Cisco – 802.1Q VLAN Tagging over WiFi (Meraki)

ciscomerakivlanwireless

I've recently inherited an all wireless network that has every single client in the native VLAN, at multiple sites. The site in question currently has around 550 clients on a /22, which I feel is causing issues during peak times with an alarming number of broadcasts.

So my question is:
Will splitting this up into separate VLANs while allowing every VLAN to be passed along the trunk ports (All AP switchports are setup as Trunk ports), and placing certain clients on their preferred VLAN, improve performance?

With Cisco Meraki APs you can create group policies that will tag an individual client to a particular VLAN

Best Answer

I would segment the VLANs based on the local structure. e.g.:

Floor Level1 => VLAN101
Floor Level2 => VLAN102

This is a quite static approach in segmenting your network and much more simple to implement than using group policys. In my opinion troubleshooting is also simplified in this approach.

Group policys are great for an organisation-based segmentation of your network, but in my opinon unnecessary if only the size of your broadcast-domain is your aim.

Related Solutions

Cisco 6509 to Force10 S48-10 – LACP Configuration in Default VLAN1

Configure your Force10 with portmode hybrid and no spanning-tree pvst err-disable cause invalid-pvst-bpdu on the interface which faces the Cisco 6500... Reference: Force10 - Cisco STP Interoperability paper.

This is the complete configuration for your Port-channel (however, see the warning below)

interface Port-channel 2
 portmode hybrid
 switchport
 no spanning-tree pvst err-disable cause invalid-pvst-bpdu
!

As described in the aforementioned white paper, the Force10 "Hybrid Mode" is required for an untagged Vlan1 on the trunk port. Note that hybrid mode accepts both tagged and untagged frames; however, it will err-disable when it sees the PVST+ BPDU from the Catalyst 6500. Thus, I recommended that you also use no spanning-tree pvst err-disable cause invalid-pvst-bpdu.

Warning:

According to at least one blog I found, hybrid mode must be configured before any switchport command; this means you might need to unbundle Port-channel 2 and add it again with portmode hybrid. Sadly, I can't confirm this myself since I don't have a Force10.

Also note that the Force10 needs manual configuration for each Vlan which gets tagged; I'm assuming you've already tagged your Force10 Vlans.

Cisco VLAN – VLAN Tagging on HP Switch

Depending on what version of ProCurve you are running, you should be able to do tagged all and no tagged all to tag every port on the switch to that VLAN, but you will need to do this for each VLAN unfortunately.

Best Answer

Related Solutions

Cisco 6509 to Force10 S48-10 – LACP Configuration in Default VLAN1

Cisco VLAN – VLAN Tagging on HP Switch

Related Topic