Cisco Wireless :: Bonjour Gateway Deployment Need Vlan Select 6509E
Apr 9, 2013
Q: If i m going to do a Bonjour Gateway deployment, do i still need the vlan select feature on the wism's or is enabling multicast enough?
Details of the Q:
I m working with WISM s and WISM2;s, 1130 and 3602 ap;s. Cores are 6509-E's.
i m going to implement a Bonjour gateway (which is an Aerohive ap, no wifi enabled, its just a Bonjour gateway)
This ap is connected with a trunk port (to a 6509-E) and has the wifi client vlans on the trunk as allowed vlans. It also has an allowed vlan for AppleTV;s which will be wired devices.
The Aerohive gateway gets an ip address in every wifi subnet, so far so good.
I was thinking that if i enable multicast :
- globally on the wisms, with mcast-mcast distribution
- on the SVI's for the wifi client vlans
- on te SVI's of the vlans for cisco aps
- on the SVI for AppleTV
- SVI for wism management
- SVI for the Bonjour gateway
then do i still need vlan select? Maybe a stupid question, but i m not sure how to interpret some things in this document.
View 4 Replies
ADVERTISEMENT
Mar 4, 2013
I am considering upgrading our 5508 WLCs to version 7.4.1 to take advantage of the Bonjour gateway. What I want to do is allow clients on our guest wireless network to access things like the Apple TV in our conference rooms. My intention would be to have the Apple TVs on a separate vlan. Obviously, the Bonjour gateway would allow for access between these 2 networks. The question I have is this. If I have client isolation turned on my guest wireless network, is it still possible for these devices to access Apple TVs on another network?
View 2 Replies
View Related
Jan 8, 2013
We implemented WLC 5508 software version 7.3, with 8 Aironet devices, most of them are AIR-LAP1131AG-E-K9, and two AIR-LAP1242AG-E-K9.I could really have benefits of VLAN select feature, but I noticed that it's not working like it should. Two interfaces are in Interface group, but from 45 clients only few of them has IP address from one subnet, others have from second sub.I see requirements for this to work is 32 MB of flash on LWAP devices..I only have 16 MB.. upgrade of flash on devices or something ?
View 12 Replies
View Related
Sep 11, 2011
The 5508 is running code 7.0.116.0. I have created a group interface for 3 subnets and assigned the group to the WLAN. Clients are getting IP addresses in a round robin fashion. The issue or downside to this is if the lease has not expired before the next time the station connects to the WLAN it consumes an address on another subnet instead of grabbing the unexpired lease IP address on it's previous VLAN. It seems that the WLC determines the VLAN in the interface group before the DHCP request from the client in case the client already received a DHCP address that has not expired. This can be problematic since we have seen some iPhones requesting an address every 20 minutes thus consuming an address on every subnet in the interface group. Other than setting a lease time extremely low what can be done to address this?
View 1 Replies
View Related
Feb 12, 2013
in our environment we have a 6509E as a core switch which is connected to five 3750G installed in remote sites and are layer 3 routes. the routing protocol is ospf. i am just wondering if we could possbily create a vlan in the core switch and extended it to the remote site throug layer 3 connection. The reason we are thinking to do this we want to have a server redundancy if one of the server goes in the core site we can just turn on the server which is in the same vlan in the remote site so that we can limit the downtime .
View 4 Replies
View Related
Jul 6, 2012
I picked up a pair of RV220W's and before I spent loads of time at a remote site, I figured I'd go through some VPN testing at home to make sure I could get it setup properly. What this means is I've plugged the Internet uplink into a switch, then from the switch into both routers & configured them (using unique static IP's for each) from there. For what its worth: While I have some IT experience, I don't have strong networking experience.
I setup several VLAN's on the local RV220W, and the end result is to make it so that an asset at the remote site with an IP in any of the ranges (192.168.121.0/24, 192.168.131.0/24, 192.168.141.0/24 and any future VLANs) can communicate with/access resouces at the local site. Likewise, an asset at the local site with an IP in any of the ranges (.121, .131, .141 + any future VLANs) should be able to reach the remote resources (currently just 192.168.181.0/24, but future VLANs as well).
This evening I tried to focus on the relevant VPN pages of the Administration Guide to get the VPN up. Leaving the defaults I got as far as establishing a link between both sites and it seems that things are working right: From the remote site (.181) I can access the local site (.121, .131, .141); and from the local site I can at least ping resources (a laptop) on the remote site. (Yay!)
However, when I physically connected an asset that had a 192.168.121.X, 192.168.131.X and 192.168.141.X IP addresses to the remote RV220W (which is 192.168.181.0/24), I couldn't see it from the remote or local sites.I assume this is expected. But I'm reaching out to the community to see what other possibilities might be available becuase networking is a weak area for me. I figured it might be something like a Static [or Dynamic] Route but I really am not 100% sure.
'TECHNICAL' SPECS
Local Router LAN/WAN Settings:
LAN IP: 192.168.121.1 on default VLAN (1)
VLAN 13 defined 192.168.131.1 with DHCP enabled; Reservations created outside of DHCP scope
VLAN 14 defined 192.168.141.1 with DHCP enabled, Reservations created outside of DHCP scope
Inter VLAN Routing enabled for all VLANs
[URL]
View 7 Replies
View Related
May 5, 2013
Have 7.4 installed and configured for Bonjour Snooping. All is working, but working too well. We have a large campus that house 2 schools and each school is complaining that they can see the other schools Apple TV devices.
I have played around with a few different scenarios to see if I can localize the bonjour traffic. I guess I am looking to create a logical split for bonjour devices among the schools. Apple came to the school and informed us that the I PAD has a limit of 64 devices that can be seen via the bonjour. At some point we will have over 100 Apple TV added.
so we have 3 wlc 5508's with 7.4.100. we have 2 SSIDs that span the whole campus using AP groups to segment the floors in buildings. So the schools are logically split with AP groups.
Here is what I have tried, I created few mDNS profiles and assigned the services for Apple TV - let's call them school1 and school2. I assign the mDNS profiles to the interfaces dedicated each school. Enable snooping on the W LAN with profile of none. The end result is that devices from both schools can be seen.
I tried to create new ssid for apple TVs and a new ssid for 1 schools teachers. I followed the v lan select example [URL]. End result is that devices from both schools can be seen. I have tried the mDNS without multicast enabled just like the video shows to no avail - I assume maybe my AP groups might be more complicated then the example of just 2 v lans. [URL].
I have tried combinations of things, but I must be missing something . In the webinar, Cisco said it will use filtering to restrict which clients can see which services (Apple TV's, etc). What will Cisco use to filter Bonjour requests? According to this article
[URL].
The filtering options are: · Per W LAN/SSID · Per V LAN or AP Group · Per Interface Group (which is a group of V LANs pooled together). A Bonjour service policy can be created and applied on any one of the above criteria. In the future, we will support per-user Bonjour service policies which will come as a RADIUS attribute from the AAA server. Read more: [URL].
View 15 Replies
View Related
Mar 26, 2013
I connected my intranet cable to coreswitch 4510 created one vlan 600,that vlan gateway is routable from asa5580.now my intranet people able to ping my vlan gateway but iam unable to ping their ip.i added static route on asa route inside 192.0.0.0 255.255.255.0 10.100.106.1 1 but iam unable to ping remote ip.
View 2 Replies
View Related
Apr 17, 2011
I’ve recently brought a SG 300-52 for my company with the main intention of using the L3 switching, I’ve recently gone on a 3day cisco course and came backing thinking i knew what i had to do but as always if you don’t have the experts next to you to answer the questions you soon have problems.
I have setup 3 VLANS, the switch is basically on its default settings and VLAN 1 connects straight to the router/gateway and on the internet but VLAN 2 and 3 do not, they are completely localy contained to their own Non DHCP networks.how do I get VLAN 2 and 3 on the internet and able to talk to each VLAN?
The keywords I’ve came across in my search are static routing between VLANs and InterVLAN, I’m assuming i need to do one of these??
View 26 Replies
View Related
Mar 24, 2013
I have the attached diagram and I followed the instructions from another posts / forum cases and the Apple TV is still not working.
My questions are:
1.-The WLC controller and AP must be in the same subnet?. This is not my case, the AP 3500 is operating in a remote location and I have a centralized WLC 5508.
2.- I already configured the Controller --- > General --- > Broadcast forwarding (enable) + AP Multicast Mode (Multicast / IP: 239.20.226.197).
3.-I already configured the Controller --- > Multicast ---- > Enable Global Multicast Mode (selected) + Enable IGMP Snooping (selected) + Enable MLD Snooping (selected). Please see the attachment.
4.-Do I have to configure something in the Mobility Management --- > Multicast Messaging --- > (Enable Multicast Messaging + Local Group Multicast IP Address) ?????
The Apple TV Device and Ipad are authenticated in the ISE using certificates with no issues and both got IP's from the DHCP for the WLAN Vlan assigned to the SSID activated (see pictures attached).
View 11 Replies
View Related
Apr 1, 2013
I have followed the details here as closely as I can:URL
I've upgraded to 7.4. I've enabled IGMP snooping, increased the time out, decreased the query/hello interval, went into Controller> menu and set AP Multicast Mode to Multicast with the Bonjour multicast range of 224.0.0.251.
Went into my WLAN and enabled Multicast VLAN Feature, and enabled my Multicast Interface as the same VLAN as the WLAN range.
The Lantronix Bonjour device is on the same VLAN as the WLAN (13). Accessing the Lantronix device shows it polling printers on our wired VLAN. However, no iDevice that joins the WLAN/SSID can find these printers.
View 6 Replies
View Related
Dec 5, 2012
I'm trying to figure out how to (or if I can) setup the management interfaces (fa1) on a couple of new 4500X switches. My issue is that the 4500X's themselves are the gateway for my management VLAN (.1 HSRP virtual, .2 and .3 SVIs on the pair of switches).
I would like to assign addresses from the management VLAN to the router Fa1 management interfaces but the software configuration guide seems to note this is not supported (and indeed it doesn't seem to work).
Physically I have Fa1 from core-1 into a port on an adjacent switch. Fa1 from core-2 also goes into a port on that adjacent switch. Both are in my management VLAN, whose SVIs are on the cores themselves.
View 5 Replies
View Related
Nov 11, 2011
I have an E2000 router that has an intermittent issue where Bonjour drops out. Suddenly my Apple TV won't see my computers, and my iPad won't see my network printer. This happens whether the Apple TV and computers are connected via wired or wireless interfaces.
Restarting the devices does not solve the issue.
Restarting the router solves the issue (until it happens again...)
My router is version 1.0, with 1.0.04 firmware.
View 3 Replies
View Related
Sep 10, 2009
I read an earlier posting about an issue between SPI on the latest WRT610N Version 1.0 firmware and a user's Apple TV. This pointed me to a "solution" to a perplexing problem I was having.
I have 4 machines, 3 connected via WiFi and 1 on one of the wired ethernet ports. I also have 2 Apple Airport Express units for audio streaming as well as 2 iPhones connected wirelessly.
Now for the symptoms, which are all new since updating to firmware ver.1.00.03.15:
1. The WiFi machines see the Airport Express units and can stream audio to them. However, the iPhone Remote app has trouble staying connected to iTunes running on any of these machines. A router reboot is a temporary fix, but connection is eventually lost again.
2. The wired machine cannot see the Airport Express units, nor can the Remote app pair with iTunes on that machine. It's as though no Bonjour-related functions work. Here, a router reboot also provides a temporary fix, but one that lasts only minutes.
Based on that prior post, I disabled SPI on the router and, lo and behold, the wired machine suddenly sees all Airport Express units and can pair with the iPhone Remote app!
I was going crazy, verifying that I was not having Windows Firewall issues, that there wasn't an incompatibility with Windows 7 (which I'm running on all), that this wasn't a Homegroup incompatibility of some sort, that Bonjour was up to date, etc. Only turning off SPI fixed the problem entirely.
So, Linksys ...Any firmware bug fix in the works for this? Can I safely go back to the prior firmware update without security or function concerns? If so, where can I get my hands on the older firmware file?
WRT610N Version 1.0 running 1.00.03.15
View 9 Replies
View Related
Aug 7, 2012
I am using an Aironet 1142 standalone AP and want to use Apples Bonjour Service between iOS devices e.g. iPad and Apple TV.I have found here some posts that suggest to disable igmp snopping but this didn't worked for me.All devices are in the same vlan/subnet. Do I need to configure something special?
View 3 Replies
View Related
Jul 27, 2011
We have recently purchased a Cisco SG300 and have been configuring it. [code] The VLANs have ACLs set up to prevent any communication between the Holly and Tempo VLANs (and their associated WAN VLANs).Each VLAN has a WAN available for it's use, which connects to external networks (including the Internet).In order to facilitate this, we have set up all the necessary ACLs and routes and confirmed that this all works.However, the problem comes when we assign the static routes that specify the default gateways.We add the two static routes below:
-0.0.0.0 next hop 10.10.200.254 metric 1
-0.0.0.0 next hop 192.168.200.254 metric 1
In this case, only one of the VLANs has WAN access. It is either Holly or Tempo (it can be either if the order the static route is added is changed).What we need is to force Holly to use Holly WAN and Tempo to use Tempo WAN, but we cannot see a way of doing this.Effectively, we want the following static routes: [code]
View 2 Replies
View Related
May 30, 2012
I have an ASA that houses 11 VLANs, and I am trying to add a 12th.One of the VLANs is for PCs that have internet only access.The new VLAN will be similar, but for multifunction printers only.VLAN 99 is for internet only and works fine, I can ping the gateway of 10.99.3.33 from any PC in that VLAN.I am creating VLAN 98, modeling it after VLAN 99, and I cannot get a PC in the vlan to ping the gateway of10.98.3.17.Both switch and ASA show the new VLAN 98 as UP, switchport is UP/UP.I have deleted and recreated VLAN 98 a few times, but I cannot get a PC VLAN 98 connectivity.Once it is working on the core switch, I will add it to the trunk to the IDS switches. VTP is not in use, everything is manual. [code]
View 4 Replies
View Related
Oct 15, 2012
I have created two vlans, vlan 1 data and vlan 200 voice. the issue is that when an on one vlan i cannot ping the default gateway of the othe vlan from my PC. An using sge 2010p switches.
below is my configuration
p route 0.0.0.0 0.0.0.0 192.168.0.1
ip dhcp relay address 192.168.0.100
ip dhcp relay enable
ip dhcp information option
interface vlan 1
ip dhcp relay enable(code )
View 3 Replies
View Related
Mar 31, 2012
I have six Cisco 300 Series switches in Layer 2 mode. They are all connected using ports in Trunk mode. These Trunks are tagged members of all VLANS.
I have one 300 series in layer 3 mode with IP address assigned to each VLAN.I would like to use one Internet gateway for multiple VLANS. This gateway has numerous IP ports that forward to internal ip addresses on various machines.
All i9nternal clients use their respective VLAN IP as their default gateway.The Layer 3 switch is connected to one of the Layer 2's using a Trunk that is a tagged member of all of the VLANS.
I understand how traffic routes from a client to its respective VLAN gateway. Where I am confused is how it routes from there to the Internet gateway? Internet gateway is 192.168.1.1.VLAN IP's are 192.168.2.1, 192.168.3.1, etc...
Should the Internet Gateway be patched into the Layer 3 switch or one of the Layer 2's using a separate "Internet" VLAN?
View 5 Replies
View Related
Jul 25, 2012
I have a design hurdle that I cannot seem to cross. I have two sites and I need the same VLAN to span both sites. I have accomplished this using L2TP but my issue is that I can no longer assign a gateway for this VLAN on the router. The 2 routers are 2821's and are connected with a dedicated fiber run.
Ant recommendation for how this could be accomplished? It would be great if I could have the same gateway at both sites by leveraging some sort of bridged interface (BVI so I've heard) but I am at a loss as to where I should start with this. Also, this is not the only VLAN that needs to traverse the link.
View 2 Replies
View Related
Mar 25, 2013
Currently, we have a plain network and we are planning to 'upgrade' it a little. We want to implement VLANs to separate wireless clients, workstations + servers and infrastructure devices form each other.As of now, we have no VLANs, and no managed Switches. We only have an RV016 that handles two ISPs and a 3rd party connection service to the office branches ( I belive they're using Frame Relay, but as far as we know, we are not concerned since we cannot touch their devices)
The reason behind the title, pointing towards the famous SGE2000P, is that my workplace is located in Argentina... and we don't have as many choices as some of you guys have ! In fact, I was unsuccessful trying to get a Cisco partner to contact me. We would like to replace the RV016 with a cisco 1941 (and a HWIC switch card).
So, back to business..! Assuming we will be using the SGE2000P switches, I was thinking about setting VLANs using 802.1Q through seven of these switches, along with a 1941 Cisco router. I'm expecting the 1941 to handle load balancing between both ISPs and the 3rd party link. Now, as for Inter VLAN routing, I would like to have gigabit traffic between VLANs.
Is it possible to use one SGE as Layer 3 mode to hande inter VLAN traffic (gigabit speeds) while using the 1941 as a end point device to reach internet (using PAT) ?Would you suggest me to use the 1941 for Inter VLAN routing, despite the 10/100 limitation(*) and use all SGE's in L2 mode? We need two ISPs, a third link for the FR connection, and finally the LAN interface. As far as I know, I'm limited to the gigabit builtin interfaces for WAN purposes, am I right?
View 5 Replies
View Related
Jan 10, 2013
After some time of usage (typically days), I notice that Bonjour networking degrades. That is, the various Apple computers on my network can no longer see each other via Apple's Bonjour protocol. They can still connect directly using IP addresses however. The only solution seems to be a reset of the router. Are there some detailed logs I can look into to determine what the problem may be? The logs shown in the web interface don't seem detailed enough.
View 7 Replies
View Related
Feb 4, 2013
I just saw the AVC feature in WLC version 7.4.100.0 and wonder, if there is a possibility to select a AVC profile per user, based on it's RADIUS authentication via ACS.For example:
- A user in group teacher can access youtube on SSID A
- A user in group student can not access youtube on SSID A
View 3 Replies
View Related
Feb 20, 2012
what Linksys routers, e.g. WAG120N, are compatible with Airplay and Bonjour?
View 9 Replies
View Related
Nov 13, 2011
My problem is this: Randomly, the DIR-825 will prohibit streaming to my AirPort Express via AirTunes. It'll also disappear from Bonjour Browser and AirPort Utility. I can connect directly to it, if I enter the IP into the AirPort utility directly.The only way to get it to come back is to either reboot the DIR-825, reboot the AE, or unplug the ethernet to the AE.
View 3 Replies
View Related
Jul 10, 2011
Can the WRT110 forward Bonjour packets? I have one WRT110 running my home wifi network with firmware version 1.0.07. I've spent hours trying to get my iPad to print to a wireless printer (HP D110a). I can print and scan from several wireless PC's on the same network but cannot see the HP printer. I started with the WEP 128-bit and then switched to WPA for a while but no luck so I switched back to WEP. I've read that other's have had similar problems with this and other Linksys routers.
From the iPad point of view I have iOS version 4.3.3. When I try to Airprint, for example through the Safari web browser, I see no printers available. I've tried many apps all with the same problem.
View 3 Replies
View Related
Oct 10, 2011
Sports bar with many Tv's playing differnet games, want the ability to have tables select the tv and hear the audio for their TV,Each table to have set of small speakers and a dial to select the tv.
View 1 Replies
View Related
May 13, 2012
In an enviroment with WCS and a WLC5508 with 40 AP's (WAPs are either 1262's and 1252's), I have noticed that the bulk of users are infact operating on 802.11g although most operating notebooks are running 802.11n capable NICs (including my own laptops NIC - but yet when I connect I connect at 54Mbps.). Only a small portion of registered clients are using 802.11n. All my WAPs have both radios enabled?My question is how does a client notebook select a "prefered" band of 802.11n. I know in some cases the wireless NICs themselves have an option to select the "Prefered Band", but there are many notebooks out there that dont have this option. What would make a client connect at 802.11n over 802.11g? Who makes that call ?
View 4 Replies
View Related
Apr 29, 2012
We have a mix of 1231 and 1242 access points in an LWAPP environment. They are connected to WiSM controllers in our 6509's and are managed by a central WLC. Everything is running version 7.0.230. My question is can I apply MAC address filtering on a select group of AP's to restrict access to a specific SSID broadcast on these AP's without affecting other AP's also connected to the same WiSM?
View 3 Replies
View Related
Sep 27, 2012
I have several WLC 5508 with 7.2.110 firmware. My questions are:
(1) Is band select is enable by default on 7.2.110?
(2) All the variables settings on the band select, how do I set it up to make 5 ghz more preferable than 2 ghz?
View 3 Replies
View Related
Jan 4, 2012
A couple of days ago I noticed my download speed (from my own webserver) has slowed down. I checked my wireless connection and saw that the radiotype was now 802.11g instead of 802.11n, what is always has been. I looked at the Wireless configuration in the router's webbased config panel, but the only things listed there are "Disabled", "Mixed", "Wireless-G Only" and "Wireless-B Only". A scratched my head a bit, wondering wether or not I really bought an N router or just a G router. But IIRC I really bought an N router. It said so on the bill. Also, when I check the user manual, page 14 says I should be able to select "Wireless-N Only".
View 5 Replies
View Related
Mar 24, 2011
was working fine with my new router DSL-2730U D-link router and using it's wireless connectivity with G/N mixed mode..and i noticed that the range is so low so i decided to switch to N-only mode and when i did that i couldn't connect at all!..the router uses N-150 btw.
View 8 Replies
View Related
Jul 18, 2012
I have an AE3000 dual band wireless adapter using the Win 7 Pro OS. At work our routers all use the same SSID, but utilize different channels. In terms of signal strength, the strongest signal is usually, but not always, one of the channels on the 2.4GHZ band (usually 11). However, in terms of speed of connection and lack of overcrowding, the best signal is invariably one the channels on the 5GHZ band (usually 161). My AE3000 will inevitably connect to the strongest signal (channel 11) even though it only slightly stronger than the signal on channel 161 and furnishes a much slower connection than that obtainable on channel 161. Is there any way I can "force" the AE3000 to connect via channel 161 rather than channel 11?
View 6 Replies
View Related
