problem here of Trunk or Access, Tagged or Untagged,.

If your AP’s are connected to a switch, and the AP’s will be the only device in that port of the switch, then you can set the port for Access Mode (sets the port to pass only one specified Vlan), Untagged (does not tag the traffic with the VLAN ID - not required as it is the only device on the port). Do that for each AP on the switch.

Now to get that VLAN’d traffic from the switch to the SonicWAll device. You need a Trunk port (a port that carries multiple VLAN’s) from the Switch to the SonicWALL. This port will need to be Trunk mode - Tagged, (it must be Tagged for the devices to differentiate between the VLANs what goes where according to your rules)on the switch / SonicWall.

Depending on how many ports you are using on the switch to connect to interfaces on your SonicWALL, you may also do individual connections per VLAN between the switch/SonicWALL, in this case, those connections would be Access - Untagged as opposed to the single connection trunk option above.

downtownit · 2013-09-24T12:19:28.000Z

I have 3 vlan’s with the access points

11 is for the AP’s
10 is for the corporate SSID
9 is for the Guest SSID

I do have 8 other vlans that have no issues in communicating and I would agree they are pretty straight forward in configuring.

Per SonicWall support the ports for the AP and the interfaces must be in trunk mode

ronfcampbell · 2013-09-24T12:23:35.000Z

If the AP’s have multiple VLAN’s, yes the switch ports to the AP’s will need to be Trunk Mode - Tagged.

For the Switch Ports to the SonicWALL - if its 1 ethernet connection - it will need to be Trunk Mode - Tagged. If its 1 interface per VLAN, then its Access - Untagged.

santosh7271 · 2013-09-24T12:38:57.000Z

Hi DowntownIT,

In your case the X5 is the WLAN interface… go to switch and make sure that the port which connected to the WLAN interface should be trunk mode and not all the ports. And the Sonicpoint connected ports should be member of VLAN 11,10 and 9 all are tagged.

This should help you.

Regards,

downtownit · 2013-09-24T12:52:44.000Z

santosh,

I made the changes and kept the x5 connection to the switch a trunk and the AP to a hybrid tagging only 9-11

It still isnt’ allowing a connection to the wireless. It isn’t dhcp either because the beacon isn’t being accepted.

The switch is set to have a PVID of 1. I wonder if that should be 11 on the trunk ports…

downtownit · 2013-09-24T13:26:05.000Z

Changing the PVID didnt’ work.

I also tried plugging in the AP and the interface to a 5 port layer 2 switch and it worked fine.

So frustrating…

santosh7271 · 2013-09-24T15:11:15.000Z

Hi,

Sorry to hear that …

is it possible that you make the 11 as untagged and 9,10 tagged.

if that did not help you, if possible please contact your switch support, it might save your time

Thank you,

santosh7271 · 2013-09-24T15:26:08.000Z

Hi DowntownIT,

There is one more option, you can contact SonicWALL sales or reseller who sold you that 30 sonicpoints!!!( you spent $$$$ on this) you should get suggestion from them. you are not asking them to configure the switch ( that you know how to do it).

They should suggest how to configure the switch for the sonicpoints

They might say this is switch configuration that you need to configure please tell them the above bold letters sentence

if you are not getting help then make some noise and get escalated to duty manager.

For sure you will get some Sr tech and they will help you out

The duty managers are good they will help you

downtownit · 2013-09-24T15:37:08.000Z

@santosh - Thanks for those words of wisdom.

I got it figured… The trunk ports needed to be tagged as 11 untagged and 9,10 tagged and the PVID 11

downtownit · 2013-09-24T15:38:24.000Z

Thanks everyone for the help, you keep reinforcing my love for anything Spice!!!

santosh7271 · 2013-09-24T15:42:42.000Z

@ DowntownIT congrats!!! I am happy that the issue is resolved.