Unifi AP and Cisco Switches
Hello again Cisco community!
I am creating a new post because the other one was a little outdated and I am just now getting back around to this. I have A Cisco 3750x serving as my level 3 switch. I have a cisco 3560g as a managed switch and a Unifi Ap-AC-Pro. I have 3 vlans (100,200,300).
Vlan 100 - GroupA
Vlan 200 - Group B
Vlan 300 - Admin
Portion of the 3750x config:
#####
ip dhcp pool vlan200
network 192.168.0.0 255.255.254.0
domain-name XX
dns-server XX XX
default-router 192.168.0.1
!
ip dhcp pool vlan300
network 192.168.2.0 255.255.255.0
domain-name XX
dns-server XX XX
default-router 192.168.2.1
!
interface GigabitEthernet1/1/2
switchport trunk encapsulation dot1q
switchport mode trunk
!
#####
Interface1/1/2 is connected via an SFP module and a fiber cable.
When I connect my laptop to ports on the 3560g switch, I do get an IP address on the laptop. So I don't think it is an issue with the connection between the two trunk ports connecting the switches.
Here is a portion of the config for the 3560g
#####
!
interface GigabitEthernet0/5
switchport access vlan 300 <--See below for why this is here
switchport trunk encapsulation dot1q
switchport trunk native vlan 300
switchport trunk allowed vlan 100,200,300
spanning-tree portfast trunk
!
interface Vlan200
no ip address
ip helper-address 192.168.0.1
!
interface Vlan300
ip address 192.168.2.2 255.255.255.0
ip helper-address 192.168.2.1
!
#####
Ok, so originally I did not have the " switchport access vlan 300" command on gi0/5 (the port the Unifi Access Point is connecting to). When this command was not here, the access point was not getting an IP address at all and was blinking blue (indicating there was no network connection) even though Cisco was showing the port as up/up.
The access point I configured through the controller on my laptop and is configured like the following:
#####
- 2 WLANS
- WLAN 1
- Set network to 'Network A' under setting and Wifi
- WLAN 2
- Set network to Network B' under settings and wifi
- WLAN 1
- 2 Networks
- Network A
- Router set to Vlan-only network under settings and networks
- Vlan ID is set to 100
- Network B
- Router set to Vlan-only network under settings and networks
- Vlan ID is set to 200
- Network A
#####
Now, when I connect my laptop to the access point wirelessly on either WLAN, it connects but I get a 169 IP address. I can ping and access the AP over its admin IP address, but only after I set the "switchport access vlan 300" command. When I did not have that command and the "switchport trunk native vlan 300" it would not get an IP address at all.
On the 3650 here is some additional information about the port the AP is connected to:
XXX-MJC-Main#sh ip int gi0/5
GigabitEthernet0/5 is up, line protocol is up
Inbound access list is not set
XXX-MJC-Main#sh int trunk
Port Mode Encapsulation Status Native vlan
Gi0/1 on 802.1q trunking 1
Gi0/49 auto n-802.1q trunking 1
Port Vlans allowed on trunk
Gi0/1 1-4094
Gi0/49 1-4094
Port Vlans allowed and active in management domain
Gi0/1 1,100,200,300,400
Gi0/49 1,100,200,300,400
Port Vlans in spanning tree forwarding state and not pruned
Gi0/1 1,100,200,300,400
Gi0/49 1,100,200,300,400
Im going to remove the "switchport access vlan 300" command and try again, but if anyone has any ideas or suggestions please let me know. :)