Date: Mon, 31 Aug 2009 18:20:07 -0400 From: "Brian A. Seklecki" <seklecki@noc.cfi.pgh.pa.us> To: Graham Smith <smith.graham23@gmail.com> Cc: freebsd-net@freebsd.org Subject: Re: native vlan Message-ID: <1251757207.25573.1794.camel@soundwave.ws.pitbpa0.priv.collaborativefusion.com> In-Reply-To: <be61b3bb0908241212i7539feb2p3af06c328eddd732@mail.gmail.com> References: <be61b3bb0908241212i7539feb2p3af06c328eddd732@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, 2009-08-24 at 12:12 -0700, Graham Smith wrote: > requiring creation of native vlan (vlan 0) and why native vlan are > most suitable for this scene ? Cisco highly recommend changing the management VLAN away from VLAN1. Here's an example, of using alternative native VLANs, ironically, on the one Cisco product that doesn't follow that VLAN1-rule. On the Cisco Aironet AP 1200, you can run a Dot1Q VLAN trunk to map X-number of different ESSIDs-to-VLANs. You do this by setting the "bridge-group" of the Ethernet Subinterface and the Dot11Radio subinterfaces to the same VLAN that you would like to bridge. Whereas, management traffic (Monitoring, etc.) has to run on "BVI1", or Bridged Virtual Interface 1, which must transmit untagged on Ethernet0. This stipulation is set by the Bridging IOS on the AP1200. If your management VLAN is something other than VLAN1 (god forbid), you simply set the "native VLAN" on that Dot1Q trunk port on the Catalyst to some other VLAN
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1251757207.25573.1794.camel>