09-20-2021 09:05 AM
Planning to deploy 100+ APs in to a SZ cluster (2x SZ104). What's the best way to enable AP discovery by the WLC?
WLC IP is in 172.x.x.x/24 range (MGT). Do the APs have to be in the same range as the WLC to be discovered? If so, how can we enable 172.x.x.x range in all the APs? (Is the only option to use DHCP Option 43?)
All the APs are connected to the Switches and are under VLAN 100 (Untagged - 192.x.x.x DATA range). Will this be an issue for the discovery process, because those are in different subnets?
Also we're using One-port Group Mode (Control+Data traffic). We don't mind using the 192.x.x.x range to manage the WLC as well, because there's no requirement for a separate MGT and DATA planes.
Thanks in Advance.
Solved! Go to Solution.
09-21-2021 09:11 AM
Hi Rajiv,
APs and SmartZone do not need to be on the same IP subnet. You will need to configure each SZ in the cluster with a NAT IP, so it can push it's configuration to the APs and they know where to contact it.
This document on our support portal may help: https://support.ruckuswireless.com/documents/1336-smartzone-network-design-with-nat
I've also found a 3rd-party guide which might help: https://wifidevan.wordpress.com/2020/07/27/configure-ruckus-smartzone-behind-nat-to-manage-remote-ap...
In order for APs to discover the SZ(s) when on a different subnet you will need to configure DHCP option 43 or use DNS controller discovery. More info here: https://docs.commscope.com/bundle/ap-110.0-indooruserguide/page/GUID-120D8DDA-3008-45EC-BB67-60B8E87...
DHCP Option 43: https://support.ruckuswireless.com/articles/000008703
The key thing to remember is that the APs discover the SZ (using the methods mentioned above) - the SZ does not discover the APs.
I hope that helps,
Darrel.
09-27-2021 02:55 AM
Hi @abilashpr
Core#sh run
Current configuration:
!
ver 08.0.30hT213 <-- I upgraded this to 8.0.60
!
stack unit 1
module 1 icx7450-48f-sf-port-management-module
module 2 icx7400-xgf-4port-40g-module
priority 255
default-ports 1/2/1 1/2/3
stack-port 1/2/1 1/2/3
stack unit 2
module 1 icx7450-48f-sf-port-management-module
module 2 icx7400-xgf-4port-40g-module
priority 240
default-ports 2/2/1 2/2/3
stack-port 2/2/1 2/2/3
stack enable
stack mac
!
global-stp
!
lag Floor10 static id 10
ports ethernet 1/1/6 ethernet 2/1/6
primary-port 1/1/6
deploy
!
lag Floor13 static id 13
ports ethernet 1/1/7 ethernet 2/1/7
primary-port 1/1/7
deploy
!
lag Floor16 static id 16
ports ethernet 1/1/8 ethernet 2/1/8
primary-port 1/1/8
deploy
!
lag Floor19 static id 19
ports ethernet 1/1/9 ethernet 2/1/9
primary-port 1/1/9
deploy
!
lag Floor2 static id 2
ports ethernet 1/1/1 ethernet 2/1/1
primary-port 1/1/1
deploy
!
lag Floor22 static id 22
ports ethernet 1/1/10 ethernet 2/1/10
primary-port 1/1/10
deploy
!
lag Floor24 static id 24
ports ethernet 1/1/11 ethernet 2/1/11
primary-port 1/1/11
deploy
!
lag Floor3 static id 3
ports ethernet 1/1/2 ethernet 2/1/2
primary-port 1/1/2
deploy
!
lag Floor5 static id 5
ports ethernet 1/1/3 ethernet 2/1/3
primary-port 1/1/3
deploy
!
lag Floor8 static id 8
ports ethernet 1/1/4 ethernet 2/1/4
primary-port 1/1/4
deploy
!
lag Floor8-Server static id 9
ports ethernet 1/1/5 ethernet 2/1/5
primary-port 1/1/5
deploy
!
lag GroundFloor static id 50
ports ethernet 1/1/12 ethernet 2/1/12
primary-port 1/1/12
deploy
!
!
!
vlan 1 name DEFAULT-VLAN by port
router-interface ve 1
spanning-tree
!
vlan 10 name CCTV by port
tagged ethe 1/1/1 to 1/1/12 ethe 2/1/1 to 2/1/12
router-interface ve 10
spanning-tree priority 0
spanning-tree rstp
!
vlan 20 name Voice by port
tagged ethe 1/1/1 to 1/1/12 ethe 2/1/1 to 2/1/12
spanning-tree priority 0
spanning-tree rstp
!
vlan 30 name IPTV by port
tagged ethe 1/1/1 to 1/1/12 ethe 2/1/1 to 2/1/12
router-interface ve 30
spanning-tree priority 0
spanning-tree rstp
multicast active
!
vlan 40 name Wireless by port
tagged ethe 1/1/1 to 1/1/12 ethe 2/1/1 to 2/1/12
router-interface ve 40
spanning-tree priority 0
spanning-tree rstp
!
vlan 50 name BMS by port
tagged ethe 1/1/1 to 1/1/12 ethe 2/1/1 to 2/1/12
router-interface ve 50
spanning-tree priority 0
spanning-tree rstp
!
vlan 99 name Management by port
tagged ethe 1/1/1 to 1/1/12 ethe 2/1/1 to 2/1/12
router-interface ve 99
spanning-tree priority 0
spanning-tree rstp
!
vlan 100 name Test_Wireless by port
tagged ethe 1/1/1 to 1/1/12 ethe 2/1/1 to 2/1/12
router-interface ve 100
spanning-tree priority 0
!
!
!
!
!
aaa authentication login default local
boot sys fl pri
enable aaa console
hostname Core
!
no telnet server
!
!
hitless-failover enable
!
!
!
!
!
!
!
interface ve 1
ip address
!
interface ve 10
ip address x.x.x.x x.x.x.x
!
interface ve 30
ip address x.x.x.x x.x.x.x
!
interface ve 40
ip address x.x.x.x x.x.x.x
!
interface ve 50
!
interface ve 99
ip address x.x.x.x x.x.x.x
!
interface ve 100
ip address x.x.x.x x.x.x.x
!
!
!
!
!
lldp run
!
!
!
!
end
09-27-2021 02:57 AM
Later on added DHCP configs (sorry, I don't have a copy of that config now). Just created a IP DHCP-Server pool, added network address of ve 40 above with subnet mask, excluded few addresses and deployed.
09-27-2021 05:24 AM
Dear @rajivw ,
Option 43 is supported from version 08.0.61 as you are running 08.0.60 the options command does not work. I attach screenshot from release notes of 08.0.61 for your reference, below.
I would recommend you to upgrade the switch to any of 08.0.90 or 08.0.90k (Recommend firmware as in Support Portal) if there are no known issues that you may be aware.
Hope it helps.
Regards,
Abilash PR.
09-28-2021 09:24 AM
Hi @abilashpr
Upgraded to 8.0.61. Op43 is there now. However DHCP server is not getting deployed. DHCP Server is deployed in Core SW of the network. APs are patched to other Access Floor Switches. Core - Access communication is working. Wireless VLAN is created on both Core & Access layers. VE interface with gateway IP is also configured on Core.
---
CORE#sh run
Current configuration:
!
ver 08.0.61T213
!
stack unit 1
module 1 icx7450-48f-sf-port-management-module
module 2 icx7400-xgf-4port-40g-module
priority 255
default-ports 1/2/1 1/2/3
stack-port 1/2/1 1/2/3
stack unit 2
module 1 icx7450-48f-sf-port-management-module
module 2 icx7400-xgf-4port-40g-module
priority 240
default-ports 2/2/1 2/2/3
stack-port 2/2/1 2/2/3
stack enable
stack mac
!
!
global-stp
!
lag Floor10 static id 10
ports ethe 1/1/6 ethe 2/1/6
!
lag Floor13 static id 13
ports ethe 1/1/7 ethe 2/1/7
!
lag Floor16 static id 16
ports ethe 1/1/8 ethe 2/1/8
!
lag Floor19 static id 19
ports ethe 1/1/9 ethe 2/1/9
!
lag Floor2 static id 2
ports ethe 1/1/1 ethe 2/1/1
!
lag Floor22 static id 22
ports ethe 1/1/10 ethe 2/1/10
!
lag Floor24 static id 24
ports ethe 1/1/11 ethe 2/1/11
!
lag Floor3 static id 3
ports ethe 1/1/2 ethe 2/1/2
!
lag Floor5 static id 5
ports ethe 1/1/3 ethe 2/1/3
!
lag Floor8 static id 8
ports ethe 1/1/4 ethe 2/1/4
!
lag Floor8-Server static id 9
ports ethe 1/1/5 ethe 2/1/5
!
lag GroundFloor static id 50
ports ethe 1/1/12 ethe 2/1/12
!
!
!
vlan 1 name DEFAULT-VLAN by port
router-interface ve 1
spanning-tree
!
vlan 10 name CCTV by port
tagged lag 2 to 3 lag 5 lag 8 to 10 lag 13 lag 16 lag 19 lag 22 lag 24 lag 50
router-interface ve 10
spanning-tree priority 0
spanning-tree rstp
!
vlan 20 name Voice by port
tagged lag 2 to 3 lag 5 lag 8 to 10 lag 13 lag 16 lag 19 lag 22 lag 24 lag 50
spanning-tree priority 0
spanning-tree rstp
!
vlan 30 name IPTV by port
tagged lag 2 to 3 lag 5 lag 8 to 10 lag 13 lag 16 lag 19 lag 22 lag 24 lag 50
router-interface ve 30
spanning-tree priority 0
spanning-tree rstp
multicast active
!
vlan 40 name Wireless by port
tagged lag 2 to 3 lag 5 lag 8 to 10 lag 13 lag 16 lag 19 lag 22 lag 24 lag 50
router-interface ve 40
spanning-tree priority 0
spanning-tree rstp
!
vlan 50 name BMS by port
tagged lag 2 to 3 lag 5 lag 8 to 10 lag 13 lag 16 lag 19 lag 22 lag 24 lag 50
router-interface ve 50
spanning-tree priority 0
spanning-tree rstp
!
vlan 99 name Management by port
tagged lag 2 to 3 lag 5 lag 8 to 10 lag 13 lag 16 lag 19 lag 22 lag 24 lag 50
router-interface ve 99
spanning-tree priority 0
spanning-tree rstp
!
!
!
!
!
!
!
!
!
!
!
!
aaa authentication login default local
boot sys fl sec
enable aaa console
hostname CORE
!
ip dhcp-server pool wireless
dhcp-default-router 192.168.40.1
excluded-address 192.168.40.1
excluded-address 192.168.40.2
excluded-address 192.168.40.3
excluded-address 192.168.40.4
excluded-address 192.168.40.5
lease 1 0 0
network 192.168.40.0 255.255.252.0
vendor-class ascii "Ruckus CPE"
option 43 hex 060c3139322e3136382e34302e32
deploy
!
!
no telnet server
!
!
hitless-failover enable
!
!
!
!
!
!
!
interface ve 1
ip address 172.24.2.200 255.255.255.0
!
interface ve 10
ip address 192.168.10.1 255.255.255.0
!
interface ve 30
ip address 192.168.30.1 255.255.255.0
!
interface ve 40
ip address 192.168.40.1 255.255.252.0
!
interface ve 50
!
interface ve 99
ip address 172.24.1.254 255.255.255.0
!
!
!
!
!
lldp run
!
!
!
!
end
MDH-CORE-8thFloor#sh ip dhcp-se
dhcp-server Show DHCP Server info
MDH-CORE-8thFloor#sh ip dhcp-server su
summary Displays the DHCP servers statistics
MDH-CORE-8thFloor#sh ip dhcp-server summary
DHCP Server Summary:
Total number of active leases: 0
Total number of deployed address-pools: 1
Total number of undeployed address-pools: 0
Server uptime: 00d:00h:00m:00s
09-28-2021 11:08 AM
Dear @rajivw,
Yes, "ip dhcp-server enable" is not seen in the configuration, below is the working sample configuration.
!
!
!
aaa authentication web-server default local
aaa authentication login default local
boot sys fl pri
console timeout 30
enable aaa console
hostname Guest
ip dhcp-client disable
ip dhcp-server enable
!
ip dhcp-server pool iptv
excluded-address 172.30.207.254
lease 7 0 0
network 172.30.204.0 255.255.252.0
option 3 ip 172.30.207.254
option 6 ip 8.8.8.8
deploy
!
Please run " ip dhcp-server enable" in configuration mode, that should resolve your problem.
Hope it helps!!!
Regards,
Abilash PR.