This article will introduce you how Meraki MR Access Points perform VLAN tagging of data received from clients on a specific SSID and instructions on how to set up per-SSID VLAN tagging.
1.Introducing Per-SSID VLAN tagging in Meraki AP:
– If Bridge mode is configured with a VLAN tag specified on the SSID. Wireless client traffic (Data) on this SSID will be tagged with the configured VLAN number when forwarded to the Switch.
– The Gateway AP must be directly connected to the trunk port of the upstream Switch when using VLAN tagging. DHCP service needs to run on native VLAN or use static IP address on native VLAN assigned to AP.
– Cloud-bound Meraki management traffic is forwarded to the wired network untagged. In 802.1Q trunk untagged traffic is located on the native VLAN. Native VLAN must be the same on all switches and routers that are connected to each other in the LAN and have a route to the internet.
– The following requirements must be met for 802.1Q VLAN tagging to function properly:
- The Switch port that the Cisco Meraki AP connects to must have a trunk port configured.
- Trunk port must be configured according to 802.1q trunk encapsulation.
- The trunk port must be configured to allow all VLANs to be configured on the SSID.
- Each SSID must be configured and tagged with a VLAN that can be routable and configured across all your local switches.
- VLAN tagging is only available in Bridge mode.
- Management traffic from Cisco Meraki Aps must be allowed to bypass Content Filtering or Proxy.
2.Configure Per-SSID VLAN Tagging:
– Go Configure > Access control > Addressing and trafficselect “Use VLAN tagging”
Configure SSID-wide single VLAN tags or per-AP multiple VLAN tags
+ SSID-wide single VLAN tagging :
– In “All other APs” Enter the VLAN ID you want to use for the SSID. In this setting, all APs in your network will apply the specified tag on client traffic in that SSID. Select “Save” to save.
+ Per-AP multiple VLAN tagging:
– Select “Add VLAN”, enter the AP tag to identify the AP (or APs) you want to set up VLAN tagging for. Repeat this step for each AP tag group you want to use VLAN tagging for this SSID.
– Using a VLAN ID of 0 will cause MR devices with corresponding AP tags (or “All other APs”) to use native VLAN, VLAN ID 0 is functionally equivalent to the “Don’t use VLAN tagging” option. .
– To configure AP tag:
- In Dashboardgo Wireless > Access points.
- Check the APs you want to tag.
- Select Edit > Tags.
- Enter a new tag for the AP or select an already created tag.
!!! Thank you for following the article!!!
Xem tiếp...